From d4879b8d9596b8d68e96c53c17f3d3a80079c37b Mon Sep 17 00:00:00 2001 From: Dmitry Bolotin Date: Fri, 22 May 2026 19:10:43 +0200 Subject: [PATCH 1/8] pl-compose: run platforma container as runner UID/GID, mount HOME MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - docker-compose.yaml: replace user: root with user: $PL_UID:$PL_GID (resolved at action-launch time via id -u / id -g). - Add tmpfs /pl-home and HOME=/pl-home so child processes have a writable home without host pollution. - action.yaml: export PL_UID and PL_GID before docker compose up. Switch internal sub-action references from @v4 to @v4-beta to match beta-branch convention; merge-beta.sh restores @v4 at promotion time. Motivation: enable exec.builder writable: false tests in platforma PR #1648 — they require OS file-mode enforcement which root bypasses. --- .github/workflows/0-automerge.yaml | 2 +- .github/workflows/0-build-docker.yaml | 6 +- .github/workflows/0-merge-beta.yaml | 2 +- .github/workflows/0-scan-containers.yaml | 16 +- .github/workflows/0-test.yaml | 2 +- .github/workflows/block-mark-stable.yaml | 26 +-- .github/workflows/deploy-docs.yaml | 34 +-- .github/workflows/docker-github.yaml | 20 +- .github/workflows/java-gradle.yaml | 200 +++++++++--------- .../node-docker-simple-fast-pnpm.yaml | 28 +-- .github/workflows/node-go-simple.yaml | 60 +++--- .github/workflows/node-matrix-pnpm.yaml | 76 +++---- .github/workflows/node-matrix.yaml | 70 +++--- .github/workflows/node-simple-pnpm-k8s.yaml | 20 +- .github/workflows/node-simple-pnpm.yaml | 66 +++--- .github/workflows/node-simple.yaml | 54 ++--- actions/action-test/action.yaml | 2 +- actions/artifact/create-empty/action.yaml | 4 +- actions/artifact/restore/action.yaml | 2 +- actions/artifact/save/action.yaml | 4 +- actions/artifact/write-metadata/action.yaml | 8 +- actions/aws/cloudfront/action.yaml | 4 +- actions/aws/prefix-delete/action.yaml | 2 +- actions/ccache/action.yaml | 2 +- actions/context/action.yaml | 2 +- actions/context/get/action.yaml | 2 +- actions/context/init/action.yaml | 2 +- actions/docker/build/action.yaml | 2 +- actions/docker/pl-compose/action.yaml | 15 +- actions/docker/pl-compose/docker-compose.yaml | 6 +- actions/docker/push/action.yaml | 8 +- actions/docker/scan-docker-repo/action.yaml | 4 +- actions/docker/scan-pnpm-repo/action.yaml | 2 +- actions/env/action.yaml | 4 +- actions/env/set/action.yaml | 4 +- actions/gcloud-kms-sign/action.yaml | 2 +- actions/gcp/prefix-delete/action.yaml | 2 +- actions/git/auth/action.yaml | 2 +- actions/golang/cache/action.yaml | 6 +- actions/golang/prepare/action.yaml | 2 +- actions/helpers/default-value/action.yaml | 2 +- actions/helpers/jq/action.yaml | 2 +- actions/helpers/merge-status/action.yaml | 2 +- actions/helpers/safe-ctx/action.yaml | 2 +- actions/java/gradle/cache/action.yaml | 2 +- .../java/gradle/properties/read/action.yaml | 2 +- .../java/gradle/properties/set/action.yaml | 2 +- actions/k8s/helm-deployment/action.yaml | 2 +- actions/matrix/read/action.yaml | 2 +- actions/node/cache-pnpm/action.yaml | 2 +- actions/node/cache/action.yaml | 6 +- actions/node/npm-pkg-status/action.yaml | 6 +- actions/node/prepare-pnpm/action.yaml | 8 +- actions/node/prepare/action.yaml | 6 +- actions/notify/slack/build-failed/action.yaml | 6 +- actions/notify/slack/build-ready/action.yaml | 6 +- .../slack/deployment-cancelled/action.yaml | 6 +- .../slack/deployment-failed/action.yaml | 6 +- .../slack/deployment-success/action.yaml | 6 +- actions/notify/slack/publish/action.yaml | 6 +- .../notify/slack/release-failed/action.yaml | 6 +- .../notify/slack/release-ready/action.yaml | 6 +- .../notify/slack/review-required/action.yaml | 8 +- .../notify/slack/test-regression/action.yaml | 6 +- actions/notify/slack/tests/action.yaml | 6 +- .../notify/telegram/build-failed/action.yaml | 6 +- .../notify/telegram/build-ready/action.yaml | 6 +- .../telegram/deployment-cancelled/action.yaml | 6 +- .../telegram/deployment-failed/action.yaml | 6 +- .../telegram/deployment-success/action.yaml | 6 +- actions/notify/telegram/publish/action.yaml | 6 +- .../telegram/release-failed/action.yaml | 6 +- .../notify/telegram/release-ready/action.yaml | 6 +- .../telegram/review-required/action.yaml | 8 +- .../telegram/test-regression/action.yaml | 6 +- actions/notify/telegram/tests/action.yaml | 6 +- actions/python/cache/action.yaml | 2 +- actions/python/prepare/action.yaml | 2 +- actions/release/create/action.yaml | 2 +- actions/rust/cache/action.yaml | 2 +- actions/rust/prepare/action.yaml | 2 +- actions/strings/convert-paths/action.yaml | 2 +- actions/strings/join/action.yaml | 2 +- actions/strings/json-list/action.yaml | 2 +- actions/strings/prefix/action.yaml | 2 +- actions/templates/jinja/action.yaml | 10 +- blocks/java/build/action.yaml | 24 +-- blocks/java/publish/docker/action.yaml | 6 +- blocks/java/test/action.yaml | 32 +-- .../monorepo/build-and-test-pnpm/action.yaml | 2 +- .../monorepo/test-pl-docker-pnpm/action.yaml | 8 +- blocks/monorepo/test-pl-k8s-pnpm/action.yaml | 2 +- blocks/node/build-and-publish/action.yaml | 14 +- blocks/node/build-and-test-pnpm/action.yaml | 8 +- blocks/node/build/generic/action.yaml | 4 +- blocks/node/test/action.yaml | 4 +- blocks/notify/build/action.yaml | 14 +- blocks/notify/deployment/action.yaml | 12 +- blocks/notify/publish/action.yaml | 10 +- blocks/notify/release/action.yaml | 14 +- blocks/notify/review-required/action.yaml | 4 +- blocks/notify/slack/build/action.yaml | 14 +- blocks/notify/slack/deployment/action.yaml | 12 +- blocks/notify/slack/publish/action.yaml | 10 +- blocks/notify/slack/release/action.yaml | 14 +- .../notify/slack/review-required/action.yaml | 4 +- .../notify/slack/test-regression/action.yaml | 8 +- blocks/notify/slack/tests/action.yaml | 10 +- blocks/notify/test-regression/action.yaml | 8 +- blocks/notify/tests/action.yaml | 10 +- .../pl/linux/test-pl-docker-pnpm/action.yaml | 12 +- blocks/release/registry-bin/action.yaml | 24 +-- blocks/release/s3/action.yaml | 38 ++-- .../signing-tools/macos-notarize/action.yaml | 2 +- blocks/signing-tools/macos-sign/action.yaml | 2 +- blocks/signing-tools/windows-sign/action.yaml | 4 +- blocks/update-cdn-link/action.yaml | 4 +- blocks/update-s3-latest/action.yaml | 26 +-- 118 files changed, 677 insertions(+), 668 deletions(-) diff --git a/.github/workflows/0-automerge.yaml b/.github/workflows/0-automerge.yaml index a5d7256b..18ff8e48 100644 --- a/.github/workflows/0-automerge.yaml +++ b/.github/workflows/0-automerge.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: fetch-depth: 0 diff --git a/.github/workflows/0-build-docker.yaml b/.github/workflows/0-build-docker.yaml index 49710758..cff7d8a9 100644 --- a/.github/workflows/0-build-docker.yaml +++ b/.github/workflows/0-build-docker.yaml @@ -21,7 +21,7 @@ jobs: IMAGE_NAME: 'hook' steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta - name: Log in to the Container registry uses: docker/login-action@v2 @@ -45,7 +45,7 @@ jobs: IMAGE_NAME: 'git-crypt' steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta - name: Log in to the Container registry uses: docker/login-action@v2 @@ -69,7 +69,7 @@ jobs: IMAGE_NAME: 'nginx-spa' steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta - name: Log in to the Container registry uses: docker/login-action@v2 diff --git a/.github/workflows/0-merge-beta.yaml b/.github/workflows/0-merge-beta.yaml index 8904b284..14ff7204 100644 --- a/.github/workflows/0-merge-beta.yaml +++ b/.github/workflows/0-merge-beta.yaml @@ -30,7 +30,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: ref: ${{ github.event.inputs.target_branch || 'v4' }} token: ${{ steps.app-token.outputs.token }} diff --git a/.github/workflows/0-scan-containers.yaml b/.github/workflows/0-scan-containers.yaml index 09fb5e8d..616f85dc 100644 --- a/.github/workflows/0-scan-containers.yaml +++ b/.github/workflows/0-scan-containers.yaml @@ -33,7 +33,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 + - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta id: plan with: mode: plan @@ -43,7 +43,7 @@ jobs: repository: ${{ github.event.inputs.repository || 'milaboratories/pl-containers' }} concurrency: ${{ github.event.inputs.concurrency || 3 }} - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v4-beta with: name: 00-scanning-plan path: ${{ steps.plan.outputs.plan-dir }} @@ -63,7 +63,7 @@ jobs: steps: - name: Download plan - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: 00-scanning-plan path: "scan-chunks" @@ -74,7 +74,7 @@ jobs: sl=$((RANDOM % 10)) sleep ${sl} - - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 + - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta with: mode: scan report-name: "report-${{ matrix.plan-file }}" @@ -87,26 +87,26 @@ jobs: if: always() steps: - name: Download skipped list - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: skipped-images path: ./consolidated - name: Download all reports - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: pattern: 'report-*' merge-multiple: true path: ./consolidated - name: Summarize all reports - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 + uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta with: mode: summarize summarize-dir: ./consolidated - name: Upload consolidated report - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v4-beta with: name: 00-consolidated-report path: ./consolidated diff --git a/.github/workflows/0-test.yaml b/.github/workflows/0-test.yaml index 1bc23225..21bd6046 100644 --- a/.github/workflows/0-test.yaml +++ b/.github/workflows/0-test.yaml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: fetch-depth: 0 diff --git a/.github/workflows/block-mark-stable.yaml b/.github/workflows/block-mark-stable.yaml index 92604e3f..643051f4 100644 --- a/.github/workflows/block-mark-stable.yaml +++ b/.github/workflows/block-mark-stable.yaml @@ -159,7 +159,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: @@ -171,12 +171,12 @@ jobs: needs: init steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BLOCK_PATH: ${{ inputs.block-path }} with: @@ -199,16 +199,16 @@ jobs: id-token: write contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: aws-actions/configure-aws-credentials@v4 + - uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} aws-region: ${{ inputs.aws-region }} @@ -219,7 +219,7 @@ jobs: mask-password: 'true' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -230,13 +230,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Mark package as stable - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BLOCK_PATH: ${{ inputs.block-path }} with: @@ -254,12 +254,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | mark-as-stable - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -282,12 +282,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | mark-as-stable - - uses: milaboratory/github-ci/blocks/notify/slack/release@v4 + - uses: milaboratory/github-ci/blocks/notify/slack/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/deploy-docs.yaml b/.github/workflows/deploy-docs.yaml index 9d5d9dea..d9546500 100644 --- a/.github/workflows/deploy-docs.yaml +++ b/.github/workflows/deploy-docs.yaml @@ -177,23 +177,23 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta build: name: :build runs-on: ubuntu-latest needs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} @@ -204,19 +204,19 @@ jobs: python-version: ${{ inputs.python-version }} cache: 'pip' - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | sudo apt-get install -y graphviz - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | sudo curl -s -L "https://github.com/plantuml/plantuml/releases/download/v${{ inputs.plantuml-version }}/plantuml-${{ inputs.plantuml-version }}.jar" --output /opt/plantuml.jar - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | @@ -224,20 +224,20 @@ jobs: echo 'java $PLANTUML_JAVAOPTS -jar /opt/plantuml.jar ${@}' >> /usr/local/bin/plantuml chmod +x /usr/local/bin/plantuml - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | pip install pip==24.0 && pip install -r requirements.txt - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | mkdocs build - id: artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v4-beta with: name: ${{ inputs.app-name-slug }} path: ${{ inputs.dist-archive-path }} @@ -255,12 +255,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -280,14 +280,14 @@ jobs: contents: read steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v4-beta with: name: ${{ inputs.app-name-slug }} path: ${{ inputs.app-name-slug }} - - uses: milaboratory/github-ci/actions/aws/cloudfront@v4 + - uses: milaboratory/github-ci/actions/aws/cloudfront@v4-beta with: aws-iam-role-to-assume: ${{ inputs.aws-iam-role-to-assume }} aws-region: ${{ inputs.aws-region }} @@ -309,12 +309,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | deployment - - uses: milaboratory/github-ci/blocks/notify/deployment@v4 + - uses: milaboratory/github-ci/blocks/notify/deployment@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} diff --git a/.github/workflows/docker-github.yaml b/.github/workflows/docker-github.yaml index 898c7fd6..c646e05e 100644 --- a/.github/workflows/docker-github.yaml +++ b/.github/workflows/docker-github.yaml @@ -178,7 +178,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -191,27 +191,27 @@ jobs: - init steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Build Docker Image - uses: milaboratory/github-ci/actions/docker/build@v4 + uses: milaboratory/github-ci/actions/docker/build@v4-beta with: dockerfile: ${{ inputs.dockerfile }} context: ${{ inputs.build-context }} tags: 'build:local' - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta id: tags env: PUSH_DEV_TARGETS: ${{ inputs.push-dev-targets }} @@ -286,7 +286,7 @@ jobs: done done - - uses: milaboratory/github-ci/actions/docker/push@v4 + - uses: milaboratory/github-ci/actions/docker/push@v4-beta id: push with: source: 'build:local' @@ -309,7 +309,7 @@ jobs: - build steps: - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -331,11 +331,11 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: create-release name: Create release - uses: milaboratory/github-ci/actions/release/create@v4 + uses: milaboratory/github-ci/actions/release/create@v4-beta with: token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/java-gradle.yaml b/.github/workflows/java-gradle.yaml index c75bab92..e68378c8 100644 --- a/.github/workflows/java-gradle.yaml +++ b/.github/workflows/java-gradle.yaml @@ -1037,7 +1037,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -1053,29 +1053,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - id: build-gradle - uses: milaboratory/github-ci/blocks/java/build@v4 + uses: milaboratory/github-ci/blocks/java/build@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1098,7 +1098,7 @@ jobs: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build @@ -1109,7 +1109,7 @@ jobs: && inputs.notify-build != 'false' && steps.build-gradle.conclusion != 'cancelled' - uses: milaboratory/github-ci/blocks/notify/build@v4 + uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1127,23 +1127,23 @@ jobs: needs: - build steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Setup tests matrix - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: tests-matrix with: dump-stdout: false @@ -1179,29 +1179,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4 + uses: milaboratory/github-ci/blocks/java/test@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1254,13 +1254,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1290,29 +1290,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4 + uses: milaboratory/github-ci/blocks/java/test@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1368,13 +1368,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test integration - - uses: milaboratory/github-ci/blocks/notify/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1404,30 +1404,30 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: 0 - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4 + uses: milaboratory/github-ci/blocks/java/test@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1460,14 +1460,14 @@ jobs: upload-report: ${{ inputs.test-regression-upload-report }} - id: verify-changed-files - uses: milaboratory/github-ci/actions/git/verify-changed-files@v4 + uses: milaboratory/github-ci/actions/git/verify-changed-files@v4-beta with: files: ${{ inputs.test-regression-changed-files-list }} separator: ',' - id: prepare-files-list if: steps.verify-changed-files.outputs.files_changed == 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: CHANGED_FILES: ${{ steps.verify-changed-files.outputs.changed_files }} WORKAROUND_DIR: 'workaround/files' @@ -1491,7 +1491,7 @@ jobs: echo "Wait random number of second before saving the artifact." sleep "${RAN_SEC}" - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v4-beta if: steps.verify-changed-files.outputs.files_changed == 'true' with: name: test-regression-${{ matrix.test }} @@ -1519,23 +1519,23 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: fetch-depth: 0 - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock && steps.artifact.outputs.exists == 'true' with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - id: get-tag-branch - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | @@ -1544,22 +1544,22 @@ jobs: ghwa_set_output "branch-name" "$_BRANCH_NAME" - - uses: milaboratory/github-ci/actions/artifact/create-empty@v4 + - uses: milaboratory/github-ci/actions/artifact/create-empty@v4-beta - id: merged-artifact - uses: actions/upload-artifact/merge@v4 + uses: actions/upload-artifact/merge@v4-beta with: name: test-regression pattern: test-regression-* separate-directories: false delete-merged: true - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v4-beta if: steps.merged-artifact.outputs.artifact-id != '' with: name: test-regression - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | @@ -1567,13 +1567,13 @@ jobs: find . -type f -name 'init.txt' -exec rm -v {} \; - id: verify-changed-files - uses: milaboratory/github-ci/actions/git/verify-changed-files@v4 + uses: milaboratory/github-ci/actions/git/verify-changed-files@v4-beta with: files: ${{ inputs.test-regression-changed-files-list }} separator: ',' - id: create-pull-request - uses: milaboratory/github-ci/actions/git/create-pull-request@v4 + uses: milaboratory/github-ci/actions/git/create-pull-request@v4-beta with: add-paths: ${{ steps.verify-changed-files.outputs.changed_files }} commit-message: 'regression tests automated change' @@ -1604,13 +1604,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test regression - - uses: milaboratory/github-ci/blocks/notify/test-regression@v4 + - uses: milaboratory/github-ci/blocks/notify/test-regression@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1631,7 +1631,7 @@ jobs: needs: - test-regression-create-pr steps: - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta env: PR_URL: ${{ needs.test-regression-create-pr.outputs.pr-url }} with: @@ -1658,13 +1658,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test regression - - uses: milaboratory/github-ci/blocks/notify/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1689,28 +1689,28 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - - uses: milaboratory/github-ci/blocks/java/build@v4 + - uses: milaboratory/github-ci/blocks/java/build@v4-beta id: with-mapping with: project: ${{ inputs.build-project }} @@ -1738,7 +1738,7 @@ jobs: - name: Upload to S3 id: s3 if: ${{ inputs.dist-archive-s3 }} - uses: milaboratory/github-ci/blocks/release/s3@v4 + uses: milaboratory/github-ci/blocks/release/s3@v4-beta with: artifact-name: ${{ inputs.product-name-slug }} add-version: ${{ inputs.dist-archive-s3-add-version }} @@ -1777,13 +1777,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build archive - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1808,28 +1808,28 @@ jobs: packages: write steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - - uses: milaboratory/github-ci/blocks/java/build@v4 + - uses: milaboratory/github-ci/blocks/java/build@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1845,13 +1845,13 @@ jobs: java-version: ${{ inputs.java-version }} java-distribution: ${{ inputs.java-distribution }} - - uses: milaboratory/github-ci/actions/helpers/default-value@v4 + - uses: milaboratory/github-ci/actions/helpers/default-value@v4-beta id: project with: value: ${{ inputs.dist-docker-image-name }} default: ${{ inputs.build-project }} - - uses: milaboratory/github-ci/blocks/java/publish/docker@v4 + - uses: milaboratory/github-ci/blocks/java/publish/docker@v4-beta id: docker-push with: project: ${{ steps.project.outputs.value }} @@ -1879,13 +1879,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build docker - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1909,29 +1909,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.dist-library-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-library-s3-region }} - name: publish lib to dev - uses: milaboratory/github-ci/blocks/java/build@v4 + uses: milaboratory/github-ci/blocks/java/build@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1948,17 +1948,17 @@ jobs: java-distribution: ${{ inputs.java-distribution }} - id: props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta with: project-dir: ${{ inputs.build-project-dir }} project-name: ${{ inputs.build-project }} - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Prepare JSON list of published libraries id: libs-list - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: |- ${{ steps.props.outputs.group}}:${{ steps.props.outputs.name }}:${{ steps.context.outputs.current-version }} @@ -1985,13 +1985,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build library - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2016,24 +2016,24 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - - uses: milaboratory/github-ci/blocks/node/build-and-publish@v4 + - uses: milaboratory/github-ci/blocks/node/build-and-publish@v4-beta name: Release npm package if: github.ref_name == inputs.release-branch-name && inputs.node-execution-path != '' with: @@ -2074,14 +2074,14 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build sign archive - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2106,14 +2106,14 @@ jobs: steps: - id: cdn-string - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | CDN_URL=$(echo '${{ needs.distArchive.outputs.s3-urls-json }}' | jq -r -c '.[]') ghwa_set_output "converted_cdn_url" "${CDN_URL}" - - uses: milaboratory/github-ci/blocks/update-cdn-link@v4 + - uses: milaboratory/github-ci/blocks/update-cdn-link@v4-beta with: cdn-redirect-link: ${{ fromJSON( steps.cdn-string.outputs.data ).converted_cdn_url }} s3-iam-role-to-assume: ${{ inputs.cdn-redirect-s3-iam-role-to-assume }} @@ -2174,7 +2174,7 @@ jobs: - notify-test-regression steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4 + - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2215,16 +2215,16 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v4-beta if: inputs.dist-archive with: name: ${{ inputs.product-name-slug }} path: release-files - name: Create release - uses: milaboratory/github-ci/actions/release/create@v4 + uses: milaboratory/github-ci/actions/release/create@v4-beta with: token: ${{ secrets.GITHUB_TOKEN }} @@ -2255,7 +2255,7 @@ jobs: steps: - id: s3 name: Upload to S3 - uses: milaboratory/github-ci/blocks/release/s3@v4 + uses: milaboratory/github-ci/blocks/release/s3@v4-beta with: artifact-name: ${{ inputs.product-name-slug }} add-version: ${{ inputs.release-s3-add-version }} @@ -2289,29 +2289,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4 + - uses: milaboratory/github-ci/actions/git/crypt@v4-beta if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.release-s3-iam-role-to-assume }} aws-region: ${{ inputs.release-s3-region }} - name: publish lib - uses: milaboratory/github-ci/blocks/java/build@v4 + uses: milaboratory/github-ci/blocks/java/build@v4-beta with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -2328,17 +2328,17 @@ jobs: java-distribution: ${{ inputs.java-distribution }} - id: props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta with: project-dir: ${{ inputs.build-project-dir }} project-name: ${{ inputs.build-project }} - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Prepare JSON list of published libraries id: libs-list - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: |- ${{ steps.props.outputs.group}}:${{ steps.props.outputs.name }}:${{ steps.context.outputs.current-version }} @@ -2366,12 +2366,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} diff --git a/.github/workflows/node-docker-simple-fast-pnpm.yaml b/.github/workflows/node-docker-simple-fast-pnpm.yaml index e11f5c10..f3fdc578 100644 --- a/.github/workflows/node-docker-simple-fast-pnpm.yaml +++ b/.github/workflows/node-docker-simple-fast-pnpm.yaml @@ -377,7 +377,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -399,31 +399,31 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - name: Add MiLab shell utils to PATH - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | NPM_PKG_VERSION="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.version')" @@ -431,7 +431,7 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" ghwa_set_output pnpm-pkg-version "${PNPM_PKG_VERSION}" - - uses: aws-actions/configure-aws-credentials@v4 + - uses: aws-actions/configure-aws-credentials@v4-beta if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE || env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} @@ -443,9 +443,9 @@ jobs: with: mask-password: "true" - - uses: milaboratory/github-ci/actions/turborepo/cache@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache@v4-beta - - uses: milaboratory/github-ci/blocks/node/build-and-test-pnpm@v4 + - uses: milaboratory/github-ci/blocks/node/build-and-test-pnpm@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -465,7 +465,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - id: test - uses: milaboratory/github-ci/blocks/pl/linux/test-pl-docker-pnpm@v4 + uses: milaboratory/github-ci/blocks/pl/linux/test-pl-docker-pnpm@v4-beta if: inputs.test env: PL_ADDRESS: "http://127.0.0.1:6345" @@ -553,12 +553,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.build-test-publish.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-go-simple.yaml b/.github/workflows/node-go-simple.yaml index 8c51c913..07b50176 100644 --- a/.github/workflows/node-go-simple.yaml +++ b/.github/workflows/node-go-simple.yaml @@ -330,7 +330,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -348,17 +348,17 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -368,18 +368,18 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4 + uses: milaboratory/github-ci/actions/golang/prepare@v4-beta with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.golang-cache-version }} cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4 + - uses: milaboratory/github-ci/actions/git/auth@v4-beta with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4 + - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta with: build-script-name: ${{ inputs.build-script-name }} node-version: ${{ inputs.node-version }} @@ -408,12 +408,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta env: NPM_PKG_VERSION: ${{ needs.build.outputs.npm-pkg-version }} with: @@ -438,28 +438,28 @@ jobs: - build steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4 + uses: milaboratory/github-ci/actions/golang/prepare@v4-beta with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.golang-cache-version }} cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4 + - uses: milaboratory/github-ci/actions/git/auth@v4-beta with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/test@v4 + - uses: milaboratory/github-ci/blocks/node/test@v4-beta with: test-name: ${{ inputs.test-script-name }} node-version: ${{ inputs.node-version }} @@ -488,13 +488,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta env: NPM_PKG_VERSION: ${{ needs.test.outputs.npm-pkg-version }} with: @@ -537,7 +537,7 @@ jobs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4 + - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -582,26 +582,26 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta with: package-json-path: "${{ github.workspace }}/package.json" registry-url: ${{ inputs.registry-url }} npm-auth-token: ${{ env.NPMJS_TOKEN || secrets.GITHUB_TOKEN }} - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4 + uses: milaboratory/github-ci/actions/golang/prepare@v4-beta if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: @@ -610,13 +610,13 @@ jobs: cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4 + - uses: milaboratory/github-ci/actions/git/auth@v4-beta if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4 + - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: @@ -627,7 +627,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta if: inputs.aws-login-enable && steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' @@ -655,12 +655,12 @@ jobs: - name: Add MiLab shell utils to PATH if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - name: Publish npm package if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -686,7 +686,7 @@ jobs: - name: Create release with tag if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4 + uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta env: NPM_PKG_VERSION: ${{ steps.npm-pkg-status.outputs.pkg-version }} with: @@ -716,12 +716,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.publish-to-npm.