Update CODEOWNERS

.eslintignore

@@ -1,7 +0,0 @@
-# Ignore list
-/*
-
-# Do not ignore these folders:
-!__tests__/
-!__mocks__/
-!src/

.eslintrc.js

@@ -1,51 +0,0 @@
-// This is a reusable configuration file copied from https://github.com/actions/reusable-workflows/tree/main/reusable-configurations. Please don't make changes to this file as it's the subject of an automatic update.
-module.exports = {
-  extends: [
-    'eslint:recommended',
-    'plugin:@typescript-eslint/recommended',
-    'plugin:eslint-plugin-jest/recommended',
-    'eslint-config-prettier'
-  ],
-  parser: '@typescript-eslint/parser',
-  plugins: ['@typescript-eslint', 'eslint-plugin-node', 'eslint-plugin-jest'],
-  rules: {
-    '@typescript-eslint/no-require-imports': 'error',
-    '@typescript-eslint/no-non-null-assertion': 'off',
-    '@typescript-eslint/no-explicit-any': 'off',
-    '@typescript-eslint/no-empty-function': 'off',
-    '@typescript-eslint/ban-ts-comment': [
-      'error',
-      {
-        'ts-ignore': 'allow-with-description'
-      }
-    ],
-    'no-console': 'error',
-    'yoda': 'error',
-    'prefer-const': [
-      'error',
-      {
-        destructuring: 'all'
-      }
-    ],
-    'no-control-regex': 'off',
-    'no-constant-condition': ['error', {checkLoops: false}],
-    'node/no-extraneous-import': 'error'
-  },
-  overrides: [
-    {
-      files: ['**/*{test,spec}.ts'],
-      rules: {
-        '@typescript-eslint/no-unused-vars': 'off',
-        'jest/no-standalone-expect': 'off',
-        'jest/no-conditional-expect': 'off',
-        'no-console': 'off',
-
-      }
-    }
-  ],
-  env: {
-    node: true,
-    es6: true,
-    'jest/globals': true
-  }
-};

.gitattributes

@@ -1,4 +1,4 @@
-* text=auto eol=lf
+* text=auto
 .licenses/** -diff linguist-generated=true
 
 # don't diff machine generated files

.github/workflows/codeql-analysis.yml

@@ -2,9 +2,9 @@ name: CodeQL analysis
 
 on:
   push:
-    branches: [main]
+    branches: [ main ]
   pull_request:
-    branches: [main]
+    branches: [ main ]
   schedule:
     - cron: '0 3 * * 0'
 

.github/workflows/release-new-action-version.yml

@@ -22,7 +22,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Update the ${{ env.TAG_NAME }} tag
-        uses: actions/publish-action@v0.2.2
+      uses: actions/publish-action@v0.2.1
       with:
         source-tag: ${{ env.TAG_NAME }}
         slack-webhook: ${{ secrets.SLACK_WEBHOOK }}

.github/workflows/update-config-files.yml

@@ -1,11 +0,0 @@
-name: Update configuration files
-
-on:
-  schedule:
-    - cron: '0 3 * * 0'
-  workflow_dispatch:
-
-jobs:
-  call-update-configuration-files:
-    name: Update configuration files
-    uses: actions/reusable-workflows/.github/workflows/update-config-files.yml@main

.licenses/npm/@actions/github.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@actions/github"
-version: 5.1.1
+version: 5.0.0
 type: npm
 summary: Actions github lib
 homepage: https://github.com/actions/toolkit/tree/main/packages/github

.licenses/npm/@actions/http-client-1.0.11.dep.yml

@@ -0,0 +1,32 @@
+---
+name: "@actions/http-client"
+version: 1.0.11
+type: npm
+summary: Actions Http Client
+homepage: https://github.com/actions/http-client#readme
+license: mit
+licenses:
+- sources: LICENSE
+  text: |
+    Actions Http Client for Node.js
+
+    Copyright (c) GitHub, Inc.
+
+    All rights reserved.
+
+    MIT License
+
+    Permission is hereby granted, free of charge, to any person obtaining a copy of this software and
+    associated documentation files (the "Software"), to deal in the Software without restriction,
+    including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense,
+    and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so,
+    subject to the following conditions:
+
+    The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
+
+    THE SOFTWARE IS PROVIDED *AS IS*, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT
+    LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+    NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
+    WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+    SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+notices: []

.licenses/npm/@octokit/auth-token.dep.yml

@@ -1,9 +1,9 @@
 ---
 name: "@octokit/auth-token"
-version: 2.5.0
+version: 2.4.5
 type: npm
 summary: GitHub API token authentication for browsers and Node.js
-homepage: 
+homepage: https://github.com/octokit/auth-token.js#readme
 license: mit
 licenses:
 - sources: LICENSE

.licenses/npm/@octokit/core.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@octokit/core"
-version: 3.6.0
+version: 3.5.1
 type: npm
 summary: Extendable client for GitHub's REST & GraphQL APIs
 homepage: 

.licenses/npm/@octokit/graphql.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@octokit/graphql"
-version: 4.8.0
+version: 4.6.4
 type: npm
 summary: GitHub GraphQL API client for browsers and Node
 homepage: 

