mirror of
https://github.com/ivuorinen/actions.git
synced 2026-01-26 11:34:00 +00:00
Ismo Vuorinen
ab371bdebf
* feat: first pass simplification
* refactor: simplify actions repository structure
Major simplification reducing actions from 44 to 30:
Consolidations:
- Merge biome-check + biome-fix → biome-lint (mode: check/fix)
- Merge eslint-check + eslint-fix → eslint-lint (mode: check/fix)
- Merge prettier-check + prettier-fix → prettier-lint (mode: check/fix)
- Merge 5 version-detect actions → language-version-detect (language param)
Removals:
- common-file-check, common-retry (better served by external tools)
- docker-publish-gh, docker-publish-hub (consolidated into docker-publish)
- github-release (redundant with existing tooling)
- set-git-config (no longer needed)
- version-validator (functionality moved to language-version-detect)
Fixes:
- Rewrite docker-publish to use official Docker actions directly
- Update validate-inputs example (eslint-fix → eslint-lint)
- Update tests and documentation for new structure
Result: ~6,000 lines removed, cleaner action catalog, maintained functionality.
* refactor: complete action simplification and cleanup
Remove deprecated actions and update remaining actions:
Removed:
- common-file-check, common-retry: utility actions
- docker-publish-gh, docker-publish-hub: replaced by docker-publish wrapper
- github-release, version-validator, set-git-config: no longer needed
- Various version-detect actions: replaced by language-version-detect
Updated:
- docker-publish: rewrite as simple wrapper using official Docker actions
- validate-inputs: update example (eslint-fix → eslint-lint)
- Multiple actions: update configurations and remove deprecated dependencies
- Tests: update integration/unit tests for new structure
- Documentation: update README, remove test for deleted actions
Configuration updates:
- Linter configs, ignore files for new structure
- Makefile, pyproject.toml updates
* fix: enforce POSIX compliance in GitHub workflows
Convert all workflow shell scripts to POSIX-compliant sh:
Critical fixes:
- Replace bash with sh in all shell declarations
- Replace [[ with [ for test conditions
- Replace == with = for string comparisons
- Replace set -euo pipefail with set -eu
- Split compound AND conditions into separate [ ] tests
Files updated:
- .github/workflows/test-actions.yml (7 shell declarations, 10 test operators)
- .github/workflows/security-suite.yml (set -eu)
- .github/workflows/action-security.yml (2 shell declarations)
- .github/workflows/pr-lint.yml (3 shell declarations)
- .github/workflows/issue-stats.yml (1 shell declaration)
Ensures compatibility with minimal sh implementations and aligns with
CLAUDE.md standards requiring POSIX shell compliance across all scripts.
All tests pass: 764 pytest tests, 100% coverage.
* fix: add missing permissions for private repository support
Add critical permissions to pr-lint workflow for private repositories:
Workflow-level permissions:
+ packages: read - Access private npm/PyPI/Composer packages
Job-level permissions:
+ packages: read - Access private packages during dependency installation
+ checks: write - Create and update check runs
Fixes failures when:
- Installing private npm packages from GitHub Packages
- Installing private Composer dependencies
- Installing private Python packages
- Creating status checks with github-script
Valid permission scopes per actionlint:
actions, attestations, checks, contents, deployments, discussions,
id-token, issues, models, packages, pages, pull-requests,
repository-projects, security-events, statuses
Note: "workflows" and "metadata" are NOT valid permission scopes
(they are PAT-only scopes or auto-granted respectively).
* docs: update readmes
* fix: replace bash-specific 'source' with POSIX '.' command
Replace all occurrences of 'source' with '.' (dot) for POSIX compliance:
Changes in python-lint-fix/action.yml:
- Line 165: source .venv/bin/activate → . .venv/bin/activate
- Line 179: source .venv/bin/activate → . .venv/bin/activate
- Line 211: source .venv/bin/activate → . .venv/bin/activate
Also fixed bash-specific test operator:
- Line 192: [[ "$FAIL_ON_ERROR" == "true" ]] → [ "$FAIL_ON_ERROR" = "true" ]
The 'source' command is bash-specific. POSIX sh uses '.' (dot) to source files.
Both commands have identical functionality but '.' is portable across all
POSIX-compliant shells.
* security: fix code injection vulnerability in docker-publish
Fix CodeQL code injection warning (CWE-094, CWE-095, CWE-116):
Issue: inputs.context was used directly in GitHub Actions expression
without sanitization at line 194, allowing potential code injection
by external users.
