docs(readme): fix broken link

Signed-off-by: Evgeniy Frolov <evgeniy.frolov@flant.com>

.github/workflows/test.yaml

@@ -12,7 +12,7 @@ jobs:
     runs-on: ${{ matrix.os }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4
         with:
           fetch-depth: 0
 
@@ -31,13 +31,13 @@ jobs:
     steps:
 
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4
         with:
           fetch-depth: 0
 
       - name: Install
         uses: ./install
         with:
-          version: v1.2.35
+          version: v2.31.1
 
       - run: werf version

README.md

@@ -3,127 +3,11 @@
 </p>
 ___
 
-This action set allows you to organize CI/CD with GitHub Actions and [werf](https://github.com/werf/werf). The set consists of several independent and complex actions:
+This action allows you to organize CI/CD with GitHub Actions and [werf](https://github.com/werf/werf).
 
-- [werf/actions/converge](https://github.com/werf/actions/tree/v1.2/converge)
-- [werf/actions/dismiss](https://github.com/werf/actions/tree/v1.2/dismiss)
-- [werf/actions/build](https://github.com/werf/actions/tree/v1.2/build)
-- [werf/actions/run](https://github.com/werf/actions/tree/v1.2/run)
-- [werf/actions/cleanup](https://github.com/werf/actions/tree/v1.2/cleanup)
+**Ready-to-use GitHub Actions Workflows** for different CI/CD workflows are available [here](https://werf.io/getting_started/?usage=ci&ci=githubActions&runnerType=hostRunner&os=linux&buildBackend=buildah&projectType=simplified&sharedCICD=no&repoType=application).
 
-Each action combines all the necessary steps in itself, and logic may be divided into [environment setup](#environment-setup-in-details) and launching the corresponding command. 
-
-**Ready-to-use GitHub Actions Workflows** for different CI/CD workflows are available [here](https://werf.io/documentation/v1.2/advanced/ci_cd/github_actions.html#complete-set-of-configurations-for-ready-made-workflows).
-
-> Also, there is another action — [werf/actions/install](https://github.com/werf/actions/tree/v1.2/install). With this action, the user can install werf and use binary within job steps for own purposes.
-
-## Versioning
-
-When using actions, select the version corresponding to the required `MAJOR.MINOR` version of werf:
-
-```yaml
-# Run converge using actual werf version within 1.1 alpha channel.
-- uses: werf/actions/converge@v1.1
-
-# Run converge using actual werf version within 1.2 alpha channel.
-- uses: werf/actions/converge@v1.2
-```
-
-## Environment setup in details
-
-### werf binary installation
-
-By default, all actions install actual werf version within 1.2 alpha channel (more details about channels, werf release cycle and compatibility promise [here](https://werf.io/installation.html#all-changes-in-werf-go-through-all-stability-channels)). 
-Using the `channel` input the user can switch the release channel.
-
-> This is recommended approach to be up-to-date and to use actual werf version without changing configurations.
-  
-```yaml
-- uses: werf/actions/converge@v1.2
-  with:
-    channel: alpha
-```
-  
-Withal, it is not necessary to work within release channels, and the user might specify certain werf version with `version` input.
-
-```yaml
-- uses: werf/actions/converge@v1.2
-  with:
-    version: v1.2.9
-```
-
-### werf ci-env
-
-This is the step where an action: 
-
-- sets the defaults for werf command options based on [GitHub Workflow environment variables](https://docs.github.com/en/actions/reference/environment-variables) (e.g. container repository address to the `WERF_REPO` environment variable using the following pattern: `ghcr.io/$GITHUB_REPOSITORY/<project-from-werf.yaml>`).
-- performs _docker login_ to `ghcr.io` using the `github-token` input (only if `ghcr.io` used as `WERF_REPO`).
-
-> The `github-token` input is optional, and the input is there in case you need to use a non-default token. By default, an action will use [the token provided to your workflow](https://docs.github.com/en/actions/reference/authentication-in-a-workflow#about-the-github_token-secret).
-
-### kubeconfig setup (*optional*)
-
-The _kubeconfig_ may be used for deployment, cleanup, distributed locks and caches. Thus, the configuration should be added before step with the action or passed as base64 encoded data with `kube-config-base64-data` input:
-
-* Prepare _kubeconfig_ (e.g. `cat ~/.kube/config | base64`) and save in [GitHub Secrets](https://docs.github.com/en/actions/reference/encrypted-secrets) (e.g. with name `KUBE_CONFIG_BASE64_DATA`).
- 
-* Pass secret with `kube-config-base64-data` input:
- 
-  ```yaml
-  - uses: werf/actions/converge@v1.2
-    with:
-      kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-  ```
-
-## Working with werf options
-
-All werf options can be defined with environment variables:
-
-```yaml
-- uses: werf/actions/converge@v1.2
-  env:
-    WERF_LOG_VERBOSE: "on" # The same as using the option --log-verbose=on.
-```
-
-## Working with container registry
-
-### Default container repository
-
-An action generates the default container repository address and performs _docker login_ to the registry within [werf ci-env step](#werf-ci-env).
-
-For cleanup action, the user needs [to create personal access token](https://docs.github.com/en/github/authenticating-to-github/keeping-your-account-and-data-secure/creating-a-personal-access-token) with `read:packages` and `delete:packages` scope and uses it as the `WERF_REPO_GITHUB_TOKEN` environment variable or the `github-token` input. It is recommended [to store the token as a secret](https://help.github.com/en/actions/configuring-and-managing-workflows/creating-and-storing-encrypted-secrets).
-
-```yaml
-- uses: werf/actions/cleanup@v1.2
-  with:
-    kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-  env:
-    WERF_REPO_GITHUB_TOKEN: ${{ secrets.WERF_CLEANUP_PAM }}
-```
-
-### Custom container repository
-
-An arbitrary container repository can be specified with the `WERF_REPO` and `WERF_REPO_CONTAINER_REGISTRY` environment variables. For instance, steps for GCR:
-
-```yaml
-- name: Login to GCR
-  uses: docker/login-action@v1
-  with:
-    registry: gcr.io
-    username: _json_key
-    password: ${{ secrets.GCR_JSON_KEY }}
-    
-- uses: werf/actions/converge@v1.2
-  env:
-    WERF_REPO: "gcr.io/company/app"
-    WERF_REPO_CONTAINER_REGISTRY: "gcr"
-```
-
-> To learn more about how to work with the different container registries, see the appropriate [article in the werf documentation](https://werf.io/documentation/v1.2/advanced/supported_container_registries.html).
-
-## Examples
-
-### converge
+## How to use
 
