Add dependabot

.github/workflows/codeql.yml

@@ -16,7 +16,7 @@ jobs:
 
       steps:
          - name: Checkout repository
-           uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 #v4.2.2
+           uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 #v4.1.1
            with:
               # We must fetch at least the immediate parents so that if this is
               # a pull request then we can checkout the head.
@@ -24,7 +24,7 @@ jobs:
 
          # Initializes the CodeQL tools for scanning.
          - name: Initialize CodeQL
-           uses: github/codeql-action/init@45775bd8235c68ba998cffa5171334d58593da47 #v3.28.15
+           uses: github/codeql-action/init@05963f47d870e2cb19a537396c1f668a348c7d8f #v3.24.8
            # Override language selection by uncommenting this and choosing your languages
            # with:
            #   languages: go, javascript, csharp, python, cpp, java
@@ -32,7 +32,7 @@ jobs:
          # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
          # If this step fails, then you should remove it and run the build manually (see below)
          - name: Autobuild
-           uses: github/codeql-action/autobuild@45775bd8235c68ba998cffa5171334d58593da47 #v3.28.15
+           uses: github/codeql-action/autobuild@05963f47d870e2cb19a537396c1f668a348c7d8f #v3.24.8
 
          # ℹ️ Command-line programs to run using the OS shell.
          # 📚 https://git.io/JvXDl
@@ -46,4 +46,4 @@ jobs:
          #   make release
 
          - name: Perform CodeQL Analysis
-           uses: github/codeql-action/analyze@45775bd8235c68ba998cffa5171334d58593da47 #v3.28.15
+           uses: github/codeql-action/analyze@05963f47d870e2cb19a537396c1f668a348c7d8f #v3.24.8

.github/workflows/defaultLabels.yml

@@ -13,7 +13,7 @@ jobs:
 
       # Steps represent a sequence of tasks that will be executed as part of the job
       steps:
-         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
+         - uses: actions/stale@v3
            name: Setting issue as idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
               operations-per-run: 100
               exempt-issue-labels: 'backlog'
 
-         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
+         - uses: actions/stale@v3
            name: Setting PR as idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/prettify-code.yml

@@ -10,9 +10,9 @@ jobs:
       runs-on: ubuntu-latest
       steps:
          - name: Checkout Repository
-           uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+           uses: actions/checkout@v2
-         - name: install deps
-           run: npm install
 
          - name: Enforce Prettier
-           run: npm run format-check
+           uses: actionsx/prettier@v2
+           with:
+              args: --check .

.github/workflows/run-integration-tests-basic.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,22 +31,22 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.24.0
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-bluegreen-ingress.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,22 +31,22 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.31.2
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-bluegreen-service.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,22 +31,22 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.31.2
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-bluegreen-smi.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,24 +31,23 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.24.0
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Install linkerd and add controlplane to cluster
            run: |
-              curl --proto '=https' --tlsv1.2 -sSfL https://run.linkerd.io/install-edge | sh
+              curl --proto '=https' --tlsv1.2 -sSfL https://run.linkerd.io/install | sh
-              export PATH=$PATH:/home/runner/.linkerd2/bin
               curl -sL https://linkerd.github.io/linkerd-smi/install | sh
-              kubectl apply -f https://github.com/kubernetes-sigs/gateway-api/releases/download/v1.2.0/standard-install.yaml
+              export PATH=$PATH:/home/runner/.linkerd2/bin
 
               linkerd install --crds | kubectl apply -f -
               linkerd install --set proxyInit.runAsRoot=true | kubectl apply -f -
@@ -57,7 +56,7 @@ jobs:
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-canary-pod.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,22 +31,22 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.24.0
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-canary-smi.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,21 +31,23 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.24.0
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
-              curl --proto '=https' --tlsv1.2 -sSfL https://run.linkerd.io/install-edge | sh
+
-              export PATH=$PATH:/home/runner/.linkerd2/bin
+         - name: Install linkerd and add controlplane to cluster
+           run: |
+              curl --proto '=https' --tlsv1.2 -sSfL https://run.linkerd.io/install | sh
               curl -sL https://linkerd.github.io/linkerd-smi/install | sh
-              kubectl apply -f https://github.com/kubernetes-sigs/gateway-api/releases/download/v1.2.0/standard-install.yaml
+              export PATH=$PATH:/home/runner/.linkerd2/bin
 
               linkerd install --crds | kubectl apply -f -
               linkerd install --set proxyInit.runAsRoot=true | kubectl apply -f -
@@ -54,7 +56,7 @@ jobs:
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-private.yml

@@ -11,7 +11,7 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
@@ -19,7 +19,7 @@ jobs:
          contents: read
          id-token: write
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -30,13 +30,13 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
          - name: Azure login
-           uses: azure/login@v2.3.0
+           uses: azure/login@v1.4.3
            with:
               client-id: ${{ secrets.AZURE_CLIENT_ID }}
               tenant-id: ${{ secrets.AZURE_TENANT_ID }}
               subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - name: Create private AKS cluster and set context
@@ -51,7 +51,7 @@ jobs:
            run: |
               az aks command invoke --resource-group ${{ env.NAMESPACE }} --name ${{ env.NAMESPACE }} --command "kubectl create ns ${{ env.NAMESPACE }}"
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/run-integration-tests-resource-annotation.yml

@@ -13,12 +13,12 @@ on:
 jobs:
    run-integration-test:
       name: Run Minikube Integration Tests
-      runs-on: ubuntu-22.04
+      runs-on: ubuntu-latest
       env:
          KUBECONFIG: /home/runner/.kube/config
          NAMESPACE: test-${{ github.run_id }}
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
 
          - name: Install dependencies
            run: |
@@ -31,22 +31,22 @@ jobs:
          - name: Build
            run: ncc build src/run.ts -o lib
 
-         - uses: Azure/setup-kubectl@3e0aec4d80787158d308d7b364cb1b702e7feb7f # v4.0.0
+         - uses: Azure/setup-kubectl@v3
            name: Install Kubectl
 
          - id: setup-minikube
            name: Setup Minikube
-           uses: medyagh/setup-minikube@cea33675329b799adccc9526aa5daccc26cd5052 # v0.0.19
+           uses: medyagh/setup-minikube@latest
            with:
-              minikube-version: 1.34.0
+              minikube-version: 1.24.0
-              kubernetes-version: 1.31.0
+              kubernetes-version: 1.22.3
               driver: 'none'
            timeout-minutes: 3
 
          - name: Create namespace to run tests
            run: kubectl create ns ${{ env.NAMESPACE }}
 
-         - uses: actions/setup-python@8d9ed9ac5c53483de85588cdf95a591a75ab9f55 # 5.5.0
+         - uses: actions/setup-python@v2
            name: Install Python
            with:
               python-version: '3.x'

.github/workflows/unit-tests.yml

@@ -14,7 +14,7 @@ jobs:
       name: Run Unit Tests
       runs-on: ubuntu-latest
       steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@v3
          - run: |
               npm install
               npm test

