Skip to content

Bump zgosalvez/github-actions-ensure-sha-pinned-actions #98

Bump zgosalvez/github-actions-ensure-sha-pinned-actions

Bump zgosalvez/github-actions-ensure-sha-pinned-actions #98

Workflow file for this run

name: Updatecli
on:
workflow_dispatch:
schedule:
- cron: '0 6 * * 1'
push:
paths:
- '.updatecli/**'
- .github/workflows/updatecli.yml
permissions:
contents: write
pull-requests: write
id-token: write # This is required for requesting the JWT
deployments: write # This is required for deployment statuses management
jobs:
build-matrix-github-releases:
runs-on: ubuntu-latest
if: github.actor != 'dependabot[bot]'
outputs:
matrix: ${{ steps.set-matrix.outputs.matrix }}
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Build Matrix
id: set-matrix
run: |
FILES_JSON=$(find .updatecli/values/github_releases -type f -exec basename {} \; | jq -R -s -c 'split("\n")[:-1]')
echo "Files: $FILES_JSON"
echo "matrix=$FILES_JSON" >> $GITHUB_OUTPUT
update-github-releases:
needs: build-matrix-github-releases
runs-on: ubuntu-latest
strategy:
max-parallel: 1
matrix:
file: ${{fromJson(needs.build-matrix-github-releases.outputs.matrix)}}
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- uses: updatecli/updatecli-action@11d8c3e7c4dbb188d9534e599db759e418911828 # v2.73.0
- name: Run Updatecli
run: updatecli apply -c .updatecli/templates/github_releases.yaml -v .updatecli/values/github_releases/${{ matrix.file }}
env:
UPDATECLI_GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
UPDATECLI_USERNAME: ${{ github.actor }}
UPDATECLI_REPO_OWNER: ${{ github.repository_owner }}
UPDATECLI_REPO_NAME: ${{ github.event.repository.name }}
UPDATECLI_REPO_BRANCH: ${{ github.event.repository.default_branch }}