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-matrix-pnpm.yaml b/.github/workflows/node-matrix-pnpm.yaml index 248e241a..ade8ee8c 100644 --- a/.github/workflows/node-matrix-pnpm.yaml +++ b/.github/workflows/node-matrix-pnpm.yaml @@ -468,7 +468,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} current-version: ${{ steps.context.outputs.current-version }} @@ -479,12 +479,12 @@ jobs: needs: - init steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PACKAGE_PATH: ${{ inputs.package-path }} with: @@ -506,20 +506,20 @@ jobs: if: github.ref_name == 'main' || github.event_name == 'merge_group' steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: '0' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -530,13 +530,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Check for Changesets - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BRANCH_NAME: ${{ inputs.changeset-default-branch }} with: @@ -563,7 +563,7 @@ jobs: id-token: write contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -575,14 +575,14 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} - name: Install system build tools on Linux if: runner.os == 'Linux' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | @@ -590,7 +590,7 @@ jobs: sudo apt-get install -y build-essential gfortran libopenblas-dev liblapack-dev cmake pkg-config - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -612,7 +612,7 @@ jobs: username: ${{ env.QUAY_USERNAME }} password: ${{ env.QUAY_ROBOT_TOKEN }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} @@ -650,19 +650,19 @@ jobs: - name: Configure ccache if: inputs.enable-ccache - uses: milaboratory/github-ci/actions/ccache@v4 + uses: milaboratory/github-ci/actions/ccache@v4-beta with: options: ${{ inputs.ccache-options }} - name: Cache additional paths - uses: actions/cache@v4 + uses: actions/cache@v4-beta if: inputs.cache-paths != '' with: path: ${{ inputs.cache-paths }} key: ${{ runner.os }}-${{ runner.arch }}-cache-additional-${{ inputs.cache-version }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -673,7 +673,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -690,7 +690,7 @@ jobs: pnpm run build --filter="${PRE_CALCULATED_STEP}" - name: CodeSign binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4 + uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4-beta if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -701,7 +701,7 @@ jobs: mac-cert-passwd: ${{ secrets.MAC_SIGN_CERT_PWD }} - name: Notarize binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4 + uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4-beta if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -730,7 +730,7 @@ jobs: - name: CodeSign binary on Windows if: runner.os == 'Windows' && inputs.sign-binaries != '' - uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4 + uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4-beta with: binaries: ${{ inputs.sign-binaries }} code-sign-chain: ${{ secrets.WIN_SIGN_CERT }} @@ -759,7 +759,7 @@ jobs: echo "name=prebuild-results-${M_OS}-${M_ARCH}-${M_SELECTOR}" >> $GITHUB_OUTPUT - name: Save prebuild results for transfer to final build - uses: milaboratory/github-ci/actions/artifact/save@v4 + uses: milaboratory/github-ci/actions/artifact/save@v4-beta with: name: ${{ steps.archive-name.outputs.name }} path: '*/dist/' @@ -779,9 +779,9 @@ jobs: issues: read steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -793,7 +793,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} @@ -801,7 +801,7 @@ jobs: - name: Install system build tools on Linux if: runner.os == 'Linux' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | @@ -809,7 +809,7 @@ jobs: sudo apt-get install -y build-essential gfortran libopenblas-dev liblapack-dev cmake pkg-config - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -832,7 +832,7 @@ jobs: password: ${{ env.QUAY_ROBOT_TOKEN }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -842,14 +842,14 @@ jobs: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} npmrc-config: ${{ inputs.npmrc-config }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} team-id: ${{ inputs.team-id }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -860,7 +860,7 @@ jobs: - name: Run changeset version if: ( github.event_name == 'push' && github.ref_name == 'main') || github.event_name == 'pull_request' || github.event_name == 'merge_group' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm run version-packages @@ -894,15 +894,15 @@ jobs: - name: Restore prebuild results - uses: milaboratory/github-ci/actions/artifact/restore@v4 + uses: milaboratory/github-ci/actions/artifact/restore@v4-beta with: pattern: prebuild-results-* - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta - name: Run build - main metapackage - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -921,7 +921,7 @@ jobs: run: echo "user-id=$(gh api "/users/${{ steps.app-token.outputs.app-slug }}[bot]" --jq .id)" >> "$GITHUB_OUTPUT" - name: Commit changed files to main - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta if: steps.check-changes.outputs.has-changes == '1' env: USER_ID: ${{ steps.get-user-id.outputs.user-id }} @@ -965,7 +965,7 @@ jobs: if: github.ref_name == 'main' && steps.check-changes.outputs.has-changes == '0' && inputs.create-tag == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4 + uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -995,12 +995,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-matrix.yaml b/.github/workflows/node-matrix.yaml index 0e6d8cfa..52b986de 100644 --- a/.github/workflows/node-matrix.yaml +++ b/.github/workflows/node-matrix.yaml @@ -439,7 +439,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ fromJSON(steps.context.outputs.is-release) }} @@ -462,17 +462,17 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - name: Install pipx rockylinux - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta if: runner.os == 'Linux' && inputs.python-version != '' with: dump-stdout: false @@ -481,7 +481,7 @@ jobs: python3 -m pipx ensurepath echo "$HOME/.local/bin" >> $GITHUB_PATH - - uses: milaboratory/github-ci/actions/r/prepare@v4 + - uses: milaboratory/github-ci/actions/r/prepare@v4-beta if: inputs.r-version != '' with: r-version: ${{ inputs.r-version }} @@ -489,21 +489,21 @@ jobs: - name: Configure ccache if: inputs.enable-ccache - uses: milaboratory/github-ci/actions/ccache@v4 + uses: milaboratory/github-ci/actions/ccache@v4-beta with: options: ${{ inputs.ccache-options }} - name: Cache additional paths - uses: actions/cache@v4 + uses: actions/cache@v4-beta if: inputs.cache-paths != '' with: path: ${{ inputs.cache-paths }} key: ${{ runner.os }}-${{ runner.arch }}-cache-additional-${{ inputs.cache-version }} - name: Load MiLaboratories custom CLI tools - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - - uses: milaboratory/github-ci/blocks/node/test@v4 + - uses: milaboratory/github-ci/blocks/node/test@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -519,7 +519,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: CodeSign binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4 + uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4-beta if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -543,7 +543,7 @@ jobs: - name: CodeSign binary on Windows if: runner.os == 'Windows' && inputs.sign-binaries != '' - uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4 + uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4-beta with: binaries: ${{ inputs.sign-binaries }} code-sign-chain: ${{ secrets.WIN_SIGN_CERT }} @@ -552,7 +552,7 @@ jobs: access-token: ${{ steps.gcp-auth.outputs.access_token }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE }} @@ -567,7 +567,7 @@ jobs: npm run --if-present after-prebuild - name: Saving build artifacts for publish step - uses: milaboratory/github-ci/actions/artifact/save@v4 + uses: milaboratory/github-ci/actions/artifact/save@v4-beta id: build-artifacts if: inputs.build-artifacts != '' with: @@ -594,12 +594,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -632,7 +632,7 @@ jobs: needs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4 + - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -651,17 +651,17 @@ jobs: environment: release steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4 + uses: milaboratory/github-ci/actions/node/prepare@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -674,7 +674,7 @@ jobs: install-deps: false - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta with: package-json-path: "${{ github.workspace }}/package.json" registry-url: ${{ inputs.registry-url }} @@ -704,19 +704,19 @@ jobs: - release steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: milaboratory/github-ci/actions/artifact/restore@v4 + - uses: milaboratory/github-ci/actions/artifact/restore@v4-beta id: build-artifacts if: inputs.build-artifacts != '' with: pattern: build-artifacts-${{ matrix.os }}-${{ matrix.arch }} - name: Notarize binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4 + uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4-beta if: runner.os == 'macOS' with: paths: ${{ inputs.notarize-paths }} @@ -743,17 +743,17 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4 + uses: milaboratory/github-ci/actions/node/prepare@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -765,26 +765,26 @@ jobs: update-npm: true install-deps: true - - uses: milaboratory/github-ci/actions/python/prepare@v4 + - uses: milaboratory/github-ci/actions/python/prepare@v4-beta if: inputs.python-version != '' with: python-version: ${{ inputs.python-version }} cache-version: ${{ inputs.cache-version }} - - uses: milaboratory/github-ci/actions/r/prepare@v4 + - uses: milaboratory/github-ci/actions/r/prepare@v4-beta if: inputs.r-version != '' with: r-version: ${{ inputs.r-version }} # cache-version: ${{ inputs.cache-version }} - - uses: milaboratory/github-ci/actions/artifact/restore@v4 + - uses: milaboratory/github-ci/actions/artifact/restore@v4-beta id: build-artifacts if: inputs.build-artifacts != '' with: pattern: build-artifacts-* - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE }} @@ -806,10 +806,10 @@ jobs: - name: Load MiLaboratories custom CLI tools if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - name: Publish npm package - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -833,7 +833,7 @@ jobs: fi - name: Create release with tag - uses: milaboratory/github-ci/actions/release/create-with-tag@v4 + uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta env: NPM_PKG_VERSION: ${{ needs.release.outputs.package-version }} with: @@ -862,12 +862,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.release.outputs.package-version }} with: diff --git a/.github/workflows/node-simple-pnpm-k8s.yaml b/.github/workflows/node-simple-pnpm-k8s.yaml index f51b1214..72400087 100644 --- a/.github/workflows/node-simple-pnpm-k8s.yaml +++ b/.github/workflows/node-simple-pnpm-k8s.yaml @@ -296,22 +296,22 @@ jobs: permissions: id-token: write steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: azure/setup-kubectl@v4 + - uses: azure/setup-kubectl@v4-beta with: version: ${{ inputs.kubectl-version }} - - uses: azure/setup-helm@v4 + - uses: azure/setup-helm@v4-beta with: version: ${{ inputs.helm-version }} - uses: google-github-actions/setup-gcloud@v2 - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: "0" @@ -346,13 +346,13 @@ jobs: - name: Configure AWS credentials if: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE != '' }} - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} aws-region: ${{ inputs.aws-region }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta if: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET != '' }} with: storage-provider: "s3" @@ -377,7 +377,7 @@ jobs: echo "PL_TEST_USER=${PL_CI_TEST_USER:-testuser1}" >> "${GITHUB_ENV}" echo "PL_TEST_PASSWORD=${PL_CI_TEST_PASSWORD:-testpassword1}" >> "${GITHUB_ENV}" - - uses: milaboratory/github-ci/actions/k8s/helm-deployment@v4 + - uses: milaboratory/github-ci/actions/k8s/helm-deployment@v4-beta with: helm-release-name: ${{ env.HELM_RELEASE_NAME }} helm-chart-name: ${{ inputs.helm-chart-name }} @@ -417,7 +417,7 @@ jobs: done - id: test - uses: milaboratory/github-ci/blocks/monorepo/test-pl-k8s-pnpm@v4 + uses: milaboratory/github-ci/blocks/monorepo/test-pl-k8s-pnpm@v4-beta env: PL_DOCKER_REGISTRY_PUSH_TO: ${{ inputs.pl-docker-registry-push-to }} with: @@ -461,14 +461,14 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test integration google-batch - - uses: milaboratory/github-ci/blocks/notify/slack/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/slack/tests@v4-beta env: NPM_PKG_VERSION: ${{ needs.run-tests.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-simple-pnpm.yaml b/.github/workflows/node-simple-pnpm.yaml index 764f79a1..fb57885a 100644 --- a/.github/workflows/node-simple-pnpm.yaml +++ b/.github/workflows/node-simple-pnpm.yaml @@ -440,7 +440,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} current-version: ${{ steps.context.outputs.current-version }} @@ -451,13 +451,13 @@ jobs: needs: - init steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PACKAGE_PATH: ${{ inputs.package-path }} with: @@ -479,21 +479,21 @@ jobs: - metadata steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} fetch-depth: '0' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -504,13 +504,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Check for Changesets - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BRANCH_NAME: ${{ inputs.changeset-default-branch }} with: @@ -538,7 +538,7 @@ jobs: id-token: write contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -550,14 +550,14 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -586,14 +586,14 @@ jobs: password: ${{ env.QUAY_ROBOT_TOKEN }} ecr: false - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} team-id: ${{ inputs.team-id }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -623,7 +623,7 @@ jobs: - name: Run changeset version if: ( github.event_name == 'push' && github.ref_name == 'main') || github.event_name == 'pull_request' || github.event_name == 'merge_group' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm run version-packages @@ -663,9 +663,9 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -677,7 +677,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} @@ -685,14 +685,14 @@ jobs: fetch-depth: '0' - name: Check infrastructure requirements for publication - uses: milaboratory/github-ci/actions/node/require-latest@v4 + uses: milaboratory/github-ci/actions/node/require-latest@v4-beta with: packages: | @platforma-sdk/block-tools @platforma-sdk/tengo-builder - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -723,14 +723,14 @@ jobs: - name: Prepare environment for Golang when requested if: inputs.golang-version != '' - uses: milaboratory/github-ci/actions/golang/prepare@v4 + uses: milaboratory/github-ci/actions/golang/prepare@v4-beta with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.cache-version }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-hashfiles-path }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -740,7 +740,7 @@ jobs: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} npmrc-config: ${{ inputs.npmrc-config }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} @@ -798,7 +798,7 @@ jobs: fi - name: Run build - uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4 + uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -818,7 +818,7 @@ jobs: - name: Run tests id: test - uses: milaboratory/github-ci/blocks/monorepo/test-pl-docker-pnpm@v4 + uses: milaboratory/github-ci/blocks/monorepo/test-pl-docker-pnpm@v4-beta if: inputs.test env: PL_ADDRESS: "http://127.0.0.1:6345" @@ -844,7 +844,7 @@ jobs: test-results-reports: ${{ inputs.test-results-reports }} - name: Run build (before publish) - uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4 + uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4-beta env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -863,7 +863,7 @@ jobs: test-results-reports: ${{ inputs.test-results-reports }} - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta - name: Get GitHub App User ID if: steps.check-changes.outputs.has-changes == '1' @@ -873,7 +873,7 @@ jobs: run: echo "user-id=$(gh api "/users/${{ steps.app-token.outputs.app-slug }}[bot]" --jq .id)" >> "$GITHUB_OUTPUT" - name: Commit changed files to main - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta if: steps.check-changes.outputs.has-changes == '1' env: USER_ID: ${{ steps.get-user-id.outputs.user-id }} @@ -921,7 +921,7 @@ jobs: if: github.ref_name == 'main' && steps.check-changes.outputs.has-changes == '0' && inputs.create-tag == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4 + uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -951,12 +951,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/slack/release@v4 + - uses: milaboratory/github-ci/blocks/notify/slack/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -980,7 +980,7 @@ jobs: steps: - name: Check workflow duration id: check-duration - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: GH_TOKEN: ${{ github.token }} GITHUB_REPOSITORY: ${{ github.repository }} @@ -1024,7 +1024,7 @@ jobs: - name: Send Slack notification for slow merge queue if: fromJSON(steps.check-duration.outputs.data).alert == 'true' && inputs.notify-slack - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ secrets.SLACK_BOT_TOKEN }} method: chat.postMessage diff --git a/.github/workflows/node-simple.yaml b/.github/workflows/node-simple.yaml index ae8b2a9d..39e19fac 100644 --- a/.github/workflows/node-simple.yaml +++ b/.github/workflows/node-simple.yaml @@ -332,7 +332,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -350,7 +350,7 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -358,18 +358,18 @@ jobs: sudo apt-get update && \ DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -378,7 +378,7 @@ jobs: ghwa_set_output npm-pkg-name "${NPM_PKG_NAME}" ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - - uses: milaboratory/github-ci/blocks/node/build/generic@v4 + - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta env: NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} with: @@ -411,12 +411,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4 + - uses: milaboratory/github-ci/blocks/notify/build@v4-beta env: NPM_PKG_VERSION: ${{ needs.build.outputs.npm-pkg-version }} with: @@ -441,7 +441,7 @@ jobs: - build steps: - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -449,18 +449,18 @@ jobs: sudo apt-get update && \ DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -470,7 +470,7 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - id: test - uses: milaboratory/github-ci/blocks/node/test@v4 + uses: milaboratory/github-ci/blocks/node/test@v4-beta env: NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} with: @@ -506,13 +506,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4 + - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta env: NPM_PKG_VERSION: ${{ needs.test.outputs.npm-pkg-version }} with: @@ -555,7 +555,7 @@ jobs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4 + - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -600,7 +600,7 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -609,20 +609,20 @@ jobs: DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/env@v4 + - uses: milaboratory/github-ci/actions/env@v4-beta with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v4-beta with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -632,14 +632,14 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta with: npm-pkg-name: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-name }} npm-pkg-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} registry-url: ${{ inputs.registry-url }} npm-auth-token: ${{ env.NPMJS_TOKEN || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4 + - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' env: @@ -686,7 +686,7 @@ jobs: - name: Add MiLab shell utils to PATH if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - name: Publish npm package if: steps.npm-pkg-status.outputs.exist == '0' @@ -717,7 +717,7 @@ jobs: - name: Create release with tag if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4 + uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta env: NPM_PKG_VERSION: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} with: @@ -747,12 +747,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4 + - uses: milaboratory/github-ci/blocks/notify/release@v4-beta env: NPM_PKG_VERSION: ${{ needs.publish-to-npm.outputs.npm-pkg-version }} with: diff --git a/actions/action-test/action.yaml b/actions/action-test/action.yaml index 9457247a..7c264323 100644 --- a/actions/action-test/action.yaml +++ b/actions/action-test/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Run tests id: tests - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | diff --git a/actions/artifact/create-empty/action.yaml b/actions/artifact/create-empty/action.yaml index 543eb466..f22a40dc 100644 --- a/actions/artifact/create-empty/action.yaml +++ b/actions/artifact/create-empty/action.yaml @@ -2,14 +2,14 @@ name: Create empty artifact for regression tests author: 'MiLaboratories' description: | Create empty artifact for regression tests because now - actions/upload-artifact/merge@v4 doesn't support option + actions/upload-artifact/merge@v4-beta doesn't support option if-no-files-found: ignore runs: using: "composite" steps: - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v4-beta with: name: test-regression-empty path: ${{ github.action_path }}/init.txt diff --git a/actions/artifact/restore/action.yaml b/actions/artifact/restore/action.yaml index fc463e1e..518235be 100644 --- a/actions/artifact/restore/action.yaml +++ b/actions/artifact/restore/action.yaml @@ -60,7 +60,7 @@ runs: archive_name="artifact-5b3513f5" echo "name=${archive_name}" >> "${GITHUB_OUTPUT}" - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v4-beta with: name: ${{ inputs.name }} pattern: ${{ inputs.pattern }} diff --git a/actions/artifact/save/action.yaml b/actions/artifact/save/action.yaml index 473c07ae..2bd974ba 100644 --- a/actions/artifact/save/action.yaml +++ b/actions/artifact/save/action.yaml @@ -94,7 +94,7 @@ runs: archive_name="artifact-5b3513f5" echo "name=${archive_name}" >> "${GITHUB_OUTPUT}" - - uses: milaboratory/github-ci/actions/files/list@v4 + - uses: milaboratory/github-ci/actions/files/list@v4-beta id: artifact-files with: patterns: ${{ inputs.path }} @@ -128,7 +128,7 @@ runs: # - uses: fawazahmed0/action-debug-vscode@main # if: inputs.interactive-debug == 'true' - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v4-beta with: name: ${{ inputs.name }} if-no-files-found: ${{ inputs.if-no-files-found }} diff --git a/actions/artifact/write-metadata/action.yaml b/actions/artifact/write-metadata/action.yaml index db700f84..85cddcc1 100644 --- a/actions/artifact/write-metadata/action.yaml +++ b/actions/artifact/write-metadata/action.yaml @@ -46,11 +46,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Get repository name id: repo - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | REPO=$(echo "${GITHUB_REPOSITORY}" | cut -d'/' -f2) @@ -58,7 +58,7 @@ runs: - name: Get version type id: version-type - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -69,7 +69,7 @@ runs: echo "snapshot" fi - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta env: DB_URL: ${{ inputs.db-url }} DB_USER: ${{ inputs.db-user }} diff --git a/actions/aws/cloudfront/action.yaml b/actions/aws/cloudfront/action.yaml index 363d1885..a3343d6d 100644 --- a/actions/aws/cloudfront/action.yaml +++ b/actions/aws/cloudfront/action.yaml @@ -45,12 +45,12 @@ runs: using: "composite" steps: - - uses: aws-actions/configure-aws-credentials@v4 + - uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.aws-iam-role-to-assume }} aws-region: ${{ inputs.aws-region }} - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta env: CF_DIST_ID: ${{ inputs.aws-cloudfront-distribution-id }} CF_S3_BUCKET_NAME: ${{ inputs.aws-cloudfront-s3-bucket-name }} diff --git a/actions/aws/prefix-delete/action.yaml b/actions/aws/prefix-delete/action.yaml index c01fdc9a..da05d651 100644 --- a/actions/aws/prefix-delete/action.yaml +++ b/actions/aws/prefix-delete/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Delete objects under a prefix - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BUCKET_NAME: ${{ inputs.s3-bucket-name }} PREFIX: ${{ inputs.s3-prefix-name }} diff --git a/actions/ccache/action.yaml b/actions/ccache/action.yaml index ed167e7f..71f80b37 100644 --- a/actions/ccache/action.yaml +++ b/actions/ccache/action.yaml @@ -102,7 +102,7 @@ runs: evict-old-files: ${{ inputs.evict-old-files }} - name: Configure ccache - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OPTS: ${{ inputs.options }} with: diff --git a/actions/context/action.yaml b/actions/context/action.yaml index 429a4c1d..bdc40be4 100644 --- a/actions/context/action.yaml +++ b/actions/context/action.yaml @@ -56,4 +56,4 @@ runs: steps: - id: versions - uses: milaboratory/github-ci/actions/context/get@v4 + uses: milaboratory/github-ci/actions/context/get@v4-beta diff --git a/actions/context/get/action.yaml b/actions/context/get/action.yaml index 43e45727..4fa92e24 100644 --- a/actions/context/get/action.yaml +++ b/actions/context/get/action.yaml @@ -30,7 +30,7 @@ runs: steps: - id: needs_update - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: CTX_PATH: ${{ github.action_path }}/../ctx diff --git a/actions/context/init/action.yaml b/actions/context/init/action.yaml index 74e40a4f..7d3251d2 100644 --- a/actions/context/init/action.yaml +++ b/actions/context/init/action.yaml @@ -36,7 +36,7 @@ runs: fetch-tags: true - id: versions - uses: milaboratory/github-ci/actions/detect-version@v4 + uses: milaboratory/github-ci/actions/detect-version@v4-beta with: canonize: ${{ inputs.version-canonize }} fetch-depth: ${{ inputs.version-fetch-depth }} diff --git a/actions/docker/build/action.yaml b/actions/docker/build/action.yaml index 975b6382..dc6ebff1 100644 --- a/actions/docker/build/action.yaml +++ b/actions/docker/build/action.yaml @@ -71,7 +71,7 @@ runs: using: 'composite' steps: - name: Build Docker Image - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: build-image env: DOCKERFILE: ${{ inputs.dockerfile }} diff --git a/actions/docker/pl-compose/action.yaml b/actions/docker/pl-compose/action.yaml index fbe4a8ce..071d9f33 100644 --- a/actions/docker/pl-compose/action.yaml +++ b/actions/docker/pl-compose/action.yaml @@ -52,7 +52,7 @@ runs: steps: - name: Install Docker Compose - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | @@ -105,6 +105,13 @@ runs: # depending on moon phases and mood of the scheduler god. :( export PL_MAIN_ROOT="$(TMPDIR=${RUNNER_WORKSPACE} mktemp --directory)" + # Run platforma as the runner user (not root) so OS file-mode permissions + # are enforced inside the container (required by exec.writable tests). + # PL_UID/PL_GID are consumed by docker-compose.yaml. + export PL_UID="$(id -u)" + export PL_GID="$(id -g)" + echo "Platforma container will run as ${PL_UID}:${PL_GID}" + echo "main-root=${PL_MAIN_ROOT}" >> "${GITHUB_OUTPUT}" docker compose --file "${ACTION_PATH}/docker-compose.yaml" config | tee "${PL_MAIN_ROOT}/compose.yaml" @@ -116,7 +123,7 @@ runs: # # Ordering of post-steps is reversed. We need to declare the last step first. # - - uses: milaboratory/github-ci/actions/post/shell@v4 + - uses: milaboratory/github-ci/actions/post/shell@v4-beta env: PL_MAIN_ROOT: ${{ steps.launch-pl.outputs.main-root }} with: @@ -125,14 +132,14 @@ runs: echo "Removing '${PL_MAIN_ROOT}'" rm -rf "${PL_MAIN_ROOT}" - - uses: milaboratory/github-ci/actions/post/artifact@v4 + - uses: milaboratory/github-ci/actions/post/artifact@v4-beta with: name: platforma-dump archive: true path: | ${{ steps.launch-pl.outputs.main-root }} - - uses: milaboratory/github-ci/actions/post/shell@v4 + - uses: milaboratory/github-ci/actions/post/shell@v4-beta env: ACTION_PATH: ${{ github.action_path }} PL_MAIN_ROOT: ${{ steps.launch-pl.outputs.main-root }} diff --git a/actions/docker/pl-compose/docker-compose.yaml b/actions/docker/pl-compose/docker-compose.yaml index 80a20aa3..a10f480b 100644 --- a/actions/docker/pl-compose/docker-compose.yaml +++ b/actions/docker/pl-compose/docker-compose.yaml @@ -18,7 +18,7 @@ services: platforma: image: ${PL_DOCKER_REGISTRY}:${PL_DOCKER_TAG} - user: root + user: "${PL_UID}:${PL_GID}" # Packages can be large. We don't want to save them after execution. command: | @@ -38,9 +38,11 @@ services: ports: - "6345:6345" - tmpfs: [ /tmp ] + # tmpfs HOME so pl/child processes have a writable home with no host pollution. + tmpfs: [ /tmp, /pl-home ] environment: + - "HOME=/pl-home" - "MI_LICENSE=${MI_LICENSE:-${PL_LICENSE:-}}" - "PL_LICENSE=${PL_LICENSE:-}" - "PL_DATA_CREATE_BUCKET=${PL_DATA_CREATE_BUCKET:-true}" diff --git a/actions/docker/push/action.yaml b/actions/docker/push/action.yaml index 1b951bf1..ae25cefc 100644 --- a/actions/docker/push/action.yaml +++ b/actions/docker/push/action.yaml @@ -61,7 +61,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/docker/login@v4 + - uses: milaboratory/github-ci/actions/docker/login@v4-beta with: registry: ${{ inputs.registry }} user: ${{ inputs.auth-user }} @@ -69,7 +69,7 @@ runs: - name: Render target tag names id: targets - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SOURCE_TAG: ${{ inputs.source }} TARGET_REGISTRY: ${{ inputs.registry }} @@ -99,7 +99,7 @@ runs: - name: Pushing tags to '${{ inputs.registry }}' id: push - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SOURCE_TAG: ${{ inputs.source }} with: @@ -123,6 +123,6 @@ runs: - name: Convert targets list to JSON array id: push-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ fromJSON(steps.push.outputs.data).pushed }} diff --git a/actions/docker/scan-docker-repo/action.yaml b/actions/docker/scan-docker-repo/action.yaml index 0d1729fc..b30f968f 100644 --- a/actions/docker/scan-docker-repo/action.yaml +++ b/actions/docker/scan-docker-repo/action.yaml @@ -166,7 +166,7 @@ runs: echo "skipped-file=${skipped_file}" >> "${GITHUB_OUTPUT}" - name: Post save plan - uses: milaboratory/github-ci/actions/post/artifact@v4 + uses: milaboratory/github-ci/actions/post/artifact@v4-beta if: inputs.mode == 'plan' with: name: ${{ inputs.report-name }} @@ -174,7 +174,7 @@ runs: path: ${{ steps.init.outputs.skipped-file }} - name: Post save report - uses: milaboratory/github-ci/actions/post/artifact@v4 + uses: milaboratory/github-ci/actions/post/artifact@v4-beta if: inputs.mode == 'scan' with: name: ${{ inputs.report-name }} diff --git a/actions/docker/scan-pnpm-repo/action.yaml b/actions/docker/scan-pnpm-repo/action.yaml index b4202529..3728d7f6 100644 --- a/actions/docker/scan-pnpm-repo/action.yaml +++ b/actions/docker/scan-pnpm-repo/action.yaml @@ -81,7 +81,7 @@ runs: echo "skipped-file=${skipped_file}" >> "${GITHUB_OUTPUT}" - name: Post save report - uses: milaboratory/github-ci/actions/post/artifact@v4 + uses: milaboratory/github-ci/actions/post/artifact@v4-beta with: name: trivy-report archive: true diff --git a/actions/env/action.yaml b/actions/env/action.yaml index f1256f84..6286e34d 100644 --- a/actions/env/action.yaml +++ b/actions/env/action.yaml @@ -39,12 +39,12 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/env/set@v4 + - uses: milaboratory/github-ci/actions/env/set@v4-beta with: json: ${{ inputs.inputs }} mask-values: false - - uses: milaboratory/github-ci/actions/env/set@v4 + - uses: milaboratory/github-ci/actions/env/set@v4-beta with: json: ${{ inputs.secrets }} mask-values: true diff --git a/actions/env/set/action.yaml b/actions/env/set/action.yaml index ca6bc8be..1694c244 100644 --- a/actions/env/set/action.yaml +++ b/actions/env/set/action.yaml @@ -30,7 +30,7 @@ runs: steps: - name: Set from if: inputs.json != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ENV_TO_SET: ${{ inputs.json }} MASK: ${{ inputs.mask-values }} @@ -54,7 +54,7 @@ runs: - name: Set from if: inputs.list != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ENV_TO_SET: ${{ inputs.list }} MASK: ${{ inputs.mask-values }} diff --git a/actions/gcloud-kms-sign/action.yaml b/actions/gcloud-kms-sign/action.yaml index 2f501c5b..b8bb69d2 100644 --- a/actions/gcloud-kms-sign/action.yaml +++ b/actions/gcloud-kms-sign/action.yaml @@ -84,7 +84,7 @@ runs: version: ${{ inputs.gcloud-sdk-version }} - name: Create sig file - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: FILE_PATH: ${{ inputs.file-path }} with: diff --git a/actions/gcp/prefix-delete/action.yaml b/actions/gcp/prefix-delete/action.yaml index 37164504..ea84b5aa 100644 --- a/actions/gcp/prefix-delete/action.yaml +++ b/actions/gcp/prefix-delete/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Delete objects under a prefix - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: BUCKET_NAME: ${{ inputs.gcs-bucket-name }} PREFIX: ${{ inputs.gcs-prefix-name }} diff --git a/actions/git/auth/action.yaml b/actions/git/auth/action.yaml index c6507155..f47ca6c3 100644 --- a/actions/git/auth/action.yaml +++ b/actions/git/auth/action.yaml @@ -18,7 +18,7 @@ inputs: runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta env: GH_TOKEN: ${{ inputs.github-token }} GH_URL_REWRITE: ${{ inputs.github-url-rewrite }} diff --git a/actions/golang/cache/action.yaml b/actions/golang/cache/action.yaml index bf27d655..306f20c7 100644 --- a/actions/golang/cache/action.yaml +++ b/actions/golang/cache/action.yaml @@ -35,7 +35,7 @@ runs: steps: - name: Cache Golang modules on Linux if: runner.os == 'Linux' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: save-always: ${{ inputs.cache-save-always }} path: | @@ -47,7 +47,7 @@ runs: - name: Cache Golang modules on macOS if: runner.os == 'macOS' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: save-always: ${{ inputs.cache-save-always }} path: | @@ -59,7 +59,7 @@ runs: - name: Cache Golang modules on Windows if: runner.os == 'Windows' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: save-always: ${{ inputs.cache-save-always }} path: | diff --git a/actions/golang/prepare/action.yaml b/actions/golang/prepare/action.yaml index 3e4bab86..fd350077 100644 --- a/actions/golang/prepare/action.yaml +++ b/actions/golang/prepare/action.yaml @@ -60,7 +60,7 @@ runs: cache: ${{ inputs.cache-enabled-in-setup-go }} - name: Setup Cache for Golang project - uses: milaboratory/github-ci/actions/golang/cache@v4 + uses: milaboratory/github-ci/actions/golang/cache@v4-beta with: cache-version: ${{ inputs.cache-version }} cache-dependency-hashfiles-path: ${{ inputs.cache-dependency-hashfiles-path }} diff --git a/actions/helpers/default-value/action.yaml b/actions/helpers/default-value/action.yaml index 6cab3973..fb65b40d 100644 --- a/actions/helpers/default-value/action.yaml +++ b/actions/helpers/default-value/action.yaml @@ -27,7 +27,7 @@ runs: steps: - id: value - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: VALUE: ${{ inputs.value }} DEFAULT: ${{ inputs.default }} diff --git a/actions/helpers/jq/action.yaml b/actions/helpers/jq/action.yaml index 8772fc6a..25b8f088 100644 --- a/actions/helpers/jq/action.yaml +++ b/actions/helpers/jq/action.yaml @@ -25,7 +25,7 @@ runs: steps: - id: jq - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: INPUT_FILE: ${{ inputs.file }} JQ_SELECT: ${{ inputs.select }} diff --git a/actions/helpers/merge-status/action.yaml b/actions/helpers/merge-status/action.yaml index cb2182e6..dc49768d 100644 --- a/actions/helpers/merge-status/action.yaml +++ b/actions/helpers/merge-status/action.yaml @@ -65,7 +65,7 @@ runs: steps: - id: merge - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: INPUT_STATUSES: ${{ inputs.statuses }} with: diff --git a/actions/helpers/safe-ctx/action.yaml b/actions/helpers/safe-ctx/action.yaml index 1ac54194..ed6b903e 100644 --- a/actions/helpers/safe-ctx/action.yaml +++ b/actions/helpers/safe-ctx/action.yaml @@ -13,7 +13,7 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: GITHUB_CONTEXT: ${{ toJSON(github) }} with: diff --git a/actions/java/gradle/cache/action.yaml b/actions/java/gradle/cache/action.yaml index 5c155800..af11c22d 100644 --- a/actions/java/gradle/cache/action.yaml +++ b/actions/java/gradle/cache/action.yaml @@ -106,7 +106,7 @@ runs: using: composite steps: - id: job-id - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: CACHE_KEY: ${{ inputs.job-id }} with: diff --git a/actions/java/gradle/properties/read/action.yaml b/actions/java/gradle/properties/read/action.yaml index 772068d9..8a5022a5 100644 --- a/actions/java/gradle/properties/read/action.yaml +++ b/actions/java/gradle/properties/read/action.yaml @@ -67,7 +67,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 + - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta with: build-root-directory: ${{ inputs.project-dir }} gradle-home-cache-includes: ${{ inputs.gradle-home-cache-includes }} diff --git a/actions/java/gradle/properties/set/action.yaml b/actions/java/gradle/properties/set/action.yaml index 010870bd..68ea1e36 100644 --- a/actions/java/gradle/properties/set/action.yaml +++ b/actions/java/gradle/properties/set/action.yaml @@ -42,6 +42,6 @@ runs: - name: Dump contents of gradle.properties id: props - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: cat ~/.gradle/gradle.properties diff --git a/actions/k8s/helm-deployment/action.yaml b/actions/k8s/helm-deployment/action.yaml index ea632637..b59ae4cf 100644 --- a/actions/k8s/helm-deployment/action.yaml +++ b/actions/k8s/helm-deployment/action.yaml @@ -71,7 +71,7 @@ runs: steps: - name: Helm repo add platforma if: inputs.helm-chart-name == 'platforma' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | diff --git a/actions/matrix/read/action.yaml b/actions/matrix/read/action.yaml index a432a957..5ba1ca27 100644 --- a/actions/matrix/read/action.yaml +++ b/actions/matrix/read/action.yaml @@ -17,7 +17,7 @@ runs: using: "composite" steps: - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v4-beta - id: context shell: bash diff --git a/actions/node/cache-pnpm/action.yaml b/actions/node/cache-pnpm/action.yaml index 915e31df..e17fa5cf 100644 --- a/actions/node/cache-pnpm/action.yaml +++ b/actions/node/cache-pnpm/action.yaml @@ -30,7 +30,7 @@ runs: run: echo "dir=$(pnpm store path)" >> ${GITHUB_OUTPUT} - name: Cache Node modules - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: path: | ${{ steps.pnpm-store-dir.outputs.dir }} diff --git a/actions/node/cache/action.yaml b/actions/node/cache/action.yaml index ec447825..a7e8b5e6 100644 --- a/actions/node/cache/action.yaml +++ b/actions/node/cache/action.yaml @@ -37,7 +37,7 @@ runs: steps: - name: Cache Electron libs - uses: actions/cache@v4 + uses: actions/cache@v4-beta if: inputs.is-electron-application == 'true' with: path: | @@ -50,7 +50,7 @@ runs: - name: Cache local 'node_modules' if: inputs.local-cache == 'on' && inputs.is-electron-application == 'true' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: path: node_modules key: ${{ runner.os }}-${{ runner.arch }}-cache-${{ inputs.cache-version }}-node_modules-${{ hashFiles(inputs.hashfiles-search-path) }} @@ -63,7 +63,7 @@ runs: run: echo "dir=$(npm config get cache)" >> ${GITHUB_OUTPUT} - name: Cache Node modules - uses: actions/cache@v4 + uses: actions/cache@v4-beta if: inputs.is-electron-application == 'false' with: path: ${{ steps.npm-cache-dir.outputs.dir }} diff --git a/actions/node/npm-pkg-status/action.yaml b/actions/node/npm-pkg-status/action.yaml index cc40f60f..86709b2a 100644 --- a/actions/node/npm-pkg-status/action.yaml +++ b/actions/node/npm-pkg-status/action.yaml @@ -55,7 +55,7 @@ runs: steps: - name: Read package name and version if: inputs.package-json-path != '0' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: package env: NPM_PKG_NAME: ${{ inputs.npm-pkg-name }} @@ -83,7 +83,7 @@ runs: ghwa_set_output version "${NPM_PKG_VERSION}" - name: Check NPM package status in a registry - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: npm-pkg-status env: NPM_PKG_NAME: ${{ fromJSON(steps.package.outputs.data).name }} @@ -151,7 +151,7 @@ runs: ghwa_set_output exist "0" - id: set-status - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | echo "${{ fromJSON(steps.npm-pkg-status.outputs.data).exist }}" diff --git a/actions/node/prepare-pnpm/action.yaml b/actions/node/prepare-pnpm/action.yaml index 4ed847ce..b2f3f8f5 100644 --- a/actions/node/prepare-pnpm/action.yaml +++ b/actions/node/prepare-pnpm/action.yaml @@ -43,19 +43,19 @@ runs: steps: - name: Install NodeJS - ${{ inputs.node-version }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v4-beta with: node-version: ${{ inputs.node-version }} - name: Re-Write .npmrc config - uses: milaboratory/github-ci/actions/utils/create-npmrc@v4 + uses: milaboratory/github-ci/actions/utils/create-npmrc@v4-beta if: inputs.npmrc-config != '' with: npmrcConfig: ${{ inputs.npmrc-config }} - name: Install pnpm - ${{ inputs.pnpm-version }} if: inputs.pnpm-version != '' - uses: pnpm/action-setup@v4 + uses: pnpm/action-setup@v4-beta with: version: ${{ inputs.pnpm-version }} @@ -65,7 +65,7 @@ runs: run: corepack enable pnpm - name: Set up cache for a NodeJS PNPM application - uses: milaboratory/github-ci/actions/node/cache-pnpm@v4 + uses: milaboratory/github-ci/actions/node/cache-pnpm@v4-beta with: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} cache-version: ${{ inputs.cache-version }} diff --git a/actions/node/prepare/action.yaml b/actions/node/prepare/action.yaml index de2823e3..eaed2748 100644 --- a/actions/node/prepare/action.yaml +++ b/actions/node/prepare/action.yaml @@ -82,7 +82,7 @@ runs: steps: - name: Install NodeJS - ${{ inputs.node-version }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v4-beta with: node-version: ${{ inputs.node-version }} registry-url: ${{ inputs.registry-url }} @@ -90,13 +90,13 @@ runs: always-auth: ${{ inputs.always-auth }} - name: Re-Write .npmrc config - uses: milaboratory/github-ci/actions/utils/create-npmrc@v4 + uses: milaboratory/github-ci/actions/utils/create-npmrc@v4-beta if: inputs.npmrc-config != '' with: npmrcConfig: ${{ inputs.npmrc-config }} - name: Set up cache for a NodeJS/Electron application - uses: milaboratory/github-ci/actions/node/cache@v4 + uses: milaboratory/github-ci/actions/node/cache@v4-beta with: is-electron-application: ${{ inputs.is-electron-application }} hashfiles-search-path: ${{ inputs.hashfiles-search-path }} diff --git a/actions/notify/slack/build-failed/action.yaml b/actions/notify/slack/build-failed/action.yaml index 71359906..02592665 100644 --- a/actions/notify/slack/build-failed/action.yaml +++ b/actions/notify/slack/build-failed/action.yaml @@ -34,9 +34,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -135,7 +135,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/build-ready/action.yaml b/actions/notify/slack/build-ready/action.yaml index 86bb93b7..1ec4a3d2 100644 --- a/actions/notify/slack/build-ready/action.yaml +++ b/actions/notify/slack/build-ready/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -183,7 +183,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-cancelled/action.yaml b/actions/notify/slack/deployment-cancelled/action.yaml index 54f902fe..a54adddc 100644 --- a/actions/notify/slack/deployment-cancelled/action.yaml +++ b/actions/notify/slack/deployment-cancelled/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -141,7 +141,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-failed/action.yaml b/actions/notify/slack/deployment-failed/action.yaml index fc7cbc9d..15add74d 100644 --- a/actions/notify/slack/deployment-failed/action.yaml +++ b/actions/notify/slack/deployment-failed/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -142,7 +142,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-success/action.yaml b/actions/notify/slack/deployment-success/action.yaml index 45262d9e..43da62df 100644 --- a/actions/notify/slack/deployment-success/action.yaml +++ b/actions/notify/slack/deployment-success/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -141,7 +141,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/publish/action.yaml b/actions/notify/slack/publish/action.yaml index ec2f6c4e..b4a93078 100644 --- a/actions/notify/slack/publish/action.yaml +++ b/actions/notify/slack/publish/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -170,7 +170,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/release-failed/action.yaml b/actions/notify/slack/release-failed/action.yaml index 9abba6d1..369f4498 100644 --- a/actions/notify/slack/release-failed/action.yaml +++ b/actions/notify/slack/release-failed/action.yaml @@ -37,9 +37,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -128,7 +128,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/release-ready/action.yaml b/actions/notify/slack/release-ready/action.yaml index 76057066..e02cb71c 100644 --- a/actions/notify/slack/release-ready/action.yaml +++ b/actions/notify/slack/release-ready/action.yaml @@ -49,9 +49,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -169,7 +169,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/review-required/action.yaml b/actions/notify/slack/review-required/action.yaml index 659eecd9..6fbc9d16 100644 --- a/actions/notify/slack/review-required/action.yaml +++ b/actions/notify/slack/review-required/action.yaml @@ -33,14 +33,14 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/strings/json-list@v4 + - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta id: reviewers with: input: ${{ inputs.reviewers }} - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -90,7 +90,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/test-regression/action.yaml b/actions/notify/slack/test-regression/action.yaml index 3a06188b..584315b8 100644 --- a/actions/notify/slack/test-regression/action.yaml +++ b/actions/notify/slack/test-regression/action.yaml @@ -42,9 +42,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -133,7 +133,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/tests/action.yaml b/actions/notify/slack/tests/action.yaml index 3f9fc592..1c75e58e 100644 --- a/actions/notify/slack/tests/action.yaml +++ b/actions/notify/slack/tests/action.yaml @@ -45,9 +45,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -159,7 +159,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4 + - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/telegram/build-failed/action.yaml b/actions/notify/telegram/build-failed/action.yaml index 10a55156..5dc4ffac 100644 --- a/actions/notify/telegram/build-failed/action.yaml +++ b/actions/notify/telegram/build-failed/action.yaml @@ -39,9 +39,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -75,7 +75,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/build-ready/action.yaml b/actions/notify/telegram/build-ready/action.yaml index e8aa61fa..2c0ae5ee 100644 --- a/actions/notify/telegram/build-ready/action.yaml +++ b/actions/notify/telegram/build-ready/action.yaml @@ -62,9 +62,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -126,7 +126,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-cancelled/action.yaml b/actions/notify/telegram/deployment-cancelled/action.yaml index a0b753dd..9c191730 100644 --- a/actions/notify/telegram/deployment-cancelled/action.yaml +++ b/actions/notify/telegram/deployment-cancelled/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-failed/action.yaml b/actions/notify/telegram/deployment-failed/action.yaml index e087b730..e5f29a19 100644 --- a/actions/notify/telegram/deployment-failed/action.yaml +++ b/actions/notify/telegram/deployment-failed/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-success/action.yaml b/actions/notify/telegram/deployment-success/action.yaml index be6d2426..8c1c341b 100644 --- a/actions/notify/telegram/deployment-success/action.yaml +++ b/actions/notify/telegram/deployment-success/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/publish/action.yaml b/actions/notify/telegram/publish/action.yaml index a90f6e2e..df6972d1 100644 --- a/actions/notify/telegram/publish/action.yaml +++ b/actions/notify/telegram/publish/action.yaml @@ -62,9 +62,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -112,7 +112,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/release-failed/action.yaml b/actions/notify/telegram/release-failed/action.yaml index 5b1ea7b2..fbcde342 100644 --- a/actions/notify/telegram/release-failed/action.yaml +++ b/actions/notify/telegram/release-failed/action.yaml @@ -43,9 +43,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -76,7 +76,7 @@ runs: {%- endif %} Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/release-ready/action.yaml b/actions/notify/telegram/release-ready/action.yaml index e566176f..d43bb87c 100644 --- a/actions/notify/telegram/release-ready/action.yaml +++ b/actions/notify/telegram/release-ready/action.yaml @@ -63,9 +63,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -119,7 +119,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/review-required/action.yaml b/actions/notify/telegram/review-required/action.yaml index 40515486..c46a6b5b 100644 --- a/actions/notify/telegram/review-required/action.yaml +++ b/actions/notify/telegram/review-required/action.yaml @@ -38,14 +38,14 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/strings/json-list@v4 + - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta id: reviewers with: input: ${{ inputs.reviewers }} - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -77,7 +77,7 @@ runs: {{ product["additional_info"] }} {%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/test-regression/action.yaml b/actions/notify/telegram/test-regression/action.yaml index 5f16fc01..73f93f2e 100644 --- a/actions/notify/telegram/test-regression/action.yaml +++ b/actions/notify/telegram/test-regression/action.yaml @@ -51,9 +51,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -86,7 +86,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/tests/action.yaml b/actions/notify/telegram/tests/action.yaml index aeebc369..094b3873 100644 --- a/actions/notify/telegram/tests/action.yaml +++ b/actions/notify/telegram/tests/action.yaml @@ -58,9 +58,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta - - uses: milaboratory/github-ci/actions/templates/jinja@v4 + - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta id: message with: data: | @@ -104,7 +104,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/python/cache/action.yaml b/actions/python/cache/action.yaml index d99feca4..88005baa 100644 --- a/actions/python/cache/action.yaml +++ b/actions/python/cache/action.yaml @@ -30,7 +30,7 @@ runs: run: echo "dir=$(pip cache dir)" >> ${GITHUB_OUTPUT} - name: Cache Python modules - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: path: ${{ steps.pip-cache.outputs.dir }} key: ${{ runner.os }}-${{ runner.arch }}-cache-pip-${{ inputs.version }}-${{ hashFiles(inputs.hashfiles-search-path) }} diff --git a/actions/python/prepare/action.yaml b/actions/python/prepare/action.yaml index 859674f6..c73d7a08 100644 --- a/actions/python/prepare/action.yaml +++ b/actions/python/prepare/action.yaml @@ -46,7 +46,7 @@ runs: python-version: '${{ inputs.python-version }}' - name: Setup Cache for Python project - uses: milaboratory/github-ci/actions/python/cache@v4 + uses: milaboratory/github-ci/actions/python/cache@v4-beta with: version: ${{ inputs.cache-version }} hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} diff --git a/actions/release/create/action.yaml b/actions/release/create/action.yaml index 1e883755..d7a8d242 100644 --- a/actions/release/create/action.yaml +++ b/actions/release/create/action.yaml @@ -124,7 +124,7 @@ runs: exclude_types: ${{ inputs.changelog-exclude-types }} - id: assets - uses: milaboratory/github-ci/actions/strings/join@v4 + uses: milaboratory/github-ci/actions/strings/join@v4-beta with: input: ${{ inputs.assets }} separator: ',' diff --git a/actions/rust/cache/action.yaml b/actions/rust/cache/action.yaml index 0933788c..a16e20ec 100644 --- a/actions/rust/cache/action.yaml +++ b/actions/rust/cache/action.yaml @@ -25,7 +25,7 @@ runs: steps: - name: Cache Rust Cargo modules - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: path: | ~/.cargo/bin/ diff --git a/actions/rust/prepare/action.yaml b/actions/rust/prepare/action.yaml index dfa1ddd5..0bb9b5b5 100644 --- a/actions/rust/prepare/action.yaml +++ b/actions/rust/prepare/action.yaml @@ -59,7 +59,7 @@ runs: components: ${{ inputs.rust-components }} - name: Setup Cache for Rust project - uses: milaboratory/github-ci/actions/rust/cache@v4 + uses: milaboratory/github-ci/actions/rust/cache@v4-beta with: cache-version: ${{ inputs.cache-version }} cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} diff --git a/actions/strings/convert-paths/action.yaml b/actions/strings/convert-paths/action.yaml index 0250eee0..3567f6d3 100644 --- a/actions/strings/convert-paths/action.yaml +++ b/actions/strings/convert-paths/action.yaml @@ -35,7 +35,7 @@ runs: steps: - name: Convert paths id: converted - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ABS_ROOT: ${{ inputs.abs-root }} REL_ROOT: ${{ inputs.rel-root }} diff --git a/actions/strings/join/action.yaml b/actions/strings/join/action.yaml index 614d2828..6340b074 100644 --- a/actions/strings/join/action.yaml +++ b/actions/strings/join/action.yaml @@ -37,7 +37,7 @@ runs: steps: - name: Join lines id: join - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: INPUT_TEXT: ${{ inputs.input }} SEPARATOR: ${{ inputs.separator }} diff --git a/actions/strings/json-list/action.yaml b/actions/strings/json-list/action.yaml index 6b46eb36..77228d42 100644 --- a/actions/strings/json-list/action.yaml +++ b/actions/strings/json-list/action.yaml @@ -26,7 +26,7 @@ runs: steps: - name: Convert to JSON array id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: INPUT_LINES: ${{ inputs.input }} diff --git a/actions/strings/prefix/action.yaml b/actions/strings/prefix/action.yaml index c1b54381..b3657d96 100644 --- a/actions/strings/prefix/action.yaml +++ b/actions/strings/prefix/action.yaml @@ -28,7 +28,7 @@ runs: steps: - name: Prefix lines id: prefix - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: INPUT_TEXT: ${{ inputs.input }} PREFIX_TEXT: ${{ inputs.prefix }} diff --git a/actions/templates/jinja/action.yaml b/actions/templates/jinja/action.yaml index 1cff0a48..1efb7547 100644 --- a/actions/templates/jinja/action.yaml +++ b/actions/templates/jinja/action.yaml @@ -92,7 +92,7 @@ runs: using: "composite" steps: - name: Detect template path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: tpl-path env: TEMPLATE: ${{ inputs.template }} @@ -116,7 +116,7 @@ runs: echo "${temp_tpl_path}" - name: Detect data path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: data-path env: DATA: ${{ inputs.data }} @@ -140,7 +140,7 @@ runs: echo "${temp_data_path}" - name: Detect output path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta id: out-path env: OUTPUT_FILE: ${{ inputs.out-file }} @@ -153,7 +153,7 @@ runs: mktemp ./XXXXXXXXXXX - - uses: milaboratory/github-ci/actions/templates/jinja/wrapper@v4 + - uses: milaboratory/github-ci/actions/templates/jinja/wrapper@v4-beta with: template: ${{ steps.tpl-path.outputs.stdout }} output_file: ${{ steps.out-path.outputs.stdout }} @@ -162,7 +162,7 @@ runs: data_file: ${{ steps.data-path.outputs.stdout }} data_format: ${{ inputs.data-format }} - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta id: result if: inputs.dump-output env: diff --git a/blocks/java/build/action.yaml b/blocks/java/build/action.yaml index df3360c5..54f4c9b3 100644 --- a/blocks/java/build/action.yaml +++ b/blocks/java/build/action.yaml @@ -203,11 +203,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Prepare env for Java application build if: inputs.java-version != '' - uses: actions/setup-java@v4 + uses: actions/setup-java@v4-beta with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} @@ -216,14 +216,14 @@ runs: if: inputs.data-cache-paths != '' && inputs.data-cache-key != '' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: key: ${{ inputs.data-cache-key }} path: ${{ inputs.data-cache-paths }} - name: Set gradle.properties if: inputs.properties != '' - uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4-beta with: properties: | ${{ inputs.properties }} @@ -233,7 +233,7 @@ runs: - name: Generate list of tasks to exclude id: excludes - uses: milaboratory/github-ci/actions/strings/prefix@v4 + uses: milaboratory/github-ci/actions/strings/prefix@v4-beta with: input: ${{ inputs.exclude-tasks }} prefix: |- @@ -242,13 +242,13 @@ runs: - name: Generate build tasks id: tasks - uses: milaboratory/github-ci/actions/strings/prefix@v4 + uses: milaboratory/github-ci/actions/strings/prefix@v4-beta with: input: ${{ inputs.tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Build project - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta with: build-root-directory: ${{ inputs.project-dir }} gradle-home-cache-includes: ${{ inputs.gradle-home-cache-includes }} @@ -265,14 +265,14 @@ runs: - name: Read actual project properties id: gradle-props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta with: project-dir: ${{ inputs.project-dir }} project-name: ${{ inputs.project }} - name: Generate artifacts paths id: artifact-paths - uses: milaboratory/github-ci/actions/strings/convert-paths@v4 + uses: milaboratory/github-ci/actions/strings/convert-paths@v4-beta with: rel-root: ${{ steps.gradle-props.outputs.buildDir }}/ abs-root: . @@ -280,13 +280,13 @@ runs: - name: Save build artifacts if: steps.artifact-paths.outputs.result != '' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v4-beta with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-paths.outputs.result }} retention-days: ${{ inputs.artifact-retention }} - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.upload-obfuscation-mapping env: UPLOAD_ENABLED: ${{ inputs.upload-obfuscation-mapping }} @@ -309,7 +309,7 @@ runs: ghwa_set_env "OBFUS_MAPPING_LOCAL_PATH" "${OBFUS_MAPPING_LOCAL_PATH}" ghwa_set_env "UPLOAD_MAPPING" "true" - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta if: always() && env.UPLOAD_MAPPING == 'true' id: upload-mapping env: diff --git a/blocks/java/publish/docker/action.yaml b/blocks/java/publish/docker/action.yaml index f6bb5877..a3892339 100644 --- a/blocks/java/publish/docker/action.yaml +++ b/blocks/java/publish/docker/action.yaml @@ -36,12 +36,12 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Generate push targets list id: push-targets - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: IS_RELEASE: ${{ steps.context.outputs.is-release }} IS_LATEST_VERSION: ${{ steps.context.outputs.is-latest-version }} @@ -70,7 +70,7 @@ runs: - name: Publish docker image id: docker-push - uses: milaboratory/github-ci/actions/docker/push@v4 + uses: milaboratory/github-ci/actions/docker/push@v4-beta with: auth-token: ${{ inputs.github-token }} source: ${{ inputs.project }}:${{ steps.context.outputs.current-version }} diff --git a/blocks/java/test/action.yaml b/blocks/java/test/action.yaml index dea05192..8a7e7a87 100644 --- a/blocks/java/test/action.yaml +++ b/blocks/java/test/action.yaml @@ -233,10 +233,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Prepare env for Java application build - uses: actions/setup-java@v4 + uses: actions/setup-java@v4-beta with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} @@ -248,7 +248,7 @@ runs: python-version: ${{ inputs.python-version }} - name: Set gradle.properties - uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4-beta with: properties: | ${{ inputs.properties }} @@ -258,7 +258,7 @@ runs: - name: Read actual project properties id: gradle-props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta with: project-dir: ${{ inputs.project-dir }} project-name: ${{ inputs.project }} @@ -270,7 +270,7 @@ runs: - name: Generate upload path id: upload-path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | rand="$( @@ -282,7 +282,7 @@ runs: - name: Generate list of tasks to exclude id: excludes - uses: milaboratory/github-ci/actions/strings/prefix@v4 + uses: milaboratory/github-ci/actions/strings/prefix@v4-beta with: input: ${{ inputs.exclude-tasks }} prefix: |- @@ -291,7 +291,7 @@ runs: - name: Download cached test data if: inputs.test-data-cache-enabled == 'true' && inputs.test-data-cache-paths != '' && inputs.test-data-cache-key != '' - uses: actions/cache@v4 + uses: actions/cache@v4-beta with: path: ${{ inputs.test-data-cache-paths }} key: ${{ inputs.test-data-cache-key }} @@ -299,14 +299,14 @@ runs: - name: Generate before-hooks tasks id: before-hooks-tasks if: inputs.before-hooks-tasks != '' - uses: milaboratory/github-ci/actions/strings/prefix@v4 + uses: milaboratory/github-ci/actions/strings/prefix@v4-beta with: input: ${{ inputs.before-hooks-tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Run before-hooks tasks if: steps.before-hooks-tasks.outputs.result != '' - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta with: build-root-directory: ${{ inputs.project-dir }} arguments: |- @@ -319,21 +319,21 @@ runs: - name: Run 'before-tests' hook if: inputs.hook-before != '' - uses: milaboratory/github-ci/actions/helpers/safe-run@v4 + uses: milaboratory/github-ci/actions/helpers/safe-run@v4-beta with: script-path: ${{ inputs.hook-before }} - name: Generate test tasks id: test-tasks if: inputs.tasks != '' - uses: milaboratory/github-ci/actions/strings/prefix@v4 + uses: milaboratory/github-ci/actions/strings/prefix@v4-beta with: input: ${{ inputs.tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Run tests if: steps.test-tasks.outputs.result != '' - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta with: build-root-directory: ${{ inputs.project-dir }} arguments: |- @@ -346,7 +346,7 @@ runs: - name: Run test command if: inputs.hook-after == '' && inputs.test-command != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: TEST_CMD: ${{ inputs.test-command }} TEST_DIR: ${{ inputs.test-directory }} @@ -366,14 +366,14 @@ runs: - name: Run 'after-tests' hook if: inputs.hook-after != '' && inputs.test-command == '' - uses: milaboratory/github-ci/actions/helpers/safe-run@v4 + uses: milaboratory/github-ci/actions/helpers/safe-run@v4-beta with: script-path: ${{ inputs.hook-after }} - name: Check if we should upload results to S3 id: should-upload if: always() - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: UPLOAD_ENABLED: ${{ inputs.upload-report }} BUILD_DIR: ${{ steps.gradle-props.outputs.buildDir }} @@ -404,7 +404,7 @@ runs: - name: Upload test results id: upload-report if: always() && env.UPLOAD_REPORT == 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | aws s3 cp --recursive \ diff --git a/blocks/monorepo/build-and-test-pnpm/action.yaml b/blocks/monorepo/build-and-test-pnpm/action.yaml index 6d6f3e65..5faf9c12 100644 --- a/blocks/monorepo/build-and-test-pnpm/action.yaml +++ b/blocks/monorepo/build-and-test-pnpm/action.yaml @@ -110,7 +110,7 @@ runs: - name: Upload coverage reports to Codecov if: inputs.test-coverage == 'true' - uses: milaboratory/github-ci/actions/node/upload-coverage@v4 + uses: milaboratory/github-ci/actions/node/upload-coverage@v4-beta with: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} diff --git a/blocks/monorepo/test-pl-docker-pnpm/action.yaml b/blocks/monorepo/test-pl-docker-pnpm/action.yaml index 8f0222a1..6aac101f 100644 --- a/blocks/monorepo/test-pl-docker-pnpm/action.yaml +++ b/blocks/monorepo/test-pl-docker-pnpm/action.yaml @@ -97,7 +97,7 @@ runs: steps: - name: Run turbo tests dry-run id: turbo-dry-run - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.test-skip-dry-run != 'true' env: TEST_DRY_RUN: ${{ inputs.test-dry-run-script-name }} @@ -118,7 +118,7 @@ runs: exit 0 fi - - uses: milaboratory/github-ci/actions/docker/pl-compose@v4 + - uses: milaboratory/github-ci/actions/docker/pl-compose@v4-beta name: Launch Platforma docker container if: inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') id: pl-compose @@ -150,14 +150,14 @@ runs: - name: Upload coverage reports to Codecov if: inputs.test-coverage == 'true' - uses: milaboratory/github-ci/actions/node/upload-coverage@v4 + uses: milaboratory/github-ci/actions/node/upload-coverage@v4-beta with: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} - name: Restore assets ownership if: always() && inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PL_ASSETS_DIR: ${{ format('{0}/{1}', github.workspace, inputs.pl-test-assets-dir) }} with: diff --git a/blocks/monorepo/test-pl-k8s-pnpm/action.yaml b/blocks/monorepo/test-pl-k8s-pnpm/action.yaml index a71a0d9e..28774f67 100644 --- a/blocks/monorepo/test-pl-k8s-pnpm/action.yaml +++ b/blocks/monorepo/test-pl-k8s-pnpm/action.yaml @@ -106,7 +106,7 @@ runs: using: "composite" steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} diff --git a/blocks/node/build-and-publish/action.yaml b/blocks/node/build-and-publish/action.yaml index d86188e2..13774283 100644 --- a/blocks/node/build-and-publish/action.yaml +++ b/blocks/node/build-and-publish/action.yaml @@ -120,7 +120,7 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} @@ -144,23 +144,23 @@ runs: ecr: false - name: Add MiLab shell utils to PATH - uses: milaboratory/github-ci/actions/milab-shell-utils@v4 + uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: WORKING_DIRECTORY: ${{ inputs.execution-path }} with: run: echo "${GITHUB_WORKSPACE}/${WORKING_DIRECTORY}/release-artifact" - name: Download artifact - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4 + uses: milaboratory/github-ci/actions/node/prepare@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.node-cache-version }} @@ -186,7 +186,7 @@ runs: npm ci - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4 + uses: milaboratory/github-ci/actions/node/patch-version@v4-beta with: package_json: ${{ format('{0}/{1}/package.json', github.workspace, inputs.execution-path) }} version: ${{ inputs.build-version }} @@ -201,7 +201,7 @@ runs: npm run build - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta with: package-paths: | ${{ inputs.execution-path }} diff --git a/blocks/node/build-and-test-pnpm/action.yaml b/blocks/node/build-and-test-pnpm/action.yaml index 1e43ab39..6cca23ff 100644 --- a/blocks/node/build-and-test-pnpm/action.yaml +++ b/blocks/node/build-and-test-pnpm/action.yaml @@ -83,7 +83,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -92,14 +92,14 @@ runs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: dump-stdout: false run: | pnpm install --frozen-lockfile --prefer-offline - name: Run build - ${{ inputs.build-script-name }} - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PNPM_R: ${{ inputs.pnpm-recursive-build }} PNPM_ARGS: ${{ inputs.pnpm-build-args }} @@ -120,7 +120,7 @@ runs: fi - name: Run test - ${{ inputs.test-script-name}} - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta if: inputs.tests == 'true' env: PNPM_R: ${{ inputs.pnpm-recursive-tests }} diff --git a/blocks/node/build/generic/action.yaml b/blocks/node/build/generic/action.yaml index 236a6e83..a4b3ca5b 100644 --- a/blocks/node/build/generic/action.yaml +++ b/blocks/node/build/generic/action.yaml @@ -88,7 +88,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4 + uses: milaboratory/github-ci/actions/node/prepare@v4-beta env: NODE_AUTH_TOKEN: ${{ inputs.npm-auth-token }} with: @@ -105,7 +105,7 @@ runs: install-deps: true - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4 + uses: milaboratory/github-ci/actions/node/patch-version@v4-beta if: inputs.build-version != '' with: working-directory: ${{ inputs.working-directory }} diff --git a/blocks/node/test/action.yaml b/blocks/node/test/action.yaml index ed7b10c5..f4785eed 100644 --- a/blocks/node/test/action.yaml +++ b/blocks/node/test/action.yaml @@ -106,7 +106,7 @@ runs: steps: - name: Prepare environment for running a NodeJS application tests - uses: milaboratory/github-ci/actions/node/prepare@v4 + uses: milaboratory/github-ci/actions/node/prepare@v4-beta env: NODE_AUTH_TOKEN: ${{ inputs.npm-auth-token }} with: @@ -123,7 +123,7 @@ runs: install-deps: true - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4 + uses: milaboratory/github-ci/actions/node/patch-version@v4-beta if: inputs.package-version != '' with: working-directory: ${{ inputs.working-directory }} diff --git a/blocks/notify/build/action.yaml b/blocks/notify/build/action.yaml index e7235d0e..7a21c9d6 100644 --- a/blocks/notify/build/action.yaml +++ b/blocks/notify/build/action.yaml @@ -89,10 +89,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: category - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -104,7 +104,7 @@ runs: fi - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -118,12 +118,12 @@ runs: - id: build-status name: Merge build statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.build-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -141,7 +141,7 @@ runs: if: steps.build-status.outputs.status != 'success' && inputs.notification-mode != 'success-only' - uses: milaboratory/github-ci/actions/notify/telegram/build-failed@v4 + uses: milaboratory/github-ci/actions/notify/telegram/build-failed@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -156,7 +156,7 @@ runs: if: steps.build-status.outputs.status == 'success' && inputs.notification-mode != 'failure-only' - uses: milaboratory/github-ci/actions/notify/telegram/build-ready@v4 + uses: milaboratory/github-ci/actions/notify/telegram/build-ready@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/deployment/action.yaml b/blocks/notify/deployment/action.yaml index 40970e5f..87fe0804 100644 --- a/blocks/notify/deployment/action.yaml +++ b/blocks/notify/deployment/action.yaml @@ -58,16 +58,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: DOCKER_IMAGES: ${{ inputs.docker-images }} SEARCH_TAGS: ${{ inputs.search-tags }} @@ -79,7 +79,7 @@ runs: - name: Report 'deployment failed' to Telegram if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-failed@v4 + uses: milaboratory/github-ci/actions/notify/telegram/deployment-failed@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -94,7 +94,7 @@ runs: - name: Report 'deployment success' to Telegram if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-success@v4 + uses: milaboratory/github-ci/actions/notify/telegram/deployment-success@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -109,7 +109,7 @@ runs: - name: Report 'deployment canceled' to Telegram if: steps.job-status.outputs.status == 'cancelled' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-cancelled@v4 + uses: milaboratory/github-ci/actions/notify/telegram/deployment-cancelled@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/publish/action.yaml b/blocks/notify/publish/action.yaml index 55c89680..81490ccf 100644 --- a/blocks/notify/publish/action.yaml +++ b/blocks/notify/publish/action.yaml @@ -71,9 +71,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta id: category env: IS_RELEASE: ${{ steps.context.outputs.is-release }} @@ -86,7 +86,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -96,13 +96,13 @@ runs: - id: job-status name: Merge publish job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - name: Report publish result to Telegram if: inputs.telegram-target != '' - uses: milaboratory/github-ci/actions/notify/telegram/publish@v4 + uses: milaboratory/github-ci/actions/notify/telegram/publish@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/release/action.yaml b/blocks/notify/release/action.yaml index 606a0e6c..8bcbe7d8 100644 --- a/blocks/notify/release/action.yaml +++ b/blocks/notify/release/action.yaml @@ -86,10 +86,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -102,7 +102,7 @@ runs: fi - id: define-tag - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_TAG: ${{ inputs.override-tag }} CURRENT_TAG: ${{ steps.context.outputs.current-version-tag }} @@ -116,12 +116,12 @@ runs: - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -137,7 +137,7 @@ runs: - name: Report 'release failed' to Telegram if: steps.job-status.outputs.status != 'success' - uses: milaboratory/github-ci/actions/notify/telegram/release-failed@v4 + uses: milaboratory/github-ci/actions/notify/telegram/release-failed@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -151,7 +151,7 @@ runs: - name: Report 'new release' to Telegram if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/telegram/release-ready@v4 + uses: milaboratory/github-ci/actions/notify/telegram/release-ready@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/review-required/action.yaml b/blocks/notify/review-required/action.yaml index 4112a23f..73d7440e 100644 --- a/blocks/notify/review-required/action.yaml +++ b/blocks/notify/review-required/action.yaml @@ -43,11 +43,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Send new release notigication to Telegram if: inputs.telegram-target != '' - uses: milaboratory/github-ci/actions/notify/telegram/review-required@v4 + uses: milaboratory/github-ci/actions/notify/telegram/review-required@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/slack/build/action.yaml b/blocks/notify/slack/build/action.yaml index 631c0fd7..6df99093 100644 --- a/blocks/notify/slack/build/action.yaml +++ b/blocks/notify/slack/build/action.yaml @@ -55,10 +55,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: category - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -70,7 +70,7 @@ runs: fi - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -84,12 +84,12 @@ runs: - id: build-status name: Merge build statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -105,7 +105,7 @@ runs: - name: Notify on build failure if: steps.build-status.outputs.status != 'success' && inputs.notification-mode != 'success-only' - uses: milaboratory/github-ci/actions/notify/slack/build-failed@v4 + uses: milaboratory/github-ci/actions/notify/slack/build-failed@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -116,7 +116,7 @@ runs: - name: Notify on build success if: steps.build-status.outputs.status == 'success' && inputs.notification-mode != 'failure-only' - uses: milaboratory/github-ci/actions/notify/slack/build-ready@v4 + uses: milaboratory/github-ci/actions/notify/slack/build-ready@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/deployment/action.yaml b/blocks/notify/slack/deployment/action.yaml index be3f5a08..3ff91d00 100644 --- a/blocks/notify/slack/deployment/action.yaml +++ b/blocks/notify/slack/deployment/action.yaml @@ -34,16 +34,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: DOCKER_IMAGES: ${{ inputs.docker-images }} SEARCH_TAGS: ${{ inputs.search-tags }} @@ -55,7 +55,7 @@ runs: - name: Notify on deployment success if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/slack/deployment-success@v4 + uses: milaboratory/github-ci/actions/notify/slack/deployment-success@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -68,7 +68,7 @@ runs: - name: Notify on deployment failure if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/slack/deployment-failed@v4 + uses: milaboratory/github-ci/actions/notify/slack/deployment-failed@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -81,7 +81,7 @@ runs: - name: Notify on deployment cancellation if: steps.job-status.outputs.status == 'cancelled' - uses: milaboratory/github-ci/actions/notify/slack/deployment-cancelled@v4 + uses: milaboratory/github-ci/actions/notify/slack/deployment-cancelled@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/publish/action.yaml b/blocks/notify/slack/publish/action.yaml index 2a60a820..3bcd4207 100644 --- a/blocks/notify/slack/publish/action.yaml +++ b/blocks/notify/slack/publish/action.yaml @@ -46,9 +46,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/shell@v4 + - uses: milaboratory/github-ci/actions/shell@v4-beta id: category env: IS_RELEASE: ${{ steps.context.outputs.is-release }} @@ -61,7 +61,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -71,11 +71,11 @@ runs: - id: job-status name: Merge publish job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - - uses: milaboratory/github-ci/actions/notify/slack/publish@v4 + - uses: milaboratory/github-ci/actions/notify/slack/publish@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/release/action.yaml b/blocks/notify/slack/release/action.yaml index 8ee60b87..31310477 100644 --- a/blocks/notify/slack/release/action.yaml +++ b/blocks/notify/slack/release/action.yaml @@ -54,10 +54,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -70,7 +70,7 @@ runs: fi - id: define-tag - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_TAG: ${{ inputs.override-tag }} CURRENT_TAG: ${{ steps.context.outputs.current-version-tag }} @@ -84,12 +84,12 @@ runs: - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -105,7 +105,7 @@ runs: - name: Notify on release success if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/slack/release-ready@v4 + uses: milaboratory/github-ci/actions/notify/slack/release-ready@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -120,7 +120,7 @@ runs: - name: Notify on release failure if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/slack/release-failed@v4 + uses: milaboratory/github-ci/actions/notify/slack/release-failed@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/review-required/action.yaml b/blocks/notify/slack/review-required/action.yaml index 5585dc42..46b971a4 100644 --- a/blocks/notify/slack/review-required/action.yaml +++ b/blocks/notify/slack/review-required/action.yaml @@ -29,9 +29,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - - uses: milaboratory/github-ci/actions/notify/slack/review-required@v4 + - uses: milaboratory/github-ci/actions/notify/slack/review-required@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/test-regression/action.yaml b/blocks/notify/slack/test-regression/action.yaml index aabdae27..eba047f1 100644 --- a/blocks/notify/slack/test-regression/action.yaml +++ b/blocks/notify/slack/test-regression/action.yaml @@ -41,10 +41,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -57,7 +57,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -65,7 +65,7 @@ runs: run: | ghwa_set_output "search-tags" "${SEARCH_TAGS:-[]}" - - uses: milaboratory/github-ci/actions/notify/slack/test-regression@v4 + - uses: milaboratory/github-ci/actions/notify/slack/test-regression@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/tests/action.yaml b/blocks/notify/slack/tests/action.yaml index 3b6895d8..80382a59 100644 --- a/blocks/notify/slack/tests/action.yaml +++ b/blocks/notify/slack/tests/action.yaml @@ -51,10 +51,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -68,12 +68,12 @@ runs: - id: tests-status name: Merge test statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.tests-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -87,7 +87,7 @@ runs: && inputs.notification-mode == 'failure-only' ) && !( steps.tests-status.outputs.status != 'success' && inputs.notification-mode == 'success-only' ) - uses: milaboratory/github-ci/actions/notify/slack/tests@v4 + uses: milaboratory/github-ci/actions/notify/slack/tests@v4-beta with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/test-regression/action.yaml b/blocks/notify/test-regression/action.yaml index ddc289d9..9b6676cf 100644 --- a/blocks/notify/test-regression/action.yaml +++ b/blocks/notify/test-regression/action.yaml @@ -56,10 +56,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -72,7 +72,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -80,7 +80,7 @@ runs: run: | ghwa_set_output "search-tags" "${SEARCH_TAGS:-[]}" - - uses: milaboratory/github-ci/actions/notify/telegram/test-regression@v4 + - uses: milaboratory/github-ci/actions/notify/telegram/test-regression@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/tests/action.yaml b/blocks/notify/tests/action.yaml index 42af8a92..00c2b249 100644 --- a/blocks/notify/tests/action.yaml +++ b/blocks/notify/tests/action.yaml @@ -79,10 +79,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - id: define-version - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -96,12 +96,12 @@ runs: - id: tests-status name: Merge test statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4 + uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta with: statuses: ${{ inputs.tests-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -116,7 +116,7 @@ runs: && !( steps.tests-status.outputs.status != 'success' && inputs.notification-mode == 'success-only' ) - uses: milaboratory/github-ci/actions/notify/telegram/tests@v4 + uses: milaboratory/github-ci/actions/notify/telegram/tests@v4-beta with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/pl/linux/test-pl-docker-pnpm/action.yaml b/blocks/pl/linux/test-pl-docker-pnpm/action.yaml index 013eb4fb..ce69b960 100644 --- a/blocks/pl/linux/test-pl-docker-pnpm/action.yaml +++ b/blocks/pl/linux/test-pl-docker-pnpm/action.yaml @@ -127,7 +127,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -136,14 +136,14 @@ runs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Run turbo tests dry-run if: inputs.test-skip-dry-run != 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | pnpx turbo run test --dry-run=json --cache=remote:rw > ./test-dry-run.json @@ -157,7 +157,7 @@ runs: exit 0 fi - - uses: milaboratory/github-ci/actions/docker/pl-compose@v4 + - uses: milaboratory/github-ci/actions/docker/pl-compose@v4-beta name: Launch Platforma docker container id: pl-compose if: inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') @@ -169,7 +169,7 @@ runs: - name: Run test - ${{ inputs.test-script-name}} if: env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PNPM_R: ${{ inputs.pnpm-recursive-tests }} PNPM_ARGS: ${{ inputs.pnpm-tests-args }} @@ -190,7 +190,7 @@ runs: - name: Restore assets ownership if: always() && inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PL_ASSETS_DIR: ${{ format('{0}/{1}', github.workspace, inputs.pl-test-assets-dir) }} with: diff --git a/blocks/release/registry-bin/action.yaml b/blocks/release/registry-bin/action.yaml index 2f5d86ed..13a5847b 100644 --- a/blocks/release/registry-bin/action.yaml +++ b/blocks/release/registry-bin/action.yaml @@ -112,34 +112,34 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: echo './release-artifact' - name: Download artifact - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add version - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.context.outputs.current-version }}' - name: Search for the package.yaml inside github workspace id: pkg-yaml-status - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: PKG_YAML_SEARCH_PATH: ${{ format('{0}/{1}', github.workspace, 'package.yaml') }} with: @@ -154,13 +154,13 @@ runs: - name: Patch package version if: fromJSON(steps.pkg-yaml-status.outputs.data).exist != '0' - uses: milaboratory/github-ci/actions/yaml/patch-version@v4 + uses: milaboratory/github-ci/actions/yaml/patch-version@v4-beta with: version: ${{ steps.context.outputs.current-version }} - name: Re-pack artifact as tgz archive id: repack - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} ARCHIVE_PATH: ${{ format('{0}/result-archive', github.workspace) }} @@ -194,7 +194,7 @@ runs: ghwa_set_output archive-path "${ARCHIVE_PATH}" - name: Create sig file for re-packed archive - uses: milaboratory/github-ci/actions/gcloud-kms-sign@v4 + uses: milaboratory/github-ci/actions/gcloud-kms-sign@v4-beta with: file-path: ${{ fromJSON(steps.repack.outputs.data).archive-full-path }} gcloud-kms-workload-identity-provider: ${{ inputs.gcloud-kms-workload-identity-provider }} @@ -207,7 +207,7 @@ runs: gcloud-kms-key-name: ${{ inputs.gcloud-kms-key-name }} - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | aws s3 cp --recursive \ @@ -215,7 +215,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ARTIFACT_PATH: ${{ fromJSON(steps.repack.outputs.data).archive-path }} S3_PATH: ${{ inputs.s3-path }} @@ -231,6 +231,6 @@ runs: done - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ steps.uploaded-list.outputs.stdout }} diff --git a/blocks/release/s3/action.yaml b/blocks/release/s3/action.yaml index ea19b66e..0ea0bc3a 100644 --- a/blocks/release/s3/action.yaml +++ b/blocks/release/s3/action.yaml @@ -191,16 +191,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4 + uses: milaboratory/github-ci/actions/context@v4-beta - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_ARTIFACT_DOWNLOAD_PATH: ${{ inputs.artifact-override-download-path }} with: @@ -212,14 +212,14 @@ runs: fi - name: Download artifact - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add version if: inputs.add-version == 'true' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.context.outputs.current-version }}' @@ -227,7 +227,7 @@ runs: - name: Get SHA suffix id: sha if: inputs.add-sha != 'false' && inputs.add-sha != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ADD_SHA: ${{ inputs.add-sha }} with: @@ -243,14 +243,14 @@ runs: - name: Add SHA if: steps.sha.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.sha.outputs.stdout }}' - name: Add Github Run ID if: inputs.add-github-run-id == 'true' && inputs.add-github-run-id != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ github.run_id }}' @@ -258,7 +258,7 @@ runs: - name: Get OS NAME id: os_name if: inputs.add-os-name != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OS_NAME: ${{ inputs.add-os-name }} with: @@ -273,14 +273,14 @@ runs: - name: Add OS NAME if: inputs.add-os-name != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_name.outputs.stdout }}' - name: Get ARCH id: os_arch - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_ARCH: ${{ inputs.artifact-override-os-arch }} UPLOAD_TO_REGISTRY: ${{ inputs.upload-to-registry }} @@ -315,13 +315,13 @@ runs: - name: Add ARCH if: inputs.add-os-arch == 'true' && inputs.add-os-arch != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_arch.outputs.stdout }}' - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | aws s3 cp --recursive \ @@ -329,7 +329,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: files-list - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} S3_PATH: ${{ inputs.s3-path }} @@ -373,7 +373,7 @@ runs: ghwa_set_output array_paths "${array_paths}" - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: UPLOADED_FILES: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} with: @@ -381,12 +381,12 @@ runs: echo "${UPLOADED_FILES}" - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} - id: download-list - uses: milaboratory/github-ci/actions/strings/replace@v4 + uses: milaboratory/github-ci/actions/strings/replace@v4-beta with: input: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} @@ -401,12 +401,12 @@ runs: ^/ -> https://${{ inputs.s3-bucket }}.s3.${{ inputs.s3-region }}.amazonaws.com/ - id: download-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ steps.download-list.outputs.result }} - id: artifacts-list - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: JSON_ARRAY: ${{ fromJSON(steps.files-list.outputs.data).json_array_infos }} with: diff --git a/blocks/signing-tools/macos-notarize/action.yaml b/blocks/signing-tools/macos-notarize/action.yaml index 80474b67..a91fdea6 100644 --- a/blocks/signing-tools/macos-notarize/action.yaml +++ b/blocks/signing-tools/macos-notarize/action.yaml @@ -35,7 +35,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4 + - uses: milaboratory/github-ci/actions/files/list@v4-beta id: artifacts-list with: patterns: ${{ inputs.paths }} diff --git a/blocks/signing-tools/macos-sign/action.yaml b/blocks/signing-tools/macos-sign/action.yaml index 9c349c16..ef5388fd 100644 --- a/blocks/signing-tools/macos-sign/action.yaml +++ b/blocks/signing-tools/macos-sign/action.yaml @@ -39,7 +39,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4 + - uses: milaboratory/github-ci/actions/files/list@v4-beta id: binaries-list with: patterns: ${{ inputs.binaries }} diff --git a/blocks/signing-tools/windows-sign/action.yaml b/blocks/signing-tools/windows-sign/action.yaml index c4152edf..ecb2f78a 100644 --- a/blocks/signing-tools/windows-sign/action.yaml +++ b/blocks/signing-tools/windows-sign/action.yaml @@ -84,7 +84,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4 + - uses: milaboratory/github-ci/actions/files/list@v4-beta id: binaries-list with: patterns: ${{ inputs.binaries }} @@ -96,7 +96,7 @@ runs: - name: Install Java if: steps.binaries-list.outputs.has-matches == 'true' - uses: actions/setup-java@v4 + uses: actions/setup-java@v4-beta with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} diff --git a/blocks/update-cdn-link/action.yaml b/blocks/update-cdn-link/action.yaml index eb4a078d..90624c0a 100644 --- a/blocks/update-cdn-link/action.yaml +++ b/blocks/update-cdn-link/action.yaml @@ -59,13 +59,13 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - name: Update website-redirect-location metadata in the file - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: S3_BUCKET: ${{ inputs.s3-bucket }} S3_KEY: ${{ inputs.s3-bucket-path }}/${{ inputs.s3-bucket-key }} diff --git a/blocks/update-s3-latest/action.yaml b/blocks/update-s3-latest/action.yaml index b6b6d4bd..7de22a82 100644 --- a/blocks/update-s3-latest/action.yaml +++ b/blocks/update-s3-latest/action.yaml @@ -146,25 +146,25 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v4-beta with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: echo './release-artifact' - name: Download artifact - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v4-beta with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add branch name if: inputs.add-branch-name == 'true' && inputs.branch-name != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ inputs.branch-name }}' @@ -172,7 +172,7 @@ runs: - name: Get SHA suffix id: sha if: inputs.add-sha != 'false' && inputs.add-sha != '' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ADD_SHA: ${{ inputs.add-sha }} with: @@ -188,7 +188,7 @@ runs: - name: Add SHA if: steps.sha.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.sha.outputs.stdout }}' @@ -196,7 +196,7 @@ runs: - name: Get ARCH id: os_arch if: inputs.add-os-arch == 'true' - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: OVERRIDE_ARCH: ${{ inputs.artifact-override-os-arch }} with: @@ -218,13 +218,13 @@ runs: - name: Add ARCH if: steps.os_arch.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4 + uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_arch.outputs.stdout }}' - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta with: run: | aws s3 cp --recursive \ @@ -232,7 +232,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4 + uses: milaboratory/github-ci/actions/shell@v4-beta env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} S3_PATH: ${{ inputs.s3-path }} @@ -248,12 +248,12 @@ runs: done - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ steps.uploaded-list.outputs.stdout }} - id: download-list - uses: milaboratory/github-ci/actions/strings/replace@v4 + uses: milaboratory/github-ci/actions/strings/replace@v4-beta with: input: ${{ steps.uploaded-list.outputs.stdout }} @@ -268,6 +268,6 @@ runs: ^/ -> https://${{ inputs.s3-bucket }}.s3.${{ inputs.s3-region }}.amazonaws.com/ - id: download-json - uses: milaboratory/github-ci/actions/strings/json-list@v4 + uses: milaboratory/github-ci/actions/strings/json-list@v4-beta with: input: ${{ steps.download-list.outputs.result }} From 05b568de5c2592996d197101924ce62fb9564db4 Mon Sep 17 00:00:00 2001 From: Dmitry Bolotin Date: Fri, 22 May 2026 19:20:53 +0200 Subject: [PATCH 2/8] pl-compose: synthesize /etc/passwd and /etc/group for runner UID pl entrypoint run-pl.sh runs `id --user --name` under `set -o errexit`. With user: $PL_UID:$PL_GID and no matching entry, the entrypoint aborts immediately. Generate a minimal passwd+group file pair containing root and a synthetic pl user for the resolved UID/GID, then bind-mount them read-only into the container. --- actions/docker/pl-compose/action.yaml | 10 ++++++++++ actions/docker/pl-compose/docker-compose.yaml | 4 ++++ 2 files changed, 14 insertions(+) diff --git a/actions/docker/pl-compose/action.yaml b/actions/docker/pl-compose/action.yaml index 071d9f33..295873e3 100644 --- a/actions/docker/pl-compose/action.yaml +++ b/actions/docker/pl-compose/action.yaml @@ -112,6 +112,16 @@ runs: export PL_GID="$(id -g)" echo "Platforma container will run as ${PL_UID}:${PL_GID}" + # pl entrypoint (run-pl.sh) calls `id --user --name` under `set -o errexit`, + # which fails when the runner UID has no /etc/passwd entry. + # Synthesize minimal passwd + group files for the chosen UID/GID and + # bind-mount them into the container (paths exported for compose). + mkdir -p "${PL_MAIN_ROOT}/.users" + printf 'root:x:0:0:root:/root:/bin/sh\npl:x:%s:%s:pl:/pl-home:/bin/sh\n' "${PL_UID}" "${PL_GID}" > "${PL_MAIN_ROOT}/.users/passwd" + printf 'root:x:0:\npl:x:%s:\n' "${PL_GID}" > "${PL_MAIN_ROOT}/.users/group" + export PL_PASSWD_PATH="${PL_MAIN_ROOT}/.users/passwd" + export PL_GROUP_PATH="${PL_MAIN_ROOT}/.users/group" + echo "main-root=${PL_MAIN_ROOT}" >> "${GITHUB_OUTPUT}" docker compose --file "${ACTION_PATH}/docker-compose.yaml" config | tee "${PL_MAIN_ROOT}/compose.yaml" diff --git a/actions/docker/pl-compose/docker-compose.yaml b/actions/docker/pl-compose/docker-compose.yaml index a10f480b..ba9d7722 100644 --- a/actions/docker/pl-compose/docker-compose.yaml +++ b/actions/docker/pl-compose/docker-compose.yaml @@ -52,6 +52,10 @@ services: - ${PL_TEST_ASSETS_DIR}:/library - ${PL_WORKSPACE}:${PL_WORKSPACE} - ${HTPASSWD_PATH}:/etc/htpasswd + # Inject passwd/group so the runner UID resolves to a name — + # required by pl entrypoint's `id --user --name` check. + - ${PL_PASSWD_PATH}:/etc/passwd:ro + - ${PL_GROUP_PATH}:/etc/group:ro restart: always From 6447526e1315c6925b8e568b1d3abd44911ffab9 Mon Sep 17 00:00:00 2001 From: Dmitry Bolotin Date: Fri, 22 May 2026 19:28:10 +0200 Subject: [PATCH 3/8] pl-compose: move packages dir under /storage to avoid permission denied pl runs as non-root and cannot mkdir /packages at image root. /storage is bind-mounted from a runner-owned host path and is already writable by the resolved UID/GID. --- actions/docker/pl-compose/docker-compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/actions/docker/pl-compose/docker-compose.yaml b/actions/docker/pl-compose/docker-compose.yaml index ba9d7722..cc04808b 100644 --- a/actions/docker/pl-compose/docker-compose.yaml +++ b/actions/docker/pl-compose/docker-compose.yaml @@ -28,7 +28,7 @@ services: --log-dst="file:///storage/log/platforma.log" --log-level="${PL_LOG_LEVEL:-info}" --main-root="/storage" - --packages-dir="/packages" + --packages-dir="/storage/packages" --primary-storage-s3="http://minio:9000/platforma-primary-bucket" --primary-storage-s3-key="testuser" --primary-storage-s3-secret="testpassword" From 3ff138790e703082c5e26f59d6a391dfabd32f9b Mon Sep 17 00:00:00 2001 From: Dmitry Bolotin Date: Fri, 22 May 2026 19:59:02 +0200 Subject: [PATCH 4/8] pl-compose: run minio as runner UID/GID too MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit When platforma runs as non-root and minio stays root, minio writes .minio.sys/tmp/.trash/*.bkp files that the runner cannot remove during cleanup. Switching minio to the same UID/GID keeps every file in PL_MAIN_ROOT owned by the runner — rm -rf cleanup works without sudo. --- actions/docker/pl-compose/docker-compose.yaml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/actions/docker/pl-compose/docker-compose.yaml b/actions/docker/pl-compose/docker-compose.yaml index cc04808b..febfb10b 100644 --- a/actions/docker/pl-compose/docker-compose.yaml +++ b/actions/docker/pl-compose/docker-compose.yaml @@ -3,6 +3,9 @@ name: "platform" services: minio: image: quay.io/minio/minio + # Run as the runner UID/GID — keeps all files in PL_MAIN_ROOT owned by + # one user so cleanup (rm -rf) works without sudo. + user: "${PL_UID}:${PL_GID}" command: server /data/minio --address "0.0.0.0:9000" --console-address "0.0.0.0:9001" ports: From 9f368d97115044a5340f14bc5d7bcbaed6b5793a Mon Sep 17 00:00:00 2001 From: Dmitry Bolotin Date: Fri, 22 May 2026 19:59:02 +0200 Subject: [PATCH 5/8] pl-compose: run minio as runner UID/GID too MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit When platforma runs as non-root and minio stays root, minio writes .minio.sys/tmp/.trash/*.bkp files that the runner cannot remove during cleanup. Switching minio to the same UID/GID keeps every file in PL_MAIN_ROOT owned by the runner — rm -rf cleanup works without sudo. --- .github/workflows/0-automerge.yaml | 2 +- .github/workflows/0-build-docker.yaml | 6 +- .github/workflows/0-merge-beta.yaml | 2 +- .github/workflows/0-scan-containers.yaml | 16 +- .github/workflows/0-test.yaml | 2 +- .github/workflows/block-mark-stable.yaml | 26 +-- .github/workflows/deploy-docs.yaml | 34 +-- .github/workflows/docker-github.yaml | 20 +- .github/workflows/java-gradle.yaml | 200 +++++++++--------- .../node-docker-simple-fast-pnpm.yaml | 28 +-- .github/workflows/node-go-simple.yaml | 60 +++--- .github/workflows/node-matrix-pnpm.yaml | 76 +++---- .github/workflows/node-matrix.yaml | 70 +++--- .github/workflows/node-simple-pnpm-k8s.yaml | 20 +- .github/workflows/node-simple-pnpm.yaml | 66 +++--- .github/workflows/node-simple.yaml | 54 ++--- actions/action-test/action.yaml | 2 +- actions/artifact/create-empty/action.yaml | 4 +- actions/artifact/restore/action.yaml | 2 +- actions/artifact/save/action.yaml | 4 +- actions/artifact/write-metadata/action.yaml | 8 +- actions/aws/cloudfront/action.yaml | 4 +- actions/aws/prefix-delete/action.yaml | 2 +- actions/ccache/action.yaml | 2 +- actions/context/action.yaml | 2 +- actions/context/get/action.yaml | 2 +- actions/context/init/action.yaml | 2 +- actions/docker/build/action.yaml | 2 +- actions/docker/pl-compose/action.yaml | 8 +- actions/docker/pl-compose/docker-compose.yaml | 3 + actions/docker/push/action.yaml | 8 +- actions/docker/scan-docker-repo/action.yaml | 4 +- actions/docker/scan-pnpm-repo/action.yaml | 2 +- actions/env/action.yaml | 4 +- actions/env/set/action.yaml | 4 +- actions/gcloud-kms-sign/action.yaml | 2 +- actions/gcp/prefix-delete/action.yaml | 2 +- actions/git/auth/action.yaml | 2 +- actions/golang/cache/action.yaml | 6 +- actions/golang/prepare/action.yaml | 2 +- actions/helpers/default-value/action.yaml | 2 +- actions/helpers/jq/action.yaml | 2 +- actions/helpers/merge-status/action.yaml | 2 +- actions/helpers/safe-ctx/action.yaml | 2 +- actions/java/gradle/cache/action.yaml | 2 +- .../java/gradle/properties/read/action.yaml | 2 +- .../java/gradle/properties/set/action.yaml | 2 +- actions/k8s/helm-deployment/action.yaml | 2 +- actions/matrix/read/action.yaml | 2 +- actions/node/cache-pnpm/action.yaml | 2 +- actions/node/cache/action.yaml | 6 +- actions/node/npm-pkg-status/action.yaml | 6 +- actions/node/prepare-pnpm/action.yaml | 8 +- actions/node/prepare/action.yaml | 6 +- actions/notify/slack/build-failed/action.yaml | 6 +- actions/notify/slack/build-ready/action.yaml | 6 +- .../slack/deployment-cancelled/action.yaml | 6 +- .../slack/deployment-failed/action.yaml | 6 +- .../slack/deployment-success/action.yaml | 6 +- actions/notify/slack/publish/action.yaml | 6 +- .../notify/slack/release-failed/action.yaml | 6 +- .../notify/slack/release-ready/action.yaml | 6 +- .../notify/slack/review-required/action.yaml | 8 +- .../notify/slack/test-regression/action.yaml | 6 +- actions/notify/slack/tests/action.yaml | 6 +- .../notify/telegram/build-failed/action.yaml | 6 +- .../notify/telegram/build-ready/action.yaml | 6 +- .../telegram/deployment-cancelled/action.yaml | 6 +- .../telegram/deployment-failed/action.yaml | 6 +- .../telegram/deployment-success/action.yaml | 6 +- actions/notify/telegram/publish/action.yaml | 6 +- .../telegram/release-failed/action.yaml | 6 +- .../notify/telegram/release-ready/action.yaml | 6 +- .../telegram/review-required/action.yaml | 8 +- .../telegram/test-regression/action.yaml | 6 +- actions/notify/telegram/tests/action.yaml | 6 +- actions/python/cache/action.yaml | 2 +- actions/python/prepare/action.yaml | 2 +- actions/release/create/action.yaml | 2 +- actions/rust/cache/action.yaml | 2 +- actions/rust/prepare/action.yaml | 2 +- actions/strings/convert-paths/action.yaml | 2 +- actions/strings/join/action.yaml | 2 +- actions/strings/json-list/action.yaml | 2 +- actions/strings/prefix/action.yaml | 2 +- actions/templates/jinja/action.yaml | 10 +- blocks/java/build/action.yaml | 24 +-- blocks/java/publish/docker/action.yaml | 6 +- blocks/java/test/action.yaml | 32 +-- .../monorepo/build-and-test-pnpm/action.yaml | 2 +- .../monorepo/test-pl-docker-pnpm/action.yaml | 8 +- blocks/monorepo/test-pl-k8s-pnpm/action.yaml | 2 +- blocks/node/build-and-publish/action.yaml | 14 +- blocks/node/build-and-test-pnpm/action.yaml | 8 +- blocks/node/build/generic/action.yaml | 4 +- blocks/node/test/action.yaml | 4 +- blocks/notify/build/action.yaml | 14 +- blocks/notify/deployment/action.yaml | 12 +- blocks/notify/publish/action.yaml | 10 +- blocks/notify/release/action.yaml | 14 +- blocks/notify/review-required/action.yaml | 4 +- blocks/notify/slack/build/action.yaml | 14 +- blocks/notify/slack/deployment/action.yaml | 12 +- blocks/notify/slack/publish/action.yaml | 10 +- blocks/notify/slack/release/action.yaml | 14 +- .../notify/slack/review-required/action.yaml | 4 +- .../notify/slack/test-regression/action.yaml | 8 +- blocks/notify/slack/tests/action.yaml | 10 +- blocks/notify/test-regression/action.yaml | 8 +- blocks/notify/tests/action.yaml | 10 +- .../pl/linux/test-pl-docker-pnpm/action.yaml | 12 +- blocks/release/registry-bin/action.yaml | 24 +-- blocks/release/s3/action.yaml | 38 ++-- .../signing-tools/macos-notarize/action.yaml | 2 +- blocks/signing-tools/macos-sign/action.yaml | 2 +- blocks/signing-tools/windows-sign/action.yaml | 4 +- blocks/update-cdn-link/action.yaml | 4 +- blocks/update-s3-latest/action.yaml | 26 +-- 118 files changed, 669 insertions(+), 666 deletions(-) diff --git a/.github/workflows/0-automerge.yaml b/.github/workflows/0-automerge.yaml index 18ff8e48..a5d7256b 100644 --- a/.github/workflows/0-automerge.yaml +++ b/.github/workflows/0-automerge.