Skip to content

Add source-checksums-url, source-checksums-sha256 inputs#201

Merged
cole-h merged 1 commit into
mainfrom
fixup-inputs
Jun 20, 2026
Merged

Add source-checksums-url, source-checksums-sha256 inputs#201
cole-h merged 1 commit into
mainfrom
fixup-inputs

Conversation

@cole-h

@cole-h cole-h commented Jun 20, 2026

Copy link
Copy Markdown
Member
Description
Checklist
  • Tested changes against a test repository
  • Added or updated relevant documentation (leave unchecked if not applicable)
  • (If this PR is for a release) Updated README to point to the new tag (leave unchecked if not applicable)

Summary by CodeRabbit

  • New Features
    • Added source-checksums-url input to provide a shasum-format checksums file URL for installer artifact verification.
    • Added source-checksums-sha256 input to pin the SHA-256 hash of the checksums file (intended to be configured together with source-checksums-url).

@coderabbitai

coderabbitai Bot commented Jun 20, 2026

Copy link
Copy Markdown

Review Change Stack

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: c792d4a2-102d-4533-ae74-1755df290468

📥 Commits

Reviewing files that changed from the base of the PR and between d9db982 and 9727db4.

📒 Files selected for processing (1)
  • action.yml
🚧 Files skipped from review as they are similar to previous changes (1)
  • action.yml

📝 Walkthrough

Walkthrough

Two new optional inputs, source-checksums-url and source-checksums-sha256, are added to action.yml. The first specifies a URL to a shasum-format SHA-256 checksums file; the second pins the hex SHA-256 of that file. Both are documented as needing to be set together.

Changes

Installer Verification Inputs

Layer / File(s) Summary
New checksums input declarations
action.yml
Adds source-checksums-url and source-checksums-sha256 as required: false inputs, each documented to require the other to also be set for installer artifact verification.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Poem

Two new inputs hop into the file,
A URL and a hash to reconcile.
"Set us together," they say with a wink,
"Or the checksum chain will break, we think!"
🐇 Signed, the verification bunny

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title directly and concisely describes the main change: adding two new input parameters to the action.yml file.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch fixup-inputs

Comment @coderabbitai help to get the list of available commands and usage tips.

@cole-h cole-h enabled auto-merge June 20, 2026 18:18
@cole-h cole-h added this pull request to the merge queue Jun 20, 2026
Merged via the queue into main with commit 76aaf88 Jun 20, 2026
8 checks passed
@cole-h cole-h deleted the fixup-inputs branch June 20, 2026 18:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants