npm - eslint-plugin-github-actions-2 - Versions diffs - 1.0.1 → 1.0.3 - Mend

eslint-plugin-github-actions-2 1.0.1 → 1.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (504) hide show

package/README.md CHANGED Viewed

@@ -2,26 +2,23 @@
 [![npm license.](https://flat.badgen.net/npm/license/eslint-plugin-github-actions-2?color=purple)](https://github.com/Nick2bad4u/eslint-plugin-github-actions-2/blob/main/LICENSE) [![npm total downloads.](https://flat.badgen.net/npm/dt/eslint-plugin-github-actions-2?color=pink)](https://www.npmjs.com/package/eslint-plugin-github-actions-2) [![latest GitHub release.](https://flat.badgen.net/github/release/Nick2bad4u/eslint-plugin-github-actions-2?color=cyan)](https://github.com/Nick2bad4u/eslint-plugin-github-actions-2/releases) [![GitHub stars.](https://flat.badgen.net/github/stars/Nick2bad4u/eslint-plugin-github-actions-2?color=yellow)](https://github.com/Nick2bad4u/eslint-plugin-github-actions-2/stargazers) [![GitHub forks.](https://flat.badgen.net/github/forks/Nick2bad4u/eslint-plugin-github-actions-2?color=green)](https://github.com/Nick2bad4u/eslint-plugin-github-actions-2/forks) [![GitHub open issues.](https://flat.badgen.net/github/open-issues/Nick2bad4u/eslint-plugin-github-actions-2?color=red)](https://github.com/Nick2bad4u/eslint-plugin-github-actions-2/issues) [![codecov.](https://codecov.io/gh/Nick2bad4u/eslint-plugin-github-actions-2/branch/main/graph/badge.svg)](https://codecov.io/gh/Nick2bad4u/eslint-plugin-github-actions-2)
-ESLint plugin for GitHub Actions workflow quality, reliability, and security.
+ESLint plugin for GitHub Actions quality, reliability, security, and maintainability across the full GitHub Actions ecosystem.
-The plugin now covers:
+The plugin covers:
 - workflow YAML files (`.github/workflows/*.{yml,yaml}`)
 - action metadata files (`**/action.yml`, `**/action.yaml`)
+- Dependabot configuration (`.github/dependabot.{yml,yaml}`)
 - workflow template packages (`**/workflow-templates/*.{yml,yaml}` and `**/workflow-templates/*.properties.json`)
-Rules help teams:
+The rules help teams:
-- standardize workflow names and job identifiers
-- require descriptive workflow, job, and step names
-- make `run` steps and manual workflow inputs more explicit
-- declare explicit token `permissions`
-- reject unsupported workflow keys in common workflow structures
-- validate and bound `timeout-minutes` values
-- pin third-party `uses:` references to immutable SHAs
-- configure top-level `concurrency` for duplicate-run control
-- catch invalid trigger events, oversized workflow files, and inconsistent workflow filename extensions
-- require explicit shells for `run` steps and explicit `workflow_dispatch` input types
+- standardize workflow, job, and step naming along with file-level conventions
+- validate workflow structure, supported keys, trigger declarations, interface definitions, timeouts, and concurrency settings
+- enforce safer permissions, shells, input handling, and pinned action references
+- harden CodeQL, dependency review, SARIF upload, secret-scanning, and Dependabot automation workflows
+- keep Dependabot and workflow-template metadata complete, consistent, and reviewable
+- apply targeted autofixes and suggestions where the intended change is safe and unambiguous
 ## Installation
@@ -41,91 +38,154 @@ Every exported preset already scopes itself to the intended GitHub Actions file
 ## Presets
-| Preset                                             | Purpose                                             |
-| -------------------------------------------------- | --------------------------------------------------- |
-| `githubActions.configs.actionMetadata`             | Action metadata hygiene and correctness checks.     |
-| `githubActions.configs.workflowTemplateProperties` | Workflow-template metadata quality checks.          |
-| `githubActions.configs.workflowTemplates`          | Combined workflow-template YAML + metadata checks.  |
-| `githubActions.configs.recommended`                | Balanced defaults for most repositories.            |
-| `githubActions.configs.security`                   | Security-focused checks like immutable SHA pinning. |
-| `githubActions.configs.strict`                     | Operational guardrails for mature workflow estates. |
-| `githubActions.configs.all`                        | Every rule published by the plugin.                 |
+| Preset                                                                                                                                                            | Purpose                                                              |
+| ----------------------------------------------------------------------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------- |
+| [`githubActions.configs.actionMetadata`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata)                          | Action metadata hygiene and correctness checks.                      |
+| [`githubActions.configs.codeScanning`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning)                              | CodeQL, dependency review, SARIF, and code-scanning workflow checks. |
+| [`githubActions.configs.dependabot`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot)                                   | Dependabot configuration quality and policy checks.                  |
+| [`githubActions.configs.workflowTemplateProperties`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) | Workflow-template metadata quality checks.                           |
+| [`githubActions.configs.workflowTemplates`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates)                    | Combined workflow-template YAML + metadata checks.                   |
+| [`githubActions.configs.recommended`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended)                                 | Balanced defaults for most repositories.                             |
+| [`githubActions.configs.security`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security)                                       | Security-focused checks like immutable SHA pinning.                  |
+| [`githubActions.configs.strict`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict)                                           | Operational guardrails for mature workflow estates.                  |
+| [`githubActions.configs.all`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all)                                                 | Every rule published by the plugin.                                  |
 ## Rules
-Rule matrix by preset (matches the presets docs page).
-| Rule | 🧩 actionMetadata | 🗂️ workflowTemplateProperties | 🧱 workflowTemplates | 🟡 recommended | 🛡️ security | 🔴 strict | 🟣 all |
-| --- | :-: | :-: | :-: | :-: | :-: | :-: | :-: |
-| [`action-name-casing`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/action-name-casing) | — | — | — | — | — | ✅ | ✅ |
-| [`job-id-casing`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/job-id-casing) | — | — | — | — | — | ✅ | ✅ |
-| [`max-jobs-per-action`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/max-jobs-per-action) | — | — | — | — | — | ✅ | ✅ |
-| [`no-case-insensitive-input-id-collision`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-case-insensitive-input-id-collision) | ✅ | — | — | — | — | — | ✅ |
-| [`no-composite-input-env-access`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-composite-input-env-access) | ✅ | — | — | — | — | — | ✅ |
-| [`no-deprecated-node-runtime`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-deprecated-node-runtime) | ✅ | — | — | — | — | — | ✅ |
-| [`no-duplicate-composite-step-id`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-duplicate-composite-step-id) | ✅ | — | — | — | — | — | ✅ |
-| [`no-empty-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-empty-template-file-pattern) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-external-job`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-external-job) | — | — | — | — | — | ✅ | ✅ |
-| [`no-hardcoded-default-branch-in-template`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-hardcoded-default-branch-in-template) | — | — | ✅ | — | — | — | ✅ |
-| [`no-icon-file-extension-in-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-icon-file-extension-in-template-icon-name) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-inherit-secrets`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-inherit-secrets) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`no-invalid-concurrency-context`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-concurrency-context) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-invalid-key`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-key) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-invalid-reusable-workflow-job-key`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-reusable-workflow-job-key) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-invalid-template-file-pattern-regex`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-template-file-pattern-regex) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-invalid-workflow-call-output-value`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-workflow-call-output-value) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-path-separators-in-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-path-separators-in-template-icon-name) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-post-if-without-post`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-post-if-without-post) | ✅ | — | — | — | — | — | ✅ |
-| [`no-pr-head-checkout-in-pull-request-target`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-pr-head-checkout-in-pull-request-target) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`no-pre-if-without-pre`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-pre-if-without-pre) | ✅ | — | — | — | — | — | ✅ |
-| [`no-required-input-with-default`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-required-input-with-default) | ✅ | — | — | — | — | — | ✅ |
-| [`no-secrets-in-if`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-secrets-in-if) | — | — | — | ✅ | ✅ | ✅ | ✅ |
-| [`no-self-hosted-runner-on-fork-pr-events`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-self-hosted-runner-on-fork-pr-events) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`no-subdirectory-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-subdirectory-template-file-pattern) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-template-placeholder-in-non-template-workflow`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-template-placeholder-in-non-template-workflow) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-top-level-env`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-top-level-env) | — | — | — | — | — | ✅ | ✅ |
-| [`no-top-level-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-top-level-permissions) | — | — | — | — | — | — | ✅ |
-| [`no-universal-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-universal-template-file-pattern) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`no-unknown-input-reference-in-composite`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-input-reference-in-composite) | ✅ | — | — | — | — | — | ✅ |
-| [`no-unknown-job-output-reference`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-job-output-reference) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`no-unknown-step-reference`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-step-reference) | — | — | — | — | — | ✅ | ✅ |
-| [`no-untrusted-input-in-run`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-untrusted-input-in-run) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`no-unused-input-in-composite`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unused-input-in-composite) | ✅ | — | — | — | — | — | ✅ |
-| [`no-write-all-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-write-all-permissions) | — | — | — | ✅ | ✅ | ✅ | ✅ |
-| [`pin-action-shas`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/pin-action-shas) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`prefer-action-yml`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-action-yml) | ✅ | — | — | — | — | — | ✅ |
-| [`prefer-fail-fast`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-fail-fast) | — | — | — | — | — | ✅ | ✅ |
-| [`prefer-file-extension`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-file-extension) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`prefer-inputs-context`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-inputs-context) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`prefer-step-uses-style`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-step-uses-style) | — | — | — | — | — | — | ✅ |
-| [`prefer-template-yml-extension`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-template-yml-extension) | — | — | ✅ | — | — | — | ✅ |
-| [`require-action-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-action-name) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-action-run-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-action-run-name) | — | — | — | — | — | ✅ | ✅ |
-| [`require-checkout-before-local-action`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-checkout-before-local-action) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-composite-step-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-composite-step-name) | ✅ | — | — | — | — | — | ✅ |
-| [`require-job-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-name) | — | — | — | — | — | ✅ | ✅ |
-| [`require-job-step-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-step-name) | — | — | — | — | — | ✅ | ✅ |
-| [`require-job-timeout-minutes`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-timeout-minutes) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-merge-group-trigger`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-merge-group-trigger) | — | — | — | — | — | ✅ | ✅ |
-| [`require-pull-request-target-branches`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-pull-request-target-branches) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`require-run-step-shell`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-run-step-shell) | — | — | — | — | — | ✅ | ✅ |
-| [`require-template-categories`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-categories) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`require-template-file-patterns`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-file-patterns) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`require-template-icon-file-exists`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-icon-file-exists) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`require-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-icon-name) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`require-template-workflow-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-workflow-name) | — | — | ✅ | — | — | — | ✅ |
