Log in
JavaScript conferences
DevOps.js Conf 2022DevOps.js Conf 2022
workshops

Powering your CI/CD with GitHub Actions

David Rubio Vidal
David Rubio Vidal
DAZN
Recording available for Multipass and Full ticket holders
Please login if you have one.
Get Multipass
Rate this content
Bookmark

You will get knowledge about GitHub Actions concepts, like:

- The concept of repository secrets.

- How to group steps in jobs with a given purpose.

- Jobs dependencies and order of execution: running jobs in sequence and in parallel, and the concept of matrix.

- How to split logic of Git events into different workflow files (on branch push, on master/main push, on tag, on deploy).

- To respect the concept of DRY (Don't Repeat Yourself), we will also explore the use of common actions, both within the same repo and from an external repo.

FAQ

Reusable workflows in GitHub Actions allow you to centralize and standardize a sequence of jobs that are common across multiple workflows. This facilitates maintenance, ensures consistency, and reduces duplication by allowing workflows to call other workflows with parameters for specific environments like development, staging, or production.

A reusable workflow in GitHub Actions is triggered using the 'workflow_call' event. You can define inputs and secrets that the calling workflow can pass to the reusable workflow, making it adaptable for different scenarios or environments.

Composite actions in GitHub Actions allow you to combine multiple steps into a single action. This enables you to reuse a set of steps across different jobs or workflows, simplifying your CI/CD configuration and promoting code reuse and maintainability.

No, you cannot directly use secrets within the definition of composite actions in GitHub Actions. Instead, secrets must be passed as inputs from the workflow that calls the composite action, ensuring security and confidentiality of sensitive data.

Parameters are passed to a reusable workflow in GitHub Actions through the 'inputs' section when defining the workflow_call event. These inputs are then accessible within the reusable workflow, allowing for dynamic execution based on the passed parameters.

Local actions are defined and used within the same repository as your workflow. Remote actions, on the other hand, are stored in a separate repository, which allows them to be shared across multiple repositories. This helps in maintaining a central repository of actions that can be updated and reused across numerous projects.

Sensitive data in GitHub Actions should be secured using secrets. Secrets are encrypted environment variables stored in GitHub and are only exposed to actions that are explicitly authorized to access them. They are ideal for storing data such as credentials, tokens, and keys.

The 'workflow_dispatch' event allows you to manually trigger a workflow directly from GitHub's UI. This provides flexibility to execute workflows on-demand, rather than only in response to code changes or other automated events.

github actionsdevopsci cd
David Rubio Vidal
David Rubio Vidal
155 min
12 Apr, 2022

Comments

Sign in or register to post your comment.
Video transcription, chapters and summary available for users with access.

Watch more workshops on topic

Deploying React Native Apps in the Cloud
React Summit 2023React Summit 2023
88 min
Deploying React Native Apps in the Cloud
WorkshopFree
Cecelia Martinez
Cecelia Martinez
Deploying React Native apps manually on a local machine can be complex. The differences between Android and iOS require developers to use specific tools and processes for each platform, including hardware requirements for iOS. Manual deployments also make it difficult to manage signing credentials, environment configurations, track releases, and to collaborate as a team.
Appflow is the cloud mobile DevOps platform built by Ionic. Using a service like Appflow to build React Native apps not only provides access to powerful computing resources, it can simplify the deployment process by providing a centralized environment for managing and distributing your app to multiple platforms. This can save time and resources, enable collaboration, as well as improve the overall reliability and scalability of an app.
In this workshop, you’ll deploy a React Native application for delivery to Android and iOS test devices using Appflow. You’ll also learn the steps for publishing to Google Play and Apple App Stores. No previous experience with deploying native applications is required, and you’ll come away with a deeper understanding of the mobile deployment process and best practices for how to use a cloud mobile DevOps platform to ship quickly at scale.
react nativeclouddevops
MERN Stack Application Deployment in Kubernetes
DevOps.js Conf 2022DevOps.js Conf 2022
152 min
MERN Stack Application Deployment in Kubernetes
Workshop
Joel Lord
Joel Lord
Deploying and managing JavaScript applications in Kubernetes can get tricky. Especially when a database also has to be part of the deployment. MongoDB Atlas has made developers' lives much easier, however, how do you take a SaaS product and integrate it with your existing Kubernetes cluster? This is where the MongoDB Atlas Operator comes into play. In this workshop, the attendees will learn about how to create a MERN (MongoDB, Express, React, Node.js) application locally, and how to deploy everything into a Kubernetes cluster with the Atlas Operator.
devopskubernetesmongodb
Azure Static Web Apps (SWA) with Azure DevOps
DevOps.js Conf 2022DevOps.js Conf 2022
13 min
Azure Static Web Apps (SWA) with Azure DevOps
WorkshopFree
Juarez Barbosa Junior
Juarez Barbosa Junior
Azure Static Web Apps were launched earlier in 2021, and out of the box, they could integrate your existing repository and deploy your Static Web App from Azure DevOps. This workshop demonstrates how to publish an Azure Static Web App with Azure DevOps.
azuredevops
How to develop, build, and deploy Node.js microservices with Pulumi and Azure DevOps
DevOps.js Conf 2022DevOps.js Conf 2022
163 min
How to develop, build, and deploy Node.js microservices with Pulumi and Azure DevOps
Workshop
Alex Korzhikov
Andrew Reddikh
2 authors
The workshop gives a practical perspective of key principles needed to develop, build, and maintain a set of microservices in the Node.js stack. It covers specifics of creating isolated TypeScript services using the monorepo approach with lerna and yarn workspaces. The workshop includes an overview and a live exercise to create cloud environment with Pulumi framework and Azure services. The sessions fits the best developers who want to learn and practice build and deploy techniques using Azure stack and Pulumi for Node.js.
azurenode.jsdevopsmicroservices