 ```yaml
 converge:
@@ -132,113 +16,130 @@ converge:
   steps:
 
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
     
-    - name: Converge
-      uses: werf/actions/converge@v1.2
-      with:
-        env: production
-        kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-```
+    - name: Install werf
+      uses: werf/actions/install@v2
       
-### dismiss
-
-```yaml
-dismiss: 
-  name: Dismiss
-  runs-on: ubuntu-latest
-  steps:
-  
-    - name: Checkout code
-      uses: actions/checkout@v2
-
-    - name: Dismiss
-      uses: werf/actions/dismiss@v1.2
-      with:
-        kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-        env: production
-```
-
-### run 
-
-```yaml
-run: 
-  name: Run
-  runs-on: ubuntu-latest
-  steps:
-  
-    - name: Checkout code
-      uses: actions/checkout@v2
-      with:
-        fetch-depth: 0
-
-    - name: Run
-      uses: werf/actions/run@v1.2
-      with:
-        image: backend
-        args: rails server
-        kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-      env:
-        WERF_DOCKER_OPTIONS: "-d -p 3000:3000"
-```
-
-### cleanup
-
-```yaml
-cleanup: 
-  name: Cleanup
-  runs-on: ubuntu-latest
-  steps:
-  
-    - name: Checkout code
-      uses: actions/checkout@v2
-
-    - name: Fetch all history for all tags and branches
-      run: git fetch --prune --unshallow
-
-    - name: Cleanup
-      uses: werf/actions/cleanup@v1.2
-      with:
-        kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-      env:
-        WERF_REPO_GITHUB_TOKEN: ${{ secrets.WERF_CLEANUP_PAM }}
-```
-
-### install
-
-```yaml
-werf:
-  name: werf 
-  runs-on: ubuntu-latest
-  steps:
-  
-    - name: Checkout code  
-      uses: actions/checkout@v2
-
-    - name: Install werf CLI  
-      uses: werf/actions/install@v1.2
-    
-    # For deploy and distributed locks.
-    - name: Create kube config
+    - name: Run script
       run: |
-        KUBECONFIG=$(mktemp -d)/config
-        base64 -d <(printf "%s" $KUBE_CONFIG_BASE64_DATA) > $KUBECONFIG
-        echo KUBECONFIG=$KUBECONFIG >> $GITHUB_ENV
-      env:
-        KUBE_CONFIG_BASE64_DATA: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
-  
-    - name: Run werf commands
-      run: |
-        source $(werf ci-env github --as-file)
-        werf render
+        . $(werf ci-env github --as-file) 
         werf converge
       env:
-        GITHUB_TOKEN: ${{ github.token }}
+        WERF_KUBECONFIG_BASE64: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
+        WERF_ENV: production
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+```
+
+## Versioning
+
+When using action, select the version corresponding to the required `MAJOR` version of werf.
+
+By default, the action installs actual werf version within alpha channel (more details about channels, werf release cycle and compatibility promise [here](https://werf.io/installation.html#all-changes-in-werf-go-through-all-stability-channels)). 
+Using the `channel` input the user can switch the release channel.
+
+> This is recommended approach to be up-to-date and to use actual werf version without changing configurations.
+  
+```yaml
+- uses: werf/actions/install@v2
+  with:
+    channel: alpha
+```
+  
+Withal, it is not necessary to work within release channels, and the user might specify certain werf version with `version` input.
+
+```yaml
+- uses: werf/actions/install@v2
+  with:
+    version: v2.1.0
+```
+
+## FAQ
+
+### werf always rebuilds images on new commit
+
+Make sure to use `fetch-depth: 0` setting in the checkout action, like follows:
+
+```yaml
+- name: Checkout code
+  uses: actions/checkout@v4
+  with:
+    fetch-depth: 0
+```
+
+By default, fetch-depth set to `1` which disables git history when checking out code. werf cache selection algorithm uses git history to determine whether some image bound to some commit could be used as a cache when building current commit (current commit should be descendant to the cache commit).
+
