actions-up 1.13.0 → 1.14.1

package/dist/cli/build-json-report.d.ts

@@ -1,4 +1,5 @@
 import { ActionUpdate } from '../types/action-update';
+import { UpdateStyle } from '../types/update-style';
 import { ScanResult } from '../types/scan-result';
 import { UpdateMode } from '../types/update-mode';
 /**
@@ -49,6 +50,10 @@ interface BuildJsonReportOptions {
      * Whether recursive scanning mode is enabled.
      */
     recursive: boolean;
+    /**
+     * Effective update style for the run.
+     */
+    style: UpdateStyle;
     /**
      * Effective update mode for the run.
      */
@@ -66,6 +71,14 @@ interface BuildJsonReportOptions {
  * Serialized update entry in the JSON report.
  */
 interface JsonReportUpdate {
+    /**
+     * Style of the final reference.
+     */
+    targetRefStyle: NonNullable<ActionUpdate['targetRefStyle']> | null;
+    /**
+     * Detected style of the current reference in the source file.
+     */
+    currentRefType: ActionUpdate['currentRefType'] | null;
     /**
      * Reason why this entry was skipped, if any.
      */
@@ -94,6 +107,10 @@ interface JsonReportUpdate {
      * Resolved SHA for the target version.
      */
     latestSha: string | null;
+    /**
+     * Final reference that would be written back to the file.
+     */
+    targetRef: string | null;
     /**
      * Whether this update crosses a major version boundary.
      */
@@ -141,78 +158,82 @@ interface JsonReportSummary {
     totalUpdates: number;
 }
 /**
- * Serialized action reference included in each update entry.
+ * Effective CLI options serialized into the report.
  */
-interface JsonReportAction {
+interface JsonReportOptions {
     /**
-     * Action reference type detected during scanning.
+     * Regex patterns supplied through `--exclude`.
      */
-    type: ActionUpdate['action']['type'];
+    excludePatterns: string[];
     /**
-     * Original version or ref from the file, if available.
+     * Whether branch references were checked.
      */
-    version: string | null;
+    includeBranches: boolean;
     /**
-     * Relative or absolute file path for the action reference.
+     * Resolved scan directories.
      */
-    file: string | null;
+    directories: string[];
     /**
-     * Line number of the action reference.
+     * Whether recursive scanning mode is enabled.
      */
-    line: number | null;
+    recursive: boolean;
     /**
-     * Original `uses` value, if available.
+     * Effective update style.
      */
-    uses: string | null;
+    style: UpdateStyle;
     /**
-     * Workflow job name, when applicable.
+     * Effective update mode.
      */
-    job: string | null;
+    mode: UpdateMode;
     /**
-     * Full `owner/repo@ref` string, when available.
+     * Indicates that JSON mode never applies changes.
      */
-    ref: string | null;
+    reportOnly: true;
     /**
-     * Normalized action name.
+     * Minimum age filter in days.
      */
-    name: string;
+    minAge: number;
+    /**
+     * Indicates that this payload came from `--json`.
+     */
+    json: true;
 }
 /**
- * Effective CLI options serialized into the report.
+ * Serialized action reference included in each update entry.
  */
-interface JsonReportOptions {
+interface JsonReportAction {
     /**
-     * Regex patterns supplied through `--exclude`.
+     * Action reference type detected during scanning.
      */
-    excludePatterns: string[];
+    type: ActionUpdate['action']['type'];
     /**
-     * Whether branch references were checked.
+     * Original version or ref from the file, if available.
      */
-    includeBranches: boolean;
+    version: string | null;
     /**
-     * Resolved scan directories.
+     * Relative or absolute file path for the action reference.
      */
-    directories: string[];
+    file: string | null;
     /**
-     * Whether recursive scanning mode is enabled.
+     * Line number of the action reference.
      */
-    recursive: boolean;
+    line: number | null;
     /**
-     * Effective update mode.
+     * Original `uses` value, if available.
      */
-    mode: UpdateMode;
+    uses: string | null;
     /**
-     * Indicates that JSON mode never applies changes.
+     * Workflow job name, when applicable.
      */
-    reportOnly: true;
+    job: string | null;
     /**
-     * Minimum age filter in days.
+     * Full `owner/repo@ref` string, when available.
      */
-    minAge: number;
+    ref: string | null;
     /**
-     * Indicates that this payload came from `--json`.
+     * Normalized action name.
      */
-    json: true;
+    name: string;
 }
 /**
  * Top-level machine-readable report emitted by `--json`.