.gitignore

@@ -2,5 +2,6 @@ node_modules
 
 .DS_Store
 .idea
+lib/
 
 coverage/

CHANGELOG.md

@@ -1,40 +1,28 @@
 # Changelog
 
-## [5.0.2] - 2025-04-15
-
-### Added
-
-- #396 Update new resource-type input for action
-
-## [5.0.1] - 2024-03-12
-
-### Added
-
-- #356 Add fleet support
-
 ## [5.0.0] - 2024-03-12
 
 ### Changed
 
-- #309 Updated to Node20 and upgraded release workflows to @v1 tag
+-  #309 Updated to Node20 and upgraded release workflows to @v1 tag
-- #306 update release workflow to use new prefix, remove deprecated release
+-  #306 update release workflow to use new prefix, remove deprecated release
-- #303 fix: ensure imageNames are not empty strings
+-  #303 fix: ensure imageNames are not empty strings
-- #299 bump release workflow sha
+-  #299 bump release workflow sha
-- #298 bump minikube to fix runner deps
+-  #298 bump minikube to fix runner deps
-- #297 update release workflow
+-  #297 update release workflow
 
 ### Added
 
-- #304 add v prefix for version tagging
+-  #304 add v prefix for version tagging
-- #302 adding ncc to build
+-  #302 adding ncc to build
-- #301 adding release workflow artifact fix
+-  #301 adding release workflow artifact fix
 
 ## [4.10.0] - 2023-10-30
 
 ### Added
 
-- #287 Make annotating resources optional
+-  #287 Make annotating resources optional
-- #283 Fix “Service” route-method of the Blue-Green strategy with some manifest files
+-  #283 Fix “Service” route-method of the Blue-Green strategy with some manifest files
-- #281 bump codeql to node 16
+-  #281 bump codeql to node 16
-- #279 upgrade codeql
+-  #279 upgrade codeql
-- #276 Fixes multiple namespaces bug
+-  #276 Fixes multiple namespaces bug

CODE_OF_CONDUCT.md

@@ -4,6 +4,6 @@ This project has adopted the [Microsoft Open Source Code of Conduct](https://ope
 
 Resources:
 
-- [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/)
+-  [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/)
-- [Microsoft Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
+-  [Microsoft Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
-- Contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with questions or concerns
+-  Contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with questions or concerns

README.md

@@ -17,22 +17,22 @@ permissions:
 
 Following are the key capabilities of this action:
 
-- **Artifact substitution**: Takes a list of container images which can be specified along with their tags or digests. They are substituted into the non-templatized version of manifest files before applying to the cluster to ensure that the right version of the image is pulled by the cluster nodes.
+-  **Artifact substitution**: Takes a list of container images which can be specified along with their tags or digests. They are substituted into the non-templatized version of manifest files before applying to the cluster to ensure that the right version of the image is pulled by the cluster nodes.
 
-- **Object stability checks**: Rollout status is checked for the Kubernetes objects deployed. This is done to incorporate stability checks while computing the action status as success/failure.
+-  **Object stability checks**: Rollout status is checked for the Kubernetes objects deployed. This is done to incorporate stability checks while computing the action status as success/failure.
 
-- **Secret handling**: The secret names specified as inputs in the action are used to augment the input manifest files with imagePullSecrets values before deploying to the cluster. Also, checkout the [Azure/k8s-create-secret](https://github.com/Azure/k8s-create-secret) action for creation of generic or docker-registry secrets in the cluster.
+-  **Secret handling**: The secret names specified as inputs in the action are used to augment the input manifest files with imagePullSecrets values before deploying to the cluster. Also, checkout the [Azure/k8s-create-secret](https://github.com/Azure/k8s-create-secret) action for creation of generic or docker-registry secrets in the cluster.
 
-- **Deployment strategy** Supports both canary and blue-green deployment strategies
+-  **Deployment strategy** Supports both canary and blue-green deployment strategies
 
-   - **Canary strategy**: Workloads suffixed with '-baseline' and '-canary' are created. There are two methods of traffic splitting supported:
+   -  **Canary strategy**: Workloads suffixed with '-baseline' and '-canary' are created. There are two methods of traffic splitting supported:
-      - **Service Mesh Interface**: Service Mesh Interface abstraction allows for plug-and-play configuration with service mesh providers such as [Linkerd](https://linkerd.io/) and [Istio](https://istio.io/). Meanwhile, this action takes away the hard work of mapping SMI's TrafficSplit objects to the stable, baseline and canary services during the lifecycle of the deployment strategy. Service mesh based canary deployments using this action are more accurate as service mesh providers enable granular percentage traffic split (via service registry and sidecar containers injected into pods alongside application containers).
+      -  **Service Mesh Interface**: Service Mesh Interface abstraction allows for plug-and-play configuration with service mesh providers such as [Linkerd](https://linkerd.io/) and [Istio](https://istio.io/). Meanwhile, this action takes away the hard work of mapping SMI's TrafficSplit objects to the stable, baseline and canary services during the lifecycle of the deployment strategy. Service mesh based canary deployments using this action are more accurate as service mesh providers enable granular percentage traffic split (via service registry and sidecar containers injected into pods alongside application containers).
-      - **Only Kubernetes (no service mesh)**: In the absence of service mesh, while it may not be possible to achieve exact percentage split at the request level, it is still possible to perform canary deployments by deploying -baseline and -canary workload variants next to the stable variant. The service routes requests to pods of all three workload variants as the selector-label constraints are met (KubernetesManifest will honor these when creating -baseline and -canary variants). This achieves the intended effect of routing only a portion of total requests to the canary.
+      -  **Only Kubernetes (no service mesh)**: In the absence of service mesh, while it may not be possible to achieve exact percentage split at the request level, it is still possible to perform canary deployments by deploying -baseline and -canary workload variants next to the stable variant. The service routes requests to pods of all three workload variants as the selector-label constraints are met (KubernetesManifest will honor these when creating -baseline and -canary variants). This achieves the intended effect of routing only a portion of total requests to the canary.
-   - **Blue-Green strategy**: Choosing blue-green strategy with this action leads to creation of workloads suffixed with '-green'. An identified service is one that is supplied as part of the input manifest(s) and targets a workload in the supplied manifest(s). There are three route-methods supported in the action:
+   -  **Blue-Green strategy**: Choosing blue-green strategy with this action leads to creation of workloads suffixed with '-green'. An identified service is one that is supplied as part of the input manifest(s) and targets a workload in the supplied manifest(s). There are three route-methods supported in the action:
 
-      - **Service route-method**: Identified services are configured to target the green deployments.
+      -  **Service route-method**: Identified services are configured to target the green deployments.
-      - **Ingress route-method**: Along with deployments, new services are created with '-green' suffix (for identified services), and the ingresses are in turn updated to target the new services.
+      -  **Ingress route-method**: Along with deployments, new services are created with '-green' suffix (for identified services), and the ingresses are in turn updated to target the new services.
-      - **SMI route-method**: A new [TrafficSplit](https://github.com/servicemeshinterface/smi-spec/blob/master/apis/traffic-split/v1alpha3/traffic-split.md) object is created for each identified service. The TrafficSplit object is updated to target the new deployments. This works only if SMI is set up in the cluster.
+      -  **SMI route-method**: A new [TrafficSplit](https://github.com/servicemeshinterface/smi-spec/blob/master/apis/traffic-split/v1alpha3/traffic-split.md) object is created for each identified service. The TrafficSplit object is updated to target the new deployments. This works only if SMI is set up in the cluster.
 