+Setting `fetch-depth` to `0` enables full fetch of git history, and it is a **recommended** approach. It is also possible to limit fetch history with some decent number of commits, which would enable images caching limited to that number of commits, but this would have a negative impact on cache reproducibility.
+
+### Working with container registry
+
+If there is a need to perform authorization using custom credentials or in an external container registry, then you have to use a ready-made action tailored to your container registry (or just run `werf cr login`).
+
+```yaml
+converge:
+  name: Converge
+  runs-on: ubuntu-latest
+  steps:
+
+    - name: Checkout code
+      uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+    
+    - name: Install werf
+      uses: werf/actions/install@v2
+    
+    - name: cr login
+      run: werf cr login -u ${{ secrets.REGISTRY_USER }} -p ${{ secrets.REGISTRY_TOKEN }} registry.example.com
+    
+    - name: converge
+      run: werf converge
+      env:
+        WERF_KUBECONFIG_BASE64: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
+        WERF_ENV: production
+        WERF_REPO: registry.example.com/repo
+```
+
+> Environment variables **`WERF_REPO`** and **`GITHUB_TOKEN`** for converge should only be used if building images is required otherwise they can be omitted 
+
+In the simplest case, if an [integrated GitHub Packages-like container registry](https://help.github.com/en/packages/using-github-packages-with-your-projects-ecosystem/configuring-docker-for-use-with-github-packages) is used, then the authorization is performed automatically when the `werf ci-env` command is invoked. This command is run with several required arguments such as GitHub environment variables, the [`GITHUB_TOKEN` secret](https://help.github.com/en/actions/configuring-and-managing-workflows/authenticating-with-the-github_token#about-the-github_token-secret) (you have to explicitly declare it).
+
+### Building multi-platform images
+
+To build multi-platform images or customize the build environment, you can use [docker/setup-buildx-action@v3](https://github.com/docker/setup-buildx-action).
+
+```yaml
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Install werf
+        uses: werf/actions/install@v2
+
+      - name: cr login
+        run: werf cr login -u ${{ secrets.REGISTRY_USER }} -p ${{ secrets.REGISTRY_TOKEN }} registry.example.com
+
+      - name: converge
+        run: |
+          . $(werf ci-env github --as-file)
+          werf converge
+        env:
+          WERF_KUBECONFIG_BASE64: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
           WERF_ENV: production
 ```
 
-# License
+> No additional configuration is required, and QEMU is automatically used for cross-platform builds.
+
+## License
 
 Apache License 2.0, see [LICENSE](LICENSE)

action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -23,5 +23,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'converge/index.js'

build/README.md

@@ -10,7 +10,7 @@ The action combines all the necessary steps in itself and logic may be divided i
 ```yaml
 channel:
   description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-  default: 'alpha'
+  default: 'stable'
   required: false
 version:
   description: 'The certain version'
@@ -33,12 +33,12 @@ build:
   steps:
   
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
 
     - name: Build
-      uses: werf/actions/build@v1.2
+      uses: werf/actions/build@v2
       with:
         kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
 ```

build/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -20,5 +20,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

cleanup/README.md

@@ -10,7 +10,7 @@ The action combines all the necessary steps in itself and logic may be divided i
 ```yaml
 channel:
   description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-  default: 'alpha'
+  default: 'stable'
   required: false
 version:
   description: 'The certain version'
@@ -33,13 +33,13 @@ cleanup:
   steps:
   
