@codfish/actions 1.1.0

package/setup-node-and-install/action.yml

@@ -0,0 +1,220 @@
+name: setup-node-and-install
+
+description:
+  Sets up Node.js environment and installs dependencies with automatic package manager detection (npm/pnpm/yarn),
+  intelligent caching, and .nvmrc/.node-version support
+
+inputs:
+  node-version:
+    description: Node.js version to install (e.g. '24', 'lts/*'). Defaults to .nvmrc or .node-version file if present
+    required: false
+  cache-key-suffix:
+    description: Additional suffix for cache key to enable multiple caches per workflow
+    default: ''
+  install-options:
+    description: Extra command-line options to pass to npm/pnpm/yarn install
+    default: ''
+  working-directory:
+    description: Directory containing package.json and lockfile
+    default: .
+
+outputs: {}
+
+runs:
+  using: composite
+
+  steps:
+    - name: Validate inputs and detect package manager
+      id: setup
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        # Validate working directory exists
+        if [ ! -d "." ]; then
+          echo "❌ ERROR: Working directory '${{ inputs.working-directory }}' does not exist"
+          exit 1
+        fi
+
+        # Validate package.json exists
+        if [ ! -f "./package.json" ]; then
+          echo "❌ ERROR: package.json not found in '${{ inputs.working-directory }}'"
+          echo "Make sure the working-directory contains a valid Node.js project"
+          exit 1
+        fi
+
+        # Validate package.json is valid JSON
+        if ! jq empty package.json 2>/dev/null; then
+          echo "❌ ERROR: package.json is not valid JSON"
+          exit 1
+        fi
+
+        # Check Node version requirements (.nvmrc, .node-version, or input)
+        if [[ ! -f "./.nvmrc" && ! -f "./.node-version" && -z "$INPUT_NODE_VERSION" ]]; then
+          echo "node-version-missing=true" >> $GITHUB_OUTPUT
+          exit
+        fi
+
+        # Validate .nvmrc format if it exists
+        if [ -f "./.nvmrc" ]; then
+          nvmrc_version=$(cat .nvmrc | tr -d '\n\r' | xargs)
+          if [ -z "$nvmrc_version" ]; then
+            echo "❌ ERROR: .nvmrc file is empty"
+            exit 1
+          fi
+          echo "📋 Found .nvmrc with Node version: $nvmrc_version"
+        fi
+
+        # Validate .node-version format if it exists (and no .nvmrc)
+        if [ -f "./.node-version" ] && [ ! -f "./.nvmrc" ]; then
+          node_version_file=$(cat .node-version | tr -d '\n\r' | xargs)
+          if [ -z "$node_version_file" ]; then
+            echo "❌ ERROR: .node-version file is empty"
+            exit 1
+          fi
+          echo "📋 Found .node-version with Node version: $node_version_file"
+        fi
+
+        # Show priority info if both files exist
+        if [ -f "./.nvmrc" ] && [ -f "./.node-version" ]; then
+          echo "📋 Both .nvmrc and .node-version found, .nvmrc takes priority"
+        fi
+
+        # Validate node-version input format if provided
+        if [ -n "$INPUT_NODE_VERSION" ]; then
+          echo "📋 Using Node version from input: $INPUT_NODE_VERSION"
+        fi
+
+        # Detect package manager based on lockfiles (including yarn)
+        if [ -f "./pnpm-lock.yaml" ]; then
+          echo "package-manager=pnpm" >> $GITHUB_OUTPUT
+          echo "lockfile-exists=true" >> $GITHUB_OUTPUT
+          echo "lockfile-path=pnpm-lock.yaml" >> $GITHUB_OUTPUT
+          echo "📦 Detected package manager: pnpm"
+        elif [ -f "./yarn.lock" ]; then
+          echo "package-manager=yarn" >> $GITHUB_OUTPUT
+          echo "lockfile-exists=true" >> $GITHUB_OUTPUT
+          echo "lockfile-path=yarn.lock" >> $GITHUB_OUTPUT
+          echo "📦 Detected package manager: yarn"
+        elif [ -f "./package-lock.json" ]; then
+          echo "package-manager=npm" >> $GITHUB_OUTPUT
+          echo "lockfile-exists=true" >> $GITHUB_OUTPUT
+          echo "lockfile-path=package-lock.json" >> $GITHUB_OUTPUT
+          echo "📦 Detected package manager: npm"
+        else
+          echo "package-manager=npm" >> $GITHUB_OUTPUT
+          echo "lockfile-exists=false" >> $GITHUB_OUTPUT
+          echo "lockfile-path=" >> $GITHUB_OUTPUT
+          echo "📦 No lockfile found, defaulting to: npm"
+        fi
+      env:
+        INPUT_NODE_VERSION: ${{ inputs.node-version }}
+
+    - if: steps.setup.outputs.node-version-missing == 'true'
+      uses: actions/github-script@v7
+      with:
+        script: |
