octoforce-actions
octoforce-actions copied to clipboard
github
A lightweight open-source Salesforce CI/CD template built on the GitHub Actions platform.
Branch names are user-controlled values that can store special characters like `;` allowing for command injection. By storing the branch names as environment variables, the interpolation is not done at...
See https://github.com/github/salesforce/issues/6277
- Upgrade to Node LTS (and use `.nvmrc`) - Remove redundant Node module installations - Clean up `Compile Release Notes` & `Delete Artifacts` steps in `.github/workflows/release-branch-merge-handler.yml` - Fix bugs in...
One of the key benefits of using this project is that, when branch protection rules are configured to prevent merges to release branches before UAT deployment succeeds, you can effectively...
Looks like one of the workflows is posting comments to issues in GitHub's salesforce repo instead of the local repo: https://github.com/github/octoforce-actions/blob/9b5e92ecf4aa0748922b92f3f880e0d9c6c3ce2a/.github/workflows/release-branch-pull-request-handler.yml#L91
Bumps the npm_and_yarn group with 2 updates: [micromatch](https://github.com/micromatch/micromatch) and [lint-staged](https://github.com/lint-staged/lint-staged). Updates `micromatch` from 4.0.7 to 4.0.8 Release notes Sourced from micromatch's releases. 4.0.8 Ultimate release that fixes both CVE-2024-4067 and...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
@gfarb had opened [a PR](https://github.com/github/octoforce-actions/pull/58) with these changes a long time ago. I couldn't rebase his cause it's from his private repo, so this replaces it.
Bumps the npm_and_yarn group with 1 update in the / directory: [brace-expansion](https://github.com/juliangruber/brace-expansion). Updates `brace-expansion` from 1.1.11 to 2.0.2 Release notes Sourced from brace-expansion's releases. v2.0.2 pkg: publish on tag 2.x...