From 746c94677989c618d835bab6dd504c6e22dd1d65 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sat, 1 Mar 2025 15:13:48 +0100 Subject: [PATCH 1/7] =?UTF-8?q?=F0=9F=8C=9F=20[Major]:=20Fix=20path=20sepa?= =?UTF-8?q?rator=20in=20`action.yml`=20and=20update=20`README.md`=20(#10)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request includes several changes to improve the handling of sensitive information, enhance the readability of the debug information, and update documentation, including adding a new function to mask sensitive values, updating the `README.md` to provide clearer information about the action, and modifying the PowerShell script to use the new masking function. Enhancements to sensitive information handling: * `action.yml`: * Fixed the path separator in the script path to ensure compatibility across different environments. * `scripts/Helpers.psm1`: * Added a new `Set-MaskedValue` function to mask sensitive values such as GitHub tokens, JWT tokens, and private keys. * `scripts/main.ps1`: * Imported the `Helpers.psm1` module and set the output rendering to ANSI for better readability. * Updated various logging sections to use the `Set-MaskedValue` function to mask sensitive information in environment variables and PowerShell variables. Documentation updates: * `README.md`: * Updated the documentation to provide more comprehensive information about the action, including inputs, outputs, and a caution about exposing sensitive information. Tests: * `.github/workflows/Action-Test.yml`: * Added an environment variable for a fake private key for debugging purposes. ## Type of change - [ ] 📖 [Docs] - [ ] 🪲 [Fix] - [ ] 🩹 [Patch] - [ ] ⚠️ [Security fix] - [ ] 🚀 [Feature] - [x] 🌟 [Breaking change] ## Checklist - [x] I have performed a self-review of my own code - [x] I have commented my code, particularly in hard-to-understand areas --- .github/workflows/Action-Test.yml | 3 + README.md | 40 +++++++++--- action.yml | 2 +- scripts/Helpers.psm1 | 105 ++++++++++++++++++++++++++++++ scripts/main.ps1 | 39 +++++++---- 5 files changed, 168 insertions(+), 21 deletions(-) create mode 100644 scripts/Helpers.psm1 diff --git a/.github/workflows/Action-Test.yml b/.github/workflows/Action-Test.yml index a56b1b0..3936e4e 100644 --- a/.github/workflows/Action-Test.yml +++ b/.github/workflows/Action-Test.yml @@ -16,6 +16,9 @@ permissions: contents: read pull-requests: read +env: + PSMODULE_DEBUG_FAKE_PRIVATE_KEY: ${{ secrets.FAKE_PRIVATE_KEY }} + jobs: ActionTestBasic: strategy: diff --git a/README.md b/README.md index c8837a7..4c83fbf 100644 --- a/README.md +++ b/README.md @@ -1,17 +1,27 @@ -# Debug +# Debug Action -Gets debug information about the environment. +Prints comprehensive debug information about the GitHub Actions runner environment, contexts, environment variables, and PowerShell state. -Uses all the contexts, environment variables and PowerShell variables and modules. - -- [Contexts | GitHub Docs](https://docs.github.com/en/actions/learn-github-actions/contexts) -- [Variables | GitHub Docs](https://docs.github.com/en/actions/learn-github-actions/variables#default-environment-variables) +> [!CAUTION] +> This action exposes environment variables and contexts, which may include sensitive information or secrets. GitHub attempts to mask +> secrets in logs, but if a secret contains newlines (common with private keys) due to PowerShell's formatting, GitHub masking may fail and +> inadvertently expose the secret. ## Usage -### Example +### Inputs + +This action does not currently require any inputs. + +### Secrets + +This action does not explicitly require secrets but may display environment variables or contexts containing sensitive information. Use with caution. -#### Example 1: Get debug information +### Outputs + +This action does not provide outputs. + +## Example ```yaml jobs: @@ -21,3 +31,17 @@ jobs: - name: Debug uses: PSModule/Debug@v1 ``` + +## Information Displayed + +- [GitHub Context](https://docs.github.com/en/actions/learn-github-actions/contexts) +- [Environment Variables](https://docs.github.com/en/actions/learn-github-actions/variables#default-environment-variables) +- GitHub event payload details +- PowerShell environment details including: + - Variables + - Installed Modules + - Execution context + - Host details + - Invocation details + - PowerShell session options + - PowerShell version details diff --git a/action.yml b/action.yml index a03c982..5ff05ad 100644 --- a/action.yml +++ b/action.yml @@ -29,4 +29,4 @@ runs: Verbose: true Script: | # Debug environment - ${{ github.action_path }}\scripts\main.ps1 + ${{ github.action_path }}/scripts/main.ps1 diff --git a/scripts/Helpers.psm1 b/scripts/Helpers.psm1 new file mode 100644 index 0000000..1cde2ff --- /dev/null +++ b/scripts/Helpers.psm1 @@ -0,0 +1,105 @@ +filter Set-MaskedValue { + <# + .SYNOPSIS + Masks sensitive values such as GitHub tokens, JWT tokens, and private keys. + + .DESCRIPTION + This function checks an input string against known patterns for sensitive values, such as: + - GitHub tokens (Personal Access Tokens, OAuth Tokens, Session Tokens, User Tokens) + - JSON Web Tokens (JWT) + - Private keys + If a match is found, the function replaces the value with a corresponding masked placeholder. + If no match is found, the original value is returned unaltered. + + .EXAMPLE + Set-MaskedValue -Value 'github_pat_1234567890123456789012' + + Output: + ```powershell + ***GITHUB_FG_PAT_TOKEN*** + ``` + + Masks a GitHub fine-grained personal access token. + + .EXAMPLE + Set-MaskedValue -Value 'ghp_abcdefghijklmnopqrstuvwxyz0123456789' #gitleaks:allow + + Output: + ```powershell + ***GITHUB_CLASSIC_PAT_TOKEN*** + ``` + + Masks a classic GitHub personal access token. + + .EXAMPLE + Set-MaskedValue -Value 'header.payload.signature' + + Output: + ```powershell + ***JWT_TOKEN*** + ``` + + Masks a JSON Web Token (JWT). + + .EXAMPLE + Set-MaskedValue -Value "-----BEGIN RSA PRIVATE KEY-----\nMIIEowIBAA..." + + Output: + ```powershell + ***PRIVATE_KEY*** + ``` + + Masks a private key. + + .OUTPUTS + string + + .NOTES + Returns the masked value if a match is found; otherwise, returns the original value. + #> + [Diagnostics.CodeAnalysis.SuppressMessageAttribute( + 'PSUseShouldProcessForStateChangingFunctions', '', + Justification = 'This function is not state-changing. It is a utility function.' + )] + [OutputType([string])] + [CmdletBinding()] + param ( + # The value to be checked and potentially masked. + [Parameter(ValueFromPipeline)] + [string] $Value = '' + ) + + switch -Regex ($Value) { + '^github_pat_' { + '***GITHUB_FG_PAT_TOKEN***' + break + } + '^ghp_' { + '***GITHUB_CLASSIC_PAT_TOKEN***' + break + } + '^ghs_' { + '***GITHUB_SESSION_TOKEN***' + break + } + '^ghu_' { + '***GITHUB_USER_TOKEN***' + break + } + '^gho_' { + '***GITHUB_OAUTH_TOKEN***' + break + } + '^[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+$' { + '***JWT_TOKEN***' + break + } + 'PRIVATE KEY.*[\s\S]+?.*PRIVATE KEY' { + '***PRIVATE_KEY***' + break + } + default { + $Value + } + } +} diff --git a/scripts/main.ps1 b/scripts/main.ps1 index 9fe92a8..09bbec6 100644 --- a/scripts/main.ps1 +++ b/scripts/main.ps1 @@ -1,6 +1,9 @@ [CmdletBinding()] param() +$PSStyle.OutputRendering = 'Ansi' +Import-Module "$PSScriptRoot/Helpers.psm1" + $CONTEXT_GITHUB = $env:CONTEXT_GITHUB | ConvertFrom-Json -Depth 100 LogGroup 'Context: [GITHUB]' { @@ -71,7 +74,13 @@ LogGroup "File system at [$pwd]" { } LogGroup 'Environment Variables' { - Get-ChildItem env: | Where-Object { $_.Name -notlike 'CONTEXT_*' } | Sort-Object Name | Format-Table -AutoSize -Wrap + $vars = [ordered]@{} + Get-ChildItem env: | Where-Object { $_.Name -notlike 'CONTEXT_*' } | Sort-Object Name | ForEach-Object { + $name = $_.Name + $value = $_.Value | Set-MaskedValue + $vars.Add($name, $value) + } + [pscustomobject]$vars | Format-List | Out-String } LogGroup '[System.Environment]' { @@ -84,49 +93,55 @@ LogGroup '[System.Environment]' { $props.GetEnumerator() | Sort-Object Name | ForEach-Object { $propsObject | Add-Member -MemberType NoteProperty -Name $_.Name -Value $_.Value } - $propsObject | Format-List + $propsObject | Format-List | Out-String } LogGroup 'PowerShell variables' { - Get-Variable | Where-Object { $_.Name -notlike 'CONTEXT_*' } | Sort-Object Name | Format-Table -AutoSize -Wrap + $vars = [ordered]@{} + Get-Variable | Where-Object { $_.Name -notlike 'CONTEXT_*' } | Select-Object -Property Name, Value | Sort-Object Name | ForEach-Object { + $name = $_.Name + $value = $_.Value | Set-MaskedValue + $vars.Add($name, $value) + } + [pscustomobject]$vars | Format-List | Out-String } LogGroup 'PSVersionTable' { - $PSVersionTable | Select-Object * | Format-List + $PSVersionTable | Select-Object * | Format-List | Out-String } LogGroup 'Installed Modules - List' { $modules = Get-PSResource | Sort-Object -Property Name - $modules | Select-Object Name, Version, CompanyName, Author | Format-Table -AutoSize -Wrap + $modules | Select-Object Name, Version, CompanyName, Author | Format-Table -AutoSize -Wrap | Out-String } $modules.Name | Select-Object -Unique | ForEach-Object { $name = $_ LogGroup "Installed Modules - Details - [$name]" { - $modules | Where-Object Name -EQ $name | Select-Object * | Format-List + $modules | Where-Object Name -EQ $name | Select-Object * | Format-List | Out-String } } LogGroup 'ExecutionContext' { - $ExecutionContext | Select-Object * | Format-List + $ExecutionContext | ConvertTo-Json -Depth 3 } LogGroup 'Host' { - $Host | Select-Object * | Format-List + $Host | Select-Object * | Format-List | Out-String } LogGroup 'MyInvocation' { - $MyInvocation | Select-Object * | Format-List + $MyInvocation | Select-Object * | Format-List | Out-String } LogGroup 'PSCmdlet' { - $PSCmdlet | Select-Object * | Format-List + $PSCmdlet | Select-Object * | Format-List | Out-String } LogGroup 'PSSessionOption' { - $PSSessionOption | Select-Object * | Format-List + $PSSessionOption | Select-Object * | Format-List | Out-String } LogGroup 'PSStyle' { - $PSStyle | Select-Object * | Format-List + $PSStyle | Select-Object * | Format-List | Out-String } From 317d7845502243e9ff9b05038579e802cc9ebb07 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sat, 20 Sep 2025 16:05:54 +0200 Subject: [PATCH 2/7] =?UTF-8?q?=F0=9F=A9=B9=20[Patch]:=20Add=20JSON=20logg?= =?UTF-8?q?ing=20for=20Host=20and=20PSStyle=20contexts=20(#12)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request introduces several updates to automation and logging in the repository, focusing on dependency management and workflow maintenance, along with improvements to script documentation and output formatting. **Automation and Dependency Management** * Added a new `.github/dependabot.yml` configuration to enable weekly updates for GitHub Actions dependencies using Dependabot. **Workflow Maintenance** * Updated all GitHub Actions workflows (`Action-Test.yml`, `Auto-Release.yml`, and `Linter.yml`) to use `actions/checkout@v5` for improved reliability and security. [[1]](diffhunk://#diff-a12ae5c885b0673c0ff6f70c2670886907590d624626e07da4c52e01aeaf56a4L32-R32) [[2]](diffhunk://#diff-d3f6900ee5159d4bc4ba6d893e2dd8443c2691b0490d7351cffbd7a37ed8d95aL28-R29) [[3]](diffhunk://#diff-482e65806ed9e4a7320f14964764086b91fed4a28d12e4efde1776472e147e79L22-R22) **Script Documentation and Output Improvements** * Revised example values in `Set-MaskedValue` documentation within `scripts/Helpers.psm1` to use generic token placeholders instead of actual token formats, enhancing security and clarity. [[1]](diffhunk://#diff-acb1351e3ba396afa6a397b0bd44b5d8ed3ffeb97a3f3ef3633e9cfd6cacf11aL15-R15) [[2]](diffhunk://#diff-acb1351e3ba396afa6a397b0bd44b5d8ed3ffeb97a3f3ef3633e9cfd6cacf11aL25-R25) * Enhanced logging in `scripts/main.ps1` by adding new log groups that output `Host` and `PSStyle` information in JSON format for easier parsing and debugging. [[1]](diffhunk://#diff-dc2e5a659836b1b73abb03421c567f5018c2755677c4a0aa764cb26117b68011R133-R136) [[2]](diffhunk://#diff-dc2e5a659836b1b73abb03421c567f5018c2755677c4a0aa764cb26117b68011R152-R155) ## Type of change - [ ] 📖 [Docs] - [ ] 🪲 [Fix] - [x] 🩹 [Patch] - [ ] ⚠️ [Security fix] - [ ] 🚀 [Feature] - [ ] 🌟 [Breaking change] ## Checklist - [x] I have performed a self-review of my own code - [x] I have commented my code, particularly in hard-to-understand areas --- .github/dependabot.yml | 11 +++++++++++ .github/workflows/Action-Test.yml | 2 +- .github/workflows/Auto-Release.yml | 4 ++-- .github/workflows/Linter.yml | 2 +- scripts/Helpers.psm1 | 4 ++-- scripts/main.ps1 | 8 ++++++++ 6 files changed, 25 insertions(+), 6 deletions(-) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..f57e1e9 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates + +version: 2 +updates: + - package-ecosystem: github-actions # See documentation for possible values + directory: / # Location of package manifests + schedule: + interval: weekly diff --git a/.github/workflows/Action-Test.yml b/.github/workflows/Action-Test.yml index 3936e4e..7af5006 100644 --- a/.github/workflows/Action-Test.yml +++ b/.github/workflows/Action-Test.yml @@ -29,7 +29,7 @@ jobs: steps: # Need to check out as part of the test, as its a local action - name: Checkout repo - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Action-Test uses: ./ diff --git a/.github/workflows/Auto-Release.yml b/.github/workflows/Auto-Release.yml index 1a580b8..0fe6aad 100644 --- a/.github/workflows/Auto-Release.yml +++ b/.github/workflows/Auto-Release.yml @@ -25,8 +25,8 @@ jobs: Auto-Release: runs-on: ubuntu-latest steps: - - name: Checkout Code - uses: actions/checkout@v4 + - name: Checkout repo + uses: actions/checkout@v5 - name: Auto-Release uses: PSModule/Auto-Release@v1 diff --git a/.github/workflows/Linter.yml b/.github/workflows/Linter.yml index 1f677cb..94f34b0 100644 --- a/.github/workflows/Linter.yml +++ b/.github/workflows/Linter.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repo - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: fetch-depth: 0 diff --git a/scripts/Helpers.psm1 b/scripts/Helpers.psm1 index 1cde2ff..1f4ae93 100644 --- a/scripts/Helpers.psm1 +++ b/scripts/Helpers.psm1 @@ -12,7 +12,7 @@ If no match is found, the original value is returned unaltered. .EXAMPLE - Set-MaskedValue -Value 'github_pat_1234567890123456789012' + Set-MaskedValue -Value '' Output: ```powershell @@ -22,7 +22,7 @@ Masks a GitHub fine-grained personal access token. .EXAMPLE - Set-MaskedValue -Value 'ghp_abcdefghijklmnopqrstuvwxyz0123456789' #gitleaks:allow + Set-MaskedValue -Value '' Output: ```powershell diff --git a/scripts/main.ps1 b/scripts/main.ps1 index 09bbec6..135c99e 100644 --- a/scripts/main.ps1 +++ b/scripts/main.ps1 @@ -130,6 +130,10 @@ LogGroup 'Host' { $Host | Select-Object * | Format-List | Out-String } +LogGroup 'Host - Json' { + $Host | ConvertTo-Json -Depth 3 +} + LogGroup 'MyInvocation' { $MyInvocation | Select-Object * | Format-List | Out-String } @@ -145,3 +149,7 @@ LogGroup 'PSSessionOption' { LogGroup 'PSStyle' { $PSStyle | Select-Object * | Format-List | Out-String } + +LogGroup 'PSStyle - Json' { + $PSStyle | ConvertTo-Json -Depth 3 +} From 2b4265cf346b344c3137ea7047256bf0ac5fb691 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sat, 4 Oct 2025 20:39:28 +0200 Subject: [PATCH 3/7] =?UTF-8?q?=F0=9F=A9=B9=20[Patch]:=20Add=20network=20a?= =?UTF-8?q?nd=20public=20IP=20information=20(#13)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request updates the `scripts/main.ps1` PowerShell script to enhance its network diagnostics capabilities by installing two new modules and adding commands to display network configuration and public IP information. The most important changes are grouped below: **Module installation:** * Added installation steps for the `Net` and `PublicIP` modules from the PowerShell Gallery to ensure required commands are available. **Network diagnostics:** * Introduced a new log group, 'Network Info', which runs `Get-NetIPConfiguration` to display detailed local network configuration. * Added a 'Public IP Info' log group that uses `Get-PublicIP` to display the machine's public IP address. --- action.yml | 3 +-- scripts/main.ps1 | 12 +++++++++++- 2 files changed, 12 insertions(+), 3 deletions(-) diff --git a/action.yml b/action.yml index 5ff05ad..6d95f63 100644 --- a/action.yml +++ b/action.yml @@ -25,8 +25,7 @@ runs: # CONTEXT_NEEDS: ${{ toJson(needs) }} CONTEXT_INPUTS: ${{ toJson(inputs) }} with: - Debug: true - Verbose: true + Name: Debug Script: | # Debug environment ${{ github.action_path }}/scripts/main.ps1 diff --git a/scripts/main.ps1 b/scripts/main.ps1 index 135c99e..dd6faea 100644 --- a/scripts/main.ps1 +++ b/scripts/main.ps1 @@ -1,7 +1,8 @@ [CmdletBinding()] param() -$PSStyle.OutputRendering = 'Ansi' +Install-PSResource -Repository PSGallery -TrustRepository -Name Net +Install-PSResource -Repository PSGallery -TrustRepository -Name PublicIP Import-Module "$PSScriptRoot/Helpers.psm1" $CONTEXT_GITHUB = $env:CONTEXT_GITHUB | ConvertFrom-Json -Depth 100 @@ -69,6 +70,15 @@ LogGroup 'Context: [INPUTS]' { $env:CONTEXT_INPUTS } +LogGroup 'Network Info' { + Write-Host "$(Get-NetIPConfiguration | Out-String)" +} + +LogGroup 'Public IP Info' { + Write-Host "$(Get-PublicIP | Out-String)" +} + + LogGroup "File system at [$pwd]" { Get-ChildItem -Path . -Force | Select-Object -ExpandProperty FullName | Sort-Object } From 4390bce5312b484a0ae4fac5e512a35687d2bd49 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 5 Oct 2025 11:16:11 +0200 Subject: [PATCH 4/7] =?UTF-8?q?