       Traffic is routed to the new workloads only after the time provided as `version-switch-buffer` input has passed. The `promote` action creates workloads and services with new configurations but without any suffix. `reject` routes traffic back to the old workloads and deletes the '-green' workloads.
 
@@ -125,10 +125,6 @@ Following are the key capabilities of this action:
     <td>skip-tls-verify</br></br>(Optional)</td>
     <td>Acceptable values: true/false</br>Default value: false</br>True if the insecure-skip-tls-verify option should be used</td>
   </tr>
-  <tr>
-    <td>resource-type (Optional)</td>
-    <td>Acceptable values: `Microsoft.ContainerService/managedClusters` (default), 'Microsoft.ContainerService/fleets'</td>
-  </tr>
 </table>
 
 ## Usage Examples
@@ -466,9 +462,9 @@ jobs:
 
 ## Traceability Fields Support
 
-- Environment variable `HELM_CHART_PATHS` is a list of helmchart files expected by k8s-deploy - it will be populated automatically if you are using k8s-bake to generate the manifests.
+-  Environment variable `HELM_CHART_PATHS` is a list of helmchart files expected by k8s-deploy - it will be populated automatically if you are using k8s-bake to generate the manifests.
-- Use script to build image and add dockerfile-path label to it. The value expected is the link to the dockerfile: https://github.com/${{github.repo}}/blob/${{github.sha}}/Dockerfile. If your dockerfile is in the same repo and branch where the workflow is run, it can be a relative path and it will be converted to a link for traceability.
+-  Use script to build image and add dockerfile-path label to it. The value expected is the link to the dockerfile: https://github.com/${{github.repo}}/blob/${{github.sha}}/Dockerfile. If your dockerfile is in the same repo and branch where the workflow is run, it can be a relative path and it will be converted to a link for traceability.
-- Run docker login action for each image registry - in case image build and image deploy are two distinct jobs in the same or separate workflows.
+-  Run docker login action for each image registry - in case image build and image deploy are two distinct jobs in the same or separate workflows.
 
 ## Contributing
 

SECURITY.md

@@ -14,13 +14,13 @@ You should receive a response within 24 hours. If for some reason you do not, pl
 
 Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
 
-- Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+-  Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
-- Full paths of source file(s) related to the manifestation of the issue
+-  Full paths of source file(s) related to the manifestation of the issue
-- The location of the affected source code (tag/branch/commit or direct URL)
+-  The location of the affected source code (tag/branch/commit or direct URL)
-- Any special configuration required to reproduce the issue
+-  Any special configuration required to reproduce the issue
-- Step-by-step instructions to reproduce the issue
+-  Step-by-step instructions to reproduce the issue
-- Proof-of-concept or exploit code (if possible)
+-  Proof-of-concept or exploit code (if possible)
-- Impact of the issue, including how an attacker might exploit the issue
+-  Impact of the issue, including how an attacker might exploit the issue
 
 This information will help us triage your report more quickly.
 

action.yml

@@ -80,10 +80,6 @@ inputs:
    skip-tls-verify:
       description: True if the insecure-skip-tls-verify option should be used. Input should be 'true' or 'false'.
       default: false
-   resource-type:
-      description: Either Microsoft.ContainerService/managedClusters or Microsoft.ContainerService/fleets'.
-      required: false
-      default: 'Microsoft.ContainerService/managedClusters'
 
 branding:
    color: 'green'

babel.config.js

@@ -1,6 +0,0 @@
-module.exports = {
-   presets: [
-      ['@babel/preset-env', {targets: {node: 'current'}}],
-      '@babel/preset-typescript'
-   ]
-}

jest.config.js

@@ -1,20 +1,11 @@
 module.exports = {
+   clearMocks: true,
    moduleFileExtensions: ['js', 'ts'],
    testEnvironment: 'node',
    testMatch: ['**/*.test.ts'],
    transform: {
-      '\\.[jt]sx?$': 'babel-jest'
+      '^.+\\.ts$': 'ts-jest'
    },
-   transformIgnorePatterns: [
-      'node_modules/(?!' +
-         [
-            '@octokit',
-            'universal-user-agent',
-            'before-after-hook',
-            'minimist'
-         ].join('|') +
-         ')'
-   ],
    verbose: true,
    testTimeout: 9000
 }

package.json

@@ -12,27 +12,24 @@
       "format-check": "prettier --check ."
    },
    "dependencies": {
-      "@actions/core": "^1.11.1",
+      "@actions/core": "^1.10.0",
       "@actions/exec": "^1.0.0",
-      "@actions/io": "^1.1.3",
+      "@actions/io": "^1.0.0",
-      "@actions/tool-cache": "2.0.2",
+      "@actions/tool-cache": "1.1.2",
-      "@babel/preset-env": "^7.26.9",
+      "@octokit/core": "^3.5.1",
-      "@babel/preset-typescript": "^7.27.0",
+      "@octokit/plugin-retry": "^3.0.9",
-      "@octokit/core": "^6.1.4",
+      "@types/minipass": "^3.1.2",
-      "@octokit/plugin-retry": "^7.2.0",
+      "js-yaml": "3.13.1",
-      "@types/minipass": "^3.3.5",
-      "js-yaml": "4.1.0",
       "minimist": "^1.2.8"
    },
    "devDependencies": {
-      "@types/jest": "^29.5.14",
+      "@types/jest": "^26.0.0",
-      "@types/js-yaml": "^4.0.9",
+      "@types/js-yaml": "^3.12.7",
-      "@types/minimist": "^1.2.5",
+      "@types/node": "^12.20.41",
-      "@types/node": "^22.14.0",
+      "@vercel/ncc": "^0.36.1",
-      "@vercel/ncc": "^0.38.3",
       "jest": "^29.7.0",
-      "prettier": "^3.5.3",
+      "prettier": "^2.8.8",
-      "ts-jest": "^29.3.1",
+      "ts-jest": "^29.2.3",
-      "typescript": "5.8.3"
+      "typescript": "5.5.4"
    }
 }

src/actions/deploy.ts

@@ -13,12 +13,6 @@ import {
 } from '../strategyHelpers/deploymentHelper'
 import {DeploymentStrategy} from '../types/deploymentStrategy'
 import {parseTrafficSplitMethod} from '../types/trafficSplitMethod'
-export const ResourceTypeManagedCluster =
-   'Microsoft.ContainerService/managedClusters'
-export const ResourceTypeFleet = 'Microsoft.ContainerService/fleets'
-export type ClusterType =
-   | typeof ResourceTypeManagedCluster
-   | typeof ResourceTypeFleet
 
 export async function deploy(
    kubectl: Kubectl,
@@ -45,25 +39,13 @@ export async function deploy(
 