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
 
     - name: Fetch all history for all tags and branches
       run: git fetch --prune --unshallow
 
     - name: Cleanup
-      uses: werf/actions/cleanup@v1.2
+      uses: werf/actions/cleanup@v2
       with:
         kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
       env:

cleanup/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -20,5 +20,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

converge/README.md

@@ -10,7 +10,7 @@ The action combines all the necessary steps in itself and logic may be divided i
 ```yaml
 channel:
   description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-  default: 'alpha'
+  default: 'stable'
   required: false
 version:
   description: 'The certain version'
@@ -36,12 +36,12 @@ converge:
   steps:
   
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
 
     - name: Converge
-      uses: werf/actions/converge@v1.2
+      uses: werf/actions/converge@v2
       with:
         kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
         env: production

converge/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -23,5 +23,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

dismiss/README.md

@@ -10,7 +10,7 @@ The action combines all the necessary steps in itself and logic may be divided i
 ```yaml
 channel:
   description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-  default: 'alpha'
+  default: 'stable'
   required: false
 version:
   description: 'The certain version'
@@ -36,10 +36,10 @@ dismiss:
   steps:
   
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
 
     - name: Dismiss
-      uses: werf/actions/dismiss@v1.2
+      uses: werf/actions/dismiss@v2
       with:
         kube-config-base64-data: ${{ secrets.KUBE_CONFIG_BASE64_DATA }}
         env: production

dismiss/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -23,5 +23,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

install/README.md

@@ -9,7 +9,7 @@ Using the `channel` input the user can switch the release channel.
 > This is recommended approach to be up-to-date and to use actual werf version without changing configurations
   
 ```yaml
-- uses: werf/actions/install@v1.2
+- uses: werf/actions/install@v2
   with:
     channel: alpha
 ```
@@ -17,9 +17,9 @@ Using the `channel` input the user can switch the release channel.
 Withal, it is not necessary to work within release channels, and the user might specify certain werf version with `version` input.
 
 ```yaml
-- uses: werf/actions/install@v1.2
+- uses: werf/actions/install@v2
   with:
-    version: v1.2.9
+    version: v2.1.0
 ```
 
 ## Inputs
@@ -27,7 +27,7 @@ Withal, it is not necessary to work within release channels, and the user might
 ```yaml
 channel:
   description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-  default: 'alpha'
+  default: 'stable'
   required: false
 version:
   description: 'The certain version'
@@ -43,10 +43,10 @@ werf:
   steps:
   
     - name: Checkout code  
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
 
     - name: Install werf CLI  
-      uses: werf/actions/install@v1.2
+      uses: werf/actions/install@v2
     
     # For deploy and distributed locks.
     - name: Create kube config
@@ -63,6 +63,6 @@ werf:
         werf render
         werf converge
       env:
-        GITHUB_TOKEN: ${{ github.token }}
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         WERF_ENV: production
 ```

install/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -17,5 +17,5 @@ inputs:
     default: '0'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