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: fetch-depth: 0 diff --git a/.github/workflows/0-build-docker.yaml b/.github/workflows/0-build-docker.yaml index cff7d8a9..49710758 100644 --- a/.github/workflows/0-build-docker.yaml +++ b/.github/workflows/0-build-docker.yaml @@ -21,7 +21,7 @@ jobs: IMAGE_NAME: 'hook' steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 - name: Log in to the Container registry uses: docker/login-action@v2 @@ -45,7 +45,7 @@ jobs: IMAGE_NAME: 'git-crypt' steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 - name: Log in to the Container registry uses: docker/login-action@v2 @@ -69,7 +69,7 @@ jobs: IMAGE_NAME: 'nginx-spa' steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 - name: Log in to the Container registry uses: docker/login-action@v2 diff --git a/.github/workflows/0-merge-beta.yaml b/.github/workflows/0-merge-beta.yaml index 14ff7204..8904b284 100644 --- a/.github/workflows/0-merge-beta.yaml +++ b/.github/workflows/0-merge-beta.yaml @@ -30,7 +30,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: ref: ${{ github.event.inputs.target_branch || 'v4' }} token: ${{ steps.app-token.outputs.token }} diff --git a/.github/workflows/0-scan-containers.yaml b/.github/workflows/0-scan-containers.yaml index 616f85dc..09fb5e8d 100644 --- a/.github/workflows/0-scan-containers.yaml +++ b/.github/workflows/0-scan-containers.yaml @@ -33,7 +33,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta + - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 id: plan with: mode: plan @@ -43,7 +43,7 @@ jobs: repository: ${{ github.event.inputs.repository || 'milaboratories/pl-containers' }} concurrency: ${{ github.event.inputs.concurrency || 3 }} - - uses: actions/upload-artifact@v4-beta + - uses: actions/upload-artifact@v4 with: name: 00-scanning-plan path: ${{ steps.plan.outputs.plan-dir }} @@ -63,7 +63,7 @@ jobs: steps: - name: Download plan - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: 00-scanning-plan path: "scan-chunks" @@ -74,7 +74,7 @@ jobs: sl=$((RANDOM % 10)) sleep ${sl} - - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta + - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 with: mode: scan report-name: "report-${{ matrix.plan-file }}" @@ -87,26 +87,26 @@ jobs: if: always() steps: - name: Download skipped list - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: skipped-images path: ./consolidated - name: Download all reports - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: pattern: 'report-*' merge-multiple: true path: ./consolidated - name: Summarize all reports - uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4-beta + uses: milaboratory/github-ci/actions/docker/scan-docker-repo@v4 with: mode: summarize summarize-dir: ./consolidated - name: Upload consolidated report - uses: actions/upload-artifact@v4-beta + uses: actions/upload-artifact@v4 with: name: 00-consolidated-report path: ./consolidated diff --git a/.github/workflows/0-test.yaml b/.github/workflows/0-test.yaml index 21bd6046..1bc23225 100644 --- a/.github/workflows/0-test.yaml +++ b/.github/workflows/0-test.yaml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: fetch-depth: 0 diff --git a/.github/workflows/block-mark-stable.yaml b/.github/workflows/block-mark-stable.yaml index 643051f4..92604e3f 100644 --- a/.github/workflows/block-mark-stable.yaml +++ b/.github/workflows/block-mark-stable.yaml @@ -159,7 +159,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: @@ -171,12 +171,12 @@ jobs: needs: init steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BLOCK_PATH: ${{ inputs.block-path }} with: @@ -199,16 +199,16 @@ jobs: id-token: write contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: aws-actions/configure-aws-credentials@v4-beta + - uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} aws-region: ${{ inputs.aws-region }} @@ -219,7 +219,7 @@ jobs: mask-password: 'true' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -230,13 +230,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Mark package as stable - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BLOCK_PATH: ${{ inputs.block-path }} with: @@ -254,12 +254,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | mark-as-stable - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -282,12 +282,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | mark-as-stable - - uses: milaboratory/github-ci/blocks/notify/slack/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/slack/release@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/deploy-docs.yaml b/.github/workflows/deploy-docs.yaml index d9546500..9d5d9dea 100644 --- a/.github/workflows/deploy-docs.yaml +++ b/.github/workflows/deploy-docs.yaml @@ -177,23 +177,23 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 build: name: :build runs-on: ubuntu-latest needs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} @@ -204,19 +204,19 @@ jobs: python-version: ${{ inputs.python-version }} cache: 'pip' - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | sudo apt-get install -y graphviz - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | sudo curl -s -L "https://github.com/plantuml/plantuml/releases/download/v${{ inputs.plantuml-version }}/plantuml-${{ inputs.plantuml-version }}.jar" --output /opt/plantuml.jar - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | @@ -224,20 +224,20 @@ jobs: echo 'java $PLANTUML_JAVAOPTS -jar /opt/plantuml.jar ${@}' >> /usr/local/bin/plantuml chmod +x /usr/local/bin/plantuml - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | pip install pip==24.0 && pip install -r requirements.txt - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | mkdocs build - id: artifact - uses: actions/upload-artifact@v4-beta + uses: actions/upload-artifact@v4 with: name: ${{ inputs.app-name-slug }} path: ${{ inputs.dist-archive-path }} @@ -255,12 +255,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -280,14 +280,14 @@ jobs: contents: read steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: actions/download-artifact@v4-beta + - uses: actions/download-artifact@v4 with: name: ${{ inputs.app-name-slug }} path: ${{ inputs.app-name-slug }} - - uses: milaboratory/github-ci/actions/aws/cloudfront@v4-beta + - uses: milaboratory/github-ci/actions/aws/cloudfront@v4 with: aws-iam-role-to-assume: ${{ inputs.aws-iam-role-to-assume }} aws-region: ${{ inputs.aws-region }} @@ -309,12 +309,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | deployment - - uses: milaboratory/github-ci/blocks/notify/deployment@v4-beta + - uses: milaboratory/github-ci/blocks/notify/deployment@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} diff --git a/.github/workflows/docker-github.yaml b/.github/workflows/docker-github.yaml index c646e05e..898c7fd6 100644 --- a/.github/workflows/docker-github.yaml +++ b/.github/workflows/docker-github.yaml @@ -178,7 +178,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -191,27 +191,27 @@ jobs: - init steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Build Docker Image - uses: milaboratory/github-ci/actions/docker/build@v4-beta + uses: milaboratory/github-ci/actions/docker/build@v4 with: dockerfile: ${{ inputs.dockerfile }} context: ${{ inputs.build-context }} tags: 'build:local' - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 id: tags env: PUSH_DEV_TARGETS: ${{ inputs.push-dev-targets }} @@ -286,7 +286,7 @@ jobs: done done - - uses: milaboratory/github-ci/actions/docker/push@v4-beta + - uses: milaboratory/github-ci/actions/docker/push@v4 id: push with: source: 'build:local' @@ -309,7 +309,7 @@ jobs: - build steps: - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -331,11 +331,11 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: create-release name: Create release - uses: milaboratory/github-ci/actions/release/create@v4-beta + uses: milaboratory/github-ci/actions/release/create@v4 with: token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/java-gradle.yaml b/.github/workflows/java-gradle.yaml index e68378c8..c75bab92 100644 --- a/.github/workflows/java-gradle.yaml +++ b/.github/workflows/java-gradle.yaml @@ -1037,7 +1037,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -1053,29 +1053,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - id: build-gradle - uses: milaboratory/github-ci/blocks/java/build@v4-beta + uses: milaboratory/github-ci/blocks/java/build@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1098,7 +1098,7 @@ jobs: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build @@ -1109,7 +1109,7 @@ jobs: && inputs.notify-build != 'false' && steps.build-gradle.conclusion != 'cancelled' - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1127,23 +1127,23 @@ jobs: needs: - build steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Setup tests matrix - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: tests-matrix with: dump-stdout: false @@ -1179,29 +1179,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4-beta + uses: milaboratory/github-ci/blocks/java/test@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1254,13 +1254,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/tests@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1290,29 +1290,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4-beta + uses: milaboratory/github-ci/blocks/java/test@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1368,13 +1368,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test integration - - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/tests@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1404,30 +1404,30 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: 0 - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.test-s3-iam-role-to-assume }} aws-region: ${{ inputs.test-s3-region }} - id: test - uses: milaboratory/github-ci/blocks/java/test@v4-beta + uses: milaboratory/github-ci/blocks/java/test@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1460,14 +1460,14 @@ jobs: upload-report: ${{ inputs.test-regression-upload-report }} - id: verify-changed-files - uses: milaboratory/github-ci/actions/git/verify-changed-files@v4-beta + uses: milaboratory/github-ci/actions/git/verify-changed-files@v4 with: files: ${{ inputs.test-regression-changed-files-list }} separator: ',' - id: prepare-files-list if: steps.verify-changed-files.outputs.files_changed == 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: CHANGED_FILES: ${{ steps.verify-changed-files.outputs.changed_files }} WORKAROUND_DIR: 'workaround/files' @@ -1491,7 +1491,7 @@ jobs: echo "Wait random number of second before saving the artifact." sleep "${RAN_SEC}" - - uses: actions/upload-artifact@v4-beta + - uses: actions/upload-artifact@v4 if: steps.verify-changed-files.outputs.files_changed == 'true' with: name: test-regression-${{ matrix.test }} @@ -1519,23 +1519,23 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: fetch-depth: 0 - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock && steps.artifact.outputs.exists == 'true' with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - id: get-tag-branch - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | @@ -1544,22 +1544,22 @@ jobs: ghwa_set_output "branch-name" "$_BRANCH_NAME" - - uses: milaboratory/github-ci/actions/artifact/create-empty@v4-beta + - uses: milaboratory/github-ci/actions/artifact/create-empty@v4 - id: merged-artifact - uses: actions/upload-artifact/merge@v4-beta + uses: actions/upload-artifact/merge@v4 with: name: test-regression pattern: test-regression-* separate-directories: false delete-merged: true - - uses: actions/download-artifact@v4-beta + - uses: actions/download-artifact@v4 if: steps.merged-artifact.outputs.artifact-id != '' with: name: test-regression - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | @@ -1567,13 +1567,13 @@ jobs: find . -type f -name 'init.txt' -exec rm -v {} \; - id: verify-changed-files - uses: milaboratory/github-ci/actions/git/verify-changed-files@v4-beta + uses: milaboratory/github-ci/actions/git/verify-changed-files@v4 with: files: ${{ inputs.test-regression-changed-files-list }} separator: ',' - id: create-pull-request - uses: milaboratory/github-ci/actions/git/create-pull-request@v4-beta + uses: milaboratory/github-ci/actions/git/create-pull-request@v4 with: add-paths: ${{ steps.verify-changed-files.outputs.changed_files }} commit-message: 'regression tests automated change' @@ -1604,13 +1604,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test regression - - uses: milaboratory/github-ci/blocks/notify/test-regression@v4-beta + - uses: milaboratory/github-ci/blocks/notify/test-regression@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1631,7 +1631,7 @@ jobs: needs: - test-regression-create-pr steps: - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 env: PR_URL: ${{ needs.test-regression-create-pr.outputs.pr-url }} with: @@ -1658,13 +1658,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test regression - - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/tests@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1689,28 +1689,28 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - - uses: milaboratory/github-ci/blocks/java/build@v4-beta + - uses: milaboratory/github-ci/blocks/java/build@v4 id: with-mapping with: project: ${{ inputs.build-project }} @@ -1738,7 +1738,7 @@ jobs: - name: Upload to S3 id: s3 if: ${{ inputs.dist-archive-s3 }} - uses: milaboratory/github-ci/blocks/release/s3@v4-beta + uses: milaboratory/github-ci/blocks/release/s3@v4 with: artifact-name: ${{ inputs.product-name-slug }} add-version: ${{ inputs.dist-archive-s3-add-version }} @@ -1777,13 +1777,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build archive - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1808,28 +1808,28 @@ jobs: packages: write steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.dist-archive-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-archive-s3-region }} - - uses: milaboratory/github-ci/blocks/java/build@v4-beta + - uses: milaboratory/github-ci/blocks/java/build@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1845,13 +1845,13 @@ jobs: java-version: ${{ inputs.java-version }} java-distribution: ${{ inputs.java-distribution }} - - uses: milaboratory/github-ci/actions/helpers/default-value@v4-beta + - uses: milaboratory/github-ci/actions/helpers/default-value@v4 id: project with: value: ${{ inputs.dist-docker-image-name }} default: ${{ inputs.build-project }} - - uses: milaboratory/github-ci/blocks/java/publish/docker@v4-beta + - uses: milaboratory/github-ci/blocks/java/publish/docker@v4 id: docker-push with: project: ${{ steps.project.outputs.value }} @@ -1879,13 +1879,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build docker - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -1909,29 +1909,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.dist-library-s3-iam-role-to-assume }} aws-region: ${{ inputs.dist-library-s3-region }} - name: publish lib to dev - uses: milaboratory/github-ci/blocks/java/build@v4-beta + uses: milaboratory/github-ci/blocks/java/build@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -1948,17 +1948,17 @@ jobs: java-distribution: ${{ inputs.java-distribution }} - id: props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 with: project-dir: ${{ inputs.build-project-dir }} project-name: ${{ inputs.build-project }} - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Prepare JSON list of published libraries id: libs-list - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: |- ${{ steps.props.outputs.group}}:${{ steps.props.outputs.name }}:${{ steps.context.outputs.current-version }} @@ -1985,13 +1985,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build library - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2016,24 +2016,24 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - - uses: milaboratory/github-ci/blocks/node/build-and-publish@v4-beta + - uses: milaboratory/github-ci/blocks/node/build-and-publish@v4 name: Release npm package if: github.ref_name == inputs.release-branch-name && inputs.node-execution-path != '' with: @@ -2074,14 +2074,14 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build sign archive - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2106,14 +2106,14 @@ jobs: steps: - id: cdn-string - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | CDN_URL=$(echo '${{ needs.distArchive.outputs.s3-urls-json }}' | jq -r -c '.[]') ghwa_set_output "converted_cdn_url" "${CDN_URL}" - - uses: milaboratory/github-ci/blocks/update-cdn-link@v4-beta + - uses: milaboratory/github-ci/blocks/update-cdn-link@v4 with: cdn-redirect-link: ${{ fromJSON( steps.cdn-string.outputs.data ).converted_cdn_url }} s3-iam-role-to-assume: ${{ inputs.cdn-redirect-s3-iam-role-to-assume }} @@ -2174,7 +2174,7 @@ jobs: - notify-test-regression steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta + - uses: milaboratory/github-ci/blocks/notify/review-required@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -2215,16 +2215,16 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: actions/download-artifact@v4-beta + - uses: actions/download-artifact@v4 if: inputs.dist-archive with: name: ${{ inputs.product-name-slug }} path: release-files - name: Create release - uses: milaboratory/github-ci/actions/release/create@v4-beta + uses: milaboratory/github-ci/actions/release/create@v4 with: token: ${{ secrets.GITHUB_TOKEN }} @@ -2255,7 +2255,7 @@ jobs: steps: - id: s3 name: Upload to S3 - uses: milaboratory/github-ci/blocks/release/s3@v4-beta + uses: milaboratory/github-ci/blocks/release/s3@v4 with: artifact-name: ${{ inputs.product-name-slug }} add-version: ${{ inputs.release-s3-add-version }} @@ -2289,29 +2289,29 @@ jobs: contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/git/crypt@v4-beta + - uses: milaboratory/github-ci/actions/git/crypt@v4 if: inputs.git-crypt-unlock with: gpg-key: ${{ secrets.GIT_CRYPT_GPG_KEY }} gpg-key-password: ${{ secrets.GIT_CRYPT_KEY_PASSWORD }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.release-s3-iam-role-to-assume }} aws-region: ${{ inputs.release-s3-region }} - name: publish lib - uses: milaboratory/github-ci/blocks/java/build@v4-beta + uses: milaboratory/github-ci/blocks/java/build@v4 with: project: ${{ inputs.build-project }} project-dir: ${{ inputs.build-project-dir }} @@ -2328,17 +2328,17 @@ jobs: java-distribution: ${{ inputs.java-distribution }} - id: props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 with: project-dir: ${{ inputs.build-project-dir }} project-name: ${{ inputs.build-project }} - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Prepare JSON list of published libraries id: libs-list - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: |- ${{ steps.props.outputs.group}}:${{ steps.props.outputs.name }}:${{ steps.context.outputs.current-version }} @@ -2366,12 +2366,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} diff --git a/.github/workflows/node-docker-simple-fast-pnpm.yaml b/.github/workflows/node-docker-simple-fast-pnpm.yaml index f3fdc578..e11f5c10 100644 --- a/.github/workflows/node-docker-simple-fast-pnpm.yaml +++ b/.github/workflows/node-docker-simple-fast-pnpm.yaml @@ -377,7 +377,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -399,31 +399,31 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - name: Add MiLab shell utils to PATH - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | NPM_PKG_VERSION="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.version')" @@ -431,7 +431,7 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" ghwa_set_output pnpm-pkg-version "${PNPM_PKG_VERSION}" - - uses: aws-actions/configure-aws-credentials@v4-beta + - uses: aws-actions/configure-aws-credentials@v4 if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE || env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} @@ -443,9 +443,9 @@ jobs: with: mask-password: "true" - - uses: milaboratory/github-ci/actions/turborepo/cache@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache@v4 - - uses: milaboratory/github-ci/blocks/node/build-and-test-pnpm@v4-beta + - uses: milaboratory/github-ci/blocks/node/build-and-test-pnpm@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -465,7 +465,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - id: test - uses: milaboratory/github-ci/blocks/pl/linux/test-pl-docker-pnpm@v4-beta + uses: milaboratory/github-ci/blocks/pl/linux/test-pl-docker-pnpm@v4 if: inputs.test env: PL_ADDRESS: "http://127.0.0.1:6345" @@ -553,12 +553,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.build-test-publish.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-go-simple.yaml b/.github/workflows/node-go-simple.yaml index 07b50176..8c51c913 100644 --- a/.github/workflows/node-go-simple.yaml +++ b/.github/workflows/node-go-simple.yaml @@ -330,7 +330,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -348,17 +348,17 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -368,18 +368,18 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4-beta + uses: milaboratory/github-ci/actions/golang/prepare@v4 with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.golang-cache-version }} cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4-beta + - uses: milaboratory/github-ci/actions/git/auth@v4 with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta + - uses: milaboratory/github-ci/blocks/node/build/generic@v4 with: build-script-name: ${{ inputs.build-script-name }} node-version: ${{ inputs.node-version }} @@ -408,12 +408,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 env: NPM_PKG_VERSION: ${{ needs.build.outputs.npm-pkg-version }} with: @@ -438,28 +438,28 @@ jobs: - build steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4-beta + uses: milaboratory/github-ci/actions/golang/prepare@v4 with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.golang-cache-version }} cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4-beta + - uses: milaboratory/github-ci/actions/git/auth@v4 with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/test@v4-beta + - uses: milaboratory/github-ci/blocks/node/test@v4 with: test-name: ${{ inputs.test-script-name }} node-version: ${{ inputs.node-version }} @@ -488,13 +488,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/tests@v4 env: NPM_PKG_VERSION: ${{ needs.test.outputs.npm-pkg-version }} with: @@ -537,7 +537,7 @@ jobs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta + - uses: milaboratory/github-ci/blocks/notify/review-required@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -582,26 +582,26 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 with: package-json-path: "${{ github.workspace }}/package.json" registry-url: ${{ inputs.registry-url }} npm-auth-token: ${{ env.NPMJS_TOKEN || secrets.GITHUB_TOKEN }} - name: Prepare environment for running Golang - uses: milaboratory/github-ci/actions/golang/prepare@v4-beta + uses: milaboratory/github-ci/actions/golang/prepare@v4 if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: @@ -610,13 +610,13 @@ jobs: cache-dependency-path: ${{ inputs.golang-cache-dependency-path }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-dependency-hashfiles-path }} - - uses: milaboratory/github-ci/actions/git/auth@v4-beta + - uses: milaboratory/github-ci/actions/git/auth@v4 if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: github-token: ${{ env.GH_CI_PAT || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta + - uses: milaboratory/github-ci/blocks/node/build/generic@v4 if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' with: @@ -627,7 +627,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 if: inputs.aws-login-enable && steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' @@ -655,12 +655,12 @@ jobs: - name: Add MiLab shell utils to PATH if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - name: Publish npm package if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -686,7 +686,7 @@ jobs: - name: Create release with tag if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta + uses: milaboratory/github-ci/actions/release/create-with-tag@v4 env: NPM_PKG_VERSION: ${{ steps.npm-pkg-status.outputs.pkg-version }} with: @@ -716,12 +716,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.publish-to-npm.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-matrix-pnpm.yaml b/.github/workflows/node-matrix-pnpm.yaml index ade8ee8c..248e241a 100644 --- a/.github/workflows/node-matrix-pnpm.yaml +++ b/.github/workflows/node-matrix-pnpm.yaml @@ -468,7 +468,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} current-version: ${{ steps.context.outputs.current-version }} @@ -479,12 +479,12 @@ jobs: needs: - init steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PACKAGE_PATH: ${{ inputs.package-path }} with: @@ -506,20 +506,20 @@ jobs: if: github.ref_name == 'main' || github.event_name == 'merge_group' steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: '0' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -530,13 +530,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Check for Changesets - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BRANCH_NAME: ${{ inputs.changeset-default-branch }} with: @@ -563,7 +563,7 @@ jobs: id-token: write contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -575,14 +575,14 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} - name: Install system build tools on Linux if: runner.os == 'Linux' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | @@ -590,7 +590,7 @@ jobs: sudo apt-get install -y build-essential gfortran libopenblas-dev liblapack-dev cmake pkg-config - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -612,7 +612,7 @@ jobs: username: ${{ env.QUAY_USERNAME }} password: ${{ env.QUAY_ROBOT_TOKEN }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} @@ -650,19 +650,19 @@ jobs: - name: Configure ccache if: inputs.enable-ccache - uses: milaboratory/github-ci/actions/ccache@v4-beta + uses: milaboratory/github-ci/actions/ccache@v4 with: options: ${{ inputs.ccache-options }} - name: Cache additional paths - uses: actions/cache@v4-beta + uses: actions/cache@v4 if: inputs.cache-paths != '' with: path: ${{ inputs.cache-paths }} key: ${{ runner.os }}-${{ runner.arch }}-cache-additional-${{ inputs.cache-version }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -673,7 +673,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -690,7 +690,7 @@ jobs: pnpm run build --filter="${PRE_CALCULATED_STEP}" - name: CodeSign binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4 if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -701,7 +701,7 @@ jobs: mac-cert-passwd: ${{ secrets.MAC_SIGN_CERT_PWD }} - name: Notarize binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4 if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -730,7 +730,7 @@ jobs: - name: CodeSign binary on Windows if: runner.os == 'Windows' && inputs.sign-binaries != '' - uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4 with: binaries: ${{ inputs.sign-binaries }} code-sign-chain: ${{ secrets.WIN_SIGN_CERT }} @@ -759,7 +759,7 @@ jobs: echo "name=prebuild-results-${M_OS}-${M_ARCH}-${M_SELECTOR}" >> $GITHUB_OUTPUT - name: Save prebuild results for transfer to final build - uses: milaboratory/github-ci/actions/artifact/save@v4-beta + uses: milaboratory/github-ci/actions/artifact/save@v4 with: name: ${{ steps.archive-name.outputs.name }} path: '*/dist/' @@ -779,9 +779,9 @@ jobs: issues: read steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -793,7 +793,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} @@ -801,7 +801,7 @@ jobs: - name: Install system build tools on Linux if: runner.os == 'Linux' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | @@ -809,7 +809,7 @@ jobs: sudo apt-get install -y build-essential gfortran libopenblas-dev liblapack-dev cmake pkg-config - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -832,7 +832,7 @@ jobs: password: ${{ env.QUAY_ROBOT_TOKEN }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -842,14 +842,14 @@ jobs: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} npmrc-config: ${{ inputs.npmrc-config }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} team-id: ${{ inputs.team-id }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -860,7 +860,7 @@ jobs: - name: Run changeset version if: ( github.event_name == 'push' && github.ref_name == 'main') || github.event_name == 'pull_request' || github.event_name == 'merge_group' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm run version-packages @@ -894,15 +894,15 @@ jobs: - name: Restore prebuild results - uses: milaboratory/github-ci/actions/artifact/restore@v4-beta + uses: milaboratory/github-ci/actions/artifact/restore@v4 with: pattern: prebuild-results-* - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 - name: Run build - main metapackage - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -921,7 +921,7 @@ jobs: run: echo "user-id=$(gh api "/users/${{ steps.app-token.outputs.app-slug }}[bot]" --jq .id)" >> "$GITHUB_OUTPUT" - name: Commit changed files to main - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 if: steps.check-changes.outputs.has-changes == '1' env: USER_ID: ${{ steps.get-user-id.outputs.user-id }} @@ -965,7 +965,7 @@ jobs: if: github.ref_name == 'main' && steps.check-changes.outputs.has-changes == '0' && inputs.create-tag == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta + uses: milaboratory/github-ci/actions/release/create-with-tag@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -995,12 +995,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-matrix.yaml b/.github/workflows/node-matrix.yaml index 52b986de..0e6d8cfa 100644 --- a/.github/workflows/node-matrix.yaml +++ b/.github/workflows/node-matrix.yaml @@ -439,7 +439,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ fromJSON(steps.context.outputs.is-release) }} @@ -462,17 +462,17 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - name: Install pipx rockylinux - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 if: runner.os == 'Linux' && inputs.python-version != '' with: dump-stdout: false @@ -481,7 +481,7 @@ jobs: python3 -m pipx ensurepath echo "$HOME/.local/bin" >> $GITHUB_PATH - - uses: milaboratory/github-ci/actions/r/prepare@v4-beta + - uses: milaboratory/github-ci/actions/r/prepare@v4 if: inputs.r-version != '' with: r-version: ${{ inputs.r-version }} @@ -489,21 +489,21 @@ jobs: - name: Configure ccache if: inputs.enable-ccache - uses: milaboratory/github-ci/actions/ccache@v4-beta + uses: milaboratory/github-ci/actions/ccache@v4 with: options: ${{ inputs.ccache-options }} - name: Cache additional paths - uses: actions/cache@v4-beta + uses: actions/cache@v4 if: inputs.cache-paths != '' with: path: ${{ inputs.cache-paths }} key: ${{ runner.os }}-${{ runner.arch }}-cache-additional-${{ inputs.cache-version }} - name: Load MiLaboratories custom CLI tools - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - - uses: milaboratory/github-ci/blocks/node/test@v4-beta + - uses: milaboratory/github-ci/blocks/node/test@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -519,7 +519,7 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: CodeSign binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/macos-sign@v4 if: runner.os == 'macOS' && inputs.sign-binaries != '' with: @@ -543,7 +543,7 @@ jobs: - name: CodeSign binary on Windows if: runner.os == 'Windows' && inputs.sign-binaries != '' - uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/windows-sign@v4 with: binaries: ${{ inputs.sign-binaries }} code-sign-chain: ${{ secrets.WIN_SIGN_CERT }} @@ -552,7 +552,7 @@ jobs: access-token: ${{ steps.gcp-auth.outputs.access_token }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE }} @@ -567,7 +567,7 @@ jobs: npm run --if-present after-prebuild - name: Saving build artifacts for publish step - uses: milaboratory/github-ci/actions/artifact/save@v4-beta + uses: milaboratory/github-ci/actions/artifact/save@v4 id: build-artifacts if: inputs.build-artifacts != '' with: @@ -594,12 +594,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -632,7 +632,7 @@ jobs: needs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta + - uses: milaboratory/github-ci/blocks/notify/review-required@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -651,17 +651,17 @@ jobs: environment: release steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4-beta + uses: milaboratory/github-ci/actions/node/prepare@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -674,7 +674,7 @@ jobs: install-deps: false - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 with: package-json-path: "${{ github.workspace }}/package.json" registry-url: ${{ inputs.registry-url }} @@ -704,19 +704,19 @@ jobs: - release steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: milaboratory/github-ci/actions/artifact/restore@v4-beta + - uses: milaboratory/github-ci/actions/artifact/restore@v4 id: build-artifacts if: inputs.build-artifacts != '' with: pattern: build-artifacts-${{ matrix.os }}-${{ matrix.arch }} - name: Notarize binary on macOS - uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4-beta + uses: milaboratory/github-ci/blocks/signing-tools/macos-notarize@v4 if: runner.os == 'macOS' with: paths: ${{ inputs.notarize-paths }} @@ -743,17 +743,17 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4-beta + uses: milaboratory/github-ci/actions/node/prepare@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -765,26 +765,26 @@ jobs: update-npm: true install-deps: true - - uses: milaboratory/github-ci/actions/python/prepare@v4-beta + - uses: milaboratory/github-ci/actions/python/prepare@v4 if: inputs.python-version != '' with: python-version: ${{ inputs.python-version }} cache-version: ${{ inputs.cache-version }} - - uses: milaboratory/github-ci/actions/r/prepare@v4-beta + - uses: milaboratory/github-ci/actions/r/prepare@v4 if: inputs.r-version != '' with: r-version: ${{ inputs.r-version }} # cache-version: ${{ inputs.cache-version }} - - uses: milaboratory/github-ci/actions/artifact/restore@v4-beta + - uses: milaboratory/github-ci/actions/artifact/restore@v4 id: build-artifacts if: inputs.build-artifacts != '' with: pattern: build-artifacts-* - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 if: inputs.aws-login-enable with: role-to-assume: ${{ secrets.AWS_ASSUME_ROLE }} @@ -806,10 +806,10 @@ jobs: - name: Load MiLaboratories custom CLI tools if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - name: Publish npm package - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -833,7 +833,7 @@ jobs: fi - name: Create release with tag - uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta + uses: milaboratory/github-ci/actions/release/create-with-tag@v4 env: NPM_PKG_VERSION: ${{ needs.release.outputs.package-version }} with: @@ -862,12 +862,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.release.outputs.package-version }} with: diff --git a/.github/workflows/node-simple-pnpm-k8s.yaml b/.github/workflows/node-simple-pnpm-k8s.yaml index 72400087..f51b1214 100644 --- a/.github/workflows/node-simple-pnpm-k8s.yaml +++ b/.github/workflows/node-simple-pnpm-k8s.yaml @@ -296,22 +296,22 @@ jobs: permissions: id-token: write steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: azure/setup-kubectl@v4-beta + - uses: azure/setup-kubectl@v4 with: version: ${{ inputs.kubectl-version }} - - uses: azure/setup-helm@v4-beta + - uses: azure/setup-helm@v4 with: version: ${{ inputs.helm-version }} - uses: google-github-actions/setup-gcloud@v2 - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: submodules: ${{ inputs.checkout-submodules }} fetch-depth: "0" @@ -346,13 +346,13 @@ jobs: - name: Configure AWS credentials if: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE != '' }} - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} aws-region: ${{ inputs.aws-region }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 if: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET != '' }} with: storage-provider: "s3" @@ -377,7 +377,7 @@ jobs: echo "PL_TEST_USER=${PL_CI_TEST_USER:-testuser1}" >> "${GITHUB_ENV}" echo "PL_TEST_PASSWORD=${PL_CI_TEST_PASSWORD:-testpassword1}" >> "${GITHUB_ENV}" - - uses: milaboratory/github-ci/actions/k8s/helm-deployment@v4-beta + - uses: milaboratory/github-ci/actions/k8s/helm-deployment@v4 with: helm-release-name: ${{ env.HELM_RELEASE_NAME }} helm-chart-name: ${{ inputs.helm-chart-name }} @@ -417,7 +417,7 @@ jobs: done - id: test - uses: milaboratory/github-ci/blocks/monorepo/test-pl-k8s-pnpm@v4-beta + uses: milaboratory/github-ci/blocks/monorepo/test-pl-k8s-pnpm@v4 env: PL_DOCKER_REGISTRY_PUSH_TO: ${{ inputs.pl-docker-registry-push-to }} with: @@ -461,14 +461,14 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test integration google-batch - - uses: milaboratory/github-ci/blocks/notify/slack/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/slack/tests@v4 env: NPM_PKG_VERSION: ${{ needs.run-tests.outputs.npm-pkg-version }} with: diff --git a/.github/workflows/node-simple-pnpm.yaml b/.github/workflows/node-simple-pnpm.yaml index fb57885a..764f79a1 100644 --- a/.github/workflows/node-simple-pnpm.yaml +++ b/.github/workflows/node-simple-pnpm.yaml @@ -440,7 +440,7 @@ jobs: runs-on: ubuntu-latest steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} current-version: ${{ steps.context.outputs.current-version }} @@ -451,13 +451,13 @@ jobs: needs: - init steps: - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PACKAGE_PATH: ${{ inputs.package-path }} with: @@ -479,21 +479,21 @@ jobs: - metadata steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} fetch-depth: '0' - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -504,13 +504,13 @@ jobs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Check for Changesets - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BRANCH_NAME: ${{ inputs.changeset-default-branch }} with: @@ -538,7 +538,7 @@ jobs: id-token: write contents: read steps: - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -550,14 +550,14 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} token: ${{ steps.app-token.outputs.token }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -586,14 +586,14 @@ jobs: password: ${{ env.QUAY_ROBOT_TOKEN }} ecr: false - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} team-id: ${{ inputs.team-id }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -623,7 +623,7 @@ jobs: - name: Run changeset version if: ( github.event_name == 'push' && github.ref_name == 'main') || github.event_name == 'pull_request' || github.event_name == 'merge_group' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm run version-packages @@ -663,9 +663,9 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} @@ -677,7 +677,7 @@ jobs: app-id: ${{ secrets.GH_ZEN_APP_ID }} private-key: ${{ secrets.GH_ZEN_APP_PRIVATE_KEY }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-git-lfs }} submodules: ${{ inputs.checkout-submodules }} @@ -685,14 +685,14 @@ jobs: fetch-depth: '0' - name: Check infrastructure requirements for publication - uses: milaboratory/github-ci/actions/node/require-latest@v4-beta + uses: milaboratory/github-ci/actions/node/require-latest@v4 with: packages: | @platforma-sdk/block-tools @platforma-sdk/tengo-builder - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} role-duration-seconds: ${{ inputs.aws-login-duration }} @@ -723,14 +723,14 @@ jobs: - name: Prepare environment for Golang when requested if: inputs.golang-version != '' - uses: milaboratory/github-ci/actions/golang/prepare@v4-beta + uses: milaboratory/github-ci/actions/golang/prepare@v4 with: golang-version: ${{ inputs.golang-version }} cache-version: ${{ inputs.cache-version }} cache-dependency-hashfiles-path: ${{ inputs.golang-cache-hashfiles-path }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 env: PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} with: @@ -740,7 +740,7 @@ jobs: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} npmrc-config: ${{ inputs.npmrc-config }} - - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4-beta + - uses: milaboratory/github-ci/actions/turborepo/cache-s3@v4 with: storage-provider: 's3' storage-path: ${{ env.AWS_CI_TURBOREPO_S3_BUCKET }} @@ -798,7 +798,7 @@ jobs: fi - name: Run build - uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4-beta + uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -818,7 +818,7 @@ jobs: - name: Run tests id: test - uses: milaboratory/github-ci/blocks/monorepo/test-pl-docker-pnpm@v4-beta + uses: milaboratory/github-ci/blocks/monorepo/test-pl-docker-pnpm@v4 if: inputs.test env: PL_ADDRESS: "http://127.0.0.1:6345" @@ -844,7 +844,7 @@ jobs: test-results-reports: ${{ inputs.test-results-reports }} - name: Run build (before publish) - uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4-beta + uses: milaboratory/github-ci/blocks/monorepo/build-and-test-pnpm@v4 env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} @@ -863,7 +863,7 @@ jobs: test-results-reports: ${{ inputs.test-results-reports }} - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 - name: Get GitHub App User ID if: steps.check-changes.outputs.has-changes == '1' @@ -873,7 +873,7 @@ jobs: run: echo "user-id=$(gh api "/users/${{ steps.app-token.outputs.app-slug }}[bot]" --jq .id)" >> "$GITHUB_OUTPUT" - name: Commit changed files to main - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 if: steps.check-changes.outputs.has-changes == '1' env: USER_ID: ${{ steps.get-user-id.outputs.user-id }} @@ -921,7 +921,7 @@ jobs: if: github.ref_name == 'main' && steps.check-changes.outputs.has-changes == '0' && inputs.create-tag == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta + uses: milaboratory/github-ci/actions/release/create-with-tag@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -951,12 +951,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/slack/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/slack/release@v4 env: NPM_PKG_VERSION: ${{ needs.metadata.outputs.npm-pkg-version }} with: @@ -980,7 +980,7 @@ jobs: steps: - name: Check workflow duration id: check-duration - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: GH_TOKEN: ${{ github.token }} GITHUB_REPOSITORY: ${{ github.repository }} @@ -1024,7 +1024,7 @@ jobs: - name: Send Slack notification for slow merge queue if: fromJSON(steps.check-duration.outputs.data).alert == 'true' && inputs.notify-slack - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ secrets.SLACK_BOT_TOKEN }} method: chat.postMessage diff --git a/.github/workflows/node-simple.yaml b/.github/workflows/node-simple.yaml index 39e19fac..ae8b2a9d 100644 --- a/.github/workflows/node-simple.yaml +++ b/.github/workflows/node-simple.yaml @@ -332,7 +332,7 @@ jobs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 outputs: is-release: ${{ steps.context.outputs.is-release }} @@ -350,7 +350,7 @@ jobs: - init steps: - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -358,18 +358,18 @@ jobs: sudo apt-get update && \ DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -378,7 +378,7 @@ jobs: ghwa_set_output npm-pkg-name "${NPM_PKG_NAME}" ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta + - uses: milaboratory/github-ci/blocks/node/build/generic@v4 env: NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} with: @@ -411,12 +411,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | build - - uses: milaboratory/github-ci/blocks/notify/build@v4-beta + - uses: milaboratory/github-ci/blocks/notify/build@v4 env: NPM_PKG_VERSION: ${{ needs.build.outputs.npm-pkg-version }} with: @@ -441,7 +441,7 @@ jobs: - build steps: - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -449,18 +449,18 @@ jobs: sudo apt-get update && \ DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -470,7 +470,7 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - id: test - uses: milaboratory/github-ci/blocks/node/test@v4-beta + uses: milaboratory/github-ci/blocks/node/test@v4 env: NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} with: @@ -506,13 +506,13 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | test unit - - uses: milaboratory/github-ci/blocks/notify/tests@v4-beta + - uses: milaboratory/github-ci/blocks/notify/tests@v4 env: NPM_PKG_VERSION: ${{ needs.test.outputs.npm-pkg-version }} with: @@ -555,7 +555,7 @@ jobs: - can-release steps: - - uses: milaboratory/github-ci/blocks/notify/review-required@v4-beta + - uses: milaboratory/github-ci/blocks/notify/review-required@v4 with: telegram-target: ${{ secrets.TELEGRAM_NOTIFICATION_TARGET }} telegram-token: ${{ secrets.TELEGRAM_API_TOKEN }} @@ -600,7 +600,7 @@ jobs: contents: write steps: - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 if: inputs.gha-runner-label == 'dev-assets' with: dump-stdout: false @@ -609,20 +609,20 @@ jobs: DEBIAN_FRONTEND=noninteractive TZ=Etc/UTC sudo apt-get install -y build-essential git jq awscli wget unzip - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/env@v4-beta + - uses: milaboratory/github-ci/actions/env@v4 with: inputs: ${{ inputs.env }} secrets: ${{ secrets.env }} - - uses: actions/checkout@v4-beta + - uses: actions/checkout@v4 with: lfs: ${{ inputs.checkout-lfs }} submodules: ${{ inputs.checkout-submodules }} - id: npm-pkg-metadata - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | NPM_PKG_NAME="$(cat "${GITHUB_WORKSPACE}/package.json" | jq --raw-output '.name')" @@ -632,14 +632,14 @@ jobs: ghwa_set_output npm-pkg-version "${NPM_PKG_VERSION}" - id: npm-pkg-status - uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4-beta + uses: milaboratory/github-ci/actions/node/npm-pkg-status@v4 with: npm-pkg-name: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-name }} npm-pkg-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} registry-url: ${{ inputs.registry-url }} npm-auth-token: ${{ env.NPMJS_TOKEN || secrets.GITHUB_TOKEN }} - - uses: milaboratory/github-ci/blocks/node/build/generic@v4-beta + - uses: milaboratory/github-ci/blocks/node/build/generic@v4 if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' env: @@ -686,7 +686,7 @@ jobs: - name: Add MiLab shell utils to PATH if: inputs.gcp-login-enable - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - name: Publish npm package if: steps.npm-pkg-status.outputs.exist == '0' @@ -717,7 +717,7 @@ jobs: - name: Create release with tag if: steps.npm-pkg-status.outputs.exist == '0' && steps.context.outputs.is-release == 'true' - uses: milaboratory/github-ci/actions/release/create-with-tag@v4-beta + uses: milaboratory/github-ci/actions/release/create-with-tag@v4 env: NPM_PKG_VERSION: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} with: @@ -747,12 +747,12 @@ jobs: steps: - id: search-tags if: always() - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: | release - - uses: milaboratory/github-ci/blocks/notify/release@v4-beta + - uses: milaboratory/github-ci/blocks/notify/release@v4 env: NPM_PKG_VERSION: ${{ needs.publish-to-npm.outputs.npm-pkg-version }} with: diff --git a/actions/action-test/action.yaml b/actions/action-test/action.yaml index 7c264323..9457247a 100644 --- a/actions/action-test/action.yaml +++ b/actions/action-test/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Run tests id: tests - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | diff --git a/actions/artifact/create-empty/action.yaml b/actions/artifact/create-empty/action.yaml index f22a40dc..543eb466 100644 --- a/actions/artifact/create-empty/action.yaml +++ b/actions/artifact/create-empty/action.yaml @@ -2,14 +2,14 @@ name: Create empty artifact for regression tests author: 'MiLaboratories' description: | Create empty artifact for regression tests because now - actions/upload-artifact/merge@v4-beta doesn't support option + actions/upload-artifact/merge@v4 doesn't support option if-no-files-found: ignore runs: using: "composite" steps: - - uses: actions/upload-artifact@v4-beta + - uses: actions/upload-artifact@v4 with: name: test-regression-empty path: ${{ github.action_path }}/init.txt diff --git a/actions/artifact/restore/action.yaml b/actions/artifact/restore/action.yaml index 518235be..fc463e1e 100644 --- a/actions/artifact/restore/action.yaml +++ b/actions/artifact/restore/action.yaml @@ -60,7 +60,7 @@ runs: archive_name="artifact-5b3513f5" echo "name=${archive_name}" >> "${GITHUB_OUTPUT}" - - uses: actions/download-artifact@v4-beta + - uses: actions/download-artifact@v4 with: name: ${{ inputs.name }} pattern: ${{ inputs.pattern }} diff --git a/actions/artifact/save/action.yaml b/actions/artifact/save/action.yaml index 2bd974ba..473c07ae 100644 --- a/actions/artifact/save/action.yaml +++ b/actions/artifact/save/action.yaml @@ -94,7 +94,7 @@ runs: archive_name="artifact-5b3513f5" echo "name=${archive_name}" >> "${GITHUB_OUTPUT}" - - uses: milaboratory/github-ci/actions/files/list@v4-beta + - uses: milaboratory/github-ci/actions/files/list@v4 id: artifact-files with: patterns: ${{ inputs.path }} @@ -128,7 +128,7 @@ runs: # - uses: fawazahmed0/action-debug-vscode@main # if: inputs.interactive-debug == 'true' - - uses: actions/upload-artifact@v4-beta + - uses: actions/upload-artifact@v4 with: name: ${{ inputs.name }} if-no-files-found: ${{ inputs.if-no-files-found }} diff --git a/actions/artifact/write-metadata/action.yaml b/actions/artifact/write-metadata/action.yaml index 85cddcc1..db700f84 100644 --- a/actions/artifact/write-metadata/action.yaml +++ b/actions/artifact/write-metadata/action.yaml @@ -46,11 +46,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Get repository name id: repo - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | REPO=$(echo "${GITHUB_REPOSITORY}" | cut -d'/' -f2) @@ -58,7 +58,7 @@ runs: - name: Get version type id: version-type - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -69,7 +69,7 @@ runs: echo "snapshot" fi - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 env: DB_URL: ${{ inputs.db-url }} DB_USER: ${{ inputs.db-user }} diff --git a/actions/aws/cloudfront/action.yaml b/actions/aws/cloudfront/action.yaml index a3343d6d..363d1885 100644 --- a/actions/aws/cloudfront/action.yaml +++ b/actions/aws/cloudfront/action.yaml @@ -45,12 +45,12 @@ runs: using: "composite" steps: - - uses: aws-actions/configure-aws-credentials@v4-beta + - uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.aws-iam-role-to-assume }} aws-region: ${{ inputs.aws-region }} - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 env: CF_DIST_ID: ${{ inputs.aws-cloudfront-distribution-id }} CF_S3_BUCKET_NAME: ${{ inputs.aws-cloudfront-s3-bucket-name }} diff --git a/actions/aws/prefix-delete/action.yaml b/actions/aws/prefix-delete/action.yaml index da05d651..c01fdc9a 100644 --- a/actions/aws/prefix-delete/action.yaml +++ b/actions/aws/prefix-delete/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Delete objects under a prefix - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BUCKET_NAME: ${{ inputs.s3-bucket-name }} PREFIX: ${{ inputs.s3-prefix-name }} diff --git a/actions/ccache/action.yaml b/actions/ccache/action.yaml index 71f80b37..ed167e7f 100644 --- a/actions/ccache/action.yaml +++ b/actions/ccache/action.yaml @@ -102,7 +102,7 @@ runs: evict-old-files: ${{ inputs.evict-old-files }} - name: Configure ccache - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OPTS: ${{ inputs.options }} with: diff --git a/actions/context/action.yaml b/actions/context/action.yaml index bdc40be4..429a4c1d 100644 --- a/actions/context/action.yaml +++ b/actions/context/action.yaml @@ -56,4 +56,4 @@ runs: steps: - id: versions - uses: milaboratory/github-ci/actions/context/get@v4-beta + uses: milaboratory/github-ci/actions/context/get@v4 diff --git a/actions/context/get/action.yaml b/actions/context/get/action.yaml index 4fa92e24..43e45727 100644 --- a/actions/context/get/action.yaml +++ b/actions/context/get/action.yaml @@ -30,7 +30,7 @@ runs: steps: - id: needs_update - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: CTX_PATH: ${{ github.action_path }}/../ctx diff --git a/actions/context/init/action.yaml b/actions/context/init/action.yaml index 7d3251d2..74e40a4f 100644 --- a/actions/context/init/action.yaml +++ b/actions/context/init/action.yaml @@ -36,7 +36,7 @@ runs: fetch-tags: true - id: versions - uses: milaboratory/github-ci/actions/detect-version@v4-beta + uses: milaboratory/github-ci/actions/detect-version@v4 with: canonize: ${{ inputs.version-canonize }} fetch-depth: ${{ inputs.version-fetch-depth }} diff --git a/actions/docker/build/action.yaml b/actions/docker/build/action.yaml index dc6ebff1..975b6382 100644 --- a/actions/docker/build/action.yaml +++ b/actions/docker/build/action.yaml @@ -71,7 +71,7 @@ runs: using: 'composite' steps: - name: Build Docker Image - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: build-image env: DOCKERFILE: ${{ inputs.dockerfile }} diff --git a/actions/docker/pl-compose/action.yaml b/actions/docker/pl-compose/action.yaml index 295873e3..0364f4a0 100644 --- a/actions/docker/pl-compose/action.yaml +++ b/actions/docker/pl-compose/action.yaml @@ -52,7 +52,7 @@ runs: steps: - name: Install Docker Compose - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | @@ -133,7 +133,7 @@ runs: # # Ordering of post-steps is reversed. We need to declare the last step first. # - - uses: milaboratory/github-ci/actions/post/shell@v4-beta + - uses: milaboratory/github-ci/actions/post/shell@v4 env: PL_MAIN_ROOT: ${{ steps.launch-pl.outputs.main-root }} with: @@ -142,14 +142,14 @@ runs: echo "Removing '${PL_MAIN_ROOT}'" rm -rf "${PL_MAIN_ROOT}" - - uses: milaboratory/github-ci/actions/post/artifact@v4-beta + - uses: milaboratory/github-ci/actions/post/artifact@v4 with: name: platforma-dump archive: true path: | ${{ steps.launch-pl.outputs.main-root }} - - uses: milaboratory/github-ci/actions/post/shell@v4-beta + - uses: milaboratory/github-ci/actions/post/shell@v4 env: ACTION_PATH: ${{ github.action_path }} PL_MAIN_ROOT: ${{ steps.launch-pl.outputs.main-root }} diff --git a/actions/docker/pl-compose/docker-compose.yaml b/actions/docker/pl-compose/docker-compose.yaml index cc04808b..febfb10b 100644 --- a/actions/docker/pl-compose/docker-compose.yaml +++ b/actions/docker/pl-compose/docker-compose.yaml @@ -3,6 +3,9 @@ name: "platform" services: minio: image: quay.io/minio/minio + # Run as the runner UID/GID — keeps all files in PL_MAIN_ROOT owned by + # one user so cleanup (rm -rf) works without sudo. + user: "${PL_UID}:${PL_GID}" command: server /data/minio --address "0.0.0.0:9000" --console-address "0.0.0.0:9001" ports: diff --git a/actions/docker/push/action.yaml b/actions/docker/push/action.yaml index ae25cefc..1b951bf1 100644 --- a/actions/docker/push/action.yaml +++ b/actions/docker/push/action.yaml @@ -61,7 +61,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/docker/login@v4-beta + - uses: milaboratory/github-ci/actions/docker/login@v4 with: registry: ${{ inputs.registry }} user: ${{ inputs.auth-user }} @@ -69,7 +69,7 @@ runs: - name: Render target tag names id: targets - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SOURCE_TAG: ${{ inputs.source }} TARGET_REGISTRY: ${{ inputs.registry }} @@ -99,7 +99,7 @@ runs: - name: Pushing tags to '${{ inputs.registry }}' id: push - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SOURCE_TAG: ${{ inputs.source }} with: @@ -123,6 +123,6 @@ runs: - name: Convert targets list to JSON array id: push-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ fromJSON(steps.push.outputs.data).pushed }} diff --git a/actions/docker/scan-docker-repo/action.yaml b/actions/docker/scan-docker-repo/action.yaml index b30f968f..0d1729fc 100644 --- a/actions/docker/scan-docker-repo/action.yaml +++ b/actions/docker/scan-docker-repo/action.yaml @@ -166,7 +166,7 @@ runs: echo "skipped-file=${skipped_file}" >> "${GITHUB_OUTPUT}" - name: Post save plan - uses: milaboratory/github-ci/actions/post/artifact@v4-beta + uses: milaboratory/github-ci/actions/post/artifact@v4 if: inputs.mode == 'plan' with: name: ${{ inputs.report-name }} @@ -174,7 +174,7 @@ runs: path: ${{ steps.init.outputs.skipped-file }} - name: Post save report - uses: milaboratory/github-ci/actions/post/artifact@v4-beta + uses: milaboratory/github-ci/actions/post/artifact@v4 if: inputs.mode == 'scan' with: name: ${{ inputs.report-name }} diff --git a/actions/docker/scan-pnpm-repo/action.yaml b/actions/docker/scan-pnpm-repo/action.yaml index 3728d7f6..b4202529 100644 --- a/actions/docker/scan-pnpm-repo/action.yaml +++ b/actions/docker/scan-pnpm-repo/action.yaml @@ -81,7 +81,7 @@ runs: echo "skipped-file=${skipped_file}" >> "${GITHUB_OUTPUT}" - name: Post save report - uses: milaboratory/github-ci/actions/post/artifact@v4-beta + uses: milaboratory/github-ci/actions/post/artifact@v4 with: name: trivy-report archive: true diff --git a/actions/env/action.yaml b/actions/env/action.yaml index 6286e34d..f1256f84 100644 --- a/actions/env/action.yaml +++ b/actions/env/action.yaml @@ -39,12 +39,12 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/env/set@v4-beta + - uses: milaboratory/github-ci/actions/env/set@v4 with: json: ${{ inputs.inputs }} mask-values: false - - uses: milaboratory/github-ci/actions/env/set@v4-beta + - uses: milaboratory/github-ci/actions/env/set@v4 with: json: ${{ inputs.secrets }} mask-values: true diff --git a/actions/env/set/action.yaml b/actions/env/set/action.yaml index 1694c244..ca6bc8be 100644 --- a/actions/env/set/action.yaml +++ b/actions/env/set/action.yaml @@ -30,7 +30,7 @@ runs: steps: - name: Set from if: inputs.json != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ENV_TO_SET: ${{ inputs.json }} MASK: ${{ inputs.mask-values }} @@ -54,7 +54,7 @@ runs: - name: Set from if: inputs.list != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ENV_TO_SET: ${{ inputs.list }} MASK: ${{ inputs.mask-values }} diff --git a/actions/gcloud-kms-sign/action.yaml b/actions/gcloud-kms-sign/action.yaml index b8bb69d2..2f501c5b 100644 --- a/actions/gcloud-kms-sign/action.yaml +++ b/actions/gcloud-kms-sign/action.yaml @@ -84,7 +84,7 @@ runs: version: ${{ inputs.gcloud-sdk-version }} - name: Create sig file - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: FILE_PATH: ${{ inputs.file-path }} with: diff --git a/actions/gcp/prefix-delete/action.yaml b/actions/gcp/prefix-delete/action.yaml index ea84b5aa..37164504 100644 --- a/actions/gcp/prefix-delete/action.yaml +++ b/actions/gcp/prefix-delete/action.yaml @@ -18,7 +18,7 @@ runs: steps: - name: Delete objects under a prefix - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: BUCKET_NAME: ${{ inputs.gcs-bucket-name }} PREFIX: ${{ inputs.gcs-prefix-name }} diff --git a/actions/git/auth/action.yaml b/actions/git/auth/action.yaml index f47ca6c3..c6507155 100644 --- a/actions/git/auth/action.yaml +++ b/actions/git/auth/action.yaml @@ -18,7 +18,7 @@ inputs: runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 env: GH_TOKEN: ${{ inputs.github-token }} GH_URL_REWRITE: ${{ inputs.github-url-rewrite }} diff --git a/actions/golang/cache/action.yaml b/actions/golang/cache/action.yaml index 306f20c7..bf27d655 100644 --- a/actions/golang/cache/action.yaml +++ b/actions/golang/cache/action.yaml @@ -35,7 +35,7 @@ runs: steps: - name: Cache Golang modules on Linux if: runner.os == 'Linux' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: save-always: ${{ inputs.cache-save-always }} path: | @@ -47,7 +47,7 @@ runs: - name: Cache Golang modules on macOS if: runner.os == 'macOS' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: save-always: ${{ inputs.cache-save-always }} path: | @@ -59,7 +59,7 @@ runs: - name: Cache Golang modules on Windows if: runner.os == 'Windows' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: save-always: ${{ inputs.cache-save-always }} path: | diff --git a/actions/golang/prepare/action.yaml b/actions/golang/prepare/action.yaml index fd350077..3e4bab86 100644 --- a/actions/golang/prepare/action.yaml +++ b/actions/golang/prepare/action.yaml @@ -60,7 +60,7 @@ runs: cache: ${{ inputs.cache-enabled-in-setup-go }} - name: Setup Cache for Golang project - uses: milaboratory/github-ci/actions/golang/cache@v4-beta + uses: milaboratory/github-ci/actions/golang/cache@v4 with: cache-version: ${{ inputs.cache-version }} cache-dependency-hashfiles-path: ${{ inputs.cache-dependency-hashfiles-path }} diff --git a/actions/helpers/default-value/action.yaml b/actions/helpers/default-value/action.yaml index fb65b40d..6cab3973 100644 --- a/actions/helpers/default-value/action.yaml +++ b/actions/helpers/default-value/action.yaml @@ -27,7 +27,7 @@ runs: steps: - id: value - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: VALUE: ${{ inputs.value }} DEFAULT: ${{ inputs.default }} diff --git a/actions/helpers/jq/action.yaml b/actions/helpers/jq/action.yaml index 25b8f088..8772fc6a 100644 --- a/actions/helpers/jq/action.yaml +++ b/actions/helpers/jq/action.yaml @@ -25,7 +25,7 @@ runs: steps: - id: jq - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: INPUT_FILE: ${{ inputs.file }} JQ_SELECT: ${{ inputs.select }} diff --git a/actions/helpers/merge-status/action.yaml b/actions/helpers/merge-status/action.yaml index dc49768d..cb2182e6 100644 --- a/actions/helpers/merge-status/action.yaml +++ b/actions/helpers/merge-status/action.yaml @@ -65,7 +65,7 @@ runs: steps: - id: merge - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: INPUT_STATUSES: ${{ inputs.statuses }} with: diff --git a/actions/helpers/safe-ctx/action.yaml b/actions/helpers/safe-ctx/action.yaml index ed6b903e..1ac54194 100644 --- a/actions/helpers/safe-ctx/action.yaml +++ b/actions/helpers/safe-ctx/action.yaml @@ -13,7 +13,7 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: GITHUB_CONTEXT: ${{ toJSON(github) }} with: diff --git a/actions/java/gradle/cache/action.yaml b/actions/java/gradle/cache/action.yaml index af11c22d..5c155800 100644 --- a/actions/java/gradle/cache/action.yaml +++ b/actions/java/gradle/cache/action.yaml @@ -106,7 +106,7 @@ runs: using: composite steps: - id: job-id - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: CACHE_KEY: ${{ inputs.job-id }} with: diff --git a/actions/java/gradle/properties/read/action.yaml b/actions/java/gradle/properties/read/action.yaml index 8a5022a5..772068d9 100644 --- a/actions/java/gradle/properties/read/action.yaml +++ b/actions/java/gradle/properties/read/action.yaml @@ -67,7 +67,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta + - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 with: build-root-directory: ${{ inputs.project-dir }} gradle-home-cache-includes: ${{ inputs.gradle-home-cache-includes }} diff --git a/actions/java/gradle/properties/set/action.yaml b/actions/java/gradle/properties/set/action.yaml index 68ea1e36..010870bd 100644 --- a/actions/java/gradle/properties/set/action.yaml +++ b/actions/java/gradle/properties/set/action.yaml @@ -42,6 +42,6 @@ runs: - name: Dump contents of gradle.properties id: props - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: cat ~/.gradle/gradle.properties diff --git a/actions/k8s/helm-deployment/action.yaml b/actions/k8s/helm-deployment/action.yaml index b59ae4cf..ea632637 100644 --- a/actions/k8s/helm-deployment/action.yaml +++ b/actions/k8s/helm-deployment/action.yaml @@ -71,7 +71,7 @@ runs: steps: - name: Helm repo add platforma if: inputs.helm-chart-name == 'platforma' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | diff --git a/actions/matrix/read/action.yaml b/actions/matrix/read/action.yaml index 5ba1ca27..a432a957 100644 --- a/actions/matrix/read/action.yaml +++ b/actions/matrix/read/action.yaml @@ -17,7 +17,7 @@ runs: using: "composite" steps: - - uses: actions/download-artifact@v4-beta + - uses: actions/download-artifact@v4 - id: context shell: bash diff --git a/actions/node/cache-pnpm/action.yaml b/actions/node/cache-pnpm/action.yaml index e17fa5cf..915e31df 100644 --- a/actions/node/cache-pnpm/action.yaml +++ b/actions/node/cache-pnpm/action.yaml @@ -30,7 +30,7 @@ runs: run: echo "dir=$(pnpm store path)" >> ${GITHUB_OUTPUT} - name: Cache Node modules - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: path: | ${{ steps.pnpm-store-dir.outputs.dir }} diff --git a/actions/node/cache/action.yaml b/actions/node/cache/action.yaml index a7e8b5e6..ec447825 100644 --- a/actions/node/cache/action.yaml +++ b/actions/node/cache/action.yaml @@ -37,7 +37,7 @@ runs: steps: - name: Cache Electron libs - uses: actions/cache@v4-beta + uses: actions/cache@v4 if: inputs.is-electron-application == 'true' with: path: | @@ -50,7 +50,7 @@ runs: - name: Cache local 'node_modules' if: inputs.local-cache == 'on' && inputs.is-electron-application == 'true' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: path: node_modules key: ${{ runner.os }}-${{ runner.arch }}-cache-${{ inputs.cache-version }}-node_modules-${{ hashFiles(inputs.hashfiles-search-path) }} @@ -63,7 +63,7 @@ runs: run: echo "dir=$(npm config get cache)" >> ${GITHUB_OUTPUT} - name: Cache Node modules - uses: actions/cache@v4-beta + uses: actions/cache@v4 if: inputs.is-electron-application == 'false' with: path: ${{ steps.npm-cache-dir.outputs.dir }} diff --git a/actions/node/npm-pkg-status/action.yaml b/actions/node/npm-pkg-status/action.yaml index 86709b2a..cc40f60f 100644 --- a/actions/node/npm-pkg-status/action.yaml +++ b/actions/node/npm-pkg-status/action.yaml @@ -55,7 +55,7 @@ runs: steps: - name: Read package name and version if: inputs.package-json-path != '0' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: package env: NPM_PKG_NAME: ${{ inputs.npm-pkg-name }} @@ -83,7 +83,7 @@ runs: ghwa_set_output version "${NPM_PKG_VERSION}" - name: Check NPM package status in a registry - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: npm-pkg-status env: NPM_PKG_NAME: ${{ fromJSON(steps.package.outputs.data).name }} @@ -151,7 +151,7 @@ runs: ghwa_set_output exist "0" - id: set-status - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | echo "${{ fromJSON(steps.npm-pkg-status.outputs.data).exist }}" diff --git a/actions/node/prepare-pnpm/action.yaml b/actions/node/prepare-pnpm/action.yaml index b2f3f8f5..4ed847ce 100644 --- a/actions/node/prepare-pnpm/action.yaml +++ b/actions/node/prepare-pnpm/action.yaml @@ -43,19 +43,19 @@ runs: steps: - name: Install NodeJS - ${{ inputs.node-version }} - uses: actions/setup-node@v4-beta + uses: actions/setup-node@v4 with: node-version: ${{ inputs.node-version }} - name: Re-Write .npmrc config - uses: milaboratory/github-ci/actions/utils/create-npmrc@v4-beta + uses: milaboratory/github-ci/actions/utils/create-npmrc@v4 if: inputs.npmrc-config != '' with: npmrcConfig: ${{ inputs.npmrc-config }} - name: Install pnpm - ${{ inputs.pnpm-version }} if: inputs.pnpm-version != '' - uses: pnpm/action-setup@v4-beta + uses: pnpm/action-setup@v4 with: version: ${{ inputs.pnpm-version }} @@ -65,7 +65,7 @@ runs: run: corepack enable pnpm - name: Set up cache for a NodeJS PNPM application - uses: milaboratory/github-ci/actions/node/cache-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/cache-pnpm@v4 with: cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} cache-version: ${{ inputs.cache-version }} diff --git a/actions/node/prepare/action.yaml b/actions/node/prepare/action.yaml index eaed2748..de2823e3 100644 --- a/actions/node/prepare/action.yaml +++ b/actions/node/prepare/action.yaml @@ -82,7 +82,7 @@ runs: steps: - name: Install NodeJS - ${{ inputs.node-version }} - uses: actions/setup-node@v4-beta + uses: actions/setup-node@v4 with: node-version: ${{ inputs.node-version }} registry-url: ${{ inputs.registry-url }} @@ -90,13 +90,13 @@ runs: always-auth: ${{ inputs.always-auth }} - name: Re-Write .npmrc config - uses: milaboratory/github-ci/actions/utils/create-npmrc@v4-beta + uses: milaboratory/github-ci/actions/utils/create-npmrc@v4 if: inputs.npmrc-config != '' with: npmrcConfig: ${{ inputs.npmrc-config }} - name: Set up cache for a NodeJS/Electron application - uses: milaboratory/github-ci/actions/node/cache@v4-beta + uses: milaboratory/github-ci/actions/node/cache@v4 with: is-electron-application: ${{ inputs.is-electron-application }} hashfiles-search-path: ${{ inputs.hashfiles-search-path }} diff --git a/actions/notify/slack/build-failed/action.yaml b/actions/notify/slack/build-failed/action.yaml index 02592665..71359906 100644 --- a/actions/notify/slack/build-failed/action.yaml +++ b/actions/notify/slack/build-failed/action.yaml @@ -34,9 +34,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -135,7 +135,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/build-ready/action.yaml b/actions/notify/slack/build-ready/action.yaml index 1ec4a3d2..86bb93b7 100644 --- a/actions/notify/slack/build-ready/action.yaml +++ b/actions/notify/slack/build-ready/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -183,7 +183,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-cancelled/action.yaml b/actions/notify/slack/deployment-cancelled/action.yaml index a54adddc..54f902fe 100644 --- a/actions/notify/slack/deployment-cancelled/action.yaml +++ b/actions/notify/slack/deployment-cancelled/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -141,7 +141,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-failed/action.yaml b/actions/notify/slack/deployment-failed/action.yaml index 15add74d..fc7cbc9d 100644 --- a/actions/notify/slack/deployment-failed/action.yaml +++ b/actions/notify/slack/deployment-failed/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -142,7 +142,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/deployment-success/action.yaml b/actions/notify/slack/deployment-success/action.yaml index 43da62df..45262d9e 100644 --- a/actions/notify/slack/deployment-success/action.yaml +++ b/actions/notify/slack/deployment-success/action.yaml @@ -41,9 +41,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -141,7 +141,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/publish/action.yaml b/actions/notify/slack/publish/action.yaml