    // check manifest stability
    core.startGroup('Checking manifest stability')
-   const resourceTypeInput =
-      core.getInput('resource-type') || ResourceTypeManagedCluster
    const resourceTypes: Resource[] = getResources(
       deployedManifestFiles,
       models.DEPLOYMENT_TYPES.concat([
          KubernetesConstants.DiscoveryAndLoadBalancerResource.SERVICE
       ])
    )
-
+   await checkManifestStability(kubectl, resourceTypes)
-   if (
-      resourceTypeInput !== ResourceTypeManagedCluster &&
-      resourceTypeInput !== ResourceTypeFleet
-   ) {
-      let errMsg = `Invalid resource type: ${resourceTypeInput}. Supported resource types are: ${ResourceTypeManagedCluster} (default), ${ResourceTypeFleet}`
-      core.setFailed(errMsg)
-      throw new Error(errMsg)
-   }
-
-   await checkManifestStability(kubectl, resourceTypes, resourceTypeInput)
    core.endGroup()
 
    // print ingresses

src/actions/promote.ts

@@ -38,7 +38,6 @@ import {
    TrafficSplitMethod
 } from '../types/trafficSplitMethod'
 import {parseRouteStrategy, RouteStrategy} from '../types/routeStrategy'
-import {ResourceTypeFleet, ResourceTypeManagedCluster} from './deploy'
 
 export async function promote(
    kubectl: Kubectl,
@@ -167,8 +166,6 @@ async function promoteBlueGreen(kubectl: Kubectl, manifests: string[]) {
 
    // checking stability of newly created deployments
    core.startGroup('Checking manifest stability')
-   const resourceType =
-      core.getInput('resource-type') || ResourceTypeManagedCluster
    const deployedManifestFiles = deployResult.manifestFiles
    const resources: Resource[] = getResources(
       deployedManifestFiles,
@@ -176,19 +173,7 @@ async function promoteBlueGreen(kubectl: Kubectl, manifests: string[]) {
          models.DiscoveryAndLoadBalancerResource.SERVICE
       ])
    )
-   if (
+   await KubernetesManifestUtility.checkManifestStability(kubectl, resources)
-      resourceType !== ResourceTypeManagedCluster &&
-      resourceType !== ResourceTypeFleet
-   ) {
-      const errMsg = `Invalid resource type: ${resourceType}. Supported resource types are: ${ResourceTypeManagedCluster} (default), fleet`
-      core.setFailed(errMsg)
-      throw new Error(errMsg)
-   }
-   await KubernetesManifestUtility.checkManifestStability(
-      kubectl,
-      resources,
-      resourceType
-   )
    core.endGroup()
 
    core.startGroup(

src/run.ts

@@ -26,8 +26,9 @@ export async function run() {
       .map((manifest) => manifest.trim()) // remove surrounding whitespace
       .filter((manifest) => manifest.length > 0) // remove any blanks
 
-   const fullManifestFilePaths =
+   const fullManifestFilePaths = await getFilesFromDirectoriesAndURLs(
-      await getFilesFromDirectoriesAndURLs(manifestFilePaths)
+      manifestFilePaths
+   )
    const kubectlPath = await getKubectlPath()
    const namespace = core.getInput('namespace') || 'default'
    const isPrivateCluster =

src/strategyHelpers/blueGreen/blueGreenHelper.ts

@@ -77,26 +77,22 @@ export function getManifestObjects(filePaths: string[]): BlueGreenManifests {
    // Manifest objects per type. All resources should be parsed and
    // organized before we can check if services are “routed” or not.
    filePaths.forEach((filePath: string) => {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      yaml.safeLoadAll(fileContents, (inputObject) => {
-         yaml.loadAll(fileContents, (inputObject: any) => {
+         if (!!inputObject) {
-            if (!!inputObject) {
+            const kind = inputObject.kind
-               const kind = inputObject.kind
+
-               if (isDeploymentEntity(kind)) {
+            if (isDeploymentEntity(kind)) {
-                  deploymentEntityList.push(inputObject)
+               deploymentEntityList.push(inputObject)
-               } else if (isServiceEntity(kind)) {
+            } else if (isServiceEntity(kind)) {
-                  serviceEntityList.push(inputObject)
+               serviceEntityList.push(inputObject)
-               } else if (isIngressEntity(kind)) {
+            } else if (isIngressEntity(kind)) {
-                  ingressEntityList.push(inputObject)
+               ingressEntityList.push(inputObject)
-               } else {
+            } else {
-                  otherEntitiesList.push(inputObject)
+               otherEntitiesList.push(inputObject)
-               }
             }
-         })
+         }
-      } catch (error) {
+      })
-         core.error(`Error processing file ${filePath}: ${error.message}`)
-         throw error
-      }
    })
 
    serviceEntityList.forEach((inputObject: any) => {

src/strategyHelpers/blueGreen/smiBlueGreenHelper.ts

@@ -77,8 +77,9 @@ export async function createTrafficSplitObject(
 ): Promise<TrafficSplitObject> {
    // cache traffic split api version
    if (!trafficSplitAPIVersion)
-      trafficSplitAPIVersion =
+      trafficSplitAPIVersion = await kubectlUtils.getTrafficSplitAPIVersion(
-         await kubectlUtils.getTrafficSplitAPIVersion(kubectl)
+         kubectl
+      )
 
    // retrieve annotations for TS object
    const annotations = inputAnnotations

src/strategyHelpers/canary/canaryHelper.ts

@@ -211,31 +211,25 @@ async function cleanUpCanary(
    const deletedFiles: string[] = []
 
    for (const filePath of files) {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
 
-         const parsedYaml: any[] = yaml.loadAll(fileContents)
+      const parsedYaml = yaml.safeLoadAll(fileContents)
-         for (const inputObject of parsedYaml) {
+      for (const inputObject of parsedYaml) {
-            const name = inputObject.metadata.name
+         const name = inputObject.metadata.name
-            const kind = inputObject.kind
+         const kind = inputObject.kind
-            const namespace: string | undefined =
+         const namespace: string | undefined = inputObject?.metadata?.namespace
-               inputObject?.metadata?.namespace
 
-            if (
+         if (
-               isDeploymentEntity(kind) ||
+            isDeploymentEntity(kind) ||
-               (includeServices && isServiceEntity(kind))
+            (includeServices && isServiceEntity(kind))
-            ) {
+         ) {
-               deletedFiles.push(filePath)
+            deletedFiles.push(filePath)
-               const canaryObjectName = getCanaryResourceName(name)
+            const canaryObjectName = getCanaryResourceName(name)
-               const baselineObjectName = getBaselineResourceName(name)
+            const baselineObjectName = getBaselineResourceName(name)
 