Fix: Use environment variable indirection to prevent expression injection:
- Added env.BUILD_CONTEXT to capture inputs.context
- Changed context parameter to use ${{ env.BUILD_CONTEXT }}
Environment variables are evaluated after expression compilation,
preventing malicious code execution during workflow parsing.
Security Impact: Medium severity (CVSS 5.0)
Identified by: GitHub Advanced Security (CodeQL)
Reference: https://github.com/ivuorinen/actions/pull/353#pullrequestreview-3481935924
* security: prevent credential persistence in pr-lint checkout
Add persist-credentials: false to checkout step to mitigate untrusted
checkout vulnerability. This prevents GITHUB_TOKEN from being accessible
to potentially malicious PR code.
Fixes: CodeQL finding CWE-829 (untrusted checkout on privileged workflow)
* fix: prevent security bot from overwriting unrelated comments
Replace broad string matching with unique HTML comment marker for
identifying bot-generated comments. Previously, any comment containing
'Security Analysis' or '🔐 GitHub Actions Permissions' would be
overwritten, causing data loss.
Changes:
- Add unique marker: <!-- security-analysis-bot-comment -->
- Prepend marker to generated comment body
- Update comment identification to use marker only
- Add defensive null check for comment.body
This fixes critical data loss bug where user comments could be
permanently overwritten by the security analysis bot.
Follows same proven pattern as test-actions.yml coverage comments.
* improve: show concise permissions diff instead of full blocks
Replace verbose full-block permissions diff with line-by-line changes.
Now shows only added/removed permissions, making output much more
readable.
Changes:
- Parse permissions into individual lines
- Compare old vs new to identify actual changes
- Show only removed (-) and added (+) lines in diff
- Collapse unchanged permissions into details section (≤3 items)
- Show count summary for many unchanged permissions (>3 items)
Example output:
Before: 30+ lines showing entire permissions block
After: 3-5 lines showing only what changed
This addresses user feedback that permissions changes were too verbose.
* security: add input validation and trust model documentation
Add comprehensive security validation for docker-publish action to prevent
code injection attacks (CWE-094, CWE-116).
Changes:
- Add validation for context input (reject absolute paths, warn on URLs)
- Add validation for dockerfile input (reject absolute/URL paths)
- Document security trust model in README
- Add best practices for secure usage
- Explain validation rules and threat model
Prevents malicious actors from:
- Building from arbitrary file system locations
- Fetching Dockerfiles from untrusted remote sources
- Executing code injection through build context manipulation
Addresses: CodeRabbit review comments #2541434325, #2541549615
Fixes: GitHub Advanced Security code injection findings
* security: replace unmaintained nick-fields/retry with step-security/retry
Replace nick-fields/retry with step-security/retry across all 4 actions:
- csharp-build/action.yml
- php-composer/action.yml
- go-build/action.yml
- ansible-lint-fix/action.yml
The nick-fields/retry action has security vulnerabilities and low maintenance.
step-security/retry is a drop-in replacement with full API compatibility.
All inputs (timeout_minutes, max_attempts, command, retry_wait_seconds) are
compatible. Using SHA-pinned version for security.
Addresses CodeRabbit review comment #2541549598
* test: add is_input_required() helper function
Add helper function to check if an action input is required, reducing
duplication across test suites.
The function:
- Takes action_file and input_name as parameters
- Uses validation_core.py to query the 'required' property
- Returns 0 (success) if input is required
- Returns 1 (failure) if input is optional
This DRY improvement addresses CodeRabbit review comment #2541549572
* feat: add mode validation convention mapping
Add "mode" to the validation conventions mapping for lint actions
(eslint-lint, biome-lint, prettier-lint).
Note: The update-validators script doesn't currently recognize "string"
as a validator type, so mode validation coverage remains at 93%. The
actions already have inline validation for mode (check|fix), so this is
primarily for improving coverage metrics.
Addresses part of CodeRabbit review comment #2541549570
(validation coverage improvement)
* docs: fix CLAUDE.md action counts and add missing action
- Update action count from 31 to 29 (line 42)
- Add missing 'action-versioning' to Utilities category (line 74)
Addresses CodeRabbit review comments #2541553130 and #2541553110
* docs: add security considerations to docker-publish
Add security documentation to both action.yml header and README.md:
- Trust model explanation
- Input validation details for context and dockerfile
- Attack prevention information
- Best practices for secure usage
The documentation was previously removed when README was autogenerated.
