A repository to contain RIMdev's public GitHub Actions and reusuable workflow (YML) files. Plus forks of other projects that we find useful and needed to version control for security/enhancements.
Because this mono-repo contains multiple GitHub actions and reusable workflow files, SemVer rules will be difficult to apply meaningfully or consistently. See the releases page for a list of current versions and the change logs.
- The major (1st) position will probably never change.
- The minor (2nd) position will bump frequently as we add new actions/workflows, remove old code or make a breaking change.
- The patch (3rd) position will bump for bug fixes.
Breaking changes will be mentioned in the BREAKING_CHANGES.md file. Breaking changes should be rare, but there are no guarantees.
You can use the 'git' command line to look at changes for a specific path / file.
git diff refs/tags/v1.0.0 refs/tags/v1.1.1 -- .github/workflows/
There are version tags such as "v1.17.13" if you want to pin to a specific patch.
If you want to get all bug fixes, there are now "floating" tags such as "v1.17" which will always point at the latest patch version for that major/minor version.
We do not yet publish a "v1" floating major-version tag.
-
A new major/minor/patch version annotated tag will be pushed up to the repo. This will have a tag name of "vX.Y.Z", e.g. "v1.17.13".
-
A GitHub Release is created from the major/minor/patch version annotated tag.
-
The applicable floating annotated tags such as "v1.17" are deleted and recreated to point at the latest version.
Reusable GitHub Actions workflows. See ReusableWorkflows.md for the list and documentation.
GitHub Actions authored by RIMdev.
These actions help configure your .npmrc file to authenticate against different NPM registries for retrieving and/or publishing NPM packages.
- npm-config-github-packages-repository
- npm-config-myget-packages-repository
- npm-config-npmjs-org-registry
Actions which can be used to validate input values to workflows against RegEx patterns. While not guaranteed, these can help reduce the risk of command-line injection vulnerabilities or guard against simple mistakes.
- file-name-validator
- github-org-repository-validator
- github-token-validator
- npm-package-name-validator
- npm-package-scope-validator
- npmjs-access-token-validator
- path-name-validator
- regex-validator
- version-number-major-minor-validator
- version-number-validator
GitHub Actions which have been "vendored" for use by RIMdev. These will stray away from the upstream version as needed.