Check out more articles and videos

We constantly think of articles and videos that might spark Git people interest / skill us up or help building a stellar career

Levelling up Monorepos with npm Workspaces
DevOps.js Conf 2022DevOps.js Conf 2022
33 min
Levelling up Monorepos with npm Workspaces
Top Content
Ruy Adorno
Ruy Adorno
Open-source maintainer, Node.js contributor, npm cli team member at GitHub
Learn more about how to leverage the default features of npm workspaces to help you manage your monorepo project while also checking out some of the new npm cli features.
npmmonoreposdevops
Automating All the Code & Testing Things with GitHub Actions
React Advanced Conference 2021React Advanced Conference 2021
19 min
Automating All the Code & Testing Things with GitHub Actions
Top Content
Colby Fayock
Colby Fayock
Helping others learn about Javascript, React, and the static web.
Code tasks like linting and testing are critical pieces of a developer’s workflow that help keep us sane like preventing syntax or style issues and hardening our core business logic. We’ll talk about how we can use GitHub Actions to automate these tasks and help keep our projects running smoothly.
github actionsdevops
Fine-tuning DevOps for People over Perfection
DevOps.js Conf 2022DevOps.js Conf 2022
33 min
Fine-tuning DevOps for People over Perfection
Top Content
Julie Ng
Julie Ng
Engineer at Microsoft
Demand for DevOps has increased in recent years as more organizations adopt cloud native technologies. Complexity has also increased and a "zero to hero" mentality leaves many people chasing perfection and FOMO. This session focusses instead on why maybe we shouldn't adopt a technology practice and how sometimes teams can achieve the same results prioritizing people over ops automation & controls. Let's look at amounts of and fine-tuning everything as code, pull requests, DevSecOps, Monitoring and more to prioritize developer well-being over optimization perfection. It can be a valid decision to deploy less and sleep better. And finally we'll examine how manual practice and discipline can be the key to superb products and experiences.
devopsbest practices
Why is CI so Damn Slow?
DevOps.js Conf 2022DevOps.js Conf 2022
27 min
Why is CI so Damn Slow?
Nicholas Yang
Nicholas Yang
Vercel
We've all asked ourselves this while waiting an eternity for our CI job to finish. Slow CI not only wrecks developer productivity breaking our focus, it costs money in cloud computing fees, and wastes enormous amounts of electricity. Let’s take a dive into why this is the case and how we can solve it with better, faster tools.
devopsci cd
The Zen of Yarn
DevOps.js Conf 2022DevOps.js Conf 2022
31 min
The Zen of Yarn
Maël Nison
Maël Nison
Lead maintainer of Yarn
In the past years Yarn took a spot as one of the most common tools used to develop JavaScript projects, in no small part thanks to an opinionated set of guiding principles. But what are they? How do they apply to Yarn in practice? And just as important: how do they benefit you and your projects?
In this talk we won't dive into benchmarks or feature sets: instead, you'll learn how we approach Yarn’s development, how we explore new paths, how we keep our codebase healthy, and generally why we think Yarn will remain firmly set in our ecosystem for the years to come.
devopsyarn
End the Pain: Rethinking CI for Large Monorepos
DevOps.js Conf 2024DevOps.js Conf 2024
25 min
End the Pain: Rethinking CI for Large Monorepos
Juri Strumpflohner
Juri Strumpflohner
GDE in Web Technologies & Angular, core member of Nx
Scaling large codebases, especially monorepos, can be a nightmare on Continuous Integration (CI) systems. The current landscape of CI tools leans towards being machine-oriented, low-level, and demanding in terms of maintenance. What's worse, they're often disassociated from the developer's actual needs and workflow.Why is CI a stumbling block? Because current CI systems are jacks-of-all-trades, with no specific understanding of your codebase. They can't take advantage of the context they operate in to offer optimizations.In this talk, we'll explore the future of CI, designed specifically for large codebases and monorepos. Imagine a CI system that understands the structure of your workspace, dynamically parallelizes tasks across machines using historical data, and does all of this with a minimal, high-level configuration. Let's rethink CI, making it smarter, more efficient, and aligned with developer needs.
monoreposci cd