Now documented in both places to ensure it persists.
* fix: correct step ID reference in docker-build
Fix incorrect step ID reference in platforms output:
- Changed steps.platforms.outputs.built to steps.detect-platforms.outputs.platforms
- The step is actually named 'detect-platforms' not 'platforms'
- Ensures output correctly references the detect-platforms step defined at line 188
* fix: ensure docker-build platforms output is always available
Make detect-platforms step unconditional to fix broken output contract.
The platforms output (line 123) references steps.detect-platforms.outputs.platforms,
but the step only ran when auto-detect-platforms was true (default: false).
This caused undefined output in most cases.
Changes:
- Remove 'if' condition from detect-platforms step
- Step now always runs and always produces platforms output
- When auto-detect is false: outputs configured architectures
- When auto-detect is true: outputs detected platforms or falls back to architectures
- Add '|| true' to grep to prevent errors when no platforms detected
Fixes CodeRabbit review comment #2541824904
* security: remove env var indirection in docker-publish BUILD_CONTEXT
Remove BUILD_CONTEXT env var indirection to address GitHub Advanced Security alert.
The inputs.context is validated at lines 137-147 (rejects absolute paths, warns on URLs)
before being used, so the env var indirection is unnecessary and triggers false positive
code injection warnings.
Changes:
- Remove BUILD_CONTEXT env var (line 254)
- Use inputs.context directly (line 256 → 254)
- Input validation remains in place (lines 137-147)
Fixes GitHub Advanced Security code injection alerts (comments #2541405269, #2541522320)
* feat: implement mode_enum validator for lint actions
Add mode_enum validator to validate mode inputs in linting actions.
Changes to conventions.py:
- Add 'mode_enum' to exact_matches mapping (line 215)
- Add 'mode_enum' to PHP-specific validators list (line 560)
- Implement _validate_mode_enum() method (lines 642-660)
- Validates mode values against ['check', 'fix']
- Returns clear error messages for invalid values
Updated rules.yml files:
- biome-lint: Add mode: mode_enum convention
- eslint-lint: Add mode: mode_enum convention
- prettier-lint: Add mode: mode_enum convention
- All rules.yml: Fix YAML formatting with yamlfmt
This addresses PR #353 comment #2541522326 which reported that mode validation
was being skipped due to unrecognized 'string' type, reducing coverage to 93%.
Tested with biome-lint action - correctly rejects invalid values and accepts
valid 'check' and 'fix' values.
* docs: update action count from 29 to 30 in CLAUDE.md
Update two references to action count in CLAUDE.md:
- Line 42: repository_overview memory description
- Line 74: Repository Structure section header
The repository has 30 actions total (29 listed + validate-inputs).
Addresses PR #353 comment #2541549588.
* docs: use pinned version ref in language-version-detect README
Change usage example from @main to @v2025 for security best practices.
Using pinned version refs (instead of @main) ensures:
- Predictable behavior across workflow runs
- Protection against breaking changes
- Better security through immutable references
Follows repository convention documented in main README and CLAUDE.md.
Addresses PR #353 comment #2541549588.
* refactor: remove deprecated add-snippets input from codeql-analysis
Remove add-snippets input which has been deprecated by GitHub's CodeQL action
and no longer has any effect.
Changes:
- Remove add-snippets input definition (lines 93-96)
- Remove reference in init step (line 129)
- Remove reference in analyze step (line 211)
- Regenerate README and rules.yml
This is a non-breaking change since:
- Default was 'false' (minimal usage expected)
- GitHub's action already ignores this parameter
- Aligns with recent repository simplification efforts
* feat: add mode_enum validator and update rules
Add mode_enum validator support for lint actions and regenerate all validation rules:
Validator Changes:
- Add mode_enum to action_overrides for biome-lint, eslint-lint, prettier-lint
- Remove deprecated add-snippets from codeql-analysis overrides
Rules Updates:
- All 29 action rules.yml files regenerated with consistent YAML formatting
- biome-lint, eslint-lint, prettier-lint now validate mode input (check/fix)
- Improved coverage for lint actions (79% → 83% for biome, 93% for eslint, 79% for prettier)
Documentation:
- Fix language-version-detect README to use @v2025 (not @main)
- Remove outdated docker-publish security docs (now handled by official actions)
This completes PR #353 review feedback implementation.
* fix: replace bash-specific $'\n' with POSIX-compliant printf
Replace non-POSIX $'\n' syntax in tag building loop with printf-based
approach that works in any POSIX shell.
