codecov/codecov-action
1
0
Fork 0
mirror of https://github.com/codecov/codecov-action.git synced 2026-06-29 10:27:04 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: codecov:th/add-repo-checkout
Branches Tags
codecov:main codecov:v5.x codecov:dependabot/github_actions/actions/checkout-6.0.3 codecov:dependabot/github_actions/github/codeql-action-4.36.2 codecov:dependabot/github_actions/actions/upload-artifact-7.0.1 codecov:dependabot/github_actions/actions/github-script-9.0.0 codecov:fix/dirty-git-state-and-gpg-import codecov:dependabot/github_actions/ossf/scorecard-action-2.4.3 codecov:th/add-repo-checkout codecov:release/wrapper/0.2.2 codecov:th/release-5.5.0 codecov:release/wrapper/0.2.0 codecov:release/wrapper/0.0.34 codecov:release/wrapper/0.0.33 codecov:th/test-skip-validation codecov:release/wrapper/0.0.32 codecov:th/bump-scripts-and-logging codecov:th/fix-exiting codecov:tony/test-upload-coverage-wrapper codecov:th/fix-readme-formatting codecov:th/test codecov:release/wrapper/0.0.26 codecov:release/wrapper/0.0.25 codecov:th/do-not-merge codecov:release/wrapper/0.0.24 codecov:release/wrapper/0.0.23 codecov:v3 codecov:3.x codecov:snyk-fix-801131c752fa26ddd6a0256378a7dffa codecov:thomasrockhu-patch-1 codecov:fail-ci-test codecov:1.3.2 codecov:working-dir-fix codecov:1.1.0 codecov:update-name-default codecov:timeouts codecov:test-action codecov:retry-bash codecov:branch-support codecov:add-fail-input codecov:node-action
codecov:v5 codecov:v5.5.5 codecov:v6.0.2 codecov:v6 codecov:v7.0.0 codecov:v7 codecov:v6.0.1 codecov:v6.0.0 codecov:v5.5.4 codecov:v5.5.3 codecov:v5.5.2 codecov:v5.5.1 codecov:v5.5.0 codecov:v5.4.3 codecov:v5.4.2 codecov:v5.4.1 codecov:v5.4.1-beta codecov:v5.4.0 codecov:v5.3.1 codecov:v5.3.0 codecov:v5.2.0 codecov:v5.1.2 codecov:v5.1.1 codecov:v5.1.0 codecov:v5.0.7 codecov:v5.0.6 codecov:v5.0.5 codecov:v5.0.4 codecov:v5.0.3 codecov:v5.0.2 codecov:v5.0.1 codecov:v5.0.0 codecov:v5.0.0-beta codecov:v5-beta codecov:v4.6.0 codecov:v4 codecov:v4.5.0 codecov:v4.4.1 codecov:v4.4.0 codecov:v4.3.1 codecov:v4.3.0 codecov:v4.2.0 codecov:v4.1.1 codecov:v4.1.0 codecov:v4.0.2 codecov:v4.0.1 codecov:v4.0.0 codecov:v3.1.6 codecov:v3 codecov:v3.1.5 codecov:v4.0.0-beta.3 codecov:v4-beta codecov:v4.0.0-beta.2 codecov:v4.0.0-beta.1 codecov:v3.1.4 codecov:v3.1.3 codecov:v3.1.2 codecov:v3.1.1 codecov:v3.1.0 codecov:v3.0.0 codecov:v2.1.0 codecov:v2 codecov:v2.0.3 codecov:v2.0.2 codecov:v2.0.1 codecov:v2.0.0 codecov:2.0.0 codecov:v1.5.2 codecov:v1 codecov:v1.5.1 codecov:v1.5.0 codecov:v1.4.1 codecov:v1.4.0 codecov:v1.3.2 codecov:v1.3.1 codecov:v1.3.0 codecov:v1.2.2 codecov:v1.2.1 codecov:v1.2.0 codecov:v1.1.1 codecov:v1.1.0 codecov:v1.0.15 codecov:v1.0.14 codecov:v1.0.13 codecov:v1.0.12 codecov:v1.0.11 codecov:v1.0.10 codecov:v1.0.9 codecov:v1.0.8 codecov:v1.0.7 codecov:v1.0.6 codecov:v1.0.5 codecov:v1.0.4 codecov:v1.0.3 codecov:v1.0.2 codecov:v1.0.1 codecov:1.0.1 codecov:v1.0.0 codecov:v0.5.1 codecov:v0.5 codecov:v0.4.1 codecov:v0.4 codecov:v0.3 codecov:v0.2.1 codecov:v0.2 codecov:v0.1
