From 830c063abaf1378225e09d768782128dd8b90c8a Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:01:29 +0200 Subject: [PATCH 1/8] Restore lint inputs Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- .github/workflows/super-linter-non-slim.yml | 52 ++++++++++++++++++- .github/workflows/super-linter.yml | 55 +++++++++++++++++++-- README.md | 52 ++++++++++++++++--- 3 files changed, 146 insertions(+), 13 deletions(-) diff --git a/.github/workflows/super-linter-non-slim.yml b/.github/workflows/super-linter-non-slim.yml index b439bf8..f89a4bf 100644 --- a/.github/workflows/super-linter-non-slim.yml +++ b/.github/workflows/super-linter-non-slim.yml @@ -30,6 +30,30 @@ on: "Will parse the entire repository and find all files to validate across all types. NOTE: When set to false, only new or edited files will be parsed for validation." + VALIDATE_KUBERNETES_KUBEVAL: + required: false + type: boolean + default: false + description: > + "Enable kubeval validation for Kubernetes manifests." + VALIDATE_GITHUB_ACTIONS: + required: false + type: boolean + default: false + description: > + "Enable GitHub Actions validation." + VALIDATE_CHECKOV: + required: false + type: boolean + default: false + description: > + "Enable Checkov validation." + VALIDATE_GITLEAKS: + required: false + type: boolean + default: false + description: > + "Enable Gitleaks validation." jobs: build: @@ -48,7 +72,32 @@ jobs: path: ${{ inputs.CODEQUALITY_PATH }} ref: ${{ inputs.CODEQUALITY_REF }} - - name: Lint Code Base + - name: Lint Code Base (include mode) + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS }} + uses: github/super-linter@v7 + env: + ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml + ANSIBLE_DIRECTORY: ${{ inputs.ANSIBLE_DIRECTORY }} + CHECKOV_FILE_NAME: checkov/.checkov.yaml + DEFAULT_BRANCH: main + GITHUB_TOKEN: ${{ github.token }} + JAVA_FILE_NAME: java/checkstyle/checkstyle.xml + KUBERNETES_KUBEVAL_OPTIONS: --ignore-missing-schemas + LINTER_RULES_PATH: "${{ inputs.CODEQUALITY_PATH }}/" + MARKDOWN_CONFIG_FILE: markdown/.markdown-lint.yml + VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" + VALIDATE_MARKDOWN: "true" + VALIDATE_YAML: "true" + VALIDATE_KUBERNETES_KUBEVAL: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL && 'true' || '' }} + VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} + VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} + VALIDATE_GITLEAKS: ${{ inputs.VALIDATE_GITLEAKS && 'true' || '' }} + YAML_CONFIG_FILE: yaml/.yaml-lint.yml + TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl + SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint + + - name: Lint Code Base (exclude mode) + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS) }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml @@ -63,7 +112,6 @@ jobs: VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" VALIDATE_JSCPD: false VALIDATE_NATURAL_LANGUAGE: false - VALIDATE_KUBERNETES_KUBEVAL: false YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index 5f4b4da..f4b768e 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -39,6 +39,30 @@ on: "Will parse the entire repository and find all files to validate across all types. NOTE: When set to false, only new or edited files will be parsed for validation." + VALIDATE_KUBERNETES_KUBEVAL: + required: false + type: boolean + default: false + description: > + "Enable kubeval validation for Kubernetes manifests." + VALIDATE_GITHUB_ACTIONS: + required: false + type: boolean + default: false + description: > + "Enable GitHub Actions validation." + VALIDATE_CHECKOV: + required: false + type: boolean + default: false + description: > + "Enable Checkov validation." + VALIDATE_GITLEAKS: + required: false + type: boolean + default: false + description: > + "Enable Gitleaks validation." jobs: build: @@ -60,8 +84,34 @@ jobs: - name: Configure git for private modules run: git config --global url."https://${{ github.token }}:x-oauth-basic@github.com/".insteadOf "https://github.com/" - - name: Lint Code Base - uses: github/super-linter/slim@v7 + - name: Lint Code Base (include mode) + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS }} + uses: github/super-linter@v7 + env: + ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml + ANSIBLE_DIRECTORY: ${{ inputs.ANSIBLE_DIRECTORY }} + CHECKOV_FILE_NAME: checkov/.checkov.yaml + DEFAULT_BRANCH: main + FILTER_REGEX_EXCLUDE: "${{ inputs.FILTER_REGEX_EXCLUDE }}" + GITHUB_TOKEN: ${{ github.token }} + JAVA_FILE_NAME: java/checkstyle/checkstyle.xml + KUBERNETES_KUBEVAL_OPTIONS: --ignore-missing-schemas + LINTER_RULES_PATH: "${{ inputs.CODEQUALITY_PATH }}/" + MARKDOWN_CONFIG_FILE: markdown/.markdown-lint.yml + VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" + VALIDATE_MARKDOWN: "true" + VALIDATE_YAML: "true" + VALIDATE_KUBERNETES_KUBEVAL: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL && 'true' || '' }} + VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} + VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} + VALIDATE_GITLEAKS: ${{ inputs.VALIDATE_GITLEAKS && 'true' || '' }} + YAML_CONFIG_FILE: yaml/.yaml-lint.yml + TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl + SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint + + - name: Lint Code Base (exclude mode) + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS) }} + uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml ANSIBLE_DIRECTORY: ${{ inputs.ANSIBLE_DIRECTORY }} @@ -76,7 +126,6 @@ jobs: VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" VALIDATE_JSCPD: false VALIDATE_NATURAL_LANGUAGE: false - VALIDATE_KUBERNETES_KUBEVAL: false YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint diff --git a/README.md b/README.md index 940d5b9..7962800 100644 --- a/README.md +++ b/README.md @@ -9,8 +9,44 @@ Use this workflow if your repository consists of multiple file formats (e.g. Jav Add a new workflow file like [this one](.github/workflows/lint.yml) or add the following lines to a existing workflow: ```yaml - call-lint-workflow: - uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +``` + +Optional input to enable kubeval for Kubernetes manifests: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_KUBERNETES_KUBEVAL: true +``` + +Optional input to enable GitHub Actions validation: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_GITHUB_ACTIONS: true +``` + +Optional input to enable Checkov validation: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_CHECKOV: true +``` + +Optional input to enable Gitleaks validation: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_GITLEAKS: true ``` ## Terraform @@ -21,12 +57,12 @@ Usage: ```yaml jobs: - lint: - uses: riege/code-quality/.github/workflows/terraform.yml@v1.0.0 - with: - skip_init: false - skip_validate: false - secrets: inherit +lint: + uses: riege/code-quality/.github/workflows/terraform.yml@v1.0.0 + with: + skip_init: false + skip_validate: false + secrets: inherit ``` - use `skip_init: true` if `terraform init` doesn't work properly during workflow run. From 680f673fac7fb51fee728f71945570229fe66b58 Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:05:21 +0200 Subject: [PATCH 2/8] Restore Terraform example indentation Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- README.md | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index 7962800..6d1d605 100644 --- a/README.md +++ b/README.md @@ -57,12 +57,12 @@ Usage: ```yaml jobs: -lint: - uses: riege/code-quality/.github/workflows/terraform.yml@v1.0.0 - with: - skip_init: false - skip_validate: false - secrets: inherit + lint: + uses: riege/code-quality/.github/workflows/terraform.yml@v1.0.0 + with: + skip_init: false + skip_validate: false + secrets: inherit ``` - use `skip_init: true` if `terraform init` doesn't work properly during workflow run. From a0ed76de7fc6cb1282fff902bff7cd2863d1d7e5 Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:14:37 +0200 Subject: [PATCH 3/8] Restore kubeval disable in exclude mode Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- .github/workflows/super-linter-non-slim.yml | 1 + .github/workflows/super-linter.yml | 1 + 2 files changed, 2 insertions(+) diff --git a/.github/workflows/super-linter-non-slim.yml b/.github/workflows/super-linter-non-slim.yml index f89a4bf..9d01806 100644 --- a/.github/workflows/super-linter-non-slim.yml +++ b/.github/workflows/super-linter-non-slim.yml @@ -112,6 +112,7 @@ jobs: VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" VALIDATE_JSCPD: false VALIDATE_NATURAL_LANGUAGE: false + VALIDATE_KUBERNETES_KUBEVAL: false YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index f4b768e..1c14b97 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -126,6 +126,7 @@ jobs: VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" VALIDATE_JSCPD: false VALIDATE_NATURAL_LANGUAGE: false + VALIDATE_KUBERNETES_KUBEVAL: false YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint From 2c6028bbc279e71c1651e08d537562bea3dce245 Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:18:50 +0200 Subject: [PATCH 4/8] Update super-linter to use slim version for exclude mode linting --- .github/workflows/super-linter.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index 1c14b97..a17ae50 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -111,7 +111,7 @@ jobs: - name: Lint Code Base (exclude mode) if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS) }} - uses: github/super-linter@v7 + uses: github/super-linter/slim@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml ANSIBLE_DIRECTORY: ${{ inputs.ANSIBLE_DIRECTORY }} From 08b104c7aaae9ace8a689f4fa094b8baf1c1c0fe Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:40:48 +0200 Subject: [PATCH 5/8] Add prettier lint inputs Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- .github/workflows/super-linter-non-slim.yml | 18 ++++++++++++++++-- .github/workflows/super-linter.yml | 18 ++++++++++++++++-- README.md | 18 ++++++++++++++++++ 3 files changed, 50 insertions(+), 4 deletions(-) diff --git a/.github/workflows/super-linter-non-slim.yml b/.github/workflows/super-linter-non-slim.yml index 9d01806..e540eda 100644 --- a/.github/workflows/super-linter-non-slim.yml +++ b/.github/workflows/super-linter-non-slim.yml @@ -54,6 +54,18 @@ on: default: false description: > "Enable Gitleaks validation." + VALIDATE_MARKDOWN_PRETTIER: + required: false + type: boolean + default: false + description: > + "Enable Markdown Prettier validation." + VALIDATE_YAML_PRETTIER: + required: false + type: boolean + default: false + description: > + "Enable YAML Prettier validation." jobs: build: @@ -73,7 +85,7 @@ jobs: ref: ${{ inputs.CODEQUALITY_REF }} - name: Lint Code Base (include mode) - if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS }} + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml @@ -92,12 +104,14 @@ jobs: VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} VALIDATE_GITLEAKS: ${{ inputs.VALIDATE_GITLEAKS && 'true' || '' }} + VALIDATE_MARKDOWN_PRETTIER: ${{ inputs.VALIDATE_MARKDOWN_PRETTIER && 'true' || '' }} + VALIDATE_YAML_PRETTIER: ${{ inputs.VALIDATE_YAML_PRETTIER && 'true' || '' }} YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint - name: Lint Code Base (exclude mode) - if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS) }} + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index a17ae50..46157d8 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -63,6 +63,18 @@ on: default: false description: > "Enable Gitleaks validation." + VALIDATE_MARKDOWN_PRETTIER: + required: false + type: boolean + default: false + description: > + "Enable Markdown Prettier validation." + VALIDATE_YAML_PRETTIER: + required: false + type: boolean + default: false + description: > + "Enable YAML Prettier validation." jobs: build: @@ -85,7 +97,7 @@ jobs: run: git config --global url."https://${{ github.token }}:x-oauth-basic@github.com/".insteadOf "https://github.com/" - name: Lint Code Base (include mode) - if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS }} + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml @@ -105,12 +117,14 @@ jobs: VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} VALIDATE_GITLEAKS: ${{ inputs.VALIDATE_GITLEAKS && 'true' || '' }} + VALIDATE_MARKDOWN_PRETTIER: ${{ inputs.VALIDATE_MARKDOWN_PRETTIER && 'true' || '' }} + VALIDATE_YAML_PRETTIER: ${{ inputs.VALIDATE_YAML_PRETTIER && 'true' || '' }} YAML_CONFIG_FILE: yaml/.yaml-lint.yml TERRAFORM_TFLINT_CONFIG_FILE: terraform/.tflint.hcl SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint - name: Lint Code Base (exclude mode) - if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS) }} + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} uses: github/super-linter/slim@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml diff --git a/README.md b/README.md index 6d1d605..920c624 100644 --- a/README.md +++ b/README.md @@ -49,6 +49,24 @@ with: VALIDATE_GITLEAKS: true ``` +Optional input to enable Markdown Prettier validation: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_MARKDOWN_PRETTIER: true +``` + +Optional input to enable YAML Prettier validation: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_YAML_PRETTIER: true +``` + ## Terraform The workflow `terraform.yml` is intended for repositories consisting of Terraform files only. It's small and fast and properly checks Terraform configurations. From 55d7d3a7f4951f824d0ad2cb33fdce548ed5f498 Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:43:17 +0200 Subject: [PATCH 6/8] Update super-linter to use slim version for include mode linting --- .github/workflows/super-linter.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index 46157d8..8d2e8bf 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -98,7 +98,7 @@ jobs: - name: Lint Code Base (include mode) if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} - uses: github/super-linter@v7 + uses: github/super-linter/slim@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml ANSIBLE_DIRECTORY: ${{ inputs.ANSIBLE_DIRECTORY }} From eaace018c0264e92e9fc3620702493882bcd13ba Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:50:29 +0200 Subject: [PATCH 7/8] Parameterize include-mode markdown/yaml Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- .github/workflows/super-linter-non-slim.yml | 16 ++++++++++++++-- .github/workflows/super-linter.yml | 16 ++++++++++++++-- README.md | 18 ++++++++++++++++++ 3 files changed, 46 insertions(+), 4 deletions(-) diff --git a/.github/workflows/super-linter-non-slim.yml b/.github/workflows/super-linter-non-slim.yml index e540eda..7a089ab 100644 --- a/.github/workflows/super-linter-non-slim.yml +++ b/.github/workflows/super-linter-non-slim.yml @@ -54,6 +54,18 @@ on: default: false description: > "Enable Gitleaks validation." + VALIDATE_MARKDOWN: + required: false + type: boolean + default: true + description: > + "Enable Markdown validation in include mode." + VALIDATE_YAML: + required: false + type: boolean + default: true + description: > + "Enable YAML validation in include mode." VALIDATE_MARKDOWN_PRETTIER: required: false type: boolean @@ -98,8 +110,8 @@ jobs: LINTER_RULES_PATH: "${{ inputs.CODEQUALITY_PATH }}/" MARKDOWN_CONFIG_FILE: markdown/.markdown-lint.yml VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" - VALIDATE_MARKDOWN: "true" - VALIDATE_YAML: "true" + VALIDATE_MARKDOWN: ${{ inputs.VALIDATE_MARKDOWN && 'true' || '' }} + VALIDATE_YAML: ${{ inputs.VALIDATE_YAML && 'true' || '' }} VALIDATE_KUBERNETES_KUBEVAL: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL && 'true' || '' }} VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index 8d2e8bf..db917e3 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -63,6 +63,18 @@ on: default: false description: > "Enable Gitleaks validation." + VALIDATE_MARKDOWN: + required: false + type: boolean + default: true + description: > + "Enable Markdown validation in include mode." + VALIDATE_YAML: + required: false + type: boolean + default: true + description: > + "Enable YAML validation in include mode." VALIDATE_MARKDOWN_PRETTIER: required: false type: boolean @@ -111,8 +123,8 @@ jobs: LINTER_RULES_PATH: "${{ inputs.CODEQUALITY_PATH }}/" MARKDOWN_CONFIG_FILE: markdown/.markdown-lint.yml VALIDATE_ALL_CODEBASE: "${{ inputs.VALIDATE_ALL_CODEBASE }}" - VALIDATE_MARKDOWN: "true" - VALIDATE_YAML: "true" + VALIDATE_MARKDOWN: ${{ inputs.VALIDATE_MARKDOWN && 'true' || '' }} + VALIDATE_YAML: ${{ inputs.VALIDATE_YAML && 'true' || '' }} VALIDATE_KUBERNETES_KUBEVAL: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL && 'true' || '' }} VALIDATE_GITHUB_ACTIONS: ${{ inputs.VALIDATE_GITHUB_ACTIONS && 'true' || '' }} VALIDATE_CHECKOV: ${{ inputs.VALIDATE_CHECKOV && 'true' || '' }} diff --git a/README.md b/README.md index 920c624..16b5fca 100644 --- a/README.md +++ b/README.md @@ -67,6 +67,24 @@ with: VALIDATE_YAML_PRETTIER: true ``` +Optional input to disable Markdown validation