Action Reference¶
All actions are composite GitHub Actions located under the actions/ directory.
Each action is self-contained with an action.yml definition and optional
supporting scripts.
Available actions¶
CI & Validation¶
- standards-compliance — Validates repository standards: markdown, commit messages, PR linkage, and repository profile.
Documentation¶
- docs-deploy — Deploys MkDocs documentation using mike for versioned documentation.
Python¶
- python/setup — Sets up Python, installs uv, and configures dependency caching.
Security¶
- security/codeql — Runs GitHub CodeQL static analysis for a single language.
- security/semgrep — Runs Semgrep SAST scanning with language-specific and cross-cutting security rulesets.
- security/trivy — Runs Trivy vulnerability scanning, SBOM generation, or container image scanning.
Publishing¶
- publish/tag-and-release — Creates annotated git tags and GitHub Releases.
- publish/version-bump-pr — Automates post-release version bump PRs.
Release Gates¶
- release-gates/version-divergence — Verifies that the PR branch version differs from the main branch version.