Skip to content

Commit 00f57ba

Browse files
jsf9kjsf9k
committed
Add blank lines between inputs and steps
This makes the action.yml file a little easier to read.
1 parent 046e887 commit 00f57ba

File tree

1 file changed

+11
-0
lines changed

1 file changed

+11
-0
lines changed

action.yml

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,11 +1,14 @@
11
---
22
author: Cybersecurity and Infrastructure Security Agency
3+
34
branding:
45
color: blue
56
icon: shield
7+
68
description: >-
79
Our standard permissions monitoring and runner hardening that is to
810
be applied at the beginning of each GitHub Actions job.
11+
912
name: Job preamble
1013

1114
inputs:
@@ -16,34 +19,39 @@ inputs:
1619
check GitHub status using the crazy-max/ghaction-github-status
1720
GitHub action.
1821
required: false
22+
1923
harden_runner:
2024
default: "true"
2125
description: >-
2226
A Boolean ("true"/"false") value indicating whether or not to
2327
harden the runner using the step-security/harden-runner GitHub
2428
action.
2529
required: false
30+
2631
harden_runner_egress_policy:
2732
default: audit
2833
description: >-
2934
The egress policy to use for runner hardening. Valid values are
3035
audit and block. See step-security/harden-runner for more
3136
details.
3237
required: false
38+
3339
monitor_permissions:
3440
default: "true"
3541
description: >-
3642
A Boolean ("true"/"false") value indicating whether or not to
3743
monitor GitHub permission requests using the
3844
GitHubSecurityLab/actions-permission/monitor GitHub action.
3945
required: false
46+
4047
output_workflow_context:
4148
default: "false"
4249
description: >-
4350
A Boolean ("true"/"false") value indicating whether or not to
4451
output the workflow context using the
4552
crazy-max/ghaction-dump-context GitHub action.
4653
required: false
54+
4755
permissions_monitoring_config:
4856
default: ""
4957
description: >-
@@ -74,16 +82,19 @@ runs:
7482
uses: GitHubSecurityLab/actions-permissions/monitor@v1
7583
with:
7684
config: ${{ inputs.permissions_monitoring_config }}
85+
7786
- id: harden-runner
7887
if: ${{ inputs.harden_runner == 'true' }}
7988
name: Harden the runner
8089
uses: step-security/harden-runner@v2
8190
with:
8291
egress-policy: ${{ inputs.harden_runner_egress_policy }}
92+
8393
- id: check-github-status
8494
if: ${{ inputs.check_github_status == 'true' }}
8595
name: Check GitHub status
8696
uses: crazy-max/ghaction-github-status@v4
97+
8798
- id: output-workflow-context
8899
if: ${{ inputs.output_workflow_context == 'true' }}
89100
name: Output workflow context

0 commit comments

Comments
 (0)