.licenses/npm/@octokit/openapi-types-12.11.0.dep.yml

@@ -1,20 +0,0 @@
----
-name: "@octokit/openapi-types"
-version: 12.11.0
-type: npm
-summary: Generated TypeScript definitions based on GitHub's OpenAPI spec for api.github.com
-homepage:
-license: mit
-licenses:
-- sources: LICENSE
-  text: |-
-    Copyright 2020 Gregor Martynus
-
-    Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
-
-    The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
-
-    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
-- sources: README.md
-  text: "[MIT](LICENSE)"
-notices: []

.licenses/npm/@octokit/openapi-types.dep.yml

@@ -1,8 +1,8 @@
 ---
 name: "@octokit/openapi-types"
-version: 18.0.0
+version: 7.3.2
 type: npm
-summary: Generated TypeScript definitions based on GitHub's OpenAPI spec for api.github.com
+summary: Generated TypeScript definitions based on GitHub's OpenAPI spec
 homepage: 
 license: mit
 licenses:

.licenses/npm/@octokit/plugin-paginate-rest.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@octokit/plugin-paginate-rest"
-version: 2.21.3
+version: 2.13.5
 type: npm
 summary: Octokit plugin to paginate REST API endpoint responses
 homepage: 

.licenses/npm/@octokit/plugin-rest-endpoint-methods.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@octokit/plugin-rest-endpoint-methods"
-version: 5.16.2
+version: 5.3.1
 type: npm
 summary: Octokit plugin adding one method for all of api.github.com REST API endpoints
 homepage: 

.licenses/npm/@octokit/plugin-retry.dep.yml

@@ -1,34 +0,0 @@
----
-name: "@octokit/plugin-retry"
-version: 5.0.4
-type: npm
-summary: Automatic retry plugin for octokit
-homepage: 
-license: mit
-licenses:
-- sources: LICENSE
-  text: |
-    MIT License
-
-    Copyright (c) 2018 Octokit contributors
-
-    Permission is hereby granted, free of charge, to any person obtaining a copy
-    of this software and associated documentation files (the "Software"), to deal
-    in the Software without restriction, including without limitation the rights
-    to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-    copies of the Software, and to permit persons to whom the Software is
-    furnished to do so, subject to the following conditions:
-
-    The above copyright notice and this permission notice shall be included in all
-    copies or substantial portions of the Software.
-
-    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-    IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-    FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-    AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-    LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-    OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-    SOFTWARE.
-- sources: README.md
-  text: "[MIT](LICENSE)"
-notices: []

.licenses/npm/@octokit/request-error-4.0.2.dep.yml

@@ -1,34 +0,0 @@
----
-name: "@octokit/request-error"
-version: 4.0.2
-type: npm
-summary: Error class for Octokit request errors
-homepage: 
-license: mit
-licenses:
-- sources: LICENSE
-  text: |
-    The MIT License
-
-    Copyright (c) 2019 Octokit contributors
-
-    Permission is hereby granted, free of charge, to any person obtaining a copy
-    of this software and associated documentation files (the "Software"), to deal
-    in the Software without restriction, including without limitation the rights
-    to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-    copies of the Software, and to permit persons to whom the Software is
-    furnished to do so, subject to the following conditions:
-
-    The above copyright notice and this permission notice shall be included in
-    all copies or substantial portions of the Software.
-
-    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-    IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-    FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-    AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-    LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-    OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
-    THE SOFTWARE.
-- sources: README.md
-  text: "[MIT](LICENSE)"
-notices: []

.licenses/npm/@octokit/request.dep.yml

@@ -1,9 +1,9 @@
 ---
 name: "@octokit/request"
-version: 5.6.3
+version: 5.6.0
 type: npm
-summary: Send parameterized requests to GitHub's APIs with sensible defaults in browsers
-  and Node
+summary: "Send parameterized requests to GitHubâ\x80\x99s APIs with sensible defaults
+  in browsers and Node"
 homepage: 
 license: mit
 licenses:

.licenses/npm/@octokit/types-6.41.0.dep.yml

@@ -1,20 +0,0 @@
----
-name: "@octokit/types"
-version: 6.41.0
-type: npm
-summary: Shared TypeScript definitions for Octokit projects
-homepage:
-license: mit
-licenses:
-- sources: LICENSE
-  text: |
-    MIT License Copyright (c) 2019 Octokit contributors
-
-    Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
-
-    The above copyright notice and this permission notice (including the next paragraph) shall be included in all copies or substantial portions of the Software.
-
-    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
-- sources: README.md
-  text: "[MIT](LICENSE)"
-notices: []

.licenses/npm/@octokit/types.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: "@octokit/types"
-version: 10.0.0
+version: 6.16.4
 type: npm
 summary: Shared TypeScript definitions for Octokit projects
 homepage: 

.licenses/npm/balanced-match.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: balanced-match
-version: 1.0.2
+version: 1.0.0
 type: npm
 summary: Match balanced character pairs, like "{" and "}"
 homepage: https://github.com/juliangruber/balanced-match

.licenses/npm/before-after-hook.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: before-after-hook
-version: 2.2.3
+version: 2.2.2
 type: npm
 summary: asynchronous before/error/after hooks for internal functionality
 homepage: 

.licenses/npm/brace-expansion.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: brace-expansion
-version: 2.0.1
+version: 1.1.11
 type: npm
 summary: Brace expansion as known from sh/bash
 homepage: https://github.com/juliangruber/brace-expansion