..
compare: codecov:dependabot/github_actions/actions/checkout-6.0.3
Branches Tags
codecov:v5.x codecov:dependabot/github_actions/actions/checkout-6.0.3 codecov:dependabot/github_actions/github/codeql-action-4.36.2 codecov:main codecov:dependabot/github_actions/actions/upload-artifact-7.0.1 codecov:dependabot/github_actions/actions/github-script-9.0.0 codecov:fix/dirty-git-state-and-gpg-import codecov:dependabot/github_actions/ossf/scorecard-action-2.4.3 codecov:th/add-repo-checkout codecov:release/wrapper/0.2.2 codecov:th/release-5.5.0 codecov:release/wrapper/0.2.0 codecov:release/wrapper/0.0.34 codecov:release/wrapper/0.0.33 codecov:th/test-skip-validation codecov:release/wrapper/0.0.32 codecov:th/bump-scripts-and-logging codecov:th/fix-exiting codecov:tony/test-upload-coverage-wrapper codecov:th/fix-readme-formatting codecov:th/test codecov:release/wrapper/0.0.26 codecov:release/wrapper/0.0.25 codecov:th/do-not-merge codecov:release/wrapper/0.0.24 codecov:release/wrapper/0.0.23 codecov:v3 codecov:3.x codecov:snyk-fix-801131c752fa26ddd6a0256378a7dffa codecov:thomasrockhu-patch-1 codecov:fail-ci-test codecov:1.3.2 codecov:working-dir-fix codecov:1.1.0 codecov:update-name-default codecov:timeouts codecov:test-action codecov:retry-bash codecov:branch-support codecov:add-fail-input codecov:node-action
codecov:v5 codecov:v5.5.5 codecov:v6.0.2 codecov:v6 codecov:v7.0.0 codecov:v7 codecov:v6.0.1 codecov:v6.0.0 codecov:v5.5.4 codecov:v5.5.3 codecov:v5.5.2 codecov:v5.5.1 codecov:v5.5.0 codecov:v5.4.3 codecov:v5.4.2 codecov:v5.4.1 codecov:v5.4.1-beta codecov:v5.4.0 codecov:v5.3.1 codecov:v5.3.0 codecov:v5.2.0 codecov:v5.1.2 codecov:v5.1.1 codecov:v5.1.0 codecov:v5.0.7 codecov:v5.0.6 codecov:v5.0.5 codecov:v5.0.4 codecov:v5.0.3 codecov:v5.0.2 codecov:v5.0.1 codecov:v5.0.0 codecov:v5.0.0-beta codecov:v5-beta codecov:v4.6.0 codecov:v4 codecov:v4.5.0 codecov:v4.4.1 codecov:v4.4.0 codecov:v4.3.1 codecov:v4.3.0 codecov:v4.2.0 codecov:v4.1.1 codecov:v4.1.0 codecov:v4.0.2 codecov:v4.0.1 codecov:v4.0.0 codecov:v3.1.6 codecov:v3 codecov:v3.1.5 codecov:v4.0.0-beta.3 codecov:v4-beta codecov:v4.0.0-beta.2 codecov:v4.0.0-beta.1 codecov:v3.1.4 codecov:v3.1.3 codecov:v3.1.2 codecov:v3.1.1 codecov:v3.1.0 codecov:v3.0.0 codecov:v2.1.0 codecov:v2 codecov:v2.0.3 codecov:v2.0.2 codecov:v2.0.1 codecov:v2.0.0 codecov:2.0.0 codecov:v1.5.2 codecov:v1 codecov:v1.5.1 codecov:v1.5.0 codecov:v1.4.1 codecov:v1.4.0 codecov:v1.3.2 codecov:v1.3.1 codecov:v1.3.0 codecov:v1.2.2 codecov:v1.2.1 codecov:v1.2.0 codecov:v1.1.1 codecov:v1.1.0 codecov:v1.0.15 codecov:v1.0.14 codecov:v1.0.13 codecov:v1.0.12 codecov:v1.0.11 codecov:v1.0.10 codecov:v1.0.9 codecov:v1.0.8 codecov:v1.0.7 codecov:v1.0.6 codecov:v1.0.5 codecov:v1.0.4 codecov:v1.0.3 codecov:v1.0.2 codecov:v1.0.1 codecov:1.0.1 codecov:v1.0.0 codecov:v0.5.1 codecov:v0.5 codecov:v0.4.1 codecov:v0.4 codecov:v0.3 codecov:v0.2.1 codecov:v0.2 codecov:v0.1

