Refactor for new Github actions

devblackops · devblackops · commit a9a213875aca · 2019-08-28T23:33:54.000-07:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -5,6 +5,21 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](http://keepachangelog.com/)
 and this project adheres to [Semantic Versioning](http://semver.org/).
 
+## [2.0.0] - Unreleased
+
+### Changed
+
+- Refactored to new GitHub Action syntax
+- Renamed options to:
+  - rootPath
+  - settingsPath
+  - repoToken
+  - sendComment
+  - failOnErrors
+  - failOnWarnings
+  - failOnInfos
+- Allow failing the GitHub Action on PSSA error, warning, or informational issues
+
 ## [1.2.1] - 2019-01-15
 
 ### Fixed
diff --git a/README.md b/README.md
@@ -1,48 +1,76 @@
 # github-action-psscriptanalyzer
 
-[GitHub Action](https://github.com/features/actions) to run [PSScriptAnalyzer](https://github.com/PowerShell/PSScriptAnalyzer) static code analysis checks on [Pull Requests](https://help.github.com/articles/about-pull-requests/).
+[GitHub Action](https://github.com/features/actions) to run [PSScriptAnalyzer](https://github.com/PowerShell/PSScriptAnalyzer) static code analysis checks on PowerShell for [Pull Requests](https://help.github.com/articles/about-pull-requests/).
 
 ## Success Criteria
 
-This action will succeed if **zero** PSScriptAnalyzer errors are found.
-If any warnings or informational issues are found, a comment will be posted to the pull request but the action will not return a failure.
+By default, this action will succeed if **zero** PSScriptAnalyzer **errors** and **warnings** are found.
+Failing on errors, warnings, or informational issues can be configured. See [Usage](#Usage) below.
+The sending of comments back to the PR if the action fails can be disabled if desired.
 
 ## Usage
 
-Place the following in your `./github/main.workflow` file to run PSScriptAnalyzer on incoming pull requests.
-This action can be triggered from other GitHub events but analyzer results will only be posted as comments to pull requests.
+### Basic
 
-> Make sure `secrets = ["GITHUB_TOKEN"]` is present as it is required to post a comment back to the pull request.
+Basic configuration that will run PSSA and fail on errors or warnings
 
-```hcl
-workflow "psscriptanalysis" {
-  on       = "pull_request"
-  resolves = "PSScriptAnalyzer"
-}
+, and send a comment back to the PR with a summary.
+Note, that `repoToken` is required for sending comments back.
 
-action "PSScriptAnalyzer" {
-    # Replace <latest tag> with the latest tag from
-    # https://github.com/devblackops/github-action-psscriptanalyzer/releases
-    uses = "devblackops/github-action-psscriptanalyzer@<latest tag>"
+```yaml
+name: CI
+on: [pull_request]
+jobs:
+  lint:
+    name: Run PSSA
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v1
+    - name: lint
+      uses: devblackops/github-action-psscriptanalyzer@master
+      with:
+        repoToken: ${{ secrets.GITHUB_TOKEN }}
+```
+
+### Advanced
+
+Advanced configuration that will run PSSA only in the `MyModule` directory, with customer PSSA settings, and fail on errors, warnings, or informational issues.
+A comment back to the PR with the PSSA summary will also be sent if any issues were detected.
 
-    secrets = ["GITHUB_TOKEN"]
 
