[RF-27572] Handle quotes in passed in parameters #29
Conversation
|
/reviewme @jbarber @rainforestapp/devs |
| # Define error helper | ||
| error () { | ||
| echo "::error ::${1}" | ||
| echo "error=${1}" >> "$GITHUB_OUTPUT" |
There was a problem hiding this comment.
Here "$GITHUB_OUTPUT" does not require "${GITHUB_OUTPUT}" ?
There was a problem hiding this comment.
I guess not 🤔 echo "name=value >> $GITHUB_OUTPUT is how GitHub documents their "set output" functionality (so without braces or quotes), and ShellCheck only complains about the lack of quotes, not braces.
There was a problem hiding this comment.
braces are only needed if your variable name would run into something not your variable name, e.g. if you wanted to output something like "${GITHUB_OUTPUT}_DEBUG", the braces are important, otherwise it'd be looking for a variable GITHUB_OUTPUT_DEBUG (which obviously doesn't exist)
|
|
||
| RUN_COMMAND="rerun \"${RAINFOREST_RUN_ID}\" --skip-update --token \"${RF_TOKEN}\" --junit-file results/rainforest/junit.xml --save-run-id .rainforest_run_id" | ||
| else | ||
| RUN_COMMAND="run --skip-update --token \"${RF_TOKEN}\" --run-group ${RF_RUN_GROUP_ID} --junit-file results/rainforest/junit.xml --save-run-id .rainforest_run_id" |
There was a problem hiding this comment.
No quotes needed for ${RF_RUN_GROUP_ID} ?
There was a problem hiding this comment.
${RF_RUN_GROUP_ID} is already validated to be a number
|
|
||
| # Set branch | ||
| if [ -n "${RF_BRANCH}" ] ; then | ||
| RUN_COMMAND="${RUN_COMMAND} --branch \"${RF_BRANCH//\"/\\\"}\"" |
There was a problem hiding this comment.
😮 , are al those \ / necessary? 😅
There was a problem hiding this comment.
This appears to be using the following bash functionality, which is where a bunch of the forward slashes come from (see https://tldp.org/LDP/abs/html/parameter-substitution.html). It's replacing a " with a \". The escaping is necessary to make that work.
${var//Pattern/Replacement}
There was a problem hiding this comment.
They are (see the long list of failed workflows while attempting to get this working...)
|
|
||
| # Set description | ||
| if [ -z "${RAINFOREST_RUN_ID}" ] && [ -n "${RF_DESCRIPTION}" ] ; then | ||
| RUN_COMMAND="${RUN_COMMAND} --description \"${RF_DESCRIPTION//\"/\\\"}\"" |
| @@ -0,0 +1,134 @@ | |||
| #!/bin/bash | |||
|
|
|||
There was a problem hiding this comment.
Adding it might cause a bunch of stuff to start failing though...
|
|
||
| # Validate token | ||
| if [ -z "${RF_TOKEN}" ] ; then | ||
| error "Token not set" |
There was a problem hiding this comment.
Pedantry: this is actually testing if the variable has a zero length value, test -v tests if a variable is set.
There was a problem hiding this comment.
Right, but since tokens can't be zero-length, if the variable is set to the empty string, then the token isn't actually set
| rm .rainforest_run_id | ||
| echo "Rerunning Run ${RAINFOREST_RUN_ID}" | ||
|
|
||
| RUN_COMMAND="rerun \"${RAINFOREST_RUN_ID}\" --skip-update --token \"${RF_TOKEN}\" --junit-file results/rainforest/junit.xml --save-run-id .rainforest_run_id" |
There was a problem hiding this comment.
Could use single quotes here and save yourself some escaping? e.g.
RUN_COMMAND="rerun '${RAINFOREST_RUN_ID}' --skip-update ..."
There was a problem hiding this comment.
I did that, then reverted because I needed to update all the tests and more crucially the escaping I added in the first commit, and I'd rather not figure out how to get the escaping working again 🙇🏼
action.yml
Outdated
| @@ -102,142 +101,20 @@ runs: | |||
| path: .rainforest_run_id | |||
| restore-keys: | | |||
| rainforest-run-${{ github.run_id }}-${{ inputs.cache_key }}- | |||
| - name: Escape Parameters | |||
There was a problem hiding this comment.
This seems mis-named, as it doesn't appear to be doing any escaping? It's just assigning values to variables?
There was a problem hiding this comment.
toJSON does the escaping. That said, this was from a previous attempt where I was setting outputs in this step and then using them in the next step. This step shouldn't be needed now that we're using standard environment variables.
b473b8e to
6e775fb
Compare
6e775fb to
2bc6d62
Compare
The proper fix definitely feels like it would be to rewrite the action to be a JavaScript action rather than a composite action, but that's much more involved. |
The first commit is the fix, the rest is to make this hopefully somewhat saner.