Questions about PR workflows and actions/checkout@v2 #25961

harluss · 2020-07-11T22:45:18Z

harluss
Jul 11, 2020

Hi,

I have 2 questions about GitHub Actions:

Could someone please explain to me how actions/checkout@v2 works for pull requests as this seem unclear to me. If my workflow yml looks like this:

on:
  pull_request:
    branches: [master]
...
steps:
  - name: Checkout repository
    uses: actions/checkout@v2
    with:
      ref: ${{ github.event.pull_request.head.sha }}

Any pull request to master branch will checkout the branch that triggered the workflow and run the rest of the workflow (tests) on that branch.
But, what is the default behaviour for PR if I leave it like this (skipping the with: ref: part):

steps:
      - name: Checkout repository
        uses: actions/checkout@v2

Will it checkout and run tests on the branch that triggered the PR as well? If so, is there any reason/adventage to being more specific and adding with: ref:?

Is there any particular way of limiting branches that can create a PR to protected branch? Let’s say to allow Dev -> Master, but not random branch -> Master?

Answered by Yanjingzhu

Jul 13, 2020

The default ref of actions/checkout@v2 is to the reference or SHA for that event. The GITHUB_REF of pull request event is the PR merge branch. So if you doesn’t specify with ref part, it checks out the merged source code.
github.event.pull_request.head.sha points to the pushed commit of the pull request, it is on the PR source branch.
As far as I know, there is no way to prevent a specific branch merge to master.

View full answer

Yanjingzhu · 2020-07-13T03:39:38Z

Yanjingzhu
Jul 13, 2020

The default ref of actions/checkout@v2 is to the reference or SHA for that event. The GITHUB_REF of pull request event is the PR merge branch. So if you doesn’t specify with ref part, it checks out the merged source code.
github.event.pull_request.head.sha points to the pushed commit of the pull request, it is on the PR source branch.
As far as I know, there is no way to prevent a specific branch merge to master.

0 replies

harluss · 2020-07-13T07:06:19Z

harluss
Jul 13, 2020
Author

yanjingzhu:

The GITHUB_REF of pull request event is the PR merge branch. So if you doesn’t specify with ref part, it checks out the merged source code.

Oh, so it creates what would be the final outcome of the PR after approval and runs the tests (or whatever else is specified in the workflow) against that?

Fantastic, thank you for the clarification.

0 replies

Yanjingzhu · 2020-07-13T07:30:53Z

Yanjingzhu
Jul 13, 2020

Yeah, using the default ref matches the normal scenario to build PR merged code.
I forget to attach this screenshot in my above comment. Add it here:

PR ref769×705 22 KB

0 replies

kanjurer · 2023-08-28T04:56:42Z

kanjurer
Aug 28, 2023

You can prevent other branches to merge into Master by setting

ref: ${{ github.event.pull_request.head.ref }}

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Community

Questions about PR workflows and actions/checkout@v2 #25961

{{title}}

Replies: 4 comments

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

GitHub Community

Questions about PR workflows and actions/checkout@v2 #25961

harluss Jul 11, 2020

Replies: 4 comments

Yanjingzhu Jul 13, 2020

harluss Jul 13, 2020 Author

Yanjingzhu Jul 13, 2020

kanjurer Aug 28, 2023

harluss
Jul 11, 2020

Yanjingzhu
Jul 13, 2020

harluss
Jul 13, 2020
Author

Yanjingzhu
Jul 13, 2020

kanjurer
Aug 28, 2023