Skip to content

🔄 Synced file(s) with jhudsl/AnVIL_Template #10

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
cansavvy wants to merge 9 commits into
base: main
Choose a base branch
from
Open

🔄 Synced file(s) with jhudsl/AnVIL_Template #10

cansavvy wants to merge 9 commits into from

Conversation

@cansavvy
Copy link

@cansavvy cansavvy commented Jan 15, 2025
edited by kweav
Loading

Synced local file(s) with jhudsl/AnVIL_Template.

Changed files
  • Synced local directory .github/workflows/ with remote directory .github/workflows/
  • Created local .github/AnVIL_Feedback_Script.sh from remote .github/AnVIL_Feedback_Script.sh
  • Synced local directory style-sets with remote directory style-sets
  • Synced local directory assets/box_images/ with remote directory assets/box_images/
  • Synced local directory assets/AnVIL_style/ with remote directory assets/AnVIL_style/
  • Synced local directory assets/GDSCN_style/ with remote directory assets/GDSCN_style/
  • Synced local assets/style.css with remote assets/style.css
  • Synced local config_automation.yml with remote config_automation.yml
  • Synced local _output.yml with remote _output.yml

This PR was created automatically by the repo-file-sync-action workflow run #14837576330

@cansavvy cansavvy added the sync label Jan 15, 2025
@cansavvy cansavvy force-pushed the repo-sync/AnVIL_Template/default branch from aca1395 to f335615 Compare January 28, 2025 14:33
kweav added 9 commits May 5, 2025 13:28
🔄 Synced local '.github/workflows/' with remote '.github/workflows/'
75ea090 
release-null
🔄 Created local '.github/AnVIL_Feedback_Script.sh' from remote '.gith…
015c22e 
…ub/AnVIL_Feedback_Script.sh'

release-null
🔄 Synced local 'style-sets' with remote 'style-sets'
63a7552 
release-null
🔄 Synced local 'assets/box_images/' with remote 'assets/box_images/'
d785d2e 
release-null
🔄 Synced local 'assets/AnVIL_style/' with remote 'assets/AnVIL_style/'
5cda4a4 
release-null
🔄 Synced local 'assets/GDSCN_style/' with remote 'assets/GDSCN_style/'
17c285d 
release-null
🔄 Synced local 'assets/style.css' with remote 'assets/style.css'
babf882 
release-null
🔄 Synced local 'config_automation.yml' with remote 'config_automation…
b339feb 
….yml'

release-null
🔄 Synced local '_output.yml' with remote '_output.yml'
559175f 
release-null
@kweav kweav force-pushed the repo-sync/AnVIL_Template/default branch from f335615 to 559175f Compare May 5, 2025 13:28
@github-actions
Copy link

github-actions bot commented May 5, 2025
edited
Loading

⚠️ broken url errors ⚠️
There are broken url errors that need to be addressed.
Click here ➡️ for broken url errors!
Add errors that aren't errors to the resources/ignore-urls.txt file of this repo.
If you are having troubles see this guide
Comment updated at 2025-05-05-13:30:18 with changes from e909b38

@github-actions
Copy link

github-actions bot commented May 5, 2025
edited
Loading

⚠️ spelling errors ⚠️
There are spelling errors that need to be addressed.
Click here ➡️ for spelling errors!
Add errors that aren't errors to the resources/dictionary.txt file of this repo.
If you are having troubles see this guide
Comment updated at 2025-05-05-13:31:06 with changes from e909b38

github-advanced-security[bot]
github-advanced-security bot found potential problems May 5, 2025
View reviewed changes
.github/workflows/check-url.yml
Comment on lines +10 to +26
name: Load user automation choices
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
with:
fetch-depth: 0

# Use the yaml-env-action action.
- name: Load environment from YAML
uses: doughepi/yaml-env-action@v1.0.0
with:
files: config_automation.yml # Pass a space-separated list of configuration files. Rightmost files take precedence.
outputs:
toggle_url_check_periodically: "${{ env.URL_CHECK_PERIODICALLY }}"

url-check:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 8 months ago

To fix the issue, we will add a permissions block to the workflow. This block will specify the minimal permissions required for the workflow to function correctly. Based on the workflow's operations, the following permissions are needed:

  • contents: write for checking out code, creating branches, and pushing changes.
  • actions: read for interacting with GitHub Actions.

The permissions block will be added at the root level of the workflow to apply to all jobs. If any job requires additional or fewer permissions, a job-specific permissions block can be added.