-| [`require-trigger-types`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-trigger-types) | — | — | — | — | — | ✅ | ✅ |
-| [`require-workflow-call-input-type`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-call-input-type) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-workflow-call-output-value`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-call-output-value) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-workflow-concurrency`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-concurrency) | — | — | — | — | — | ✅ | ✅ |
-| [`require-workflow-dispatch-input-type`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-dispatch-input-type) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`require-workflow-interface-description`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-interface-description) | — | — | — | — | — | ✅ | ✅ |
-| [`require-workflow-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-permissions) | — | — | — | ✅ | ✅ | ✅ | ✅ |
-| [`require-workflow-run-branches`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-run-branches) | — | — | — | — | ✅ | ✅ | ✅ |
-| [`require-workflow-template-pair`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-template-pair) | — | — | ✅ | — | — | — | ✅ |
-| [`require-workflow-template-properties-pair`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-template-properties-pair) | — | ✅ | ✅ | — | — | — | ✅ |
-| [`valid-timeout-minutes`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/valid-timeout-minutes) | — | — | — | ✅ | — | ✅ | ✅ |
-| [`valid-trigger-events`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/valid-trigger-events) | — | — | — | ✅ | — | ✅ | ✅ |
+Fix legend:
+- 🔧 = autofixable
+- 💡 = suggestions available
+- — = report only
+Preset key legend:
+- [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) — [`githubActions.configs.actionMetadata`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata)
+- [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) — [`githubActions.configs.codeScanning`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning)
+- [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) — [`githubActions.configs.dependabot`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot)
+- [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) — [`githubActions.configs.workflowTemplateProperties`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties)
+- [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) — [`githubActions.configs.workflowTemplates`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates)
+- [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) — [`githubActions.configs.recommended`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended)
+- [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) — [`githubActions.configs.security`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security)
+- [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) — [`githubActions.configs.strict`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict)
+- [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) — [`githubActions.configs.all`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all)
+| Rule | Fix | Preset key |
+| --- | :-: | --- |
+| <span class="sb-inline-rule-number">R009</span> [`action-name-casing`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/action-name-casing) | 🔧 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R010</span> [`job-id-casing`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/job-id-casing) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R011</span> [`max-jobs-per-action`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/max-jobs-per-action) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R048</span> [`no-case-insensitive-input-id-collision`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-case-insensitive-input-id-collision) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R097</span> [`no-codeql-autobuild-for-javascript-typescript`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-codeql-autobuild-for-javascript-typescript) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R096</span> [`no-codeql-javascript-typescript-split-language-matrix`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-codeql-javascript-typescript-split-language-matrix) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R049</span> [`no-composite-input-env-access`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-composite-input-env-access) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R044</span> [`no-deprecated-node-runtime`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-deprecated-node-runtime) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R051</span> [`no-duplicate-composite-step-id`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-duplicate-composite-step-id) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R060</span> [`no-empty-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-empty-template-file-pattern) | 🔧 | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R012</span> [`no-external-job`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-external-job) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R068</span> [`no-hardcoded-default-branch-in-template`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-hardcoded-default-branch-in-template) | — | [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R063</span> [`no-icon-file-extension-in-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-icon-file-extension-in-template-icon-name) | 🔧 | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R026</span> [`no-inherit-secrets`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-inherit-secrets) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R042</span> [`no-invalid-concurrency-context`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-concurrency-context) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R019</span> [`no-invalid-key`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-key) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R041</span> [`no-invalid-reusable-workflow-job-key`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-reusable-workflow-job-key) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R059</span> [`no-invalid-template-file-pattern-regex`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-template-file-pattern-regex) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R040</span> [`no-invalid-workflow-call-output-value`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-invalid-workflow-call-output-value) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R095</span> [`no-overlapping-dependabot-directories`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-overlapping-dependabot-directories) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R064</span> [`no-path-separators-in-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-path-separators-in-template-icon-name) | 💡 | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R046</span> [`no-post-if-without-post`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-post-if-without-post) | 🔧 | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R030</span> [`no-pr-head-checkout-in-pull-request-target`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-pr-head-checkout-in-pull-request-target) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R045</span> [`no-pre-if-without-pre`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-pre-if-without-pre) | 🔧 | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R047</span> [`no-required-input-with-default`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-required-input-with-default) | 💡 | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R027</span> [`no-secrets-in-if`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-secrets-in-if) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R036</span> [`no-self-hosted-runner-on-fork-pr-events`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-self-hosted-runner-on-fork-pr-events) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R062</span> [`no-subdirectory-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-subdirectory-template-file-pattern) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R069</span> [`no-template-placeholder-in-non-template-workflow`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-template-placeholder-in-non-template-workflow) | — | [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R013</span> [`no-top-level-env`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-top-level-env) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R014</span> [`no-top-level-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-top-level-permissions) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R061</span> [`no-universal-template-file-pattern`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-universal-template-file-pattern) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R081</span> [`no-unknown-dependabot-multi-ecosystem-group`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-dependabot-multi-ecosystem-group) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R050</span> [`no-unknown-input-reference-in-composite`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-input-reference-in-composite) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R037</span> [`no-unknown-job-output-reference`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-job-output-reference) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R038</span> [`no-unknown-step-reference`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unknown-step-reference) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R029</span> [`no-untrusted-input-in-run`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-untrusted-input-in-run) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R085</span> [`no-unused-dependabot-enable-beta-ecosystems`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unused-dependabot-enable-beta-ecosystems) | 🔧 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R053</span> [`no-unused-input-in-composite`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-unused-input-in-composite) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R023</span> [`no-write-all-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/no-write-all-permissions) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R003</span> [`pin-action-shas`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/pin-action-shas) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R043</span> [`prefer-action-yml`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-action-yml) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R015</span> [`prefer-fail-fast`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-fail-fast) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R020</span> [`prefer-file-extension`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-file-extension) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R033</span> [`prefer-inputs-context`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-inputs-context) | 🔧 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R016</span> [`prefer-step-uses-style`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-step-uses-style) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R066</span> [`prefer-template-yml-extension`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/prefer-template-yml-extension) | — | [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R005</span> [`require-action-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-action-name) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R006</span> [`require-action-run-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-action-run-name) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R025</span> [`require-checkout-before-local-action`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-checkout-before-local-action) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R099</span> [`require-codeql-actions-read`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-actions-read) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R113</span> [`require-codeql-branch-filters`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-branch-filters) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R114</span> [`require-codeql-category-when-language-matrix`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-category-when-language-matrix) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R100</span> [`require-codeql-pull-request-trigger`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-pull-request-trigger) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R101</span> [`require-codeql-schedule`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-schedule) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R098</span> [`require-codeql-security-events-write`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-codeql-security-events-write) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R052</span> [`require-composite-step-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-composite-step-name) | — | [🧩](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/action-metadata) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R077</span> [`require-dependabot-assignees`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-assignees) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R111</span> [`require-dependabot-automation-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-automation-permissions) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R112</span> [`require-dependabot-automation-pull-request-trigger`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-automation-pull-request-trigger) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R109</span> [`require-dependabot-bot-actor-guard`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-bot-actor-guard) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R089</span> [`require-dependabot-commit-message-include-scope`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-commit-message-include-scope) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R079</span> [`require-dependabot-commit-message-prefix`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-commit-message-prefix) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R090</span> [`require-dependabot-commit-message-prefix-development`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-commit-message-prefix-development) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R086</span> [`require-dependabot-cooldown`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-cooldown) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R073</span> [`require-dependabot-directory`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-directory) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R084</span> [`require-dependabot-github-actions-directory-root`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-github-actions-directory-root) | 🔧 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R080</span> [`require-dependabot-labels`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-labels) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R087</span> [`require-dependabot-open-pull-requests-limit`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-open-pull-requests-limit) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R072</span> [`require-dependabot-package-ecosystem`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-package-ecosystem) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R082</span> [`require-dependabot-patterns-for-multi-ecosystem-group`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-patterns-for-multi-ecosystem-group) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R083</span> [`require-dependabot-schedule-cronjob`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-schedule-cronjob) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R074</span> [`require-dependabot-schedule-interval`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-schedule-interval) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R075</span> [`require-dependabot-schedule-time`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-schedule-time) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R076</span> [`require-dependabot-schedule-timezone`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-schedule-timezone) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R078</span> [`require-dependabot-target-branch`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-target-branch) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R071</span> [`require-dependabot-updates`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-updates) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R070</span> [`require-dependabot-version`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-version) | 🔧 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R088</span> [`require-dependabot-versioning-strategy-for-npm`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependabot-versioning-strategy-for-npm) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🤖](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/dependabot) |