-               await deleteObject(kind, canaryObjectName, namespace)
+            await deleteObject(kind, canaryObjectName, namespace)
-               await deleteObject(kind, baselineObjectName, namespace)
+            await deleteObject(kind, baselineObjectName, namespace)
-            }
          }
-      } catch (error) {
-         core.error(`Failed to process file ${filePath}: ${error.message}`)
-         throw error
       }
    }
 

src/strategyHelpers/canary/podCanaryHelper.ts

@@ -8,7 +8,6 @@ import * as canaryDeploymentHelper from './canaryHelper'
 import {isDeploymentEntity} from '../../types/kubernetesTypes'
 import {getReplicaCount} from '../../utilities/manifestUpdateUtils'
 import {DeployResult} from '../../types/deployResult'
-import {K8sObject} from '../../types/k8sObject'
 
 export async function deployPodCanary(
    filePaths: string[],
@@ -22,73 +21,50 @@ export async function deployPodCanary(
       throw Error('Percentage must be between 0 and 100')
 
    for (const filePath of filePaths) {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath, 'utf8')
+      const parsedYaml = yaml.safeLoadAll(fileContents)
-         const parsedYaml = yaml.loadAll(fileContents)
+      for (const inputObject of parsedYaml) {
-         for (const inputObject of parsedYaml) {
+         const name = inputObject.metadata.name
-            if (
+         const kind = inputObject.kind
-               inputObject &&
-               typeof inputObject === 'object' &&
-               'metadata' in inputObject &&
-               'kind' in inputObject &&
-               'spec' in inputObject &&
-               typeof inputObject.metadata === 'object' &&
-               'name' in inputObject.metadata &&
-               typeof inputObject.metadata.name === 'string' &&
-               typeof inputObject.kind === 'string'
-            ) {
-               const obj = inputObject as K8sObject
-               const name = obj.metadata.name
-               const kind = obj.kind
 
-               if (!onlyDeployStable && isDeploymentEntity(kind)) {
+         if (!onlyDeployStable && isDeploymentEntity(kind)) {
-                  core.debug('Calculating replica count for canary')
+            core.debug('Calculating replica count for canary')
-                  const canaryReplicaCount = calculateReplicaCountForCanary(
+            const canaryReplicaCount = calculateReplicaCountForCanary(
-                     obj,
+               inputObject,
-                     percentage
+               percentage
+            )
+            core.debug('Replica count is ' + canaryReplicaCount)
+
+            const newCanaryObject = canaryDeploymentHelper.getNewCanaryResource(
+               inputObject,
+               canaryReplicaCount
+            )
+            newObjectsList.push(newCanaryObject)
+
+            // if there's already a stable object, deploy baseline as well
+            const stableObject = await canaryDeploymentHelper.fetchResource(
+               kubectl,
+               kind,
+               name
+            )
+            if (stableObject) {
+               core.debug(
+                  `Stable object found for ${kind} ${name}. Creating baseline objects`
+               )
+               const newBaselineObject =
+                  canaryDeploymentHelper.getNewBaselineResource(
+                     stableObject,
+                     canaryReplicaCount
                   )
-                  core.debug('Replica count is ' + canaryReplicaCount)
+               core.debug(
-
+                  'New baseline object: ' + JSON.stringify(newBaselineObject)
-                  const newCanaryObject =
+               )
-                     canaryDeploymentHelper.getNewCanaryResource(
+               newObjectsList.push(newBaselineObject)
-                        obj,
-                        canaryReplicaCount
-                     )
-                  newObjectsList.push(newCanaryObject)
-
-                  // if there's already a stable object, deploy baseline as well
-                  const stableObject =
-                     await canaryDeploymentHelper.fetchResource(
-                        kubectl,
-                        kind,
-                        name
-                     )
-                  if (stableObject) {
-                     core.debug(
-                        `Stable object found for ${kind} ${name}. Creating baseline objects`
-                     )
-                     const newBaselineObject =
-                        canaryDeploymentHelper.getNewBaselineResource(
-                           stableObject,
-                           canaryReplicaCount
-                        )
-                     core.debug(
-                        'New baseline object: ' +
-                           JSON.stringify(newBaselineObject)
-                     )
-                     newObjectsList.push(newBaselineObject)
-                  }
-               } else {
-                  // deploy non deployment entity or regular deployments for promote as they are
-                  newObjectsList.push(obj)
-               }
             }
+         } else {
+            // deploy non deployment entity or regular deployments for promote as they are
+            newObjectsList.push(inputObject)
          }
-      } catch (error) {
-         core.error(
-            `Failed to parse YAML file at ${filePath}: ${error.message}`
-         )
-         throw error
       }
    }
 

src/strategyHelpers/canary/smiCanaryHelper.ts

@@ -11,7 +11,6 @@ import {isDeploymentEntity, isServiceEntity} from '../../types/kubernetesTypes'
 import {checkForErrors} from '../../utilities/kubectlUtils'
 import {inputAnnotations} from '../../inputUtils'
 import {DeployResult} from '../../types/deployResult'
-import {K8sObject} from '../../types/k8sObject'
 
 const TRAFFIC_SPLIT_OBJECT_NAME_SUFFIX = '-workflow-rollout'
 const TRAFFIC_SPLIT_OBJECT = 'TrafficSplit'
@@ -37,68 +36,60 @@ export async function deploySMICanary(
 
    const newObjectsList = []
    for await (const filePath of filePaths) {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      const inputObjects = yaml.safeLoadAll(fileContents)
-         const inputObjects: K8sObject[] = yaml.loadAll(
+      for (const inputObject of inputObjects) {
-            fileContents
+         const name = inputObject.metadata.name
-         ) as K8sObject[]
+         const kind = inputObject.kind
-         for (const inputObject of inputObjects) {
-            const name = inputObject.metadata.name
-            const kind = inputObject.kind
 
