book

Learning GitHub Actions

by Brent Laster

August 2023

Intermediate to advanced

411 pages

9h 24m

English

O'Reilly Media, Inc.

Book available

Read now

Unlock full access

The Structure of This BookPart I: FoundationsPart II: Building BlocksPart III: Security and MonitoringPart IV: Advanced TopicsIntended AudienceContinuing with GitHub ActionsConventions Used in This BookUsing Code ExamplesO’Reilly Online LearningHow to Contact UsAcknowledgments
What Is GitHub Actions?Automation PlatformFrameworkWhat Are the Use Cases for GitHub Actions?Starter WorkflowsActions MarketplaceWhat Costs Are Involved?The Free ModelThe Paid ModelWhen Does Moving to GitHub Actions Make Sense?Investment in GitHubUse of Public ActionsCreating Your Own ActionsArtifact ManagementAction ManagementConclusion
An OverviewTriggering WorkflowsComponentsStepsRunnersJobsWorkflowWorkflow ExecutionConclusion
The Structure of an actionInterfacing with actionsUsing actionsPublic actions and the MarketplaceConclusion
Creating the First Workflow in a RepositoryCommitting the Initial WorkflowUsing the VS Code GitHub Actions ExtensionConclusion
GitHub-Hosted RunnersWhat’s in the Runner Images?Adding Additional Software on RunnersSelf-Hosted RunnersRequirements for Self-Hosted RunnersLimits for Self-Hosted RunnersSecurity Considerations for Using Self-Hosted RunnersSetting Up a Self-Hosted RunnerUsing a Self-Hosted RunnerUsing Labels with Self-Hosted RunnersTroubleshooting Self-Hosted RunnersRemoving a Self-Hosted RunnerAutoscaling Self-Hosted RunnersJust-in-Time RunnersConclusion
Naming Your Workflow and Workflow RunsContextsEnvironment VariablesDefault Environment VariablesSecrets and Configuration VariablesManaging Permissions for Your WorkflowDeployment EnvironmentsConclusion

Working with Inputs and Outputs in WorkflowsDefining and Referencing Workflow InputsCapturing Output from a StepCapturing Output from a JobCapturing Output from an Action Used in a StepDefining ArtifactsUploading and Downloading ArtifactsAdding ParametersUsing Caches in GitHub ActionsUsing the Explicit Cache ActionMonitoring CachesActivating a Cache with a Setup ActionConclusion
Advanced Triggering from ChangesTriggering Based on Activity TypesUsing Filters to Refine TriggersTriggering Workflows Without a ChangeDealing with ConcurrencyRunning a Workflow with a MatrixWorkflow FunctionsConditionals and Status FunctionsConclusion
Security by ConfigurationManaging Execution of Workflows from Pull RequestsWorkflow PermissionsThe CODEOWNERS FileProtected TagsProtected BranchesRepository RulesSecurity by DesignSecretsSecuring SecretsTokensDealing with Untrusted InputSecuring Your DependenciesSecurity by MonitoringScanningProcessing Pull Requests SecurelyVulnerabilities with Workflows in Pull RequestsVulnerabilities with Source Code in Pull RequestsAdding a Pull Request Validation ScriptSafely Handling Pull RequestsConclusion
Gaining More ObservabilityUnderstanding Status at a High LevelCreating Status Badges for WorkflowsWorking with Past StatesMapping Workflow Versions to RunsRe-running Jobs in a WorkflowDebugging WorkflowsStep Debug LoggingDebugging the Runner EnvironmentActivating DebuggingAugmenting and Customizing LoggingAdding Your Own Messages in LogsAdditional Log CustomizationsCreating a Customized Job SummaryConclusion
Anatomy of an actionTypes of ActionsComposite ActionDocker Container ActionCreating a JavaScript ActionCompleting Your Action CreationPublishing Actions on the GitHub MarketplaceUpdating Actions on the MarketplaceRemoving an Action from the MarketplaceThe Actions ToolkitUsing Workflow Commands from the ToolkitLocal actionsConclusion
Creating Your Own Starter WorkflowsCreating a Starter Workflow AreaCreating a Starter Workflow FileAdding Supporting PiecesUsing the New Starter WorkflowReusable WorkflowsInputs and SecretsOutputsLimitationsRequired WorkflowsConstraintsExampleExecutionConclusion
Driving GitHub from Your WorkflowUsing the GitHub CLICreating ScriptsInvoking GitHub APIsUsing a Matrix Strategy to Automatically Create JobsOne-Dimensional MatricesMulti-dimensional MatricesIncluding Extra ValuesExcluding ValuesHandling Failure CasesDefining Max Concurrent JobsUsing Containers in Your WorkflowUsing a Container as the Environment for a JobUsing a Container with a StepRunning Containers as Services in a JobConclusion
PrepSource CodeAutomationInfrastructureUsersAzure PipelinesCircleCIGitLab CI/CDJenkinsTravis CIGitHub Actions ImporterAuthenticationPlanningBuild Steps and RelatedManual TasksFile ManifestForecastingDoing a Dry RunCreating Custom Transformers for the ImporterDoing the Actual MigrationConclusion

Content preview from Learning GitHub Actions

Chapter 1. The Basics

Welcome to Learning GitHub Actions. I’m excited that you’re here and for all that you’re about to learn. This is an amazing time to be working in the software field. From containers to clusters to clouds, from automation to generative AI, from security to SREs, the opportunities to create and contribute to interesting software projects has never been greater. And thanks to powerful platforms such as GitHub, that creation and contribution has never been easier to do.

GitHub has led the field in developing an ecosystem for managing the components of software and enabling collaboration, as witnessed by the vast number of open-source projects managed in its repositories. And it has continually provided additional value for users through enhancements to its interfaces, tracking contributions and issues, mechanisms to publish and share information, and much more.

For the last decade or slightly longer, creating software effectively has not just been about writing the code. It has been (and is) also about better and faster delivery technologies. The capabilities of continuous integration/continuous delivery (aka CI/CD), DevOps, and related practices are now largely taken for granted and easy to achieve. But historically with GitHub, you still needed to do some amount of integration with a separate tool to provide a delivery pipeline or other significant automation. While there have long been ways to bolt on extended CI/CD processes, GitHub has been missing a truly ...