+| <span class="sb-inline-rule-number">R091</span> [`require-dependency-review-action`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependency-review-action) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R093</span> [`require-dependency-review-fail-on-severity`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependency-review-fail-on-severity) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R092</span> [`require-dependency-review-permissions-contents-read`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependency-review-permissions-contents-read) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R094</span> [`require-dependency-review-pull-request-trigger`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-dependency-review-pull-request-trigger) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R110</span> [`require-fetch-metadata-github-token`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-fetch-metadata-github-token) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R007</span> [`require-job-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-name) | 💡 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R008</span> [`require-job-step-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-step-name) | 💡 | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R002</span> [`require-job-timeout-minutes`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-job-timeout-minutes) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R035</span> [`require-merge-group-trigger`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-merge-group-trigger) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R032</span> [`require-pull-request-target-branches`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-pull-request-target-branches) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R021</span> [`require-run-step-shell`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-run-step-shell) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R102</span> [`require-sarif-upload-security-events-write`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-sarif-upload-security-events-write) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R103</span> [`require-scorecard-results-format-sarif`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-scorecard-results-format-sarif) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R104</span> [`require-scorecard-upload-sarif-step`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-scorecard-upload-sarif-step) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔎](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/code-scanning) |
+| <span class="sb-inline-rule-number">R107</span> [`require-secret-scan-contents-read`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-secret-scan-contents-read) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R105</span> [`require-secret-scan-fetch-depth-zero`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-secret-scan-fetch-depth-zero) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R106</span> [`require-secret-scan-schedule`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-secret-scan-schedule) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R057</span> [`require-template-categories`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-categories) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R058</span> [`require-template-file-patterns`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-file-patterns) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R065</span> [`require-template-icon-file-exists`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-icon-file-exists) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R056</span> [`require-template-icon-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-icon-name) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R067</span> [`require-template-workflow-name`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-template-workflow-name) | — | [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R031</span> [`require-trigger-types`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-trigger-types) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R108</span> [`require-trufflehog-verified-results-mode`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-trufflehog-verified-results-mode) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) |
+| <span class="sb-inline-rule-number">R034</span> [`require-workflow-call-input-type`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-call-input-type) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R039</span> [`require-workflow-call-output-value`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-call-output-value) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R004</span> [`require-workflow-concurrency`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-concurrency) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R022</span> [`require-workflow-dispatch-input-type`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-dispatch-input-type) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R024</span> [`require-workflow-interface-description`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-interface-description) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R001</span> [`require-workflow-permissions`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-permissions) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R028</span> [`require-workflow-run-branches`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-run-branches) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🛡️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/security) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R054</span> [`require-workflow-template-pair`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-template-pair) | — | [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R055</span> [`require-workflow-template-properties-pair`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/require-workflow-template-properties-pair) | — | [🗂️](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-template-properties) [🧱](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/workflow-templates) [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) |
+| <span class="sb-inline-rule-number">R017</span> [`valid-timeout-minutes`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/valid-timeout-minutes) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
+| <span class="sb-inline-rule-number">R018</span> [`valid-trigger-events`](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/valid-trigger-events) | — | [🟣](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/all) [🟡](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/recommended) [🔴](https://nick2bad4u.github.io/eslint-plugin-github-actions-2/docs/rules/presets/strict) |
 ## Example

package/dist/_internal/code-scanning-workflow.d.ts ADDED Viewed

@@ -0,0 +1,37 @@
+/**
+ * @packageDocumentation
+ * Helpers for CodeQL, SARIF, and code-scanning related workflows.
+ */
+import type { AST } from "yaml-eslint-parser";
+import type { WorkflowActionStep } from "./workflow-action-steps.js";
+/** Determine whether a `uses` reference points to the CodeQL init action. */
+export declare const isCodeqlInitReference: (usesReference: string) => boolean;
+/** Determine whether a `uses` reference points to the CodeQL analyze action. */
+export declare const isCodeqlAnalyzeReference: (usesReference: string) => boolean;
+/** Determine whether a `uses` reference points to the CodeQL autobuild action. */
+export declare const isCodeqlAutobuildReference: (usesReference: string) => boolean;
+/**
+ * Determine whether a `uses` reference points to the CodeQL SARIF upload
+ * action.