-    # Optional environment variables to control analysis behavior
-    env = {
-        PSSCRIPTANALYZER_ROOT          = "./MyModule"
-        PSSCRIPTANALYZER_SETTINGS_PATH = "./settings.psd1
-    }
-}
+```yaml
+name: CI
+on: [pull_request]
+jobs:
+  lint:
+    name: Run PSSA
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v1
+    - name: lint
+      uses: devblackops/github-action-psscriptanalyzer@master
+      with:
+        rootPath: MyModule
+        settingsPath: pssa_settings.psd1
+        sendComment: true
+        repoToken: ${{ secrets.GITHUB_TOKEN }}
+        failOnErrors: true
+        failOnWarnings: true
+        failOnInfos: true
 ```
 
-## Environment Variables
+## Inputs
 
 | Name | Default | Description |
-|--------------------------------|------|-------------|
-| PSSCRIPTANALYZER_ROOT          | .    | The root directory to run PSScriptAnalyzer on. By default, this is the root of the repository.
-| PSSCRIPTANALYZER_SETTINGS_PATH | none | The path to a PSScriptAnalyser settings file to control rules to execute.
-| PSSCRIPTANALYZER_SEND_COMMENT  | true | Enable/disable sending comments with PSScriptAnalyzer results back to PR.
+|------|---------|-------------|
+| rootPath       | \<none>  | The root directory to run PSScriptAnalyzer on. By default, this is the root of the repository.
+| settingsPath   | \<none>  | The path to a PSScriptAnalyser settings file to control rules to execute.
+| sendComment    | true  | Enable/disable sending comments with PSScriptAnalyzer results back to PR.
+| repoToken      | \<none>  | GitHub token the action will use to send comments back to PR with. Use `${{ secrets.GITHUB_TOKEN }}`.
+| failOnErrors   | true  | Enable/disable failing the action on PSScriptAnalyzer error items.
+| failOnWarnings | true  | Enable/disable failing the action on PSScriptAnalyzer warning items.
+| failOnInfos    | false | Enable/disable failing the action on PSScriptAnalyzer informational items.
 
 ## Example
 
-![](media/example.jpg)
+![](media/example.png)
diff --git a/action.yml b/action.yml
@@ -4,27 +4,29 @@ description: GitHub Action to run PSScriptAnalyzer static code analysis checks o
 inputs:
   rootPath:
     description: The root directory to run PSScriptAnalyzer on. By default, this is the root of the repository.
-    default: .
     required: false
   settingsPath:
     description: The path to a PSScriptAnalyser settings file to control rules to execute.
     required: false
-    default: .
+  repoToken:
+    description: GitHub token the action will use to send comments back to PR with.
+    required: false
   sendComment:
-    description: Enable/disable sending comments back to PR when PSScriptAnalyzer finds one or more failure checks.
+    description: Send comment back to PR with PSScriptAnalyzer summary if any issues where found.
     required: false
     default: true
-  repoToken:
-    description: GitHub token the action will use to send comments back to PR with.
+  failOnErrors:
+    description: Enable/disable failing the action on PSScriptAnalyzer error items.
+    required: false
+    default: true
+  failOnWarnings:
+    description: Enable/disable failing the action on PSScriptAnalyzer warning items.
+    required: false
+    default: true
+  failOnInfos:
+    description: Enable/disable failing the action on PSScriptAnalyzer informational items.
     required: false
-  # sendCommentOnWarnings:
-  #   description: Enable/disable sending comments back to PR when PSScriptAnalyzer finds one or more warning checks.
-  #   required: false
-  #   default: true
-  # sendCommentOnInfos:
-  #   description: Enable/disable sending comments back to PR when PSScriptAnalyzer finds one or more information checks.
-  #   required: false
-  #   default: false
+    default: false
 outputs:
 runs:
   using: docker
diff --git a/entrypoint.ps1 b/entrypoint.ps1
@@ -12,60 +12,57 @@ $analyzeParams = @{
 # By default, run PSScriptAnalyzer on the whole repository
 # but allow overriding this with INPUT_ROOTPATH environment variable
 if ($env:INPUT_ROOTPATH) {
-    $analyzeParams.Path = $env:INPUT_ROOTPATH
+    $analyzeParams.Path = Join-Path '/github/workspace' $env:INPUT_ROOTPATH