14 Commits
th/add-rep ... dependabot

Author SHA1 Message Date
dependabot[bot]
a012917a57 build(deps): bump actions/checkout from 5.0.0 to 6.0.3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.0 to 6.0.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5.0.0...v6.0.3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-08 04:42:31 +00:00
Tom Hu
fb8b3582c8 chore(release): 7.0.0 (#1957) 
Bump the wrapper submodule (src/scripts) to the latest main
(bad8df5), which fetches the Codecov Uploader PGP key from the
codecovsecops Keybase account, and cut a new major version.

Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-06-06 20:43:45 -05:00
Tom Hu
ca0a928a4c ci: remove Enforce License Compliance workflow (#1950) 
Removes the Enforce License Compliance GitHub Actions workflow.
 2026-05-22 06:26:10 -06:00
Tom Hu
e79a6962e0 chore(release): 6.0.1 (#1949) 2026-05-19 03:35:56 +09:00
Tom Hu
51e64229ac fix: prevent template injection in run: steps (VULN-1652) (#1947) 
Replace direct ${{ inputs.skip_validation }}, ${{ inputs.use_oidc }},
${{ inputs.token }}, and ${{ env.CODECOV_TOKEN }} interpolation inside
run: shell scripts with env-var indirection. GitHub Actions resolves
template expressions before the shell sees the script, so any consumer
workflow that passes user-controlled data into these inputs could
achieve arbitrary command execution on the runner. Moving the values
into env: entries and referencing them as $INPUT_* shell variables
ensures the shell always treats them as data, not code.
 2026-05-14 03:59:22 +09:00
Tom Hu
57e3a136b7 Th/6.0.0 (#1928) 
* chore(release): 5.5.4

* chore(release): 6.0.0

* fix: small fixes

---------

Co-authored-by: Tom Hu <tomhu1096@gmail.com>
 2026-03-26 23:00:19 +09:00
Tom Hu
f67d33dda8 Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0"" (#1929) 
Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" …"

This reverts commit 87d39f4a2c.
 2026-03-26 22:54:10 +09:00
Tom Hu
75cd11691c chore(release): 5.5.4 (#1927) 
Co-authored-by: Tom Hu <tomhu1096@gmail.com>
 2026-03-26 22:45:27 +09:00
Tom Hu
87d39f4a2c Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" (#1926) 
Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#1874)"

This reverts commit c143300dea.
 2026-03-26 22:45:05 +09:00
Tom Hu
1af58845a9 chore(release): bump to 5.5.3 (#1922) 
Co-authored-by: Tom Hu <tomhu1096@gmail.com>
 2026-03-19 03:19:01 +09:00
dependabot[bot]
c143300dea build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#1874) 
Bumps [actions/github-script](https://github.com/actions/github-script) from 7.0.1 to 8.0.0.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](60a0d83039...ed597411d8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-19 03:14:35 +09:00
Tom Hu
671740ac38 chore(release): 5.5.2 (#1902) 2025-12-10 03:20:06 +08:00
Miguel Angel Rojo
96b38e9e60 chore: disable_search alignment (#1881) 
chore: disable_search alignment
 2025-11-19 18:34:32 +05:00
maxweng-sentry
9b6d1f84bd check gpg only when skip-validation = false (#1894) 2025-11-11 14:37:52 -08:00
11 changed files with 54 additions and 65 deletions
Expand all files Collapse all files

