{"id":46269927,"url":"https://github.com/devantler-tech/reusable-workflows","last_synced_at":"2026-05-01T07:04:55.768Z","repository":{"id":305229335,"uuid":"1022337231","full_name":"devantler-tech/reusable-workflows","owner":"devantler-tech","description":"Reusable workflows designed to streamline CI/CD processes.","archived":false,"fork":false,"pushed_at":"2026-04-21T21:43:47.000Z","size":498,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-04-21T23:36:04.168Z","etag":null,"topics":["ci-cd"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/devantler-tech.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2025-07-18T21:49:02.000Z","updated_at":"2026-04-21T21:43:20.000Z","dependencies_parsed_at":null,"dependency_job_id":"1c9f730c-129d-4043-bf31-1f3c1cca7089","html_url":"https://github.com/devantler-tech/reusable-workflows","commit_stats":null,"previous_names":["devantler-tech/reusable-workflows"],"tags_count":146,"template":false,"template_full_name":null,"purl":"pkg:github/devantler-tech/reusable-workflows","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devantler-tech%2Freusable-workflows","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devantler-tech%2Freusable-workflows/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devantler-tech%2Freusable-workflows/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devantler-tech%2Freusable-workflows/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/devantler-tech","download_url":"https://codeload.github.com/devantler-tech/reusable-workflows/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/devantler-tech%2Freusable-workflows/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32271247,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-25T09:15:33.318Z","status":"ssl_error","status_checked_at":"2026-04-25T09:15:31.997Z","response_time":59,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ci-cd"],"created_at":"2026-03-04T03:02:11.016Z","updated_at":"2026-04-25T18:04:49.720Z","avatar_url":"https://github.com/devantler-tech.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# DevantlerTech GitHub Reusable Workflows 🚀\n\n\u003e [!NOTE]\n\u003e To see DevantlerTech's Actions, please visit the [devantler-tech/actions](https://github.com/devantler-tech/actions) repository.\n\nWelcome to the DevantlerTech GitHub Reusable Workflows repository! This repository contains [reusable workflows](#reusable-workflows) designed to streamline your CI/CD processes. These actions are used across all DevantlerTech projects, ensuring consistency and efficiency.\n\nThe below diagram illustrates the relationship between GitHub Workflows and GitHub Actions.\n\n```mermaid\n---\ntitle: GitHub Actions Relationship Diagram\n---\nflowchart TD\n  A[Workflows] --\u003e B[Jobs]\n  B --\u003e C([***Reusable Workflows***])\n  B --\u003e D[Steps]\n  C --\u003e D\n  C --\u003e B\n  D --\u003e E[Actions]\n  E -.- F([Composite Actions])\n  F --\u003e D\n  E -.- G([JavaScript Actions])\n  E -.- H([Docker Container Actions])\n```\n\n## Reusable Workflows\n\n[Reusable workflows](https://docs.github.com/en/actions/how-tos/sharing-automations/reuse-workflows#creating-a-reusable-workflow) are designed to encapsulate common CI/CD patterns that can be shared across multiple repositories. They allow you to define a workflow once and reuse it in the job-scope of other workflows. This reduces duplication and enables building generic workflows for common tasks.\n\n### 🎉 Create Release\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/create-release.yaml](.github/workflows/create-release.yaml) is a workflow used to create releases using semantic-release.\n\n#### Usage\n\n```yaml\njobs:\n  release:\n    uses: devantler-tech/reusable-workflows/.github/workflows/create-release.yaml@{ref} # ref\n    secrets:\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key               | Type            | Default | Required | Description                                                  |\n|-------------------|-----------------|---------|----------|--------------------------------------------------------------|\n| `APP_PRIVATE_KEY` | Secret          | -       | Yes      | GitHub App private key                                       |\n| `dry-run`         | Input (boolean) | `false` | No       | Run semantic-release in dry-run mode (no tags or publishes)  |\n\n\u003c/details\u003e\n\n### 🗑️ Delete Workflow Runs\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/delete-workflow-runs.yaml](.github/workflows/delete-workflow-runs.yaml) is a workflow used to clean up old workflow runs from a repository.