{"id":15740219,"url":"https://github.com/nabeel-shakeel/react-native-version","last_synced_at":"2026-05-08T09:34:50.049Z","repository":{"id":163323407,"uuid":"638166460","full_name":"nabeel-shakeel/react-native-version","owner":"nabeel-shakeel","description":"Composite GitHub Action for React Native Version Bump and Release","archived":false,"fork":false,"pushed_at":"2023-05-14T09:54:39.000Z","size":24,"stargazers_count":1,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-03-11T19:22:10.630Z","etag":null,"topics":["actions","android","cicd","composite","ios","open-source","pipeline","react-native","release","versioning"],"latest_commit_sha":null,"homepage":"https://github.com/marketplace/actions/react-native-version","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nabeel-shakeel.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-05-09T08:14:51.000Z","updated_at":"2023-10-10T18:56:14.000Z","dependencies_parsed_at":"2023-07-17T08:30:15.356Z","dependency_job_id":null,"html_url":"https://github.com/nabeel-shakeel/react-native-version","commit_stats":{"total_commits":29,"total_committers":1,"mean_commits":29.0,"dds":0.0,"last_synced_commit":"e54b61eee9037fef7cd97596fc94992d2b789ef0"},"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/nabeel-shakeel/react-native-version","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabeel-shakeel%2Freact-native-version","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabeel-shakeel%2Freact-native-version/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabeel-shakeel%2Freact-native-version/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabeel-shakeel%2Freact-native-version/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nabeel-shakeel","download_url":"https://codeload.github.com/nabeel-shakeel/react-native-version/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabeel-shakeel%2Freact-native-version/sbom","scorecard":{"id":672381,"data":{"date":"2025-08-11","repo":{"name":"github.com/nabeel-shakeel/react-native-version","commit":"e54b61eee9037fef7cd97596fc94992d2b789ef0"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3,"checks":[{"name":"Pinned-Dependencies","score":-1,"reason":"no dependencies found","details":null,"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Code-Review","score":0,"reason":"Found 0/29 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}}]},"last_synced_at":"2025-08-21T20:35:15.021Z","repository_id":163323407,"created_at":"2025-08-21T20:35:15.021Z","updated_at":"2025-08-21T20:35:15.021Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32775084,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-08T08:22:46.396Z","status":"ssl_error","status_checked_at":"2026-05-08T08:22:45.650Z","response_time":54,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["actions","android","cicd","composite","ios","open-source","pipeline","react-native","release","versioning"],"created_at":"2024-10-04T02:20:26.718Z","updated_at":"2026-05-08T09:34:50.027Z","avatar_url":"https://github.com/nabeel-shakeel.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# React Native Version\nA Composite GitHub Action for version bump in package.json, respective Android and iOS files along with generating GitHub release. \n\n## Working\nVersion bump in package.json, iOS, and Android config-related files is an important step in the `react-native` CI/CD pipeline. This action is composed of the following steps: \n\n- `paramsinghvc/gh-action-bump-version@master` - Based on the commit messages, it increments the version in package.json\n- `npx react-native-version` - This command sync the latest version in iOS and Android build/config files\n- `EndBug/add-and-commit@v9` - Commit changes made in your workflow run directly to your repo\n- `marvinpinto/action-automatic-releases@latest` - Generate a new release by automatically uploading assets, generating changelogs, handling pre-releases, and so on.\n\n## Usage\nYou can look at the repo [react-native-sample-app](https://github.com/nabeel-shakeel/react-native-sample-app) to see this action working. The workflow kicks in when changes are pushed to `main`, but you can configure the event trigger yourself. Next is to checkout the code, setup node, install yarn (if you are using it), then install node_modules, and lastly call `nabeel-shakeel/react-native-version` action with the required input `GITHUB_SECRET`. \n\nYou can provide all the inputs supported by the packaged actions as json in `supported_parameters`. In this example, we have used `tag-prefix, tag-suffix` input provided by `paramsinghvc/gh-action-bump-version` action and `automatic_release_tag` provided by `marvinpinto/action-automatic-releases`\n\n```yml\nname: Version Bump and GitHub Release\n\non:\n  push:\n    branches:\n      - main\n\njobs:\n  version-bump:\n    name: Version bump of app\n    runs-on: ubuntu-latest\n\n    steps:\n      - name: Code Checkout\n        uses: actions/checkout@v3\n\n      - name: Use Node.js 18\n        uses: actions/setup-node@v3\n        with:\n          node-version: 18\n          cache: 'yarn'\n\n      - name: Install yarn\n        run: npm install -g yarn\n\n      - name: Install node_modules\n        run: yarn ci\n\n      - name: Version bump and publish release\n        uses: nabeel-shakeel/react-native-version@main\n        with:\n          repo_token: ${{ secrets.GITHUB_TOKEN }}\n          supported_parameters: '{\"tag-prefix\":\"v\", \"tag-suffix\":\"-staged\", \"automatic_release_tag\":\"latest_release\"}'\n```\n\n## Packaged Actions\nThis action is composed of the following actions\n- `paramsinghvc/gh-action-bump-version@master`\n- `EndBug/add-and-commit@v9`\n- `marvinpinto/action-automatic-releases@latest`\n\nAll these actions provide their set of parameters. Right now we support the following parameters\n\n| Parameter                 | Packaged Action                                                    |\n| ------------------------- | ------------------------------------------------------------------ |\n| `tag-prefix, tag-suffix`  | Provided by `paramsinghvc/gh-action-bump-version` action           |\n| `automatic_release_tag`   | Provided by `marvinpinto/action-automatic-releases@latest` action  | \n| `message`                 | Provided by `EndBug/add-and-commit@v9` action                      | \n\n\n## Supported Parameters\n| Parameter               | Description                                                | Default  |\n| ----------------------- | ---------------------------------------------------------- | -------- |\n| `repo_token`\\*\\*        | GitHub Action token, e.g. `\"${{ secrets.GITHUB_TOKEN }}\"`. | `null`   |\n| `supported_parameters`  | json of options listed in Packaed Actions section          | `null`   |\n\n\n## Event Triggers\nThe GitHub Actions framework allows you to trigger this (and other) actions on many combinations of events. In context of `react-native` CI/CD pipeline, you can use\n\n- Trigger CI/CD flow when changes land in the production branch\n```yml\non:\n  push:\n    branches:\n      - production\n```\n\n- Trigger CI/CD flow when a new tag push in the repo\n```yml\non:\n  push:\n    tags:\n      - \"v*\"\n```\n\n## License\nThe source code for this project is released under the [Apache-2.0 license](./LICENSE).","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnabeel-shakeel%2Freact-native-version","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnabeel-shakeel%2Freact-native-version","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnabeel-shakeel%2Freact-native-version/lists"}