GitHub has added new options to GitHub Actions that may assist standardize CI/CD practices and cut back duplication.
Required workflows is the primary new function and it may be used to outline and implement CI/CD practices throughout a number of supply code repositories. By using this function to perform this, groups gained’t must manually configure every repository individually.
Different advantages embody the flexibility to invoke exterior vulnerability scoring instruments, guarantee code meets compliance necessities, and guarantee code is constantly deployed.
Required workflows get triggered as a standing examine on open pull requests on the default department. Merges gained’t be capable to be accomplished till the workflow succeeds.
The second function is configuration variables, which permit builders to retailer non-sensitive information as reusable plain textual content variables. Examples of non-sensitive information embody compiler flags, usernames, and server names.
Earlier than this function was launched, builders wanted to retailer configuration information as encrypted secrets and techniques in the event that they wished to reuse the values in workflows. This made it troublesome to retrieve non-sensitive information.
“You now not must spend hours configuring lots of of repositories to guard your vital software program belongings. Required workflows together with reusable workflows, configuration variables, and secrets and techniques will enable you to apply a constant set of requirements throughout many repositories with simply a few clicks,” Ashok Kirla, senior product supervisor at GitHub, wrote in a weblog put up.