\n\n#### Usage\n\n```yaml\njobs:\n  delete-runs:\n    uses: devantler-tech/reusable-workflows/.github/workflows/delete-workflow-runs.yaml@{ref} # ref\n    permissions:\n      actions: write\n      contents: read\n    with:\n      days: 30 # optional\n      minimum-runs: 6 # optional\n      dry-run: false # required to perform actual deletions (defaults to true)\n```\n\n#### Secrets and Inputs\n\n| Key                                | Type            | Default      | Required | Description                                        |\n|------------------------------------|-----------------|--------------|----------|----------------------------------------------------|\n| `repository`                       | Input (string)  | Calling repo | No       | Repository to target for workflow run deletion     |\n| `days`                             | Input (number)  | `30`         | No       | Days-worth of runs to keep for each workflow       |\n| `minimum-runs`                     | Input (number)  | `6`          | No       | Minimum runs to keep for each workflow             |\n| `delete-workflow-pattern`          | Input (string)  | -            | No       | Name or filename of the workflow to target         |\n| `delete-workflow-by-state-pattern` | Input (string)  | `ALL`        | No       | Filter workflows by state (comma-separated)        |\n| `delete-run-by-conclusion-pattern` | Input (string)  | `ALL`        | No       | Remove runs based on conclusion (comma-separated)  |\n| `dry-run`                          | Input (boolean) | `true`       | No       | Logs simulated changes, no deletions are performed |\n\n\u003e **Note:** The calling workflow must grant `actions: write` and `contents: read` permissions.\n\n\u003c/details\u003e\n\n### 🚀 Deploy GitHub Pages\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/deploy-github-pages.yaml](.github/workflows/deploy-github-pages.yaml) is a workflow used to build and deploy a Jekyll site to GitHub Pages.\n\n#### Usage\n\n```yaml\njobs:\n  pages:\n    uses: devantler-tech/reusable-workflows/.github/workflows/deploy-github-pages.yaml@{ref} # ref\n    with:\n      ruby-version: \"3.3\" # optional\n      jekyll-env: production # optional\n      extra-build-args: \"\" # optional, e.g. '--future'\n      working-directory: \".\" # optional, e.g. 'docs' if Jekyll site is in a subdirectory\n```\n\n#### Secrets and Inputs\n\n| Key                 | Type            | Default      | Required | Description                                                     |\n|---------------------|-----------------|--------------|----------|-----------------------------------------------------------------|\n| `dry-run`           | Input (boolean) | `false`      | No       | Skip build and deploy (validate workflow interface only)        |\n| `ruby-version`      | Input (string)  | `3.3`        | No       | Ruby version to install                                         |\n| `jekyll-env`        | Input (string)  | `production` | No       | Jekyll environment                                              |\n| `extra-build-args`  | Input (string)  | `\"\"`         | No       | Extra args appended before the automatically supplied --baseurl |\n| `working-directory` | Input (string)  | `\".\"`        | No       | Working directory for the Jekyll site (e.g., 'docs')            |\n\n#### Outputs\n\n| Key        | Description             |\n|------------|-------------------------|\n| `page-url` | Deployed Pages site URL |\n\n\u003c/details\u003e\n\n### 🔀 Enable Auto-Merge\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/enable-auto-merge.yaml](.github/workflows/enable-auto-merge.yaml) is a workflow that approves and enables auto-merge on pull requests from trusted bots and maintainers.\n\n#### Usage\n\n```yaml\njobs:\n  auto-merge:\n    uses: devantler-tech/reusable-workflows/.github/workflows/enable-auto-merge.yaml@{ref} # ref\n    secrets:\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key               | Type   | Default | Required | Description            |\n|-------------------|--------|---------|----------|------------------------|\n| `APP_PRIVATE_KEY` | Secret | -       | Yes      | GitHub App private key |\n\n\u003c/details\u003e\n\n### 🧹 Lint Documentation\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/lint-documentation.yaml](.github/workflows/lint-documentation.yaml) is a workflow used to lint documentation files using the MegaLinter documentation flavor.\n\n#### Usage\n\n```yaml\njobs:\n  docs-lint:\n    uses: devantler-tech/reusable-workflows/.github/workflows/lint-documentation.yaml@{ref} # ref\n    secrets:\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key               | Type   | Default | Required | Description            |\n|-------------------|--------|---------|----------|------------------------|\n| `APP_PRIVATE_KEY` | Secret | -       | Yes      | GitHub App private key |\n\n\u003c/details\u003e\n\n### 📦 Publish .NET Library\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/publish-dotnet-library.yaml](.github/workflows/publish-dotnet-library.yaml) is a workflow used to publish .NET libraries to NuGet and GHCR.