Changed:
- Line 216: tags="${tags}"$'\n'"${image}:${tag}"
+ Line 216: tags="$(printf '%s\n%s' "$tags" "${image}:${tag}")"
This ensures docker-publish/action.yml runs correctly on systems using
/bin/sh instead of bash.
368 lines
10 KiB
Bash
Executable File
368 lines
10 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
# Common testing utilities for GitHub Actions
|
|
# Provides helper functions for testing action behavior
|
|
|
|
set -euo pipefail
|
|
|
|
# Source setup utilities
|
|
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
PROJECT_ROOT="$(cd "$SCRIPT_DIR/../.." && pwd)"
|
|
# shellcheck source=_tests/framework/setup.sh
|
|
source "${SCRIPT_DIR}/setup.sh"
|
|
|
|
# Action testing utilities
|
|
validate_action_yml() {
|
|
local action_file="$1"
|
|
local quiet_mode="${2:-false}"
|
|
|
|
if [[ ! -f $action_file ]]; then
|
|
[[ $quiet_mode == "false" ]] && log_error "Action file not found: $action_file"
|
|
return 1
|
|
fi
|
|
|
|
# Check if it's valid YAML
|
|
if ! yq eval '.' "$action_file" >/dev/null 2>&1; then
|
|
# Compute path relative to this script for CWD independence
|
|
local utils_dir
|
|
utils_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
if ! uv run "$utils_dir/../shared/validation_core.py" --validate-yaml "$action_file" 2>/dev/null; then
|
|
[[ $quiet_mode == "false" ]] && log_error "Invalid YAML in action file: $action_file"
|
|
return 1
|
|
fi
|
|
fi
|
|
|
|
[[ $quiet_mode == "false" ]] && log_success "Action YAML is valid: $action_file"
|
|
return 0
|
|
}
|
|
|
|
# Extract action metadata using Python validation module
|
|
get_action_inputs() {
|
|
local action_file="$1"
|
|
local script_dir
|
|
script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
uv run "$script_dir/../shared/validation_core.py" --inputs "$action_file"
|
|
}
|
|
|
|
get_action_outputs() {
|
|
local action_file="$1"
|
|
local script_dir
|
|
script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
uv run "$script_dir/../shared/validation_core.py" --outputs "$action_file"
|
|
}
|
|
|
|
get_action_name() {
|
|
local action_file="$1"
|
|
local script_dir
|
|
script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
uv run "$script_dir/../shared/validation_core.py" --name "$action_file"
|
|
}
|
|
|
|
# Check if an input is required in an action.yml file
|
|
is_input_required() {
|
|
local action_file="$1"
|
|
local input_name="$2"
|
|
local script_dir
|
|
script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
|
|
# Get the 'required' property for the input
|
|
local required_status
|
|
required_status=$(uv run "$script_dir/../shared/validation_core.py" --property "$action_file" "$input_name" "required")
|
|
|
|
# Return 0 (success) if input is required, 1 (failure) if optional
|
|
[[ $required_status == "required" ]]
|
|
}
|
|
|
|
# Test input validation using Python validation module
|
|
test_input_validation() {
|
|
local action_dir="$1"
|
|
local input_name="$2"
|
|
local test_value="$3"
|
|
local expected_result="${4:-success}" # success or failure
|
|
|
|
# Normalize action_dir to absolute path before setup_test_env changes working directory
|
|
action_dir="$(cd "$action_dir" && pwd)"
|
|
|
|
log_info "Testing input validation: $input_name = '$test_value'"
|
|
|
|
# Setup test environment
|
|
setup_test_env "input-validation-${input_name}"
|
|
|
|
# Use Python validation module via CLI
|
|
local script_dir
|
|
script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
|
|
local result="success"
|
|
# Call validation_core CLI with proper argument passing (no injection risk)
|
|
if ! uv run "$script_dir/../shared/validation_core.py" --validate "$action_dir" "$input_name" "$test_value" 2>&1; then
|
|
result="failure"
|
|
fi
|
|
|
|
# Check result matches expectation
|
|
if [[ $result == "$expected_result" ]]; then
|
|
log_success "Input validation test passed: $input_name"
|
|
cleanup_test_env "input-validation-${input_name}"
|
|
return 0
|
|
else
|
|
log_error "Input validation test failed: $input_name (expected: $expected_result, got: $result)"
|
|
cleanup_test_env "input-validation-${input_name}"