+ */
+export declare const isSarifUploadReference: (usesReference: string) => boolean;
+/** Determine whether a `uses` reference points to the Scorecard action. */
+export declare const isScorecardActionReference: (usesReference: string) => boolean;
+/** Collect all CodeQL init steps in a workflow. */
+export declare const getCodeqlInitSteps: (root: AST.YAMLMapping) => readonly WorkflowActionStep[];
+/** Collect all CodeQL analyze steps in a workflow. */
+export declare const getCodeqlAnalyzeSteps: (root: AST.YAMLMapping) => readonly WorkflowActionStep[];
+/** Collect all CodeQL autobuild steps in a workflow. */
+export declare const getCodeqlAutobuildSteps: (root: AST.YAMLMapping) => readonly WorkflowActionStep[];
+/** Collect all CodeQL SARIF upload steps in a workflow. */
+export declare const getSarifUploadSteps: (root: AST.YAMLMapping) => readonly WorkflowActionStep[];
+/** Collect all Scorecard action steps in a workflow. */
+export declare const getScorecardSteps: (root: AST.YAMLMapping) => readonly WorkflowActionStep[];
+/**
+ * Resolve literal language values used by a CodeQL init step when statically
+ * knowable.
+ */
+export declare const getCodeqlLanguageValues: (step: WorkflowActionStep) => readonly string[];
+/** Determine whether all statically resolved CodeQL languages are JS/TS aliases. */
+export declare const codeqlLanguagesAreOnlyJavaScriptTypeScript: (languages: readonly string[]) => boolean;
+//# sourceMappingURL=code-scanning-workflow.d.ts.map

package/dist/_internal/code-scanning-workflow.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"code-scanning-workflow.d.ts","sourceRoot":"","sources":["../../src/_internal/code-scanning-workflow.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,oBAAoB,CAAC;AAE9C,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAyBrE,6EAA6E;AAC7E,eAAO,MAAM,qBAAqB,GAAI,eAAe,MAAM,KAAG,OACZ,CAAC;AAEnD,gFAAgF;AAChF,eAAO,MAAM,wBAAwB,GAAI,eAAe,MAAM,KAAG,OACZ,CAAC;AAEtD,kFAAkF;AAClF,eAAO,MAAM,0BAA0B,GAAI,eAAe,MAAM,KAAG,OACZ,CAAC;AAExD;;;GAGG;AACH,eAAO,MAAM,sBAAsB,GAAI,eAAe,MAAM,KAAG,OACL,CAAC;AAE3D,2EAA2E;AAC3E,eAAO,MAAM,0BAA0B,GAAI,eAAe,MAAM,KAAG,OACN,CAAC;AAE9D,mDAAmD;AACnD,eAAO,MAAM,kBAAkB,GAC3B,MAAM,GAAG,CAAC,WAAW,KACtB,SAAS,kBAAkB,EACyB,CAAC;AAExD,sDAAsD;AACtD,eAAO,MAAM,qBAAqB,GAC9B,MAAM,GAAG,CAAC,WAAW,KACtB,SAAS,kBAAkB,EAC4B,CAAC;AAE3D,wDAAwD;AACxD,eAAO,MAAM,uBAAuB,GAChC,MAAM,GAAG,CAAC,WAAW,KACtB,SAAS,kBAAkB,EAC8B,CAAC;AAE7D,2DAA2D;AAC3D,eAAO,MAAM,mBAAmB,GAC5B,MAAM,GAAG,CAAC,WAAW,KACtB,SAAS,kBAAkB,EAC0B,CAAC;AAEzD,wDAAwD;AACxD,eAAO,MAAM,iBAAiB,GAC1B,MAAM,GAAG,CAAC,WAAW,KACtB,SAAS,kBAAkB,EAC8B,CAAC;AAE7D;;;GAGG;AACH,eAAO,MAAM,uBAAuB,GAChC,MAAM,kBAAkB,KACzB,SAAS,MAAM,EAyDjB,CAAC;AAEF,oFAAoF;AACpF,eAAO,MAAM,0CAA0C,GACnD,WAAW,SAAS,MAAM,EAAE,KAC7B,OAEmE,CAAC"}

package/dist/_internal/code-scanning-workflow.js ADDED Viewed

@@ -0,0 +1,73 @@
+import { getWorkflowActionSteps } from "./workflow-action-steps.js";
+import { getMappingPair, getMappingValueAsMapping, getMappingValueAsSequence, getScalarStringValue, } from "./workflow-yaml.js";
+const codeqlLanguageAliases = new Set([
+    "javascript",
+    "javascript-typescript",
+    "typescript",
+]);
+const matrixLanguageExpression = `\${{ matrix.language }}`;
+/** Determine whether a `uses` reference points to a specific CodeQL action step. */
+const isCodeqlActionReference = (usesReference, actionName) => usesReference.trim().startsWith(`github/codeql-action/${actionName}@`);
+/** Determine whether a `uses` reference points to the CodeQL init action. */
+export const isCodeqlInitReference = (usesReference) => isCodeqlActionReference(usesReference, "init");
+/** Determine whether a `uses` reference points to the CodeQL analyze action. */
+export const isCodeqlAnalyzeReference = (usesReference) => isCodeqlActionReference(usesReference, "analyze");
+/** Determine whether a `uses` reference points to the CodeQL autobuild action. */
+export const isCodeqlAutobuildReference = (usesReference) => isCodeqlActionReference(usesReference, "autobuild");
+/**
+ * Determine whether a `uses` reference points to the CodeQL SARIF upload
+ * action.
