mirror of
https://github.com/kuhyx/scripts.git
synced 2026-07-04 20:23:04 +02:00
* Initial plan * fix: format shell scripts with shfmt (convert tabs to 2 spaces) Co-authored-by: kuhyx <147418882+kuhyx@users.noreply.github.com> * feat: enhance shell-check workflow for PR pre-merge validation - Add pull_request_target trigger to check PRs from forks - Add explicit failure message with instructions - Create BRANCH_PROTECTION.md with setup guide - Ensure workflow runs on all PRs targeting main/master Co-authored-by: kuhyx <147418882+kuhyx@users.noreply.github.com> * refactor: improve workflow security and remove redundant exit code - Remove pull_request_target to avoid executing untrusted fork code - Remove redundant exit 1 from failure step - Update documentation to reflect changes - Standard pull_request trigger handles forks securely Co-authored-by: kuhyx <147418882+kuhyx@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: kuhyx <147418882+kuhyx@users.noreply.github.com>
58 lines
1.5 KiB
YAML
58 lines
1.5 KiB
YAML
name: Shell Script Linting
|
|
|
|
on:
|
|
push:
|
|
branches: [ main, master ]
|
|
paths:
|
|
- '**.sh'
|
|
- '**.bash'
|
|
- '**.zsh'
|
|
- '.github/workflows/shell-check.yml'
|
|
- 'scripts/meta/shell_check.sh'
|
|
pull_request:
|
|
branches: [ main, master ]
|
|
paths:
|
|
- '**.sh'
|
|
- '**.bash'
|
|
- '**.zsh'
|
|
- '.github/workflows/shell-check.yml'
|
|
- 'scripts/meta/shell_check.sh'
|
|
|
|
jobs:
|
|
shellcheck:
|
|
name: Lint Shell Scripts
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Install shellcheck
|
|
run: |
|
|
sudo apt-get update
|
|
sudo apt-get install -y shellcheck
|
|
|
|
- name: Install shfmt
|
|
run: |
|
|
cd /tmp
|
|
SHFMT_VERSION="3.8.0"
|
|
wget -q "https://github.com/mvdan/sh/releases/download/v${SHFMT_VERSION}/shfmt_v${SHFMT_VERSION}_linux_amd64" -O shfmt
|
|
chmod +x shfmt
|
|
sudo mv shfmt /usr/local/bin/
|
|
shfmt -version
|
|
|
|
- name: Run shell_check.sh
|
|
run: |
|
|
bash scripts/meta/shell_check.sh --skip-install
|
|
|
|
- name: Report status
|
|
if: success()
|
|
run: echo "✅ All shell scripts passed linting checks!"
|
|
|
|
- name: Provide help on failure
|
|
if: failure()
|
|
run: |
|
|
echo "❌ Shell script linting failed!"
|
|
echo "This check is required to merge PRs into main/master."
|
|
echo "Please run 'bash scripts/meta/shell_check.sh' locally and fix any issues."
|