2
.github/workflows/codeql-analysis.yml vendored
View File

@@ -37,7 +37,7 @@ jobs:
steps: steps:
- name: Checkout repository - name: Checkout repository
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
# Initializes the CodeQL tools for scanning. # Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL - name: Initialize CodeQL

14
.github/workflows/enforce-license-compliance.yml vendored
View File

@@ -1,14 +0,0 @@
name: Enforce License Compliance
on:
pull_request:
branches: [main]
jobs:
enforce-license-compliance:
runs-on: ubuntu-latest
steps:
- name: 'Enforce License Compliance'
uses: getsentry/action-enforce-license-compliance@57ba820387a1a9315a46115ee276b2968da51f3d # main
with:
fossa_api_key: ${{ secrets.FOSSA_API_KEY }}

12
.github/workflows/main.yml vendored
View File

@@ -12,7 +12,7 @@ jobs:
os: [macos-latest, windows-latest, ubuntu-latest] os: [macos-latest, windows-latest, ubuntu-latest]
steps: steps:
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Install dependencies - name: Install dependencies
@@ -54,7 +54,7 @@ jobs:
runs-on: macos-latest-xlarge runs-on: macos-latest-xlarge
steps: steps:
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Install dependencies - name: Install dependencies
@@ -103,7 +103,7 @@ jobs:
container: python:latest container: python:latest
steps: steps:
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Install deps - name: Install deps
@@ -144,7 +144,7 @@ jobs:
run: | run: |
apk add git apk add git
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Upload coverage to Codecov (should fail due to missing dependencies) - name: Upload coverage to Codecov (should fail due to missing dependencies)
@@ -175,7 +175,7 @@ jobs:
run: | run: |
apk add git curl gnupg bash apk add git curl gnupg bash
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Upload coverage to Codecov (should succeed) - name: Upload coverage to Codecov (should succeed)
@@ -212,7 +212,7 @@ jobs:
run: | run: |
apk add git curl apk add git curl
- name: Checkout - name: Checkout
uses: actions/checkout@v5.0.0 uses: actions/checkout@v6.0.3
with: with:
submodules: "true" submodules: "true"
- name: Upload coverage to Codecov (should fail due to missing gpg and bash) - name: Upload coverage to Codecov (should fail due to missing gpg and bash)

2
.github/workflows/scorecards-analysis.yml vendored
View File

@@ -25,7 +25,7 @@ jobs:
steps: steps:
- name: "Checkout code" - name: "Checkout code"
uses: actions/checkout@v5.0.0 # v3.0.0 uses: actions/checkout@v6.0.3 # v3.0.0
with: with:
persist-credentials: false persist-credentials: false

4
CHANGELOG.md
View File

@@ -1,9 +1,9 @@
## v5.6.0 ## v5.5.2
### What's Changed ### What's Changed
**Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.5.1..v5.6.0 **Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2
## v5.5.1 ## v5.5.1

6
Makefile
View File

@@ -1,7 +1,7 @@
deploy: deploy:
$(eval VERSION := $(shell cat src/version)) $(eval VERSION := $(shell cat src/version))
git tag -d v5 git tag -d v7
git push origin :v5 git push origin :v7
git tag v5 git tag v7
git tag v$(VERSION) -s -m "" git tag v$(VERSION) -s -m ""
git push origin --tags git push origin --tags

