eslint-plugin-github-actions-2 1.0.2 → 1.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (504) hide show
  1. package/README.md +149 -101
  2. package/dist/_internal/code-scanning-workflow.d.ts +37 -0
  3. package/dist/_internal/code-scanning-workflow.d.ts.map +1 -0
  4. package/dist/_internal/code-scanning-workflow.js +73 -0
  5. package/dist/_internal/code-scanning-workflow.js.map +1 -0
  6. package/dist/_internal/dependabot-automation-workflow.d.ts +26 -0
  7. package/dist/_internal/dependabot-automation-workflow.d.ts.map +1 -0
  8. package/dist/_internal/dependabot-automation-workflow.js +25 -0
  9. package/dist/_internal/dependabot-automation-workflow.js.map +1 -0
  10. package/dist/_internal/dependabot-yaml.d.ts +63 -0
  11. package/dist/_internal/dependabot-yaml.d.ts.map +1 -0
  12. package/dist/_internal/dependabot-yaml.js +139 -0
  13. package/dist/_internal/dependabot-yaml.js.map +1 -0
  14. package/dist/_internal/dependency-review-workflow.d.ts +20 -0
  15. package/dist/_internal/dependency-review-workflow.d.ts.map +1 -0
  16. package/dist/_internal/dependency-review-workflow.js +9 -0
  17. package/dist/_internal/dependency-review-workflow.js.map +1 -0
  18. package/dist/_internal/github-actions-config-references.d.ts +1 -1
  19. package/dist/_internal/github-actions-config-references.d.ts.map +1 -1
  20. package/dist/_internal/github-actions-config-references.js +19 -2
  21. package/dist/_internal/github-actions-config-references.js.map +1 -1
  22. package/dist/_internal/lint-targets.d.ts +15 -0
  23. package/dist/_internal/lint-targets.d.ts.map +1 -1
  24. package/dist/_internal/lint-targets.js +41 -0
  25. package/dist/_internal/lint-targets.js.map +1 -1
  26. package/dist/_internal/rules-registry.d.ts +90 -0
  27. package/dist/_internal/rules-registry.d.ts.map +1 -1
  28. package/dist/_internal/rules-registry.js +90 -0
  29. package/dist/_internal/rules-registry.js.map +1 -1
  30. package/dist/_internal/secret-scanning-workflow.d.ts +24 -0
  31. package/dist/_internal/secret-scanning-workflow.d.ts.map +1 -0
  32. package/dist/_internal/secret-scanning-workflow.js +21 -0
  33. package/dist/_internal/secret-scanning-workflow.js.map +1 -0
  34. package/dist/_internal/workflow-action-steps.d.ts +35 -0
  35. package/dist/_internal/workflow-action-steps.d.ts.map +1 -0
  36. package/dist/_internal/workflow-action-steps.js +75 -0
  37. package/dist/_internal/workflow-action-steps.js.map +1 -0
  38. package/dist/_internal/workflow-permissions.d.ts +11 -0
  39. package/dist/_internal/workflow-permissions.d.ts.map +1 -0
  40. package/dist/_internal/workflow-permissions.js +50 -0
  41. package/dist/_internal/workflow-permissions.js.map +1 -0
  42. package/dist/_internal/yaml-fixes.d.ts +13 -0
  43. package/dist/_internal/yaml-fixes.d.ts.map +1 -0
  44. package/dist/_internal/yaml-fixes.js +77 -0
  45. package/dist/_internal/yaml-fixes.js.map +1 -0
  46. package/dist/plugin.cjs +3516 -268
  47. package/dist/plugin.cjs.map +4 -4
  48. package/dist/plugin.d.ts.map +1 -1
  49. package/dist/plugin.js +2 -0
  50. package/dist/plugin.js.map +1 -1
  51. package/dist/rules/action-name-casing.d.ts.map +1 -1
  52. package/dist/rules/action-name-casing.js +3 -0
  53. package/dist/rules/action-name-casing.js.map +1 -1
  54. package/dist/rules/job-id-casing.d.ts.map +1 -1
  55. package/dist/rules/job-id-casing.js +3 -0
  56. package/dist/rules/job-id-casing.js.map +1 -1
  57. package/dist/rules/max-jobs-per-action.d.ts.map +1 -1
  58. package/dist/rules/max-jobs-per-action.js +3 -0
  59. package/dist/rules/max-jobs-per-action.js.map +1 -1
  60. package/dist/rules/no-case-insensitive-input-id-collision.d.ts.map +1 -1
  61. package/dist/rules/no-case-insensitive-input-id-collision.js +3 -0
  62. package/dist/rules/no-case-insensitive-input-id-collision.js.map +1 -1
  63. package/dist/rules/no-codeql-autobuild-for-javascript-typescript.d.ts +9 -0
  64. package/dist/rules/no-codeql-autobuild-for-javascript-typescript.d.ts.map +1 -0
  65. package/dist/rules/no-codeql-autobuild-for-javascript-typescript.js +54 -0
  66. package/dist/rules/no-codeql-autobuild-for-javascript-typescript.js.map +1 -0
  67. package/dist/rules/no-codeql-javascript-typescript-split-language-matrix.d.ts +9 -0
  68. package/dist/rules/no-codeql-javascript-typescript-split-language-matrix.d.ts.map +1 -0
  69. package/dist/rules/no-codeql-javascript-typescript-split-language-matrix.js +50 -0
  70. package/dist/rules/no-codeql-javascript-typescript-split-language-matrix.js.map +1 -0
  71. package/dist/rules/no-composite-input-env-access.d.ts.map +1 -1
  72. package/dist/rules/no-composite-input-env-access.js +3 -0
  73. package/dist/rules/no-composite-input-env-access.js.map +1 -1
  74. package/dist/rules/no-deprecated-node-runtime.d.ts.map +1 -1
  75. package/dist/rules/no-deprecated-node-runtime.js +3 -0
  76. package/dist/rules/no-deprecated-node-runtime.js.map +1 -1
  77. package/dist/rules/no-duplicate-composite-step-id.d.ts.map +1 -1
  78. package/dist/rules/no-duplicate-composite-step-id.js +3 -0
  79. package/dist/rules/no-duplicate-composite-step-id.js.map +1 -1
  80. package/dist/rules/no-empty-template-file-pattern.d.ts.map +1 -1
  81. package/dist/rules/no-empty-template-file-pattern.js +6 -0
  82. package/dist/rules/no-empty-template-file-pattern.js.map +1 -1
  83. package/dist/rules/no-external-job.d.ts.map +1 -1
  84. package/dist/rules/no-external-job.js +3 -0
  85. package/dist/rules/no-external-job.js.map +1 -1
  86. package/dist/rules/no-hardcoded-default-branch-in-template.d.ts.map +1 -1
  87. package/dist/rules/no-hardcoded-default-branch-in-template.js +3 -0
  88. package/dist/rules/no-hardcoded-default-branch-in-template.js.map +1 -1
  89. package/dist/rules/no-icon-file-extension-in-template-icon-name.d.ts.map +1 -1
  90. package/dist/rules/no-icon-file-extension-in-template-icon-name.js +13 -3
  91. package/dist/rules/no-icon-file-extension-in-template-icon-name.js.map +1 -1
  92. package/dist/rules/no-inherit-secrets.d.ts.map +1 -1
  93. package/dist/rules/no-inherit-secrets.js +3 -0
  94. package/dist/rules/no-inherit-secrets.js.map +1 -1
  95. package/dist/rules/no-invalid-concurrency-context.d.ts.map +1 -1
  96. package/dist/rules/no-invalid-concurrency-context.js +3 -0
  97. package/dist/rules/no-invalid-concurrency-context.js.map +1 -1
  98. package/dist/rules/no-invalid-key.d.ts.map +1 -1
  99. package/dist/rules/no-invalid-key.js +7 -0
  100. package/dist/rules/no-invalid-key.js.map +1 -1
  101. package/dist/rules/no-invalid-reusable-workflow-job-key.d.ts.map +1 -1
  102. package/dist/rules/no-invalid-reusable-workflow-job-key.js +3 -0
  103. package/dist/rules/no-invalid-reusable-workflow-job-key.js.map +1 -1
  104. package/dist/rules/no-invalid-template-file-pattern-regex.d.ts.map +1 -1
  105. package/dist/rules/no-invalid-template-file-pattern-regex.js +3 -0
  106. package/dist/rules/no-invalid-template-file-pattern-regex.js.map +1 -1
  107. package/dist/rules/no-invalid-workflow-call-output-value.d.ts.map +1 -1
  108. package/dist/rules/no-invalid-workflow-call-output-value.js +3 -0
  109. package/dist/rules/no-invalid-workflow-call-output-value.js.map +1 -1
  110. package/dist/rules/no-overlapping-dependabot-directories.d.ts +9 -0
  111. package/dist/rules/no-overlapping-dependabot-directories.d.ts.map +1 -0
  112. package/dist/rules/no-overlapping-dependabot-directories.js +151 -0
  113. package/dist/rules/no-overlapping-dependabot-directories.js.map +1 -0
  114. package/dist/rules/no-path-separators-in-template-icon-name.d.ts.map +1 -1
  115. package/dist/rules/no-path-separators-in-template-icon-name.js +26 -3
  116. package/dist/rules/no-path-separators-in-template-icon-name.js.map +1 -1
  117. package/dist/rules/no-post-if-without-post.d.ts.map +1 -1
  118. package/dist/rules/no-post-if-without-post.js +6 -0
  119. package/dist/rules/no-post-if-without-post.js.map +1 -1
  120. package/dist/rules/no-pr-head-checkout-in-pull-request-target.d.ts.map +1 -1
  121. package/dist/rules/no-pr-head-checkout-in-pull-request-target.js +3 -0
  122. package/dist/rules/no-pr-head-checkout-in-pull-request-target.js.map +1 -1
  123. package/dist/rules/no-pre-if-without-pre.d.ts.map +1 -1
  124. package/dist/rules/no-pre-if-without-pre.js +6 -0
  125. package/dist/rules/no-pre-if-without-pre.js.map +1 -1
  126. package/dist/rules/no-required-input-with-default.d.ts.map +1 -1
  127. package/dist/rules/no-required-input-with-default.js +23 -0
  128. package/dist/rules/no-required-input-with-default.js.map +1 -1
  129. package/dist/rules/no-secrets-in-if.d.ts.map +1 -1
  130. package/dist/rules/no-secrets-in-if.js +3 -0
  131. package/dist/rules/no-secrets-in-if.js.map +1 -1
  132. package/dist/rules/no-self-hosted-runner-on-fork-pr-events.d.ts.map +1 -1
  133. package/dist/rules/no-self-hosted-runner-on-fork-pr-events.js +3 -0
  134. package/dist/rules/no-self-hosted-runner-on-fork-pr-events.js.map +1 -1
  135. package/dist/rules/no-subdirectory-template-file-pattern.d.ts.map +1 -1
  136. package/dist/rules/no-subdirectory-template-file-pattern.js +3 -0
  137. package/dist/rules/no-subdirectory-template-file-pattern.js.map +1 -1
  138. package/dist/rules/no-template-placeholder-in-non-template-workflow.d.ts.map +1 -1
  139. package/dist/rules/no-template-placeholder-in-non-template-workflow.js +3 -0
