Skip to content

Migrating to Maven-based bindings

Goal

Let's say you have the following workflow:

#!/usr/bin/env kotlin
@file:DependsOn("io.github.typesafegithub:github-workflows-kt:2.1.0")

import io.github.typesafegithub.workflows.actions.actions.CheckoutV4
import io.github.typesafegithub.workflows.actions.actions.SetupJavaV3
import io.github.typesafegithub.workflows.actions.gradle.ActionsSetupGradleV3
import io.github.typesafegithub.workflows.domain.RunnerType.UbuntuLatest
import io.github.typesafegithub.workflows.domain.triggers.PullRequest
import io.github.typesafegithub.workflows.dsl.workflow
import io.github.typesafegithub.workflows.yaml.writeToFile

workflow(
    name = "Build",
    on = listOf(PullRequest()),
    sourceFile = __FILE__,
) {
    job(id = "build", runsOn = UbuntuLatest) {
        uses(action = CheckoutV4())
        uses(action = SetupJavaV3())
        uses(action = ActionsSetupGradleV3())
        run(
            name = "Build",
            command = "./gradlew build",
        )
    }
}

CheckoutV4, SetupJavaV3 and ActionsSetupGradleV3 come with the library - they are shipped together with the DSL. It has a number of downsides:

  • the library needs to be aware of a certain action, which requires the maintainer's attention
  • getting new versions of the bindings is tied to the release cadence of the library, which is currently released monthly
  • automatic updates via dependency update bots like Renovate or Dependabot aren't possible

We're going to switch to the new approach where each type-safe action binding is compiled and packaged in a JAR on demand, and is then shipped as a separate Maven artifact from a custom Maven-compatible server.

Required changes

The following changes are required in our example workflow: 

  #!/usr/bin/env kotlin
+ @file:Repository("https://repo.maven.apache.org/maven2/")
  @file:DependsOn("io.github.typesafegithub:github-workflows-kt:<newest-version>")
+ @file:Repository("https://bindings.krzeminski.it")
+ @file:DependsOn("actions:checkout:v4")
+ @file:DependsOn("actions:setup-java:v3")
+ @file:DependsOn("gradle:actions__setup-gradle:v3")

- import io.github.typesafegithub.workflows.actions.actions.CheckoutV4
+ import io.github.typesafegithub.workflows.actions.actions.Checkout
- import io.github.typesafegithub.workflows.actions.actions.SetupJavaV3
+ import io.github.typesafegithub.workflows.actions.actions.SetupJava
- import io.github.typesafegithub.workflows.actions.gradle.ActionsSetupGradleV3
+ import io.github.typesafegithub.workflows.actions.gradle.ActionsSetupGradle
  import io.github.typesafegithub.workflows.domain.RunnerType.UbuntuLatest
  import io.github.typesafegithub.workflows.domain.triggers.PullRequest
  import io.github.typesafegithub.workflows.dsl.workflow
  import io.github.typesafegithub.workflows.yaml.writeToFile

  workflow(
      name = "Build",
      on = listOf(PullRequest()),
      sourceFile = __FILE__,
  ) {
      job(id = "build", runsOn = UbuntuLatest) {
-         uses(action = CheckoutV4())
+         uses(action = Checkout())
-         uses(action = SetupJavaV3())
+         uses(action = SetupJava())
-         uses(action = ActionsSetupGradleV3())
+         uses(action = ActionsSetupGradle())
          run(
              name = "Build",
              command = "./gradlew build",
          )
      }
  }

Then regenerate your YAML to ensure there are no changes.

Remarks

  1. Top-level actions like actions/checkout@v4 map to Maven artifacts like actions:checkout:v4. Nested actions like gradle/actions/setup-gradle@v3 require replacing the slash in the middle of the compound name with __ (double underscore) because slash is not allowed in Maven coordinates. Hence, we get gradle:actions__setup-gradle:v3.
  2. For inputs with typing information there will now be two properties, a typed one and a String-typed with _Untyped suffix. You can only set one of those and for required inputs must set exactly one. For inputs that miss typing information there will only be the _Untyped property with nullability according to required status.
  3. If you used _customInputs to set a non-String property to a GitHub Actions expression, you can now instead use the _Untyped property for that input.
  4. If a given binding has incorrect typing, please either ask the action owner to onboard github-action-typing, or if it's not possible, contribute to github-actions-typing-catalog.
  5. The bindings server currently caches the artifacts for a given owner/name/version tuple for 1 hour (code). If you think it's too much/too little, or a different caching strategy would be better, please reach out via GitHub issues!
  6. Regarding dependency update bots, Renovate is able to put updates to the Kotlin script and the YAML in a single PR, like here. It wasn't tested with Dependabot yet, feel free to give it a try!