package/dist/cli/build-json-report.js

@@ -1,6 +1,6 @@
-import { isAbsolute, relative, resolve } from "node:path";
-function buildJsonReport(e) {
-	let n = resolve(e.cwd ?? process.cwd());
+import { isAbsolute as e, relative as t, resolve as n } from "node:path";
+function r(e) {
+	let t = n(e.cwd ?? process.cwd());
 	return {
 		summary: {
 			totalBreakingUpdates: e.outdated.filter((e) => e.isBreaking).length,
@@ -13,26 +13,27 @@ function buildJsonReport(e) {
 			totalSkipped: e.skipped.length
 		},
 		options: {
-			directories: e.directories.map((e) => serializeDirectoryPath(e, n)),
+			directories: e.directories.map((e) => o(e, t)),
 			excludePatterns: e.excludePatterns,
 			includeBranches: e.includeBranches,
 			recursive: e.recursive,
 			minAge: e.minAge,
+			style: e.style,
 			mode: e.mode,
 			reportOnly: !0,
 			json: !0
 		},
-		blockedByMode: e.blockedByMode.map((e) => serializeUpdate(e, n)),
-		updates: e.outdated.map((e) => serializeUpdate(e, n)),
-		skipped: e.skipped.map((e) => serializeUpdate(e, n)),
+		blockedByMode: e.blockedByMode.map((e) => i(e, t)),
+		updates: e.outdated.map((e) => i(e, t)),
+		skipped: e.skipped.map((e) => i(e, t)),
 		status: e.status,
 		schemaVersion: 1
 	};
 }
-function serializeUpdate(e, n) {
+function i(e, t) {
 	return {
 		action: {
-			file: serializePath(e.action.file, n),
+			file: a(e.action.file, t),
 			version: e.action.version ?? null,
 			line: e.action.line ?? null,
 			uses: e.action.uses ?? null,
@@ -42,23 +43,26 @@ function serializeUpdate(e, n) {
 			type: e.action.type
 		},
 		publishedAt: e.publishedAt?.toISOString() ?? null,
+		currentRefType: e.currentRefType ?? null,
+		targetRefStyle: e.targetRefStyle ?? null,
 		currentVersion: e.currentVersion,
 		skipReason: e.skipReason ?? null,
 		latestVersion: e.latestVersion,
+		targetRef: e.targetRef ?? null,
 		isBreaking: e.isBreaking,
 		status: e.status ?? "ok",
 		hasUpdate: e.hasUpdate,
 		latestSha: e.latestSha
 	};
 }
-function serializePath(r, i, a = null) {
-	if (!r) return null;
-	if (!isAbsolute(r)) return r;
-	let o = relative(i, r);
-	return o === "" ? a ?? r : o.startsWith("..") || isAbsolute(o) ? r : o;
+function a(n, r, i = null) {
+	if (!n) return null;
+	if (!e(n)) return n;
+	let a = t(r, n);
+	return a === "" ? i ?? n : a.startsWith("..") || e(a) ? n : a;
 }
-function serializeDirectoryPath(r, i) {
-	let a = relative(i, r);
-	return a === "" ? "." : a.startsWith("..") || isAbsolute(a) ? r : a;
+function o(n, r) {
+	let i = t(r, n);
+	return i === "" ? "." : i.startsWith("..") || e(i) ? n : i;
 }
-export { buildJsonReport };
+export { r as buildJsonReport };

