Terraform/OpenTofu via Pull Request

Version updated for https://github.com/OP5dev/TF-via-PR to version v13.5.0.

• This action is used across all versions by 13 repositories.

Go to the GitHub Marketplace to find the latest changes.

Release notes

uses: op5dev/tf-via-pr@04dca87803245791a61752cda2c2181b4ac91693 # v13.5.0

Added

• #458 Support for repository_dispatch, workflow_call, workflow_dispatch, and workflow_run workflow triggers (thank you, @eumpek).

Improved

• #456 Wording around security hardening of GitHub Actions by pinning to specific commit SHA.
• #457 Always set GH_HOST environment variable by dropping the protocol from $GITHUB_SERVER_URL.
• #461 Parsing the diff of a plan with indirect changes (e.g., only moved and imported) used to fail without fallback (thank you, @jemc).
• #464 The “(view log)” used to occasionally link to the step before TF-via-PR due to a race-condition.

Removed

• #462 The label-pr option used to create and attach tf:plan or tf:apply PR labels using the pull-requests: write permission, until GitHub made an un-announced and un-documented change to require issues: write as well. Frankly, I think it’s a lot to ask of users to trust their infrastructure provisioning to a 3rd party GitHub Action, so every effort is made to reduce TF-via-PR’s access footprint and permission scope. To return this behaviour, add the following line to your workflow along with issues: write permission.

  run: gh api /repos/${{ github.repository }}/issues/${{ github.event.number || github.event.issue.number }}/labels --field "labels[]=tf:${{ github.event_name == 'push' && 'apply' || 'plan' }}"
  

View changelog or https://github.com/OP5dev/TF-via-PR/compare/v13.4.0...v13.5.0

• OP5dev
• GitHub Actions