-
-
Notifications
You must be signed in to change notification settings - Fork 89
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Change ${{ github.action_path }}
to ${GITHUB_ACTION_PATH}
#304
base: unstable/v1
Are you sure you want to change the base?
Conversation
🫶 Thanks, that's an interesting discovery! 🤔 In #302 (comment), I've outlined some of my thoughts on whether this should be done. I'm kinda mentally prepared to declare it out of the scope since it implies (in people's minds) that it's okay to use workflows insecurely, and I don't want to reinforce that belief. Additionally, declaring arbitrary runtimes supported without a way to test them / integrate into CI etc. is not really sustainable. These two points are why I've been vocal about the job separation and only supporting Linux runners since the creation of the action. Previously, it didn't even cross my mind that somebody would run this inside runtimes other than 🤷♂️ While merging this patch is an easy thing to do, the maintenance cost would probably be overwhelming. I feel like I need to document the expectations for “things supported / intended to function / bad if they break” and “hope-driven / lucky if works / not possible to test sustainably”... |
${{ github.action_path }}
to ${GITHUB_ACTION_PATH}
I don't see it this way, for my use case it is just a workaround (for this bug actions/runner#2185 (comment)) to allow running this Action inside a container. Which could be arguably more secure than running it on the bare runner. But you have a fair point about maintenance cost, it may open the box for a bunch of "exotics" use cases. It is up to you. In the meantime i switched to separate jobs based on GitHub artifacts as suggested by @sroet, and i'm fine with it 🤷 But then may be it should be documented somewhere that containerised jobs are not supported. |
I understand the maintenance burden, and am fully happy for you to close this one if you decide it will be to much. However, I would like to plead the case for this specific issue(which only solves the running inside containers (not composite actions in general like #302)):
By adding the test mentioned in part 2, you would not support more OS configs as Again, I totally understand not wanting scope increase for a project like this and would totally understand if you declared this out of scope. Thanks anyway for this very useful action and help so far tracking this down 🫶 |
Thanks for all your inputs! I'd like to merge this, but still document the case as unsupported. |
7c7206c
to
ad7093b
Compare
workaround for ${{ github.action_path }} not working inside containers
ad7093b
to
0b641b1
Compare
d6358ad
to
56811ce
Compare
@sroet I experimented with the CI on your branch (the commits will need to be cleaned up later). I tried both |
Sadly, I can't proceed with working on this myself, as I have FOSS responsibilities in many other projects. |
Very understandable, I unfortunately also have other commitments for the rest of this year, but might be able to pick this up in January! Thanks for the effort so far! |
No problem! Let's keep this open, then. |
implementing the proposed workaround for ${{ github.action_path }} not working inside containers.
actions/runner#2185 (comment)
should close #300