Skip to content

🩹[Patch]: Workflow improvements #55

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
MariusStorhaug merged 19 commits into from
Jan 27, 2026
Merged

🩹[Patch]: Workflow improvements #55

MariusStorhaug merged 19 commits into from
Jan 27, 2026

Conversation

@MariusStorhaug
Copy link
Member

@MariusStorhaug MariusStorhaug commented Jan 22, 2026
edited
Loading

This release introduces several significant improvements to the GitHub Actions workflows, action implementation, and supporting test infrastructure. The most important changes include a complete overhaul of the release automation, enhancements to the action's prescript functionality, updates to workflow dependencies for improved security and reproducibility, and expanded test scripts for better validation and maintainability.

Workflow and Release Automation Updates:

  • Replaces .github/workflows/Auto-Release.yml and .github/release.yml with a new .github/workflows/Release.yml workflow that is more targeted, triggers only on relevant changes, and uses a pinned version of the PSModule/Release-GHRepository action for deterministic releases.

  • Changes Dependabot update schedule from weekly to daily and introduces a cooldown period, improving dependency management responsiveness.

Action Implementation and Security:

  • Refactors the action's execution logic to move prescript execution into a dedicated src/prescript.ps1 script, which safely handles both inline scripts and file paths. Updates references in action.yml to use this new script and pins all GitHub Actions to specific commit SHAs for security and reproducibility.

Linter and Workflow Improvements:

  • Updates linter workflow to use pinned versions of actions/checkout and super-linter/super-linter, disables certain validations for performance, and removes the .github/linters/.jscpd.json configuration file as duplicate code checks are now disabled.

  • Adds an exclusion for the PSAvoidUsingWriteHost rule in PowerShell Script Analyzer configuration, reflecting intentional usage for GitHub Actions output.

Documentation and Test Infrastructure:

  • Enhances the README.md documentation for action inputs and outputs, improving formatting and clarity for users.

  • Adds new PowerShell test scripts (tests/Prescript.ps1, tests/Show-Status.ps1, tests/Test-ActionResults.ps1) to validate prescript execution, action status reporting, and aggregate test results with summary reporting. Updates test configuration to explicitly set code coverage paths.

Detailed list of most important changes:

1. Workflow and Release Automation

  • Replaces legacy auto-release workflows with a new, more secure and targeted Release.yml workflow, using pinned action versions and triggering only on relevant file changes.
  • Dependabot now checks for updates daily with a 7-day cooldown, improving dependency freshness.

2. Action Implementation and Security

  • Moves prescript execution to a new src/prescript.ps1 script that safely handles both inline and file-based scripts, and updates action.yml to use this script.
  • Pins all third-party GitHub Actions in workflows and action implementation to specific commit SHAs for enhanced security and reproducibility.

3. Linter and Workflow Improvements

  • Updates linter workflow to use pinned versions and disables duplicate code checks and certain validations for performance; removes .jscpd.json as it is no longer needed.
  • Excludes PSAvoidUsingWriteHost in PowerShell linting to accommodate intentional usage in GitHub Actions.

4. Documentation and Test Infrastructure

  • Improves documentation for action inputs and outputs in README.md, providing clearer descriptions and formatting.
  • Adds new test scripts for prescript validation, action status display, and aggregate action results, and updates test configuration for code coverage.

Copilot AI review requested due to automatic review settings January 22, 2026 18:18
Copilot AI reviewed Jan 22, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR aims to configure Dependabot to check for GitHub Actions updates on a daily schedule with a 7-day cooldown period before creating update PRs. However, the PR also includes unrelated changes to workflow files and configuration.