 } else {
     $analyzeParams.Path = $env:GITHUB_WORKSPACE
 }
 
 # Path to custom script analzyer settings
 if ($env:INPUT_SETTINGSPATH) {
-    $analyzeParams.Settings = $env:INPUT_SETTINGSPATH
+    $analyzeParams.Settings = Join-Path '/github/workspace' $env:INPUT_SETTINGSPATH
 }
 
 # Run PSScriptAnalyzer
 $issues   = Invoke-ScriptAnalyzer @analyzeParams
-$errors   = ($issues.where({$_.Severity -eq 'Error'})).Count
-$warnings = ($issues.where({$_.Severity -eq 'Warning'})).Count
-$infos    = ($issues.where({$_.Severity -eq 'Information'})).Count
+$errors   = $issues.Where({$_.Severity -eq 'Error'})
+$warnings = $issues.Where({$_.Severity -eq 'Warning'})
+$infos    = $issues.Where({$_.Severity -eq 'Information'})
 
-$strings = @{
-    summary    = 'PSScriptAnalyzer results:{0}Errors: {1, 6}{2}Warnings: {3, 4}{4}Information: {5}'
-    errorList  = '{0}The following PSScriptAnalyzer errors caused the check to fail:{1}'
-    warningMsg = '{0} There were **[{1}]** warnings and **[{2}]** informational issues found. These did not cause the check to fail but it is recommended that they be fixed.'
+# Create comment string
+$comment  = '**PSScriptAnalyzer results:**'
+$comment += '{0}<details><summary>Errors: [{1}], Warnings: [{2}], Information: [{3}]</summary><p>{4}{5}```' -f $nl, $errors.Count, $warnings.Count, $infos.Count, $nl, $nl
+if ($errors.Count -gt 0) {
+    $comment += $nl + ($errors | Format-List -Property RuleName, Severity, ScriptName, Line, Message | Out-String -Width 80).Trim()
 }
-
-# Create analysis summary
-$summary = ($strings.summary -f $nl, $errors, $nl, $warnings, $nl, $infos)
-$comment = '```' + $nl + $summary + $nl + '```'
-if ($errors -gt 0) {
-    $comment += $strings.errorList -f $nl, $nl
-    $errorMsg = ($issues.Where({$_.Severity -eq 'Error'}) |
-        Format-List -Property RuleName, Severity, ScriptName, Line, Message |
-        Out-String -Width 80).Trim()
-    $comment += '```' + $nl + $errorMsg + $nl + '```'
+if ($warnings.Count -gt 0) {
+    $comment += $nl+ $nl + ($warnings | Format-List -Property RuleName, Severity, ScriptName, Line, Message | Out-String -Width 80).Trim()
 }
-if (($warnings -gt 0) -or ($infos -gt 0)) {
-    $comment += $strings.warningMsg -f $nl, $warnings, $infos
+if ($infos.Count -gt 0) {
+    $comment += $nl + $nl + ($infos | Format-List -Property RuleName, Severity, ScriptName, Line, Message | Out-String -Width 80).Trim()
 }
+$comment += '{0}{1}```{2}</p></details>' -f $nl, $nl, $nl
 Write-Output $comment
 
-$ghEvent = Get-Content -Path $env:GITHUB_EVENT_PATH | ConvertFrom-Json
+# Get comment URL
+$ghEvent     = Get-Content -Path $env:GITHUB_EVENT_PATH | ConvertFrom-Json -Depth 30
 $commentsUrl = $ghEvent.pull_request.comments_url
 
-# Send comment back to PR if any errors were found
-if ($env:INPUT_SENDCOMMENT -ne 'false' -and $env:INPUT_SENDCOMMENT -ne 0 -and $commentsUrl) {
-    if ($errors -gt 0) {
-        $params = @{
-            Uri = $commentsUrl
-            Method = 'Post'
-            Headers = @{
-                Authorization = "token $env:INPUT_REPOTOKEN"
-            }
-            ContentType = 'application/json'
-            Body = @{body = $comment} | ConvertTo-Json
+# Send comment back to PR if any issues were found
+if ($commentsUrl -and $env:INPUT_SENDCOMMENT -and ($errors.Count -gt 0 -or $warnings.Count -gt 0 -or $infos.Count -gt 0)) {
+    $params = @{
+        Uri = $commentsUrl
+        Method = 'Post'
+        Headers = @{
+            Authorization = "token $env:INPUT_REPOTOKEN"
         }
-        Invoke-RestMethod @params > $null
+        ContentType = 'application/json'
+        Body = @{body = $comment} | ConvertTo-Json
     }
+    Invoke-RestMethod @params > $null
 }
 
-exit $errors
+$exitCode = 0
+if ($env:INPUT_FAILONERRORS  -eq 'true' -or $env:INPUT_FAILONERRORS  -eq 1) { $exitCode += $errors.Count}
+if ($env:INPUT_FAILONWARNING -eq 'true' -or $env:INPUT_FAILONWARNING -eq 1) { $exitCode += $warnings.Count}
+if ($env:INPUT_FAILONINFOS   -eq 'true' -or $env:INPUT_FAILONINFOS   -eq 1) { $exitCode += $infos.Count}
+exit $exitCode
diff --git a/media/example.jpg b/media/example.jpg
diff --git a/media/example.png b/media/example.png
