{"id":31906689,"url":"https://github.com/hramos/respond-to-issue-based-on-label","last_synced_at":"2025-10-13T14:53:43.898Z","repository":{"id":40724751,"uuid":"248873615","full_name":"hramos/respond-to-issue-based-on-label","owner":"hramos","description":"A GitHub Action to Respond to Issues Based on Label","archived":false,"fork":false,"pushed_at":"2023-01-05T18:14:31.000Z","size":27099,"stargazers_count":11,"open_issues_count":9,"forks_count":2,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-06-11T08:45:57.994Z","etag":null,"topics":["issues","labels","trigger-actions","workflow"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/hramos.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-03-20T23:45:31.000Z","updated_at":"2024-07-31T17:20:52.000Z","dependencies_parsed_at":"2023-02-04T09:46:10.220Z","dependency_job_id":null,"html_url":"https://github.com/hramos/respond-to-issue-based-on-label","commit_stats":{"total_commits":10,"total_committers":2,"mean_commits":5.0,"dds":0.4,"last_synced_commit":"2e14d312c545e3fcb79b8d1309ae126decc8ff66"},"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"purl":"pkg:github/hramos/respond-to-issue-based-on-label","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hramos%2Frespond-to-issue-based-on-label","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hramos%2Frespond-to-issue-based-on-label/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hramos%2Frespond-to-issue-based-on-label/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hramos%2Frespond-to-issue-based-on-label/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/hramos","download_url":"https://codeload.github.com/hramos/respond-to-issue-based-on-label/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hramos%2Frespond-to-issue-based-on-label/sbom","scorecard":{"id":470369,"data":{"date":"2025-08-11","repo":{"name":"github.com/hramos/respond-to-issue-based-on-label","commit":"2e14d312c545e3fcb79b8d1309ae126decc8ff66"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":1.9,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/main.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Code-Review","score":0,"reason":"Found 0/4 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Binary-Artifacts","score":4,"reason":"binaries present in source code","details":["Warn: binary detected: node_modules/flow-bin/flow-linux64-v0.121.0/flow:1","Warn: binary detected: node_modules/flow-bin/flow-osx-v0.121.0/flow:1","Warn: binary detected: node_modules/flow-bin/flow-win64-v0.121.0/flow.exe:1","Warn: binary detected: node_modules/fsevents/build/Release/.node:1","Warn: binary detected: node_modules/fsevents/build/Release/fse.node:1","Warn: binary detected: node_modules/fsevents/build/Release/obj.target/fse/fsevents.o:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 12 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/hramos/respond-to-issue-based-on-label/main.yml/master?enable=pin","Info:   0 out of   1 GitHub-owned GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Vulnerabilities","score":0,"reason":"35 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw","Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c","Warn: Project is vulnerable to: GHSA-h6ch-v84p-w6p9","Warn: Project is vulnerable to: GHSA-fjxv-7rqg-78g4","Warn: Project is vulnerable to: GHSA-ww39-953v-wcq6","Warn: Project is vulnerable to: GHSA-765h-qjxv-5f44","Warn: Project is vulnerable to: GHSA-f2jv-r9rf-7988","Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj","Warn: Project is vulnerable to: GHSA-896r-f27r-55mw","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw","Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9","Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9","Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp","Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh","Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp","Warn: Project is vulnerable to: GHSA-9w6v-m7wp-jwg4","Warn: Project is vulnerable to: GHSA-h5c3-5r3r-rr8q","Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38","Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc","Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-19T13:44:57.633Z","repository_id":40724751,"created_at":"2025-08-19T13:44:57.634Z","updated_at":"2025-08-19T13:44:57.634Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279015770,"owners_count":26085750,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-13T02:00:06.723Z","response_time":61,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["issues","labels","trigger-actions","workflow"],"created_at":"2025-10-13T14:53:21.770Z","updated_at":"2025-10-13T14:53:43.893Z","avatar_url":"https://github.com/hramos.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# GitHub Action: Respond to Issue Based on Label\n\nA bot that responds with a comment whenever a particular label is applied to an issue. The bot also supports closing, reopening, locking issues, and adding labels.\n\n## How It Works\n\nIf a label from a preconfigured list is applied to an issue, the bot will add a comment to the issue, close or reopen it, etc.\n\n### Create `.github/label-actions.yml`\n\nCreate a `.github/label-actions.yml` file with a list of labels and actions.\n\nThe key is the name of the label in your repository that you want to match on (e.g. \"Needs Issue Template\") and the value is the action the bot should take when the label is applied to an issue.\n\n#### Supported Commands\n\n### `comment` (String)\n\nThe bot will add this string as a comment on the issue.\n\n### `close` (Boolean)\n\nThe bot will close the issue if `true`.\n\n### `reopen` (Boolean)\n\nThe bot will reopen the issue if `true`.\n\n### `lock` (Boolean)\n\nThe bot will lock the issue if `true`.\n\n### `labels` (Array)\n\nThe bot will apply these labels to the issue.\n\n#### Basic Examples\n\nComment on, close and lock an issue:\n```yml\nneeds-closing:\n  comment: |\n    This issue will be closed and locked because reasons.\n  close: true\n  lock: true\n```\n\nAdds a comment and applies the `needs-response` label to an issue:\n```yml\nneeds-repro:\n  comment: |\n    Can you add reproduction steps to the issue?\n  labels:\n    - needs-response\n```\n\n### Create Workflow\n\nCreate a workflow (e.g. `.github/workflows/process-labels.yml`, see [Creating a Workflow file](https://help.github.com/en/articles/configuring-a-workflow#creating-a-workflow-file)) to make use of the GitHub Action.\n\nHandling issues:\n\n```yml\nname: Actions\n# This workflow is triggered when a label is added to an issue.\non:\n  issues:\n    types: labeled\n\njobs:\n  processLabelAction:\n    name: Process Label Action\n    runs-on: ubuntu-latest\n    steps:\n      - uses: actions/checkout@v2\n      - name: Process Label Action\n        uses: hramos/label-actions@v1\n        with:\n          repo-token: ${{ secrets.GITHUB_TOKEN }}\n```\n\n## Inputs\n\n### `configuration-path`\n\nPath to configuration file. Default `.github/label-actions.yml`.\n\n### `repo-token`\n\n_Note: This grants access to the `GITHUB_TOKEN` so the action can make calls to GitHub's API._\n\n### `perform`\n\nSet to false and the action will be omitted. Useful for dry-runs.\n\n## Inspiration\n\nThis project is inspired by the [label-actions](https://github.com/dessant/label-actions) GitHub App by @dessant.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhramos%2Frespond-to-issue-based-on-label","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhramos%2Frespond-to-issue-based-on-label","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhramos%2Frespond-to-issue-based-on-label/lists"}