actions

English | 日本語

actions

kryota-dev/actions is a repository that centrally manages reusable GitHub Actions (Reusable Workflows and Composite Actions).

Overview

This repository centrally manages and publishes GitHub Actions (Reusable Workflows and Composite Actions) commonly used across multiple repositories, eliminating CI/CD configuration duplication and improving quality and maintainability.

Usage

To reference a Reusable Workflow from another repository, use the following format:

jobs:
  example:
    uses: kryota-dev/actions/.github/workflows/{workflow}.yml@vX
    with:
      # inputs
    secrets:
      # secrets

Specify the version using a major tag (e.g., v1) or a full version tag (e.g., v1.0.0).

Composite Actions

To reference a Composite Action from another repository, use the following format:

steps:
  - uses: kryota-dev/actions/.github/actions/{action-name}@vX
    with:
      # inputs

Specify the version using a major tag (e.g., v1) or a full version tag (e.g., v1.0.0).

Difference from Reusable Workflows: Reusable Workflows are called at the jobs: level, while Composite Actions are called at the steps: level. Composite Actions run as steps within the calling job, enabling more fine-grained reuse.

Available Workflows & Actions

Reusable Workflows — List and usage of publicly available workflows
Composite Actions — List and usage of publicly available actions
Internal CI Workflows — Internal CI workflows for this repository

Development

ADR (Architecture Decision Records)

Design decisions are recorded as ADRs in docs/adr/.

To create a new ADR:

make adr title="ADR title"

See docs/adr/ for the list of ADRs.

Workflow Security Policy

All uses: references are pinned to full commit SHAs (40 characters):

uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4

SHA pinning is automatically verified in CI by ghalint and zizmor, and automatically updated by Renovate Bot.

Manual Setup Required

The following settings must be configured separately via the repository's Web UI or external services:

APP_TOKEN secret: Add a PAT in Settings > Secrets and variables > Actions (requires repo and workflow scopes)
Renovate Bot installation: Install Renovate GitHub App on the repository
Enable Dependabot Alerts: Enable in Settings > Security > Dependabot alerts

Name		Name	Last commit message	Last commit date
Latest commit History 72 Commits
.agents/skills/manage-rulesets		.agents/skills/manage-rulesets
.claude		.claude
.github		.github
.serena		.serena
.spec-workflow		.spec-workflow
docs/adr		docs/adr
scripts		scripts
.adr.json		.adr.json
.envrc.template		.envrc.template
.gitignore		.gitignore
.mcp.json		.mcp.json
.tagpr		.tagpr
AGENTS.md		AGENTS.md
CHANGELOG.md		CHANGELOG.md
CLAUDE.md		CLAUDE.md
LICENSE		LICENSE
Makefile		Makefile
README.ja.md		README.ja.md
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

actions

Overview

Usage

Composite Actions

Available Workflows & Actions

Development

ADR (Architecture Decision Records)

Workflow Security Policy

Manual Setup Required

About

Uh oh!

Releases 10

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

actions

Overview

Usage

Composite Actions

Available Workflows & Actions

Development

ADR (Architecture Decision Records)

Workflow Security Policy

Manual Setup Required

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 10

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Packages