Merge pull request #73 from nodenv/prettier

Reformat using prettier

Author: jasonkarns

.github/workflows/_test.yml

@@ -1,15 +1,15 @@
 name: Test
 on:
   pull_request:
-  push: {branches: main}
-  schedule: [{cron: '0 0 10 * *'}] # monthly https://crontab.guru/#0_0_10_*_*
+  push: { branches: main }
+  schedule: [{ cron: "0 0 10 * *" }] # monthly https://crontab.guru/#0_0_10_*_*
   workflow_dispatch:
 permissions: {}
 
 jobs:
   test:
     uses: ./.github/workflows/test.yml
-    with: {npm: false}
+    with: { npm: false }
     permissions:
       contents: read
       packages: read

.github/workflows/release.yml

@@ -3,72 +3,72 @@ on:
   workflow_call:
     inputs:
       homebrew:
-        description: 'Boolean to opt-out of releasing to homebrew.'
+        description: "Boolean to opt-out of releasing to homebrew."
         default: true
         required: false
         type: boolean
       npm_scope: # FIXME until setup-node infers scope from package.json
-        description: 'Name of scope to publish package under.'
+        description: "Name of scope to publish package under."
         default: nodenv
         required: false
         type: string
     secrets:
-      NPMJS_TOKEN: {required: true} # required for npm job
-      BOT_TOKEN: {required: false} # required for homebrew job
+      NPMJS_TOKEN: { required: true } # required for npm job
+      BOT_TOKEN: { required: false } # required for homebrew job
 
-permissions: {contents: read}
+permissions: { contents: read }
 
 jobs:
   github:
-    permissions: {contents: write}
+    permissions: { contents: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - run: |
-        # shellcheck disable=SC2086
-        gh release create ${tag/*-*/"$tag" --prerelease} --generate-notes
-      env:
-        GH_TOKEN: ${{ github.token }}
-        tag: ${{ github.ref_name }}
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - run: |
+          # shellcheck disable=SC2086
+          gh release create ${tag/*-*/"$tag" --prerelease} --generate-notes
+        env:
+          GH_TOKEN: ${{ github.token }}
+          tag: ${{ github.ref_name }}
 
   homebrew:
     if: inputs.homebrew && !contains(github.ref, '-') # skip prereleases
-    permissions: {contents: read}
+    permissions: { contents: read }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: mislav/bump-homebrew-formula-action@b3327118b2153c82da63fd9cbf58942146ee99f0 # v3.1
-      with:
-        homebrew-tap: ${{ contains(fromJSON('["nodenv","node-build"]'),
-          github.event.repository.name)
-          && 'Homebrew/homebrew-core' || 'nodenv/homebrew-nodenv' }}
-      env:
-        COMMITTER_TOKEN: ${{ secrets.BOT_TOKEN }}
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: mislav/bump-homebrew-formula-action@b3327118b2153c82da63fd9cbf58942146ee99f0 # v3.1
+        with:
+          homebrew-tap: ${{ contains(fromJSON('["nodenv","node-build"]'),
+            github.event.repository.name)
+            && 'Homebrew/homebrew-core' || 'nodenv/homebrew-nodenv' }}
+        env:
+          COMMITTER_TOKEN: ${{ secrets.BOT_TOKEN }}
 
   major-tag:
     if: ${{ !contains(github.ref, '-') }} # skip prereleases
-    permissions: {contents: write}
+    permissions: { contents: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - run: git push -f origin "HEAD:refs/heads/${GITHUB_REF_NAME%%.*}"
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - run: git push -f origin "HEAD:refs/heads/${GITHUB_REF_NAME%%.*}"
 
   npm:
-    permissions: {id-token: write}
+    permissions: { id-token: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
-      with: # FIXME https://github.com/actions/setup-node/pull/129
-        scope: ${{ inputs.npm_scope }}
-        registry-url: https://registry.npmjs.org
-    - run: npm publish --provenance
-      env:
-        NODE_AUTH_TOKEN: ${{ secrets.NPMJS_TOKEN }}
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
+        with: # FIXME https://github.com/actions/setup-node/pull/129
+          scope: ${{ inputs.npm_scope }}
+          registry-url: https://registry.npmjs.org
+      - run: npm publish --provenance
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPMJS_TOKEN }}

.github/workflows/sync-default-branch.yml

@@ -5,10 +5,10 @@ permissions: {}
 jobs:
   default-branch:
     if: github.ref_name == github.event.repository.default_branch
-    permissions: {contents: write}
+    permissions: { contents: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - run: git push --force origin HEAD:refs/heads/master
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - run: git push --force origin HEAD:refs/heads/master

.github/workflows/tag-major.yml

@@ -8,10 +8,10 @@ permissions: {}
 jobs:
   major:
     if: github.ref_type == 'tag' && !contains(github.ref, '-') # skip prereleases
-    permissions: {contents: write}
+    permissions: { contents: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - run: git push -f origin "HEAD:refs/heads/${GITHUB_REF_NAME%%.*}"
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - run: git push -f origin "HEAD:refs/heads/${GITHUB_REF_NAME%%.*}"