11
README.md
View File

@@ -6,6 +6,14 @@
### Easily upload coverage reports to Codecov from GitHub Actions ### Easily upload coverage reports to Codecov from GitHub Actions
## v7 Release
`v7` of the Codecov GitHub Action bumps the [Codecov Wrapper](https://github.com/codecov/wrapper) submodule, which now fetches the Codecov Uploader PGP verification key from the `codecovsecops` Keybase account.
## v6 Release
`v6` of the Codecov GitHub Action support node24
## v5 Release ## v5 Release
`v5` of the Codecov GitHub Action will use the [Codecov Wrapper](https://github.com/codecov/wrapper) to encapsulate the [CLI](https://github.com/codecov/codecov-cli). This will help ensure that the Action gets updates quicker. `v5` of the Codecov GitHub Action will use the [Codecov Wrapper](https://github.com/codecov/wrapper) to encapsulate the [CLI](https://github.com/codecov/codecov-cli). This will help ensure that the Action gets updates quicker.
@@ -132,7 +140,6 @@ Codecov's Action supports inputs from the user. These inputs, along with their d
| `codecov_yml_path` | The location of the codecov.yml file. This is currently ONLY used for automated test selection (https://docs.codecov.com/docs/getting-started-with-ats). Note that for all other cases, the Codecov yaml will need to be located as described here: https://docs.codecov.com/docs/codecov-yaml#can-i-name-the-file-codecovyml | Optional | `codecov_yml_path` | The location of the codecov.yml file. This is currently ONLY used for automated test selection (https://docs.codecov.com/docs/getting-started-with-ats). Note that for all other cases, the Codecov yaml will need to be located as described here: https://docs.codecov.com/docs/codecov-yaml#can-i-name-the-file-codecovyml | Optional
| `commit_parent` | SHA (with 40 chars) of what should be the parent of this commit. | Optional | `commit_parent` | SHA (with 40 chars) of what should be the parent of this commit. | Optional
| `directory` | Folder to search for coverage files. Default to the current working directory | Optional | `directory` | Folder to search for coverage files. Default to the current working directory | Optional
| `disable_checkout` | Disable checking out the repository. This is not recommended as it can cause unwanted side effects in coverage processing | Optional
| `disable_file_fixes` | Disable file fixes to ignore common lines from coverage (e.g. blank lines or empty brackets). Read more here https://docs.codecov.com/docs/fixing-reports | Optional | `disable_file_fixes` | Disable file fixes to ignore common lines from coverage (e.g. blank lines or empty brackets). Read more here https://docs.codecov.com/docs/fixing-reports | Optional
| `disable_search` | Disable search for coverage files. This is helpful when specifying what files you want to upload with the files option. | Optional | `disable_search` | Disable search for coverage files. This is helpful when specifying what files you want to upload with the files option. | Optional
| `disable_safe_directory` | Disable setting safe directory. Set to true to disable. | Optional | `disable_safe_directory` | Disable setting safe directory. Set to true to disable. | Optional
@@ -141,7 +148,7 @@ Codecov's Action supports inputs from the user. These inputs, along with their d
| `env_vars` | Environment variables to tag the upload with (e.g. PYTHON \| OS,PYTHON) | Optional | `env_vars` | Environment variables to tag the upload with (e.g. PYTHON \| OS,PYTHON) | Optional
| `exclude` | Comma-separated list of folders to exclude from search. | Optional | `exclude` | Comma-separated list of folders to exclude from search. | Optional
| `fail_ci_if_error` | On error, exit with non-zero code | Optional | `fail_ci_if_error` | On error, exit with non-zero code | Optional
| `files` | Comma-separated explicit list of files to upload. These will be added to the coverage files found for upload. If you wish to only upload the specified files, please consider using "disable-search" to disable uploading other files. | Optional | `files` | Comma-separated explicit list of files to upload. These will be added to the coverage files found for upload. If you wish to only upload the specified files, please consider using "disable_search" to disable uploading other files. | Optional
| `flags` | Comma-separated list of flags to upload to group coverage metrics. | Optional | `flags` | Comma-separated list of flags to upload to group coverage metrics. | Optional
| `force` | Only used for empty-upload run command | Optional | `force` | Only used for empty-upload run command | Optional
| `git_service` | Override the git_service (e.g. github_enterprise) | Optional | `git_service` | Override the git_service (e.g. github_enterprise) | Optional