  140. package/dist/rules/no-template-placeholder-in-non-template-workflow.js.map +1 -1
  141. package/dist/rules/no-top-level-env.d.ts.map +1 -1
  142. package/dist/rules/no-top-level-env.js +3 -0
  143. package/dist/rules/no-top-level-env.js.map +1 -1
  144. package/dist/rules/no-top-level-permissions.d.ts.map +1 -1
  145. package/dist/rules/no-top-level-permissions.js +3 -0
  146. package/dist/rules/no-top-level-permissions.js.map +1 -1
  147. package/dist/rules/no-universal-template-file-pattern.d.ts.map +1 -1
  148. package/dist/rules/no-universal-template-file-pattern.js +3 -0
  149. package/dist/rules/no-universal-template-file-pattern.js.map +1 -1
  150. package/dist/rules/no-unknown-dependabot-multi-ecosystem-group.d.ts +9 -0
  151. package/dist/rules/no-unknown-dependabot-multi-ecosystem-group.d.ts.map +1 -0
  152. package/dist/rules/no-unknown-dependabot-multi-ecosystem-group.js +58 -0
  153. package/dist/rules/no-unknown-dependabot-multi-ecosystem-group.js.map +1 -0
  154. package/dist/rules/no-unknown-input-reference-in-composite.d.ts.map +1 -1
  155. package/dist/rules/no-unknown-input-reference-in-composite.js +3 -0
  156. package/dist/rules/no-unknown-input-reference-in-composite.js.map +1 -1
  157. package/dist/rules/no-unknown-job-output-reference.d.ts.map +1 -1
  158. package/dist/rules/no-unknown-job-output-reference.js +3 -0
  159. package/dist/rules/no-unknown-job-output-reference.js.map +1 -1
  160. package/dist/rules/no-unknown-step-reference.d.ts.map +1 -1
  161. package/dist/rules/no-unknown-step-reference.js +3 -0
  162. package/dist/rules/no-unknown-step-reference.js.map +1 -1
  163. package/dist/rules/no-untrusted-input-in-run.d.ts.map +1 -1
  164. package/dist/rules/no-untrusted-input-in-run.js +3 -0
  165. package/dist/rules/no-untrusted-input-in-run.js.map +1 -1
  166. package/dist/rules/no-unused-dependabot-enable-beta-ecosystems.d.ts +9 -0
  167. package/dist/rules/no-unused-dependabot-enable-beta-ecosystems.d.ts.map +1 -0
  168. package/dist/rules/no-unused-dependabot-enable-beta-ecosystems.js +51 -0
  169. package/dist/rules/no-unused-dependabot-enable-beta-ecosystems.js.map +1 -0
  170. package/dist/rules/no-unused-input-in-composite.d.ts.map +1 -1
  171. package/dist/rules/no-unused-input-in-composite.js +3 -0
  172. package/dist/rules/no-unused-input-in-composite.js.map +1 -1
  173. package/dist/rules/no-write-all-permissions.d.ts.map +1 -1
  174. package/dist/rules/no-write-all-permissions.js +3 -0
  175. package/dist/rules/no-write-all-permissions.js.map +1 -1
  176. package/dist/rules/pin-action-shas.d.ts.map +1 -1
  177. package/dist/rules/pin-action-shas.js +3 -0
  178. package/dist/rules/pin-action-shas.js.map +1 -1
  179. package/dist/rules/prefer-action-yml.d.ts.map +1 -1
  180. package/dist/rules/prefer-action-yml.js +3 -0
  181. package/dist/rules/prefer-action-yml.js.map +1 -1
  182. package/dist/rules/prefer-fail-fast.d.ts.map +1 -1
  183. package/dist/rules/prefer-fail-fast.js +3 -0
  184. package/dist/rules/prefer-fail-fast.js.map +1 -1
  185. package/dist/rules/prefer-file-extension.d.ts.map +1 -1
  186. package/dist/rules/prefer-file-extension.js +3 -0
  187. package/dist/rules/prefer-file-extension.js.map +1 -1
  188. package/dist/rules/prefer-inputs-context.d.ts.map +1 -1
  189. package/dist/rules/prefer-inputs-context.js +3 -0
  190. package/dist/rules/prefer-inputs-context.js.map +1 -1
  191. package/dist/rules/prefer-step-uses-style.d.ts.map +1 -1
  192. package/dist/rules/prefer-step-uses-style.js +3 -0
  193. package/dist/rules/prefer-step-uses-style.js.map +1 -1
  194. package/dist/rules/prefer-template-yml-extension.d.ts.map +1 -1
  195. package/dist/rules/prefer-template-yml-extension.js +3 -0
  196. package/dist/rules/prefer-template-yml-extension.js.map +1 -1
  197. package/dist/rules/require-action-name.d.ts.map +1 -1
  198. package/dist/rules/require-action-name.js +7 -0
  199. package/dist/rules/require-action-name.js.map +1 -1
  200. package/dist/rules/require-action-run-name.d.ts.map +1 -1
  201. package/dist/rules/require-action-run-name.js +7 -0
  202. package/dist/rules/require-action-run-name.js.map +1 -1
  203. package/dist/rules/require-checkout-before-local-action.d.ts.map +1 -1
  204. package/dist/rules/require-checkout-before-local-action.js +3 -0
  205. package/dist/rules/require-checkout-before-local-action.js.map +1 -1
  206. package/dist/rules/require-codeql-actions-read.d.ts +9 -0
  207. package/dist/rules/require-codeql-actions-read.d.ts.map +1 -0
  208. package/dist/rules/require-codeql-actions-read.js +63 -0
  209. package/dist/rules/require-codeql-actions-read.js.map +1 -0
  210. package/dist/rules/require-codeql-branch-filters.d.ts +12 -0
  211. package/dist/rules/require-codeql-branch-filters.d.ts.map +1 -0
  212. package/dist/rules/require-codeql-branch-filters.js +83 -0
  213. package/dist/rules/require-codeql-branch-filters.js.map +1 -0
  214. package/dist/rules/require-codeql-category-when-language-matrix.d.ts +12 -0
  215. package/dist/rules/require-codeql-category-when-language-matrix.d.ts.map +1 -0
  216. package/dist/rules/require-codeql-category-when-language-matrix.js +68 -0
  217. package/dist/rules/require-codeql-category-when-language-matrix.js.map +1 -0
  218. package/dist/rules/require-codeql-pull-request-trigger.d.ts +9 -0
  219. package/dist/rules/require-codeql-pull-request-trigger.d.ts.map +1 -0
  220. package/dist/rules/require-codeql-pull-request-trigger.js +46 -0
  221. package/dist/rules/require-codeql-pull-request-trigger.js.map +1 -0
  222. package/dist/rules/require-codeql-schedule.d.ts +9 -0
  223. package/dist/rules/require-codeql-schedule.d.ts.map +1 -0
  224. package/dist/rules/require-codeql-schedule.js +46 -0
  225. package/dist/rules/require-codeql-schedule.js.map +1 -0
  226. package/dist/rules/require-codeql-security-events-write.d.ts +9 -0
  227. package/dist/rules/require-codeql-security-events-write.d.ts.map +1 -0
  228. package/dist/rules/require-codeql-security-events-write.js +53 -0
  229. package/dist/rules/require-codeql-security-events-write.js.map +1 -0
  230. package/dist/rules/require-composite-step-name.d.ts.map +1 -1
  231. package/dist/rules/require-composite-step-name.js +3 -0
  232. package/dist/rules/require-composite-step-name.js.map +1 -1
  233. package/dist/rules/require-dependabot-assignees.d.ts +9 -0
  234. package/dist/rules/require-dependabot-assignees.d.ts.map +1 -0
  235. package/dist/rules/require-dependabot-assignees.js +53 -0
  236. package/dist/rules/require-dependabot-assignees.js.map +1 -0
  237. package/dist/rules/require-dependabot-automation-permissions.d.ts +9 -0
  238. package/dist/rules/require-dependabot-automation-permissions.d.ts.map +1 -0
  239. package/dist/rules/require-dependabot-automation-permissions.js +68 -0
  240. package/dist/rules/require-dependabot-automation-permissions.js.map +1 -0
  241. package/dist/rules/require-dependabot-automation-pull-request-trigger.d.ts +12 -0
  242. package/dist/rules/require-dependabot-automation-pull-request-trigger.d.ts.map +1 -0
  243. package/dist/rules/require-dependabot-automation-pull-request-trigger.js +49 -0
  244. package/dist/rules/require-dependabot-automation-pull-request-trigger.js.map +1 -0
  245. package/dist/rules/require-dependabot-bot-actor-guard.d.ts +9 -0
  246. package/dist/rules/require-dependabot-bot-actor-guard.d.ts.map +1 -0
  247. package/dist/rules/require-dependabot-bot-actor-guard.js +64 -0
  248. package/dist/rules/require-dependabot-bot-actor-guard.js.map +1 -0
  249. package/dist/rules/require-dependabot-commit-message-include-scope.d.ts +9 -0
  250. package/dist/rules/require-dependabot-commit-message-include-scope.d.ts.map +1 -0
  251. package/dist/rules/require-dependabot-commit-message-include-scope.js +60 -0
  252. package/dist/rules/require-dependabot-commit-message-include-scope.js.map +1 -0
  253. package/dist/rules/require-dependabot-commit-message-prefix-development.d.ts +9 -0
  254. package/dist/rules/require-dependabot-commit-message-prefix-development.d.ts.map +1 -0
  255. package/dist/rules/require-dependabot-commit-message-prefix-development.js +75 -0
  256. package/dist/rules/require-dependabot-commit-message-prefix-development.js.map +1 -0
  257. package/dist/rules/require-dependabot-commit-message-prefix.d.ts +9 -0
  258. package/dist/rules/require-dependabot-commit-message-prefix.d.ts.map +1 -0
  259. package/dist/rules/require-dependabot-commit-message-prefix.js +60 -0
  260. package/dist/rules/require-dependabot-commit-message-prefix.js.map +1 -0
  261. package/dist/rules/require-dependabot-cooldown.d.ts +9 -0
  262. package/dist/rules/require-dependabot-cooldown.d.ts.map +1 -0
  263. package/dist/rules/require-dependabot-cooldown.js +52 -0
  264. package/dist/rules/require-dependabot-cooldown.js.map +1 -0
  265. package/dist/rules/require-dependabot-directory.d.ts +9 -0
  266. package/dist/rules/require-dependabot-directory.d.ts.map +1 -0
  267. package/dist/rules/require-dependabot-directory.js +68 -0
  268. package/dist/rules/require-dependabot-directory.js.map +1 -0
  269. package/dist/rules/require-dependabot-github-actions-directory-root.d.ts +9 -0
  270. package/dist/rules/require-dependabot-github-actions-directory-root.d.ts.map +1 -0
  271. package/dist/rules/require-dependabot-github-actions-directory-root.js +76 -0
