Update linting, use centos stream, update actions

Author: DO1JLR

.github/FUNDING.yml

@@ -1,3 +1,4 @@
+---
 # if you contributed to this git repo, please feel free to add yourself!
 
 github: [do1jlr]

.github/marketplace.svg

@@ -0,0 +1,16 @@
+---
+name: hadolint Dockerfile
+
+# yamllint disable-line rule:truthy
+on: [push, pull_request]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: checkout repo
+        uses: actions/checkout@v2
+      - name: Run Hadolint Action
+        uses: hadolint/[email protected]
+        with:
+          dockerfile: Dockerfile

.github/workflows/hadolint.yml

@@ -0,0 +1,14 @@
+---
+name: shellchecking ansible-docker.sh
+
+# yamllint disable-line rule:truthy
+on: [push, pull_request]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: checkout repo
+        uses: actions/checkout@v2
+      - name: Run ShellCheck
+        uses: ludeeus/action-shellcheck@master

.github/workflows/shellcheck.yml

@@ -0,0 +1,22 @@
+---
+name: 'Yamllint GitHub Actions'
+
+# yamllint disable-line rule:truthy
+on:
+  push:
+    branches: '*'
+  pull_request:
+    branches: '*'
+
+jobs:
+  yamllint:
+    name: 'Yamllint'
+    runs-on: ubuntu-latest
+    steps:
+      - name: 'Checkout'
+        uses: actions/checkout@master
+      - name: 'Yamllint'
+        uses: karancode/yamllint-github-action@master
+        with:
+          yamllint_file_or_dir: '.'
+          yamllint_config_filepath: './.yamllint'

.github/workflows/yamllint.yaml

@@ -0,0 +1,8 @@
+---
+extends: default
+
+rules:
+  # 100 chars should be enough, but don't fail if a line is longer
+  line-length:
+    max: 100
+    level: warning

.yamllint

@@ -1,27 +1,21 @@
-FROM debian:stable
+FROM quay.io/centos/centos:stream8
 
 LABEL "maintainer"="L3D <[email protected]>"
-LABEL "repository"="https://github.com/roles-ansible/check-ansible-debian-stable-action.git"
-LABEL "homepage"="https://github.com/roles-ansible/check-ansible-debian-stable-action"
+LABEL "repository"="https://github.com/roles-ansible/check-ansible-centos-centos8-action.git"
+LABEL "homepage"="https://github.com/roles-ansible/check-ansible-centos-centos8-action"
 
-LABEL "com.github.actions.name"="check-ansible-debian-stable"
-LABEL "com.github.actions.description"="Check ansible role or playbook with Debian stable"
+LABEL "com.github.actions.name"="check-ansible-centos-centos8"
+LABEL "com.github.actions.description"="Check ansible role or playbook with CentOS centos8"
 LABEL "com.github.actions.icon"="aperture"
 LABEL "com.github.actions.color"="green"
 
-RUN apt-get update -y && apt-get install -y \
-    software-properties-common \
-    build-essential \
-    libffi-dev \
-    libssl-dev \
-    python3-dev \
-    python3-pip \
-    git \
-    systemd
+# hadolint ignore=DL3041
+RUN dnf update --assumeyes \
+  && dnf install -y epel-release \
+  && dnf install --assumeyes \
+    ansible git \
+  && dnf clean all \
+  && ansible --version
 
-RUN pip3 install setuptools && pip3 install ansible
-
-RUN ansible --version
-
-ADD ansible-docker.sh /ansible-docker.sh
+COPY ansible-docker.sh /ansible-docker.sh
 ENTRYPOINT ["/ansible-docker.sh"]