+          core.setFailed('You need to create an .nvmrc file, .node-version file, or pass a value in the `node-version` input.')
+
+    - name: Install pnpm
+      if: steps.setup.outputs.package-manager == 'pnpm'
+      uses: pnpm/action-setup@v4
+      with:
+        run_install: false
+
+    - name: Setup node with .nvmrc
+      if: ${{ inputs.node-version != '' || hashFiles(format('{0}/.nvmrc', inputs.working-directory)) != '' }}
+      uses: actions/setup-node@v5
+      id: setup-node
+      with:
+        # use detected package manager cache if a lockfile is present
+        cache: ${{ steps.setup.outputs.lockfile-exists == 'true' && steps.setup.outputs.package-manager || '' }}
+        # supplying a node-version input will override the .nvmrc file and give a warning, but that's to be expected.
+        cache-dependency-path: ${{ inputs.working-directory }}
+        node-version: ${{ inputs.node-version }}
+        node-version-file: '${{ inputs.working-directory }}/.nvmrc'
+        registry-url: 'https://registry.npmjs.org'
+
+    - name: Read .node-version file
+      if:
+        ${{ inputs.node-version == '' && hashFiles(format('{0}/.nvmrc', inputs.working-directory)) == '' &&
+        hashFiles(format('{0}/.node-version', inputs.working-directory)) != '' }}
+      id: read-node-version
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        node_version=$(cat .node-version | tr -d '\n\r' | xargs)
+        echo "node-version=$node_version" >> $GITHUB_OUTPUT
+        echo "📋 Read Node version from .node-version: $node_version"
+
+    - name: Setup node with .node-version
+      if:
+        ${{ inputs.node-version == '' && hashFiles(format('{0}/.nvmrc', inputs.working-directory)) == '' &&
+        hashFiles(format('{0}/.node-version', inputs.working-directory)) != '' }}
+      uses: actions/setup-node@v5
+      id: setup-node-alt
+      with:
+        # use detected package manager cache if a lockfile is present
+        cache: ${{ steps.setup.outputs.lockfile-exists == 'true' && steps.setup.outputs.package-manager || '' }}
+        cache-dependency-path: ${{ inputs.working-directory }}
+        node-version: ${{ steps.read-node-version.outputs.node-version }}
+        registry-url: 'https://registry.npmjs.org'
+
+    # Install dependencies with pnpm
+    - name: Install dependencies with pnpm
+      if: steps.setup.outputs.package-manager == 'pnpm'
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        echo "🔧 Installing dependencies with pnpm..."
+        if ! pnpm install $INPUT_INSTALL_OPTIONS; then
+          echo "❌ ERROR: pnpm install failed"
+          exit 1
+        fi
+        echo "✅ pnpm install completed successfully"
+      env:
+        INPUT_INSTALL_OPTIONS: ${{ inputs.install-options }}
+
+    # Install dependencies with yarn
+    - name: Install dependencies with yarn
+      if: steps.setup.outputs.package-manager == 'yarn'
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        echo "🔧 Installing dependencies with yarn..."
+        if ! yarn install --frozen-lockfile $INPUT_INSTALL_OPTIONS; then
+          echo "❌ ERROR: yarn install failed"
+          exit 1
+        fi
+        echo "✅ yarn install completed successfully"
+      env:
+        INPUT_INSTALL_OPTIONS: ${{ inputs.install-options }}
+
+    # Install dependencies with npm (with lockfile)
+    - name: Install dependencies with npm (with lockfile)
+      if: steps.setup.outputs.lockfile-exists == 'true' && steps.setup.outputs.package-manager == 'npm'
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        echo "🔧 Installing dependencies with npm ci..."
+        if ! npm ci --prefer-offline --no-audit $INPUT_INSTALL_OPTIONS; then
+          echo "❌ ERROR: npm ci failed"
+          exit 1
+        fi
+        echo "✅ npm ci completed successfully"
+      env:
+        INPUT_INSTALL_OPTIONS: ${{ inputs.install-options }}
+
+    - name: Install dependencies with npm (without lockfile)
+      if: steps.setup.outputs.lockfile-exists == 'false' && steps.setup.outputs.package-manager == 'npm'
+      working-directory: ${{ inputs.working-directory }}
+      shell: bash
+      run: |
+        echo "🔧 Installing dependencies with npm install..."
+        echo "⚠️  Warning: No lockfile found, versions may vary"
+        if ! npm install --no-save --prefer-offline --no-audit $INPUT_INSTALL_OPTIONS; then
+          echo "❌ ERROR: npm install failed"
+          exit 1
+        fi
+        echo "✅ npm install completed successfully"
+      env:
+        INPUT_INSTALL_OPTIONS: ${{ inputs.install-options }}