.licenses/npm/concat-map.dep.yml

@@ -1,16 +1,14 @@
 ---
-name: bottleneck
-version: 2.19.5
+name: concat-map
+version: 0.0.1
 type: npm
-summary: Distributed task scheduler and rate limiter
+summary: concatenative mapdashery
 homepage: 
-license: mit
+license: other
 licenses:
 - sources: LICENSE
   text: |
-    The MIT License (MIT)
-
-    Copyright (c) 2014 Simon Grondin
+    This software is released under the MIT license:
 
     Permission is hereby granted, free of charge, to any person obtaining a copy of
     this software and associated documentation files (the "Software"), to deal in
@@ -28,4 +26,6 @@ licenses:
     COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
     IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
     CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+- sources: README.markdown
+  text: MIT
 notices: []

.licenses/npm/minimatch.dep.yml

@@ -1,6 +1,6 @@
 ---
 name: minimatch
-version: 7.4.3
+version: 3.1.2
 type: npm
 summary: a glob matcher in javascript
 homepage: 
@@ -10,7 +10,7 @@ licenses:
   text: |
     The ISC License
 
-    Copyright (c) 2011-2022 Isaac Z. Schlueter and Contributors
+    Copyright (c) Isaac Z. Schlueter and Contributors
 
     Permission to use, copy, modify, and/or distribute this software for any
     purpose with or without fee is hereby granted, provided that the above

.prettierignore

@@ -1,8 +0,0 @@
-# Ignore list
-/*
-
-# Do not ignore these folders:
-!__tests__/
-!__mocks__/
-!.github/
-!src/

.prettierrc.js

@@ -1,11 +0,0 @@
-// This is a reusable configuration file copied from https://github.com/actions/reusable-workflows/tree/main/reusable-configurations. Please don't make changes to this file as it's the subject of an automatic update.
-module.exports = {
-  printWidth: 80,
-  tabWidth: 2,
-  useTabs: false,
-  semi: true,
-  singleQuote: true,
-  trailingComma: 'none',
-  bracketSpacing: false,
-  arrowParens: 'avoid'
-};

.prettierrc.json

@@ -0,0 +1,12 @@
+{
+    "printWidth": 80,
+    "tabWidth": 2,
+    "useTabs": false,
+    "semi": true,
+    "singleQuote": true,
+    "trailingComma": "none",
+    "bracketSpacing": false,
+    "arrowParens": "avoid",
+    "parser": "typescript",
+    "endOfLine": "auto"
+  }

CODEOWNERS

@@ -1 +1,3 @@
-* @actions/setup-actions-team
+* @actions/actions-runtime
+* @actions/runner-images-team
+

README.md

@@ -1,6 +1,13 @@
 # Pull Request Labeler
 
-[![Basic validation](https://github.com/actions/labeler/actions/workflows/basic-validation.yml/badge.svg?branch=main)](https://github.com/actions/labeler/actions/workflows/basic-validation.yml)
+<p align="left">
+  <a href="https://github.com/actions/labeler/actions?query=workflow%3A%22Build+%26+Test%22++">
+    <img alt="build and test status" src="https://github.com/actions/labeler/actions/workflows/build_test.yml/badge.svg">
+  </a>
+  <a href="https://david-dm.org/actions/labeler">
+    <img alt="dependencies" src="https://status.david-dm.org/gh/actions/labeler.svg">
+  </a>
+</p>
 
 Automatically label new pull requests based on the paths of files being changed.
 
@@ -10,7 +17,7 @@ Automatically label new pull requests based on the paths of files being changed.
 
 Create a `.github/labeler.yml` file with a list of labels and [minimatch](https://github.com/isaacs/minimatch) globs to match to apply the label.
 
-The key is the name of the label in your repository that you want to add (e.g. `merge conflict`, `needs-updating`) and the value is the path (glob) of the changed files (e.g. `src/**`, `tests/*.spec.js`) or a match object.
+The key is the name of the label in your repository that you want to add (eg: "merge conflict", "needs-updating") and the value is the path (glob) of the changed files (eg: `src/**/*`, `tests/*.spec.js`) or a match object.
 
 #### Match Object
 
@@ -40,17 +47,12 @@ label1:
 
 From a boolean logic perspective, top-level match objects are `OR`-ed together and individual match rules within an object are `AND`-ed. Combined with `!` negation, you can write complex matching rules.
 
-> ⚠️ This action uses [minimatch](https://www.npmjs.com/package/minimatch) to apply glob patterns.
-> For historical reasons, paths starting with dot (e.g. `.github`) are not matched by default.
-> You need to set `dot: true` to change this behavior.
-> See [Inputs](#inputs) table below for details.
-
 #### Basic Examples
 
 ```yml
 # Add 'label1' to any changes within 'example' folder or any subfolders
 label1:
-- example/**
+- example/**/*
 
 # Add 'label2' to any file changes within 'example2' folder
 label2: example2/*
@@ -70,7 +72,8 @@ repo:
 
 # Add '@domain/core' label to any change within the 'core' package
 '@domain/core':
-- package/core/**
+- package/core/*
+- package/core/**/*
 
 # Add 'test' label to any change to *.spec.js files within the source dir
 test:
@@ -78,7 +81,7 @@ test:
 
 # Add 'source' label to any change to src files within the source dir EXCEPT for the docs sub-folder
 source:
-- any: ['src/**', '!src/docs/*']
+- any: ['src/**/*', '!src/docs/*']
 
 # Add 'frontend` label to any change to *.js files as long as the `main.js` hasn't changed
 frontend:
@@ -88,7 +91,7 @@ frontend:
 
 ### Create Workflow
 
-Create a workflow (e.g. `.github/workflows/labeler.yml` see [Creating a Workflow file](https://help.github.com/en/articles/configuring-a-workflow#creating-a-workflow-file)) to utilize the labeler action with content:
+Create a workflow (eg: `.github/workflows/labeler.yml` see [Creating a Workflow file](https://help.github.com/en/articles/configuring-a-workflow#creating-a-workflow-file)) to utilize the labeler action with content:
 