-            if (!onlyDeployStable && isDeploymentEntity(kind)) {
+         if (!onlyDeployStable && isDeploymentEntity(kind)) {
-               if (calculateReplicas) {
+            if (calculateReplicas) {
-                  // calculate for each object
+               // calculate for each object
-                  const percentage = parseInt(
+               const percentage = parseInt(
-                     core.getInput('percentage', {required: true})
+                  core.getInput('percentage', {required: true})
-                  )
+               )
-                  canaryReplicaCount =
+               canaryReplicaCount =
-                     podCanaryHelper.calculateReplicaCountForCanary(
+                  podCanaryHelper.calculateReplicaCountForCanary(
-                        inputObject,
-                        percentage
-                     )
-                  core.debug(`calculated replica count ${canaryReplicaCount}`)
-               }
-
-               core.debug('Creating canary object')
-               const newCanaryObject =
-                  canaryDeploymentHelper.getNewCanaryResource(
                      inputObject,
+                     percentage
+                  )
+               core.debug(`calculated replica count ${canaryReplicaCount}`)
+            }
+
+            core.debug('Creating canary object')
+            const newCanaryObject = canaryDeploymentHelper.getNewCanaryResource(
+               inputObject,
+               canaryReplicaCount
+            )
+            newObjectsList.push(newCanaryObject)
+
+            const stableObject = await canaryDeploymentHelper.fetchResource(
+               kubectl,
+               kind,
+               canaryDeploymentHelper.getStableResourceName(name)
+            )
+            if (stableObject) {
+               core.debug(
+                  `Stable object found for ${kind} ${name}. Creating baseline objects`
+               )
+               const newBaselineObject =
+                  canaryDeploymentHelper.getBaselineDeploymentFromStableDeployment(
+                     stableObject,
                      canaryReplicaCount
                   )
-               newObjectsList.push(newCanaryObject)
+               newObjectsList.push(newBaselineObject)
-
-               const stableObject = await canaryDeploymentHelper.fetchResource(
-                  kubectl,
-                  kind,
-                  canaryDeploymentHelper.getStableResourceName(name)
-               )
-               if (stableObject) {
-                  core.debug(
-                     `Stable object found for ${kind} ${name}. Creating baseline objects`
-                  )
-                  const newBaselineObject =
-                     canaryDeploymentHelper.getBaselineDeploymentFromStableDeployment(
-                        stableObject,
-                        canaryReplicaCount
-                     )
-                  newObjectsList.push(newBaselineObject)
-               }
-            } else if (isDeploymentEntity(kind)) {
-               core.debug(
-                  `creating stable deployment with ${inputObject.spec.replicas} replicas`
-               )
-               const stableDeployment =
-                  canaryDeploymentHelper.getStableResource(inputObject)
-               newObjectsList.push(stableDeployment)
-            } else {
-               // Update non deployment entity or stable deployment as it is
-               newObjectsList.push(inputObject)
             }
+         } else if (isDeploymentEntity(kind)) {
+            core.debug(
+               `creating stable deployment with ${inputObject.spec.replicas} replicas`
+            )
+            const stableDeployment =
+               canaryDeploymentHelper.getStableResource(inputObject)
+            newObjectsList.push(stableDeployment)
+         } else {
+            // Update non deployment entity or stable deployment as it is
+            newObjectsList.push(inputObject)
          }
-      } catch (error) {
-         core.error(`Failed to process file at ${filePath}: ${error.message}`)
-         throw error
       }
    }
    core.debug(
@@ -120,90 +111,81 @@ async function createCanaryService(
    const trafficObjectsList: string[] = []
 
    for (const filePath of filePaths) {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      const parsedYaml = yaml.safeLoadAll(fileContents)
-         const parsedYaml: K8sObject[] = yaml.loadAll(
+      for (const inputObject of parsedYaml) {
-            fileContents
+         const name = inputObject.metadata.name
-         ) as K8sObject[]
+         const kind = inputObject.kind
 
-         for (const inputObject of parsedYaml) {
+         if (isServiceEntity(kind)) {
-            const name = inputObject.metadata.name
+            core.debug(`Creating services for ${kind} ${name}`)
-            const kind = inputObject.kind
+            const newCanaryServiceObject =
+               canaryDeploymentHelper.getNewCanaryResource(inputObject)
+            newObjectsList.push(newCanaryServiceObject)
 
-            if (isServiceEntity(kind)) {
+            const newBaselineServiceObject =
-               core.debug(`Creating services for ${kind} ${name}`)
+               canaryDeploymentHelper.getNewBaselineResource(inputObject)
-               const newCanaryServiceObject =
+            newObjectsList.push(newBaselineServiceObject)
-                  canaryDeploymentHelper.getNewCanaryResource(inputObject)
-               newObjectsList.push(newCanaryServiceObject)
 
-               const newBaselineServiceObject =
+            const stableObject = await canaryDeploymentHelper.fetchResource(
-                  canaryDeploymentHelper.getNewBaselineResource(inputObject)
+               kubectl,
-               newObjectsList.push(newBaselineServiceObject)
+               kind,
+               canaryDeploymentHelper.getStableResourceName(name)
+            )
+            if (!stableObject) {
+               const newStableServiceObject =
+                  canaryDeploymentHelper.getStableResource(inputObject)
+               newObjectsList.push(newStableServiceObject)
 
-               const stableObject = await canaryDeploymentHelper.fetchResource(
+               core.debug('Creating the traffic object for service: ' + name)
+               const trafficObject = await createTrafficSplitManifestFile(
                   kubectl,
-                  kind,
+                  name,
-                  canaryDeploymentHelper.getStableResourceName(name)
+                  0,
+                  0,
+                  1000
                )
-               if (!stableObject) {
-                  const newStableServiceObject =
-                     canaryDeploymentHelper.getStableResource(inputObject)
-                  newObjectsList.push(newStableServiceObject)
 
-                  core.debug('Creating the traffic object for service: ' + name)
+               trafficObjectsList.push(trafficObject)
-                  const trafficObject = await createTrafficSplitManifestFile(
+            } else {
-                     kubectl,
+               let updateTrafficObject = true
-                     name,
+               const trafficObject = await canaryDeploymentHelper.fetchResource(
-                     0,
+                  kubectl,
-                     0,
+                  TRAFFIC_SPLIT_OBJECT,
-                     1000
+                  getTrafficSplitResourceName(name)
+               )
+
+               if (trafficObject) {
+                  const trafficJObject = JSON.parse(
+                     JSON.stringify(trafficObject)
                   )
-
+                  if (trafficJObject?.spec?.backends) {
-                  trafficObjectsList.push(trafficObject)
+                     trafficJObject.spec.backends.forEach((s) => {
-               } else {
+                        if (
-                  let updateTrafficObject = true
+                           s.service ===
-                  const trafficObject =
+                              canaryDeploymentHelper.getCanaryResourceName(
-                     await canaryDeploymentHelper.fetchResource(
+                                 name
-                        kubectl,
+                              ) &&
-                        TRAFFIC_SPLIT_OBJECT,
+                           s.weight === '1000m'
-                        getTrafficSplitResourceName(name)
+                        ) {
-                     )
+                           core.debug('Update traffic objcet not required')
-
+                           updateTrafficObject = false
-                  if (trafficObject) {
+                        }
-                     const trafficJObject = JSON.parse(
+                     })
-                        JSON.stringify(trafficObject)
-                     )
-                     if (trafficJObject?.spec?.backends) {
-                        trafficJObject.spec.backends.forEach((s) => {
-                           if (
-                              s.service ===
-                                 canaryDeploymentHelper.getCanaryResourceName(
-                                    name
-                                 ) &&
-                              s.weight === '1000m'
-                           ) {
-                              core.debug('Update traffic objcet not required')
-                              updateTrafficObject = false
-                           }
-                        })
-                     }
                   }
+               }
 