|
|
return 1
|
|
fi
|
|
}
|
|
|
|
# Removed: create_validation_script, create_python_validation_script,
|
|
# convert_github_expressions_to_env_vars, needs_python_validation, python_validate_input
|
|
# These functions are no longer needed as we use Python validation directly
|
|
|
|
# Test action outputs
|
|
test_action_outputs() {
|
|
local action_dir="$1"
|
|
shift
|
|
|
|
# Normalize action_dir to absolute path before setup_test_env changes working directory
|
|
action_dir="$(cd "$action_dir" && pwd)"
|
|
|
|
log_info "Testing action outputs for: $(basename "$action_dir")"
|
|
|
|
# Setup test environment
|
|
setup_test_env "output-test-$(basename "$action_dir")"
|
|
create_mock_repo "node"
|
|
|
|
# Set up inputs
|
|
while [[ $# -gt 1 ]]; do
|
|
local key="$1"
|
|
local value="$2"
|
|
# Convert dashes to underscores and uppercase for environment variable names
|
|
local env_key="${key//-/_}"
|
|
local env_key_upper
|
|
env_key_upper=$(echo "$env_key" | tr '[:lower:]' '[:upper:]')
|
|
export "INPUT_${env_key_upper}"="$value"
|
|
shift 2
|
|
done
|
|
|
|
# Run the action (simplified simulation)
|
|
local action_file="${action_dir}/action.yml"
|
|
local action_name
|
|
action_name=$(get_action_name "$action_file")
|
|
|
|
log_info "Simulating action: $action_name"
|
|
|
|
# For now, we'll create mock outputs based on the action definition
|
|
local outputs
|
|
outputs=$(get_action_outputs "$action_file")
|
|
|
|
# Create mock outputs
|
|
while IFS= read -r output; do
|
|
if [[ -n $output ]]; then
|
|
echo "${output}=mock-value-$(date +%s)" >>"$GITHUB_OUTPUT"
|
|
fi
|
|
done <<<"$outputs"
|
|
|
|
# Validate outputs exist
|
|
local test_passed=true
|
|
while IFS= read -r output; do
|
|
if [[ -n $output ]]; then
|
|
if ! grep -q "^${output}=" "$GITHUB_OUTPUT"; then
|
|
log_error "Missing output: $output"
|
|
test_passed=false
|
|
else
|
|
log_success "Output found: $output"
|
|
fi
|
|
fi
|
|
done <<<"$outputs"
|
|
|
|
cleanup_test_env "output-test-$(basename "$action_dir")"
|
|
|
|
if [[ $test_passed == "true" ]]; then
|
|
log_success "Output test passed for: $(basename "$action_dir")"
|
|
return 0
|
|
else
|
|
log_error "Output test failed for: $(basename "$action_dir")"
|
|
return 1
|
|
fi
|
|
}
|
|
|
|
# Test external usage pattern
|
|
test_external_usage() {
|
|
local action_name="$1"
|
|
|
|
log_info "Testing external usage pattern for: $action_name"
|
|
|
|
# Create test workflow that uses external reference
|
|
local test_workflow_dir="${TEST_ROOT}/integration/workflows"
|
|
mkdir -p "$test_workflow_dir"
|
|
|
|
local workflow_file="${test_workflow_dir}/${action_name}-external-test.yml"
|
|
|
|
cat >"$workflow_file" <<EOF
|
|
name: External Usage Test - $action_name
|
|
on:
|
|
workflow_dispatch:
|
|
push:
|
|
paths:
|
|
- '$action_name/**'
|
|
|
|
jobs:
|
|
test-external-usage:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Test external usage
|
|
uses: ivuorinen/actions/${action_name}@main
|
|
with:
|
|
# Default inputs for testing
|
|
EOF
|
|
|
|
# Add common test inputs based on action type
|
|
case "$action_name" in
|
|
*-setup | *-version-detect)
|
|
echo " # Version detection action - no additional inputs needed" >>"$workflow_file"
|
|
;;
|
|
*-lint* | *-fix)
|
|
# shellcheck disable=SC2016
|
|
echo ' token: ${{ github.token }}' >>"$workflow_file"
|
|
;;
|
|
*-publish | *-build)
|
|
# shellcheck disable=SC2016
|
|
echo ' token: ${{ github.token }}' >>"$workflow_file"
|
|
;;
|
|
*)
|
|
echo " # Generic test inputs" >>"$workflow_file"
|
|
;;
|
|
esac
|
|
|
|
log_success "Created external usage test workflow: $workflow_file"
|
|
return 0
|
|
}
|
|
|
|
# Performance test utilities
|
|
measure_action_time() {
|
|
local action_dir="$1"
|
|
shift
|
|
|
|
# Normalize action_dir to absolute path for consistent behavior
|
|
action_dir="$(cd "$action_dir" && pwd)"
|
|
|
|
log_info "Measuring execution time for: $(basename "$action_dir")"
|
|
|
|
local start_time
|
|
start_time=$(date +%s%N)
|
|
|
|
# Run the action test
|
|
test_action_outputs "$action_dir" "$@"
|
|
local result=$?