  272. package/dist/rules/require-dependabot-github-actions-directory-root.js.map +1 -0
  273. package/dist/rules/require-dependabot-labels.d.ts +9 -0
  274. package/dist/rules/require-dependabot-labels.d.ts.map +1 -0
  275. package/dist/rules/require-dependabot-labels.js +52 -0
  276. package/dist/rules/require-dependabot-labels.js.map +1 -0
  277. package/dist/rules/require-dependabot-open-pull-requests-limit.d.ts +9 -0
  278. package/dist/rules/require-dependabot-open-pull-requests-limit.d.ts.map +1 -0
  279. package/dist/rules/require-dependabot-open-pull-requests-limit.js +55 -0
  280. package/dist/rules/require-dependabot-open-pull-requests-limit.js.map +1 -0
  281. package/dist/rules/require-dependabot-package-ecosystem.d.ts +9 -0
  282. package/dist/rules/require-dependabot-package-ecosystem.d.ts.map +1 -0
  283. package/dist/rules/require-dependabot-package-ecosystem.js +79 -0
  284. package/dist/rules/require-dependabot-package-ecosystem.js.map +1 -0
  285. package/dist/rules/require-dependabot-patterns-for-multi-ecosystem-group.d.ts +9 -0
  286. package/dist/rules/require-dependabot-patterns-for-multi-ecosystem-group.d.ts.map +1 -0
  287. package/dist/rules/require-dependabot-patterns-for-multi-ecosystem-group.js +58 -0
  288. package/dist/rules/require-dependabot-patterns-for-multi-ecosystem-group.js.map +1 -0
  289. package/dist/rules/require-dependabot-schedule-cronjob.d.ts +9 -0
  290. package/dist/rules/require-dependabot-schedule-cronjob.d.ts.map +1 -0
  291. package/dist/rules/require-dependabot-schedule-cronjob.js +82 -0
  292. package/dist/rules/require-dependabot-schedule-cronjob.js.map +1 -0
  293. package/dist/rules/require-dependabot-schedule-interval.d.ts +9 -0
  294. package/dist/rules/require-dependabot-schedule-interval.d.ts.map +1 -0
  295. package/dist/rules/require-dependabot-schedule-interval.js +73 -0
  296. package/dist/rules/require-dependabot-schedule-interval.js.map +1 -0
  297. package/dist/rules/require-dependabot-schedule-time.d.ts +9 -0
  298. package/dist/rules/require-dependabot-schedule-time.d.ts.map +1 -0
  299. package/dist/rules/require-dependabot-schedule-time.js +68 -0
  300. package/dist/rules/require-dependabot-schedule-time.js.map +1 -0
  301. package/dist/rules/require-dependabot-schedule-timezone.d.ts +9 -0
  302. package/dist/rules/require-dependabot-schedule-timezone.d.ts.map +1 -0
  303. package/dist/rules/require-dependabot-schedule-timezone.js +69 -0
  304. package/dist/rules/require-dependabot-schedule-timezone.js.map +1 -0
  305. package/dist/rules/require-dependabot-target-branch.d.ts +9 -0
  306. package/dist/rules/require-dependabot-target-branch.d.ts.map +1 -0
  307. package/dist/rules/require-dependabot-target-branch.js +53 -0
  308. package/dist/rules/require-dependabot-target-branch.js.map +1 -0
  309. package/dist/rules/require-dependabot-updates.d.ts +9 -0
  310. package/dist/rules/require-dependabot-updates.d.ts.map +1 -0
  311. package/dist/rules/require-dependabot-updates.js +54 -0
  312. package/dist/rules/require-dependabot-updates.js.map +1 -0
  313. package/dist/rules/require-dependabot-version.d.ts +9 -0
  314. package/dist/rules/require-dependabot-version.d.ts.map +1 -0
  315. package/dist/rules/require-dependabot-version.js +62 -0
  316. package/dist/rules/require-dependabot-version.js.map +1 -0
  317. package/dist/rules/require-dependabot-versioning-strategy-for-npm.d.ts +9 -0
  318. package/dist/rules/require-dependabot-versioning-strategy-for-npm.d.ts.map +1 -0
  319. package/dist/rules/require-dependabot-versioning-strategy-for-npm.js +58 -0
  320. package/dist/rules/require-dependabot-versioning-strategy-for-npm.js.map +1 -0
  321. package/dist/rules/require-dependency-review-action.d.ts +9 -0
  322. package/dist/rules/require-dependency-review-action.d.ts.map +1 -0
  323. package/dist/rules/require-dependency-review-action.js +51 -0
  324. package/dist/rules/require-dependency-review-action.js.map +1 -0
  325. package/dist/rules/require-dependency-review-fail-on-severity.d.ts +9 -0
  326. package/dist/rules/require-dependency-review-fail-on-severity.d.ts.map +1 -0
  327. package/dist/rules/require-dependency-review-fail-on-severity.js +62 -0
  328. package/dist/rules/require-dependency-review-fail-on-severity.js.map +1 -0
  329. package/dist/rules/require-dependency-review-permissions-contents-read.d.ts +9 -0
  330. package/dist/rules/require-dependency-review-permissions-contents-read.d.ts.map +1 -0
  331. package/dist/rules/require-dependency-review-permissions-contents-read.js +55 -0
  332. package/dist/rules/require-dependency-review-permissions-contents-read.js.map +1 -0
  333. package/dist/rules/require-dependency-review-pull-request-trigger.d.ts +9 -0
  334. package/dist/rules/require-dependency-review-pull-request-trigger.d.ts.map +1 -0
  335. package/dist/rules/require-dependency-review-pull-request-trigger.js +47 -0
  336. package/dist/rules/require-dependency-review-pull-request-trigger.js.map +1 -0
  337. package/dist/rules/require-fetch-metadata-github-token.d.ts +9 -0
  338. package/dist/rules/require-fetch-metadata-github-token.d.ts.map +1 -0
  339. package/dist/rules/require-fetch-metadata-github-token.js +57 -0
  340. package/dist/rules/require-fetch-metadata-github-token.js.map +1 -0
  341. package/dist/rules/require-job-name.d.ts.map +1 -1
  342. package/dist/rules/require-job-name.js +35 -0
  343. package/dist/rules/require-job-name.js.map +1 -1
  344. package/dist/rules/require-job-step-name.d.ts.map +1 -1
  345. package/dist/rules/require-job-step-name.js +76 -0
  346. package/dist/rules/require-job-step-name.js.map +1 -1
  347. package/dist/rules/require-job-timeout-minutes.d.ts.map +1 -1
  348. package/dist/rules/require-job-timeout-minutes.js +3 -0
  349. package/dist/rules/require-job-timeout-minutes.js.map +1 -1
  350. package/dist/rules/require-merge-group-trigger.d.ts.map +1 -1
  351. package/dist/rules/require-merge-group-trigger.js +3 -0
  352. package/dist/rules/require-merge-group-trigger.js.map +1 -1
  353. package/dist/rules/require-pull-request-target-branches.d.ts.map +1 -1
  354. package/dist/rules/require-pull-request-target-branches.js +3 -0
  355. package/dist/rules/require-pull-request-target-branches.js.map +1 -1
  356. package/dist/rules/require-run-step-shell.d.ts.map +1 -1
  357. package/dist/rules/require-run-step-shell.js +3 -0
  358. package/dist/rules/require-run-step-shell.js.map +1 -1
  359. package/dist/rules/require-sarif-upload-security-events-write.d.ts +9 -0
  360. package/dist/rules/require-sarif-upload-security-events-write.d.ts.map +1 -0
  361. package/dist/rules/require-sarif-upload-security-events-write.js +51 -0
  362. package/dist/rules/require-sarif-upload-security-events-write.js.map +1 -0
  363. package/dist/rules/require-scorecard-results-format-sarif.d.ts +9 -0
  364. package/dist/rules/require-scorecard-results-format-sarif.d.ts.map +1 -0
  365. package/dist/rules/require-scorecard-results-format-sarif.js +57 -0
  366. package/dist/rules/require-scorecard-results-format-sarif.js.map +1 -0
  367. package/dist/rules/require-scorecard-upload-sarif-step.d.ts +9 -0
  368. package/dist/rules/require-scorecard-upload-sarif-step.d.ts.map +1 -0
  369. package/dist/rules/require-scorecard-upload-sarif-step.js +46 -0
  370. package/dist/rules/require-scorecard-upload-sarif-step.js.map +1 -0
  371. package/dist/rules/require-secret-scan-contents-read.d.ts +12 -0
  372. package/dist/rules/require-secret-scan-contents-read.d.ts.map +1 -0
  373. package/dist/rules/require-secret-scan-contents-read.js +53 -0
  374. package/dist/rules/require-secret-scan-contents-read.js.map +1 -0
  375. package/dist/rules/require-secret-scan-fetch-depth-zero.d.ts +9 -0
  376. package/dist/rules/require-secret-scan-fetch-depth-zero.d.ts.map +1 -0
  377. package/dist/rules/require-secret-scan-fetch-depth-zero.js +77 -0
  378. package/dist/rules/require-secret-scan-fetch-depth-zero.js.map +1 -0
  379. package/dist/rules/require-secret-scan-schedule.d.ts +9 -0
  380. package/dist/rules/require-secret-scan-schedule.d.ts.map +1 -0
  381. package/dist/rules/require-secret-scan-schedule.js +46 -0
  382. package/dist/rules/require-secret-scan-schedule.js.map +1 -0
  383. package/dist/rules/require-template-categories.d.ts.map +1 -1
  384. package/dist/rules/require-template-categories.js +3 -0
  385. package/dist/rules/require-template-categories.js.map +1 -1
  386. package/dist/rules/require-template-file-patterns.d.ts.map +1 -1
  387. package/dist/rules/require-template-file-patterns.js +3 -0
  388. package/dist/rules/require-template-file-patterns.js.map +1 -1
  389. package/dist/rules/require-template-icon-file-exists.d.ts.map +1 -1
  390. package/dist/rules/require-template-icon-file-exists.js +3 -0
  391. package/dist/rules/require-template-icon-file-exists.js.map +1 -1
  392. package/dist/rules/require-template-icon-name.d.ts.map +1 -1
  393. package/dist/rules/require-template-icon-name.js +3 -0
  394. package/dist/rules/require-template-icon-name.js.map +1 -1
  395. package/dist/rules/require-template-workflow-name.d.ts.map +1 -1
  396. package/dist/rules/require-template-workflow-name.js +3 -0
  397. package/dist/rules/require-template-workflow-name.js.map +1 -1
  398. package/dist/rules/require-trigger-types.d.ts.map +1 -1
  399. package/dist/rules/require-trigger-types.js +3 -0