Dockerfile

@@ -1,64 +1,79 @@
-[![Github Marketplace](https://raw.githubusercontent.com/roles-ansible/check-ansible-debian-stable-action/master/.github/marketplace.svg?sanitize=true)](https://github.com/marketplace/actions/check-ansible-debian-stable)
-[![MIT License](https://raw.githubusercontent.com/roles-ansible/check-ansible-debian-stable-action/master/.github/license.svg?sanitize=true)](https://github.com/roles-ansible/check-ansible-debian-stable-action/blob/master/LICENSE)
+[![Github Marketplace](https://raw.githubusercontent.com/roles-ansible/check-ansible-centos-centos8-action/master/.github/marketplace.svg?sanitize=true)](https://github.com/marketplace/actions/check-ansible-centos-centos8)
+[![MIT License](https://raw.githubusercontent.com/roles-ansible/check-ansible-centos-centos8-action/master/.github/license.svg?sanitize=true)](https://github.com/roles-ansible/check-ansible-centos-centos8-action/blob/master/LICENSE)
 
- Check Ansible Debian stable
+ Check Ansible CentOS centos8
 =======================
-This action allows you to test your ansible role or your playbook in a Docker Container with ``debian:stable``.
+This action allows you to test your ansible role or your playbook in a Docker Container with ``centos:centos8``.
 
 ## Usage
-To use the action simply create an ``ansible-debian-stable.yml`` *(or choose custom ``*.yml`` name)* in the ``.github/workflows/`` directory.
+To use the action simply create an ``ansible-centos-centos8.yml`` *(or choose custom ``*.yml`` name)* in the ``.github/workflows/`` directory.
 
 For example:
 
 ```yaml
-name: Ansible check debian:stable  # feel free to pick your own name
+---
+name: Ansible check centos:stream8  # feel free to pick your own name
 
+# yamllint disable-line rule:truthy
 on: [push, pull_request]
 
 jobs:
   build:
-
     runs-on: ubuntu-latest
 
     steps:
-    # Important: This sets up your GITHUB_WORKSPACE environment variable
-    - uses: actions/checkout@v2
-
-    - name: ansible check with debian:stable
-      # replace "master" with any valid ref
-      uses: roles-ansible/check-ansible-debian-stable-action@master
-      with:
-        targets: "./"
-        #  [required]
-        #   Paths to your ansible role or playboox.yml you want to test
-        #   Some Examples:
-        #   targets: "role/my_role/"
-        #   targets: "site.yml"
-        #
-        # group: ""
-        #  [optional]
-        #   When testing playbooks you have to tell ansible
-        #   the group you that we write in our hosts file.
-        #   example:
-        #   group: 'servers'
-        # hosts: ""
-        #  [optional]
-        #   When testing playbooks you have to give one example
-        #   host this action should use to test your playbook.
-        #   > We only spawn one docker container that mean
-        #   > we can only test one host at the time. Sorry
-        #   some examples:
-        #   hosts: 'localhost'
-        #   hosts: 'srv01.example.com'
-        # requirements
-        #  [optional]
-        #   When testing playbooks and you are using ansible galaxy,
-        #   you may be interested in installing your requirements
-        #   from ansible galaxy.
-        #   To do this please provide us either the role name directly
-        #   requirements: 'do1jlr.ansible_version'
-        #   or your requiements.yml file.
-        #   requirements: 'requirements.yml'
+      # Important: This sets up your GITHUB_WORKSPACE environment variable
+      - name: checkout git repo
+        uses: actions/checkout@v3
+
+      - name: ansible check with quay.io/centos/centos:stream8
+        # optionally replace "master" with any valid git ref
+        uses: roles-ansible/check-ansible-centos-centos8-action@master
+        with:
+          targets: "./"
+          #  [required]
+          #   Paths to your ansible role or playboox.yml you want to test
+          #   Some Examples:
+          #   targets: "role/my_role/"
+          #   targets: "site.yml"
+          #
+          # group: ""
+          #  [optional]
+          #   When testing playbooks you have to tell ansible
+          #   the group you that we write in our hosts file.
+          #   example:
+          #   group: 'servers'
+          #
+          # hosts: ""
+          #  [optional]
+          #   When testing playbooks you have to give one example
+          #   host this action should use to test your playbook.
+          #   > We only spawn one docker container that mean
+          #   > we can only test one host at the time. Sorry
+          #   some examples:
+          #   hosts: 'localhost'
+          #   hosts: 'srv01.example.com'
+          #
+          # requirements: ""
+          #  [optional]
+          #   When testing playbooks and you are using ansible galaxy,
+          #   you may be interested in installing your requirements
+          #   from ansible galaxy.
+          #   To do this please provide us either the role name directly
+          #   requirements: 'do1jlr.ansible_version'
+          #   or your requiements.yml file.
+          #   requirements: 'requirements.yml'
+          #
+          # tags: ""
+          #  [optional]
+          #   If you want to limit the test to some tags, you can use this
+          #   tags or the skiptags option. It will trigger the --tags $tags
+          #   option to ansible.
+          #
+          # skiptags: ""
+          # [optional]
+          #  See tags. This will trigger the --skip-tags $skiptags option
+          #  to ansible.
 ```
 