package-lock.json

@@ -9,11 +9,11 @@
       "version": "1.2.1",
       "license": "Apache-2.0",
       "dependencies": {
-        "@actions/core": "^1.6.0",
+        "@actions/core": "^1.9.1",
         "@actions/github": "^5.0.0",
         "@actions/tool-cache": "^1.7.1",
         "dotenv": "10.0.x",
-        "semver": "^7.3.5",
+        "semver": "^7.5.2",
         "string-argv": "^0.3.1",
         "superagent": "^6.1.0",
         "tmp": "^0.2.1",
@@ -30,17 +30,34 @@
         "eslint": "^7.32.0",
         "eslint-plugin-github": "^4.3.2",
         "js-yaml": "^3.13.1",
-        "node-fetch": ">=3.1.1",
+        "node-fetch": ">=3.2.10",
         "prettier": "^1.19.1",
         "typescript": "^3.6.4"
       }
     },
     "node_modules/@actions/core": {
-      "version": "1.6.0",
-      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.6.0.tgz",
-      "integrity": "sha512-NB1UAZomZlCV/LmJqkLhNTqtKfFXJZAUPcfl/zqG7EfsQdeUJtaWO98SGbuQ3pydJ3fHl2CvI/51OKYlCYYcaw==",
+      "version": "1.9.1",
+      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.9.1.tgz",
+      "integrity": "sha512-5ad+U2YGrmmiw6du20AQW5XuWo7UKN2052FjSV7MX+Wfjf8sCqcsZe62NfgHys4QI4/Y+vQvLKYL8jWtA1ZBTA==",
       "dependencies": {
-        "@actions/http-client": "^1.0.11"
+        "@actions/http-client": "^2.0.1",
+        "uuid": "^8.3.2"
+      }
+    },
+    "node_modules/@actions/core/node_modules/@actions/http-client": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz",
+      "integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==",
+      "dependencies": {
+        "tunnel": "^0.0.6"
+      }
+    },
+    "node_modules/@actions/core/node_modules/uuid": {
+      "version": "8.3.2",
+      "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
+      "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==",
+      "bin": {
+        "uuid": "dist/bin/uuid"
       }
     },
     "node_modules/@actions/exec": {
@@ -1004,9 +1021,9 @@
       "integrity": "sha1-2Klr13/Wjfd5OnMDajug1UBdR3s="
     },
     "node_modules/cookiejar": {
-      "version": "2.1.3",
-      "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.3.tgz",
-      "integrity": "sha512-JxbCBUdrfr6AQjOXrxoTvAMJO4HBTUIlBzslcJPAz+/KT8yk53fXun51u+RenNYvad/+Vc2DIz5o9UxlCDymFQ=="
+      "version": "2.1.4",
+      "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.4.tgz",
+      "integrity": "sha512-LDx6oHrK+PhzLKJU9j5S7/Y3jM/mUHvD/DeI1WQmJn652iPC5Y4TBzC9l+5OMOXlyTTA+SmVUPm0HQUwpD5Jqw=="
     },
     "node_modules/cross-spawn": {
       "version": "7.0.3",
@@ -2417,9 +2434,9 @@
       "dev": true
     },
     "node_modules/json5": {
-      "version": "1.0.1",
-      "resolved": "https://registry.npmjs.org/json5/-/json5-1.0.1.tgz",
-      "integrity": "sha512-aKS4WQjPenRxiQsC93MNfjx+nbF4PAdYzmd/1JIj8HYzqfbu86beTuNgXDzPknWk0n0uARlyewZo4s++ES36Ow==",
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-1.0.2.tgz",
+      "integrity": "sha512-g1MWMLBiz8FKi1e4w0UyVL3w+iJceWAFBAaBnnGKOpNa5f8TLktkbre1+s6oICydWAm+HRUGTmI+//xv2hvXYA==",
       "dev": true,
       "dependencies": {
         "minimist": "^1.2.0"
@@ -2568,9 +2585,9 @@
       }
     },
     "node_modules/minimatch": {
-      "version": "3.0.4",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.0.4.tgz",
-      "integrity": "sha512-yJHVQEhyqPLUTgt9B83PXu6W3rx4MvvHvSUvToogpwoGDOUQ+yDrR0HRot+yOCdCO7u4hX3pWft6kWBBcqh0UA==",
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
+      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
       "dependencies": {
         "brace-expansion": "^1.1.7"
       },
@@ -2615,13 +2632,13 @@
       }
     },
     "node_modules/node-fetch": {
-      "version": "3.1.1",
-      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-3.1.1.tgz",
-      "integrity": "sha512-SMk+vKgU77PYotRdWzqZGTZeuFKlsJ0hu4KPviQKkfY+N3vn2MIzr0rvpnYpR8MtB3IEuhlEcuOLbGvLRlA+yg==",
+      "version": "3.2.10",
+      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-3.2.10.tgz",
+      "integrity": "sha512-MhuzNwdURnZ1Cp4XTazr69K0BTizsBroX7Zx3UgDSVcZYKF/6p0CBe4EUb/hLqmzVhl0UpYfgRljQ4yxE+iCxA==",
       "dev": true,
       "dependencies": {
         "data-uri-to-buffer": "^4.0.0",
-        "fetch-blob": "^3.1.3",
+        "fetch-blob": "^3.1.4",
         "formdata-polyfill": "^4.0.10"
       },
       "engines": {
@@ -2871,9 +2888,9 @@
       }
     },
     "node_modules/qs": {
-      "version": "6.10.1",
-      "resolved": "https://registry.npmjs.org/qs/-/qs-6.10.1.tgz",
-      "integrity": "sha512-M528Hph6wsSVOBiYUnGf+K/7w0hNshs/duGsNXPUCLH5XAqjEtiPGwNONLV0tBH8NoGb0mvD5JubnUTrujKDTg==",
+      "version": "6.11.0",
+      "resolved": "https://registry.npmjs.org/qs/-/qs-6.11.0.tgz",
+      "integrity": "sha512-MvjoMCJwEarSbUYk5O+nmoSzSutSsTwF85zcHPQ9OrlFoZOYIjaqBAJIqIXjptyD5vThxGq52Xu/MaJzRkIk4Q==",
       "dependencies": {
         "side-channel": "^1.0.4"
       },
@@ -3027,9 +3044,9 @@
       ]
     },
     "node_modules/semver": {
-      "version": "7.3.5",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-7.3.5.tgz",
-      "integrity": "sha512-PoeGJYh8HK4BTO/a9Tf6ZG3veo/A7ZVsYrSA6J8ny9nb3B1VrpkuN+z9OE5wfE5p6H4LchYZsegiQgbJD94ZFQ==",
+      "version": "7.5.2",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.2.tgz",
+      "integrity": "sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==",
       "dependencies": {
         "lru-cache": "^6.0.0"
       },
@@ -3498,9 +3515,9 @@
       }
     },
     "node_modules/word-wrap": {
-      "version": "1.2.3",
-      "resolved": "https://registry.npmjs.org/word-wrap/-/word-wrap-1.2.3.tgz",
-      "integrity": "sha512-Hz/mrNwitNRh/HUAtM/VT/5VH+ygD6DV7mYKZAtHOrbs8U7lvPS6xf7EJKMF0uW1KJCl0H701g3ZGus+muE5vQ==",
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/word-wrap/-/word-wrap-1.2.4.tgz",
+      "integrity": "sha512-2V81OA4ugVo5pRo46hAoD2ivUJx8jXmWXfUkY4KFNw0hEptvN0QfH3K4nHiwzGeKl5rFKedV48QVoqYavy4YpA==",
       "dev": true,
       "engines": {
         "node": ">=0.10.0"
@@ -3539,11 +3556,27 @@
   },
   "dependencies": {
     "@actions/core": {
-      "version": "1.6.0",
-      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.6.0.tgz",
-      "integrity": "sha512-NB1UAZomZlCV/LmJqkLhNTqtKfFXJZAUPcfl/zqG7EfsQdeUJtaWO98SGbuQ3pydJ3fHl2CvI/51OKYlCYYcaw==",
+      "version": "1.9.1",
+      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.9.1.tgz",
+      "integrity": "sha512-5ad+U2YGrmmiw6du20AQW5XuWo7UKN2052FjSV7MX+Wfjf8sCqcsZe62NfgHys4QI4/Y+vQvLKYL8jWtA1ZBTA==",
       "requires": {
-        "@actions/http-client": "^1.0.11"
+        "@actions/http-client": "^2.0.1",
+        "uuid": "^8.3.2"
+      },
+      "dependencies": {
+        "@actions/http-client": {
+          "version": "2.0.1",
+          "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz",
+          "integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==",
+          "requires": {
+            "tunnel": "^0.0.6"
+          }
+        },
+        "uuid": {
+          "version": "8.3.2",
+          "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
+          "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg=="
+        }
       }
     },
     "@actions/exec": {
@@ -4256,9 +4289,9 @@
       "integrity": "sha1-2Klr13/Wjfd5OnMDajug1UBdR3s="
     },
     "cookiejar": {
-      "version": "2.1.3",
-      "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.3.tgz",
-      "integrity": "sha512-JxbCBUdrfr6AQjOXrxoTvAMJO4HBTUIlBzslcJPAz+/KT8yk53fXun51u+RenNYvad/+Vc2DIz5o9UxlCDymFQ=="
+      "version": "2.1.4",
+      "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.4.tgz",
+      "integrity": "sha512-LDx6oHrK+PhzLKJU9j5S7/Y3jM/mUHvD/DeI1WQmJn652iPC5Y4TBzC9l+5OMOXlyTTA+SmVUPm0HQUwpD5Jqw=="
     },
     "cross-spawn": {
       "version": "7.0.3",
@@ -5267,9 +5300,9 @@
       "dev": true
     },
     "json5": {
-      "version": "1.0.1",
-      "resolved": "https://registry.npmjs.org/json5/-/json5-1.0.1.tgz",
-      "integrity": "sha512-aKS4WQjPenRxiQsC93MNfjx+nbF4PAdYzmd/1JIj8HYzqfbu86beTuNgXDzPknWk0n0uARlyewZo4s++ES36Ow==",
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-1.0.2.tgz",
+      "integrity": "sha512-g1MWMLBiz8FKi1e4w0UyVL3w+iJceWAFBAaBnnGKOpNa5f8TLktkbre1+s6oICydWAm+HRUGTmI+//xv2hvXYA==",
       "dev": true,
       "requires": {
         "minimist": "^1.2.0"
@@ -5385,9 +5418,9 @@
       }
     },
     "minimatch": {
-      "version": "3.0.4",
-      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.0.4.tgz",
-      "integrity": "sha512-yJHVQEhyqPLUTgt9B83PXu6W3rx4MvvHvSUvToogpwoGDOUQ+yDrR0HRot+yOCdCO7u4hX3pWft6kWBBcqh0UA==",
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
+      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
       "requires": {
         "brace-expansion": "^1.1.7"
       }
@@ -5416,13 +5449,13 @@
       "dev": true
     },
     "node-fetch": {
-      "version": "3.1.1",
-      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-3.1.1.tgz",
-      "integrity": "sha512-SMk+vKgU77PYotRdWzqZGTZeuFKlsJ0hu4KPviQKkfY+N3vn2MIzr0rvpnYpR8MtB3IEuhlEcuOLbGvLRlA+yg==",
+      "version": "3.2.10",
+      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-3.2.10.tgz",
+      "integrity": "sha512-MhuzNwdURnZ1Cp4XTazr69K0BTizsBroX7Zx3UgDSVcZYKF/6p0CBe4EUb/hLqmzVhl0UpYfgRljQ4yxE+iCxA==",
       "dev": true,
       "requires": {
         "data-uri-to-buffer": "^4.0.0",
-        "fetch-blob": "^3.1.3",
+        "fetch-blob": "^3.1.4",
         "formdata-polyfill": "^4.0.10"
       }
     },
@@ -5593,9 +5626,9 @@
       "dev": true
     },
     "qs": {
-      "version": "6.10.1",
-      "resolved": "https://registry.npmjs.org/qs/-/qs-6.10.1.tgz",
-      "integrity": "sha512-M528Hph6wsSVOBiYUnGf+K/7w0hNshs/duGsNXPUCLH5XAqjEtiPGwNONLV0tBH8NoGb0mvD5JubnUTrujKDTg==",
+      "version": "6.11.0",
+      "resolved": "https://registry.npmjs.org/qs/-/qs-6.11.0.tgz",
+      "integrity": "sha512-MvjoMCJwEarSbUYk5O+nmoSzSutSsTwF85zcHPQ9OrlFoZOYIjaqBAJIqIXjptyD5vThxGq52Xu/MaJzRkIk4Q==",
       "requires": {
         "side-channel": "^1.0.4"
       }
@@ -5673,9 +5706,9 @@
       "integrity": "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ=="
     },
     "semver": {
-      "version": "7.3.5",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-7.3.5.tgz",
-      "integrity": "sha512-PoeGJYh8HK4BTO/a9Tf6ZG3veo/A7ZVsYrSA6J8ny9nb3B1VrpkuN+z9OE5wfE5p6H4LchYZsegiQgbJD94ZFQ==",
+      "version": "7.5.2",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-7.5.2.tgz",
+      "integrity": "sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==",
       "requires": {
         "lru-cache": "^6.0.0"
       }
@@ -6031,9 +6064,9 @@
       }
     },
     "word-wrap": {
-      "version": "1.2.3",
-      "resolved": "https://registry.npmjs.org/word-wrap/-/word-wrap-1.2.3.tgz",
-      "integrity": "sha512-Hz/mrNwitNRh/HUAtM/VT/5VH+ygD6DV7mYKZAtHOrbs8U7lvPS6xf7EJKMF0uW1KJCl0H701g3ZGus+muE5vQ==",
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/word-wrap/-/word-wrap-1.2.4.tgz",
+      "integrity": "sha512-2V81OA4ugVo5pRo46hAoD2ivUJx8jXmWXfUkY4KFNw0hEptvN0QfH3K4nHiwzGeKl5rFKedV48QVoqYavy4YpA==",
       "dev": true
     },
     "wrappy": {