index b4a93078..ec2f6c4e 100644 --- a/actions/notify/slack/publish/action.yaml +++ b/actions/notify/slack/publish/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -170,7 +170,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/release-failed/action.yaml b/actions/notify/slack/release-failed/action.yaml index 369f4498..9abba6d1 100644 --- a/actions/notify/slack/release-failed/action.yaml +++ b/actions/notify/slack/release-failed/action.yaml @@ -37,9 +37,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -128,7 +128,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/release-ready/action.yaml b/actions/notify/slack/release-ready/action.yaml index e02cb71c..76057066 100644 --- a/actions/notify/slack/release-ready/action.yaml +++ b/actions/notify/slack/release-ready/action.yaml @@ -49,9 +49,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -169,7 +169,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/review-required/action.yaml b/actions/notify/slack/review-required/action.yaml index 6fbc9d16..659eecd9 100644 --- a/actions/notify/slack/review-required/action.yaml +++ b/actions/notify/slack/review-required/action.yaml @@ -33,14 +33,14 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + - uses: milaboratory/github-ci/actions/strings/json-list@v4 id: reviewers with: input: ${{ inputs.reviewers }} - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -90,7 +90,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/test-regression/action.yaml b/actions/notify/slack/test-regression/action.yaml index 584315b8..3a06188b 100644 --- a/actions/notify/slack/test-regression/action.yaml +++ b/actions/notify/slack/test-regression/action.yaml @@ -42,9 +42,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -133,7 +133,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/slack/tests/action.yaml b/actions/notify/slack/tests/action.yaml index 1c75e58e..3f9fc592 100644 --- a/actions/notify/slack/tests/action.yaml +++ b/actions/notify/slack/tests/action.yaml @@ -45,9 +45,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja-js@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja-js@v4 id: payload with: githubContext: ${{ steps.safe-ctx.outputs.github }} @@ -159,7 +159,7 @@ runs: "channel": "{{ slack_channel }}" } - - uses: milaboratory/github-ci/actions/notify/slack/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/send@v4 with: token: ${{ inputs.slack-bot-token }} method: ${{ inputs.slack-bot-method }} diff --git a/actions/notify/telegram/build-failed/action.yaml b/actions/notify/telegram/build-failed/action.yaml index 5dc4ffac..10a55156 100644 --- a/actions/notify/telegram/build-failed/action.yaml +++ b/actions/notify/telegram/build-failed/action.yaml @@ -39,9 +39,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -75,7 +75,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/build-ready/action.yaml b/actions/notify/telegram/build-ready/action.yaml index 2c0ae5ee..e8aa61fa 100644 --- a/actions/notify/telegram/build-ready/action.yaml +++ b/actions/notify/telegram/build-ready/action.yaml @@ -62,9 +62,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -126,7 +126,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-cancelled/action.yaml b/actions/notify/telegram/deployment-cancelled/action.yaml index 9c191730..a0b753dd 100644 --- a/actions/notify/telegram/deployment-cancelled/action.yaml +++ b/actions/notify/telegram/deployment-cancelled/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-failed/action.yaml b/actions/notify/telegram/deployment-failed/action.yaml index e5f29a19..e087b730 100644 --- a/actions/notify/telegram/deployment-failed/action.yaml +++ b/actions/notify/telegram/deployment-failed/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/deployment-success/action.yaml b/actions/notify/telegram/deployment-success/action.yaml index 8c1c341b..be6d2426 100644 --- a/actions/notify/telegram/deployment-success/action.yaml +++ b/actions/notify/telegram/deployment-success/action.yaml @@ -50,9 +50,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -92,7 +92,7 @@ runs: Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/publish/action.yaml b/actions/notify/telegram/publish/action.yaml index df6972d1..a90f6e2e 100644 --- a/actions/notify/telegram/publish/action.yaml +++ b/actions/notify/telegram/publish/action.yaml @@ -62,9 +62,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -112,7 +112,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/release-failed/action.yaml b/actions/notify/telegram/release-failed/action.yaml index fbcde342..5b1ea7b2 100644 --- a/actions/notify/telegram/release-failed/action.yaml +++ b/actions/notify/telegram/release-failed/action.yaml @@ -43,9 +43,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -76,7 +76,7 @@ runs: {%- endif %} Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/release-ready/action.yaml b/actions/notify/telegram/release-ready/action.yaml index d43bb87c..e566176f 100644 --- a/actions/notify/telegram/release-ready/action.yaml +++ b/actions/notify/telegram/release-ready/action.yaml @@ -63,9 +63,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -119,7 +119,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/review-required/action.yaml b/actions/notify/telegram/review-required/action.yaml index c46a6b5b..40515486 100644 --- a/actions/notify/telegram/review-required/action.yaml +++ b/actions/notify/telegram/review-required/action.yaml @@ -38,14 +38,14 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + - uses: milaboratory/github-ci/actions/strings/json-list@v4 id: reviewers with: input: ${{ inputs.reviewers }} - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -77,7 +77,7 @@ runs: {{ product["additional_info"] }} {%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/test-regression/action.yaml b/actions/notify/telegram/test-regression/action.yaml index 73f93f2e..5f16fc01 100644 --- a/actions/notify/telegram/test-regression/action.yaml +++ b/actions/notify/telegram/test-regression/action.yaml @@ -51,9 +51,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -86,7 +86,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/notify/telegram/tests/action.yaml b/actions/notify/telegram/tests/action.yaml index 094b3873..aeebc369 100644 --- a/actions/notify/telegram/tests/action.yaml +++ b/actions/notify/telegram/tests/action.yaml @@ -58,9 +58,9 @@ runs: steps: - id: safe-ctx - uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-ctx@v4 - - uses: milaboratory/github-ci/actions/templates/jinja@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja@v4 id: message with: data: | @@ -104,7 +104,7 @@ runs: ) ] Tags: #{{- github["event"]["repository"]["name"] | replace("-", "_") | replace(".", "_") -}} {%- if search_tags | length > 0 %}{% for i in search_tags %} #{{ i | replace("-", "_") | replace("/", "_") }} {% endfor %}{%- endif %} - - uses: milaboratory/github-ci/actions/notify/telegram/send@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/send@v4 with: to: ${{ inputs.telegram-target }} token: ${{ inputs.telegram-token }} diff --git a/actions/python/cache/action.yaml b/actions/python/cache/action.yaml index 88005baa..d99feca4 100644 --- a/actions/python/cache/action.yaml +++ b/actions/python/cache/action.yaml @@ -30,7 +30,7 @@ runs: run: echo "dir=$(pip cache dir)" >> ${GITHUB_OUTPUT} - name: Cache Python modules - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: path: ${{ steps.pip-cache.outputs.dir }} key: ${{ runner.os }}-${{ runner.arch }}-cache-pip-${{ inputs.version }}-${{ hashFiles(inputs.hashfiles-search-path) }} diff --git a/actions/python/prepare/action.yaml b/actions/python/prepare/action.yaml index c73d7a08..859674f6 100644 --- a/actions/python/prepare/action.yaml +++ b/actions/python/prepare/action.yaml @@ -46,7 +46,7 @@ runs: python-version: '${{ inputs.python-version }}' - name: Setup Cache for Python project - uses: milaboratory/github-ci/actions/python/cache@v4-beta + uses: milaboratory/github-ci/actions/python/cache@v4 with: version: ${{ inputs.cache-version }} hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} diff --git a/actions/release/create/action.yaml b/actions/release/create/action.yaml index d7a8d242..1e883755 100644 --- a/actions/release/create/action.yaml +++ b/actions/release/create/action.yaml @@ -124,7 +124,7 @@ runs: exclude_types: ${{ inputs.changelog-exclude-types }} - id: assets - uses: milaboratory/github-ci/actions/strings/join@v4-beta + uses: milaboratory/github-ci/actions/strings/join@v4 with: input: ${{ inputs.assets }} separator: ',' diff --git a/actions/rust/cache/action.yaml b/actions/rust/cache/action.yaml index a16e20ec..0933788c 100644 --- a/actions/rust/cache/action.yaml +++ b/actions/rust/cache/action.yaml @@ -25,7 +25,7 @@ runs: steps: - name: Cache Rust Cargo modules - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: path: | ~/.cargo/bin/ diff --git a/actions/rust/prepare/action.yaml b/actions/rust/prepare/action.yaml index 0bb9b5b5..dfa1ddd5 100644 --- a/actions/rust/prepare/action.yaml +++ b/actions/rust/prepare/action.yaml @@ -59,7 +59,7 @@ runs: components: ${{ inputs.rust-components }} - name: Setup Cache for Rust project - uses: milaboratory/github-ci/actions/rust/cache@v4-beta + uses: milaboratory/github-ci/actions/rust/cache@v4 with: cache-version: ${{ inputs.cache-version }} cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} diff --git a/actions/strings/convert-paths/action.yaml b/actions/strings/convert-paths/action.yaml index 3567f6d3..0250eee0 100644 --- a/actions/strings/convert-paths/action.yaml +++ b/actions/strings/convert-paths/action.yaml @@ -35,7 +35,7 @@ runs: steps: - name: Convert paths id: converted - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ABS_ROOT: ${{ inputs.abs-root }} REL_ROOT: ${{ inputs.rel-root }} diff --git a/actions/strings/join/action.yaml b/actions/strings/join/action.yaml index 6340b074..614d2828 100644 --- a/actions/strings/join/action.yaml +++ b/actions/strings/join/action.yaml @@ -37,7 +37,7 @@ runs: steps: - name: Join lines id: join - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: INPUT_TEXT: ${{ inputs.input }} SEPARATOR: ${{ inputs.separator }} diff --git a/actions/strings/json-list/action.yaml b/actions/strings/json-list/action.yaml index 77228d42..6b46eb36 100644 --- a/actions/strings/json-list/action.yaml +++ b/actions/strings/json-list/action.yaml @@ -26,7 +26,7 @@ runs: steps: - name: Convert to JSON array id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: INPUT_LINES: ${{ inputs.input }} diff --git a/actions/strings/prefix/action.yaml b/actions/strings/prefix/action.yaml index b3657d96..c1b54381 100644 --- a/actions/strings/prefix/action.yaml +++ b/actions/strings/prefix/action.yaml @@ -28,7 +28,7 @@ runs: steps: - name: Prefix lines id: prefix - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: INPUT_TEXT: ${{ inputs.input }} PREFIX_TEXT: ${{ inputs.prefix }} diff --git a/actions/templates/jinja/action.yaml b/actions/templates/jinja/action.yaml index 1efb7547..1cff0a48 100644 --- a/actions/templates/jinja/action.yaml +++ b/actions/templates/jinja/action.yaml @@ -92,7 +92,7 @@ runs: using: "composite" steps: - name: Detect template path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: tpl-path env: TEMPLATE: ${{ inputs.template }} @@ -116,7 +116,7 @@ runs: echo "${temp_tpl_path}" - name: Detect data path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: data-path env: DATA: ${{ inputs.data }} @@ -140,7 +140,7 @@ runs: echo "${temp_data_path}" - name: Detect output path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 id: out-path env: OUTPUT_FILE: ${{ inputs.out-file }} @@ -153,7 +153,7 @@ runs: mktemp ./XXXXXXXXXXX - - uses: milaboratory/github-ci/actions/templates/jinja/wrapper@v4-beta + - uses: milaboratory/github-ci/actions/templates/jinja/wrapper@v4 with: template: ${{ steps.tpl-path.outputs.stdout }} output_file: ${{ steps.out-path.outputs.stdout }} @@ -162,7 +162,7 @@ runs: data_file: ${{ steps.data-path.outputs.stdout }} data_format: ${{ inputs.data-format }} - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 id: result if: inputs.dump-output env: diff --git a/blocks/java/build/action.yaml b/blocks/java/build/action.yaml index 54f4c9b3..df3360c5 100644 --- a/blocks/java/build/action.yaml +++ b/blocks/java/build/action.yaml @@ -203,11 +203,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Prepare env for Java application build if: inputs.java-version != '' - uses: actions/setup-java@v4-beta + uses: actions/setup-java@v4 with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} @@ -216,14 +216,14 @@ runs: if: inputs.data-cache-paths != '' && inputs.data-cache-key != '' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: key: ${{ inputs.data-cache-key }} path: ${{ inputs.data-cache-paths }} - name: Set gradle.properties if: inputs.properties != '' - uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4 with: properties: | ${{ inputs.properties }} @@ -233,7 +233,7 @@ runs: - name: Generate list of tasks to exclude id: excludes - uses: milaboratory/github-ci/actions/strings/prefix@v4-beta + uses: milaboratory/github-ci/actions/strings/prefix@v4 with: input: ${{ inputs.exclude-tasks }} prefix: |- @@ -242,13 +242,13 @@ runs: - name: Generate build tasks id: tasks - uses: milaboratory/github-ci/actions/strings/prefix@v4-beta + uses: milaboratory/github-ci/actions/strings/prefix@v4 with: input: ${{ inputs.tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Build project - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 with: build-root-directory: ${{ inputs.project-dir }} gradle-home-cache-includes: ${{ inputs.gradle-home-cache-includes }} @@ -265,14 +265,14 @@ runs: - name: Read actual project properties id: gradle-props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 with: project-dir: ${{ inputs.project-dir }} project-name: ${{ inputs.project }} - name: Generate artifacts paths id: artifact-paths - uses: milaboratory/github-ci/actions/strings/convert-paths@v4-beta + uses: milaboratory/github-ci/actions/strings/convert-paths@v4 with: rel-root: ${{ steps.gradle-props.outputs.buildDir }}/ abs-root: . @@ -280,13 +280,13 @@ runs: - name: Save build artifacts if: steps.artifact-paths.outputs.result != '' - uses: actions/upload-artifact@v4-beta + uses: actions/upload-artifact@v4 with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-paths.outputs.result }} retention-days: ${{ inputs.artifact-retention }} - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 if: inputs.upload-obfuscation-mapping env: UPLOAD_ENABLED: ${{ inputs.upload-obfuscation-mapping }} @@ -309,7 +309,7 @@ runs: ghwa_set_env "OBFUS_MAPPING_LOCAL_PATH" "${OBFUS_MAPPING_LOCAL_PATH}" ghwa_set_env "UPLOAD_MAPPING" "true" - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 if: always() && env.UPLOAD_MAPPING == 'true' id: upload-mapping env: diff --git a/blocks/java/publish/docker/action.yaml b/blocks/java/publish/docker/action.yaml index a3892339..f6bb5877 100644 --- a/blocks/java/publish/docker/action.yaml +++ b/blocks/java/publish/docker/action.yaml @@ -36,12 +36,12 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Generate push targets list id: push-targets - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: IS_RELEASE: ${{ steps.context.outputs.is-release }} IS_LATEST_VERSION: ${{ steps.context.outputs.is-latest-version }} @@ -70,7 +70,7 @@ runs: - name: Publish docker image id: docker-push - uses: milaboratory/github-ci/actions/docker/push@v4-beta + uses: milaboratory/github-ci/actions/docker/push@v4 with: auth-token: ${{ inputs.github-token }} source: ${{ inputs.project }}:${{ steps.context.outputs.current-version }} diff --git a/blocks/java/test/action.yaml b/blocks/java/test/action.yaml index 8a7e7a87..dea05192 100644 --- a/blocks/java/test/action.yaml +++ b/blocks/java/test/action.yaml @@ -233,10 +233,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Prepare env for Java application build - uses: actions/setup-java@v4-beta + uses: actions/setup-java@v4 with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} @@ -248,7 +248,7 @@ runs: python-version: ${{ inputs.python-version }} - name: Set gradle.properties - uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/set@v4 with: properties: | ${{ inputs.properties }} @@ -258,7 +258,7 @@ runs: - name: Read actual project properties id: gradle-props - uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/properties/read@v4 with: project-dir: ${{ inputs.project-dir }} project-name: ${{ inputs.project }} @@ -270,7 +270,7 @@ runs: - name: Generate upload path id: upload-path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | rand="$( @@ -282,7 +282,7 @@ runs: - name: Generate list of tasks to exclude id: excludes - uses: milaboratory/github-ci/actions/strings/prefix@v4-beta + uses: milaboratory/github-ci/actions/strings/prefix@v4 with: input: ${{ inputs.exclude-tasks }} prefix: |- @@ -291,7 +291,7 @@ runs: - name: Download cached test data if: inputs.test-data-cache-enabled == 'true' && inputs.test-data-cache-paths != '' && inputs.test-data-cache-key != '' - uses: actions/cache@v4-beta + uses: actions/cache@v4 with: path: ${{ inputs.test-data-cache-paths }} key: ${{ inputs.test-data-cache-key }} @@ -299,14 +299,14 @@ runs: - name: Generate before-hooks tasks id: before-hooks-tasks if: inputs.before-hooks-tasks != '' - uses: milaboratory/github-ci/actions/strings/prefix@v4-beta + uses: milaboratory/github-ci/actions/strings/prefix@v4 with: input: ${{ inputs.before-hooks-tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Run before-hooks tasks if: steps.before-hooks-tasks.outputs.result != '' - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 with: build-root-directory: ${{ inputs.project-dir }} arguments: |- @@ -319,21 +319,21 @@ runs: - name: Run 'before-tests' hook if: inputs.hook-before != '' - uses: milaboratory/github-ci/actions/helpers/safe-run@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-run@v4 with: script-path: ${{ inputs.hook-before }} - name: Generate test tasks id: test-tasks if: inputs.tasks != '' - uses: milaboratory/github-ci/actions/strings/prefix@v4-beta + uses: milaboratory/github-ci/actions/strings/prefix@v4 with: input: ${{ inputs.tasks }} prefix: ${{ inputs.project && format(':{0}:', inputs.project) || ':' }} - name: Run tests if: steps.test-tasks.outputs.result != '' - uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4-beta + uses: milaboratory/github-ci/actions/java/gradle/gradlew@v4 with: build-root-directory: ${{ inputs.project-dir }} arguments: |- @@ -346,7 +346,7 @@ runs: - name: Run test command if: inputs.hook-after == '' && inputs.test-command != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: TEST_CMD: ${{ inputs.test-command }} TEST_DIR: ${{ inputs.test-directory }} @@ -366,14 +366,14 @@ runs: - name: Run 'after-tests' hook if: inputs.hook-after != '' && inputs.test-command == '' - uses: milaboratory/github-ci/actions/helpers/safe-run@v4-beta + uses: milaboratory/github-ci/actions/helpers/safe-run@v4 with: script-path: ${{ inputs.hook-after }} - name: Check if we should upload results to S3 id: should-upload if: always() - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: UPLOAD_ENABLED: ${{ inputs.upload-report }} BUILD_DIR: ${{ steps.gradle-props.outputs.buildDir }} @@ -404,7 +404,7 @@ runs: - name: Upload test results id: upload-report if: always() && env.UPLOAD_REPORT == 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | aws s3 cp --recursive \ diff --git a/blocks/monorepo/build-and-test-pnpm/action.yaml b/blocks/monorepo/build-and-test-pnpm/action.yaml index 5faf9c12..6d6f3e65 100644 --- a/blocks/monorepo/build-and-test-pnpm/action.yaml +++ b/blocks/monorepo/build-and-test-pnpm/action.yaml @@ -110,7 +110,7 @@ runs: - name: Upload coverage reports to Codecov if: inputs.test-coverage == 'true' - uses: milaboratory/github-ci/actions/node/upload-coverage@v4-beta + uses: milaboratory/github-ci/actions/node/upload-coverage@v4 with: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} diff --git a/blocks/monorepo/test-pl-docker-pnpm/action.yaml b/blocks/monorepo/test-pl-docker-pnpm/action.yaml index 6aac101f..8f0222a1 100644 --- a/blocks/monorepo/test-pl-docker-pnpm/action.yaml +++ b/blocks/monorepo/test-pl-docker-pnpm/action.yaml @@ -97,7 +97,7 @@ runs: steps: - name: Run turbo tests dry-run id: turbo-dry-run - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 if: inputs.test-skip-dry-run != 'true' env: TEST_DRY_RUN: ${{ inputs.test-dry-run-script-name }} @@ -118,7 +118,7 @@ runs: exit 0 fi - - uses: milaboratory/github-ci/actions/docker/pl-compose@v4-beta + - uses: milaboratory/github-ci/actions/docker/pl-compose@v4 name: Launch Platforma docker container if: inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') id: pl-compose @@ -150,14 +150,14 @@ runs: - name: Upload coverage reports to Codecov if: inputs.test-coverage == 'true' - uses: milaboratory/github-ci/actions/node/upload-coverage@v4-beta + uses: milaboratory/github-ci/actions/node/upload-coverage@v4 with: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} - name: Restore assets ownership if: always() && inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PL_ASSETS_DIR: ${{ format('{0}/{1}', github.workspace, inputs.pl-test-assets-dir) }} with: diff --git a/blocks/monorepo/test-pl-k8s-pnpm/action.yaml b/blocks/monorepo/test-pl-k8s-pnpm/action.yaml index 28774f67..a71a0d9e 100644 --- a/blocks/monorepo/test-pl-k8s-pnpm/action.yaml +++ b/blocks/monorepo/test-pl-k8s-pnpm/action.yaml @@ -106,7 +106,7 @@ runs: using: "composite" steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} diff --git a/blocks/node/build-and-publish/action.yaml b/blocks/node/build-and-publish/action.yaml index 13774283..d86188e2 100644 --- a/blocks/node/build-and-publish/action.yaml +++ b/blocks/node/build-and-publish/action.yaml @@ -120,7 +120,7 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} @@ -144,23 +144,23 @@ runs: ecr: false - name: Add MiLab shell utils to PATH - uses: milaboratory/github-ci/actions/milab-shell-utils@v4-beta + uses: milaboratory/github-ci/actions/milab-shell-utils@v4 - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: WORKING_DIRECTORY: ${{ inputs.execution-path }} with: run: echo "${GITHUB_WORKSPACE}/${WORKING_DIRECTORY}/release-artifact" - name: Download artifact - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4-beta + uses: milaboratory/github-ci/actions/node/prepare@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.node-cache-version }} @@ -186,7 +186,7 @@ runs: npm ci - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4-beta + uses: milaboratory/github-ci/actions/node/patch-version@v4 with: package_json: ${{ format('{0}/{1}/package.json', github.workspace, inputs.execution-path) }} version: ${{ inputs.build-version }} @@ -201,7 +201,7 @@ runs: npm run build - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 with: package-paths: | ${{ inputs.execution-path }} diff --git a/blocks/node/build-and-test-pnpm/action.yaml b/blocks/node/build-and-test-pnpm/action.yaml index 6cca23ff..1e43ab39 100644 --- a/blocks/node/build-and-test-pnpm/action.yaml +++ b/blocks/node/build-and-test-pnpm/action.yaml @@ -83,7 +83,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -92,14 +92,14 @@ runs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: dump-stdout: false run: | pnpm install --frozen-lockfile --prefer-offline - name: Run build - ${{ inputs.build-script-name }} - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PNPM_R: ${{ inputs.pnpm-recursive-build }} PNPM_ARGS: ${{ inputs.pnpm-build-args }} @@ -120,7 +120,7 @@ runs: fi - name: Run test - ${{ inputs.test-script-name}} - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 if: inputs.tests == 'true' env: PNPM_R: ${{ inputs.pnpm-recursive-tests }} diff --git a/blocks/node/build/generic/action.yaml b/blocks/node/build/generic/action.yaml index a4b3ca5b..236a6e83 100644 --- a/blocks/node/build/generic/action.yaml +++ b/blocks/node/build/generic/action.yaml @@ -88,7 +88,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare@v4-beta + uses: milaboratory/github-ci/actions/node/prepare@v4 env: NODE_AUTH_TOKEN: ${{ inputs.npm-auth-token }} with: @@ -105,7 +105,7 @@ runs: install-deps: true - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4-beta + uses: milaboratory/github-ci/actions/node/patch-version@v4 if: inputs.build-version != '' with: working-directory: ${{ inputs.working-directory }} diff --git a/blocks/node/test/action.yaml b/blocks/node/test/action.yaml index f4785eed..ed7b10c5 100644 --- a/blocks/node/test/action.yaml +++ b/blocks/node/test/action.yaml @@ -106,7 +106,7 @@ runs: steps: - name: Prepare environment for running a NodeJS application tests - uses: milaboratory/github-ci/actions/node/prepare@v4-beta + uses: milaboratory/github-ci/actions/node/prepare@v4 env: NODE_AUTH_TOKEN: ${{ inputs.npm-auth-token }} with: @@ -123,7 +123,7 @@ runs: install-deps: true - name: Patch package version - uses: milaboratory/github-ci/actions/node/patch-version@v4-beta + uses: milaboratory/github-ci/actions/node/patch-version@v4 if: inputs.package-version != '' with: working-directory: ${{ inputs.working-directory }} diff --git a/blocks/notify/build/action.yaml b/blocks/notify/build/action.yaml index 7a21c9d6..e7235d0e 100644 --- a/blocks/notify/build/action.yaml +++ b/blocks/notify/build/action.yaml @@ -89,10 +89,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: category - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -104,7 +104,7 @@ runs: fi - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -118,12 +118,12 @@ runs: - id: build-status name: Merge build statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.build-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -141,7 +141,7 @@ runs: if: steps.build-status.outputs.status != 'success' && inputs.notification-mode != 'success-only' - uses: milaboratory/github-ci/actions/notify/telegram/build-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/build-failed@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -156,7 +156,7 @@ runs: if: steps.build-status.outputs.status == 'success' && inputs.notification-mode != 'failure-only' - uses: milaboratory/github-ci/actions/notify/telegram/build-ready@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/build-ready@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/deployment/action.yaml b/blocks/notify/deployment/action.yaml index 87fe0804..40970e5f 100644 --- a/blocks/notify/deployment/action.yaml +++ b/blocks/notify/deployment/action.yaml @@ -58,16 +58,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: DOCKER_IMAGES: ${{ inputs.docker-images }} SEARCH_TAGS: ${{ inputs.search-tags }} @@ -79,7 +79,7 @@ runs: - name: Report 'deployment failed' to Telegram if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/deployment-failed@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -94,7 +94,7 @@ runs: - name: Report 'deployment success' to Telegram if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-success@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/deployment-success@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -109,7 +109,7 @@ runs: - name: Report 'deployment canceled' to Telegram if: steps.job-status.outputs.status == 'cancelled' - uses: milaboratory/github-ci/actions/notify/telegram/deployment-cancelled@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/deployment-cancelled@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/publish/action.yaml b/blocks/notify/publish/action.yaml index 81490ccf..55c89680 100644 --- a/blocks/notify/publish/action.yaml +++ b/blocks/notify/publish/action.yaml @@ -71,9 +71,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 id: category env: IS_RELEASE: ${{ steps.context.outputs.is-release }} @@ -86,7 +86,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -96,13 +96,13 @@ runs: - id: job-status name: Merge publish job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - name: Report publish result to Telegram if: inputs.telegram-target != '' - uses: milaboratory/github-ci/actions/notify/telegram/publish@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/publish@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/release/action.yaml b/blocks/notify/release/action.yaml index 8bcbe7d8..606a0e6c 100644 --- a/blocks/notify/release/action.yaml +++ b/blocks/notify/release/action.yaml @@ -86,10 +86,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -102,7 +102,7 @@ runs: fi - id: define-tag - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_TAG: ${{ inputs.override-tag }} CURRENT_TAG: ${{ steps.context.outputs.current-version-tag }} @@ -116,12 +116,12 @@ runs: - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -137,7 +137,7 @@ runs: - name: Report 'release failed' to Telegram if: steps.job-status.outputs.status != 'success' - uses: milaboratory/github-ci/actions/notify/telegram/release-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/release-failed@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} @@ -151,7 +151,7 @@ runs: - name: Report 'new release' to Telegram if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/telegram/release-ready@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/release-ready@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/review-required/action.yaml b/blocks/notify/review-required/action.yaml index 73d7440e..4112a23f 100644 --- a/blocks/notify/review-required/action.yaml +++ b/blocks/notify/review-required/action.yaml @@ -43,11 +43,11 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Send new release notigication to Telegram if: inputs.telegram-target != '' - uses: milaboratory/github-ci/actions/notify/telegram/review-required@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/review-required@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/slack/build/action.yaml b/blocks/notify/slack/build/action.yaml index 6df99093..631c0fd7 100644 --- a/blocks/notify/slack/build/action.yaml +++ b/blocks/notify/slack/build/action.yaml @@ -55,10 +55,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: category - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: IS_RELEASE: ${{ steps.context.outputs.is-release }} with: @@ -70,7 +70,7 @@ runs: fi - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -84,12 +84,12 @@ runs: - id: build-status name: Merge build statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -105,7 +105,7 @@ runs: - name: Notify on build failure if: steps.build-status.outputs.status != 'success' && inputs.notification-mode != 'success-only' - uses: milaboratory/github-ci/actions/notify/slack/build-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/build-failed@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -116,7 +116,7 @@ runs: - name: Notify on build success if: steps.build-status.outputs.status == 'success' && inputs.notification-mode != 'failure-only' - uses: milaboratory/github-ci/actions/notify/slack/build-ready@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/build-ready@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/deployment/action.yaml b/blocks/notify/slack/deployment/action.yaml index 3ff91d00..be3f5a08 100644 --- a/blocks/notify/slack/deployment/action.yaml +++ b/blocks/notify/slack/deployment/action.yaml @@ -34,16 +34,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: DOCKER_IMAGES: ${{ inputs.docker-images }} SEARCH_TAGS: ${{ inputs.search-tags }} @@ -55,7 +55,7 @@ runs: - name: Notify on deployment success if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/slack/deployment-success@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/deployment-success@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -68,7 +68,7 @@ runs: - name: Notify on deployment failure if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/slack/deployment-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/deployment-failed@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -81,7 +81,7 @@ runs: - name: Notify on deployment cancellation if: steps.job-status.outputs.status == 'cancelled' - uses: milaboratory/github-ci/actions/notify/slack/deployment-cancelled@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/deployment-cancelled@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/publish/action.yaml b/blocks/notify/slack/publish/action.yaml index 3bcd4207..2a60a820 100644 --- a/blocks/notify/slack/publish/action.yaml +++ b/blocks/notify/slack/publish/action.yaml @@ -46,9 +46,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/shell@v4-beta + - uses: milaboratory/github-ci/actions/shell@v4 id: category env: IS_RELEASE: ${{ steps.context.outputs.is-release }} @@ -61,7 +61,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -71,11 +71,11 @@ runs: - id: job-status name: Merge publish job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - - uses: milaboratory/github-ci/actions/notify/slack/publish@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/publish@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/release/action.yaml b/blocks/notify/slack/release/action.yaml index 31310477..8ee60b87 100644 --- a/blocks/notify/slack/release/action.yaml +++ b/blocks/notify/slack/release/action.yaml @@ -54,10 +54,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -70,7 +70,7 @@ runs: fi - id: define-tag - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_TAG: ${{ inputs.override-tag }} CURRENT_TAG: ${{ steps.context.outputs.current-version-tag }} @@ -84,12 +84,12 @@ runs: - id: job-status name: Merge job statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.job-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: MAVEN_PACKAGES: ${{ inputs.maven-packages }} DOCKER_IMAGES: ${{ inputs.docker-images }} @@ -105,7 +105,7 @@ runs: - name: Notify on release success if: steps.job-status.outputs.status == 'success' - uses: milaboratory/github-ci/actions/notify/slack/release-ready@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/release-ready@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} @@ -120,7 +120,7 @@ runs: - name: Notify on release failure if: steps.job-status.outputs.status == 'failure' - uses: milaboratory/github-ci/actions/notify/slack/release-failed@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/release-failed@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/review-required/action.yaml b/blocks/notify/slack/review-required/action.yaml index 46b971a4..5585dc42 100644 --- a/blocks/notify/slack/review-required/action.yaml +++ b/blocks/notify/slack/review-required/action.yaml @@ -29,9 +29,9 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - - uses: milaboratory/github-ci/actions/notify/slack/review-required@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/review-required@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/test-regression/action.yaml b/blocks/notify/slack/test-regression/action.yaml index eba047f1..aabdae27 100644 --- a/blocks/notify/slack/test-regression/action.yaml +++ b/blocks/notify/slack/test-regression/action.yaml @@ -41,10 +41,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -57,7 +57,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -65,7 +65,7 @@ runs: run: | ghwa_set_output "search-tags" "${SEARCH_TAGS:-[]}" - - uses: milaboratory/github-ci/actions/notify/slack/test-regression@v4-beta + - uses: milaboratory/github-ci/actions/notify/slack/test-regression@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/slack/tests/action.yaml b/blocks/notify/slack/tests/action.yaml index 80382a59..3b6895d8 100644 --- a/blocks/notify/slack/tests/action.yaml +++ b/blocks/notify/slack/tests/action.yaml @@ -51,10 +51,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -68,12 +68,12 @@ runs: - id: tests-status name: Merge test statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.tests-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -87,7 +87,7 @@ runs: && inputs.notification-mode == 'failure-only' ) && !