+ */
+export const isSarifUploadReference = (usesReference) => isCodeqlActionReference(usesReference, "upload-sarif");
+/** Determine whether a `uses` reference points to the Scorecard action. */
+export const isScorecardActionReference = (usesReference) => usesReference.trim().startsWith("ossf/scorecard-action@");
+/** Collect all CodeQL init steps in a workflow. */
+export const getCodeqlInitSteps = (root) => getWorkflowActionSteps(root, isCodeqlInitReference);
+/** Collect all CodeQL analyze steps in a workflow. */
+export const getCodeqlAnalyzeSteps = (root) => getWorkflowActionSteps(root, isCodeqlAnalyzeReference);
+/** Collect all CodeQL autobuild steps in a workflow. */
+export const getCodeqlAutobuildSteps = (root) => getWorkflowActionSteps(root, isCodeqlAutobuildReference);
+/** Collect all CodeQL SARIF upload steps in a workflow. */
+export const getSarifUploadSteps = (root) => getWorkflowActionSteps(root, isSarifUploadReference);
+/** Collect all Scorecard action steps in a workflow. */
+export const getScorecardSteps = (root) => getWorkflowActionSteps(root, isScorecardActionReference);
+/**
+ * Resolve literal language values used by a CodeQL init step when statically
+ * knowable.
+ */
+export const getCodeqlLanguageValues = (step) => {
+    const languagesMappingValue = getScalarStringValue(getMappingPair(getMappingValueAsMapping(step.stepMapping, "with") ??
+        step.stepMapping, "languages")?.value ?? null)?.trim();
+    if (languagesMappingValue === undefined ||
+        languagesMappingValue.length === 0) {
+        return [];
+    }
+    if (languagesMappingValue === matrixLanguageExpression) {
+        const strategyMapping = getMappingValueAsMapping(step.job.mapping, "strategy");
+        const matrixMapping = strategyMapping === null
+            ? null
+            : getMappingValueAsMapping(strategyMapping, "matrix");
+        if (matrixMapping === null) {
+            return [];
+        }
+        const languageSequence = getMappingValueAsSequence(matrixMapping, "language");
+        if (languageSequence !== null) {
+            return languageSequence.entries
+                .map((entry) => getScalarStringValue(entry)?.trim() ?? null)
+                .filter((value) => value !== null && value.length > 0);
+        }
+        const singleLanguage = getScalarStringValue(getMappingPair(matrixMapping, "language")?.value ?? null)?.trim();
+        return singleLanguage === undefined || singleLanguage.length === 0
+            ? []
+            : [singleLanguage];
+    }
+    return languagesMappingValue
+        .split(",")
+        .map((value) => value.trim())
+        .filter((value) => value.length > 0);
+};
+/** Determine whether all statically resolved CodeQL languages are JS/TS aliases. */
+export const codeqlLanguagesAreOnlyJavaScriptTypeScript = (languages) => languages.length > 0 &&
+    languages.every((language) => codeqlLanguageAliases.has(language));
+/* eslint-enable @typescript-eslint/prefer-readonly-parameter-types -- Re-enable readonly-parameter checks outside parser AST helper signatures. */
+//# sourceMappingURL=code-scanning-workflow.js.map