 Alternatively, you can run the ansible check only on certain branches:
@@ -86,7 +101,7 @@ The Dockerfile and associated scripts and documentation in this project are rele
 
  Credits
 --------------
-The initial GitHub action has been created by [Stefan Stölzle](/stoe) at
-[stoe/actions](https://github.com/stoe/actions).<br/>
-It was used by ansible for lint checks at [ansible/ansible-lint-action](https://github.com/ansible/ansible-lint-action.git)<br/>
-It was modified from [L3D](github.com/do1jlr) to check ansible roles.
++ The initial GitHub action has been created by [Stefan Stölzle](https://github.com/stoe) at
+[stoe/actions](https://github.com/stoe/actions).
++ It was used by ansible for lint checks at [ansible/ansible-lint-action](https://github.com/ansible/ansible-lint-action.git)
++ It was modified from [L3D](github.com/do1jlr) to check ansible roles.

README.md

@@ -1,8 +1,9 @@
-name: Check Ansible Debian stable
-description: Check ansible role or playbook with the debian:stable docker container
+---
+name: Check Ansible CentOS centos8
+description: Check ansible role or playbook with the centos:centos8 docker container
 author: L3D <[email protected]>
 
-inputs: 
+inputs:
   targets:
     description: |
       Paths to the ansible role or playbook you want to be tested.
@@ -33,6 +34,16 @@ inputs:
       or your requiements.yml file.
       -> e.g. 'requirements.yml'
     required: false
+  tags:
+    description: |
+      If you are using tags and you want to pick which tags
+      you are going to check you can optionally define them here.
+    required: false
+  skiptags:
+    desctiption:
+      If you are using tags and you want explicit skip some of them,
+      you can define them here.
+    required: false
 runs:
   using: docker
   image: Dockerfile
@@ -41,6 +52,8 @@ runs:
     HOSTS: ${{ inputs.hosts }}
     GROUP: ${{ inputs.group }}
     REQUIREMENTS: ${{ inputs.requirements }}
+    TAGS: ${{ inputs.tags }}
+    SKIPTAGS: $(( input.skiptags }}
 branding:
-  icon: 'aperture' 
+  icon: 'check-circle'
   color: 'green'

action.yml

@@ -8,70 +8,77 @@ set -x
 #   [required] TARGETS : Path to your ansible role or to a playbook .yml file you want to be tested.
 #                       (e.g, './' or 'roles/my_role/' for roles or 'site.yml' for playbooks)
 
-
 ansible::prepare() {
   : "${TARGETS?No targets to check. Nothing to do.}"
   : "${GITHUB_WORKSPACE?GITHUB_WORKSPACE has to be set. Did you use the actions/checkout action?}"
-  pushd ${GITHUB_WORKSPACE}
+  pushd "${GITHUB_WORKSPACE}"
 