package.json

@@ -4,11 +4,11 @@
   "description": "",
   "main": "lib",
   "dependencies": {
-    "@actions/core": "^1.6.0",
+    "@actions/core": "^1.9.1",
     "@actions/github": "^5.0.0",
     "@actions/tool-cache": "^1.7.1",
     "dotenv": "10.0.x",
-    "semver": "^7.3.5",
+    "semver": "^7.5.2",
     "string-argv": "^0.3.1",
     "superagent": "^6.1.0",
     "tmp": "^0.2.1",
@@ -25,7 +25,7 @@
     "eslint": "^7.32.0",
     "eslint-plugin-github": "^4.3.2",
     "js-yaml": "^3.13.1",
-    "node-fetch": ">=3.1.1",
+    "node-fetch": ">=3.2.10",
     "prettier": "^1.19.1",
     "typescript": "^3.6.4"
   },

run/README.md

@@ -11,7 +11,7 @@ The action combines all the necessary steps in itself and logic may be divided i
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -40,12 +40,12 @@ run:
   steps:
   
     - name: Checkout code
-      uses: actions/checkout@v2
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
 
     - name: Run
-      uses: werf/actions/run@v1.2
+      uses: werf/actions/run@v2
       with:
         image: backend
         args: rails server

run/action.yml

@@ -7,7 +7,7 @@ branding:
 inputs:
   channel:
     description: 'The one of the following channel: alpha, beta, ea, stable, rock-solid'
-    default: 'alpha'
+    default: 'stable'
     required: false
   version:
     description: 'The certain version'
@@ -26,5 +26,5 @@ inputs:
     description: 'Base64 encoded kubeconfig data used for deployment, cleanup and distributed locks'
     required: false
 runs:
-  using: 'node12'
+  using: 'node20'
   main: 'index.js'

src/common.ts

@@ -7,8 +7,6 @@ import {String} from 'typescript-string-operations'
 import {Manager} from './manager'
 import * as werf from './werf'
 
-const minimalWerfVersion = 'v1.1.17'
-
 export async function PrepareEnvironAndRunWerfCommand(
   args: string[]
 ): Promise<void> {
@@ -47,13 +45,17 @@ export async function SetupKubeConfig(
 export function ProcessGitHubContext(): void {
   if (context.eventName === 'pull_request') {
     if (context.payload.pull_request) {
+      // Do nothing if virtual merge variable is already set
+      if (process.env.WERF_VIRTUAL_MERGE) {
+        return
+      }
+
       const baseSha = context.payload.pull_request.base.sha
       const headSha = context.payload.pull_request.head.sha
 
       process.env.WERF_VIRTUAL_MERGE = '1'
       process.env.WERF_VIRTUAL_MERGE_FROM_COMMIT = headSha
       process.env.WERF_VIRTUAL_MERGE_INTO_COMMIT = baseSha
-
       core.exportVariable('WERF_VIRTUAL_MERGE', '1')
       core.exportVariable('WERF_VIRTUAL_MERGE_FROM_COMMIT', headSha)
       core.exportVariable('WERF_VIRTUAL_MERGE_INTO_COMMIT', baseSha)
@@ -63,27 +65,15 @@ export function ProcessGitHubContext(): void {
 
 export function ValidateWerfVersion(version: string): void {
   const ver = semver.coerce(version)
-  if (ver) {
-    if (ver.major !== werf.MAJOR || ver.minor !== werf.MINOR) {
-      throw new Error(
-        String.Format(
-          'The arbitrary version ({0}) must be within the MAJOR.MINOR ({1})',
-          version.trim(),
-          werf.MAJOR_MINOR_GROUP
-        )
-      )
-    }
-
-    if (semver.gte(ver, minimalWerfVersion)) {
+  if (ver && ver.major === werf.MAJOR) {
     return
   }
-  }
 
   throw new Error(
     String.Format(
-      'werf version {0} is not supported (expected version must be equal or greater than {1})',
+      'werf version {0} is not supported: the version must be semver and within the MAJOR ({1})',
       version.trim(),
-      minimalWerfVersion
+      werf.GROUP
     )
   )
 }

src/install.ts

@@ -1,8 +1,11 @@
 import * as core from '@actions/core'
 import {Manager} from './manager'
+import {ProcessGitHubContext} from './common'
 
 async function run(): Promise<void> {
   try {
+    ProcessGitHubContext()
+
     const m = new Manager()
     await m.Install()
   } catch (error) {

src/manager.ts

@@ -83,6 +83,11 @@ export class Manager {
     const tmpFilePath = tmpFile.name
     await this.Exec(['ci-env', 'github', '--as-env-file', '-o', tmpFilePath])
     const res = dotenv.config({path: tmpFilePath})
+    if (res.parsed) {
+      for (const [key, value] of Object.entries(res.parsed)) {
+        core.exportVariable(key, value)
+      }
+    }
     console.log(res.parsed)
     tmpFile.removeCallback()
   }
@@ -120,7 +125,7 @@ export class Manager {
       return this._constructReleaseUrl(version)
     }
 
-    const url = `${WERF_TUF_SERVER_URL}/targets/channels/${werf.MAJOR_MINOR_GROUP}/${this.channel}`
+    const url = `${WERF_TUF_SERVER_URL}/targets/channels/${werf.GROUP}/${this.channel}`
     try {
       const resp = await request
         .get(url)

src/werf.ts

@@ -1,3 +1,2 @@
-export const MAJOR_MINOR_GROUP = '1.2'
-export const MAJOR = 1
-export const MINOR = 2
+export const GROUP = '2'
+export const MAJOR = 2