feat: support configuration files (#99)

* feat: support configuration files

* ci: add a test

* docs: update README

Author: suzuki-shunsuke

.github/workflows/wc-test.yaml

@@ -24,5 +24,5 @@ jobs:
       - run: go test -v ./... -race -covermode=atomic
       - run: go install ./cmd/pinact
       - run: pinact -v
-      - run: pinact run testdata/foo.yaml
-      - run: git diff
+      - run: pinact run
+      - run: diff testdata/foo.yaml testdata/foo.yaml.after

.pinact.yaml

@@ -0,0 +1,9 @@
+# pinact - https://github.com/suzuki-shunsuke/pinact
+files:
+  - pattern: "^\\.github/workflows/.*\\.ya?ml$"
+  - pattern: "^(.*/)?action\\.ya?ml$"
+  - pattern: "^testdata/.*\\.ya?ml$"
+
+ignore_actions:
+  - name: actions/setup-java
+  - name: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml

README.md

@@ -100,52 +100,62 @@ If no GitHub Access token is passed, pinact calls GitHub REST API without access
 
 ## Usage
 
-```console
-$ pinact help
-NAME:
-   pinact - Pin GitHub Actions versions. https://github/com/suzuki-shunsuke/pinact
-
-USAGE:
-   pinact [global options] command [command options] [arguments...]
+Please see [USAGE](USAGE.md).
 
-VERSION:
-   0.1.0 (8ccd55944c83ff1f4d738343c28d4a6109246d06)
+## How to use
 
-COMMANDS:
-   version  Show version
-   run      Pin GitHub Actions versions
-   help, h  Shows a list of commands or help for one command
+Please run `pinact run` on a Git repository root directory, then files `\.github/workflows/.*\.ya?ml$` are fixed.
 
-GLOBAL OPTIONS:
-   --log-level value  log level [$PINACT_LOG_LEVEL]
-   --help, -h         show help
-   --version, -v      print the version
+```console
+$ pinact run
 ```
 
+You can also specify target files by command line arguments.
+
+e.g.
+
 ```console
-$ pinact help run
-NAME:
-   pinact run - Pin GitHub Actions versions
+$ pinact run action.yaml
+```
 
-USAGE:
-   pinact run [command options] [arguments...]
+A configuration file is optional, but pinact supports it.
+You can create a configuration file by `pinact init`.
 
-DESCRIPTION:
-   If no argument is passed, pinact searches GitHub Actions workflow files from .github/workflows.
+```console
+$ pinact init
+```
 
-   $ pinact run
+About the configuration, please see [Configuration](#Configuration).
 
-   You can also pass workflow file paths as arguments.
+## Configuration
 
-   e.g.
+pinact supports a configuration file `.pinact.yaml`.
+You can also specify the configuration file path by the environment variable `PINACT_CONFIG` or command line option `-c`.
 
-   $ pinact run .github/actions/foo/action.yaml .github/actions/bar/action.yaml
+.pinact.yaml
 
+e.g.
 
-OPTIONS:
-   --help, -h  show help
+```yaml
+files:
+  - pattern: "^\\.github/workflows/.*\\.ya?ml$"
+  - pattern: "^(.*/)?action\\.ya?ml$"
+
+ignore_actions:
+  # slsa-framework/slsa-github-generator doesn't support pinning version
+  # > Invalid ref: 68bad40844440577b33778c9f29077a3388838e9. Expected ref of the form refs/tags/vX.Y.Z
+  # https://github.com/slsa-framework/slsa-github-generator/issues/722
+  - name: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml
 ```
 
+### `files[].pattern`
+
+The regular expression of target files. If files are passed via positional command line arguments, the configuration is ignored.
+
+### `ignore_actions[].name`
+
+Action and reusable workflow names that pinact ignores.
+
 ## See also
 
 - [Renovate github-actions Manager - Additional Information](https://docs.renovatebot.com/modules/manager/github-actions/#additional-information)

USAGE.md

@@ -0,0 +1,79 @@
+# Usage
+
+<!-- This is generated by scripts/generate-usage.sh. Don't edit this file directly. -->
+
+```console
+$ pinact help
+NAME:
+   pinact - Pin GitHub Actions versions. https://github/com/suzuki-shunsuke/pinact
+
+USAGE:
+   pinact [global options] command [command options] [arguments...]
+
+VERSION:
+    ()
+
+COMMANDS:
+   version  Show version
+   run      Pin GitHub Actions versions
+   init     Create .pinact.yaml if it doesn't exist
+   help, h  Shows a list of commands or help for one command
+
+GLOBAL OPTIONS:
+   --log-level value         log level [$PINACT_LOG_LEVEL]
+   --config value, -c value  configuration file path [$PINACT_CONFIG]
+   --help, -h                show help
+   --version, -v             print the version
+```
+
+## pinact init
+
+```console
+$ pinact help init
+NAME:
+   pinact init - Create .pinact.yaml if it doesn't exist
+
+USAGE:
+   pinact init [command options] [arguments...]
+
+DESCRIPTION:
+   Create .pinact.yaml if it doesn't exist
+
+   $ pinact init
+
+   You can also pass configuration file path.
+
+   e.g.
+
+   $ pinact init .github/pinact.yaml
+
+
+OPTIONS:
+   --help, -h  show help
+```
+
+## pinact run
+
+```console
+$ pinact help run
+NAME:
+   pinact run - Pin GitHub Actions versions
+
+USAGE:
+   pinact run [command options] [arguments...]
+
+DESCRIPTION:
+   If no argument is passed, pinact searches GitHub Actions workflow files from .github/workflows.
+
+   $ pinact run
+
+   You can also pass workflow file paths as arguments.
+
+   e.g.
+
+   $ pinact run .github/actions/foo/action.yaml .github/actions/bar/action.yaml
+
+
+OPTIONS:
+   --help, -h  show help
+```

cmdx.yaml

@@ -47,3 +47,7 @@ tasks:
   usage: Run pinact via go run
   script: |
     go run ./cmd/pinact {{._builtin.args_string}}
+- name: usage
+  description: Generate USAGE.md
+  usage: Generate USAGE.md
+  script: bash scripts/generate-usage.sh

go.mod

@@ -6,9 +6,11 @@ require (
 	github.com/google/go-github/v53 v53.2.0
 	github.com/mattn/go-colorable v0.1.13
 	github.com/sirupsen/logrus v1.9.3
+	github.com/spf13/afero v1.9.5
 	github.com/suzuki-shunsuke/logrus-error v0.1.4
 	github.com/urfave/cli/v2 v2.25.7
 	golang.org/x/oauth2 v0.10.0
+	gopkg.in/yaml.v3 v3.0.1
 )
 
 require (
@@ -23,6 +25,7 @@ require (
 	golang.org/x/crypto v0.11.0 // indirect
 	golang.org/x/net v0.12.0 // indirect
 	golang.org/x/sys v0.10.0 // indirect
+	golang.org/x/text v0.11.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
 )