  400. package/dist/rules/require-trigger-types.js.map +1 -1
  401. package/dist/rules/require-trufflehog-verified-results-mode.d.ts +9 -0
  402. package/dist/rules/require-trufflehog-verified-results-mode.d.ts.map +1 -0
  403. package/dist/rules/require-trufflehog-verified-results-mode.js +59 -0
  404. package/dist/rules/require-trufflehog-verified-results-mode.js.map +1 -0
  405. package/dist/rules/require-workflow-call-input-type.d.ts.map +1 -1
  406. package/dist/rules/require-workflow-call-input-type.js +3 -0
  407. package/dist/rules/require-workflow-call-input-type.js.map +1 -1
  408. package/dist/rules/require-workflow-call-output-value.d.ts.map +1 -1
  409. package/dist/rules/require-workflow-call-output-value.js +3 -0
  410. package/dist/rules/require-workflow-call-output-value.js.map +1 -1
  411. package/dist/rules/require-workflow-concurrency.d.ts.map +1 -1
  412. package/dist/rules/require-workflow-concurrency.js +3 -0
  413. package/dist/rules/require-workflow-concurrency.js.map +1 -1
  414. package/dist/rules/require-workflow-dispatch-input-type.d.ts.map +1 -1
  415. package/dist/rules/require-workflow-dispatch-input-type.js +3 -0
  416. package/dist/rules/require-workflow-dispatch-input-type.js.map +1 -1
  417. package/dist/rules/require-workflow-interface-description.d.ts.map +1 -1
  418. package/dist/rules/require-workflow-interface-description.js +3 -0
  419. package/dist/rules/require-workflow-interface-description.js.map +1 -1
  420. package/dist/rules/require-workflow-permissions.d.ts.map +1 -1
  421. package/dist/rules/require-workflow-permissions.js +7 -0
  422. package/dist/rules/require-workflow-permissions.js.map +1 -1
  423. package/dist/rules/require-workflow-run-branches.d.ts.map +1 -1
  424. package/dist/rules/require-workflow-run-branches.js +3 -0
  425. package/dist/rules/require-workflow-run-branches.js.map +1 -1
  426. package/dist/rules/require-workflow-template-pair.d.ts.map +1 -1
  427. package/dist/rules/require-workflow-template-pair.js +3 -0
  428. package/dist/rules/require-workflow-template-pair.js.map +1 -1
  429. package/dist/rules/require-workflow-template-properties-pair.d.ts.map +1 -1
  430. package/dist/rules/require-workflow-template-properties-pair.js +3 -0
  431. package/dist/rules/require-workflow-template-properties-pair.js.map +1 -1
  432. package/dist/rules/valid-timeout-minutes.d.ts.map +1 -1
  433. package/dist/rules/valid-timeout-minutes.js +3 -0
  434. package/dist/rules/valid-timeout-minutes.js.map +1 -1
  435. package/dist/rules/valid-trigger-events.d.ts.map +1 -1
  436. package/dist/rules/valid-trigger-events.js +3 -0
  437. package/dist/rules/valid-trigger-events.js.map +1 -1
  438. package/docs/rules/action-name-casing.md +6 -2
  439. package/docs/rules/no-codeql-autobuild-for-javascript-typescript.md +55 -0
  440. package/docs/rules/no-codeql-javascript-typescript-split-language-matrix.md +51 -0
  441. package/docs/rules/no-empty-template-file-pattern.md +5 -1
  442. package/docs/rules/no-icon-file-extension-in-template-icon-name.md +5 -1
  443. package/docs/rules/no-overlapping-dependabot-directories.md +87 -0
  444. package/docs/rules/no-path-separators-in-template-icon-name.md +5 -1
  445. package/docs/rules/no-post-if-without-post.md +5 -1
  446. package/docs/rules/no-pre-if-without-pre.md +5 -1
  447. package/docs/rules/no-required-input-with-default.md +10 -1
  448. package/docs/rules/no-unknown-dependabot-multi-ecosystem-group.md +62 -0
  449. package/docs/rules/no-unused-dependabot-enable-beta-ecosystems.md +63 -0
  450. package/docs/rules/overview.md +47 -1
  451. package/docs/rules/prefer-inputs-context.md +6 -2
  452. package/docs/rules/presets/action-metadata.md +26 -15
  453. package/docs/rules/presets/all.md +129 -73
  454. package/docs/rules/presets/code-scanning.md +33 -0
  455. package/docs/rules/presets/dependabot.md +40 -0
  456. package/docs/rules/presets/index.md +139 -81
  457. package/docs/rules/presets/recommended.md +34 -23
  458. package/docs/rules/presets/security.md +39 -13
  459. package/docs/rules/presets/strict.md +56 -45
  460. package/docs/rules/presets/workflow-template-properties.md +26 -15
  461. package/docs/rules/presets/workflow-templates.md +30 -19
  462. package/docs/rules/require-codeql-actions-read.md +50 -0
  463. package/docs/rules/require-codeql-branch-filters.md +53 -0
  464. package/docs/rules/require-codeql-category-when-language-matrix.md +49 -0
  465. package/docs/rules/require-codeql-pull-request-trigger.md +53 -0
  466. package/docs/rules/require-codeql-schedule.md +57 -0
  467. package/docs/rules/require-codeql-security-events-write.md +50 -0
  468. package/docs/rules/require-dependabot-assignees.md +64 -0
  469. package/docs/rules/require-dependabot-automation-permissions.md +53 -0
  470. package/docs/rules/require-dependabot-automation-pull-request-trigger.md +49 -0
  471. package/docs/rules/require-dependabot-bot-actor-guard.md +52 -0
  472. package/docs/rules/require-dependabot-commit-message-include-scope.md +58 -0
  473. package/docs/rules/require-dependabot-commit-message-prefix-development.md +60 -0
  474. package/docs/rules/require-dependabot-commit-message-prefix.md +64 -0
  475. package/docs/rules/require-dependabot-cooldown.md +59 -0
  476. package/docs/rules/require-dependabot-directory.md +79 -0
  477. package/docs/rules/require-dependabot-github-actions-directory-root.md +62 -0
  478. package/docs/rules/require-dependabot-labels.md +65 -0
  479. package/docs/rules/require-dependabot-open-pull-requests-limit.md +58 -0
  480. package/docs/rules/require-dependabot-package-ecosystem.md +57 -0
  481. package/docs/rules/require-dependabot-patterns-for-multi-ecosystem-group.md +67 -0
  482. package/docs/rules/require-dependabot-schedule-cronjob.md +74 -0
  483. package/docs/rules/require-dependabot-schedule-interval.md +66 -0
  484. package/docs/rules/require-dependabot-schedule-time.md +60 -0
  485. package/docs/rules/require-dependabot-schedule-timezone.md +61 -0
  486. package/docs/rules/require-dependabot-target-branch.md +63 -0
  487. package/docs/rules/require-dependabot-updates.md +58 -0
  488. package/docs/rules/require-dependabot-version.md +70 -0
  489. package/docs/rules/require-dependabot-versioning-strategy-for-npm.md +58 -0
  490. package/docs/rules/require-dependency-review-action.md +60 -0
  491. package/docs/rules/require-dependency-review-fail-on-severity.md +57 -0
  492. package/docs/rules/require-dependency-review-permissions-contents-read.md +62 -0
  493. package/docs/rules/require-dependency-review-pull-request-trigger.md +57 -0
  494. package/docs/rules/require-fetch-metadata-github-token.md +49 -0
  495. package/docs/rules/require-job-name.md +6 -2
  496. package/docs/rules/require-job-step-name.md +11 -2
  497. package/docs/rules/require-sarif-upload-security-events-write.md +50 -0
  498. package/docs/rules/require-scorecard-results-format-sarif.md +49 -0
  499. package/docs/rules/require-scorecard-upload-sarif-step.md +55 -0
  500. package/docs/rules/require-secret-scan-contents-read.md +48 -0
  501. package/docs/rules/require-secret-scan-fetch-depth-zero.md +50 -0
  502. package/docs/rules/require-secret-scan-schedule.md +50 -0
  503. package/docs/rules/require-trufflehog-verified-results-mode.md +49 -0
  504. package/package.json +50 -57
package/dist/rules/valid-timeout-minutes.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"valid-timeout-minutes.js","sourceRoot":"","sources":["../../src/rules/valid-timeout-minutes.ts"],"names":[],"mappings":"AAOA,OAAO,EACH,cAAc,EACd,wBAAwB,EACxB,yBAAyB,EACzB,oBAAoB,EACpB,eAAe,EACf,wBAAwB,EACxB,eAAe,GAClB,MAAM,+BAA+B,CAAC;AAmBvC,8DAA8D;AAC9D,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAE9B,8DAA8D;AAC9D,MAAM,mBAAmB,GAAG,EAAE,GAAG,EAAE,CAAC;AAEpC,+EAA+E;AAC/E,MAAM,2BAA2B,GAAG,CAAC,GAAG,EAAE,CAAC;AAE3C,kEAAkE;AAClE,MAAM,qBAAqB,GAAG,CAC1B,KAAkD,EAClD,QAAgD,EACpB,EAAE;IAC9B,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO;YACH,GAAG,EAAE,KAAK;YACV,GAAG,EAAE,QAAQ,CAAC,GAAG;SACpB,CAAC;IACN,CAAC;IAED,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACtB,OAAO;YACH,GAAG,EAAE,QAAQ,CAAC,GAAG;YACjB,GAAG,EAAE,QAAQ,CAAC,GAAG;SACpB,CAAC;IACN,CAAC;IAED,OAAO;QACH,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,QAAQ,CAAC,GAAG;QAC9B,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,QAAQ,CAAC,GAAG;KACjC,CAAC;AACN,CAAC,CAAC;AAEF,4EAA4E;AAC5E,MAAM,cAAc,GAAG,CAAC,KAAc,EAAyB,EAAE,CAC7D,OAAO,KAAK,KAAK,QAAQ;IACzB,KAAK,KAAK,IAAI;IACd,CAAC,KAAK,IAAI,KAAK,IAAI,KAAK,IAAI,KAAK,CAAC,CAAC;AAEvC,mFAAmF;AACnF,MAAM,qBAAqB,GAAG,CAAC,KAAc,EAAgC,EAAE,CAC3E,OAAO,KAAK,KAAK,QAAQ;IACzB,KAAK,KAAK,IAAI;IACd,CAAC,KAAK,IAAI,KAAK,IAAI,MAAM,IAAI,KAAK,CAAC,CAAC;AAExC,iEAAiE;AACjE,MAAM,IAAI,GAAoB;IAC1B,MAAM,CAAC,OAAO;QACV,MAAM,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC,OAAqC,CAAC;QAChE,MAAM,YAAY,GAAG;YACjB,GAAG,EAAE,2BAA2B;YAChC,GAAG,EAAE,mBAAmB;SAC3B,CAAC;QACF,MAAM,oBAAoB,GAAG;YACzB,GAAG,EAAE,mBAAmB;SAC3B,CAAC;QAEF,MAAM,QAAQ,GAAG,qBAAqB,CAClC,OAAO,OAAO,KAAK,QAAQ,IAAI,cAAc,CAAC,OAAO,CAAC;YAClD,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,OAAO,EAAE,GAAG,EAClB,YAAY,CACf,CAAC;QACF,MAAM,SAAS,GAAG,qBAAqB,CACnC,OAAO,OAAO,KAAK,QAAQ,IAAI,cAAc,CAAC,OAAO,CAAC;YAClD,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,OAAO,EAAE,IAAI,EACnB,YAAY,CACf,CAAC;QAEF,IAAI,qBAAqB,CAAC,OAAO,CAAC,EAAE,CAAC;YACjC,QAAQ,CAAC,GAAG,GAAG,qBAAqB,CAAC,OAAO,