package/dist/cli/index.js

@@ -1,193 +1,208 @@
-import { readInlineVersionComment } from "../core/versions/read-inline-version-comment.js";
-import { isSha } from "../core/versions/is-sha.js";
-import { promptUpdateSelection } from "../core/interactive/prompt-update-selection.js";
-import { getCompatibleUpdate } from "../core/api/get-compatible-update.js";
-import { createGitHubClient } from "../core/api/create-github-client.js";
-import { resolveScanDirectories } from "./resolve-scan-directories.js";
-import { getUpdateLevel } from "../core/versions/get-update-level.js";
-import { applyUpdates } from "../core/ast/update/apply-updates.js";
-import { printSkippedWarning } from "./print-skipped-warning.js";
-import { normalizeUpdateMode } from "./normalize-update-mode.js";
-import { validateCliOptions } from "./validate-cli-options.js";
-import { shouldIgnore } from "../core/ignore/should-ignore.js";
-import { checkUpdates } from "../core/api/check-updates.js";
-import { mergeScanResults } from "./merge-scan-results.js";
-import { printModeWarning } from "./print-mode-warning.js";
-import { scanRecursive } from "../core/scan-recursive.js";
-import { buildJsonReport } from "./build-json-report.js";
-import { scanGitHubActions } from "../core/scan-github-actions.js";
+import { readInlineVersionComment as e } from "../core/versions/read-inline-version-comment.js";
+import { isSha as t } from "../core/versions/is-sha.js";
+import { promptUpdateSelection as n } from "../core/interactive/prompt-update-selection.js";
+import { resolveTargetReference as r } from "../core/updates/resolve-target-reference.js";
+import { getCompatibleUpdate as i } from "../core/api/get-compatible-update.js";
+import { createGitHubClient as a } from "../core/api/create-github-client.js";
+import { resolveScanDirectories as o } from "./resolve-scan-directories.js";
+import { getUpdateLevel as s } from "../core/versions/get-update-level.js";
+import { applyUpdates as c } from "../core/ast/update/apply-updates.js";
+import { normalizeUpdateStyle as l } from "./normalize-update-style.js";
+import { printSkippedWarning as u } from "./print-skipped-warning.js";
+import { normalizeUpdateMode as d } from "./normalize-update-mode.js";
+import { validateCliOptions as f } from "./validate-cli-options.js";
+import { shouldIgnore as p } from "../core/ignore/should-ignore.js";
+import { checkUpdates as m } from "../core/api/check-updates.js";
+import { mergeScanResults as h } from "./merge-scan-results.js";
+import { printModeWarning as g } from "./print-mode-warning.js";
+import { scanRecursive as _ } from "../core/scan-recursive.js";
+import { buildJsonReport as v } from "./build-json-report.js";
+import { scanGitHubActions as y } from "../core/scan-github-actions.js";
 import "../core/index.js";
-import { version } from "../package.js";
-import { createSpinner } from "nanospinner";
-import { resolve } from "node:path";
+import { version as b } from "../package.js";
+import { createSpinner as x } from "nanospinner";
+import { resolve as S } from "node:path";
 import "node:worker_threads";
-import pc from "picocolors";
-import cac from "cac";
-function run() {
-	let C = cac("actions-up");
-	C.help().version(version).option("--dir <directory>", "Directory to scan (repeatable). Default: .github, or . with --recursive").option("--dry-run", "Preview changes without applying them").option("--exclude <regex>", "Exclude actions by regex (repeatable)").option("--include-branches", "Also check actions pinned to branches (default: false)").option("--json", "Output update information as machine-readable JSON").option("--min-age <days>", "Minimum age in days for updates (default: 0)", { default: 0 }).option("--mode <mode>", "Update mode: major, minor, or patch (default: major)", { default: "major" }).option("--recursive, -r", "Recursively scan directories for YAML files").option("--yes, -y", "Skip all confirmations").command("", "Update GitHub Actions").action(async (b) => {
-		let S = b.json ?? !1, C = null, w = resolveScanDirectories({
+import C from "picocolors";
+import w from "cac";
+function T() {
+	let T = w("actions-up");
