Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/thpham/actions


https://github.com/thpham/actions

Last synced: 3 months ago
JSON representation

Awesome Lists containing this project

README 

          
# Github Actions, Composite and Reusable Workflows



Reusable GitHub Actions workflows for organization-wide standardization, organized by technology stack.



## Available Stacks



| Stack          | Description                            | Documentation                                                            |

| -------------- | -------------------------------------- | ------------------------------------------------------------------------ |

| **kotlin-mvn** | Kotlin/Maven/Spring Boot microservices | [View Docs](docs/README.md) \| [Migration](docs/kotlin-mvn/migration.md) |



## Repository Structure



```

actions/

├── .github/workflows/           # Reusable workflows

│   ├── kotlin-mvn-ci.yml

│   ├── kotlin-mvn-release.yml

│   ├── backport.yml

│   ├── suggest-backports.yml

│   ├── commitlint.yml

│   ├── sonar.yml

│   ├── cleanup-ghcr.yml

│   ├── cleanup-oci.yml

│   └── lint-workflows.yml

├── configs/

│   └── kotlin-mvn/              # Stack-specific config templates

│       ├── release-please-config.json

│       ├── commitlint.config.mjs

│       └── ...

├── docs/

│   ├── README.md                # Documentation index

│   ├── workflows/               # Workflow-specific documentation

│   │   ├── ci.md

│   │   ├── release.md

│   │   └── ...

│   └── kotlin-mvn/              # Stack-specific guides

│       └── migration.md

└── README.md                    # This file

```



## Quick Start: kotlin-mvn



For Kotlin/Maven/Spring Boot microservices with Docker containers.



### CI Workflow



```yaml

# .github/workflows/ci.yml

name: CI



on:

  push:

    branches: [main, "release/**"]

  pull_request:

    branches: [main, "release/**"]



# Grant permissions required by the reusable workflow

permissions:

  contents: read

  packages: write

  pull-requests: write

  actions: write



jobs:

  ci:

    uses: thpham/actions/.github/workflows/kotlin-mvn-ci.yml@main

    with:

      docker-image-name: ${{ github.repository }}/myservice-api

    # GITHUB_TOKEN is automatically available - no secrets block needed

```



### Release Workflow



```yaml

# .github/workflows/release.yml

name: Release



on:

  push:

    branches: [main, "release/**"]

  workflow_dispatch:



# Grant permissions required by the reusable workflow

permissions:

  contents: write

  packages: write

  pull-requests: write

  actions: write



jobs:

  release:

    uses: thpham/actions/.github/workflows/kotlin-mvn-release.yml@main

    with:

      docker-image-name: ${{ github.repository }}/myservice-api

    # GITHUB_TOKEN is automatically available

    # Optional: uncomment to pass additional secrets

    # secrets:

    #   GPG_SECRET_KEY: ${{ secrets.GPG_SECRET_KEY }}

```



> **Security Note:** See [Security Best Practices](docs/README.md#security-best-practices) for the required permissions per workflow and why to avoid `secrets: inherit`.



### All Available Workflows (kotlin-mvn)



| Workflow                 | Purpose                             | Trigger                      |

| ------------------------ | ----------------------------------- | ---------------------------- |

| `kotlin-mvn-ci.yml`      | Build, test, lint, Docker preview   | push, pull_request           |

| `kotlin-mvn-release.yml` | Release Please + Docker + JReleaser | push to main/release/\*\*    |

| `backport.yml`           | Auto cherry-pick PRs                | pull_request_target [closed] |

| `suggest-backports.yml`  | Suggest backport labels             | pull_request_target [opened] |

| `commitlint.yml`         | Conventional Commits                | pull_request                 |

| `sonar.yml`              | Code quality analysis               | push, pull_request           |

| `cleanup-ghcr.yml`       | GHCR container image cleanup        | PR close, schedule           |

| `cleanup-oci.yml`        | Multi-registry image cleanup        | schedule, workflow_dispatch  |

| `lint-workflows.yml`     | Workflow validation                 | push/PR to workflows/\*\*    |



**Full documentation:** [Workflow Reference](docs/README.md) | [Migration Guide](docs/kotlin-mvn/migration.md)



## Features



- **Multi-architecture Docker builds** - Native amd64 + arm64 runners (no QEMU)

- **Release Flow support** - Minor bumps on main, patch bumps on release branches

- **Automated backporting** - Cherry-pick fixes to maintenance branches

- **PR preview images** - On-demand Docker images for testing

- **Code quality** - SonarQube integration with self-hosted support

- **Conventional Commits** - Enforced commit message format

- **Registry cleanup** - Automated container image lifecycle management



## Adding a New Stack



To add support for a new technology stack:



1. Add stack-specific inputs/conditionals to workflows in `.github/workflows/`

2. Create config templates: `configs//`

3. Create stack-specific guides: `docs//`

4. Update workflow documentation in `docs/workflows/`

5. Update this README with the new stack



## License



MIT