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC,GAAG,CAAC;YACpE,QAAQ,CAAC,GAAG,GAAG,qBAAqB,CAAC,OAAO,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC,GAAG,CAAC;YACpE,SAAS,CAAC,GAAG,GAAG,qBAAqB,CACjC,OAAO,CAAC,IAAI,EACZ,YAAY,CACf,CAAC,GAAG,CAAC;YACN,SAAS,CAAC,GAAG,GAAG,qBAAqB,CACjC,OAAO,CAAC,IAAI,EACZ,YAAY,CACf,CAAC,GAAG,CAAC;QACV,CAAC;QAED,MAAM,mBAAmB,GAAG,CACxB,WAAmC,EACnC,KAA6C,EACT,EAAE;YACtC,IAAI,wBAAwB,CAAC,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC9C,OAAO,IAAI,CAAC;YAChB,CAAC;YAED,MAAM,YAAY,GAAG,oBAAoB,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YAE7D,IACI,YAAY,KAAK,IAAI;gBACrB,CAAC,MAAM,CAAC,SAAS,CAAC,YAAY,CAAC;gBAC/B,YAAY,IAAI,CAAC,EACnB,CAAC;gBACC,OAAO,YAAY,CAAC;YACxB,CAAC;YAED,IACI,YAAY,GAAG,KAAK,CAAC,GAAG;gBACxB,YAAY,GAAG,KAAK,CAAC,GAAG;gBACxB,YAAY,GAAG,oBAAoB,CAAC,GAAG,EACzC,CAAC;gBACC,OAAO,cAAc,CAAC;YAC1B,CAAC;YAED,OAAO,IAAI,CAAC;QAChB,CAAC,CAAC;QAEF,OAAO;YACH,OAAO;gBACH,MAAM,IAAI,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;gBAEtC,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAChB,OAAO;gBACX,CAAC;gBAED,MAAM,WAAW,GAAG,wBAAwB,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;gBAE3D,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;oBACvB,OAAO;gBACX,CAAC;gBAED,KAAK,MAAM,OAAO,IAAI,WAAW,CAAC,KAAK,EAAE,CAAC;oBACtC,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;oBAEhD,IAAI,QAAQ,EAAE,IAAI,KAAK,aAAa,EAAE,CAAC;wBACnC,SAAS;oBACb,CAAC;oBAED,MAAM,cAAc,GAAG,cAAc,CACjC,QAAQ,EACR,iBAAiB,CACpB,CAAC;oBAEF,IAAI,cAAc,KAAK,IAAI,EAAE,CAAC;wBAC1B,MAAM,gBAAgB,GAAG,mBAAmB,CACxC,cAAc,EACd,QAAQ,CACX,CAAC;wBAEF,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;4BAC5B,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;oCACzB,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;iCAC5B;gCACD,SAAS,EAAE,gBAAgB;gCAC3B,IAAI,EAAE,CAAC,cAAc,CAAC,KAAK;oCACvB,cAAc,CAAyB;6BAC9C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;oBAED,MAAM,aAAa,GAAG,yBAAyB,CAC3C,QAAQ,EACR,OAAO,CACV,CAAC;oBAEF,IAAI,aAAa,KAAK,IAAI,EAAE,CAAC;wBACzB,SAAS;oBACb,CAAC;oBAED,KAAK,MAAM,SAAS,IAAI,aAAa,CAAC,OAAO,EAAE,CAAC;wBAC5C,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;wBAE7C,IAAI,SAAS,EAAE,IAAI,KAAK,aAAa,EAAE,CAAC;4BACpC,SAAS;wBACb,CAAC;wBAED,MAAM,eAAe,GAAG,cAAc,CAClC,SAAS,EACT,iBAAiB,CACpB,CAAC;wBAEF,IAAI,eAAe,KAAK,IAAI,EAAE,CAAC;4BAC3B,SAAS;wBACb,CAAC;wBAED,MAAM,gBAAgB,GAAG,mBAAmB,CACxC,eAAe,EACf,SAAS,CACZ,CAAC;wBAEF,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;4BAC5B,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,GAAG,EAAE,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC;oCAC1B,GAAG,EAAE,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC;iCAC7B;gCACD,SAAS,EAAE,gBAAgB;gCAC3B,IAAI,EAAE,CAAC,eAAe,CAAC,KAAK;oCACxB,eAAe,CAAyB;6BAC/C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;gBACL,CAAC;YACL,CAAC;SACJ,CAAC;IACN,CAAC;IACD,IAAI,EAAE;QACF,cAAc,EAAE,CAAC,2BAA2B,CAAC;QAC7C,IAAI,EAAE;YACF,OAAO,EAAE;gBACL,4BAA4B;gBAC5B,oCAAoC;gBACpC,+BAA+B;aAClC;YACD,WAAW,EACP,uEAAuE;YAC3E,WAAW,EAAE,IAAI;YACjB,oBAAoB,EAAE,KAAK;YAC3B,MAAM,EAAE,MAAM;YACd,UAAU,EAAE,EAAE;YACd,GAAG,EAAE,8FAA8F;SACtG;QACD,QAAQ,EAAE;YACN,YAAY,EACR,6EAA6E;YACjF,UAAU,EACN,sEAAsE;SAC7E;QACD,MAAM,EAAE;YACJ;gBACI,KAAK,EAAE;oBACH;wBACI,WAAW,EACP,gEAAgE;wBACpE,OAAO,EAAE,mBAAmB;wBAC5B,OAAO,EAAE,mBAAmB;wBAC5B,IAAI,EAAE,SAAS;qBAClB;oBACD;wBACI,oBAAoB,EAAE,KAAK;wBAC3B,WAAW,EACP,uEAAuE;wBAC3E,UAAU,EAAE;4BACR,GAAG,EAAE;gCACD,WAAW,EACP,wCAAwC;gCAC5C,OAAO,EAAE,mBAAmB;gCAC5B,OAAO,EAAE,mBAAmB;gCAC5B,IAAI,EAAE,SAAS;6BAClB;4BACD,GAAG,EAAE;gCACD,WAAW,EACP,wCAAwC;gCAC5C,OAAO,EAAE,mBAAmB;gCAC5B,OAAO,EAAE,mBAAmB;gCAC5B,IAAI,EAAE,SAAS;6BAClB;yBACJ;wBACD,IAAI,EAAE,QAAQ;qBACjB;oBACD;wBACI,oBAAoB,EAAE,KAAK;wBAC3B,WAAW,EACP,qDAAqD;wBACzD,UAAU,EAAE;4BACR,GAAG,EAAE;gCACD,KAAK,EAAE;oCACH;wCACI,WAAW,EACP,iDAAiD;wCACrD,OAAO,EAAE,mBAAmB;wCAC5B,OAAO,EAAE,mBAAmB;wCAC5B,IAAI,EAAE,SAAS;qCAClB;oCACD;wCACI,oBAAoB,EAAE,KAAK;wCAC3B,WAAW,EACP,uDAAuD;wCAC3D,UAAU,EAAE;4CACR,GAAG,EAAE;gDACD,WAAW,EACP,4CAA4C;gDAChD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;4CACD,GAAG,EAAE;gDACD,WAAW,EACP,4CAA4C;gDAChD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;yCACJ;wCACD,IAAI,EAAE,QAAQ;qCACjB;iCACJ;6BACJ;4BACD,IAAI,EAAE;gCACF,KAAK,EAAE;oCACH;wCACI,WAAW,EACP,kDAAkD;wCACtD,OAAO,EAAE,mBAAmB;wCAC5B,OAAO,EAAE,mBAAmB;wCAC5B,IAAI,EAAE,SAAS;qCAClB;oCACD;wCACI,oBAAoB,EAAE,KAAK;wCAC3B,WAAW,EACP,wDAAwD;wCAC5D,UAAU,EAAE;4CACR,GAAG,EAAE;gDACD,WAAW,EACP,6CAA6C;gDACjD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;4CACD,GAAG,EAAE;gDACD,WAAW,EACP,6CAA6C;gDACjD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;yCACJ;wCACD,IAAI,EAAE,QAAQ;qCACjB;iCACJ;6BACJ;yBACJ;wBACD,IAAI,EAAE,QAAQ;qBACjB;iBACJ;gBACD,WAAW,EACP,kEAAkE;aACzE;SACJ;QACD,IAAI,EAAE,YAAY;KACA;CACzB,CAAC;AAEF,eAAe,IAAI,CAAC"}
1
+ {"version":3,"file":"valid-timeout-minutes.js","sourceRoot":"","sources":["../../src/rules/valid-timeout-minutes.ts"],"names":[],"mappings":"AAOA,OAAO,EACH,cAAc,EACd,wBAAwB,EACxB,yBAAyB,EACzB,oBAAoB,EACpB,eAAe,EACf,wBAAwB,EACxB,eAAe,GAClB,MAAM,+BAA+B,CAAC;AAmBvC,8DAA8D;AAC9D,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAE9B,8DAA8D;AAC9D,MAAM,mBAAmB,GAAG,EAAE,GAAG,EAAE,CAAC;AAEpC,+EAA+E;AAC/E,MAAM,2BAA2B,GAAG,CAAC,GAAG,EAAE,CAAC;AAE3C,kEAAkE;AAClE,MAAM,qBAAqB,GAAG,CAC1B,KAAkD,EAClD,QAAgD,EACpB,EAAE;IAC9B,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO;YACH,GAAG,EAAE,KAAK;YACV,GAAG,EAAE,QAAQ,CAAC,GAAG;SACpB,CAAC;IACN,CAAC;IAED,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACtB,OAAO;YACH,GAAG,EAAE,QAAQ,CAAC,GAAG;YACjB,GAAG,EAAE,QAAQ,CAAC,GAAG;SACpB,CAAC;IACN,CAAC;IAED,OAAO;QACH,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,QAAQ,CAAC,GAAG;QAC9B,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,QAAQ,CAAC,GAAG;KACjC,CAAC;AACN,CAAC,CAAC;AAEF,4EAA4E;AAC5E,MAAM,cAAc,GAAG,CAAC,KAAc,EAAyB,EAAE,CAC7D,OAAO,KAAK,KAAK,QAAQ;IACzB,KAAK,KAAK,IAAI;IACd,CAAC,KAAK,IAAI,KAAK,IAAI,KAAK,IAAI,KAAK,CAAC,CAAC;AAEvC,mFAAmF;AACnF,MAAM,qBAAqB,GAAG,CAAC,KAAc,EAAgC,EAAE,CAC3E,OAAO,KAAK,KAAK,QAAQ;IACzB,KAAK,KAAK,IAAI;IACd,CAAC,KAAK,IAAI,KAAK,IAAI,MAAM,IAAI,KAAK,CAAC,CAAC;AAExC,iEAAiE;AACjE,MAAM,IAAI,GAAoB;IAC1B,MAAM,CAAC,OAAO;QACV,MAAM,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC,OAAqC,CAAC;QAChE,MAAM,YAAY,GAAG;YACjB,GAAG,EAAE,2BAA2B;YAChC,GAAG,EAAE,mBAAmB;SAC3B,CAAC;QACF,MAAM,oBAAoB,GAAG;YACzB,GAAG,EAAE,mBAAmB;SAC3B,CAAC;QAEF,MAAM,QAAQ,GAAG,qBAAqB,CAClC,OAAO,OAAO,KAAK,QAAQ,IAAI,cAAc,CAAC,OAAO,CAAC;YAClD,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,OAAO,EAAE,GAAG,EAClB,YAAY,CACf,CAAC;QACF,MAAM,SAAS,GAAG,qBAAqB,CACnC,OAAO,OAAO,KAAK,QAAQ,IAAI,cAAc,CAAC,OAAO,CAAC;YAClD,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,OAAO,EAAE,IAAI,EACnB,YAAY,CACf,CAAC;QAEF,IAAI,qBAAqB,CAAC,OAAO,CAAC,EAAE,CAAC;YACjC,QAAQ,CAAC,GAAG,GAAG,qBAAqB,CAAC,OAAO,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC,GAAG,CAAC;YACpE,QAAQ,CAAC,GAAG,GAAG,qBAAqB,CAAC,OAAO,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC,GAAG,CAAC;YACpE,SAAS,CAAC,GAAG,GAAG,qBAAqB,CACjC,OAAO,CAAC,IAAI,EACZ,YAAY,CACf,CAAC,GAAG,CAAC;YACN,SAAS,CAAC,GAAG,GAAG,qBAAqB,CACjC,OAAO,CAAC,IAAI,EACZ,YAAY,CACf,CAAC,GAAG,CAAC;QACV,CAAC;QAED,MAAM,mBAAmB,GAAG,CACxB,WAAmC,EACnC,KAA6C,EACT,EAAE;YACtC,IAAI,wBAAwB,CAAC,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC9C,OAAO,IAAI,CAAC;YAChB,CAAC;YAED,MAAM,YAAY,GAAG,oBAAoB,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YAE7D,IACI,YAAY,KAAK,IAAI;gBACrB,CAAC,MAAM,CAAC,SAAS,CAAC,YAAY,CAAC;gBAC/B,YAAY,IAAI,CAAC,EACnB,CAAC;gBACC,OAAO,YAAY,CAAC;YACxB,CAAC;YAED,IACI,YAAY,GAAG,KAAK,CAAC,GAAG;gBACxB,YAAY,GAAG,KAAK,CAAC,GAAG;gBACxB,YAAY,GAAG,oBAAoB,CAAC,GAAG,EACzC,CAAC;gBACC,OAAO,cAAc,CAAC;YAC1B,CAAC;YAED,OAAO,IAAI,CAAC;QAChB,CAAC,CAAC;QAEF,OAAO;YACH,OAAO;gBACH,MAAM,IAAI,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;gBAEtC,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAChB,OAAO;gBACX,CAAC;gBAED,MAAM,WAAW,GAAG,wBAAwB,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;gBAE3D,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;oBACvB,OAAO;gBACX,CAAC;gBAED,KAAK,MAAM,OAAO,IAAI,WAAW,CAAC,KAAK,EAAE,CAAC;oBACtC,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;oBAEhD,IAAI,QAAQ,EAAE,IAAI,KAAK,aAAa,EAAE,CAAC;wBACnC,SAAS;oBACb,CAAC;oBAED,MAAM,cAAc,GAAG,cAAc,CACjC,QAAQ,EACR,iBAAiB,CACpB,CAAC;oBAEF,IAAI,cAAc,KAAK,IAAI,EAAE,CAAC;wBAC1B,MAAM,gBAAgB,GAAG,mBAAmB,CACxC,cAAc,EACd,QAAQ,CACX,CAAC;wBAEF,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;4BAC5B,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;oCACzB,GAAG,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;iCAC5B;gCACD,SAAS,EAAE,gBAAgB;gCAC3B,IAAI,EAAE,CAAC,cAAc,CAAC,KAAK;oCACvB,cAAc,CAAyB;6BAC9C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;oBAED,MAAM,aAAa,GAAG,yBAAyB,CAC3C,QAAQ,EACR,OAAO,CACV,CAAC;oBAEF,IAAI,aAAa,KAAK,IAAI,EAAE,CAAC;wBACzB,SAAS;oBACb,CAAC;oBAED,KAAK,MAAM,SAAS,IAAI,aAAa,CAAC,OAAO,EAAE,CAAC;wBAC5C,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;wBAE7C,IAAI,SAAS,EAAE,IAAI,KAAK,aAAa,EAAE,CAAC;4BACpC,SAAS;wBACb,CAAC;wBAED,MAAM,eAAe,GAAG,cAAc,CAClC,SAAS,EACT,iBAAiB,CACpB,CAAC;wBAEF,IAAI,eAAe,KAAK,IAAI,EAAE,CAAC;4BAC3B,SAAS;wBACb,CAAC;wBAED,MAAM,gBAAgB,GAAG,mBAAmB,CACxC,eAAe,EACf,SAAS,CACZ,CAAC;wBAEF,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;4BAC5B,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,GAAG,EAAE,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC;oCAC1B,GAAG,EAAE,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC;iCAC7B;gCACD,SAAS,EAAE,gBAAgB;gCAC3B,IAAI,EAAE,CAAC,eAAe,CAAC,KAAK;oCACxB,eAAe,CAAyB;6BAC/C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;gBACL,CAAC;YACL,CAAC;SACJ,CAAC;IACN,CAAC;IACD,IAAI,EAAE;QACF,cAAc,EAAE,CAAC,2BAA2B,CAAC;QAC7C,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,OAAO,EAAE;gBACL,4BAA4B;gBAC5B,oCAAoC;gBACpC,+BAA+B;aAClC;YACD,WAAW,EACP,uEAAuE;YAC3E,QAAQ,EAAE,CAAC,yBAAyB,CAAC;YACrC,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,IAAI;YACjB,oBAAoB,EAAE,KAAK;YAC3B,MAAM,EAAE,MAAM;YACd,UAAU,EAAE,EAAE;YACd,GAAG,EAAE,8FAA8F;SACtG;QACD,QAAQ,EAAE;YACN,YAAY,EACR,6EAA6E;YACjF,UAAU,EACN,sEAAsE;SAC7E;QACD,MAAM,EAAE;YACJ;gBACI,KAAK,EAAE;oBACH;wBACI,WAAW,EACP,gEAAgE;wBACpE,OAAO,EAAE,mBAAmB;wBAC5B,OAAO,EAAE,mBAAmB;wBAC5B,IAAI,EAAE,SAAS;qBAClB;oBACD;wBACI,oBAAoB,EAAE,KAAK;wBAC3B,WAAW,EACP,uEAAuE;wBAC3E,UAAU,EAAE;4BACR,GAAG,EAAE;gCACD,WAAW,EACP,wCAAwC;gCAC5C,OAAO,EAAE,mBAAmB;gCAC5B,OAAO,EAAE,mBAAmB;gCAC5B,IAAI,EAAE,SAAS;6BAClB;4BACD,GAAG,EAAE;gCACD,WAAW,EACP,wCAAwC;gCAC5C,OAAO,EAAE,mBAAmB;gCAC5B,OAAO,EAAE,mBAAmB;gCAC5B,IAAI,EAAE,SAAS;6BAClB;yBACJ;wBACD,IAAI,EAAE,QAAQ;qBACjB;oBACD;wBACI,oBAAoB,EAAE,KAAK;wBAC3B,WAAW,EACP,qDAAqD;wBACzD,UAAU,EAAE;4BACR,GAAG,EAAE;gCACD,KAAK,EAAE;oCACH;wCACI,WAAW,EACP,iDAAiD;wCACrD,OAAO,EAAE,mBAAmB;wCAC5B,OAAO,EAAE,mBAAmB;wCAC5B,IAAI,EAAE,SAAS;qCAClB;oCACD;wCACI,oBAAoB,EAAE,KAAK;wCAC3B,WAAW,EACP,uDAAuD;wCAC3D,UAAU,EAAE;4CACR,GAAG,EAAE;gDACD,WAAW,EACP,4CAA4C;gDAChD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;4CACD,GAAG,EAAE;gDACD,WAAW,EACP,4CAA4C;gDAChD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;yCACJ;wCACD,IAAI,EAAE,QAAQ;qCACjB;iCACJ;6BACJ;4BACD,IAAI,EAAE;gCACF,KAAK,EAAE;oCACH;wCACI,WAAW,EACP,kDAAkD;wCACtD,OAAO,EAAE,mBAAmB;wCAC5B,OAAO,EAAE,mBAAmB;wCAC5B,IAAI,EAAE,SAAS;qCAClB;oCACD;wCACI,oBAAoB,EAAE,KAAK;wCAC3B,WAAW,EACP,wDAAwD;wCAC5D,UAAU,EAAE;4CACR,GAAG,EAAE;gDACD,WAAW,EACP,6CAA6C;gDACjD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;4CACD,GAAG,EAAE;gDACD,WAAW,EACP,6CAA6C;gDACjD,OAAO,EAAE,mBAAmB;gDAC5B,OAAO,EAAE,mBAAmB;gDAC5B,IAAI,EAAE,SAAS;6CAClB;yCACJ;wCACD,IAAI,EAAE,QAAQ;qCACjB;iCACJ;6BACJ;yBACJ;wBACD,IAAI,EAAE,QAAQ;qBACjB;iBACJ;gBACD,WAAW,EACP,kEAAkE;aACzE;SACJ;QACD,IAAI,EAAE,YAAY;KACA;CACzB,CAAC;AAEF,eAAe,IAAI,CAAC"}
package/dist/rules/valid-trigger-events.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"valid-trigger-events.d.ts","sourceRoot":"","sources":["../../src/rules/valid-trigger-events.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAWnC,oEAAoE;AACpE,QAAA,MAAM,IAAI,EAAE,IAAI,CAAC,UAyHhB,CAAC;AAEF,eAAe,IAAI,CAAC"}
1
+ {"version":3,"file":"valid-trigger-events.d.ts","sourceRoot":"","sources":["../../src/rules/valid-trigger-events.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAWnC,oEAAoE;AACpE,QAAA,MAAM,IAAI,EAAE,IAAI,CAAC,UA4HhB,CAAC;AAEF,eAAe,IAAI,CAAC"}
package/dist/rules/valid-trigger-events.js CHANGED
@@ -75,6 +75,7 @@ const rule = {
75
75
  };
76
76
  },
77
77
  meta: {
78
+ deprecated: false,
78
79
  docs: {
79
80
  configs: [
80
81
  "github-actions.configs.all",
@@ -82,6 +83,8 @@ const rule = {
82
83
  "github-actions.configs.strict",
83
84
  ],
84
85
  description: "disallow invalid GitHub Actions trigger events under the workflow `on` key.",
86
+ dialects: ["GitHub Actions workflow"],
87
+ frozen: false,
85
88
  recommended: true,
86
89
  requiresTypeChecking: false,
87
90
  ruleId: "R018",
package/dist/rules/valid-trigger-events.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"valid-trigger-events.js","sourceRoot":"","sources":["../../src/rules/valid-trigger-events.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,4BAA4B,EAAE,MAAM,+CAA+C,CAAC;AAC7F,OAAO,EACH,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,eAAe,GAClB,MAAM,+BAA+B,CAAC;AAEvC,oEAAoE;AACpE,MAAM,IAAI,GAAoB;IAC1B,MAAM,CAAC,OAAO;QACV,MAAM,kBAAkB,GAAG,CACvB,IAA4B,EAC5B,SAAiB,EACb,EAAE;YACN,OAAO,CAAC,MAAM,CAAC;gBACX,IAAI,EAAE;oBACF,KAAK,EAAE,SAAS;iBACnB;gBACD,SAAS,EAAE,cAAc;gBACzB,IAAI,EAAE,IAA4B;aACrC,CAAC,CAAC;QACP,CAAC,CAAC;QAEF,OAAO;YACH,OAAO;gBACH,MAAM,IAAI,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;gBAEtC,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAChB,OAAO;gBACX,CAAC;gBAED,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;gBAC1C,MAAM,OAAO,GAAG,eAAe,CAAC,MAAM,EAAE,KAAK,IAAI,IAAI,CAAC,CAAC;gBAEvD,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;oBACnB,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;oBAChC,MAAM,SAAS,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAC;oBAEhD,IACI,SAAS,KAAK,IAAI;wBAClB,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,EAC9C,CAAC;wBACC,kBAAkB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;oBAC3C,CAAC;oBAED,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;oBAClC,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;wBAClC,MAAM,cAAc,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;wBAC9C,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;wBAEvD,IACI,cAAc,KAAK,IAAI;4BACvB,CAAC,SAAS,KAAK,IAAI;gCACf,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,EACnD,CAAC;4BACC,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,KAAK,EAAE,SAAS,IAAI,WAAW;iCAClC;gCACD,SAAS,EACL,SAAS,KAAK,IAAI;oCACd,CAAC,CAAC,mBAAmB;oCACrB,CAAC,CAAC,cAAc;gCACxB,IAAI,EAAE,cAAsC;6BAC/C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;oBAED,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;oBACjC,OAAO,CAAC,MAAM,CAAC;wBACX,SAAS,EAAE,mBAAmB;wBAC9B,IAAI,EAAE,OAA+B;qBACxC,CAAC,CAAC;oBAEH,OAAO;gBACX,CAAC;gBAED,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;oBAC/B,MAAM,SAAS,GAAG,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAEjD,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;wBACrB,OAAO,CAAC,MAAM,CAAC;4BACX,SAAS,EAAE,mBAAmB;4BAC9B,IAAI,EAAE,IAA4B;yBACrC,CAAC,CAAC;wBAEH,SAAS;oBACb,CAAC;oBAED,IAAI,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC;wBAC/C,kBAAkB,CAAC,IAAI,CAAC,GAAmB,EAAE,SAAS,CAAC,CAAC;oBAC5D,CAAC;gBACL,CAAC;YACL,CAAC;SACJ,CAAC;IACN,CAAC;IACD,IAAI,EAAE;QACF,IAAI,EAAE;YACF,OAAO,EAAE;gBACL,4BAA4B;gBAC5B,oCAAoC;gBACpC,+BAA+B;aAClC;YACD,WAAW,EACP,6EAA6E;YACjF,WAAW,EAAE,IAAI;YACjB,oBAAoB,EAAE,KAAK;YAC3B,MAAM,EAAE,MAAM;YACd,UAAU,EAAE,EAAE;YACd,GAAG,EAAE,6FAA6F;SACrG;QACD,QAAQ,EAAE;YACN,YAAY,EACR,wEAAwE;YAC5E,iBAAiB,EACb,oDAAoD;SAC3D;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KACG;CACzB,CAAC;AAEF,eAAe,IAAI,CAAC"}
1
+ {"version":3,"file":"valid-trigger-events.js","sourceRoot":"","sources":["../../src/rules/valid-trigger-events.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,4BAA4B,EAAE,MAAM,+CAA+C,CAAC;AAC7F,OAAO,EACH,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,eAAe,GAClB,MAAM,+BAA+B,CAAC;AAEvC,oEAAoE;AACpE,MAAM,IAAI,GAAoB;IAC1B,MAAM,CAAC,OAAO;QACV,MAAM,kBAAkB,GAAG,CACvB,IAA4B,EAC5B,SAAiB,EACb,EAAE;YACN,OAAO,CAAC,MAAM,CAAC;gBACX,IAAI,EAAE;oBACF,KAAK,EAAE,SAAS;iBACnB;gBACD,SAAS,EAAE,cAAc;gBACzB,IAAI,EAAE,IAA4B;aACrC,CAAC,CAAC;QACP,CAAC,CAAC;QAEF,OAAO;YACH,OAAO;gBACH,MAAM,IAAI,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;gBAEtC,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAChB,OAAO;gBACX,CAAC;gBAED,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;gBAC1C,MAAM,OAAO,GAAG,eAAe,CAAC,MAAM,EAAE,KAAK,IAAI,IAAI,CAAC,CAAC;gBAEvD,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;oBACnB,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;oBAChC,MAAM,SAAS,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAC;oBAEhD,IACI,SAAS,KAAK,IAAI;wBAClB,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,EAC9C,CAAC;wBACC,kBAAkB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;oBAC3C,CAAC;oBAED,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;oBAClC,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;wBAClC,MAAM,cAAc,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;wBAC9C,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;wBAEvD,IACI,cAAc,KAAK,IAAI;4BACvB,CAAC,SAAS,KAAK,IAAI;gCACf,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,EACnD,CAAC;4BACC,OAAO,CAAC,MAAM,CAAC;gCACX,IAAI,EAAE;oCACF,KAAK,EAAE,SAAS,IAAI,WAAW;iCAClC;gCACD,SAAS,EACL,SAAS,KAAK,IAAI;oCACd,CAAC,CAAC,mBAAmB;oCACrB,CAAC,CAAC,cAAc;gCACxB,IAAI,EAAE,cAAsC;6BAC/C,CAAC,CAAC;wBACP,CAAC;oBACL,CAAC;oBAED,OAAO;gBACX,CAAC;gBAED,IAAI,OAAO,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;oBACjC,OAAO,CAAC,MAAM,CAAC;wBACX,SAAS,EAAE,mBAAmB;wBAC9B,IAAI,EAAE,OAA+B;qBACxC,CAAC,CAAC;oBAEH,OAAO;gBACX,CAAC;gBAED,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;oBAC/B,MAAM,SAAS,GAAG,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAEjD,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;wBACrB,OAAO,CAAC,MAAM,CAAC;4BACX,SAAS,EAAE,mBAAmB;4BAC9B,IAAI,EAAE,IAA4B;yBACrC,CAAC,CAAC;wBAEH,SAAS;oBACb,CAAC;oBAED,IAAI,CAAC,4BAA4B,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC;wBAC/C,kBAAkB,CAAC,IAAI,CAAC,GAAmB,EAAE,SAAS,CAAC,CAAC;oBAC5D,CAAC;gBACL,CAAC;YACL,CAAC;SACJ,CAAC;IACN,CAAC;IACD,IAAI,EAAE;QACF,UAAU,EAAE,KAAK;QACjB,IAAI,EAAE;YACF,OAAO,EAAE;gBACL,4BAA4B;gBAC5B,oCAAoC;gBACpC,+BAA+B;aAClC;YACD,WAAW,EACP,6EAA6E;YACjF,QAAQ,EAAE,CAAC,yBAAyB,CAAC;YACrC,MAAM,EAAE,KAAK;YACb,WAAW,EAAE,IAAI;YACjB,oBAAoB,EAAE,KAAK;YAC3B,MAAM,EAAE,MAAM;YACd,UAAU,EAAE,EAAE;YACd,GAAG,EAAE,6FAA6F;SACrG;QACD,QAAQ,EAAE;YACN,YAAY,EACR,wEAAwE;YAC5E,iBAAiB,EACb,oDAAoD;SAC3D;QACD,MAAM,EAAE,EAAE;QACV,IAAI,EAAE,SAAS;KACG;CACzB,CAAC;AAEF,eAAe,IAAI,CAAC"}
package/docs/rules/action-name-casing.md CHANGED
@@ -32,6 +32,9 @@ name: release-pipeline
32
32
 
