Skip to content
You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
upload

GitHub Action

Upload Artifact (Preserve File Permissions)

v1.4.0

Upload Artifact (Preserve File Permissions)

upload

Upload Artifact (Preserve File Permissions)

Tarball files before uploading the artifact to preserve file privileges

Installation

Copy and paste the following snippet into your .yml file.

              

- name: Upload Artifact (Preserve File Permissions)

uses: pyTooling/[email protected]

Learn more about this action in pyTooling/upload-artifact

Choose a version

Artifact Upload Action with File Permission Preservation

This composite action, based on actions/upload-artifact and packaging the artifact's content in a tarball, will preserve file attributes like file permissions. This essential capability is not implemented by GitHub until now (requested on 05.12.2019) and still delayed and/or refused? to be implemented in the future. According to GitHub, the internal API doesn't allow the implementation of such a feature, but this actions is demonstrating a working solution.

See pyTooling/download-artifact for the matching download action.

Advantages Compared to Competing GitHub Actions

  • Support all parameters of actions/upload-artifact.
    (Others support only a subset.)
  • Supports Ubuntu, Windows and macOS GitHub Runner images.
    (Others are created for Linux only.)
  • Well-defined behavior of tarball internal directory/file structure.
    (No silent and "unpredictable" removal of common prefixes.)
  • Store files in tarball without owner and group information.
  • Testcases implemented as a pipeline verifying uploads/downloads using a tarball.

Usage

jobs:
  MyJob:
    steps:
      - name: 📤 Upload artifact 'binaries'
        uses: pyTooling/upload-artifact@v4
        with:
          name: binaries
          working-directory: build
          path: |
            bin
            lib
            
      - name: 📤 Upload artifact 'logfiles'
        uses: pyTooling/upload-artifact@v4
        with:
          name: logfiles
          path: |
            *.report
            build/*.log

Input Parameters

Parameter Required Default Description
name no 'artifact' Name of the artifact to upload.
working-directory no ''
path yes A list of files, directories or wildcard patterns that describes what to upload.
if-no-files-found no 'warn' The desired behavior if no files are found using the provided path.
Available Options:
 warn: Output a warning but do not fail the action
 error: Fail the action with an error message
 ignore: Do not output any warnings or errors, the action does not fail
retention-days no repository settings Duration after which artifact will expire in days. 0 means using default retention.
Minimum 1 day.
Maximum 90 days unless changed from the repository settings page.
compression-level no 6 The level of compression for Zlib to be applied to the artifact archive.
The value can range from 0 to 9.
For large files that are not easily compressed, a value of 0 is recommended for significantly faster uploads.
overwrite no false If true, an artifact with a matching name will be deleted before a new one is uploaded.
If false, the action will fail if an artifact for the given name already exists.
Does not fail if the artifact does not exist.
include-hidden-files no false Whether to include hidden files in the provided path in the artifact.
The file contents of any hidden files in the path should be validated before enabled this to avoid uploading sensitive information.
tarball-name no 1

Output Parameters

Parameter Description
artifact-id GitHub ID of an Artifact, can be used by the REST API.
artifact-url URL to download an Artifact. Can be used in many scenarios such as linking to artifacts in issues or pull requests. Users must be logged-in in order for this URL to work. This URL is valid as long as the artifact has not expired or the artifact, run or repository have not been deleted.

Fixed behavior compared to actions/upload-artifact

  1. Do preserve file permissions
    The artifact's content is collected in a tarball, which allows preserving file attributes like file permissions.
  2. Don't remove common prefix from files
    actions/upload-artifact removes the common prefix from all files before storing in an artifact. This is not a well-defined behavior. Slightly changing the list of collected files might drastically change the directory structure of the artifact.
    This action defines a root directory from where the content of the tarball is constructed. This is independent of the list of provided file patterns.

Limitations of tar

This action uses tar as provided by the GitHub runner's operating system images.

On Linux (GNU tar)

To ensure files starting with a dash aren't considered command line options to tar, tar is called with --verbatim-files-from option.

To ensure files are extracted and assigned to the owner/group of the extracting user, options --owner=root:0 and --group=root:0 are used when creating the tarball.

On macOS (BSD tar)

⚠ BSD tar doesn't support a --verbatim-files-from option. Thus, files starting with a dash might be interpreted by tar as a command line option.

-T filename, --files-from filename
In x or t mode, tar will read the list of names to be extracted from filename. In c mode, tar will read names to be archived from filename. The special name -C on a line by itself will cause the current directory to be changed to the directory specified on the following line. Names are terminated by newlines unless --null is specified. Note that --null also disables the special handling of lines containing -C.
Note: If you are generating lists of files using find(1), you probably want to use -n as well.

Source: https://man.freebsd.org/cgi/man.cgi?tar(1)

To ensure files are extracted and assigned to the owner/group of the extracting user, options --gname=root, --gid=0, --uname=root and --uid=0 are used when creating the tarball.

On Windows (GNU tar)

To ensure files starting with a dash aren't considered command line options to tar, tar is called with --verbatim-files-from option.

To ensure files are extracted and assigned to the owner/group of the extracting user, options --owner=root:0 and --group=root:0 are used when creating the tarball.

Dependencies

Competing Actions

Contributors

Credits

This action was inspired by and is based on:

License

This GitHub Composite Action (source code) licensed under The MIT License.


SPDX-License-Identifier: MIT

Footnotes

  1. '__pyTooling_upload_artifact__.tar'