Comments (8)
webknjaz
commented on August 17, 2024
I mean, we need to set up automation for this. But yes, it's possible. OTOH, relying on tags/branches is a security disaster for users FTR.
Are you up for contributing this?
from ansible-lint-action.
ruzickap
commented on August 17, 2024
It should not be so hard.
I'm using https://github.com/haya14busa/action-update-semver for it:
name: update-semver
on:
release:
types: [published]
tags:
- 'v*.*.*'
jobs:
update-semver:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- name: Semver
uses: haya14busa/action-update-semver@v1
with:
major_version_tag_only: true
github_token: ${{ secrets.github_token }}The example above ^^^ should be working...
from ansible-lint-action.
webknjaz
commented on August 17, 2024
Somebody else suggested https://github.com/technote-space/release-github-actions (in another action pypa/gh-action-pypi-publish#22 (comment)). How does haya14busa/action-update-semver compare to it?
from ansible-lint-action.
ruzickap
commented on August 17, 2024
No idea...
The goal is to point the latest release of ansible-lint-action to some "sort version".
Using ansible/ansible-lint-action@master is not a good approach.
Using ansible/[email protected] is not a good as well, because people will need to change their code every "minor" release.
Feel free to use whatever tool you want...
from ansible-lint-action.
jimrazmus
commented on August 17, 2024
I mean, we need to set up automation for this. But yes, it's possible. OTOH, relying on tags/branches is a security disaster for users FTR.
I use dependabot to maintain the versions of the actions I use in my workflows. Doing so facilitates debugging as I can recreate the environment. Using @master compromises that ability.
from ansible-lint-action.
cognifloyd
commented on August 17, 2024
@webknjaz Please help me understand this (feel free to point me at a good article/manual/book to read if that's quicker):
OTOH, relying on tags/branches is a security disaster for users FTR.
Are you talking about the possibility of someone getting access to a repo, and adding something unexpected or nefarious in a given branch, or rewriting a given tag? I suppose you could pin with a commit hash instead to mitigate that. Is there something else that makes branches/tags a "security disaster"?
from ansible-lint-action.
godzChosen2
commented on August 17, 2024
Thank you
from ansible-lint-action.
ssbarnea
commented on August 17, 2024
From now one we will try to follow the versions from ansible-lint
from ansible-lint-action.
Related Issues (20)
- (Ability to) disable verbose output HOT 2
- Couldn't resolve module/action in ansible-lint action HOT 8
- Repository not found: ansible-community/ansible-lint-action HOT 1
- Failed to discover lintable files using git: (Warning and Error) HOT 5
- fatal: detected dubious ownership in repository at '/github/workspace' HOT 10
- Please update the action with ansible-lint 6.9.0 or later HOT 2
- Warning on every run HOT 1
- The action cannot be used as a status check in a branch protection rule HOT 1
- Ansible lint not been able to use community.general.system.timezone HOT 5
- Some ansible lint rule are not checked for the playbook HOT 1
- Update to 6.14.6
- Couldn't resolve module/action error in action but not on system HOT 1
- config ignored ? HOT 2
- Link to github marketplace is broken HOT 2
- `uses: ansible/ansible-lint@v6` yields error "unable to find version `v6`" HOT 1
- Ansible-lint-action is not returning the same result as local ansible-lint HOT 1
- `ansible-lint` outdated HOT 1
- requirements.yml not loaded from given path HOT 3
- ansible-lint fails validating the .github/workflows/ansible-lint.yml HOT 3
- Update to ansible-lint 6.17.2 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ansible-lint-action.