=F0=9F=A9=B9=20[Patch]:=20Remove=20redundan?= =?UTF-8?q?t=20GitHub=20event=20context=20logging=20from=20`main.ps1`=20(#?= =?UTF-8?q?14)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request simplifies the logging logic in the `scripts/main.ps1` script by removing several redundant log groups related to GitHub event context. Only the essential GitHub context and environment variables are now logged. Logging simplification: * Removed log groups for `GITHUB_EVENT`, `GITHUB_EVENT_ENTERPRISE`, `GITHUB_EVENT_ORGANIZATION`, and `GITHUB_EVENT_REPOSITORY` from the script to reduce unnecessary output and streamline context logging. --- scripts/main.ps1 | 16 ---------------- 1 file changed, 16 deletions(-) diff --git a/scripts/main.ps1 b/scripts/main.ps1 index dd6faea..43cbb17 100644 --- a/scripts/main.ps1 +++ b/scripts/main.ps1 @@ -11,22 +11,6 @@ LogGroup 'Context: [GITHUB]' { $CONTEXT_GITHUB | ConvertTo-Json -Depth 100 } -LogGroup 'Context: [GITHUB_EVENT]' { - $CONTEXT_GITHUB.event | ConvertTo-Json -Depth 100 -} - -LogGroup 'Context: [GITHUB_EVENT_ENTERPRISE]' { - $CONTEXT_GITHUB | ConvertTo-Json -Depth 100 -} - -LogGroup 'Context: [GITHUB_EVENT_ORGANIZATION]' { - $CONTEXT_GITHUB.event.organization | ConvertTo-Json -Depth 100 -} - -LogGroup 'Context: [GITHUB_EVENT_REPOSITORY]' { - $CONTEXT_GITHUB.event.repository | ConvertTo-Json -Depth 100 -} - LogGroup 'Context: [ENV]' { $env:CONTEXT_ENV } From 32ca74a570542f2b81a665fc753f556ece1e3d9a Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 5 Oct 2025 11:28:03 +0200 Subject: [PATCH 5/7] =?UTF-8?q?=F0=9F=A9=B9=20[Patch]:=20Update=20Dependab?= =?UTF-8?q?ot=20configuration=20to=20include=20labels=20for=20GitHub=20Act?= =?UTF-8?q?ions=20(#15)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request makes a small configuration update to the Dependabot settings. It adds default labels to pull requests that update GitHub Actions dependencies, making it easier to identify and manage them. - Configuration improvement: * [`.github/dependabot.yml`](diffhunk://#diff-dd4fbda47e51f1e35defb9275a9cd9c212ecde0b870cba89ddaaae65c5f3cd28R10-R12): Added `dependencies` and `github-actions` labels to Dependabot PRs for GitHub Actions updates. --- .github/dependabot.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index f57e1e9..53188fe 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -7,5 +7,8 @@ version: 2 updates: - package-ecosystem: github-actions # See documentation for possible values directory: / # Location of package manifests + labels: + - dependencies + - github-actions schedule: interval: weekly From 42a8701f559fc6899ae18c1aa2c5ba1f1648092b Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 12 Oct 2025 14:28:54 +0200 Subject: [PATCH 6/7] =?UTF-8?q?=F0=9F=A9=B9=20[Patch]:=20Encode=20all=20Po?= =?UTF-8?q?werShell=20files=20using=20UTF8=20with=20BOM=20(#16)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## Description This pull request makes a minor change to the `scripts/main.ps1` file by adding a Unicode Byte Order Mark (BOM) at the beginning of the file. This can help ensure proper encoding detection on some systems. --- scripts/main.ps1 | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/main.ps1 b/scripts/main.ps1 index 43cbb17..28f6895 100644 --- a/scripts/main.ps1 +++ b/scripts/main.ps1 @@ -1,4 +1,4 @@ -[CmdletBinding()] +[CmdletBinding()] param() Install-PSResource -Repository PSGallery -TrustRepository -Name Net From e72094e33023ef50a915137a860aa78320867476 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 26 Nov 2025 22:04:03 +0100 Subject: [PATCH 7/7] Bump actions/checkout from 5 to 6 (#17) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6.
Release notes