52
action.yml
View File

@@ -19,10 +19,6 @@ inputs:
directory: directory:
description: 'Folder to search for coverage files. Default to the current working directory' description: 'Folder to search for coverage files. Default to the current working directory'
required: false required: false
disable_checkout:
description: 'Disable checking out the repository. This is not recommended as it can cause unwanted side effects in coverage processing'
required: false
default: 'false'
disable_file_fixes: disable_file_fixes:
description: 'Disable file fixes to ignore common lines from coverage (e.g. blank lines or empty brackets). Read more here https://docs.codecov.com/docs/fixing-reports' description: 'Disable file fixes to ignore common lines from coverage (e.g. blank lines or empty brackets). Read more here https://docs.codecov.com/docs/fixing-reports'
required: false required: false
@@ -54,7 +50,7 @@ inputs:
required: false required: false
default: 'false' default: 'false'
files: files:
description: 'Comma-separated list of explicit files to upload. These will be added to the coverage files found for upload. If you wish to only upload the specified files, please consider using disable-search to disable uploading other files.' description: 'Comma-separated list of explicit files to upload. These will be added to the coverage files found for upload. If you wish to only upload the specified files, please consider using disable_search to disable uploading other files.'
required: false required: false
flags: flags:
description: 'Comma-separated list of flags to upload to group coverage metrics.' description: 'Comma-separated list of flags to upload to group coverage metrics.'
@@ -181,16 +177,25 @@ runs:
steps: steps:
- name: Check system dependencies - name: Check system dependencies
shell: sh shell: sh
env:
INPUT_SKIP_VALIDATION: ${{ inputs.skip_validation }}
run: | run: |
missing_deps="" missing_deps=""
# Check for required commands # Check for always-required commands
for cmd in bash git curl gpg; do for cmd in bash git curl; do
if ! command -v "$cmd" >/dev/null 2>&1; then if ! command -v "$cmd" >/dev/null 2>&1; then
missing_deps="$missing_deps $cmd" missing_deps="$missing_deps $cmd"
fi fi
done done
# Check for gpg only if validation is not being skipped
if [ "$INPUT_SKIP_VALIDATION" != "true" ]; then
if ! command -v gpg >/dev/null 2>&1; then
missing_deps="$missing_deps gpg"
fi
fi
# Report missing required dependencies # Report missing required dependencies
if [ -n "$missing_deps" ]; then if [ -n "$missing_deps" ]; then
echo "Error: The following required dependencies are missing:$missing_deps" echo "Error: The following required dependencies are missing:$missing_deps"
@@ -204,24 +209,6 @@ runs:
run: | run: |
CC_ACTION_VERSION=$(cat ${GITHUB_ACTION_PATH}/src/version) CC_ACTION_VERSION=$(cat ${GITHUB_ACTION_PATH}/src/version)
echo -e "\033[0;32m==>\033[0m Running Action version $CC_ACTION_VERSION" echo -e "\033[0;32m==>\033[0m Running Action version $CC_ACTION_VERSION"
- name: Check if repository is checked out
id: check_repo
shell: bash
run: |
if [ -d ".git" ]; then
echo "Repository is checked out."
echo "repo_checked_out=true" >> "$GITHUB_OUTPUT"
else
echo "Repository is NOT checked out."
echo "repo_checked_out=false" >> "$GITHUB_OUTPUT"
fi
- name: Checkout repository
if: ${{ steps.check_repo.outputs.repo_checked_out == 'false' && inputs.disable_checkout != 'true' }}
uses: actions/checkout@v5
with:
fetch-depth: 2
- name: Set safe directory - name: Set safe directory
if: ${{ inputs.disable_safe_directory != 'true' }} if: ${{ inputs.disable_safe_directory != 'true' }}
shell: bash shell: bash
@@ -245,7 +232,7 @@ runs:
GITHUB_REPOSITORY: ${{ github.repository }} GITHUB_REPOSITORY: ${{ github.repository }}
- name: Get OIDC token - name: Get OIDC token
uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0
id: oidc id: oidc
with: with:
script: | script: |
@@ -260,24 +247,27 @@ runs:
- name: Get and set token - name: Get and set token
shell: bash shell: bash
run: | run: |
if [ "${{ inputs.use_oidc }}" == 'true' ] && [ "$CC_FORK" != 'true' ]; if [ "$INPUT_USE_OIDC" == 'true' ] && [ "$CC_FORK" != 'true' ];
then then
echo "CC_TOKEN=$CC_OIDC_TOKEN" >> "$GITHUB_ENV" echo "CC_TOKEN=$CC_OIDC_TOKEN" >> "$GITHUB_ENV"
elif [ -n "${{ env.CODECOV_TOKEN }}" ]; elif [ -n "$INPUT_CODECOV_TOKEN" ];
then then
echo -e "\033[0;32m==>\033[0m Token set from env" echo -e "\033[0;32m==>\033[0m Token set from env"
echo "CC_TOKEN=${{ env.CODECOV_TOKEN }}" >> "$GITHUB_ENV" echo "CC_TOKEN=$INPUT_CODECOV_TOKEN" >> "$GITHUB_ENV"
else else
if [ -n "${{ inputs.token }}" ]; if [ -n "$INPUT_TOKEN" ];
then then
echo -e "\033[0;32m==>\033[0m Token set from input" echo -e "\033[0;32m==>\033[0m Token set from input"
CC_TOKEN=$(echo "${{ inputs.token }}" | tr -d '\n') CC_TOKEN=$(echo "$INPUT_TOKEN" | tr -d '\n')
echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV"
fi fi
fi fi
env: env:
CC_OIDC_TOKEN: ${{ steps.oidc.outputs.result }} CC_OIDC_TOKEN: ${{ steps.oidc.outputs.result }}
CC_OIDC_AUDIENCE: ${{ inputs.url || 'https://codecov.io' }} CC_OIDC_AUDIENCE: ${{ inputs.url || 'https://codecov.io' }}
INPUT_USE_OIDC: ${{ inputs.use_oidc }}
INPUT_TOKEN: ${{ inputs.token }}
INPUT_CODECOV_TOKEN: ${{ env.CODECOV_TOKEN }}
- name: Override branch for forks - name: Override branch for forks
shell: bash shell: bash

