Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
github.com/goplugin/plugin-testing-framework/tools/workflowresultparser
- Version published
- Created
Workflow Result Parser
This Go script fetches jobs from a specified GitHub Actions workflow run, filters them based on a regex pattern, and outputs the results. The output can be saved to a specified file and optionally stored under a named key.
Usage
go run main.go --githubToken <token> --githubRepo <repository> --workflowRunID <workflow_run_id> --jobNameRegex <regex_pattern> [options]
Example
go run main.go --githubToken ghp_exampleToken --githubRepo owner/repo --workflowRunID 123456789 --jobNameRegex "Test-.*" --outputFile results.json
Sample output
{
"results": [
{
"conclusion": ":white_check_mark:",
"cap": "1",
"html_url": "http://example.com/job1"
},
{
"conclusion": ":x:",
"cap": "2",
"html_url": "http://example.com/job2"
}
]
}
Command Line Arguments
--githubToken: GitHub token for authentication (required).--githubRepo: GitHub repository in the formatowner/repo(required).--workflowRunID: ID of the GitHub Actions workflow run (required).--jobNameRegex: Regex pattern to match job names (required).--namedKey: Optional named key under which results will be stored.--outputFile: Optional output file name to save the results.
Output
- The script fetches jobs from the specified GitHub Actions workflow run.
- Filters the jobs based on the provided regex pattern.
- Formats and saves the results to the specified output file.
- Prints the results to the console if no output file is specified.
Error Handling
The script will panic and display error messages in the following scenarios:
- Missing required flags:
--githubToken,--githubRepo,--workflowRunID,--jobNameRegex. - Errors in making HTTP requests to the GitHub API.
- Errors in reading or writing files.
- Errors in parsing JSON data.
Detailed Steps
- Argument Parsing and Validation:
- The script checks that all required flags are provided.
- Validates optional flags and sets default values if not provided.
- Fetch GitHub Jobs:
- Constructs the API URL for fetching jobs from the specified workflow run.
- Makes an HTTP GET request to the GitHub API with the provided token.
- Handles pagination to fetch all jobs if necessary.
- Parse and Filter Jobs:
- Parses the JSON response from the GitHub API.
- Filters the jobs based on the provided regex pattern.
- Process and Save Results:
- Formats the filtered results.
- Saves the results to the specified output file.
- Prints the results to the console if no output file is specified.
Notes
- Ensure the GitHub token has the necessary permissions to access the repository and workflow runs.
- Use the
--namedKeyflag to categorize results in the output file for better organization. - The GitHub API has rate limits; be mindful of making too many requests in a short period.
FAQs
Unknown package
Package last updated on 21 Nov 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025