+	T.help().version(b).option("--dir <directory>", "Directory to scan (repeatable). Default: .github, or . with --recursive").option("--dry-run", "Preview changes without applying them").option("--exclude <regex>", "Exclude actions by regex (repeatable)").option("--include-branches", "Also check actions pinned to branches (default: false)").option("--json", "Output update information as machine-readable JSON").option("--min-age <days>", "Minimum age in days for updates (default: 0)", { default: 0 }).option("--mode <mode>", "Update mode: major, minor, or patch (default: major)", { default: "major" }).option("--style <style>", "Update style: sha or preserve (default: sha)", { default: "sha" }).option("--recursive, -r", "Recursively scan directories for YAML files").option("--yes, -y", "Skip all confirmations").command("", "Update GitHub Actions").action(async (b) => {
+		let w = b.json ?? !1, T = null, E = o({
 			recursive: b.recursive,
 			cwd: process.cwd(),
 			dir: b.dir
-		}), T = w.map(({ root: e, dir: f }) => resolve(e, f)), E = b.includeBranches ?? !1, D = normalizeUpdateMode(b.mode), O = [];
-		Array.isArray(b.exclude) ? O.push(...b.exclude) : typeof b.exclude == "string" && O.push(b.exclude);
-		let k = O.flatMap((e) => e.split(",")).map((e) => e.trim()).filter(Boolean);
+		}), D = E.map(({ root: e, dir: t }) => S(e, t)), O = b.includeBranches ?? !1, k = d(b.mode), A = l(b.style), j = [];
+		Array.isArray(b.exclude) ? j.push(...b.exclude) : typeof b.exclude == "string" && j.push(b.exclude);
+		let M = j.flatMap((e) => e.split(",")).map((e) => e.trim()).filter(Boolean);
 		try {
-			validateCliOptions({
+			f({
 				yes: b.yes,
-				json: S
-			}), S || (console.info(pc.cyan("\n🚀 Actions Up!\n")), C = createSpinner("Scanning GitHub Actions...").start());
-			function g({ actionsToCheckCount: e, blockedByMode: f = [], outdated: p = [], skipped: m = [], scanResult: h, status: g }) {
-				process.stdout.write(`${JSON.stringify(buildJsonReport({
+				json: w
+			}), w || (console.info(C.cyan("\n🚀 Actions Up!\n")), T = x("Scanning GitHub Actions...").start());
+			function o({ actionsToCheckCount: e, blockedByMode: t = [], outdated: n = [], skipped: r = [], scanResult: i, status: a }) {
+				process.stdout.write(`${JSON.stringify(v({
 					recursive: b.recursive ?? !1,
-					excludePatterns: k,
-					directories: T,
+					excludePatterns: M,
+					directories: D,
 					minAge: b.minAge,
 					actionsToCheckCount: e,
-					includeBranches: E,
-					blockedByMode: f,
-					scanResult: h,
-					outdated: p,
-					skipped: m,
-					status: g,
-					mode: D
+					includeBranches: O,
+					blockedByMode: t,
+					scanResult: i,
+					outdated: n,
+					skipped: r,
+					status: a,
+					style: A,
+					mode: k
 				}), null, 2)}\n`);
 			}
-			let y = mergeScanResults(b.recursive ? await Promise.all(w.map(({ root: e, dir: f }) => scanRecursive(e, f))) : await Promise.all(w.map(({ root: e, dir: f }) => scanGitHubActions(e, f)))), x = y.actions.length, O = y.workflows.size, A = y.compositeActions.size;
-			if (C?.success(`Found ${pc.yellow(x)} actions in ${pc.yellow(O)} workflows and ${pc.yellow(A)} composite actions`), x === 0) {
-				if (S) {
-					g({
+			let l = h(b.recursive ? await Promise.all(E.map(({ root: e, dir: t }) => _(e, t))) : await Promise.all(E.map(({ root: e, dir: t }) => y(e, t)))), d = l.actions.length, S = l.workflows.size, j = l.compositeActions.size;
+			if (T?.success(`Found ${C.yellow(d)} actions in ${C.yellow(S)} workflows and ${C.yellow(j)} composite actions`), d === 0) {
+				if (w) {
+					o({
 						status: "no-actions-found",
 						actionsToCheckCount: 0,
-						scanResult: y
+						scanResult: l
 					});
 					return;
 				}
-				console.info(pc.green("\n✨ No GitHub Actions found in this repository"));
+				console.info(C.green("\n✨ No GitHub Actions found in this repository"));
 				return;
 			}
-			let j = y.actions;
-			if (k.length > 0) {
-				let { parseExcludePatterns: e } = await import("../core/filters/parse-exclude-patterns.js"), f = e(k);
-				f.length > 0 && (j = j.filter((e) => {
-					let { name: p } = e;
-					for (let e of f) if (e.test(p)) return !1;
+			let N = l.actions;
+			if (M.length > 0) {
+				let { parseExcludePatterns: e } = await import("../core/filters/parse-exclude-patterns.js"), t = e(M);
+				t.length > 0 && (N = N.filter((e) => {
+					let { name: n } = e;