-                  if (updateTrafficObject) {
+               if (updateTrafficObject) {
-                     core.debug(
+                  core.debug(
-                        'Stable service object present so updating the traffic object for service: ' +
+                     'Stable service object present so updating the traffic object for service: ' +
-                           name
+                        name
-                     )
+                  )
-                     trafficObjectsList.push(
+                  trafficObjectsList.push(
-                        await updateTrafficSplitObject(kubectl, name)
+                     await updateTrafficSplitObject(kubectl, name)
-                     )
+                  )
-                  }
                }
             }
          }
-      } catch (error) {
-         core.error(`Failed to process file at ${filePath}: ${error.message}`)
-         throw error
       }
    }
 
@@ -242,31 +224,23 @@ async function adjustTraffic(
 
    const trafficSplitManifests = []
    for (const filePath of manifestFilePaths) {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      const parsedYaml = yaml.safeLoadAll(fileContents)
-         const parsedYaml: K8sObject[] = yaml.loadAll(
+      for (const inputObject of parsedYaml) {
-            fileContents
+         const name = inputObject.metadata.name
-         ) as K8sObject[]
+         const kind = inputObject.kind
 
-         for (const inputObject of parsedYaml) {
+         if (isServiceEntity(kind)) {
-            const name = inputObject.metadata.name
+            trafficSplitManifests.push(
-            const kind = inputObject.kind
+               await createTrafficSplitManifestFile(
-
+                  kubectl,
-            if (isServiceEntity(kind)) {
+                  name,
-               trafficSplitManifests.push(
+                  stableWeight,
-                  await createTrafficSplitManifestFile(
+                  0,
-                     kubectl,
+                  canaryWeight
-                     name,
-                     stableWeight,
-                     0,
-                     canaryWeight
-                  )
                )
-            }
+            )
          }
-      } catch (error) {
-         core.error(`Failed to process file at ${filePath}: ${error.message}`)
-         throw error
       }
    }
 
@@ -347,8 +321,9 @@ async function getTrafficSplitObject(
 ): Promise<string> {
    // cached version
    if (!trafficSplitAPIVersion) {
-      trafficSplitAPIVersion =
+      trafficSplitAPIVersion = await kubectlUtils.getTrafficSplitAPIVersion(
-         await kubectlUtils.getTrafficSplitAPIVersion(kubectl)
+         kubectl
+      )
    }
 
    return JSON.stringify({

src/strategyHelpers/deploymentHelper.ts

@@ -35,7 +35,6 @@ import {
 } from '../utilities/githubUtils'
 import {getDeploymentConfig} from '../utilities/dockerUtils'
 import {DeployResult} from '../types/deployResult'
-import {ClusterType} from '../actions/deploy'
 
 export async function deployManifests(
    files: string[],
@@ -111,24 +110,19 @@ function appendStableVersionLabelToResource(files: string[]): string[] {
    const newObjectsList = []
 
    files.forEach((filePath: string) => {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
 
-         yaml.loadAll(fileContents, function (inputObject) {
+      yaml.safeLoadAll(fileContents, function (inputObject) {
-            const kind = (inputObject as {kind: string}).kind
+         const {kind} = inputObject
 
-            if (isDeploymentEntity(kind)) {
+         if (isDeploymentEntity(kind)) {
-               const updatedObject =
+            const updatedObject =
-                  canaryDeploymentHelper.markResourceAsStable(inputObject)
+               canaryDeploymentHelper.markResourceAsStable(inputObject)
-               newObjectsList.push(updatedObject)
+            newObjectsList.push(updatedObject)
-            } else {
+         } else {
-               manifestFiles.push(filePath)
+            manifestFiles.push(filePath)
-            }
+         }
-         })
+      })
-      } catch (error) {
-         core.error(`Failed to parse file at ${filePath}: ${error.message}`)
-         throw error
-      }
    })
 
    const updatedManifestFiles = fileHelper.writeObjectsToFile(newObjectsList)
@@ -139,14 +133,9 @@ function appendStableVersionLabelToResource(files: string[]): string[] {
 
 export async function checkManifestStability(
    kubectl: Kubectl,
-   resources: Resource[],
+   resources: Resource[]
-   resourceType: ClusterType
 ): Promise<void> {
-   await KubernetesManifestUtility.checkManifestStability(
+   await KubernetesManifestUtility.checkManifestStability(kubectl, resources)
-      kubectl,
-      resources,
-      resourceType
-   )
 }
 
 export async function annotateAndLabelResources(
@@ -204,19 +193,14 @@ async function annotateResources(
    )
 
    if (core.isDebug()) {
-      try {
+      core.debug(`files getting annotated are ${JSON.stringify(files)}`)
-         core.debug(`files getting annotated are ${JSON.stringify(files)}`)
+      for (const filePath of files) {
-         for (const filePath of files) {
+         core.debug('printing objects getting annotated...')
-            core.debug('printing objects getting annotated...')
+         const fileContents = fs.readFileSync(filePath).toString()
-            const fileContents = fs.readFileSync(filePath).toString()
+         const inputObjects = yaml.safeLoadAll(fileContents)
-            const inputObjects = yaml.loadAll(fileContents)
+         for (const inputObject of inputObjects) {
-            for (const inputObject of inputObjects) {
+            core.debug(`object: ${JSON.stringify(inputObject)}`)
-               core.debug(`object: ${JSON.stringify(inputObject)}`)
-            }
          }
-      } catch (error) {
-         core.error(`Failed to load and parse files: ${error.message}`)
-         throw error
       }
    }
 

src/types/privatekubectl.test.ts

@@ -1,5 +1,5 @@
 import * as fileUtils from '../utilities/fileUtils'
-import fs from 'node:fs'
+import * as fs from 'fs'
 import {
    PrivateKubectl,
    extractFileNames,

src/types/privatekubectl.ts

@@ -1,8 +1,9 @@
 import {Kubectl} from './kubectl'
-import minimist from 'minimist'
+import * as minimist from 'minimist'
 import {ExecOptions, ExecOutput, getExecOutput} from '@actions/exec'
 import * as core from '@actions/core'
-import fs from 'node:fs'
+import * as os from 'os'
+import * as fs from 'fs'
 import * as path from 'path'
 import {getTempDirectory} from '../utilities/fileUtils'
 

src/utilities/fileUtils.test.ts

@@ -1,9 +1,8 @@
 import * as fileUtils from './fileUtils'
 
 import * as yaml from 'js-yaml'
-import fs from 'node:fs'
+import * as fs from 'fs'
 import * as path from 'path'
-import {K8sObject} from '../types/k8sObject'
 
 const sampleYamlUrl =
    'https://raw.githubusercontent.com/kubernetes/website/main/content/en/examples/controllers/nginx-deployment.yaml'
@@ -11,9 +10,7 @@ describe('File utils', () => {
    test('correctly parses a yaml file from a URL', async () => {
       const tempFile = await fileUtils.writeYamlFromURLToFile(sampleYamlUrl, 0)
       const fileContents = fs.readFileSync(tempFile).toString()
-      const inputObjects: K8sObject[] = yaml.loadAll(
+      const inputObjects = yaml.safeLoadAll(fileContents)
-         fileContents
-      ) as K8sObject[]
       expect(inputObjects).toHaveLength(1)
 