|
|
|
|
local end_time
|
|
end_time=$(date +%s%N)
|
|
|
|
local duration_ns=$((end_time - start_time))
|
|
local duration_ms=$((duration_ns / 1000000))
|
|
|
|
log_info "Action execution time: ${duration_ms}ms"
|
|
|
|
# Store performance data
|
|
echo "$(basename "$action_dir"),${duration_ms}" >>"${TEST_ROOT}/reports/performance.csv"
|
|
|
|
return $result
|
|
}
|
|
|
|
# Batch test runner
|
|
run_action_tests() {
|
|
local action_dir="$1"
|
|
local test_type="${2:-all}" # all, unit, integration, outputs
|
|
|
|
# Normalize action_dir to absolute path for consistent behavior
|
|
action_dir="$(cd "$action_dir" && pwd)"
|
|
|
|
local action_name
|
|
action_name=$(basename "$action_dir")
|
|
|
|
log_info "Running $test_type tests for: $action_name"
|
|
|
|
local test_results=()
|
|
|
|
# Handle "all" type by running all test types
|
|
if [[ $test_type == "all" ]]; then
|
|
# Run unit tests
|
|
log_info "Running unit tests..."
|
|
if validate_action_yml "${action_dir}/action.yml"; then
|
|
test_results+=("unit:PASS")
|
|
else
|
|
test_results+=("unit:FAIL")
|
|
fi
|
|
|
|
# Run output tests
|
|
log_info "Running output tests..."
|
|
if test_action_outputs "$action_dir"; then
|
|
test_results+=("outputs:PASS")
|
|
else
|
|
test_results+=("outputs:FAIL")
|
|
fi
|
|
|
|
# Run integration tests
|
|
log_info "Running integration tests..."
|
|
if test_external_usage "$action_name"; then
|
|
test_results+=("integration:PASS")
|
|
else
|
|
test_results+=("integration:FAIL")
|
|
fi
|
|
else
|
|
# Handle individual test types
|
|
case "$test_type" in
|
|
"unit")
|
|
log_info "Running unit tests..."
|
|
if validate_action_yml "${action_dir}/action.yml"; then
|
|
test_results+=("unit:PASS")
|
|
else
|
|
test_results+=("unit:FAIL")
|
|
fi
|
|
;;
|
|
|
|
"outputs")
|
|
log_info "Running output tests..."
|
|
if test_action_outputs "$action_dir"; then
|
|
test_results+=("outputs:PASS")
|
|
else
|
|
test_results+=("outputs:FAIL")
|
|
fi
|
|
;;
|
|
|
|
"integration")
|
|
log_info "Running integration tests..."
|
|
if test_external_usage "$action_name"; then
|
|
test_results+=("integration:PASS")
|
|
else
|
|
test_results+=("integration:FAIL")
|
|
fi
|
|
;;
|
|
esac
|
|
fi
|
|
|
|
# Report results
|
|
log_info "Test results for $action_name:"
|
|
for result in "${test_results[@]}"; do
|
|
local test_name="${result%:*}"
|
|
local status="${result#*:}"
|
|
|
|
if [[ $status == "PASS" ]]; then
|
|
log_success " $test_name: $status"
|
|
else
|
|
log_error " $test_name: $status"
|
|
fi
|
|
done
|
|
|
|
# Check if all tests passed
|
|
if [[ ! " ${test_results[*]} " =~ " FAIL" ]]; then
|
|
log_success "All tests passed for: $action_name"
|
|
return 0
|
|
else
|
|
log_error "Some tests failed for: $action_name"
|
|
return 1
|
|
fi
|
|
}
|
|
|
|
# Export all functions
|
|
export -f validate_action_yml get_action_inputs get_action_outputs get_action_name is_input_required
|
|
export -f test_input_validation test_action_outputs test_external_usage measure_action_time run_action_tests
|