Comments (3)
eseidel
commented on July 30, 2024
1
Very kind of you to respond at such length. What happened here was that I went to try and add very_good license check to our Shorebird repos on Friday. I'm not super great with GHA, and went looking for docs and got a bit confused is all. I did find the dart_frog solution but it wasn't clear having a separate yaml file per package was the right solution, so decided to file this bug and punt on finishing (until I could consult @felangel who knows GHA and very_good much better than I do). Thanks for the response!
from very_good_workflows.
alestiago
commented on July 30, 2024
Hi @eseidel ! Thank you for submitting an issue 💙
There is no ssh key option 🤣 That is presumably copy/paste from some other workflow.
The SSH step does exist (not a typo afaik). It is meant for those developers that get packages from other sources that are not pub. It is not listed as an option (input) because it is provided as a secret (we should probably add a Secrets documentation section like we recently did for the Mason and Dart publish workflows).
And then later is uses a - '.github/workflows/license_check.yaml' path, presumably implying that the file being shown is expected at that path.
I think the usage of '.github/workflows/license_check.yaml' you are referring to is inside an Example Usage, it is part of the example. As a developer you would most likely trigger the workflow to run when dependencies change or when there is a change to the workflow file (in the example located at .github/workflows/license_check.yaml). Perhaps we can include a commented header showing the name of the example file to avoid confusion or a brief recommendation for when we think it is most sensible to run the workflow.
The usage is also a bit awkward for multi-package repos (which is fine, I can work around), since the checker takes a single package. Unlike very_good packages get which knows how to be recursive.
For usage in multi-package repos we recommend having a workflow per package since that way it will make them trigger a run exclusively for the scenarios described above. Dart Frog is a good example of such multi-package repository (refer to those workflows prefixed with license_). Perhaps we can include a brief information block recommending or signposting to multi-package repositories that rely on the workflow. If you have a use-case for the very_good packages check licenses command to be recursive (not just checking transitive dependencies for a package) and would like such feature feel free to open an issue at https://github.com/VeryGoodOpenSource/very_good_cli.
For the time being, I'll re-label the issue as a documentation change rather than a bug (I believe it defaulted to bug) . Please, let us know if the explanation suits you, if you would like to contribute with the documentation changes, or if you have any further suggestions 🙌
from very_good_workflows.
tomarra
commented on July 30, 2024
Documentation updates have been deployed so closing this out as completed 👍
from very_good_workflows.
Related Issues (20)
- fix: semantic_pull_request fails when using breaking syntax
- docs(spell_check): provide default .cspell configuration file in docs
- docs(semantic_pull_request): add information about GitHub permissions HOT 3
- fix(very_good_cli): disallow middleware of middleware HOT 1
- fix(publish): publish times out if invalid pub credentials are provided HOT 3
- fix: coverage_excludes not working for Dart packages HOT 1
- chore: update coverage to latest version
- feat(dart_package): allow run skipped tests HOT 1
- feat(dart_package): allow --no-example on dart pub get HOT 1
- docs: provide documentation for Platform.environment on dart_package
- chore: publish license_check workflow HOT 2
- fix: allow inputs to run workflows in a monorepo HOT 5
- fix: spell_check fails on warning HOT 2
- fix: Cannot exclude generated files from "Check Formatting" HOT 4
- chore(dart_packages): release
- could not load the saved OAuth2 credentials HOT 7
- chore: Create & Release 1.17.0 HOT 2
- Consider the new Automated Publishing documentation HOT 1
- feature: Define a way to exclude file(s) from being analized HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from very_good_workflows.