Michael Seele
f3878d443b
All checks were successful
validate-shared-actions / validate-shared-actions (pull_request) Successful in 1m25s
Co-authored-by: Copilot <copilot@github.com>
33 lines
No EOL
1.2 KiB
Markdown
33 lines
No EOL
1.2 KiB
Markdown
# shared-actions
|
|
|
|
Shared actions for Forgejo CI/CD pipelines.
|
|
|
|
## Actions
|
|
|
|
| Action | Description |
|
|
|--------|-------------|
|
|
| [aikido-full-scan](aikido-full-scan) | Aikido full scan |
|
|
| [aikido-pr-scan](aikido-pr-scan) | Aikido PR scan |
|
|
| [aws-configure](aws-configure) | Authenticate with AWS via OIDC |
|
|
| [checkout](checkout) | Action for checking out a repository |
|
|
| [pnpm-build](pnpm-build) | Action for building and validating with PNPM |
|
|
| [publish-static-contents](publish-static-contents) | Syncs frontend assets to S3 and invalidates a CloudFront distribution |
|
|
| [terraform-apply](terraform-apply) | Apply Terraform configuration files using the official Terraform CLI |
|
|
| [terraform-validate](terraform-validate) | Validate Terraform configuration files using the official Terraform CLI |
|
|
|
|
|
|
## Security
|
|
|
|
Where third-party Forgejo/GitHub Actions are used internally, they are pinned to exact commit hashes rather than mutable tags to prevent supply chain attacks.
|
|
|
|
## Usage
|
|
|
|
Reference actions from your project's workflow:
|
|
|
|
```yaml
|
|
- uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/<action-name>@<action-name>-v1
|
|
with:
|
|
# see each action's README for inputs
|
|
```
|
|
|
|
Each action has its own README with inputs, usage examples, and notes. |