.github/workflows/test.yml

@@ -3,68 +3,68 @@ on:
   workflow_call:
     inputs:
       npm:
-        description: 'Run npm-cit job.'
+        description: "Run npm-cit job."
         default: true
         required: false
         type: boolean
       superlinter:
-        description: 'Run super-linter job.'
+        description: "Run super-linter job."
         default: true
         required: false
         type: boolean
-permissions: {contents: read}
+permissions: { contents: read }
 
 jobs:
   npm-cit:
     if: inputs.npm
     runs-on: ${{ matrix.os }}-latest
-    strategy: {matrix: {os: [ubuntu, macOS]}}
+    strategy: { matrix: { os: [ubuntu, macOS] } }
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - run: npm cit
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - run: npm cit
 
   super-linter:
     if: inputs.superlinter
-    permissions: {contents: read, packages: read, statuses: write}
+    permissions: { contents: read, packages: read, statuses: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-      with: {fetch-depth: 0}
-    - uses: super-linter/super-linter/slim@5b638caee6ba65e25e07143887b669a1233847a0 # v6.5.1
-      env:
-        GITHUB_TOKEN: ${{ github.token }}
-        BASH_EXEC_IGNORE_LIBRARIES: true # superlinter bug
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        with: { fetch-depth: 0 }
+      - uses: super-linter/super-linter/slim@5b638caee6ba65e25e07143887b669a1233847a0 # v6.5.1
+        env:
+          GITHUB_TOKEN: ${{ github.token }}
+          BASH_EXEC_IGNORE_LIBRARIES: true # superlinter bug
 
   dependency-review:
     if: startsWith('pull_request', github.event_name)
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - uses: actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9 # v4.7.1
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - uses: actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9 # v4.7.1
 
   ossf-scorecard:
     if: github.ref_name == github.event.repository.default_branch
-    permissions: {id-token: write, security-events: write}
+    permissions: { id-token: write, security-events: write }
     runs-on: ubuntu-latest
     steps:
-    - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
-      with: {egress-policy: audit}
-    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
-      with:
-        results_file: ossf-scorecard-results.sarif
-        results_format: sarif
-        publish_results: true
-    - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
-      with:
-        name: ossf-scorecard-results.sarif
-        path: ossf-scorecard-results.sarif
-    - uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
-      with:
-        sarif_file: ossf-scorecard-results.sarif
+      - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with: { egress-policy: audit }
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
+        with:
+          results_file: ossf-scorecard-results.sarif
+          results_format: sarif
+          publish_results: true
+      - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+        with:
+          name: ossf-scorecard-results.sarif
+          path: ossf-scorecard-results.sarif
+      - uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
+        with:
+          sarif_file: ossf-scorecard-results.sarif

README.md

@@ -12,6 +12,6 @@ will fast-forward the `v2` branch to the latest 2.x tag. This way consumers of
 these reusable workflows may "soft-pin" to a major version and automatically
 get minor and patch updates. see [Contributing#releasing](/docs/CONTRIBUTING.md#releasing)
 
-  [nodenv organization]: https://github.com/nodenv
-  [reusable workflows]: https://docs.github.com/en/actions/using-workflows/reusing-workflows
-  [starter workflows]: https://docs.github.com/en/actions/using-workflows/creating-starter-workflows-for-your-organization
+[nodenv organization]: https://github.com/nodenv
+[reusable workflows]: https://docs.github.com/en/actions/using-workflows/reusing-workflows
+[starter workflows]: https://docs.github.com/en/actions/using-workflows/creating-starter-workflows-for-your-organization

docs/CONTRIBUTING.md

@@ -18,5 +18,5 @@ Once the tag is created by the release,
 it will kick off the [tag-major.yml][] workflow
 which will bump the vN ref for downstream users to pin to.
 
-  [test.yml]: https://github.com/nodenv/.github/blob/main/.github/workflows/test.yml
-  [tag-major.yml]: https://github.com/nodenv/.github/blob/main/.github/workflows/tag-major.yml
+[test.yml]: https://github.com/nodenv/.github/blob/main/.github/workflows/test.yml
+[tag-major.yml]: https://github.com/nodenv/.github/blob/main/.github/workflows/tag-major.yml

docs/SECURITY.md

@@ -12,6 +12,6 @@ though it is instead recommended to pin to a specific git-sha and use [Dependabo
 
 Use GitHub's [built-in reporting mechanism][gh-security].
 
-  [latest-release]: https://github.com/nodenv/.github/releases/latest
-  [dependabot]: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#github-actions
-  [gh-security]: https://github.com/nodenv/.github/security/advisories/new
+[latest-release]: https://github.com/nodenv/.github/releases/latest
+[dependabot]: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#github-actions
+[gh-security]: https://github.com/nodenv/.github/security/advisories/new

workflow-templates/release.properties.json

@@ -1,6 +1,6 @@
 {
-    "name": "Release",
-    "description": "Release to GitHub",
-    "iconName": "octicon tag",
-    "categories": [ "github", "deployment", "automation" ]
+  "name": "Release",
+  "description": "Release to GitHub",
+  "iconName": "octicon tag",
+  "categories": ["github", "deployment", "automation"]
 }

workflow-templates/release.yml

@@ -5,6 +5,6 @@ permissions: {}
 
 jobs:
   release:
-    permissions: {contents: write, id-token: write}
+    permissions: { contents: write, id-token: write }
     uses: nodenv/.github/.github/workflows/release.yml@v4
     secrets: inherit