Suggested changeset 1
.github/workflows/check-url.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/check-url.yml b/.github/workflows/check-url.yml
--- a/.github/workflows/check-url.yml
+++ b/.github/workflows/check-url.yml
@@ -7,2 +7,6 @@
 
+permissions:
+  contents: write
+  actions: read
+
 jobs:
EOF
@@ -7,2 +7,6 @@

permissions:
contents: write
actions: read

jobs:
Copilot is powered by AI and may make mistakes. Always verify output.
.github/workflows/check-url.yml
Comment on lines +27 to +117
name: Check URLs
needs: set-up
if: ${{needs.set-up.outputs.toggle_url_check_periodically == 'yes'}}
runs-on: ubuntu-latest
container:
image: jhudsl/base_ottr:main

steps:
- name: Checkout
uses: actions/checkout@v3
with:
fetch-depth: 0

# Delete the branch if this has been run before
- name: Delete branch locally and remotely
run: git push origin --delete preview-spell-error || echo "No branch to delete"

# Make the branch fresh
- name: Make the branch fresh
run: |
git config --global --add safe.directory $GITHUB_WORKSPACE
git config --global user.name 'github-actions[bot]'
git config --global user.email 'github-actions[bot]@users.noreply.github.com'

echo branch doesnt exist
git checkout -b preview-spell-error || echo branch exists
git push --set-upstream origin preview-spell-error || echo echo branch exists remotely
shell: bash

- name: Run the check
uses: jhudsl/ottr-reports@main
id: check_results
continue-on-error: true
with:
check_type: urls
error_min: 1

- name: Declare file path and time
id: check-report
run: |
error_num=$(cat check_reports/url_checks.tsv | wc -l)
error_num="$((error_num-1))"
echo "error_num=$error_num" >> $GITHUB_OUTPUT
echo "error_url=https://github.com/${GITHUB_REPOSITORY}/blob/preview-spell-error/check_reports/url_checks.tsv" >> $GITHUB_OUTPUT
shell: bash

- name: Stop if failure
if: steps.check_results.outcome == 'failure'
run: exit 1

- name: Print out error variables
run: |
echo ${{ steps.check-report.outputs.error_url }}
echo ${{ steps.check-report.outputs.error_num }}

# Commit file
- name: Commit tocless bookdown files
if: ${{ steps.check-report.outputs.error_num >= 1 }}
env:
GH_PAT: ${{ secrets.GH_PAT }}
run: |
git add --force check_reports/url_checks.tsv
git commit -m 'Add spell check file' || echo "No changes to commit"
git push --set-upstream origin preview-spell-error || echo echo branch exists remotely

- name: Find issues
id: find-issue
env:
GH_PAT: ${{ secrets.GH_PAT }}
run: |
echo "$GITHUB_REPOSITORY"
curl -o find_issue.R https://raw.githubusercontent.com/jhudsl/ottr-reports/main/scripts/find_issue.R
issue_exists=$(Rscript --vanilla find_issue.R --repo $GITHUB_REPOSITORY --git_pat $GH_PAT)
echo URL issue exists: $issue_exists
echo "issue_existence=$issue_exists" >> $GITHUB_OUTPUT

- name: If too many URL errors, then make an issue
if: ${{ steps.check-report.outputs.error_num >= 1 && steps.find-issue.outputs.issue_existence == 0}}
uses: JasonEtco/create-an-issue@v2
with:
filename: .github/ISSUE_TEMPLATE/url-error.md
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
FILE_URL: ${{ steps.check-report.outputs.error_url }}
ERROR_NUM: ${{ steps.check-report.outputs.error_num }}

- name: If no URL errors than delete the branch we made
if: ${{ steps.check-report.outputs.error_num < 1 }}
run: |
git config --system --add safe.directory "$GITHUB_WORKSPACE"
git push origin --delete preview-spell-error || echo "No branch to delete"

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 8 months ago

To fix the issue, we need to explicitly define the permissions for the GITHUB_TOKEN at the workflow level or for individual jobs. Since the workflow performs actions like committing files, pushing branches, and creating issues, we will grant the minimal required permissions. Specifically:

  • contents: write is needed for committing and pushing changes.
  • issues: write is needed for creating issues.

We will add a permissions block at the workflow level to apply these permissions to all jobs. This ensures that the workflow has only the necessary permissions and adheres to the principle of least privilege.

Suggested changeset 1
.github/workflows/check-url.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/check-url.yml b/.github/workflows/check-url.yml
--- a/.github/workflows/check-url.yml
+++ b/.github/workflows/check-url.yml
@@ -7,2 +7,6 @@
 
+permissions:
+  contents: write
+  issues: write
+
 jobs:
EOF
@@ -7,2 +7,6 @@

permissions:
contents: write
issues: write

jobs:
Copilot is powered by AI and may make mistakes. Always verify output.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

sync

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cansavvy