+					for (let e of t) if (e.test(n)) return !1;
 					return !0;
 				}));
 			}
-			if (S || (C = createSpinner("Checking for updates...").start()), j.length === 0) {
-				if (C?.success("No actions to check after excludes"), S) {
-					g({
+			if (w || (T = x("Checking for updates...").start()), N.length === 0) {
+				if (T?.success("No actions to check after excludes"), w) {
+					o({
 						status: "nothing-to-check",
 						actionsToCheckCount: 0,
-						scanResult: y
+						scanResult: l
 					});
 					return;
 				}
-				console.info(pc.green("\n✨ Nothing to check after excludes\n"));
+				console.info(C.green("\n✨ Nothing to check after excludes\n"));
 				return;
 			}
-			let M = process.env.GITHUB_TOKEN, N = createGitHubClient(M), P = await checkUpdates(j, M, {
-				client: N,
-				includeBranches: E
-			}), F = [];
-			await Promise.all(P.map(async (e) => {
-				await shouldIgnore(e.action.file, e.action.line) || F.push(e);
+			let P = process.env.GITHUB_TOKEN, F = a(P), I = await m(N, P, {
+				client: F,
+				includeBranches: O,
+				style: A
+			}), L = [];
+			await Promise.all(I.map(async (e) => {
+				await p(e.action.file, e.action.line) || L.push(e);
 			}));
-			let I = F.filter((e) => e.status === "skipped"), L = F.filter((e) => e.hasUpdate), R = b.minAge * 24 * 60 * 60 * 1e3, z = Date.now();
-			L = L.filter((e) => e.publishedAt ? z - e.publishedAt.getTime() >= R : !0);
-			let B = [];
-			if (D !== "major") {
-				let p = /* @__PURE__ */ new Map(), h = /* @__PURE__ */ new Map(), g = /* @__PURE__ */ new Map(), _ = await Promise.all(L.map(async (p) => {
-					let m = p.currentVersion;
-					if (isSha(p.currentVersion)) {
-						let f = await readInlineVersionComment(p.action.file, p.action.line, g);
-						f && (m = f);
+			let R = L.filter((e) => e.status === "skipped"), z = L.filter((e) => e.hasUpdate), B = b.minAge * 24 * 60 * 60 * 1e3, V = Date.now();
+			z = z.filter((e) => e.publishedAt ? V - e.publishedAt.getTime() >= B : !0);
+			let H = [];
+			if (k !== "major") {
+				let n = /* @__PURE__ */ new Map(), r = /* @__PURE__ */ new Map(), a = /* @__PURE__ */ new Map(), o = await Promise.all(z.map(async (n) => {
+					let r = n.currentVersion;
+					if (t(n.currentVersion)) {
+						let t = await e(n.action.file, n.action.line, a);
+						t && (r = t);
 					}
-					let h = getUpdateLevel(m, p.latestVersion);
+					let i = s(r, n.latestVersion);
 					return {
-						effectiveCurrentVersion: m,
-						allowed: D === "minor" ? h === "minor" || h === "patch" || h === "none" : h === "patch" || h === "none",
-						update: p
+						effectiveCurrentVersion: r,
+						allowed: k === "minor" ? i === "minor" || i === "patch" || i === "none" : i === "patch" || i === "none",
+						update: n
 					};
-				})), v = [], y = await Promise.all(_.map(async (e) => {
+				})), c = [], l = await Promise.all(o.map(async (e) => {
 					if (e.allowed) return { update: e.update };
-					let f = await getCompatibleUpdate(N, {
+					let t = await i(F, {
 						currentVersion: e.effectiveCurrentVersion,
 						actionName: e.update.action.name,
-						tagsCache: p,
-						shaCache: h,
-						mode: D
+						tagsCache: n,
+						shaCache: r,
+						mode: k
 					});
-					return f ? { update: {
+					return t ? { update: {
 						...e.update,
-						latestVersion: f.version,
-						latestSha: f.sha,
+						latestVersion: t.version,
+						latestSha: t.sha,
 						isBreaking: !1,
 						hasUpdate: !0
 					} } : { blocked: e.update };
 				}));
-				for (let e of y) {
+				for (let e of l) {
 					if (e.update) {
-						v.push(e.update);
+						c.push(e.update);
 						continue;
 					}
-					B.push(e.blocked);
+					H.push(e.blocked);
 				}
-				L = v;
+				z = c;
 			}
-			let V = L.filter((e) => e.isBreaking);
-			if (L.length === 0) {
-				if (C?.success("All actions are up to date!"), S) {
-					g({
-						actionsToCheckCount: j.length,
+			z = z.map((e) => r(e, A));
+			let U = z.filter((e) => !e.targetRef).map((e) => ({
+				...e,
+				skipReason: "unsupported-style",
+				status: "skipped",
+				hasUpdate: !1
+			}));
+			R.push(...U), z = z.filter((e) => e.targetRef);
+			let W = z.filter((e) => e.isBreaking);
+			if (z.length === 0) {
+				if (T?.success("All actions are up to date!"), w) {
+					o({