( steps.tests-status.outputs.status != 'success' && inputs.notification-mode == 'success-only' ) - uses: milaboratory/github-ci/actions/notify/slack/tests@v4-beta + uses: milaboratory/github-ci/actions/notify/slack/tests@v4 with: slack-bot-token: ${{ inputs.slack-bot-token }} slack-channel: ${{ inputs.slack-channel }} diff --git a/blocks/notify/test-regression/action.yaml b/blocks/notify/test-regression/action.yaml index 9b6676cf..ddc289d9 100644 --- a/blocks/notify/test-regression/action.yaml +++ b/blocks/notify/test-regression/action.yaml @@ -56,10 +56,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -72,7 +72,7 @@ runs: fi - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -80,7 +80,7 @@ runs: run: | ghwa_set_output "search-tags" "${SEARCH_TAGS:-[]}" - - uses: milaboratory/github-ci/actions/notify/telegram/test-regression@v4-beta + - uses: milaboratory/github-ci/actions/notify/telegram/test-regression@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/notify/tests/action.yaml b/blocks/notify/tests/action.yaml index 00c2b249..42af8a92 100644 --- a/blocks/notify/tests/action.yaml +++ b/blocks/notify/tests/action.yaml @@ -79,10 +79,10 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - id: define-version - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_VERSION: ${{ inputs.override-version }} CURRENT_VERSION: ${{ steps.context.outputs.current-version }} @@ -96,12 +96,12 @@ runs: - id: tests-status name: Merge test statuses - uses: milaboratory/github-ci/actions/helpers/merge-status@v4-beta + uses: milaboratory/github-ci/actions/helpers/merge-status@v4 with: statuses: ${{ inputs.tests-status }} - id: json - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: SEARCH_TAGS: ${{ inputs.search-tags }} with: @@ -116,7 +116,7 @@ runs: && !( steps.tests-status.outputs.status != 'success' && inputs.notification-mode == 'success-only' ) - uses: milaboratory/github-ci/actions/notify/telegram/tests@v4-beta + uses: milaboratory/github-ci/actions/notify/telegram/tests@v4 with: telegram-target: ${{ inputs.telegram-target }} telegram-token: ${{ inputs.telegram-token }} diff --git a/blocks/pl/linux/test-pl-docker-pnpm/action.yaml b/blocks/pl/linux/test-pl-docker-pnpm/action.yaml index ce69b960..013eb4fb 100644 --- a/blocks/pl/linux/test-pl-docker-pnpm/action.yaml +++ b/blocks/pl/linux/test-pl-docker-pnpm/action.yaml @@ -127,7 +127,7 @@ runs: steps: - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4-beta + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 with: node-version: ${{ inputs.node-version }} cache-version: ${{ inputs.cache-version }} @@ -136,14 +136,14 @@ runs: npmrc-config: ${{ inputs.npmrc-config }} - name: Install NodeJS packages with pnpm - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpm install --frozen-lockfile --prefer-offline - name: Run turbo tests dry-run if: inputs.test-skip-dry-run != 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | pnpx turbo run test --dry-run=json --cache=remote:rw > ./test-dry-run.json @@ -157,7 +157,7 @@ runs: exit 0 fi - - uses: milaboratory/github-ci/actions/docker/pl-compose@v4-beta + - uses: milaboratory/github-ci/actions/docker/pl-compose@v4 name: Launch Platforma docker container id: pl-compose if: inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') @@ -169,7 +169,7 @@ runs: - name: Run test - ${{ inputs.test-script-name}} if: env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PNPM_R: ${{ inputs.pnpm-recursive-tests }} PNPM_ARGS: ${{ inputs.pnpm-tests-args }} @@ -190,7 +190,7 @@ runs: - name: Restore assets ownership if: always() && inputs.pl-start-service != 'false' && (env.SKIP_TESTS != 'true' || inputs.test-skip-dry-run == 'true') - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PL_ASSETS_DIR: ${{ format('{0}/{1}', github.workspace, inputs.pl-test-assets-dir) }} with: diff --git a/blocks/release/registry-bin/action.yaml b/blocks/release/registry-bin/action.yaml index 13a5847b..2f5d86ed 100644 --- a/blocks/release/registry-bin/action.yaml +++ b/blocks/release/registry-bin/action.yaml @@ -112,34 +112,34 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: echo './release-artifact' - name: Download artifact - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add version - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.context.outputs.current-version }}' - name: Search for the package.yaml inside github workspace id: pkg-yaml-status - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: PKG_YAML_SEARCH_PATH: ${{ format('{0}/{1}', github.workspace, 'package.yaml') }} with: @@ -154,13 +154,13 @@ runs: - name: Patch package version if: fromJSON(steps.pkg-yaml-status.outputs.data).exist != '0' - uses: milaboratory/github-ci/actions/yaml/patch-version@v4-beta + uses: milaboratory/github-ci/actions/yaml/patch-version@v4 with: version: ${{ steps.context.outputs.current-version }} - name: Re-pack artifact as tgz archive id: repack - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} ARCHIVE_PATH: ${{ format('{0}/result-archive', github.workspace) }} @@ -194,7 +194,7 @@ runs: ghwa_set_output archive-path "${ARCHIVE_PATH}" - name: Create sig file for re-packed archive - uses: milaboratory/github-ci/actions/gcloud-kms-sign@v4-beta + uses: milaboratory/github-ci/actions/gcloud-kms-sign@v4 with: file-path: ${{ fromJSON(steps.repack.outputs.data).archive-full-path }} gcloud-kms-workload-identity-provider: ${{ inputs.gcloud-kms-workload-identity-provider }} @@ -207,7 +207,7 @@ runs: gcloud-kms-key-name: ${{ inputs.gcloud-kms-key-name }} - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | aws s3 cp --recursive \ @@ -215,7 +215,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ARTIFACT_PATH: ${{ fromJSON(steps.repack.outputs.data).archive-path }} S3_PATH: ${{ inputs.s3-path }} @@ -231,6 +231,6 @@ runs: done - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ steps.uploaded-list.outputs.stdout }} diff --git a/blocks/release/s3/action.yaml b/blocks/release/s3/action.yaml index 0ea0bc3a..ea19b66e 100644 --- a/blocks/release/s3/action.yaml +++ b/blocks/release/s3/action.yaml @@ -191,16 +191,16 @@ runs: steps: - id: context - uses: milaboratory/github-ci/actions/context@v4-beta + uses: milaboratory/github-ci/actions/context@v4 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_ARTIFACT_DOWNLOAD_PATH: ${{ inputs.artifact-override-download-path }} with: @@ -212,14 +212,14 @@ runs: fi - name: Download artifact - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add version if: inputs.add-version == 'true' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.context.outputs.current-version }}' @@ -227,7 +227,7 @@ runs: - name: Get SHA suffix id: sha if: inputs.add-sha != 'false' && inputs.add-sha != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ADD_SHA: ${{ inputs.add-sha }} with: @@ -243,14 +243,14 @@ runs: - name: Add SHA if: steps.sha.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.sha.outputs.stdout }}' - name: Add Github Run ID if: inputs.add-github-run-id == 'true' && inputs.add-github-run-id != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ github.run_id }}' @@ -258,7 +258,7 @@ runs: - name: Get OS NAME id: os_name if: inputs.add-os-name != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OS_NAME: ${{ inputs.add-os-name }} with: @@ -273,14 +273,14 @@ runs: - name: Add OS NAME if: inputs.add-os-name != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_name.outputs.stdout }}' - name: Get ARCH id: os_arch - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_ARCH: ${{ inputs.artifact-override-os-arch }} UPLOAD_TO_REGISTRY: ${{ inputs.upload-to-registry }} @@ -315,13 +315,13 @@ runs: - name: Add ARCH if: inputs.add-os-arch == 'true' && inputs.add-os-arch != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_arch.outputs.stdout }}' - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | aws s3 cp --recursive \ @@ -329,7 +329,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: files-list - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} S3_PATH: ${{ inputs.s3-path }} @@ -373,7 +373,7 @@ runs: ghwa_set_output array_paths "${array_paths}" - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: UPLOADED_FILES: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} with: @@ -381,12 +381,12 @@ runs: echo "${UPLOADED_FILES}" - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} - id: download-list - uses: milaboratory/github-ci/actions/strings/replace@v4-beta + uses: milaboratory/github-ci/actions/strings/replace@v4 with: input: ${{ fromJSON(steps.files-list.outputs.data).array_paths }} @@ -401,12 +401,12 @@ runs: ^/ -> https://${{ inputs.s3-bucket }}.s3.${{ inputs.s3-region }}.amazonaws.com/ - id: download-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ steps.download-list.outputs.result }} - id: artifacts-list - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: JSON_ARRAY: ${{ fromJSON(steps.files-list.outputs.data).json_array_infos }} with: diff --git a/blocks/signing-tools/macos-notarize/action.yaml b/blocks/signing-tools/macos-notarize/action.yaml index a91fdea6..80474b67 100644 --- a/blocks/signing-tools/macos-notarize/action.yaml +++ b/blocks/signing-tools/macos-notarize/action.yaml @@ -35,7 +35,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4-beta + - uses: milaboratory/github-ci/actions/files/list@v4 id: artifacts-list with: patterns: ${{ inputs.paths }} diff --git a/blocks/signing-tools/macos-sign/action.yaml b/blocks/signing-tools/macos-sign/action.yaml index ef5388fd..9c349c16 100644 --- a/blocks/signing-tools/macos-sign/action.yaml +++ b/blocks/signing-tools/macos-sign/action.yaml @@ -39,7 +39,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4-beta + - uses: milaboratory/github-ci/actions/files/list@v4 id: binaries-list with: patterns: ${{ inputs.binaries }} diff --git a/blocks/signing-tools/windows-sign/action.yaml b/blocks/signing-tools/windows-sign/action.yaml index ecb2f78a..c4152edf 100644 --- a/blocks/signing-tools/windows-sign/action.yaml +++ b/blocks/signing-tools/windows-sign/action.yaml @@ -84,7 +84,7 @@ runs: using: "composite" steps: - - uses: milaboratory/github-ci/actions/files/list@v4-beta + - uses: milaboratory/github-ci/actions/files/list@v4 id: binaries-list with: patterns: ${{ inputs.binaries }} @@ -96,7 +96,7 @@ runs: - name: Install Java if: steps.binaries-list.outputs.has-matches == 'true' - uses: actions/setup-java@v4-beta + uses: actions/setup-java@v4 with: distribution: ${{ inputs.java-distribution }} java-version: ${{ inputs.java-version }} diff --git a/blocks/update-cdn-link/action.yaml b/blocks/update-cdn-link/action.yaml index 90624c0a..eb4a078d 100644 --- a/blocks/update-cdn-link/action.yaml +++ b/blocks/update-cdn-link/action.yaml @@ -59,13 +59,13 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - name: Update website-redirect-location metadata in the file - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: S3_BUCKET: ${{ inputs.s3-bucket }} S3_KEY: ${{ inputs.s3-bucket-path }}/${{ inputs.s3-bucket-key }} diff --git a/blocks/update-s3-latest/action.yaml b/blocks/update-s3-latest/action.yaml index 7de22a82..b6b6d4bd 100644 --- a/blocks/update-s3-latest/action.yaml +++ b/blocks/update-s3-latest/action.yaml @@ -146,25 +146,25 @@ runs: steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4-beta + uses: aws-actions/configure-aws-credentials@v4 with: role-to-assume: ${{ inputs.s3-iam-role-to-assume }} aws-region: ${{ inputs.s3-region }} - id: artifact-path - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: echo './release-artifact' - name: Download artifact - uses: actions/download-artifact@v4-beta + uses: actions/download-artifact@v4 with: name: ${{ inputs.artifact-name }} path: ${{ steps.artifact-path.outputs.stdout }} - name: Add branch name if: inputs.add-branch-name == 'true' && inputs.branch-name != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ inputs.branch-name }}' @@ -172,7 +172,7 @@ runs: - name: Get SHA suffix id: sha if: inputs.add-sha != 'false' && inputs.add-sha != '' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ADD_SHA: ${{ inputs.add-sha }} with: @@ -188,7 +188,7 @@ runs: - name: Add SHA if: steps.sha.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.sha.outputs.stdout }}' @@ -196,7 +196,7 @@ runs: - name: Get ARCH id: os_arch if: inputs.add-os-arch == 'true' - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: OVERRIDE_ARCH: ${{ inputs.artifact-override-os-arch }} with: @@ -218,13 +218,13 @@ runs: - name: Add ARCH if: steps.os_arch.outputs.stdout != '' - uses: milaboratory/github-ci/actions/files/add-suffix@v4-beta + uses: milaboratory/github-ci/actions/files/add-suffix@v4 with: paths: ${{ steps.artifact-path.outputs.stdout }} suffix: '-${{ steps.os_arch.outputs.stdout }}' - name: Upload files - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 with: run: | aws s3 cp --recursive \ @@ -232,7 +232,7 @@ runs: s3://${{ inputs.s3-bucket }}/${{ inputs.s3-path }} - id: uploaded-list - uses: milaboratory/github-ci/actions/shell@v4-beta + uses: milaboratory/github-ci/actions/shell@v4 env: ARTIFACT_PATH: ${{ steps.artifact-path.outputs.stdout }} S3_PATH: ${{ inputs.s3-path }} @@ -248,12 +248,12 @@ runs: done - id: uploaded-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ steps.uploaded-list.outputs.stdout }} - id: download-list - uses: milaboratory/github-ci/actions/strings/replace@v4-beta + uses: milaboratory/github-ci/actions/strings/replace@v4 with: input: ${{ steps.uploaded-list.outputs.stdout }} @@ -268,6 +268,6 @@ runs: ^/ -> https://${{ inputs.s3-bucket }}.s3.${{ inputs.s3-region }}.amazonaws.com/ - id: download-json - uses: milaboratory/github-ci/actions/strings/json-list@v4-beta + uses: milaboratory/github-ci/actions/strings/json-list@v4 with: input: ${{ steps.download-list.outputs.result }} From 7c1ad5177e15394b7b9c2442476e863b294521ef Mon Sep 17 00:00:00 2001 From: Paul Newling Date: Thu, 21 May 2026 14:43:00 -0700 Subject: [PATCH 6/8] Surface publish-time gates as PR-visible jobs Extract require-latest, the pnpm-workspace/lock drift guard, and the scan-pnpm-repo Trivy scan from build-test-publish into separate preflight and security-scan jobs. Both are non-blocking on PRs and blocking on the default branch and in the merge queue, mirroring the existing check-changesets pattern. build-test-publish gates publish on both via needs + if. --- .github/workflows/node-simple-pnpm.yaml | 169 +++++++++++++++++++----- 1 file changed, 139 insertions(+), 30 deletions(-) diff --git a/.github/workflows/node-simple-pnpm.yaml b/.github/workflows/node-simple-pnpm.yaml index fb57885a..39f7dca6 100644 --- a/.github/workflows/node-simple-pnpm.yaml +++ b/.github/workflows/node-simple-pnpm.yaml @@ -471,6 +471,126 @@ jobs: npm-pkg-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} pnpm-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).pnpm-version }} + preflight: + name: preflight (require-latest) + runs-on: ubuntu-latest + # Surface SDK-version drift on PRs as a non-blocking check, but enforce it + # on the default branch and in the merge queue so publish cannot proceed + # with a stale @platforma-sdk dependency. + continue-on-error: ${{ github.ref_name != inputs.changeset-default-branch && github.event_name != 'merge_group' }} + needs: + - init + steps: + - uses: milaboratory/github-ci/actions/context@v4 + + - uses: milaboratory/github-ci/actions/env@v4 + with: + inputs: ${{ inputs.env }} + secrets: ${{ secrets.env }} + + - uses: actions/checkout@v4 + with: + lfs: ${{ inputs.checkout-git-lfs }} + submodules: ${{ inputs.checkout-submodules }} + fetch-depth: '0' + + - name: Check infrastructure requirements for publication + uses: milaboratory/github-ci/actions/node/require-latest@v4 + with: + packages: | + @platforma-sdk/block-tools + @platforma-sdk/tengo-builder + + - name: Check pnpm-lock.yaml is in sync with pnpm-workspace.yaml + shell: bash + env: + DEFAULT_BRANCH: origin/${{ inputs.changeset-default-branch }} + run: | + if git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-workspace.yaml$'; then + if ! git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-lock.yaml$'; then + echo "Changes in pnpm-workspace.yaml detected, but no updates in pnpm-lock.yaml were found in current branch" + exit 1 + fi + fi + + security-scan: + name: security scan (trivy) + runs-on: ${{ inputs.gha-runner-label }} + # Surface Trivy findings on PRs without blocking build/test; enforce on the + # default branch and in the merge queue so a vulnerable image cannot be + # published. + continue-on-error: ${{ github.ref_name != inputs.changeset-default-branch && github.event_name != 'merge_group' }} + needs: + - init + - metadata + permissions: + id-token: write + contents: read + steps: + - uses: milaboratory/github-ci/actions/context@v4 + + - uses: milaboratory/github-ci/actions/env@v4 + with: + inputs: ${{ inputs.env }} + secrets: ${{ secrets.env }} + + - uses: actions/checkout@v4 + with: + lfs: ${{ inputs.checkout-git-lfs }} + submodules: ${{ inputs.checkout-submodules }} + + - name: Configure AWS credentials + uses: aws-actions/configure-aws-credentials@v4 + with: + role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} + role-duration-seconds: ${{ inputs.aws-login-duration }} + aws-region: ${{ inputs.aws-region }} + + - id: login-ecr + uses: aws-actions/amazon-ecr-login@v2 + with: + mask-password: 'true' + + - name: Login to Quay.io + if: inputs.docker-quay-push && env.QUAY_USERNAME != '' && env.QUAY_ROBOT_TOKEN != '' + uses: docker/login-action@v3 + with: + registry: quay.io + username: ${{ env.QUAY_USERNAME }} + password: ${{ env.QUAY_ROBOT_TOKEN }} + ecr: false + + - name: Login to Docker GA + if: inputs.docker-ga-push && env.QUAY_USERNAME != '' && env.QUAY_ROBOT_TOKEN != '' + uses: docker/login-action@v3 + with: + registry: containers.pl-open.science + username: ${{ env.QUAY_USERNAME }} + password: ${{ env.QUAY_ROBOT_TOKEN }} + ecr: false + + - name: Prepare environment for building a NodeJS application + uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 + env: + PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} + with: + node-version: ${{ inputs.node-version }} + cache-version: ${{ inputs.cache-version }} + pnpm-version: ${{ env.PNPM_VERSION || inputs.pnpm-version }} + cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} + npmrc-config: ${{ inputs.npmrc-config }} + + - name: Install NodeJS packages with pnpm + shell: bash + env: + NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} + NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} + run: | + pnpm install --frozen-lockfile --prefer-offline + + - name: Perform security scan checks before publication + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 + check-changesets: name: check for changesets runs-on: ubuntu-latest @@ -525,11 +645,16 @@ jobs: matrix: include: ${{ fromJSON(inputs.pre-calculated-task-list) }} needs: + - preflight - check-changesets - metadata if: > inputs.pre-calculated && inputs.pre-calculated-task-list != '[]' && !failure() && !cancelled() && + ( + needs.preflight.result == 'success' || + needs.preflight.result == 'skipped' + ) && ( needs.check-changesets.result == 'success' || needs.check-changesets.result == 'skipped' @@ -608,17 +733,7 @@ jobs: env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} - DEFAULT_BRANCH: origin/${{ inputs.changeset-default-branch }} - run: | - if git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-workspace.yaml$'; then - # Changes in pnpm-workspace.yaml have to be accompanied by pnpm-lock.yaml update - if ! git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-lock.yaml$'; then - echo "Changes in pnpm-workspace.yaml detected, but no updates in pnpm-lock.yaml were found in current branch" - exit 1 - fi - fi - pnpm install --frozen-lockfile --prefer-offline - name: Run changeset version @@ -641,11 +756,21 @@ jobs: name: unified (build test publish) runs-on: ${{ inputs.gha-runner-label }} needs: + - preflight + - security-scan - check-changesets - metadata - pre-calculated-build if: > !failure() && !cancelled() && + ( + needs.preflight.result == 'success' || + needs.preflight.result == 'skipped' + ) && + ( + needs.security-scan.result == 'success' || + needs.security-scan.result == 'skipped' + ) && ( needs.pre-calculated-build.result == 'success' || needs.pre-calculated-build.result == 'skipped' @@ -684,13 +809,6 @@ jobs: token: ${{ steps.app-token.outputs.token }} fetch-depth: '0' - - name: Check infrastructure requirements for publication - uses: milaboratory/github-ci/actions/node/require-latest@v4-beta - with: - packages: | - @platforma-sdk/block-tools - @platforma-sdk/tengo-builder - - name: Configure AWS credentials uses: aws-actions/configure-aws-credentials@v4-beta with: @@ -751,17 +869,7 @@ jobs: env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} - DEFAULT_BRANCH: origin/${{ inputs.changeset-default-branch }} - run: | - if git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-workspace.yaml$'; then - # Changes in pnpm-workspace.yaml have to be accompanied by pnpm-lock.yaml update - if ! git diff --name-only ${DEFAULT_BRANCH}..HEAD | grep -q -E '^pnpm-lock.yaml$'; then - echo "Changes in pnpm-workspace.yaml detected, but no updates in pnpm-lock.yaml were found in current branch" - exit 1 - fi - fi - pnpm install --frozen-lockfile --prefer-offline - name: Run changeset version @@ -862,9 +970,6 @@ jobs: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} - - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4-beta - - name: Get GitHub App User ID if: steps.check-changes.outputs.has-changes == '1' id: get-user-id @@ -945,6 +1050,8 @@ jobs: needs: - init - metadata + - preflight + - security-scan - check-changesets - build-test-publish - pre-calculated-build @@ -966,6 +1073,8 @@ jobs: ${{ needs.pre-calculated-build.result }} ${{ needs.build-test-publish.result }} ${{ needs.check-changesets.result }} + ${{ needs.preflight.result }} + ${{ needs.security-scan.result }} product-name: ${{ inputs.app-name }} override-version: ${{ format('{0}', env.NPM_PKG_VERSION) }} override-tag: ${{ format('v{0}', env.NPM_PKG_VERSION) }} From cc1aa778d3c4ff633503cad7be23c1d1896c85cf Mon Sep 17 00:00:00 2001 From: Paul Newling Date: Thu, 21 May 2026 15:01:13 -0700 Subject: [PATCH 7/8] Revert security-scan extraction: scan needs build artifacts scan-pnpm-repo discovers images via dist/artifacts/*.json which is only populated by the build step. A pre-build security-scan job silently passes in auto-discovery mode (scan_npm_package returns 0 when no images are found and _require_docker=false), making the Trivy gate a no-op. Restore scan-pnpm-repo as a step in build-test-publish after the build. preflight (require-latest + lockfile drift) is unaffected since those checks have no artifact dependency. --- .github/workflows/node-simple-pnpm.yaml | 88 +------------------------ 1 file changed, 3 insertions(+), 85 deletions(-) diff --git a/.github/workflows/node-simple-pnpm.yaml b/.github/workflows/node-simple-pnpm.yaml index 39f7dca6..ba361706 100644 --- a/.github/workflows/node-simple-pnpm.yaml +++ b/.github/workflows/node-simple-pnpm.yaml @@ -513,84 +513,6 @@ jobs: fi fi - security-scan: - name: security scan (trivy) - runs-on: ${{ inputs.gha-runner-label }} - # Surface Trivy findings on PRs without blocking build/test; enforce on the - # default branch and in the merge queue so a vulnerable image cannot be - # published. - continue-on-error: ${{ github.ref_name != inputs.changeset-default-branch && github.event_name != 'merge_group' }} - needs: - - init - - metadata - permissions: - id-token: write - contents: read - steps: - - uses: milaboratory/github-ci/actions/context@v4 - - - uses: milaboratory/github-ci/actions/env@v4 - with: - inputs: ${{ inputs.env }} - secrets: ${{ secrets.env }} - - - uses: actions/checkout@v4 - with: - lfs: ${{ inputs.checkout-git-lfs }} - submodules: ${{ inputs.checkout-submodules }} - - - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 - with: - role-to-assume: ${{ env.AWS_CI_IAM_MONOREPO_SIMPLE_ROLE }} - role-duration-seconds: ${{ inputs.aws-login-duration }} - aws-region: ${{ inputs.aws-region }} - - - id: login-ecr - uses: aws-actions/amazon-ecr-login@v2 - with: - mask-password: 'true' - - - name: Login to Quay.io - if: inputs.docker-quay-push && env.QUAY_USERNAME != '' && env.QUAY_ROBOT_TOKEN != '' - uses: docker/login-action@v3 - with: - registry: quay.io - username: ${{ env.QUAY_USERNAME }} - password: ${{ env.QUAY_ROBOT_TOKEN }} - ecr: false - - - name: Login to Docker GA - if: inputs.docker-ga-push && env.QUAY_USERNAME != '' && env.QUAY_ROBOT_TOKEN != '' - uses: docker/login-action@v3 - with: - registry: containers.pl-open.science - username: ${{ env.QUAY_USERNAME }} - password: ${{ env.QUAY_ROBOT_TOKEN }} - ecr: false - - - name: Prepare environment for building a NodeJS application - uses: milaboratory/github-ci/actions/node/prepare-pnpm@v4 - env: - PNPM_VERSION: ${{ needs.metadata.outputs.pnpm-version }} - with: - node-version: ${{ inputs.node-version }} - cache-version: ${{ inputs.cache-version }} - pnpm-version: ${{ env.PNPM_VERSION || inputs.pnpm-version }} - cache-hashfiles-search-path: ${{ inputs.cache-hashfiles-search-path }} - npmrc-config: ${{ inputs.npmrc-config }} - - - name: Install NodeJS packages with pnpm - shell: bash - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ env.NPMJS_TOKEN }} - run: | - pnpm install --frozen-lockfile --prefer-offline - - - name: Perform security scan checks before publication - uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 - check-changesets: name: check for changesets runs-on: ubuntu-latest @@ -757,7 +679,6 @@ jobs: runs-on: ${{ inputs.gha-runner-label }} needs: - preflight - - security-scan - check-changesets - metadata - pre-calculated-build @@ -767,10 +688,6 @@ jobs: needs.preflight.result == 'success' || needs.preflight.result == 'skipped' ) && - ( - needs.security-scan.result == 'success' || - needs.security-scan.result == 'skipped' - ) && ( needs.pre-calculated-build.result == 'success' || needs.pre-calculated-build.result == 'skipped' @@ -970,6 +887,9 @@ jobs: test-coverage-reports: ${{ inputs.test-coverage-reports }} test-results-reports: ${{ inputs.test-results-reports }} + - name: Perform security scan checks before publication + uses: milaboratory/github-ci/actions/docker/scan-pnpm-repo@v4 + - name: Get GitHub App User ID if: steps.check-changes.outputs.has-changes == '1' id: get-user-id @@ -1051,7 +971,6 @@ jobs: - init - metadata - preflight - - security-scan - check-changesets - build-test-publish - pre-calculated-build @@ -1074,7 +993,6 @@ jobs: ${{ needs.build-test-publish.result }} ${{ needs.check-changesets.result }} ${{ needs.preflight.result }} - ${{ needs.security-scan.result }} product-name: ${{ inputs.app-name }} override-version: ${{ format('{0}', env.NPM_PKG_VERSION) }} override-tag: ${{ format('v{0}', env.NPM_PKG_VERSION) }} From d265b295d4ecbe16ff424d929392cca8fc436302 Mon Sep 17 00:00:00 2001 From: Paul Newling Date: Fri, 22 May 2026 13:52:58 -0700 Subject: [PATCH 8/8] preflight: split into require-latest and pnpm-lock-sync jobs The previous single 'preflight' job collapsed both checks under one PR status row, and when require-latest failed the pnpm-lock-sync step was skipped (job-level continue-on-error does not propagate to step ordering inside the job). Split into 'preflight-require-latest' and 'preflight-pnpm-lock-sync' so each surfaces as its own PR-visible check, each carries its own job-level continue-on-error, and a failure in one no longer hides the other. Downstream needs: in pre-calculated-build, build-test-publish, and notify slack release updated to depend on both new jobs. Follow-up to #164. --- .github/workflows/node-simple-pnpm.yaml | 53 ++++++++++++++++++++----- 1 file changed, 44 insertions(+), 9 deletions(-) diff --git a/.github/workflows/node-simple-pnpm.yaml b/.github/workflows/node-simple-pnpm.yaml index ba361706..aeb9a79d 100644 --- a/.github/workflows/node-simple-pnpm.yaml +++ b/.github/workflows/node-simple-pnpm.yaml @@ -471,7 +471,7 @@ jobs: npm-pkg-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).npm-pkg-version }} pnpm-version: ${{ fromJSON(steps.npm-pkg-metadata.outputs.data).pnpm-version }} - preflight: + preflight-require-latest: name: preflight (require-latest) runs-on: ubuntu-latest # Surface SDK-version drift on PRs as a non-blocking check, but enforce it @@ -501,6 +501,29 @@ jobs: @platforma-sdk/block-tools @platforma-sdk/tengo-builder + preflight-pnpm-lock-sync: + name: preflight (pnpm-lock-sync) + runs-on: ubuntu-latest + # Surface pnpm-workspace.yaml / pnpm-lock.yaml drift on PRs as a + # non-blocking check, but enforce it on the default branch and in the + # merge queue so publish cannot proceed with a stale lockfile. + continue-on-error: ${{ github.ref_name != inputs.changeset-default-branch && github.event_name != 'merge_group' }} + needs: + - init + steps: + - uses: milaboratory/github-ci/actions/context@v4 + + - uses: milaboratory/github-ci/actions/env@v4 + with: + inputs: ${{ inputs.env }} + secrets: ${{ secrets.env }} + + - uses: actions/checkout@v4 + with: + lfs: ${{ inputs.checkout-git-lfs }} + submodules: ${{ inputs.checkout-submodules }} + fetch-depth: '0' + - name: Check pnpm-lock.yaml is in sync with pnpm-workspace.yaml shell: bash env: @@ -567,15 +590,20 @@ jobs: matrix: include: ${{ fromJSON(inputs.pre-calculated-task-list) }} needs: - - preflight + - preflight-require-latest + - preflight-pnpm-lock-sync - check-changesets - metadata if: > inputs.pre-calculated && inputs.pre-calculated-task-list != '[]' && !failure() && !cancelled() && ( - needs.preflight.result == 'success' || - needs.preflight.result == 'skipped' + needs.preflight-require-latest.result == 'success' || + needs.preflight-require-latest.result == 'skipped' + ) && + ( + needs.preflight-pnpm-lock-sync.result == 'success' || + needs.preflight-pnpm-lock-sync.result == 'skipped' ) && ( needs.check-changesets.result == 'success' || @@ -678,15 +706,20 @@ jobs: name: unified (build test publish) runs-on: ${{ inputs.gha-runner-label }} needs: - - preflight + - preflight-require-latest + - preflight-pnpm-lock-sync - check-changesets - metadata - pre-calculated-build if: > !failure() && !cancelled() && ( - needs.preflight.result == 'success' || - needs.preflight.result == 'skipped' + needs.preflight-require-latest.result == 'success' || + needs.preflight-require-latest.result == 'skipped' + ) && + ( + needs.preflight-pnpm-lock-sync.result == 'success' || + needs.preflight-pnpm-lock-sync.result == 'skipped' ) && ( needs.pre-calculated-build.result == 'success' || @@ -970,7 +1003,8 @@ jobs: needs: - init - metadata - - preflight + - preflight-require-latest + - preflight-pnpm-lock-sync - check-changesets - build-test-publish - pre-calculated-build @@ -992,7 +1026,8 @@ jobs: ${{ needs.pre-calculated-build.result }} ${{ needs.build-test-publish.result }} ${{ needs.check-changesets.result }} - ${{ needs.preflight.result }} + ${{ needs.preflight-require-latest.result }} + ${{ needs.preflight-pnpm-lock-sync.result }} product-name: ${{ inputs.app-name }} override-version: ${{ format('{0}', env.NPM_PKG_VERSION) }} override-tag: ${{ format('v{0}', env.NPM_PKG_VERSION) }}