package/tests/fixtures/.node-version

@@ -0,0 +1 @@
+20.10.0

package/tests/fixtures/.nvmrc

@@ -0,0 +1 @@
+18.20.0

package/tests/fixtures/lockfiles/package-lock.json

@@ -0,0 +1,12 @@
+{
+  "name": "test-package",
+  "version": "1.0.0",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "": {
+      "name": "test-package",
+      "version": "1.0.0"
+    }
+  }
+}

package/tests/fixtures/lockfiles/pnpm-lock.yaml

@@ -0,0 +1,9 @@
+lockfileVersion: '6.0'
+
+settings:
+  autoInstallPeers: true
+  excludeLinksFromLockfile: false
+
+dependencies: {}
+
+packages: {}

package/tests/fixtures/lockfiles/yarn.lock

@@ -0,0 +1,7 @@
+# THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+# yarn lockfile v1
+
+
+"test-package@1.0.0":
+  version "1.0.0"
+  resolved "https://registry.yarnpkg.com/test-package/-/test-package-1.0.0.tgz"

package/tests/fixtures/package-json/minimal.json

@@ -0,0 +1,4 @@
+{
+  "name": "minimal-package",
+  "version": "0.1.0"
+}

package/tests/fixtures/package-json/scoped.json

@@ -0,0 +1,6 @@
+{
+  "name": "@test-org/scoped-package",
+  "version": "2.0.0",
+  "description": "Scoped package for testing",
+  "private": false
+}

package/tests/fixtures/package-json/valid.json

@@ -0,0 +1,13 @@
+{
+  "name": "test-package",
+  "version": "1.2.3",
+  "description": "Test package for action testing",
+  "main": "index.js",
+  "scripts": {
+    "build": "echo 'Building...'",
+    "test": "echo 'Testing...'"
+  },
+  "keywords": ["test"],
+  "author": "test",
+  "license": "MIT"
+}

package/tests/integration/comment/basic.bats

@@ -0,0 +1,95 @@
+#!/usr/bin/env bats
+
+load "../../scripts/test-helpers.sh"
+
+setup() {
+    setup_github_env
+    TEST_DIR=$(mktemp -d)
+    cd "$TEST_DIR"
+}
+
+teardown() {
+    cd /
+    cleanup_test_env "$TEST_DIR"
+}
+
+@test "comment: generates correct tag format" {
+    # Test tag generation logic from action
+    TAG_INPUT="test-tag"
+    MESSAGE_INPUT="Hello, World!"
+    
+    bash -c "
+        tag=\"<!-- codfish/actions/comment $TAG_INPUT -->\"
+        echo \"Generated tag: \$tag\"
+        echo \"tag=\$tag\"
+    " > output.txt
+    
+    assert_output_contains "tag=<!-- codfish/actions/comment test-tag -->" "$(cat output.txt)"
+}
+
+@test "comment: handles multi-line messages" {
+    # Test multi-line message handling
+    MESSAGE_INPUT="Line 1
+Line 2
+Line 3"
+    
+    bash -c '
+        body=$(printf "$1")
+        echo "Processed message:"
+        echo "$body"
+    ' -- "$MESSAGE_INPUT" > output.txt
+    
+    assert_output_contains "Line 1" "$(cat output.txt)"
+    assert_output_contains "Line 2" "$(cat output.txt)"
+    assert_output_contains "Line 3" "$(cat output.txt)"
+}
+
+@test "comment: handles markdown formatting" {
+    # Test markdown message
+    MESSAGE_INPUT="## Test Header
+
+- Item 1
+- Item 2
+
+**Bold text** and *italic text*"
+    
+    bash -c '
+        body=$(printf "$1")
+        echo "Markdown message:"
+        echo "$body"
+    ' -- "$MESSAGE_INPUT" > output.txt
+    
+    assert_output_contains "## Test Header" "$(cat output.txt)"
+    assert_output_contains "- Item 1" "$(cat output.txt)"
+    assert_output_contains "**Bold text**" "$(cat output.txt)"
+}
+
+@test "comment: combines message and tag correctly" {
+    # Test complete body generation
+    TAG_INPUT="build-status"
+    MESSAGE_INPUT="✅ Build successful!"
+    
+    bash -c "
+        tag=\"<!-- codfish/actions/comment $TAG_INPUT -->\"
+        body=\$(printf '$MESSAGE_INPUT')
+        echo \"Complete body:\"
+        echo \"\$body\"
+        echo \"\$tag\"
+    " > output.txt
+    
+    assert_output_contains "✅ Build successful!" "$(cat output.txt)"
+    assert_output_contains "<!-- codfish/actions/comment build-status -->" "$(cat output.txt)"
+}
+
+@test "comment: handles empty tag input" {
+    # Test with empty tag
+    TAG_INPUT=""
+    MESSAGE_INPUT="Message without tag"
+    
+    bash -c "
+        tag=\"<!-- codfish/actions/comment $TAG_INPUT -->\"
+        echo \"Tag with empty input: \$tag\"
+    " > output.txt
+    
+    assert_output_contains "<!-- codfish/actions/comment  -->" "$(cat output.txt)"
+}