#github-actions

[ follow ]
#python

Trusted publishing It has never been easier to publish your python packages

Python package publishing is now simpler and more secure with trusted publishing and GitHub Actions.

Continuous Integration and Deployment for Python With GitHub Actions - Real Python

GitHub Actions enables Python developers to automate workflows and maintain software quality through effective CI/CD practices.

A Simple Game

Run GitHub Actions locally using act for fast feedback and as a local task runner.
Annotate args and kwargs in Python easily with PEP guidelines.

TIL: Running UV outside a virtualenv

Use the --python flag with uv to specify the interpreter when installing dependencies, especially for CI workflows.

Trusted publishing It has never been easier to publish your python packages

Python package publishing is now simpler and more secure with trusted publishing and GitHub Actions.

Continuous Integration and Deployment for Python With GitHub Actions - Real Python

GitHub Actions enables Python developers to automate workflows and maintain software quality through effective CI/CD practices.

A Simple Game

Run GitHub Actions locally using act for fast feedback and as a local task runner.
Annotate args and kwargs in Python easily with PEP guidelines.

TIL: Running UV outside a virtualenv

Use the --python flag with uv to specify the interpreter when installing dependencies, especially for CI workflows.
morepython

Curtailing Software Automation Tool License Costs by Curbing License Needs - DevOps.com

CI pipelines can help optimize automation tool usage and eliminate individual license requirements for test execution.
#fastify

N|Solid: Node.js Compatibility Proven through Fastify CI Integration

NodeSource aims to prove N|Solid's compatibility with Node.js ecosystems through practical integration and performance enhancement.

N|Solid: Node.js Compatibility Proven through Fastify CI Integration

N|Solid proven compatibility with Node.js workflows like GitHub Actions
N|Solid seamlessly integrated into existing Node.js projects like Fastify

N|Solid: Node.js Compatibility Proven through Fastify CI Integration

NodeSource aims to prove N|Solid's compatibility with Node.js ecosystems through practical integration and performance enhancement.

N|Solid: Node.js Compatibility Proven through Fastify CI Integration

N|Solid proven compatibility with Node.js workflows like GitHub Actions
N|Solid seamlessly integrated into existing Node.js projects like Fastify
morefastify

Azure Function Blob Trigger and Private Endpoint-Troubleshooting Deployment Issues

Ambiguous authorization errors can prevent Azure Functions from appearing in the portal, even after successful deployment.
Ensure deployment pipelines operate in a network with the necessary access to Azure Functions.

Speed up CI with uv

Integrating uv can speed up linting and testing on GitHub Actions significantly.
#artifact-attestations

GitHub Enables Dependabot via GitHub Actions, Improves Supply Chain Security

GitHub introduces Dependabot as GitHub Actions workflow for enhanced security and Artifact Attestations for provenance generation.

GitHub Artifact Attestions now generally available

Artifact Attestations ensure integrity of artifacts in GitHub Actions by linking them to source code and build instructions.

GitHub Artifact Attestations sign and verify software artifacts

GitHub introduced Artifact Attestations for securing software supply chains in GitHub Actions.

GitHub Enables Dependabot via GitHub Actions, Improves Supply Chain Security

GitHub introduces Dependabot as GitHub Actions workflow for enhanced security and Artifact Attestations for provenance generation.

GitHub Artifact Attestions now generally available

Artifact Attestations ensure integrity of artifacts in GitHub Actions by linking them to source code and build instructions.

GitHub Artifact Attestations sign and verify software artifacts

GitHub introduced Artifact Attestations for securing software supply chains in GitHub Actions.
moreartifact-attestations
#automation

GitHub Actions Explained

GitHub Actions automate workflows for CI/CD pipelines efficiently, simplifying development processes and enabling continuous improvement.

Maximize Vercel's FREE Plan: Enable Auto Deployment for All Members | HackerNoon

Vercel's recent pricing change restricts deployment triggers to project creators only, charging $20 for additional members.

How To Create A Weekly Google Analytics Report That Posts To Slack - Smashing Magazine

Automating Google Analytics reporting enhances accessibility and visibility of page performance metrics across the organization.

How to Send Detailed Slack Notifications from GitHub Actions? | HackerNoon

GitHub Actions can automate notifications to Slack for events like successful or failed builds.

How to Send Detailed Slack Notifications From GitHub Actions | HackerNoon

GitHub Actions allows automation of workflows, including sending Slack notifications for repository events, enhancing communication and efficiency.

Publishing SBT Modules Like a Pro

Automating sbt package releases minimizes manual errors and enhances efficiency in Scala and Java projects.

GitHub Actions Explained

GitHub Actions automate workflows for CI/CD pipelines efficiently, simplifying development processes and enabling continuous improvement.

Maximize Vercel's FREE Plan: Enable Auto Deployment for All Members | HackerNoon

Vercel's recent pricing change restricts deployment triggers to project creators only, charging $20 for additional members.

How To Create A Weekly Google Analytics Report That Posts To Slack - Smashing Magazine

Automating Google Analytics reporting enhances accessibility and visibility of page performance metrics across the organization.

How to Send Detailed Slack Notifications from GitHub Actions? | HackerNoon

GitHub Actions can automate notifications to Slack for events like successful or failed builds.

How to Send Detailed Slack Notifications From GitHub Actions | HackerNoon

GitHub Actions allows automation of workflows, including sending Slack notifications for repository events, enhancing communication and efficiency.