33
33
  _The second example is valid when the rule is configured for `kebab-case`._
34
34
 
35
+ ## Behavior and migration notes
36
+
37
+ When the rule is configured with exactly one allowed casing, the autofixer rewrites the workflow `name` into that casing. If multiple casings are allowed at once, the rule stays report-only because there is no single unambiguous target format.
35
38
 
36
39
  ## Additional examples
37
40
 
@@ -58,7 +61,8 @@ export default [
58
61
  ## When not to use it
59
62
 
60
63
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
64
+
61
65
  ## Further reading
62
66
 
63
- - [https://docs.github.com/actions/reference/workflows-and-actions/workflow-syntax#name](https://docs.github.com/actions/reference/workflows-and-actions/workflow-syntax#name)
64
- - [https://docs.github.com/actions/monitoring-and-troubleshooting-workflows/using-workflow-run-logs](https://docs.github.com/actions/monitoring-and-troubleshooting-workflows/using-workflow-run-logs)
67
+ - [GitHub Actions workflow syntax: `name`](https://docs.github.com/actions/reference/workflows-and-actions/workflow-syntax#name)
68
+ - [GitHub Actions docs: Using workflow run logs](https://docs.github.com/actions/monitoring-and-troubleshooting-workflows/using-workflow-run-logs)
package/docs/rules/no-codeql-autobuild-for-javascript-typescript.md ADDED
@@ -0,0 +1,55 @@
1
+ # no-codeql-autobuild-for-javascript-typescript
2
+
3
+ > **Rule catalog ID:** R097
4
+
5
+ ## Targeted pattern scope
6
+
7
+ CodeQL workflows that only scan JavaScript/TypeScript.
8
+
9
+ ## What this rule reports
10
+
11
+ This rule reports `github/codeql-action/autobuild` steps when the workflow only scans JavaScript/TypeScript.
12
+
13
+ ## Why this rule exists
14
+
15
+ CodeQL does not need a build step for JavaScript/TypeScript analysis. Keeping `autobuild` in JS/TS-only workflows adds noise and can mislead maintainers into thinking a compiled-language build is required.
16
+
17
+ ## ❌ Incorrect
18
+
19
+ ```yaml
20
+ - uses: github/codeql-action/init@v4
21
+ with:
22
+ languages: javascript-typescript
23
+
24
+ - uses: github/codeql-action/autobuild@v4
25
+ ```
26
+
27
+ ## ✅ Correct
28
+
29
+ ```yaml
30
+ - uses: github/codeql-action/init@v4
31
+ with:
32
+ languages: javascript-typescript
33
+
34
+ - uses: github/codeql-action/analyze@v4
35
+ ```
36
+
37
+ ## Additional examples
38
+
39
+ If a repository later adds a compiled language to the same CodeQL job, this rule will stop reporting as long as the workflow language set is no longer JS/TS-only.
40
+
41
+ ## ESLint flat config example
42
+
43
+ ```ts
44
+ import githubActions from "eslint-plugin-github-actions-2";
45
+
46
+ export default [githubActions.configs.codeScanning];
47
+ ```
48
+
49
+ ## When not to use it
50
+
51
+ Disable this rule if a repository intentionally keeps `autobuild` in place as documentation despite it being unnecessary for JS/TS analysis.
52
+
53
+ ## Further reading
54
+
55
+ - [Preparing your code for CodeQL analysis](https://docs.github.com/en/code-security/code-scanning/using-codeql-code-scanning-with-your-existing-ci-system/configuring-codeql-cli-in-your-ci-system)
package/docs/rules/no-codeql-javascript-typescript-split-language-matrix.md ADDED
@@ -0,0 +1,51 @@
1
+ # no-codeql-javascript-typescript-split-language-matrix
2
+
3
+ > **Rule catalog ID:** R096
4
+
5
+ ## Targeted pattern scope
6
+
7
+ CodeQL workflow jobs that use a `strategy.matrix.language` list.
8
+
9
+ ## What this rule reports
10
+
11
+ This rule reports CodeQL workflows that split JavaScript and TypeScript into separate matrix values.
12
+
13
+ ## Why this rule exists
14
+
15
+ CodeQL treats JavaScript and TypeScript as the same extractor family. Using separate `javascript` and `typescript` matrix entries is redundant and makes the workflow look more language-specific than it really is.
16
+
17
+ ## ❌ Incorrect
18
+
19
+ ```yaml
20
+ strategy:
21
+ matrix:
22
+ language: ["javascript", "typescript"]
23
+ ```
24
+
25
+ ## ✅ Correct
26
+
27
+ ```yaml
28
+ strategy:
29
+ matrix:
30
+ language: ["javascript-typescript"]
31
+ ```
32
+
33
+ ## Additional examples
34
+
35
+ This rule is deliberately narrow: it focuses on the common JS/TS split-matrix mistake rather than trying to rewrite every possible CodeQL language expression.
36
+
37
+ ## ESLint flat config example
38
+
39
+ ```ts
40
+ import githubActions from "eslint-plugin-github-actions-2";
41
+
42
+ export default [githubActions.configs.codeScanning];
43
+ ```
44
+
45
+ ## When not to use it
46
+
47
+ Disable this rule only if your repository intentionally prefers the redundant split for human readability and accepts the extra workflow noise.
48
+
49
+ ## Further reading
50
+
51
+ - [About code scanning with CodeQL](https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning-with-codeql)
package/docs/rules/no-empty-template-file-pattern.md CHANGED
@@ -26,6 +26,9 @@ Template matching requires meaningful regex patterns.
26
26
  { "filePatterns": ["package.json$"] }
27
27
  ```
28
28
 
29
+ ## Behavior and migration notes
30
+
31
+ The autofixer removes empty or whitespace-only entries from the `filePatterns` array while preserving the remaining valid items. If the array only contains invalid entries, the fix leaves an empty array behind so you can add the intended patterns explicitly.
29
32
 
30
33
  ## Additional examples
31
34
 
@@ -52,6 +55,7 @@ export default [
52
55
  ## When not to use it
53
56
 
54
57
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
58
+
55
59
  ## Further reading
56
60
 
57
- - [https://www.schemastore.org/github-workflow-template-properties.json](https://www.schemastore.org/github-workflow-template-properties.json)
61
+ - [SchemaStore: GitHub workflow template properties schema](https://www.schemastore.org/github-workflow-template-properties.json)
package/docs/rules/no-icon-file-extension-in-template-icon-name.md CHANGED
@@ -26,6 +26,9 @@ Template icon names should be bare icon identifiers, not filenames with extensio
26
26
  { "iconName": "workflow" }
27
27
  ```
28
28
 
29
+ ## Behavior and migration notes
30
+
31
+ The autofixer removes a trailing `.svg` suffix from `iconName`. It does not try to normalize any other part of the value, so path segments or different file extensions are still left for other rules or manual review.
29
32
 
30
33
  ## Additional examples
31
34
 
@@ -52,6 +55,7 @@ export default [
52
55
  ## When not to use it
53
56
 
54
57
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
58
+
55
59
  ## Further reading
56
60
 
57
- - [https://docs.github.com/actions/reference/workflows-and-actions/reusing-workflow-configurations#metadata-file-requirements](https://docs.github.com/actions/reference/workflows-and-actions/reusing-workflow-configurations#metadata-file-requirements)
61
+ - [GitHub Actions docs: Workflow template metadata file requirements](https://docs.github.com/actions/reference/workflows-and-actions/reusing-workflow-configurations#metadata-file-requirements)
package/docs/rules/no-overlapping-dependabot-directories.md ADDED
@@ -0,0 +1,87 @@
1
+ # no-overlapping-dependabot-directories
2
+
3
+ > **Rule catalog ID:** R095
4
+
5
+ ## Targeted pattern scope
6
+
7
+ Dependabot directory selectors declared by `directory` or `directories` for update entries that share the same package ecosystem and effective target branch.
8
+
9
+ ## What this rule reports
10
+
11
+ This rule reports guaranteed overlaps between directory selectors for the same package ecosystem and target branch.
12
+
13
+ It intentionally focuses on high-confidence overlaps such as:
14
+
15
+ - duplicate exact selectors
16
+ - exact selectors matched by a glob selector in another update entry
17
+
18
+ ## Why this rule exists
19
+
20
+ GitHub recommends avoiding overlapping directory definitions when you split one ecosystem across multiple Dependabot update entries. Overlaps can cause ambiguous ownership of manifest locations and make configuration review harder.
21
+
22
+ ## ❌ Incorrect
23
+
24
+ ```yaml
25
+ version: 2
26
+ updates:
27
+ - package-ecosystem: "npm"
28
+ directory: "/"
29
+ schedule:
30
+ interval: "weekly"
31
+
32
+ - package-ecosystem: "npm"
33
+ directory: "/"
34
+ schedule:
35
+ interval: "weekly"
36
+ ```
37
+
38
+ ```yaml
39
+ version: 2
40
+ updates:
41
+ - package-ecosystem: "npm"
42
+ directories:
43
+ - "/packages/*"
44
+ schedule:
45
+ interval: "weekly"
46
+
47
+ - package-ecosystem: "npm"
48
+ directory: "/packages/app"
49
+ schedule:
50
+ interval: "weekly"
51
+ ```
52
+
53
+ ## ✅ Correct
54
+
55
+ ```yaml
56
+ version: 2
57
+ updates:
58
+ - package-ecosystem: "npm"
59
+ directory: "/"
60
+ schedule:
61
+ interval: "weekly"
62
+
63
+ - package-ecosystem: "npm"
64
+ directory: "/docs/docusaurus"
65
+ schedule:
66
+ interval: "weekly"
67
+ ```
68
+
69
+ ## Additional examples
70
+
71
+ This rule compares entries only within the same package ecosystem and target branch, so separate ecosystems can still reuse the same directory string without triggering a report.
72
+
73
+ ## ESLint flat config example
74
+
75
+ ```ts
76
+ import githubActions from "eslint-plugin-github-actions-2";
77
+
78
+ export default [githubActions.configs.dependabot];
79
+ ```
80
+
81
+ ## When not to use it
82
+
83
+ Disable this rule if the repository intentionally uses overlapping selectors and accepts the maintenance ambiguity that comes with them.
84
+
85
+ ## Further reading
86
+
87
+ - [Dependabot options reference: directories or directory](https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#directories-or-directory--)
package/docs/rules/no-path-separators-in-template-icon-name.md CHANGED
@@ -26,6 +26,9 @@ Reports `iconName` values containing `/` or `\\`.
26
26
  { "iconName": "workflow" }
27
27
  ```
28
28
 
29
+ ## Behavior and migration notes
30
+
31
+ This rule intentionally provides a suggestion instead of an autofix. When the value looks like a path such as `icons/workflow`, the suggestion offers the basename (`workflow`) as the likely icon token. Review the suggestion before applying it in case the path encoded additional meaning you want to preserve elsewhere.
29
32
 
30
33
  ## Additional examples
31
34
 
@@ -52,6 +55,7 @@ export default [
52
55
  ## When not to use it
53
56
 
54
57
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
58
+
55
59
  ## Further reading
56
60
 
57
- - [https://www.schemastore.org/github-workflow-template-properties.json](https://www.schemastore.org/github-workflow-template-properties.json)
61
+ - [SchemaStore: GitHub workflow template properties schema](https://www.schemastore.org/github-workflow-template-properties.json)
package/docs/rules/no-post-if-without-post.md CHANGED
@@ -33,6 +33,9 @@ runs:
33
33
  post-if: runner.os == 'Linux'
34
34
  ```
35
35
 
36
+ ## Behavior and migration notes
37
+
38
+ The autofixer removes the orphaned `runs.post-if` line because that key has no effect without `runs.post`. If you intended a guarded cleanup hook, add `runs.post` manually instead of relying on the fix alone.
36
39
 
37
40
  ## Additional examples
38
41
 
@@ -59,6 +62,7 @@ export default [
59
62
  ## When not to use it
60
63
 
61
64
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
65
+
62
66
  ## Further reading
63
67
 
64
- - [https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions)
68
+ - [GitHub Actions metadata syntax: `runs` for JavaScript actions](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions)
package/docs/rules/no-pre-if-without-pre.md CHANGED
@@ -33,6 +33,9 @@ runs:
33
33
  main: dist/index.js
34
34
  ```
35
35
 
36
+ ## Behavior and migration notes
37
+
38
+ The autofixer removes the orphaned `runs.pre-if` line because that key has no effect without `runs.pre`. If you meant to run setup conditionally, add the missing `runs.pre` hook after applying the fix.
36
39
 
37
40
  ## Additional examples
38
41
 
@@ -59,6 +62,7 @@ export default [
59
62
  ## When not to use it
60
63
 
61
64
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
65
+
62
66
  ## Further reading
63
67
 
64
- - [https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions)
68
+ - [GitHub Actions metadata syntax: `runs` for JavaScript actions](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#runs-for-javascript-actions)
package/docs/rules/no-required-input-with-default.md CHANGED
@@ -33,6 +33,14 @@ inputs:
33
33
  required: true
34
34
  ```
35
35
 
36
+ ## Behavior and migration notes
37
+
38
+ This rule offers two suggestions rather than an autofix because both outcomes can be valid:
39
+
40
+ - remove `required: true` and keep the default value, or
41
+ - remove the default value and keep the input required.
42
+
43
+ Choose the suggestion that matches how callers are meant to supply the input.
36
44
 
37
45
  ## Additional examples
38
46
 
@@ -59,6 +67,7 @@ export default [
59
67
  ## When not to use it
60
68
 
61
69
  You can disable this rule when its policy does not match your repository standards, or when equivalent enforcement is already handled by another policy tool.
70
+
62
71
  ## Further reading
63
72
 
