-
Notifications
You must be signed in to change notification settings - Fork 1
/
action.yml
76 lines (76 loc) · 2.69 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
# action.yml
name: "Secrets Sync Action"
branding:
icon: 'copy'
color: 'red'
description: "Copies secrets from the action's environment to many other repos."
inputs:
github_token:
description: "Token to use to get repos and write secrets"
required: true
github_api_url:
description: |
Override default GitHub API URL. When not provided, the action will attempt
to use an environment variable provided by the GitHub Action runner environment
defaults.
required: false
repositories:
description: |
New line deliminated regex expressions to select repositories. Repositories
are limited to those in which the token user is an owner or collaborator.
Set `REPOSITORIES_LIST_REGEX` to `False` to use a hardcoded list of
repositories. Archived repositories will be ignored.
required: true
repositories_list_regex:
default: "true"
description: |
If this value is `true`(default), the action will find all repositories
available to the token user and filter based upon the regex provided. If
it is false, it is expected that `REPOSITORIES` will be an a new line
deliminated list in the form of org/name.
required: false
secrets:
description: |
New line deliminated regex expressions to select values from `process.env`.
Use the action env to pass secrets from the repository in which this action
runs with the `env` attribute of the step.
required: true
dry_run:
description: |
Run everything except for secret create and update functionality.
required: false
retries:
description: |
The number of retries to attempt when making Github calls.
default: "3"
required: false
concurrency:
description: |
The number of allowed concurrent calls to the set secret endpoint. Lower this
number to avoid abuse limits.
default: "10"
required: false
delete:
description: |
When set to `true`, the action will find and delete the selected secrets from repositories. Defaults to `false`.
default: false
required: false
environment:
default: ""
description: |
If this value is set, the action will set the secrets to the repositories environment with the name of this value.
Only works if `target` is set to `actions` (default).
required: false
target:
description: |
Target where secrets should be stored: `actions` (default), `codespaces` or `dependabot`.
default: "actions"
required: false
new_secret_prefix:
default: ""
description: |
If this value is set, the action will prefix the secret name with this value.
required: false
runs:
using: 'node20'
main: 'dist/index.js'