keyguard-app-Bitwarden-Vaul.../.github/workflows/update_gpm_passkeys_priv_ap...

51 lines
1.8 KiB
YAML

name: "🕒 Synchronize GPM Credential Privileged Apps"
on:
workflow_dispatch:
push:
branches:
- master
paths:
# Configuration.
- '.github/update_gpm_passkeys_priv_apps.py'
- '.github/update_gpm_passkeys_priv_apps.requirements.txt'
schedule:
- cron: '0 0 * * 5'
jobs:
sync-gpm-passkeys-priv-apps:
name: Synchronize GPM Credential Privileged Apps
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- run: pip install -r .github/update_gpm_passkeys_priv_apps.requirements.txt
- name: "Update library"
run: |
python .github/update_gpm_passkeys_priv_apps.py
- name: "Check if any changes"
id: check-changes
run: |
has_changes=$(if [ -n "$(git status --porcelain)" ]; then echo "true"; else echo "false"; fi)
echo "$has_changes"
echo "{HAS_CHANGES}={$has_changes}" >> "$GITHUB_OUTPUT"
- name: Commit and push changes
uses: devops-infra/action-commit-push@v0.9.2
if: ${{ startsWith(steps.check-changes.outputs.HAS_CHANGES, 'true') }}
with:
github_token: "${{ secrets.PERSONAL_TOKEN }}"
add_timestamp: false
commit_prefix: "[AUTO]"
commit_message: "Update GPM Credential Privileged Apps JSON"
force: true
target_branch: gpmpasskeysprivapps_action
- name: Create pull request
uses: devops-infra/action-pull-request@v0.5.5
if: ${{ startsWith(steps.check-changes.outputs.HAS_CHANGES, 'true') }}
with:
github_token: "${{ secrets.PERSONAL_TOKEN }}"
source_branch: gpmpasskeysprivapps_action
target_branch: master
assignee: AChep
label: "robot,enhancement"
title: New GPM Credential Privileged Apps by GitHub Action