+						actionsToCheckCount: N.length,
 						status: "up-to-date",
-						blockedByMode: B,
-						scanResult: y,
-						skipped: I
+						blockedByMode: H,
+						scanResult: l,
+						skipped: R
 					});
 					return;
 				}
-				I.length > 0 && printSkippedWarning(I, E), B.length > 0 && printModeWarning(B, D), console.info(pc.green("\n✨ Everything is already at the latest version!\n"));
+				R.length > 0 && u(R, O, A), H.length > 0 && g(H, k), console.info(C.green("\n✨ Everything is already at the latest version!\n"));
 				return;
 			}
-			if (C?.success(`Found ${pc.yellow(L.length)} updates available${V.length > 0 ? ` (${pc.redBright(V.length)} breaking)` : ""}`), S) {
-				g({
-					actionsToCheckCount: j.length,
+			if (T?.success(`Found ${C.yellow(z.length)} updates available${W.length > 0 ? ` (${C.redBright(W.length)} breaking)` : ""}`), w) {
+				o({
+					actionsToCheckCount: N.length,
 					status: "updates-available",
-					blockedByMode: B,
-					scanResult: y,
-					outdated: L,
-					skipped: I
+					blockedByMode: H,
+					scanResult: l,
+					outdated: z,
+					skipped: R
 				});
 				return;
 			}
-			if (I.length > 0 && printSkippedWarning(I, E), B.length > 0 && printModeWarning(B, D), b.dryRun) {
-				console.info(pc.yellow("\n📋 Dry Run - No changes will be made\n"));
-				for (let e of L) console.info(`${pc.cyan(e.action.file ?? "unknown")}:\n${e.action.name}: ${pc.redBright(e.currentVersion)} → ${pc.green(e.latestVersion)} ${e.latestSha ? pc.gray(`(${e.latestSha.slice(0, 7)})`) : ""}\n`);
-				console.info(pc.gray(`\n${L.length} actions would be updated\n`));
+			if (R.length > 0 && u(R, O, A), H.length > 0 && g(H, k), b.dryRun) {
+				console.info(C.yellow("\n📋 Dry Run - No changes will be made\n"));
+				for (let e of z) {
+					let t = e.targetRefStyle === "sha" && e.targetRef ? `${e.latestVersion} ${C.gray(`(${e.targetRef.slice(0, 7)})`)}` : e.targetRef ?? e.latestVersion;
+					console.info(`${C.cyan(e.action.file ?? "unknown")}:\n${e.action.name}: ${C.redBright(e.currentVersion)} → ${C.green(t)}\n`);
+				}
+				console.info(C.gray(`\n${z.length} actions would be updated\n`));
 				return;
 			}
 			if (b.yes) {
-				let e = L.filter((e) => e.latestSha);
+				let e = z.filter((e) => e.targetRef);
 				if (e.length === 0) {
-					console.info(pc.yellow("\n⚠️ No actions with SHA available for update\n"));
+					console.info(C.yellow("\n⚠️ No actionable updates available\n"));
 					return;
 				}
-				console.info(pc.yellow(`\n🔄 Updating ${e.length} actions...\n`)), await applyUpdates(e), console.info(pc.green("\n✓ Updates applied successfully!"));
+				console.info(C.yellow(`\n🔄 Updating ${e.length} actions...\n`)), await c(e), console.info(C.green("\n✓ Updates applied successfully!"));
 			} else {
-				(I.length > 0 || B.length > 0) && console.info("");
-				let e = await promptUpdateSelection(L, { showAge: b.minAge > 0 });
+				(R.length > 0 || H.length > 0) && console.info("");
+				let e = await n(z, { showAge: b.minAge > 0 });
 				if (!e || e.length === 0) {
-					console.info(pc.gray("\nNo updates applied"));
+					console.info(C.gray("\nNo updates applied"));
 					return;
 				}
-				console.info(pc.yellow(`\n🔄 Updating ${e.length} selected actions...\n`)), await applyUpdates(e), console.info(pc.green("\n✓ Updates applied successfully!"));
+				console.info(C.yellow(`\n🔄 Updating ${e.length} selected actions...\n`)), await c(e), console.info(C.green("\n✓ Updates applied successfully!"));
 			}
 		} catch (e) {
-			C?.error("Failed"), e instanceof Error && e.name === "GitHubRateLimitError" ? (console.error(pc.yellow("\n⚠️ Rate Limit Exceeded\n")), console.error(e.message), console.error(pc.gray("\nExample: GITHUB_TOKEN=ghp_xxxx actions-up\n"))) : console.error(pc.redBright("\nError:"), e instanceof Error ? e.message : String(e)), process.exit(1);
+			T?.error("Failed"), e instanceof Error && e.name === "GitHubRateLimitError" ? (console.error(C.yellow("\n⚠️ Rate Limit Exceeded\n")), console.error(e.message), console.error(C.gray("\nExample: GITHUB_TOKEN=ghp_xxxx actions-up\n"))) : console.error(C.redBright("\nError:"), e instanceof Error ? e.message : String(e)), process.exit(1);
 		}
-	}), C.parse();
+	}), T.parse();
 }
-export { run };
+export { T as run };

