6

Introducing required workflows and configuration variables to GitHub Actions

 1 year ago
source link: https://github.blog/2023-01-10-introducing-required-workflows-and-configuration-variables-to-github-actions/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
neoserver,ios ssh client

Today, we are introducing two new features for GitHub Actions to help standardize policies and reduce duplication, required workflows and configuration variables. Read on for what this means for your DevOps processes.

Required workflows

Required workflows in GitHub Actions are now available in public beta.

Required workflows allows DevOps teams to define and enforce standard CI/CD practices across many source code repositories within an organization without needing to configure each repository individually, which becomes an impossible task in large organizations. In addition to reducing duplication of CI/CD configuration code, required workflows can also help organizations with the following use cases:

  • Security: invoke external vulnerability scoring or dynamic analysis tools.
  • Compliance: ensure that all code meets an enterprise’s quality standards.
  • Deployment: ensure that code is continuously deployed in a standard way.
Screenshot of the page where an administrator can now add required workflows to run in their organization's repositories.

Organization admins can configure required workflows to run on all or selected repositories within the organization.

Screenshot showing that required workflows have not run on a pull request, blocking it from being merged.

Required workflows will be triggered as required status checks for all the pull requests opened on the default branch, which blocks the ability to merge the pull request until the required workflow succeeds. Individual development teams at the repository level will be able to see what required workflows have been applied to their repository.

Learn more about required workflows.

Configuration variables

Until today, you needed to store all the configuration data as encrypted secrets in order to reuse values in workflows. While extremely secure, this method did not allow for easy storage and retrieval of non-sensitive configuration data such as compiler flags, usernames, server names, etc. While we were developing required workflows, we heard feedback from customers about the need for parameterization to allow local repositories to override certain values in the required workflows.

To help you with standardizing your required workflows, today, we are also adding support for configuration variables.

Screenshot of the Actions variables setup page.

Configuration variables allow you to store your non sensitive data as plain text variables that can be reused across your workflows in your repository or organization. You can define variables at Organization, Repository, or Environment level based on your requirement.

Learn more about configuration variables.

You no longer have to spend hours configuring hundreds of repositories to protect your critical software assets. Required workflows along with reusable workflows, configuration variables, and secrets will help you apply a consistent set of standards across many repositories with just a couple of clicks. Do, try it out and share your feedback.

The GitHub Insider Newsletter

Get the best of GitHub. Once a month. Directly to your inbox.

Subscribe

More on CI/CD

Introducing GitHub Actions Importer

Introducing GitHub Actions Importer

GitHub Actions Importer helps you forecast, plan, and facilitate migrations from your current CI/CD tool to GitHub Actions.

Why we're excited about the Sigstore general availability

The Sigstore GA means you can protect your software supply chain today with GitHub Actions, and will power new npm security capabilities in the near future.

6 strategic ways to level up your CI/CD pipeline

From incorporating accessibility testing to implementing blue-green deployment models, here are six practical and strategic ways to improve your CI/CD pipeline.

More on DevOps

6 strategic ways to level up your CI/CD pipeline

6 strategic ways to level up your CI/CD pipeline

From incorporating accessibility testing to implementing blue-green deployment models, here are six practical and strategic ways to improve your CI/CD pipeline.

How to build a CI/CD pipeline with GitHub Actions in four simple steps

A quick guide on the advantages of using GitHub Actions as your preferred CI/CD tool—and how to build a CI/CD pipeline with it.

5 DevOps tips to speed up your developer workflow

From learning YAML to scripting with Bash, here are a few simple tips for developers who want to speed up their workflows.


report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK