Overview
The official Pullminder GitHub Action (pullminder/action) wraps the Pullminder CLI so you can validate Pullminder rule registries directly from a GitHub workflow without writing any glue code.
Current scope: the action is currently focused on registry validation — running
pullminder registry validate(orlint) against a registry checkout, then posting the result as a PR comment. If you want PR risk scoring or general CI annotations on a consumer repository today, run the Pullminder CLI directly. Expanded modes (pr-review,ci) are tracked on the action repository.
What it does
Section titled “What it does”When invoked from a workflow, the action:
- Detects the runner OS and architecture (
linux/amd64,linux/arm64,darwin/amd64,darwin/arm64). - Resolves the requested CLI version (
latestor a pinnedvX.Y.Z). - Downloads the matching release artifact from
pullminder/cliand verifies its SHA256 against the publishedchecksums.txt. A mismatch fails the run before the binary is made executable. - Caches the binary across runs keyed by version + platform.
- Runs
pullminder registry validate(default) orpullminder registry lintagainst the configuredworking-directory. - Posts the CLI output as a PR comment when
comment: "true"(the default) and the trigger ispull_request. - Exits with the CLI’s status code so a failed validation fails the job.
When to use it
Section titled “When to use it”| Use case | Pick this |
|---|---|
| Maintaining a Pullminder rule registry | pullminder/action@v1 with command: validate --strict |
| Linting a registry before publishing | pullminder/action@v1 with command: lint |
| Running risk scoring on a consumer repo’s PRs | pullminder ci directly |
| Producing SARIF / JUnit / annotations from CLI output | pullminder ci directly |
If you maintain a registry, the action is the shortest path from clone to comment. For everything else, the CLI is more flexible today.
Versioning
Section titled “Versioning”Pin the action to a major version in production:
- uses: pullminder/action@v1Or pin to an exact CLI version through the version input — useful if you want bit-for-bit reproducibility across runs. See Advanced.
Source
Section titled “Source”- Action:
pullminder/action - CLI:
pullminder/cli - Issues, feature requests, discussions: please file them against the action repository.