feat: add comprehensive security scanning and EditorConfig integration

- Add govulncheck, Snyk, and Trivy vulnerability scanning - Create security workflow for automated scanning on push/PR/schedule - Add gitleaks for secrets detection and prevention - Implement EditorConfig linting with eclint and editorconfig-checker - Update Makefile with security and formatting targets - Create SECURITY.md with vulnerability reporting guidelines - Configure Dependabot for automated dependency updates - Fix all EditorConfig violations across codebase - Update Go version to 1.23.10 to address stdlib vulnerabilities - Add tests for internal/helpers package (80% coverage) - Remove deprecated functions and migrate to error-returning patterns - Fix YAML indentation in test fixtures to resolve test failures
2026-02-20 11:51:48 +00:00 · 2025-08-03 20:12:18 +03:00
parent e6c3e09a7f
commit ce02d36929
53 changed files with 2400 additions and 590 deletions
--- a/testdata/composite-action/README.md
+++ b/testdata/composite-action/README.md
@@ -41,11 +41,11 @@ on:
 jobs:
  build:
    runs-on: ubuntu-latest
-    
+
    steps:
      - name: Checkout Repository
        uses: actions/checkout@v4
-      
+
      - name: Composite Example Action
        uses: your-org/ @v1
        with:
@@ -113,7 +113,7 @@ This action provides the following outputs that can be used in subsequent workfl
 - name: Composite Example Action
  id: action-step
  uses: your-org/ @v1
-  
+
 - name: Use Output
  run: |
    echo "build-result: \${{ steps.action-step.outputs.build-result }}"
@@ -305,4 +305,4 @@ If you find this action helpful, please consider:

 <div align="center">
  <sub>📚 Documentation generated with <a href="https://github.com/ivuorinen/gh-action-readme">gh-action-readme</a></sub>
-</div>
+</div>
--- a/testdata/composite-action/action.yml
+++ b/testdata/composite-action/action.yml
@@ -21,19 +21,19 @@ runs:
      with:
        fetch-depth: 0
        token: ${{ github.token }}
-    
+
    - name: Setup Node.js
      uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
      with:
        node-version: ${{ inputs.node-version }}
        cache: 'npm'
-    
+
    - name: Install dependencies
      shell: bash
      run: |
        cd ${{ inputs.working-directory }}
        npm ci
-    
+
    - name: Run tests
      shell: bash
      run: |
@@ -41,7 +41,7 @@ runs:
        echo "Tests completed successfully"
      env:
        NODE_ENV: test
-    
+
    - name: Build project
      uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
      id: build
@@ -50,4 +50,4 @@ runs:

 branding:
  icon: package
-  color: blue
+  color: blue
--- a/testdata/example-action/README.md
+++ b/testdata/example-action/README.md
@@ -1,37 +1,86 @@
 # Example Action

+![check](https://img.shields.io/badge/icon-check-green) ![GitHub](https://img.shields.io/badge/GitHub%20Action- -blue) ![License](https://img.shields.io/badge/license-MIT-green)

 > Test Action for gh-action-readme

-## Usage
+## 🚀 Quick Start

 ```yaml
- uses: ivuorinen/gh-action-readme/example-action@v1
-  with:
-    input1: # First input (default: foo)
-    input2: # Second input
+name: My Workflow
+on: [push, pull_request]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Example Action
+        uses: ivuorinen/gh-action-readme/example-action@v1
+        with:
+          input1: "foo"
+          input2: "value"
 ```

-## Inputs

+## 📥 Inputs

- **input1**: First input (**required**) (default: foo)
-
- **input2**: Second input
+| Parameter | Description | Required | Default |
+|-----------|-------------|----------|---------|
+| `input1` | First input | ✅ | `foo` |
+| `input2` | Second input | ❌ | - |



-## Outputs
+## 📤 Outputs
+
+| Parameter | Description |
+|-----------|-------------|
+| `result` | Result output |


- **result**: Result output
+## 💡 Examples
+
+<details>
+<summary>Basic Usage</summary>
+
+```yaml
+- name: Example Action
+  uses: ivuorinen/gh-action-readme/example-action@v1
+  with:
+    input1: "foo"
+    input2: "example-value"
+```
+</details>
+
+<details>
+<summary>Advanced Configuration</summary>
+
+```yaml
+- name: Example Action with custom settings
+  uses: ivuorinen/gh-action-readme/example-action@v1
+  with:
+    input1: "foo"
+    input2: "custom-value"
+```
+</details>



-## Example
+## 🔧 Development

-See the [action.yml](./action.yml) for a full reference.
+See the [action.yml](./action.yml) for the complete action specification.
+
+## 📄 License
+
+This action is distributed under the MIT License. See [LICENSE](LICENSE) for more information.
+
+## 🤝 Contributing
+
+Contributions are welcome! Please feel free to submit a Pull Request.

 ---

-*Auto-generated by [gh-action-readme](https://github.com/ivuorinen/gh-action-readme)*
+<div align="center">
+  <sub>🚀 Generated with <a href="https://github.com/ivuorinen/gh-action-readme">gh-action-readme</a></sub>
+</div>
--- a/testdata/example-action/action.yml
+++ b/testdata/example-action/action.yml
@@ -17,4 +17,3 @@ runs:
 branding:
  icon: check
  color: green
-
--- a/testdata/example-action/config.yaml
+++ b/testdata/example-action/config.yaml
@@ -6,4 +6,4 @@ permissions:
  contents: read
 runs_on:
  - "ubuntu-latest"
-  - "macos-latest"
+  - "macos-latest"