Skip to content

🩹[Patch]: Test important file changes and rename Auto-Release to Release-GHRepository #272

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
MariusStorhaug wants to merge 11 commits into
base: main
Choose a base branch
from
Open

🩹[Patch]: Test important file changes and rename Auto-Release to Release-GHRepository #272

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
64f6e27
Update workflow configurations
MariusStorhaug Jan 22, 2026
e20bf0d
Test: Use Get-PSModuleSettings feature branch for important file changes
MariusStorhaug Jan 23, 2026
f8324b6
Add Debug job to workflow
MariusStorhaug Jan 23, 2026
c62cc90
Add issues:write permission for PR comments
MariusStorhaug Jan 23, 2026
b3a8d40
Remove issues:write permission (not allowed by callers)
MariusStorhaug Jan 23, 2026
51bc591
Add pull-requests: write permission to Get-Settings workflow
MariusStorhaug Jan 23, 2026
94da564
Fix typo in README.md: correct "wether" to "whether" in workflow desc…
MariusStorhaug Jan 25, 2026
a2af56e
Remove JSCPD linter configuration file
MariusStorhaug Jan 25, 2026
0387b5d
Rename Auto-Release to Release-GHRepository
MariusStorhaug Jan 25, 2026
c7f8a84
Fix version comment to use patch level
MariusStorhaug Jan 25, 2026
be469e2
⬆️ Update GitHub-Script to v1.7.10
MariusStorhaug Jan 25, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 0 additions & 11 deletions .github/linters/.jscpd.json
View file
Open in desktop

This file was deleted.

4 changes: 3 additions & 1 deletion .github/prompts/PSModule.pr.prompt.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,8 @@ description: Create a pull request with a release note style description, approp

The user input to you can be provided directly by the agent or as a command argument - you **MUST** consider it before proceeding with the prompt (if not empty).

Use the GitHub MCP tools to create or update a pull request in the appropriate repository (fork or origin mode), with a structured release note style description, a title that includes an icon and change type, and labels based on the specified change type.

## User input

$ARGUMENTS
Expand Down Expand Up @@ -69,7 +71,7 @@ $ARGUMENTS
- Stop if the user cannot provide either of these.

5. **Generate PR title**:
- **If issue title retrieved**: Use format `<Icon> <Issue Title>`
- **If issue title retrieved**: Use format `<Icon> [<Change Type>]: <Issue Title>`
- Examples:
- `🚀 [Feature]: Add support for custom module templates`
- `🪲 [Fix]: Resolve null reference in parameter validation`
Expand Down
18 changes: 0 additions & 18 deletions .github/release.yml
View file
Open in desktop

This file was deleted.

4 changes: 2 additions & 2 deletions .github/workflows/AfterAll-ModuleLocal.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,14 +50,14 @@ jobs:
SETTINGS: ${{ inputs.Settings }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0

- name: Run AfterAll Teardown Scripts
if: always()
uses: PSModule/GitHub-Script@2010983167dc7a41bcd84cb88e698ec18eccb7ca # v1.7.8
uses: PSModule/GitHub-Script@0097f3bbe3f413f3b577b9bcc600727b0ca3201a # v1.7.10
with:
Name: AfterAll-ModuleLocal
ShowInfo: false
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/Auto-Release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,11 +26,11 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false

- name: Auto-Release
uses: PSModule/Auto-Release@eabd533035e2cb9822160f26f2eda584bd012356 # v1.9.5
uses: PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a # v2.0.1
with:
IncrementalPrerelease: false
4 changes: 2 additions & 2 deletions .github/workflows/BeforeAll-ModuleLocal.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,13 +50,13 @@ jobs:
Settings: ${{ inputs.Settings }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0

- name: Run BeforeAll Setup Scripts
uses: PSModule/GitHub-Script@2010983167dc7a41bcd84cb88e698ec18eccb7ca # v1.7.8
uses: PSModule/GitHub-Script@0097f3bbe3f413f3b577b9bcc600727b0ca3201a # v1.7.10
with:
Name: BeforeAll-ModuleLocal
ShowInfo: false
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/Build-Docs.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand All @@ -44,7 +44,7 @@ jobs:
retention-days: 1

- name: Commit all changes
uses: PSModule/GitHub-Script@2010983167dc7a41bcd84cb88e698ec18eccb7ca # v1.7.8
uses: PSModule/GitHub-Script@0097f3bbe3f413f3b577b9bcc600727b0ca3201a # v1.7.10
with:
Debug: ${{ fromJson(inputs.Settings).Debug }}
Prerelease: ${{ fromJson(inputs.Settings).Prerelease }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Build-Module.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
GH_TOKEN: ${{ github.token }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/Build-Site.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand All @@ -40,7 +40,7 @@ jobs:
pip install mkdocs-git-committers-plugin-2

- name: Structure site
uses: PSModule/GitHub-Script@2010983167dc7a41bcd84cb88e698ec18eccb7ca # v1.7.8
uses: PSModule/GitHub-Script@0097f3bbe3f413f3b577b9bcc600727b0ca3201a # v1.7.10
with:
Debug: ${{ fromJson(inputs.Settings).Debug }}
Prerelease: ${{ fromJson(inputs.Settings).Prerelease }}
Expand Down
7 changes: 4 additions & 3 deletions .github/workflows/Get-Settings.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,8 @@
value: ${{ jobs.Get-Settings.outputs.Settings }}

permissions:
contents: read # to checkout the repo
contents: read # to checkout the repo
pull-requests: write # to add labels to PRs

jobs:
Get-Settings:
Expand All @@ -49,13 +50,13 @@
Settings: ${{ steps.Get-Settings.outputs.Settings }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0

- name: Get-Settings
uses: PSModule/Get-PSModuleSettings@28c1805d689dc5bfcfba7489e76c34a6d33d7da8 # v1.4.0
uses: PSModule/Get-PSModuleSettings@feature/important-file-changes

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'Get-Settings' step
Uses Step: Get-Settings
Loading
uses 'PSModule/Get-PSModuleSettings' with ref 'feature/important-file-changes', not a pinned commit hash
Copy link

Copilot AI Jan 23, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The action reference is using a feature branch feature/important-file-changes instead of a pinned commit SHA or version tag. Using feature branches in production workflows can lead to unexpected behavior if the branch is updated, rebased, or deleted. For production workflows, it's recommended to use either a pinned commit SHA (with version comment) or a stable version tag.