   # generate ansible.cfg
-  echo -e """
+  cat <<EOF | tee ansible.cfg
 [defaults]
-inventory = host.ini
-nocows = True
-host_key_checking = False
+inventory = hosts.ini
+nocows = true
+host_key_checking = false
 forks = 20
 fact_caching = jsonfile
 fact_caching_connection = $HOME/facts
 fact_caching_timeout = 7200
-stdout_callback = yaml
 ansible_python_interpreter=/usr/bin/python3
 ansible_connection=local
-""" | tee ansible.cfg
+EOF
 
   # create host list
-  echo -e "[local]\nlocalhost ansible_python_interpreter=/usr/bin/python3 ansible_connection=local" | tee host.ini
+  cat <<EOF | tee hosts.ini
+[local]
+localhost ansible_python_interpreter=/usr/bin/python3 ansible_connection=local
+EOF
 }
+
 ansible::test::role() {
   : "${TARGETS?No targets to check. Nothing to do.}"
   : "${GITHUB_WORKSPACE?GITHUB_WORKSPACE has to be set. Did you use the actions/checkout action?}"
-  pushd ${GITHUB_WORKSPACE}
+  pushd "${GITHUB_WORKSPACE}"
 
   # generate playbook to be executed
-  echo -e """---
-  - name: test a ansible role
-    hosts: localhost
-    tags: default
-    roles:
-      - \""${TARGETS}"\"
-    """ | tee -a deploy.yml
+  cat <<EOF | tee -a deploy.yml
+---
+- name: test a ansible role
+  hosts: localhost
+  tags: default
+  roles:
+    - "${TARGETS}"
+EOF
 
   # execute playbook
-  ansible-playbook  --connection=local --limit localhost deploy.yml
+  ansible-playbook  --connection=local --limit localhost deploy.yml --tags "${TAGS}" --skip-tags "${SKIPTAGS}"
 }
 ansible::test::playbook() {
   : "${TARGETS?No targets to check. Nothing to do.}"
   : "${GITHUB_WORKSPACE?GITHUB_WORKSPACE has to be set. Did you use the actions/checkout action?}"
   : "${HOSTS?at least one valid host is required to check your playbook!}"
   : "${GROUP?Please define the group your playbook is written for!}"
-  pushd ${GITHUB_WORKSPACE}
+  pushd "${GITHUB_WORKSPACE}"
 
-  echo -e "[${GROUP}]\n${HOSTS} ansible_python_interpreter=/usr/bin/python3 ansible_connection=local ansible_host=127.0.0.1" | tee host.ini
+  cat <<EOF | tee hosts.ini
+[${GROUP}]
+${HOSTS} ansible_python_interpreter=/usr/bin/python3 ansible_connection=local ansible_host=127.0.0.1
+EOF
 
   # execute playbook
-  ansible-playbook --connection=local --inventory host.ini ${TARGETS} 
+  # shellcheck disable=SC2086
+  ansible-playbook --connection=local --inventory host.ini ${TARGETS}
 }
 
 # make sure git is up to date
 git submodule update --init --recursive
 if [[ "${REQUIREMENTS}" == *.yml ]]
 then
-  ansible-galaxy install -r ${REQUIREMENTS}
+  ansible-galaxy install -r "${REQUIREMENTS}"
 else
-  [ ! -z "${REQUIREMENTS}" ] && ansible-galaxy install ${REQUIREMENTS}
+  [ -n "${REQUIREMENTS}" ] && ansible-galaxy install "${REQUIREMENTS}"
 fi
-if [ "$0" = "$BASH_SOURCE" ] ; then
-  >&2 echo -E "\nRunning Ansible debian check...\n"
+if [ "$0" = "${BASH_SOURCE[*]}" ] ; then
+  >&2 printf "Running Ansible debian check...\n"
   ansible::prepare
   if [[ "${TARGETS}" == *.yml ]]
   then