\n\n#### Usage\n\n```yaml\njobs:\n  publish-library:\n    uses: devantler-tech/reusable-workflows/.github/workflows/publish-dotnet-library.yaml@{ref} # ref\n    secrets:\n      NUGET_API_KEY: ${{ secrets.NUGET_API_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key             | Type            | Default | Required | Description                                          |\n|-----------------|-----------------|---------|----------|------------------------------------------------------|\n| `NUGET_API_KEY` | Secret          | -       | No       | NuGet API key (required when `dry-run` is `false`)   |\n| `dry-run`       | Input (boolean) | `false` | No       | Skip publish (validate workflow interface only)      |\n\n\u003c/details\u003e\n\n### 🧪 Run .NET Tests\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/run-dotnet-tests.yaml](.github/workflows/run-dotnet-tests.yaml) is a workflow used to test .NET solutions or projects across multiple operating systems.\n\n#### Usage\n\n```yaml\njobs:\n  dotnet-test:\n    uses: devantler-tech/reusable-workflows/.github/workflows/run-dotnet-tests.yaml@{ref} # ref\n    secrets:\n      CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key               | Type   | Default | Required | Description            |\n|-------------------|--------|---------|----------|------------------------|\n| `CODECOV_TOKEN`   | Secret | -       | Yes      | Codecov token          |\n| `APP_PRIVATE_KEY` | Secret | -       | Yes      | GitHub App private key |\n\n\u003c/details\u003e\n\n### 📝 Scan for TODO Comments\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/scan-for-todo-comments.yaml](.github/workflows/scan-for-todo-comments.yaml) is a workflow used to scan for TODOs in code and create GitHub issues.\n\n#### Usage\n\n```yaml\njobs:\n  todos:\n    uses: devantler-tech/reusable-workflows/.github/workflows/scan-for-todo-comments.yaml@{ref} # ref\n    secrets:\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n```\n\n#### Secrets and Inputs\n\n| Key               | Type            | Default | Required | Description                                                |\n|-------------------|-----------------|---------|----------|------------------------------------------------------------|\n| `APP_PRIVATE_KEY` | Secret          | -       | Yes      | GitHub App private key                                     |\n| `dry-run`         | Input (boolean) | `false` | No       | Skip issue creation (validate workflow interface only)     |\n\n\u003c/details\u003e\n\n### 🔍 Scan for Workflow Vulnerabilities\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/scan-for-workflow-vulnerabilities.yaml](.github/workflows/scan-for-workflow-vulnerabilities.yaml) is a workflow used to perform static analysis on GitHub Actions workflows using [Zizmor](https://github.com/zizmorcore/zizmor).\n\n#### Usage\n\n```yaml\njobs:\n  zizmor:\n    uses: devantler-tech/reusable-workflows/.github/workflows/scan-for-workflow-vulnerabilities.yaml@{ref} # ref\n```\n\n\u003c/details\u003e\n\n### 🔄 Sync Cluster Policies\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/sync-cluster-policies.yaml](.github/workflows/sync-cluster-policies.yaml) is a workflow used to sync upstream Kyverno policies to a target directory.\n\n#### Usage\n\n```yaml\njobs:\n  sync-cluster-policies:\n    uses: devantler-tech/reusable-workflows/.github/workflows/sync-cluster-policies.yaml@{ref} # ref\n    secrets:\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n    with:\n      kyverno-policies-dir: policies/kyverno\n```\n\n#### Secrets and Inputs\n\n| Key                    | Type            | Default | Required | Description                                              |\n|------------------------|-----------------|---------|----------|----------------------------------------------------------|\n| `APP_PRIVATE_KEY`      | Secret          | -       | Yes      | GitHub App private key                                   |\n| `kyverno-policies-dir` | Input (string)  | -       | Yes      | Directory to sync Kyverno policies to                    |\n| `dry-run`              | Input (boolean) | `false` | No       | Skip sync and PR creation (validate workflow interface only) |\n\n\u003c/details\u003e\n\n### 🔄 Update Copilot Skills\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/update-copilot-skills.yaml](.github/workflows/update-copilot-skills.yaml) is a workflow used to keep installed Copilot / agent skills up-to-date via [`gh skill update --all`](https://github.blog/changelog/2026-04-16-manage-agent-skills-with-github-cli/), opening a PR with any changes. Each installed `SKILL.md`'s `metadata.github-*` frontmatter is the source of truth — no lockfile is required. Works with any mix of `gh skill`-compatible upstreams.