package/dist/_internal/code-scanning-workflow.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"code-scanning-workflow.js","sourceRoot":"","sources":["../../src/_internal/code-scanning-workflow.ts"],"names":[],"mappings":"AASA,OAAO,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,EACH,cAAc,EACd,wBAAwB,EACxB,yBAAyB,EACzB,oBAAoB,GACvB,MAAM,oBAAoB,CAAC;AAE5B,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IAClC,YAAY;IACZ,uBAAuB;IACvB,YAAY;CACf,CAAC,CAAC;AAEH,MAAM,wBAAwB,GAAG,yBAAyB,CAAC;AAE3D,oFAAoF;AACpF,MAAM,uBAAuB,GAAG,CAC5B,aAAqB,EACrB,UAAkB,EACX,EAAE,CACT,aAAa,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,wBAAwB,UAAU,GAAG,CAAC,CAAC;AAE3E,6EAA6E;AAC7E,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,aAAqB,EAAW,EAAE,CACpE,uBAAuB,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;AAEnD,gFAAgF;AAChF,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,aAAqB,EAAW,EAAE,CACvE,uBAAuB,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;AAEtD,kFAAkF;AAClF,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,aAAqB,EAAW,EAAE,CACzE,uBAAuB,CAAC,aAAa,EAAE,WAAW,CAAC,CAAC;AAExD;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,aAAqB,EAAW,EAAE,CACrE,uBAAuB,CAAC,aAAa,EAAE,cAAc,CAAC,CAAC;AAE3D,2EAA2E;AAC3E,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,aAAqB,EAAW,EAAE,CACzE,aAAa,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,wBAAwB,CAAC,CAAC;AAE9D,mDAAmD;AACnD,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAC9B,IAAqB,EACQ,EAAE,CAC/B,sBAAsB,CAAC,IAAI,EAAE,qBAAqB,CAAC,CAAC;AAExD,sDAAsD;AACtD,MAAM,CAAC,MAAM,qBAAqB,GAAG,CACjC,IAAqB,EACQ,EAAE,CAC/B,sBAAsB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;AAE3D,wDAAwD;AACxD,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACnC,IAAqB,EACQ,EAAE,CAC/B,sBAAsB,CAAC,IAAI,EAAE,0BAA0B,CAAC,CAAC;AAE7D,2DAA2D;AAC3D,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAC/B,IAAqB,EACQ,EAAE,CAC/B,sBAAsB,CAAC,IAAI,EAAE,sBAAsB,CAAC,CAAC;AAEzD,wDAAwD;AACxD,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAC7B,IAAqB,EACQ,EAAE,CAC/B,sBAAsB,CAAC,IAAI,EAAE,0BAA0B,CAAC,CAAC;AAE7D;;;GAGG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CACnC,IAAwB,EACP,EAAE;IACnB,MAAM,qBAAqB,GAAG,oBAAoB,CAC9C,cAAc,CACV,wBAAwB,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,CAAC;QAC9C,IAAI,CAAC,WAAW,EACpB,WAAW,CACd,EAAE,KAAK,IAAI,IAAI,CACnB,EAAE,IAAI,EAAE,CAAC;IAEV,IACI,qBAAqB,KAAK,SAAS;QACnC,qBAAqB,CAAC,MAAM,KAAK,CAAC,EACpC,CAAC;QACC,OAAO,EAAE,CAAC;IACd,CAAC;IAED,IAAI,qBAAqB,KAAK,wBAAwB,EAAE,CAAC;QACrD,MAAM,eAAe,GAAG,wBAAwB,CAC5C,IAAI,CAAC,GAAG,CAAC,OAAO,EAChB,UAAU,CACb,CAAC;QACF,MAAM,aAAa,GACf,eAAe,KAAK,IAAI;YACpB,CAAC,CAAC,IAAI;YACN,CAAC,CAAC,wBAAwB,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC;QAE9D,IAAI,aAAa,KAAK,IAAI,EAAE,CAAC;YACzB,OAAO,EAAE,CAAC;QACd,CAAC;QAED,MAAM,gBAAgB,GAAG,yBAAyB,CAC9C,aAAa,EACb,UAAU,CACb,CAAC;QAEF,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;YAC5B,OAAO,gBAAgB,CAAC,OAAO;iBAC1B,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,oBAAoB,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC;iBAC3D,MAAM,CACH,CAAC,KAAK,EAAmB,EAAE,CACvB,KAAK,KAAK,IAAI,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,CACzC,CAAC;QACV,CAAC;QAED,MAAM,cAAc,GAAG,oBAAoB,CACvC,cAAc,CAAC,aAAa,EAAE,UAAU,CAAC,EAAE,KAAK,IAAI,IAAI,CAC3D,EAAE,IAAI,EAAE,CAAC;QAEV,OAAO,cAAc,KAAK,SAAS,IAAI,cAAc,CAAC,MAAM,KAAK,CAAC;YAC9D,CAAC,CAAC,EAAE;YACJ,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;IAC3B,CAAC;IAED,OAAO,qBAAqB;SACvB,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;SAC5B,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AAC7C,CAAC,CAAC;AAEF,oFAAoF;AACpF,MAAM,CAAC,MAAM,0CAA0C,GAAG,CACtD,SAA4B,EACrB,EAAE,CACT,SAAS,CAAC,MAAM,GAAG,CAAC;IACpB,SAAS,CAAC,KAAK,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,qBAAqB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC;AAEvE,mJAAmJ"}