docs: split documentation into dedicated README files

vaind · claude · vaind · commit b74ba7f45792 · 2025-09-22T13:23:28.000+02:00
Create separate README files for updater and danger composite actions with complete documentation, examples, and migration guides. Update root README to link to the new documentation structure. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/README.md b/README.md
@@ -1,124 +1,23 @@
-# Workflows
+# GitHub Workflows
 
-This repository contains reusable workflows and scripts to be used with GitHub Actions.
+This repository contains composite actions and scripts to be used with GitHub Actions.
 
-## Updater
+## Composite Actions
 
-Dependency updater - see [updater.yml](.github/workflows/updater.yml) - updates dependencies to the latest published git tag.
+### Updater
 
-### Example workflow definition
+Dependency updater - updates dependencies to the latest published git tag and creates/updates PRs.
 
-```yaml
-name: Update Dependencies
-on:
-  # Run every day.
-  schedule:
-    - cron: '0 3 * * *'
-  # And on on every PR merge so we get the updated dependencies ASAP, and to make sure the changelog doesn't conflict.
-  push:
-    branches:
-      - main
-jobs:
-  # Update a git submodule
-  cocoa:
-    uses: getsentry/github-workflows/.github/workflows/updater.yml@v2
-    with:
-      path: modules/sentry-cocoa
-      name: Cocoa SDK
-      pattern: '^1\.'  # Limit to major version '1'
-    secrets:
-      api-token: ${{ secrets.CI_DEPLOY_KEY }}
+**[📖 View full documentation →](updater/README.md)**
 
-  # Update a properties file
-  cli:
-    uses: getsentry/github-workflows/.github/workflows/updater.yml@v2
-    with:
-      path: sentry-cli.properties
-      name: CLI
-    secrets:
-      api-token: ${{ secrets.CI_DEPLOY_KEY }}
+### Danger
 
-  # Update using a custom shell script, see updater/scripts/update-dependency.ps1 for the required arguments
-  agp:
-    uses: getsentry/github-workflows/.github/workflows/updater.yml@v2
-    with:
-      path: script.ps1
-      name: Gradle Plugin
-    secrets:
-      api-token: ${{ secrets.CI_DEPLOY_KEY }}
+Runs DangerJS on Pull Requests with a pre-configured set of rules.
 
-  # Update a CMake FetchContent dependency with auto-detection (single dependency only)
-  sentry-native:
-    uses: getsentry/github-workflows/.github/workflows/updater.yml@v2
-    with:
-      path: vendor/sentry-native.cmake
-      name: Sentry Native SDK
-    secrets:
-      api-token: ${{ secrets.CI_DEPLOY_KEY }}
+**[📖 View full documentation →](danger/README.md)**
 
-  # Update a CMake FetchContent dependency with explicit dependency name
-  deps:
-    uses: getsentry/github-workflows/.github/workflows/updater.yml@v2
-    with:
-      path: vendor/dependencies.cmake#googletest
-      name: GoogleTest
-    secrets:
-      api-token: ${{ secrets.CI_DEPLOY_KEY }}
-```
+## Legacy Reusable Workflows (v2)
 
-### Inputs
+> ⚠️ **Deprecated**: Reusable workflows have been converted to composite actions in v3. Please migrate to the composite actions above.
 
-* `path`: Dependency path in the source repository. Supported formats:
-  * Submodule path
-  * Properties file (`.properties`)
-  * Shell script (`.ps1`, `.sh`)
-  * CMake file with FetchContent:
-    * `path/to/file.cmake#DepName` - specify dependency name
-    * `path/to/file.cmake` - auto-detection (single dependency only)
-  * type: string
-  * required: true
-* `name`: Name used in the PR title and the changelog entry.
-  * type: string
-  * required: true
-* `pattern`: RegEx pattern that will be matched against available versions when picking the latest one.
-  * type: string
-  * required: false
-  * default: ''
-* `changelog-entry`: Whether to add a changelog entry for the update.
-  * type: boolean
-  * required: false
-  * default: true
-* `changelog-section`: Section header to attach the changelog entry to.
-  * type: string
-  * required: false
-  * default: Dependencies
-* `runs-on`: GitHub Actions virtual environment name to run the udpater job on.
-  * type: string
-  * required: false
-  * default: ubuntu-latest
-* `pr-strategy`: How to handle PRs.
-  Can be either of the following:
-  * `create` (default) - create a new PR for new dependency versions as they are released - maintainers may merge or close older PRs manually
-  * `update` - keep a single PR that gets updated with new dependency versions until merged - only the latest version update is available at any time
-
-### Secrets
-
-* `api-token`: GH authentication token to create PRs with & push.
-  If you provide the usual `${{github.token}}`, no followup CI will run on the created PR.
-  If you want CI to run on the PRs created by the Updater, you need to provide custom user-specific auth token.
-
-## Danger
-
-Runs DangerJS on Pull Reqeusts in your repository. This uses custom set of rules defined in [this dangerfile](danger/dangerfile.js).
-
-```yaml
-name: Danger
-
-on:
-  pull_request:
-    types: [opened, synchronize, reopened, edited, ready_for_review, labeled, unlabeled]
-
-jobs:
-  danger:
-    uses: getsentry/github-workflows/.github/workflows/danger.yml@v2
-```
+For v2 migration guide and breaking changes, see [CHANGELOG.md](CHANGELOG.md#3.0.0).
diff --git a/danger/README.md b/danger/README.md
@@ -0,0 +1,50 @@
+# Danger Composite Action
+
+Runs DangerJS on Pull Requests in your repository. This uses custom set of rules defined in [dangerfile.js](dangerfile.js).
+
+## Usage
+
+```yaml
+name: Danger
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened, edited, ready_for_review, labeled, unlabeled]
+
+jobs:
+  danger:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/danger@v3
+```
+
+## Inputs
+
+* `api-token`: Token for the repo. Can be passed in using `${{ secrets.GITHUB_TOKEN }}`.
+  * type: string
+  * required: false
+  * default: `${{ github.token }}`
+
+## Outputs
+
+* `outcome`: Whether the Danger run finished successfully. Possible values are `success`, `failure`, `cancelled`, or `skipped`.
+
+## Migration from v2 Reusable Workflow
+
+If you're migrating from the v2 reusable workflow, see the [changelog migration guide](../CHANGELOG.md#unreleased) for detailed examples.
+
+Key changes:
+- Add `runs-on` to specify the runner
+- No need for explicit `actions/checkout` step (handled internally)
+- Optional `api-token` input (defaults to `github.token`)
+
+## Rules
+
+The Danger action runs the following checks:
+
+- **Changelog validation**: Ensures PRs include appropriate changelog entries
+- **Action pinning**: Verifies GitHub Actions are pinned to specific commits for security
+- **Conventional commits**: Validates commit message format and PR title conventions
+- **Cross-repo links**: Checks for proper formatting of links in changelog entries
+
+For detailed rule implementations, see [dangerfile.js](dangerfile.js).
diff --git a/updater/README.md b/updater/README.md
@@ -0,0 +1,122 @@
+# Updater Composite Action
+
+Dependency updater - updates dependencies to the latest published git tag and creates/updates PRs.
+
+## Usage
+
+```yaml
+name: Update Dependencies
+on:
+  # Run every day.
+  schedule:
+    - cron: '0 3 * * *'
+  # And on every PR merge so we get the updated dependencies ASAP, and to make sure the changelog doesn't conflict.
+  push:
+    branches:
+      - main
+
+jobs:
+  # Update a git submodule
+  cocoa:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/updater@v3
+        with:
+          path: modules/sentry-cocoa
+          name: Cocoa SDK
+          pattern: '^1\.'  # Limit to major version '1'
+          api-token: ${{ secrets.CI_DEPLOY_KEY }}
+
+  # Update a properties file
+  cli:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/updater@v3
+        with:
+          path: sentry-cli.properties
+          name: CLI
+          api-token: ${{ secrets.CI_DEPLOY_KEY }}
+
+  # Update using a custom shell script, see updater/scripts/update-dependency.ps1 for the required arguments
+  agp:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/updater@v3
+        with:
+          path: script.ps1
+          name: Gradle Plugin
+          api-token: ${{ secrets.CI_DEPLOY_KEY }}
+
+  # Update a CMake FetchContent dependency with auto-detection (single dependency only)
+  sentry-native:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/updater@v3
+        with:
+          path: vendor/sentry-native.cmake
+          name: Sentry Native SDK
+          api-token: ${{ secrets.CI_DEPLOY_KEY }}
+
+  # Update a CMake FetchContent dependency with explicit dependency name
+  deps:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: getsentry/github-workflows/updater@v3
+        with:
+          path: vendor/dependencies.cmake#googletest
+          name: GoogleTest
+          api-token: ${{ secrets.CI_DEPLOY_KEY }}
+```
+
+## Inputs
+
+* `path`: Dependency path in the source repository. Supported formats:
+  * Submodule path
+  * Properties file (`.properties`)
+  * Shell script (`.ps1`, `.sh`)
+  * CMake file with FetchContent:
+    * `path/to/file.cmake#DepName` - specify dependency name
+    * `path/to/file.cmake` - auto-detection (single dependency only)
+  * type: string
+  * required: true
+* `name`: Name used in the PR title and the changelog entry.
+  * type: string
+  * required: true
+* `pattern`: RegEx pattern that will be matched against available versions when picking the latest one.
+  * type: string
+  * required: false
+  * default: ''
+* `changelog-entry`: Whether to add a changelog entry for the update.
+  * type: boolean
+  * required: false
+  * default: true
+* `changelog-section`: Section header to attach the changelog entry to.
+  * type: string
+  * required: false
+  * default: Dependencies
+* `pr-strategy`: How to handle PRs.
+  Can be either of the following:
+  * `create` (default) - create a new PR for new dependency versions as they are released - maintainers may merge or close older PRs manually
+  * `update` - keep a single PR that gets updated with new dependency versions until merged - only the latest version update is available at any time
+* `api-token`: Token for the repo. Can be passed in using `${{ secrets.GITHUB_TOKEN }}`.
+  If you provide the usual `${{ github.token }}`, no followup CI will run on the created PR.
+  If you want CI to run on the PRs created by the Updater, you need to provide custom user-specific auth token.
+  * type: string
+  * required: true
+
+## Outputs
+
+* `prUrl`: The created/updated PR's URL.
+* `baseBranch`: The base branch name.
+* `prBranch`: The created/updated PR branch name.
+* `originalTag`: The original tag from which the dependency was updated from.
+* `latestTag`: The latest tag to which the dependency was updated to.
+
+## Migration from v2 Reusable Workflow
+
+If you're migrating from the v2 reusable workflow, see the [changelog migration guide](../CHANGELOG.md#unreleased) for detailed examples.
+
+Key changes:
+- Add `runs-on` to specify the runner
+- Move `secrets.api-token` to `with.api-token`
+- No need for explicit `actions/checkout` step (handled internally)