Sourced from actions/checkout's releases.

v6.0.0

What's Changed

Full Changelog: https://github.com/actions/checkout/compare/v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Full Changelog: https://github.com/actions/checkout/compare/v5...v5.0.1

Changelog

Sourced from actions/checkout's changelog.

Changelog

V6.0.0

V5.0.1

V5.0.0

V4.3.1

V4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

... (truncated)

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=5&new-version=6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/Action-Test.yml | 2 +- .github/workflows/Auto-Release.yml | 2 +- .github/workflows/Linter.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/Action-Test.yml b/.github/workflows/Action-Test.yml index 7af5006..6400e40 100644 --- a/.github/workflows/Action-Test.yml +++ b/.github/workflows/Action-Test.yml @@ -29,7 +29,7 @@ jobs: steps: # Need to check out as part of the test, as its a local action - name: Checkout repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Action-Test uses: ./ diff --git a/.github/workflows/Auto-Release.yml b/.github/workflows/Auto-Release.yml index 0fe6aad..248d806 100644 --- a/.github/workflows/Auto-Release.yml +++ b/.github/workflows/Auto-Release.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Auto-Release uses: PSModule/Auto-Release@v1 diff --git a/.github/workflows/Linter.yml b/.github/workflows/Linter.yml index 94f34b0..1962629 100644 --- a/.github/workflows/Linter.yml +++ b/.github/workflows/Linter.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: fetch-depth: 0