64
- - [https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#inputs](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#inputs)
73
+ - [GitHub Actions metadata syntax: `inputs`](https://docs.github.com/actions/reference/workflows-and-actions/metadata-syntax#inputs)
package/docs/rules/no-unknown-dependabot-multi-ecosystem-group.md ADDED
@@ -0,0 +1,62 @@
1
+ # no-unknown-dependabot-multi-ecosystem-group
2
+
3
+ > **Rule catalog ID:** R081
4
+
5
+ ## Targeted pattern scope
6
+
7
+ Dependabot `updates[*].multi-ecosystem-group` references in `.github/dependabot.yml` files.
8
+
9
+ ## What this rule reports
10
+
11
+ This rule reports update entries that reference a `multi-ecosystem-group` name that is not declared under the top-level `multi-ecosystem-groups` mapping.
12
+
13
+ ## Why this rule exists
14
+
15
+ A missing group definition is a configuration bug, not just a style preference. When the referenced group does not exist, inherited settings such as schedule, labels, assignees, and target branch cannot resolve correctly, and later rule failures become noisy symptoms instead of the real root cause.
16
+
17
+ ## ❌ Incorrect
18
+
19
+ ```yaml
20
+ version: 2
21
+ updates:
22
+ - package-ecosystem: "npm"
23
+ directory: "/"
24
+ multi-ecosystem-group: "app"
25
+ ```
26
+
27
+ ## ✅ Correct
28
+
29
+ ```yaml
30
+ version: 2
31
+ multi-ecosystem-groups:
32
+ app:
33
+ schedule:
34
+ interval: "weekly"
35
+
36
+ updates:
37
+ - package-ecosystem: "npm"
38
+ directory: "/"
39
+ multi-ecosystem-group: "app"
40
+ patterns: ["*"]
41
+ ```
42
+
43
+ ## Additional examples
44
+
45
+ This rule is especially helpful when a group is renamed and not every update entry is migrated in the same commit.
46
+
47
+ ## ESLint flat config example
48
+
49
+ ```ts
50
+ import githubActions from "eslint-plugin-github-actions-2";
51
+
52
+ export default [githubActions.configs.dependabot];
53
+ ```
54
+
55
+ ## When not to use it
56
+
57
+ Disable this rule only if Dependabot files are validated by a stricter schema-aware tool before lint runs.
58
+
59
+ ## Further reading
60
+
61
+ - [Configuring multi-ecosystem updates for Dependabot](https://docs.github.com/en/code-security/tutorials/secure-your-dependencies/configuring-multi-ecosystem-updates)
62
+ - [Dependabot options reference: multi-ecosystem-groups](https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#multi-ecosystem-groups-)
package/docs/rules/no-unused-dependabot-enable-beta-ecosystems.md ADDED
@@ -0,0 +1,63 @@
1
+ # no-unused-dependabot-enable-beta-ecosystems
2
+
3
+ > **Rule catalog ID:** R085
4
+
5
+ ## Targeted pattern scope
6
+
7
+ Top-level Dependabot configuration keys in `.github/dependabot.yml`.
8
+
9
+ ## What this rule reports
10
+
11
+ This rule reports the top-level `enable-beta-ecosystems` key whenever it is present.
12
+
13
+ ## Why this rule exists
14
+
15
+ GitHub currently documents `enable-beta-ecosystems` as "not currently in use." Keeping it in the file suggests behavior that Dependabot does not actually honor, which adds noise and misleads maintainers reviewing the configuration.
16
+
17
+ ## ❌ Incorrect
18
+
19
+ ```yaml
20
+ version: 2
21
+ enable-beta-ecosystems: true
22
+ updates:
23
+ - package-ecosystem: "npm"
24
+ directory: "/"
25
+ schedule:
26
+ interval: "weekly"
27
+ ```
28
+
29
+ ## ✅ Correct
30
+
31
+ ```yaml
32
+ version: 2
33
+ updates:
34
+ - package-ecosystem: "npm"
35
+ directory: "/"
36
+ schedule:
37
+ interval: "weekly"
38
+ ```
39
+
40
+ ## Behavior and migration notes
41
+
42
+ The autofixer removes the top-level `enable-beta-ecosystems` key entirely. That is safe because GitHub currently documents the setting as unused, so keeping it only adds noise to the file.
43
+
44
+ ## Additional examples
45
+
46
+ This rule is especially helpful in repositories that were initialized from older Dependabot snippets and still carry forward unused top-level keys.
47
+
48
+ ## ESLint flat config example
49
+
50
+ ```ts
51
+ import githubActions from "eslint-plugin-github-actions-2";
52
+
53
+ export default [githubActions.configs.dependabot];
54
+ ```
55
+
56
+ ## When not to use it
57
+
58
+ Disable this rule only if GitHub later gives `enable-beta-ecosystems` active behavior and the repository intentionally adopts that updated contract before this plugin is updated.
59
+
60
+ ## Further reading
61
+
62
+ - [Dependabot options reference: enable-beta-ecosystems](https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference#enable-beta-ecosystems-)
63
+ - [Dependabot options reference](https://docs.github.com/en/code-security/reference/supply-chain-security/dependabot-options-reference)
package/docs/rules/overview.md CHANGED
@@ -1,6 +1,6 @@
1
1
  # Rule overview
2
2
 
3
- `eslint-plugin-github-actions-2` targets GitHub Actions workflow YAML files, action metadata files (`action.yml` / `action.yaml`), and workflow-template package files under `workflow-templates/`.
3
+ `eslint-plugin-github-actions-2` targets GitHub Actions workflow YAML files, action metadata files (`action.yml` / `action.yaml`), repository Dependabot configuration files (`.github/dependabot.yml`), and workflow-template package files under `workflow-templates/`.
4
4
 
5
5
  New to the plugin? Start with [Getting started](./getting-started.md). Need
6
6
  config guidance? See the [preset reference](./presets/index.md). Looking for a
@@ -17,6 +17,7 @@ specific check? Jump to [Current rules](#current-rules).
17
17
  - **Reusable workflow hygiene**: explicit checkout ordering, narrowly scoped secret passing, and valid reusable-workflow caller job keys
18
18
  - **Workflow safety**: safer conditional secret handling, untrusted-script handling, scoped workflow chaining, safer privileged PR automation, fork-triggered self-hosted runner hardening, and scoped privileged PR targets
19
19
  - **Trigger precision**: explicit activity-type scoping for broad multi-activity events and merge-queue-aware pull request validation
20
+ - **Dependency automation**: required Dependabot keys, explicit schedules, PR routing, labels, ownership, and commit-title conventions
20
21
 
21
22
  ## Current rules
22
23
 
@@ -28,6 +29,8 @@ specific check? Jump to [Current rules](#current-rules).
28
29
  - [`job-id-casing`](./job-id-casing.md)
29
30
  - [`max-jobs-per-action`](./max-jobs-per-action.md)
30
31
  - [`no-case-insensitive-input-id-collision`](./no-case-insensitive-input-id-collision.md)
32
+ - [`no-codeql-autobuild-for-javascript-typescript`](./no-codeql-autobuild-for-javascript-typescript.md)
33
+ - [`no-codeql-javascript-typescript-split-language-matrix`](./no-codeql-javascript-typescript-split-language-matrix.md)
31
34
  - [`no-composite-input-env-access`](./no-composite-input-env-access.md)
32
35
  - [`no-deprecated-node-runtime`](./no-deprecated-node-runtime.md)
33
36
  - [`no-duplicate-composite-step-id`](./no-duplicate-composite-step-id.md)
@@ -41,6 +44,7 @@ specific check? Jump to [Current rules](#current-rules).
41
44
  - [`no-invalid-reusable-workflow-job-key`](./no-invalid-reusable-workflow-job-key.md)
42
45
  - [`no-invalid-template-file-pattern-regex`](./no-invalid-template-file-pattern-regex.md)
43
46
  - [`no-invalid-workflow-call-output-value`](./no-invalid-workflow-call-output-value.md)
47
+ - [`no-overlapping-dependabot-directories`](./no-overlapping-dependabot-directories.md)
44
48
  - [`no-path-separators-in-template-icon-name`](./no-path-separators-in-template-icon-name.md)
45
49
  - [`no-post-if-without-post`](./no-post-if-without-post.md)
46
50
  - [`no-pr-head-checkout-in-pull-request-target`](./no-pr-head-checkout-in-pull-request-target.md)
@@ -52,6 +56,8 @@ specific check? Jump to [Current rules](#current-rules).
52
56
  - [`no-template-placeholder-in-non-template-workflow`](./no-template-placeholder-in-non-template-workflow.md)
53
57
  - [`no-top-level-env`](./no-top-level-env.md)
54
58
  - [`no-top-level-permissions`](./no-top-level-permissions.md)
59
+ - [`no-unused-dependabot-enable-beta-ecosystems`](./no-unused-dependabot-enable-beta-ecosystems.md)
60
+ - [`no-unknown-dependabot-multi-ecosystem-group`](./no-unknown-dependabot-multi-ecosystem-group.md)
55
61
  - [`no-universal-template-file-pattern`](./no-universal-template-file-pattern.md)
56
62
  - [`no-unknown-input-reference-in-composite`](./no-unknown-input-reference-in-composite.md)
57
63
  - [`no-unknown-job-output-reference`](./no-unknown-job-output-reference.md)
@@ -68,12 +74,51 @@ specific check? Jump to [Current rules](#current-rules).
68
74
  - [`require-action-name`](./require-action-name.md)
69
75
  - [`require-action-run-name`](./require-action-run-name.md)
70
76
  - [`require-checkout-before-local-action`](./require-checkout-before-local-action.md)
77
+ - [`require-codeql-actions-read`](./require-codeql-actions-read.md)
78
+ - [`require-codeql-branch-filters`](./require-codeql-branch-filters.md)
79
+ - [`require-codeql-category-when-language-matrix`](./require-codeql-category-when-language-matrix.md)
80
+ - [`require-codeql-pull-request-trigger`](./require-codeql-pull-request-trigger.md)
81
+ - [`require-codeql-schedule`](./require-codeql-schedule.md)
82
+ - [`require-codeql-security-events-write`](./require-codeql-security-events-write.md)
71
83
  - [`require-composite-step-name`](./require-composite-step-name.md)
84
+ - [`require-dependabot-automation-permissions`](./require-dependabot-automation-permissions.md)
85
+ - [`require-dependabot-automation-pull-request-trigger`](./require-dependabot-automation-pull-request-trigger.md)
86
+ - [`require-dependabot-assignees`](./require-dependabot-assignees.md)
87
+ - [`require-dependabot-bot-actor-guard`](./require-dependabot-bot-actor-guard.md)
88
+ - [`require-dependabot-commit-message-include-scope`](./require-dependabot-commit-message-include-scope.md)
89
+ - [`require-dependabot-commit-message-prefix`](./require-dependabot-commit-message-prefix.md)
90
+ - [`require-dependabot-commit-message-prefix-development`](./require-dependabot-commit-message-prefix-development.md)
91
+ - [`require-dependabot-cooldown`](./require-dependabot-cooldown.md)
92
+ - [`require-dependabot-directory`](./require-dependabot-directory.md)
93
+ - [`require-dependabot-github-actions-directory-root`](./require-dependabot-github-actions-directory-root.md)
94
+ - [`require-dependabot-labels`](./require-dependabot-labels.md)
95
+ - [`require-dependabot-open-pull-requests-limit`](./require-dependabot-open-pull-requests-limit.md)
96
+ - [`require-dependabot-package-ecosystem`](./require-dependabot-package-ecosystem.md)
97
+ - [`require-dependabot-patterns-for-multi-ecosystem-group`](./require-dependabot-patterns-for-multi-ecosystem-group.md)
98
+ - [`require-dependabot-schedule-cronjob`](./require-dependabot-schedule-cronjob.md)
99
+ - [`require-dependabot-schedule-interval`](./require-dependabot-schedule-interval.md)
100
+ - [`require-dependabot-schedule-time`](./require-dependabot-schedule-time.md)
101
+ - [`require-dependabot-schedule-timezone`](./require-dependabot-schedule-timezone.md)
102
+ - [`require-dependabot-target-branch`](./require-dependabot-target-branch.md)
103
+ - [`require-dependabot-updates`](./require-dependabot-updates.md)
104
+ - [`require-dependabot-version`](./require-dependabot-version.md)
105
+ - [`require-dependabot-versioning-strategy-for-npm`](./require-dependabot-versioning-strategy-for-npm.md)
106
+ - [`require-dependency-review-action`](./require-dependency-review-action.md)
107
+ - [`require-dependency-review-fail-on-severity`](./require-dependency-review-fail-on-severity.md)
108
+ - [`require-dependency-review-permissions-contents-read`](./require-dependency-review-permissions-contents-read.md)
109
+ - [`require-dependency-review-pull-request-trigger`](./require-dependency-review-pull-request-trigger.md)
110
+ - [`require-fetch-metadata-github-token`](./require-fetch-metadata-github-token.md)
72
111
  - [`require-job-name`](./require-job-name.md)
73
112
  - [`require-job-step-name`](./require-job-step-name.md)
74
113
  - [`require-merge-group-trigger`](./require-merge-group-trigger.md)
75
114
  - [`require-pull-request-target-branches`](./require-pull-request-target-branches.md)
76
115
  - [`require-run-step-shell`](./require-run-step-shell.md)
116
+ - [`require-sarif-upload-security-events-write`](./require-sarif-upload-security-events-write.md)
117
+ - [`require-scorecard-results-format-sarif`](./require-scorecard-results-format-sarif.md)
118
+ - [`require-scorecard-upload-sarif-step`](./require-scorecard-upload-sarif-step.md)
119
+ - [`require-secret-scan-contents-read`](./require-secret-scan-contents-read.md)
120
+ - [`require-secret-scan-fetch-depth-zero`](./require-secret-scan-fetch-depth-zero.md)
121
+ - [`require-secret-scan-schedule`](./require-secret-scan-schedule.md)
77
122
  - [`require-template-categories`](./require-template-categories.md)
78
123
  - [`require-template-file-patterns`](./require-template-file-patterns.md)
79
124
  - [`require-template-icon-file-exists`](./require-template-icon-file-exists.md)
@@ -87,5 +132,6 @@ specific check? Jump to [Current rules](#current-rules).
87
132
  - [`require-workflow-run-branches`](./require-workflow-run-branches.md)
88
133
  - [`require-workflow-template-pair`](./require-workflow-template-pair.md)
89
134
  - [`require-workflow-template-properties-pair`](./require-workflow-template-properties-pair.md)
135
+ - [`require-trufflehog-verified-results-mode`](./require-trufflehog-verified-results-mode.md)
90
136
  - [`valid-timeout-minutes`](./valid-timeout-minutes.md)
91
137
  - [`valid-trigger-events`](./valid-trigger-events.md)