\n\n#### Usage\n\n```yaml\non:\n  schedule:\n    - cron: \"0 6 * * *\"\n  workflow_dispatch:\n\njobs:\n  update-copilot-skills:\n    uses: devantler-tech/reusable-workflows/.github/workflows/update-copilot-skills.yaml@{ref} # ref\n    permissions:\n      contents: write\n      pull-requests: write\n    with:\n      dir: .agents/skills\n```\n\nThe workflow assumes skills were previously installed with [`devantler-tech/actions/setup-copilot-skills`](https://github.com/devantler-tech/actions/tree/main/setup-copilot-skills) (or `gh skill install` directly) — the committed `SKILL.md` files carry the upstream pointers.\n\n#### Secrets and Inputs\n\n| Key              | Type            | Default                              | Required | Description                                                            |\n|------------------|-----------------|--------------------------------------|----------|------------------------------------------------------------------------|\n| `dir`            | Input (string)  | `.`                                  | No       | Directory to scan for installed skills (passed to `gh skill update --dir`) |\n| `unpin`          | Input (boolean) | `false`                              | No       | When `true`, pass `--unpin` (clear pinned versions)                    |\n| `gh-version`     | Input (string)  | `2.90.0`                             | No       | Minimum required `gh` version (must support `gh skill`)                |\n| `pr-branch`      | Input (string)  | `deps/copilot-skills-update`         | No       | Branch the update PR is opened from                                    |\n| `pr-title`       | Input (string)  | `chore(deps): update copilot skills` | No       | Title of the update PR                                                 |\n| `pr-labels`      | Input (string)  | `dependencies,automation`            | No       | Comma-separated labels for the update PR                               |\n| `commit-message` | Input (string)  | `chore(deps): update copilot skills` | No       | Commit message for the update PR                                       |\n| `dry-run`        | Input (boolean) | `false`                              | No       | Skip update and PR creation (validate workflow interface only)         |\n\n\u003e **Note:** The calling workflow must grant `contents: write` and `pull-requests: write` permissions.\n\n\u003c/details\u003e\n\n### ✅ Validate Go Project\n\n\u003cdetails\u003e\n\u003csummary\u003eClick to expand\u003c/summary\u003e\n\n[.github/workflows/validate-go-project.yaml](.github/workflows/validate-go-project.yaml) is a workflow used to lint and test Go projects across multiple operating systems.\n\n#### Features\n\n- **Automated Linting**: Runs `golangci-lint` and `mega-linter` to ensure code quality\n- **Auto-fix**: Automatically applies linter fixes and commits them\n- **Copilot Integration**: When linting fails, automatically prompts Copilot on the PR to fix the remaining issues\n\n#### Usage\n\n```yaml\njobs:\n  go-test:\n    uses: devantler-tech/reusable-workflows/.github/workflows/validate-go-project.yaml@{ref} # ref\n    secrets:\n      CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}\n      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}\n    with:\n      pr-owner: ${{ github.event.pull_request.user.login }} # optional\n```\n\n#### Secrets and Inputs\n\n| Key               | Type           | Default | Required | Description                                                         |\n|-------------------|----------------|---------|----------|---------------------------------------------------------------------|\n| `CODECOV_TOKEN`   | Secret         | -       | No       | Codecov token for uploading coverage reports                        |\n| `APP_PRIVATE_KEY` | Secret         | -       | No       | GitHub App private key for authenticating the workflow              |\n| `pr-owner`        | Input (string) | -       | No       | Pull request author login (used to disable auto-commit for bot PRs) |\n\n\u003c/details\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevantler-tech%2Freusable-workflows","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdevantler-tech%2Freusable-workflows","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdevantler-tech%2Freusable-workflows/lists"}