package/dist/cli/merge-scan-results.js

@@ -1,4 +1,4 @@
-function mergeScanResults(e) {
+function e(e) {
 	let t = {
 		compositeActions: /* @__PURE__ */ new Map(),
 		workflows: /* @__PURE__ */ new Map(),
@@ -15,4 +15,4 @@ function mergeScanResults(e) {
 		return n.has(t) ? !1 : (n.add(t), !0);
 	}), t;
 }
-export { mergeScanResults };
+export { e as mergeScanResults };

package/dist/cli/normalize-update-mode.js

@@ -1,6 +1,6 @@
-function normalizeUpdateMode(e) {
+function e(e) {
 	let t = (e ?? "major").toLowerCase();
 	if (t === "major" || t === "minor" || t === "patch") return t;
 	throw Error(`Invalid mode "${e}". Expected "major", "minor", or "patch".`);
 }
-export { normalizeUpdateMode };
+export { e as normalizeUpdateMode };

package/dist/cli/normalize-update-style.d.ts

@@ -0,0 +1,8 @@
+import { UpdateStyle } from '../types/update-style';
+/**
+ * Normalizes the update style option.
+ *
+ * @param style - Raw style option.
+ * @returns Normalized update style.
+ */
+export declare function normalizeUpdateStyle(style: undefined | string): UpdateStyle;

package/dist/cli/normalize-update-style.js

@@ -0,0 +1,6 @@
+function e(e) {
+	let t = (e ?? "sha").toLowerCase();
+	if (t === "preserve" || t === "sha") return t;
+	throw Error(`Invalid style "${e}". Expected "sha" or "preserve".`);
+}
+export { e as normalizeUpdateStyle };

package/dist/cli/print-mode-warning.js

@@ -1,11 +1,11 @@
-import pc from "picocolors";
-function printModeWarning(t, n) {
+import e from "picocolors";
+function t(t, n) {
 	if (t.length === 0) return;
 	let r = new Intl.PluralRules("en-US", { type: "cardinal" }).select(t.length) === "one" ? "action" : "actions", i = n === "minor" ? "major" : "major/minor";
-	console.info(pc.yellow(`\n⚠️  Skipped ${t.length} ${r} due to ${i} updates`));
+	console.info(e.yellow(`\n⚠️  Skipped ${t.length} ${r} due to ${i} updates`));
 	for (let n of t) {
 		let t = n.action.uses ?? `${n.action.name}@${n.currentVersion ?? "unknown"}`;
-		console.info(pc.gray(`   • ${t}`));
+		console.info(e.gray(`   • ${t}`));
 	}
 }
-export { printModeWarning };
+export { t as printModeWarning };