feat(actions): extend action validation inside configs package #37355

mildwonkey · 2025-07-21T19:08:26Z

Action Validation
This PR adds some additional validation during the configload process:

ensure that references to resources inside LinkedResources are, indeed, managed resources
ensure that references to actions inside action_triggers are, indeed, actions
really not as much else as I expected; see below

I was trying to fit some more validation into this package, but at this point the remaining validations (that we've identified so far) will happen during validate, and should be my next PR.

The remaining post-configload validation (next PR):

Verify actions and resources are specific instances
verify that referenced action exists in config
verify that referenced linked_resource(s) exist in config

Target Release

1.14.x

Rollback Plan

If a change needs to be reverted, we will roll out an update to the code within 7 days.

Changes to Security Controls

Are there any changes to security controls (access controls, encryption, logging) in this pull request? If so, explain.

CHANGELOG entry

This change is user-facing and I added a changelog entry.
This change is not user-facing.

- Verify that actions and linked_resources are in the current module - Verify that given traversals reference the right types (action, resource) - Add some validation tests Things not captured in config validation: - is this action referencing a resource defined in this configuration - is this resource referencing an action defined in this configuration Todo: - Verify actions and resources are specific instances - no containers/expansion allowed in referenfces for now

github-actions · 2025-08-23T02:17:18Z

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active contributions.
If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

extend action validation

42449aa

mildwonkey added the no-changelog-needed Add this to your PR if the change does not require a changelog entry label Jul 21, 2025

mildwonkey force-pushed the mildwonkey/action-validation-tf branch from f119aba to 1aef3b7 Compare July 22, 2025 17:06

mildwonkey changed the title ~~Mildwonkey/action validation tf~~ feat(actions): extend action validation inside configs package Jul 22, 2025

vercel bot deployed to Preview July 22, 2025 17:11 View deployment

mildwonkey marked this pull request as ready for review July 22, 2025 17:39

mildwonkey requested a review from a team as a code owner July 22, 2025 17:39

DanielMSchmidt approved these changes Jul 23, 2025

View reviewed changes

mildwonkey merged commit 333de76 into main Jul 23, 2025
14 checks passed

github-actions bot locked as resolved and limited conversation to collaborators Aug 23, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat(actions): extend action validation inside configs package #37355

feat(actions): extend action validation inside configs package #37355

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

feat(actions): extend action validation inside configs package #37355

feat(actions): extend action validation inside configs package #37355

Uh oh!

Conversation

Uh oh!

Target Release

Rollback Plan

Changes to Security Controls

CHANGELOG entry

Uh oh!

Uh oh!

Uh oh!

Uh oh!