Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

New audit: old actions #260

Open
woodruffw opened this issue Dec 9, 2024 · 1 comment
Open

New audit: old actions #260

woodruffw opened this issue Dec 9, 2024 · 1 comment
Labels
new-audit New audits

Comments

@woodruffw
Copy link
Owner

Old actions are a code smell and potential weakness, since they suggest parts of the CI/CD system that have been forgotten about/are not well-exercised.

It would be nice to have an old-actions or similar audit that flags any uses: clause that contains a branch or tag reference that's N months (6? 12?) older than the newest branch/tag on the associated repo.

This should be an "auditor" persona-only audit, since it'll be noisy and primarily of use for human review.
@woodruffw woodruffw added the new-audit New audits label Dec 9, 2024
@woodruffw
Copy link
Owner Author

(There are some open design questions here, so if someone is interested in tackling this please respond here first so we can work them out!)

@woodruffw woodruffw mentioned this issue Dec 9, 2024
Open
28 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
new-audit New audits
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@woodruffw