 ```yml
 name: "Pull Request Labeler"
@@ -103,90 +106,22 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - uses: actions/labeler@v4
+      with:
+        repo-token: "${{ secrets.GITHUB_TOKEN }}"
 ```
 
+_Note: This grants access to the `GITHUB_TOKEN` so the action can make calls to GitHub's rest API_
+
 #### Inputs
 
 Various inputs are defined in [`action.yml`](action.yml) to let you configure the labeler:
 
 | Name | Description | Default |
-|----------------------|-------------------------------------------------------------------------------------------------|-----------------------|
-| `repo-token`         | Token to use to authorize label changes. Typically the GITHUB_TOKEN secret                      | N/A                   |
+| - | - | - |
+| `repo-token` | Token to use to authorize label changes. Typically the GITHUB_TOKEN secret, with `contents:read` and `pull-requests:write` access | N/A |
 | `configuration-path` | The path to the label configuration file | `.github/labeler.yml` |
-| `sync-labels`        | Whether or not to remove labels when matching files are reverted or no longer changed by the PR | `false`               |
-| `dot`                | Whether or not to auto-include paths starting with dot (e.g. `.github`)                         | `false`               |
+| `sync-labels` | Whether or not to remove labels when matching files are reverted or no longer changed by the PR | `false`
 
-When `dot` is disabled and you want to include _all_ files in a folder:
-
-```yml
-label1:
-- path/to/folder/**/*
-- path/to/folder/**/.*
-```
-
-If `dot` is enabled:
-
-```yml
-label1:
-- path/to/folder/**
-```
-
-#### Outputs 
-
-Labeler provides the following outputs:  
-
-| Name         | Description                                               |
-|--------------|-----------------------------------------------------------|
-| `new-labels` | A comma-separated list of all new labels                  |
-| `all-labels` | A comma-separated list of all labels that the PR contains |
-
-The following example performs steps based on the output of labeler:
-```yml
-name: "My workflow"
-on:
-- pull_request_target
-
-jobs:
-  triage:
-    runs-on: ubuntu-latest
-    permissions:
-      contents: read
-      pull-requests: write
-    steps:
-    - id: label-the-PR
-      uses: actions/labeler@v3
-      
-    - id: run-frontend-tests
-      if: contains(fromJson(steps.label-the-PR.outputs.all-labels), 'frontend')
-      run: |
-        echo "Running frontend tests..."
-        # Put your commands for running frontend tests here
-  
-    - id: run-backend-tests
-      if: contains(fromJson(steps.label-the-PR.outputs.all-labels), 'backend')
-      run: |
-        echo "Running backend tests..."
-        # Put your commands for running backend tests here
-```
-
-## Permissions
-
-In order to add labels to pull requests, the GitHub labeler action requires
-write permissions on the pull-request. However, when the action runs on a pull
-request from a forked repository, GitHub only grants read access tokens for
-`pull_request` events, at most. If you encounter an `Error: HttpError: Resource
-not accessible by integration`, it's likely due to these permission constraints.
-To resolve this issue, you can modify the `on:` section of your workflow to use
-[`pull_request_target`](https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#pull_request_target)
-instead of `pull_request` (see example [above](#create-workflow)). This change
-allows the action to have write access, because `pull_request_target` alters the
-[context of the
-action](https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#pull_request_target)
-and safely grants additional permissions. Refer to the [GitHub token
-permissions
-documentation](https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token)
-for more details about access levels and event contexts.
-
-## Contributions
+# Contributions
 
 Contributions are welcome! See the [Contributor's Guide](CONTRIBUTING.md).

__mocks__/@actions/github.ts

@@ -13,7 +13,8 @@ export const context = {
 const mockApi = {
   rest: {
     issues: {
-      setLabels: jest.fn()
+      addLabels: jest.fn(),
+      removeLabel: jest.fn()
     },
     pulls: {
       get: jest.fn().mockResolvedValue({}),

__tests__/labeler.test.ts

@@ -15,29 +15,15 @@ const matchConfig = [{any: ['*.txt']}];
 describe('checkGlobs', () => {
   it('returns true when our pattern does match changed files', () => {
     const changedFiles = ['foo.txt', 'bar.txt'];
-    const result = checkGlobs(changedFiles, matchConfig, false);
+    const result = checkGlobs(changedFiles, matchConfig);
 
     expect(result).toBeTruthy();
   });
 
   it('returns false when our pattern does not match changed files', () => {
     const changedFiles = ['foo.docx'];
-    const result = checkGlobs(changedFiles, matchConfig, false);
+    const result = checkGlobs(changedFiles, matchConfig);
 
     expect(result).toBeFalsy();
   });
-
-  it('returns false for a file starting with dot if `dot` option is false', () => {
-    const changedFiles = ['.foo.txt'];
-    const result = checkGlobs(changedFiles, matchConfig, false);
-
-    expect(result).toBeFalsy();
-  });
-
-  it('returns true for a file starting with dot if `dot` option is true', () => {
-    const changedFiles = ['.foo.txt'];
-    const result = checkGlobs(changedFiles, matchConfig, true);
-
-    expect(result).toBeTruthy();
-  });
 });

__tests__/main.test.ts

@@ -8,206 +8,99 @@ jest.mock('@actions/core');
 jest.mock('@actions/github');
 
 const gh = github.getOctokit('_');
-const setLabelsMock = jest.spyOn(gh.rest.issues, 'setLabels');
+const addLabelsMock = jest.spyOn(gh.rest.issues, 'addLabels');
+const removeLabelMock = jest.spyOn(gh.rest.issues, 'removeLabel');
 const reposMock = jest.spyOn(gh.rest.repos, 'getContent');
 const paginateMock = jest.spyOn(gh, 'paginate');
 const getPullMock = jest.spyOn(gh.rest.pulls, 'get');
-const coreWarningMock = jest.spyOn(core, 'warning');
-const setOutputSpy = jest.spyOn(core, 'setOutput');
 
 const yamlFixtures = {
   'only_pdfs.yml': fs.readFileSync('__tests__/fixtures/only_pdfs.yml')
 };
 
-const configureInput = (
-  mockInput: Partial<{
-    'repo-token': string;
-    'configuration-path': string;
-    'sync-labels': boolean;
-    dot: boolean;
-  }>
-) => {
-  jest
-    .spyOn(core, 'getInput')
-    .mockImplementation((name: string, ...opts) => mockInput[name]);
-  jest
-    .spyOn(core, 'getBooleanInput')
-    .mockImplementation((name: string, ...opts) => mockInput[name]);
-};
-
 afterAll(() => jest.restoreAllMocks());
 
 describe('run', () => {
-  it('(with dot: false) adds labels to PRs that match our glob patterns', async () => {
-    configureInput({});
+  it('adds labels to PRs that match our glob patterns', async () => {
     usingLabelerConfigYaml('only_pdfs.yml');
     mockGitHubResponseChangedFiles('foo.pdf');
-    getPullMock.mockResolvedValue(<any>{
-      data: {
-        labels: []
-      }
-    });
 
     await run();
 
-    expect(setLabelsMock).toHaveBeenCalledTimes(1);
-
-    expect(setLabelsMock).toHaveBeenCalledWith({
+    expect(removeLabelMock).toHaveBeenCalledTimes(0);
+    expect(addLabelsMock).toHaveBeenCalledTimes(1);
+    expect(addLabelsMock).toHaveBeenCalledWith({
       owner: 'monalisa',
       repo: 'helloworld',
       issue_number: 123,
       labels: ['touched-a-pdf-file']
     });
-    expect(setOutputSpy).toHaveBeenCalledWith(
-      'new-labels',
-      'touched-a-pdf-file'
-    );
-    expect(setOutputSpy).toHaveBeenCalledWith(
-      'all-labels',
-      'touched-a-pdf-file'
-    );
   });
 
-  it('(with dot: true) adds labels to PRs that match our glob patterns', async () => {
-    configureInput({dot: true});
-    usingLabelerConfigYaml('only_pdfs.yml');
-    mockGitHubResponseChangedFiles('.foo.pdf');
-    getPullMock.mockResolvedValue(<any>{
-      data: {
-        labels: []
-      }
-    });
-
-    await run();
-
-    expect(setLabelsMock).toHaveBeenCalledTimes(1);
-    expect(setLabelsMock).toHaveBeenCalledWith({
-      owner: 'monalisa',
-      repo: 'helloworld',
-      issue_number: 123,
-      labels: ['touched-a-pdf-file']
-    });
-    expect(setOutputSpy).toHaveBeenCalledWith(
-      'new-labels',
-      'touched-a-pdf-file'
-    );
-    expect(setOutputSpy).toHaveBeenCalledWith(
-      'all-labels',
-      'touched-a-pdf-file'
-    );
-  });
-
-  it('(with dot: false) does not add labels to PRs that do not match our glob patterns', async () => {
-    configureInput({});
-    usingLabelerConfigYaml('only_pdfs.yml');
-    mockGitHubResponseChangedFiles('.foo.pdf');
-    getPullMock.mockResolvedValue(<any>{
-      data: {
-        labels: []
-      }
-    });
-
-    await run();
-
-    expect(setLabelsMock).toHaveBeenCalledTimes(0);
-    expect(setOutputSpy).toHaveBeenCalledWith('new-labels', '');
-    expect(setOutputSpy).toHaveBeenCalledWith('all-labels', '');
-  });
-
-  it('(with dot: true) does not add labels to PRs that do not match our glob patterns', async () => {
-    configureInput({dot: true});
+  it('does not add labels to PRs that do not match our glob patterns', async () => {
     usingLabelerConfigYaml('only_pdfs.yml');
     mockGitHubResponseChangedFiles('foo.txt');
 
     await run();
 
-    expect(setLabelsMock).toHaveBeenCalledTimes(0);
+    expect(removeLabelMock).toHaveBeenCalledTimes(0);
+    expect(addLabelsMock).toHaveBeenCalledTimes(0);
   });
 
   it('(with sync-labels: true) it deletes preexisting PR labels that no longer match the glob pattern', async () => {
-    configureInput({
+    let mockInput = {
       'repo-token': 'foo',
       'configuration-path': 'bar',
       'sync-labels': true
-    });
+    };
+
+    jest
+      .spyOn(core, 'getInput')
+      .mockImplementation((name: string, ...opts) => mockInput[name]);
 
     usingLabelerConfigYaml('only_pdfs.yml');
     mockGitHubResponseChangedFiles('foo.txt');
     getPullMock.mockResolvedValue(<any>{
       data: {
-        labels: [{name: 'touched-a-pdf-file'}, {name: 'manually-added'}]
+        labels: [{name: 'touched-a-pdf-file'}]
       }
     });
 
     await run();
 
-    expect(setLabelsMock).toHaveBeenCalledTimes(1);
-    expect(setLabelsMock).toHaveBeenCalledWith({
+    expect(addLabelsMock).toHaveBeenCalledTimes(0);
+    expect(removeLabelMock).toHaveBeenCalledTimes(1);
+    expect(removeLabelMock).toHaveBeenCalledWith({
       owner: 'monalisa',
       repo: 'helloworld',
       issue_number: 123,
-      labels: ['manually-added']
+      name: 'touched-a-pdf-file'
     });
-    expect(setOutputSpy).toHaveBeenCalledWith('new-labels', '');
-    expect(setOutputSpy).toHaveBeenCalledWith('all-labels', 'manually-added');
   });
 
   it('(with sync-labels: false) it issues no delete calls even when there are preexisting PR labels that no longer match the glob pattern', async () => {
-    configureInput({
+    let mockInput = {
       'repo-token': 'foo',
       'configuration-path': 'bar',
       'sync-labels': false
-    });
+    };
+
+    jest
+      .spyOn(core, 'getInput')
+      .mockImplementation((name: string, ...opts) => mockInput[name]);
 
     usingLabelerConfigYaml('only_pdfs.yml');
     mockGitHubResponseChangedFiles('foo.txt');
     getPullMock.mockResolvedValue(<any>{
       data: {
-        labels: [{name: 'touched-a-pdf-file'}, {name: 'manually-added'}]
+        labels: [{name: 'touched-a-pdf-file'}]
       }
     });
 
     await run();
 
-    expect(setLabelsMock).toHaveBeenCalledTimes(0);
-    expect(setOutputSpy).toHaveBeenCalledWith('new-labels', '');
-    expect(setOutputSpy).toHaveBeenCalledWith(
-      'all-labels',
-      'touched-a-pdf-file,manually-added'
-    );
-  });
-
-  it('(with sync-labels: false) it only logs the excess labels', async () => {
-    configureInput({
-      'repo-token': 'foo',
-      'configuration-path': 'bar',
-      'sync-labels': false
-    });
-
-    usingLabelerConfigYaml('only_pdfs.yml');
-    mockGitHubResponseChangedFiles('foo.pdf');
-
-    const existingLabels = Array.from({length: 100}).map((_, idx) => ({
-      name: `existing-label-${idx}`
-    }));
-    getPullMock.mockResolvedValue(<any>{
-      data: {
-        labels: existingLabels
-      }
-    });
-
-    await run();
-
-    expect(setLabelsMock).toHaveBeenCalledTimes(0);
-
-    expect(coreWarningMock).toHaveBeenCalledTimes(1);
-    expect(coreWarningMock).toHaveBeenCalledWith(
-      'Maximum of 100 labels allowed. Excess labels: touched-a-pdf-file',
-      {title: 'Label limit for a PR exceeded'}
-    );
-    const allLabels: string = existingLabels.map(i => i.name).join(',');
-    expect(setOutputSpy).toHaveBeenCalledWith('new-labels', '');
-    expect(setOutputSpy).toHaveBeenCalledWith('all-labels', allLabels);
+    expect(addLabelsMock).toHaveBeenCalledTimes(0);
+    expect(removeLabelMock).toHaveBeenCalledTimes(0);
   });
 });
 

action.yml

@@ -3,9 +3,7 @@ description: 'Automatically label new pull requests based on the paths of files
 author: 'GitHub'
 inputs:
   repo-token:
-    description: 'The GitHub token used to manage labels'
-    required: false
-    default: ${{ github.token }}
+    description: 'The GITHUB_TOKEN secret'
   configuration-path:
     description: 'The path for the label configurations'
     default: '.github/labeler.yml'
@@ -14,16 +12,7 @@ inputs:
     description: 'Whether or not to remove labels when matching files are reverted'
     default: false
     required: false
-  dot:
-    description: 'Whether or not to auto-include paths starting with dot (e.g. `.github`)'
-    default: false
-    required: false
 
-outputs:
-  new-labels:
-    description: 'A comma-separated list of all new labels'
-  all-labels:
-    description: 'A comma-separated list of all labels that the PR contains'
 runs:
   using: 'node16'
   main: 'dist/index.js'

package.json

@@ -1,14 +1,13 @@
 {
   "name": "labeler",
-  "version": "4.1.0",
+  "version": "4.0.1",
   "description": "Labels pull requests by files altered",
   "main": "lib/main.js",
   "scripts": {
     "build": "tsc && ncc build lib/main.js",
-    "format": "prettier --no-error-on-unmatched-pattern --config ./.prettierrc.js --write \"**/*.{ts,yml,yaml}\"",
-    "format-check": "prettier --no-error-on-unmatched-pattern --config ./.prettierrc.js --check \"**/*.{ts,yml,yaml}\"",
-    "lint": "eslint --config ./.eslintrc.js \"**/*.ts\"",
-    "lint:fix": "eslint --config ./.eslintrc.js \"**/*.ts\" --fix",
+    "format": "prettier --write **/*.ts",
+    "format-check": "prettier --check **/*.ts",
+    "lint": "echo \"Fake command that does nothing. It is used in reusable workflows\"",
     "test": "jest"
   },
   "repository": {
@@ -25,26 +24,19 @@
   "license": "MIT",
   "dependencies": {
     "@actions/core": "^1.10.0",
-    "@actions/github": "^5.1.1",
-    "@octokit/plugin-retry": "^5.0.4",
+    "@actions/github": "^5.0.0",
     "js-yaml": "^4.1.0",
-    "minimatch": "^7.4.3"
+    "minimatch": "^3.0.4"
   },
   "devDependencies": {
     "@types/jest": "^27.4.1",
-    "@types/js-yaml": "^4.0.5",
-    "@types/minimatch": "^5.1.2",
     "@types/node": "^16.11.7",
-    "@typescript-eslint/eslint-plugin": "^5.60.1",
-    "@typescript-eslint/parser": "^5.60.1",
-    "@vercel/ncc": "^0.36.1",
-    "eslint": "^8.43.0",
-    "eslint-config-prettier": "^8.8.0",
-    "eslint-plugin-jest": "^27.2.2",
-    "eslint-plugin-node": "^11.1.0",
+    "@types/minimatch": "^3.0.5",
+    "@types/js-yaml": "^4.0.5",
+    "@vercel/ncc": "^0.34.0",
     "jest": "^27.5.1",
-    "prettier": "^2.8.8",
+    "prettier": "^2.7.1",
     "ts-jest": "^27.1.3",
-    "typescript": "^4.9.5"
+    "typescript": "^4.8.4"
   }
 }

src/labeler.ts

@@ -1,8 +1,7 @@
 import * as core from '@actions/core';
 import * as github from '@actions/github';
-import * as pluginRetry from '@octokit/plugin-retry';
 import * as yaml from 'js-yaml';
-import {Minimatch} from 'minimatch';
+import {Minimatch, IMinimatch} from 'minimatch';
 
 interface MatchConfig {
   all?: string[];
@@ -12,23 +11,19 @@ interface MatchConfig {
 type StringOrMatchConfig = string | MatchConfig;
 type ClientType = ReturnType<typeof github.getOctokit>;
 
-// GitHub Issues cannot have more than 100 labels
-const GITHUB_MAX_LABELS = 100;
-
 export async function run() {
   try {
-    const token = core.getInput('repo-token');
+    const token = core.getInput('repo-token', {required: true});
     const configPath = core.getInput('configuration-path', {required: true});
-    const syncLabels = !!core.getInput('sync-labels');
-    const dot = core.getBooleanInput('dot');
+    const syncLabels = !!core.getInput('sync-labels', {required: false});
 
     const prNumber = getPrNumber();
     if (!prNumber) {
-      core.info('Could not get pull request number from context, exiting');
+      console.log('Could not get pull request number from context, exiting');
       return;
     }
 
-    const client: ClientType = github.getOctokit(token, {}, pluginRetry.retry);
+    const client: ClientType = github.getOctokit(token);
 
     const {data: pullRequest} = await client.rest.pulls.get({
       owner: github.context.repo.owner,
@@ -43,55 +38,23 @@ export async function run() {
       configPath
     );
 
-    const preexistingLabels = pullRequest.labels.map(l => l.name);
-    const allLabels: Set<string> = new Set<string>(preexistingLabels);
-
+    const labels: string[] = [];
+    const labelsToRemove: string[] = [];
     for (const [label, globs] of labelGlobs.entries()) {
       core.debug(`processing ${label}`);
-      if (checkGlobs(changedFiles, globs, dot)) {
-        allLabels.add(label);
-      } else if (syncLabels) {
-        allLabels.delete(label);
+      if (checkGlobs(changedFiles, globs)) {
+        labels.push(label);
+      } else if (pullRequest.labels.find(l => l.name === label)) {
+        labelsToRemove.push(label);
       }
     }
 
-    const labelsToAdd = [...allLabels].slice(0, GITHUB_MAX_LABELS);
-    const excessLabels = [...allLabels].slice(GITHUB_MAX_LABELS);
-
-    try {
-      let newLabels: string[] = [];
-
-      if (!isListEqual(labelsToAdd, preexistingLabels)) {
-        await setLabels(client, prNumber, labelsToAdd);
-        newLabels = labelsToAdd.filter(l => !preexistingLabels.includes(l));
+    if (labels.length > 0) {
+      await addLabels(client, prNumber, labels);
     }
 
-      core.setOutput('new-labels', newLabels.join(','));
-      core.setOutput('all-labels', labelsToAdd.join(','));
-
-      if (excessLabels.length) {
-        core.warning(