Changes:

  • Modified Dependabot configuration to use daily schedule and added a cooldown configuration
  • Updated GitHub Actions to use pinned commit hashes across multiple workflow files
  • Deleted .github/release.yml configuration file

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
.github/dependabot.yml Changed schedule from weekly to daily and added cooldown configuration with 7-day default
.github/workflows/Linter.yml Pinned actions/checkout to v6.0.2 and super-linter to v8.3.2 with commit hashes
.github/workflows/Auto-Release.yml Pinned actions/checkout to v6.0.2 and PSModule/Auto-Release to v1.9.5 with commit hashes
.github/workflows/Action-Test.yml Pinned actions/checkout to v6.0.2 and PSModule/GitHub-Script to v1.7.8 with commit hashes across multiple jobs
.github/release.yml Completely removed the release configuration file

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@MariusStorhaug MariusStorhaug changed the title 🩹 Configure Dependabot for daily schedule with 7-day cooldown 🩹[Patch] Configure Dependabot for daily schedule with 7-day cooldown Jan 22, 2026
@MariusStorhaug MariusStorhaug changed the title 🩹[Patch] Configure Dependabot for daily schedule with 7-day cooldown 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown Jan 22, 2026
@MariusStorhaug MariusStorhaug changed the title 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown 🩹 [Patch] Configure Dependabot for daily schedule with 7-day cooldown Jan 22, 2026
@MariusStorhaug MariusStorhaug changed the title 🩹 [Patch] Configure Dependabot for daily schedule with 7-day cooldown 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown Jan 22, 2026
@MariusStorhaug MariusStorhaug self-assigned this Jan 22, 2026
@MariusStorhaug
Add core scripts for Pester execution and initialization
15aec0a 
- Introduced `exec.ps1` to handle the execution of Pester tests, including setup, configuration import, and result handling.
- Created `init.ps1` for initializing the environment, loading inputs, and configuring settings for Pester execution.
- Added `status.ps1` to manage and output the status of test execution, including outcomes and counts of test results.
- Implemented logging groups for better organization and readability of the script outputs.
- Enhanced error handling and output formatting for improved user experience during test execution.
Copilot AI review requested due to automatic review settings January 25, 2026 20:32
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 25, 2026
View reviewed changes
Copilot AI reviewed Jan 25, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 7 out of 11 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@MariusStorhaug MariusStorhaug changed the title 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown 🩹 [Patch]: Standardize workflows with SHA pinning and daily Dependabot Jan 25, 2026
Copilot AI review requested due to automatic review settings January 25, 2026 21:01
Copilot AI reviewed Jan 25, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 8 out of 12 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@MariusStorhaug MariusStorhaug changed the title 🩹 [Patch]: Standardize workflows with SHA pinning and daily Dependabot 🩹[Patch]: Configure Dependabot and rename Auto-Release to Release-GHRepository Jan 25, 2026
Copilot AI review requested due to automatic review settings January 25, 2026 21:44
Copilot AI reviewed Jan 25, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 8 out of 12 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot AI reviewed Jan 27, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 8 out of 12 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 27, 2026
View reviewed changes
Copilot AI review requested due to automatic review settings January 27, 2026 11:59
@MariusStorhaug MariusStorhaug changed the title 🩹[Patch]: Configure Dependabot and rename Auto-Release to Release-GHRepository 🩹[Patch]: Workflow improvements Jan 27, 2026
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 27, 2026
View reviewed changes
Copilot AI reviewed Jan 27, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 11 out of 15 changed files in this pull request and generated 4 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 27, 2026
View reviewed changes
Copilot AI review requested due to automatic review settings January 27, 2026 12:25
Copilot AI reviewed Jan 27, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 13 out of 17 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot AI review requested due to automatic review settings January 27, 2026 12:39
Copilot AI reviewed Jan 27, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 14 out of 18 changed files in this pull request and generated 2 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot AI review requested due to automatic review settings January 27, 2026 15:01
@MariusStorhaug MariusStorhaug merged commit 1fcb663 into main Jan 27, 2026
31 checks passed
@MariusStorhaug MariusStorhaug deleted the dependabot-daily-cooldown branch January 27, 2026 15:05
Copilot AI reviewed Jan 27, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 15 out of 19 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@MariusStorhaug MariusStorhaug

Labels

patch

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown

2 participants

@MariusStorhaug