       for (const obj of inputObjects) {

src/utilities/fileUtils.ts

@@ -1,4 +1,4 @@
-import fs from 'node:fs'
+import * as fs from 'fs'
 import * as https from 'https'
 import * as path from 'path'
 import * as core from '@actions/core'
@@ -183,7 +183,7 @@ function verifyYaml(filepath: string, url: string): Errorable<K8sObject[]> {
    const fileContents = fs.readFileSync(filepath).toString()
    let inputObjects
    try {
-      inputObjects = yaml.loadAll(fileContents)
+      inputObjects = yaml.safeLoadAll(fileContents)
    } catch (e) {
       return {
          succeeded: false,

src/utilities/manifestStabilityUtils.test.ts

@@ -1,52 +0,0 @@
-import * as manifestStabilityUtils from './manifestStabilityUtils'
-import {Kubectl} from '../types/kubectl'
-import {ResourceTypeFleet, ResourceTypeManagedCluster} from '../actions/deploy'
-import {ExecOutput} from '@actions/exec'
-import {exitCode, stdout} from 'process'
-
-describe('manifestStabilityUtils', () => {
-   const kc = new Kubectl('')
-   const resources = [
-      {
-         type: 'deployment',
-         name: 'test',
-         namespace: 'default'
-      }
-   ]
-
-   it('should return immediately if the resource type is fleet', async () => {
-      const spy = jest.spyOn(manifestStabilityUtils, 'checkManifestStability')
-      const checkRolloutStatusSpy = jest.spyOn(kc, 'checkRolloutStatus')
-      await manifestStabilityUtils.checkManifestStability(
-         kc,
-         resources,
-         ResourceTypeFleet
-      )
-
-      expect(checkRolloutStatusSpy).not.toHaveBeenCalled()
-      expect(spy).toHaveReturned()
-   })
-
-   it('should run fully if the resource type is managedCluster', async () => {
-      const spy = jest.spyOn(manifestStabilityUtils, 'checkManifestStability')
-      const checkRolloutStatusSpy = jest
-         .spyOn(kc, 'checkRolloutStatus')
-         .mockImplementation(() => {
-            return new Promise<ExecOutput>((resolve, reject) => {
-               resolve({
-                  exitCode: 0,
-                  stderr: '',
-                  stdout: ''
-               })
-            })
-         })
-      await manifestStabilityUtils.checkManifestStability(
-         kc,
-         resources,
-         ResourceTypeManagedCluster
-      )
-
-      expect(checkRolloutStatusSpy).toHaveBeenCalled()
-      expect(spy).toHaveReturned()
-   })
-})

src/utilities/manifestStabilityUtils.ts

@@ -3,21 +3,14 @@ import * as KubernetesConstants from '../types/kubernetesTypes'
 import {Kubectl, Resource} from '../types/kubectl'
 import {checkForErrors} from './kubectlUtils'
 import {sleep} from './timeUtils'
-import {ClusterType, ResourceTypeFleet} from '../actions/deploy'
 
 const IS_SILENT = false
 const POD = 'pod'
 
 export async function checkManifestStability(
    kubectl: Kubectl,
-   resources: Resource[],
+   resources: Resource[]
-   clusterTyper: ClusterType
 ): Promise<void> {
-   // Skip if resource type is microsoft.containerservice/fleets
-   if (clusterTyper === ResourceTypeFleet) {
-      core.info(`Skipping checkManifestStability for ${ResourceTypeFleet}`)
-      return
-   }
    let rolloutStatusHasErrors = false
    for (let i = 0; i < resources.length; i++) {
       const resource = resources[i]

src/utilities/manifestUpdateUtils.ts

@@ -20,7 +20,6 @@ import {
    setImagePullSecrets
 } from './manifestPullSecretUtils'
 import {Resource} from '../types/kubectl'
-import {K8sObject} from '../types/k8sObject'
 
 export function updateManifestFiles(manifestFilePaths: string[]) {
    if (manifestFilePaths?.length === 0) {
@@ -275,29 +274,21 @@ export function getResources(
 
    const resources: Resource[] = []
    filePaths.forEach((filePath: string) => {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      yaml.safeLoadAll(fileContents, (inputObject) => {
-         const inputObjects: K8sObject[] = yaml.loadAll(
+         const inputObjectKind = inputObject?.kind || ''
-            fileContents
+         if (
-         ) as K8sObject[]
+            filterResourceTypes.filter(
-         inputObjects.forEach((inputObject) => {
+               (type) => inputObjectKind.toLowerCase() === type.toLowerCase()
-            const inputObjectKind = inputObject?.kind || ''
+            ).length > 0
-            if (
+         ) {
-               filterResourceTypes.filter(
+            resources.push({
-                  (type) => inputObjectKind.toLowerCase() === type.toLowerCase()
+               type: inputObject.kind,
-               ).length > 0
+               name: inputObject.metadata.name,
-            ) {
+               namespace: inputObject?.metadata?.namespace
-               resources.push({
+            })
-                  type: inputObject.kind,
+         }
-                  name: inputObject.metadata.name,
+      })
-                  namespace: inputObject?.metadata?.namespace
-               })
-            }
-         })
-      } catch (error) {
-         core.error(`Failed to process file at ${filePath}: ${error.message}`)
-         throw error
-      }
    })
 
    return resources
@@ -311,21 +302,16 @@ function updateImagePullSecretsInManifestFiles(
 
    const newObjectsList = []
    filePaths.forEach((filePath: string) => {
-      try {
+      const fileContents = fs.readFileSync(filePath).toString()
-         const fileContents = fs.readFileSync(filePath).toString()
+      yaml.safeLoadAll(fileContents, (inputObject: any) => {
-         yaml.loadAll(fileContents, (inputObject: any) => {
+         if (inputObject?.kind) {
-            if (inputObject?.kind) {
+            const {kind} = inputObject
-               const {kind} = inputObject
+            if (isWorkloadEntity(kind)) {
-               if (isWorkloadEntity(kind)) {
+               updateImagePullSecrets(inputObject, imagePullSecrets)
-                  updateImagePullSecrets(inputObject, imagePullSecrets)
-               }
-               newObjectsList.push(inputObject)
             }
-         })
+            newObjectsList.push(inputObject)
-      } catch (error) {
+         }
-         core.error(`Failed to process file at ${filePath}: ${error.message}`)
+      })
-         throw error
-      }
    })
 
    return fileHelper.writeObjectsToFile(newObjectsList)

tsconfig.json

@@ -1,8 +1,7 @@
 {
    "compilerOptions": {
       "target": "ES6",
-      "module": "commonjs",
+      "module": "commonjs"
-      "esModuleInterop": true
    },
    "exclude": ["node_modules", "test", "src/**/*.test.ts"]
 }