Add a safe-upload-artifacts action #601
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
db81573
to
4cea908
Compare
|
Visit the preview URL for this PR (updated for commit faa7ff1): https://golioth-firmware-sdk-doxygen-dev--pr601-szczys-action-snj6ldvf.web.app (expires Wed, 25 Sep 2024 19:11:15 GMT) 🔥 via Firebase Hosting GitHub Action 🌎 Sign: a9993e61697a3983f3479e468bcb0b616f9a0578 |
szczys
commented
Sep 18, 2024
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
2 times, most recently
from
f2770b5
to
919430f
Compare
Code Coverage (Linux)
|
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
919430f
to
4b4eb75
Compare
Code Coverage (Zephyr)
|
szczys
force-pushed
the
szczys/add-twister-ci-summary
branch
from
c3adfc8
to
2db8622
Compare
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
4b4eb75
to
2ed0574
Compare
szczys
force-pushed
the
szczys/add-twister-ci-summary
branch
from
2db8622
to
beabbda
Compare
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
2ed0574
to
64667a9
Compare
sam-golioth
approved these changes
Sep 18, 2024
| name: Mask secrets in files | ||
|
|
||
| description: | | ||
| Search all files in a give path(s) and replace any GitHub secrets with ***NAME_OF_SECRET*** |
There was a problem hiding this comment.
Suggested change
| Search all files in a give path(s) and replace any GitHub secrets with ***NAME_OF_SECRET*** | |
| Search all files in a given path(s) and replace any GitHub secrets with ***NAME_OF_SECRET*** |
Comment on lines
58
to
60
| uniq __grep_search_output.txt > __files_to_mask.txt | ||
|
|
||
| if [ -s __files_to_mask.txt ]; then | ||
| cat __files_to_mask.txt | xargs -I{} sed -i "s/$ESCAPED_SECRET/***$key***/g" {} | ||
| fi |
There was a problem hiding this comment.
We can remove the need to write another file:
Suggested change
| uniq __grep_search_output.txt > __files_to_mask.txt | |
| if [ -s __files_to_mask.txt ]; then | |
| cat __files_to_mask.txt | xargs -I{} sed -i "s/$ESCAPED_SECRET/***$key***/g" {} | |
| fi | |
| if [ -s __grep_search_output.txt ]; then | |
| uniq __grep_search_output.txt | xargs -I{} sed -i "s/$ESCAPED_SECRET/***$key***/g" {} | |
| fi |
|
|
||
| - name: Upload artifacts | ||
| uses: actions/upload-artifact@v4 | ||
| if: steps.find-and-mask.outcome == 'success' |
There was a problem hiding this comment.
I think this is implied so we don't require it. We needed this before because we were using an if: always() directive, but now that's applied for the whole action instead of just the individual upload artifacts step.
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
64667a9
to
0fdda77
Compare
Add safe-upload-artifacts to combine the functionality of both the mask_secrets and upload-artifact actions. Signed-off-by: Mike Szczys <mike@golioth.io>
Use safe-upload-artifacts for twister run artifacts and summaries. Signed-off-by: Mike Szczys <mike@golioth.io>
This has been replaced with safe-upload-artifacts. Signed-off-by: Mike Szczys <mike@golioth.io>
szczys
force-pushed
the
szczys/action-safe-upload-artifacts
branch
from
0fdda77
to
faa7ff1
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This combined the functionality of the mask_secrets and upload-artifact actions.
This action takes a
nameandpathinput in the same formatting as theupload-artifactaction, masks any GitHub actions found in the files on those paths, and then calls the upload-artifact action to upload them as expected.resolves https://github.com/golioth/firmware-issue-tracker/issues/669