Quite happy with my release process for sofmani
-> Push updates to git
-> Release Please generates changelog PR
-> When merged, release is created
-> All files are generated & uploaded to release
-> Triggers a dispatch workflow to my OTHER repo, which is the homebrew tap
-> That generates a PR for homebrew update & bottles
-> Add label pr-pull and it updates the tap with the bottles
With tests on every step
Wrote a minimalistic github action to create pull requests in my local #gitea instance within the workflow. Currently only supports way to less configuration flags but it's working in its minimal form. Available here: https://github.com/deB4SH/tea-pr
tags for visibility: #homelab #gitea #github #githubaction #act
Did you see that #Antropic released an official GitHub Action to use in a PR? I did! So much fun if you keep track of these marketplaces 
.
GitHub Actions Marketplace News https://devops-actions.github.io/github-actions-marketplace-news/blog/2025/05/23/claude-code-action-official/
You can also build something similar using GitHub Models of course!
Oh, this is an unexpected limitation of GitHub Actions:
When pushing more than 3 tags at once, GitHub Actions does not trigger any workflows.
Przy okazji dłubania przy najnowszej zajawce, udało mi się w końcu doprowadzić do działania paginację strony głównej na Jekyllu.
W życiu bym sam nie wpadł na to, że wystarczy zmienić nazwę pliku `index.md` na `index.html`, żeby plugin od paginacji zaczął działać 
@GossiTheDog Exactly how I feel after trying to get a #microsoft #visualstudio VSTO project to build in a #GithubAction. If I banged my head against the wall I'd at least WHY it hurts. But hey, it's Friday, at least we get two days of not think about it. Whish you a good weekend and all the success on Monday
The first #GithubAction to check #Bibtex consistency. For instance: Do all articles have page numbers, no articles, or is there a mix?
Head on to https://github.com/JabRef/jabref-action to see an example.
This is an alpha state. Feedback and contributions very welcome!
Team12 just won the #Dust AI Agent #Hackathon! We developed an innovative #AI agent that can fix functional bugs reported by non-technical users (CSM, PO/PM, etc...), streamlining the process, breaking Team Silos and reducing engineering workload.
Key Features:
- End-to-end bug fixing without engineer involvement, via a simple interface
- Seamless integration with our knowledge base in @Notion 
- Deploy in ephemeral environments thanks to #GitHubAction & #MCP
Ah, the fun of hosting your own #GitHubAction runners for your projects <3.
Also created a #github Action to deploy #VSCodium Server for debugging when a failure occurs.
https://github.com/gbraad-actions/codium-server-action
I use this myself with #Tailscale to check what actually happened on a runner.
Announcing my TestInfra GitHub Action: https://blog.wyrihaximus.net/2025/03/announcing-testinfra-action/
CISA Warns of Exploited GitHub Action CVE-2025-30066 – Users Urged to Patch https://thecyberexpress.com/exploited-github-action-cve-2025-30066/ #GitHubPersonalAccessTokens #tjactions/changedfiles #TheCyberExpressNews #VulnerabilityNews #Vulnerabilities #TheCyberExpress #FirewallDaily #Vulnerability #CVE202530066 #GitHubAction #CyberNews #CISA
Security researchers reveal supply chain attack on 'tj-actions/changed-files' #GitHubAction
The attackers added malicious code to the tool on Mar 14, 2025 that dumped secrets to the repository of any projects using the action. The incident has now been assigned CVE-2025-30066. GitHub has now reversed the malicious changes.
GitHub is advising impacted users to rotate secrets, review workflows for unexpected output, and update the Action
#cybersecurity #threatintel
https://www.bleepingcomputer.com/news/security/supply-chain-attack-on-popular-github-action-exposes-ci-cd-secrets/
So this weekend's tj-actions/changed-files credentials stealing fun and games.
I know you can fake git commit time stamps, but it looks like the change was made just before 17:00 GMT on Friday night. I wonder if that was deliberate to try adnd catch people pushing updates on their way out the door and not expecting to check the logs before Monday morning.
Tj-actions/changed-files GitHub Action Compromised
Popular GitHub Action tj-actions/changed-files is compromised
https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/
#HackerNews #GitHubAction #Security #Compromise #tj-actions #changed-files #Cybersecurity
Machinefile executor
A simple executor that allows you to run `Dockerfile`/`Containerfile` commands directly on the host
- Machinefile executor
https://github.com/gbraad-redhat/machinefile
- GitHub Action
https://github.com/gbraad-actions/machinefile-executor-action
- Examples
https://github.com/gbraad-redhat/machinefile/issues/3
New Video Released!
Checkout my latest video about Omnishare. I have created a CLI tool that allows me to post any markdown content from my terminal. This very message is being posted from my terminal using Omnishare.
#python #cli #terminal #dev #automation #githubaction #codeinpublic #notetaking #obsidian
Nice to see the OpenSauced pizza-action in action updating the CODEOWNERS file in one of our repositories. The way we're generating it, it's more granular which helps to laser focus on who gets automatically tagged for reviews in PRs.
https://github.com/open-sauced/pizza-cli/pull/166 #github #githubaction #opensource
I came up with a nice #orgmode #hugo #githubaction with nice scripts so I only have to version control my #org files and github handles the rest. Everything seemed to work with the content I already have so I made a test post to ensure that worked too, and it did not. I spent an hour trying to diagnose why the hell this one post wasn't exporting - debugging the workflow on #GitHub, debugging locally, everything.
I had the post dated for the fifth. Today is the fourth. I am certifiably a moron.