10
dist/codecov.sh vendored
View File

@@ -37,7 +37,7 @@ g="\033[0;32m" # info/debug
r="\033[0;31m" # errors r="\033[0;31m" # errors
x="\033[0m" x="\033[0m"
retry="--retry 5 --retry-delay 2" retry="--retry 5 --retry-delay 2"
CC_WRAPPER_VERSION="0.2.7" CC_WRAPPER_VERSION="0.2.9"
CC_VERSION="${CC_VERSION:-latest}" CC_VERSION="${CC_VERSION:-latest}"
CC_FAIL_ON_ERROR="${CC_FAIL_ON_ERROR:-false}" CC_FAIL_ON_ERROR="${CC_FAIL_ON_ERROR:-false}"
CC_RUN_CMD="${CC_RUN_CMD:-upload-coverage}" CC_RUN_CMD="${CC_RUN_CMD:-upload-coverage}"
@@ -69,7 +69,13 @@ then
exit_if_error "Could not install via pypi." exit_if_error "Could not install via pypi."
exit exit
fi fi
if [[ "$CC_CLI_TYPE" == "codecov-cli" ]]; then
CC_COMMAND="codecovcli"
elif [[ "$CC_CLI_TYPE" == "sentry-prevent-cli" ]]; then
CC_COMMAND="sentry-prevent-cli"
else
CC_COMMAND="${CC_CLI_TYPE}" CC_COMMAND="${CC_CLI_TYPE}"
fi
else else
if [ -n "$CC_OS" ]; if [ -n "$CC_OS" ];
then then
@@ -110,7 +116,7 @@ then
chmod +x "$CC_COMMAND" chmod +x "$CC_COMMAND"
fi fi
else else
echo "$(curl -s https://keybase.io/codecovsecurity/pgp_keys.asc)" | \ echo "$(curl -s https://keybase.io/codecovsecops/pgp_keys.asc)" | \
gpg --no-default-keyring --import gpg --no-default-keyring --import
# One-time step # One-time step
say "$g==>$x Verifying GPG signature integrity" say "$g==>$x Verifying GPG signature integrity"

2
src/scripts

Submodule src/scripts updated: 473e292469...bad8df56cd

2
src/version
View File

@@ -1 +1 @@
5.6.0 7.0.0