Suggested change
uses: PSModule/Get-PSModuleSettings@feature/important-file-changes
uses: PSModule/Get-PSModuleSettings@v1

Copilot uses AI. Check for mistakes.
Copy link

Copilot AI Jan 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This action reference uses an unstable feature branch instead of a stable release version. Feature branches can be force-pushed, deleted, or change unexpectedly, which could break the workflow or introduce security risks. For production workflows, always pin to a specific commit SHA or semantic version tag for stability and security.

Suggested change
uses: PSModule/Get-PSModuleSettings@feature/important-file-changes
uses: PSModule/Get-PSModuleSettings@v1

Copilot uses AI. Check for mistakes.
Copy link

Copilot AI Jan 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This action reference uses a feature branch (@feature/important-file-changes) instead of a commit SHA with a version tag. This is inconsistent with all other PSModule action references in the codebase, which use the pattern @ # . For example, line 34 in Auto-Release.yml uses 'PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a # v2.0.1'.

Using feature branches in production workflows is risky because:

  1. The branch can be force-pushed or deleted, breaking the workflow
  2. It makes it unclear which version is being used
  3. It prevents rollback to known-good versions

Consider using a commit SHA reference with a version tag comment for consistency and stability.

Suggested change
uses: PSModule/Get-PSModuleSettings@feature/important-file-changes
uses: PSModule/Get-PSModuleSettings@d34db33fd34db33fd34db33fd34db33fd34db33f # v1.0.0

Copilot uses AI. Check for mistakes.
id: Get-Settings
with:
SettingsPath: ${{ inputs.SettingsPath }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Lint-Repository.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ jobs:
Settings: ${{ inputs.Settings }}
steps:
- name: Checkout repo
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Lint-SourceCode.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ jobs:
include: ${{ fromJson(inputs.Settings).TestSuites.SourceCode }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Linter.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout repo
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Publish-Module.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
SETTINGS: ${{ inputs.Settings }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/Test-Module.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ jobs:
include: ${{ fromJson(inputs.Settings).TestSuites.PSModule }}
steps:
- name: Checkout repository
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false

Expand Down Expand Up @@ -82,7 +82,7 @@ jobs:
include: ${{ fromJson(inputs.Settings).TestSuites.PSModule }}
steps:
- name: Checkout repository
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Test-ModuleLocal.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,7 @@ jobs:
include: ${{ fromJson(inputs.Settings).TestSuites.Module }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/Test-SourceCode.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ jobs:
include: ${{ fromJson(inputs.Settings).TestSuites.SourceCode }}
steps:
- name: Checkout Code
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
fetch-depth: 0
Expand Down
7 changes: 7 additions & 0 deletions .github/workflows/workflow.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,6 +67,13 @@
id-token: write # to verify the deployment originates from an appropriate source

jobs:
Debug:
name: Debug
runs-on: ubuntu-latest
steps:
- name: Debug
uses: PSModule/Debug@main

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'Process-PSModule' step
Uses Step
Loading
uses 'PSModule/Debug' with ref 'main', not a pinned commit hash
Copy link

Copilot AI Jan 23, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The action PSModule/Debug@main references the main branch instead of a pinned commit SHA or version tag. Using branch references in production workflows can lead to unexpected behavior if the branch is updated with breaking changes. For production workflows, it's recommended to use either a pinned commit SHA (with version comment) or a stable version tag.

Suggested change
uses: PSModule/Debug@main
uses: PSModule/Debug@v1

Copilot uses AI. Check for mistakes.
Copy link

Copilot AI Jan 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This action reference uses a branch name (@main) instead of a commit SHA with a version tag. This is inconsistent with all other PSModule action references in the codebase except for the Get-PSModuleSettings action on line 59 of Get-Settings.yml. For example, line 34 in Auto-Release.yml uses 'PSModule/Release-GHRepository@88c70461c8f16cc09682005bcf3b7fca4dd8dc1a # v2.0.1'.

Using branch references in production workflows is risky because:

  1. The branch can be updated without notice, potentially introducing breaking changes
  2. It makes it difficult to track which version is being used
  3. It prevents reproducible builds

Consider using a commit SHA reference with a version tag comment for consistency and stability.

Suggested change
uses: PSModule/Debug@main
uses: PSModule/Debug@0000000000000000000000000000000000000000 # v1.0.0

Copilot uses AI. Check for mistakes.

# Runs on:
# - ✅ Open/Updated PR - Always runs to load configuration
# - ✅ Merged PR - Always runs to load configuration
Expand Down
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -104,7 +104,7 @@ Depending on the labels in the pull requests, the [workflow will result in diffe

[workflow](#get-settings)
- Reads the settings file `github/PSModule.yml` in the module repository to configure the workflow.
- Gathers context for the process from GitHub and the repo files, configuring what tests to run, if and what kind of release to create, and wether
- Gathers context for the process from GitHub and the repo files, configuring what tests to run, if and what kind of release to create, and whether
to setup testing infrastructure and what operating systems to run the tests on.

### Build module
Expand Down
Loading