Publishing SBT Modules Like a Pro

Automating sbt package releases minimizes manual errors and enhances efficiency in Scala and Java projects.
moreautomation
#cicd

How to Set Up GitHub Actions and PyPI Integration for Python Projects | HackerNoon

Set up CI/CD on GitHub to maintain code integrity and automate publishing to PyPI.

Securely Scale CI/CD with Self-Hosted GitHub Runners on AWS

Organizations using GitHub Actions face significant limitations with hosted runners that can hamper CI/CD efficiency, particularly for large-scale projects.

AWS CodeBuild Managed Self-Hosted GitHub Action Runners | Amazon Web Services

AWS CodeBuild now supports managed GitHub Action runners for building CI/CD pipelines alongside code.

Simplify Amazon EKS Deployments with GitHub Actions and AWS CodeBuild | Amazon Web Services

Using GitHub Actions to automate CI/CD workflows with AWS CodeBuild & AWS CodePipeline for Amazon EKS deployments.

How to Set Up GitHub Actions and PyPI Integration for Python Projects | HackerNoon

Set up CI/CD on GitHub to maintain code integrity and automate publishing to PyPI.

Securely Scale CI/CD with Self-Hosted GitHub Runners on AWS

Organizations using GitHub Actions face significant limitations with hosted runners that can hamper CI/CD efficiency, particularly for large-scale projects.

AWS CodeBuild Managed Self-Hosted GitHub Action Runners | Amazon Web Services

AWS CodeBuild now supports managed GitHub Action runners for building CI/CD pipelines alongside code.

Simplify Amazon EKS Deployments with GitHub Actions and AWS CodeBuild | Amazon Web Services

Using GitHub Actions to automate CI/CD workflows with AWS CodeBuild & AWS CodePipeline for Amazon EKS deployments.
morecicd

Speed-up rails test suites with self-hosted Github Actions runners

Self-hosted GitHub Actions runners can save costs and increase performance for Rails developers.
Users have reported up to 80% savings while improving test suite speeds.
#cicd-platform

Report Surfaces Thousands of Potential Vulnerabilities in GitHub Workflows - DevOps.com

DevSecOps teams on GitHub often utilize insecure workflows, including untrusted input, code execution, and artifacts. 3rd party actions pose risks due to limited cybersecurity expertise.

GitHub Actions update tightens security

GitHub Actions enhanced for enterprise customers with improved security and GPU-enhanced runners for machine learning.
GitHub introduces Azure private networking for hosted runners, GPU-hosted runners for ML, and expands runner fleet options.

Report Surfaces Thousands of Potential Vulnerabilities in GitHub Workflows - DevOps.com

DevSecOps teams on GitHub often utilize insecure workflows, including untrusted input, code execution, and artifacts. 3rd party actions pose risks due to limited cybersecurity expertise.

GitHub Actions update tightens security

GitHub Actions enhanced for enterprise customers with improved security and GPU-enhanced runners for machine learning.
GitHub introduces Azure private networking for hosted runners, GPU-hosted runners for ML, and expands runner fleet options.
morecicd-platform

Actionforge is a VS Code Extension to Build GitHub Workflows Visually

Actionforge offers a visual node-based interface for GitHub Actions in Visual Studio Code, streamlining workflow creation.
Actionforge simplifies automation and improves productivity by allowing users to easily design and implement development workflows.

McDonald's Streamlines CI with GitHub Actions and Reusable Workflows

McDonald's leveraged GitHub Actions to establish a streamlined CI process and reduce code duplication.
They implemented a 'golden path' framework to maintain uniform standards and naming conventions across applications.

PyCharm 2024.1 EAP 5: Enhanced Support for GitHub Actions, Updates for the HTTP Client, and More | The PyCharm Blog

PyCharm 2024.1 EAP 5 is available for download with new features and enhancements.
Enhanced support for GitHub Actions, including autocompletion for context-specific syntax, and branding feature for action.yml.
from DevOps.com
10 months ago

Cycode Discloses GitHub Actions Vulnerability in Google Bazel Project - DevOps.com

Researchers discovered a command injection vulnerability in GitHub Actions used to update the Bazel project.
The vulnerability could have allowed the insertion of malicious code into the codebase managed by Google.

3 Ways To Detect Circular Dependencies In JavaScript Projects

GitHub Actions, ESLint, and Bit are three effective methods for detecting and resolving circular dependencies.
GitHub Actions is a CI/CD platform that can be integrated into workflows to detect circular dependencies using tools like Madge and Dependency Cruiser.
ESLint, a popular static code analysis tool, can also be used to detect circular dependencies.

Speeding up our Rails CI with Github actions and parallel_tests

Using parallel_tests and Github Actions can significantly decrease CI times
The article provides an overview of the process and decisions taken

How GitHub iOS Team Leveraged Apple-Silicon Actions Runners to Reduce Testing Time

GitHub iOS team adopted Apple Silicon macOS runners for faster builds and refactored workflow for parallelism.

Teaching High School Students Software Engineering: Project Implementation | HackerNoon

The project implementation emphasized learning through creating and deploying HTML validator, link checker, and unit tests, focusing on JETSCAPE XML reader validation.

Best practices working with self-hosted GitHub Action runners at scale on AWS | Amazon Web Services

Deploying GitHub Self-Hosted Runners in AWS environment requires understanding security, performance, and cost best practices.
[ Load more ]