-          `Maximum of ${GITHUB_MAX_LABELS} labels allowed. Excess labels: ${excessLabels.join(
-            ', '
-          )}`,
-          {title: 'Label limit for a PR exceeded'}
-        );
-      }
-    } catch (error: any) {
-      if (
-        error.name === 'HttpError' &&
-        error.message === 'Resource not accessible by integration'
-      ) {
-        core.warning(
-          `The action requires write permission to add labels to pull requests. For more information please refer to the action documentation: https://github.com/actions/labeler#permissions`,
-          {
-            title: `${process.env['GITHUB_ACTION_REPOSITORY']} running under '${github.context.eventName}' is misconfigured`
-          }
-        );
-        core.setFailed(error.message);
-      } else {
-        throw error;
-      }
+    if (syncLabels && labelsToRemove.length) {
+      await removeLabels(client, prNumber, labelsToRemove);
     }
   } catch (error: any) {
     core.error(error);
@@ -188,26 +151,25 @@ function toMatchConfig(config: StringOrMatchConfig): MatchConfig {
   return config;
 }
 
-function printPattern(matcher: Minimatch): string {
+function printPattern(matcher: IMinimatch): string {
   return (matcher.negate ? '!' : '') + matcher.pattern;
 }
 
 export function checkGlobs(
   changedFiles: string[],
-  globs: StringOrMatchConfig[],
-  dot: boolean
+  globs: StringOrMatchConfig[]
 ): boolean {
   for (const glob of globs) {
     core.debug(` checking pattern ${JSON.stringify(glob)}`);
     const matchConfig = toMatchConfig(glob);
-    if (checkMatch(changedFiles, matchConfig, dot)) {
+    if (checkMatch(changedFiles, matchConfig)) {
       return true;
     }
   }
   return false;
 }
 
-function isMatch(changedFile: string, matchers: Minimatch[]): boolean {
+function isMatch(changedFile: string, matchers: IMinimatch[]): boolean {
   core.debug(`    matching patterns against file ${changedFile}`);
   for (const matcher of matchers) {
     core.debug(`   - ${printPattern(matcher)}`);
@@ -222,12 +184,8 @@ function isMatch(changedFile: string, matchers: Minimatch[]): boolean {
 }
 
 // equivalent to "Array.some()" but expanded for debugging and clarity
-function checkAny(
-  changedFiles: string[],
-  globs: string[],
-  dot: boolean
-): boolean {
-  const matchers = globs.map(g => new Minimatch(g, {dot}));
+function checkAny(changedFiles: string[], globs: string[]): boolean {
+  const matchers = globs.map(g => new Minimatch(g));
   core.debug(`  checking "any" patterns`);
   for (const changedFile of changedFiles) {
     if (isMatch(changedFile, matchers)) {
@@ -241,12 +199,8 @@ function checkAny(
 }
 
 // equivalent to "Array.every()" but expanded for debugging and clarity
-function checkAll(
-  changedFiles: string[],
-  globs: string[],
-  dot: boolean
-): boolean {
-  const matchers = globs.map(g => new Minimatch(g, {dot}));
+function checkAll(changedFiles: string[], globs: string[]): boolean {
+  const matchers = globs.map(g => new Minimatch(g));
   core.debug(` checking "all" patterns`);
   for (const changedFile of changedFiles) {
     if (!isMatch(changedFile, matchers)) {
@@ -259,19 +213,15 @@ function checkAll(
   return true;
 }
 
-function checkMatch(
-  changedFiles: string[],
-  matchConfig: MatchConfig,
-  dot: boolean
-): boolean {
+function checkMatch(changedFiles: string[], matchConfig: MatchConfig): boolean {
   if (matchConfig.all !== undefined) {
-    if (!checkAll(changedFiles, matchConfig.all, dot)) {
+    if (!checkAll(changedFiles, matchConfig.all)) {
       return false;
     }
   }
 
   if (matchConfig.any !== undefined) {
-    if (!checkAny(changedFiles, matchConfig.any, dot)) {
+    if (!checkAny(changedFiles, matchConfig.any)) {
       return false;
     }
   }
@@ -279,19 +229,32 @@ function checkMatch(
   return true;
 }
 
-function isListEqual(listA: string[], listB: string[]): boolean {
-  return listA.length === listB.length && listA.every(el => listB.includes(el));
-}
-
-async function setLabels(
+async function addLabels(
   client: ClientType,
   prNumber: number,
   labels: string[]
 ) {
-  await client.rest.issues.setLabels({
+  await client.rest.issues.addLabels({
     owner: github.context.repo.owner,
     repo: github.context.repo.repo,
     issue_number: prNumber,
     labels: labels
   });
 }
+
+async function removeLabels(
+  client: ClientType,
+  prNumber: number,
+  labels: string[]
+) {
+  await Promise.all(
+    labels.map(label =>
+      client.rest.issues.removeLabel({
+        owner: github.context.repo.owner,
+        repo: github.context.repo.repo,
+        issue_number: prNumber,
+        name: label
+      })
+    )
+  );
+}