in include mode: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_MARKDOWN: false +``` + +Optional input to disable YAML validation in include mode: + +```yaml +call-lint-workflow: +uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" +with: + VALIDATE_YAML: false +``` + ## Terraform The workflow `terraform.yml` is intended for repositories consisting of Terraform files only. It's small and fast and properly checks Terraform configurations. From 5d3a43ccb467af30fcb406588a1f1230c000aa3e Mon Sep 17 00:00:00 2001 From: Claudiu Schuster Date: Wed, 1 Apr 2026 15:57:14 +0200 Subject: [PATCH 8/8] Default include-mode markdown/yaml off Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- .github/workflows/super-linter-non-slim.yml | 8 ++++---- .github/workflows/super-linter.yml | 8 ++++---- README.md | 8 ++++---- 3 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/super-linter-non-slim.yml b/.github/workflows/super-linter-non-slim.yml index 7a089ab..4b165b8 100644 --- a/.github/workflows/super-linter-non-slim.yml +++ b/.github/workflows/super-linter-non-slim.yml @@ -57,13 +57,13 @@ on: VALIDATE_MARKDOWN: required: false type: boolean - default: true + default: false description: > "Enable Markdown validation in include mode." VALIDATE_YAML: required: false type: boolean - default: true + default: false description: > "Enable YAML validation in include mode." VALIDATE_MARKDOWN_PRETTIER: @@ -97,7 +97,7 @@ jobs: ref: ${{ inputs.CODEQUALITY_REF }} - name: Lint Code Base (include mode) - if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN || inputs.VALIDATE_YAML || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml @@ -123,7 +123,7 @@ jobs: SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint - name: Lint Code Base (exclude mode) - if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN || inputs.VALIDATE_YAML || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} uses: github/super-linter@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml diff --git a/.github/workflows/super-linter.yml b/.github/workflows/super-linter.yml index db917e3..351d88c 100644 --- a/.github/workflows/super-linter.yml +++ b/.github/workflows/super-linter.yml @@ -66,13 +66,13 @@ on: VALIDATE_MARKDOWN: required: false type: boolean - default: true + default: false description: > "Enable Markdown validation in include mode." VALIDATE_YAML: required: false type: boolean - default: true + default: false description: > "Enable YAML validation in include mode." VALIDATE_MARKDOWN_PRETTIER: @@ -109,7 +109,7 @@ jobs: run: git config --global url."https://${{ github.token }}:x-oauth-basic@github.com/".insteadOf "https://github.com/" - name: Lint Code Base (include mode) - if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} + if: ${{ inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN || inputs.VALIDATE_YAML || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER }} uses: github/super-linter/slim@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml @@ -136,7 +136,7 @@ jobs: SQLFLUFF_CONFIG_FILE: sqlfluff/.sqlfluff-lint - name: Lint Code Base (exclude mode) - if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} + if: ${{ !(inputs.VALIDATE_KUBERNETES_KUBEVAL || inputs.VALIDATE_GITHUB_ACTIONS || inputs.VALIDATE_CHECKOV || inputs.VALIDATE_GITLEAKS || inputs.VALIDATE_MARKDOWN || inputs.VALIDATE_YAML || inputs.VALIDATE_MARKDOWN_PRETTIER || inputs.VALIDATE_YAML_PRETTIER) }} uses: github/super-linter/slim@v7 env: ANSIBLE_CONFIG_FILE: ansible/.ansible-lint.yml diff --git a/README.md b/README.md index 16b5fca..2993e73 100644 --- a/README.md +++ b/README.md @@ -67,22 +67,22 @@ with: VALIDATE_YAML_PRETTIER: true ``` -Optional input to disable Markdown validation in include mode: +Optional input to enable Markdown validation in include mode: ```yaml call-lint-workflow: uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" with: - VALIDATE_MARKDOWN: false + VALIDATE_MARKDOWN: true ``` -Optional input to disable YAML validation in include mode: +Optional input to enable YAML validation in include mode: ```yaml call-lint-workflow: uses: "riege/code-quality/.github/workflows/super-linter.yml@v1.0.0" with: - VALIDATE_YAML: false + VALIDATE_YAML: true ``` ## Terraform