Migrating from Azure DevOps with GitHub Actions Importer

About migrating from Azure DevOps with GitHub Actions Importer

The instructions below will guide you through configuring your environment to use GitHub Actions Importer to migrate Azure DevOps pipelines to GitHub Actions.

Prerequisites

An Azure DevOps account or organization with projects and pipelines that you want to convert to GitHub Actions workflows.
Access to create an Azure DevOps personal access token for your account or organization.
Un environnement dans lequel vous pouvez exécuter des conteneurs basés sur Linux et installer les outils nécessaires.
- Docker est installé et en cours d’exécution.
- L’interface CLI GitHub est installée.
Remarque

Le conteneur GitHub Actions Importer et l’interface CLI n’ont pas besoin d’être installés sur le même serveur que votre plateforme CI.

Limitations

There are some limitations when migrating from Azure DevOps to GitHub Actions with GitHub Actions Importer:

GitHub Actions Importer requires version 5.0 of the Azure DevOps API, available in either Azure DevOps Services or Azure DevOps Server 2019. Older versions of Azure DevOps Server are not compatible.
Tasks that are implicitly added to an Azure DevOps pipeline, such as checking out source code, may be added to a GitHub Actions Importer audit as a GUID name. To find the friendly task name for a GUID, you can use the following URL: http://dev.azure.com/:organization/_apis/distributedtask/tasks/:guid.

Manual tasks

Certain Azure DevOps constructs must be migrated manually from Azure DevOps into GitHub Actions configurations. These include:

Organization, repository, and environment secrets
Service connections such as OIDC Connect, GitHub Apps, and personal access tokens
Unknown tasks
Self-hosted agents
Environments
Pre-deployment approvals

For more information on manual migrations, see Migrating from Azure Pipelines to GitHub Actions.

Unsupported tasks

GitHub Actions Importer does not support migrating the following tasks:

Pre-deployment gates
Post-deployment gates
Post-deployment approvals
Some resource triggers

Installing the GitHub Actions Importer CLI extension

Installez l’extension CLI GitHub Actions Importer :

Bash

gh extension install github/gh-actions-importer

gh extension install github/gh-actions-importer

Vérifiez que l’extension est installée :

$ gh actions-importer -h
Options:
  -?, -h, --help  Show help and usage information

Commands:
  update     Update to the latest version of GitHub Actions Importer.
  version    Display the version of GitHub Actions Importer.
  configure  Start an interactive prompt to configure credentials used to authenticate with your CI server(s).
  audit      Plan your CI/CD migration by analyzing your current CI/CD footprint.
  forecast   Forecast GitHub Actions usage from historical pipeline utilization.
  dry-run    Convert a pipeline to a GitHub Actions workflow and output its yaml file.
  migrate    Convert a pipeline to a GitHub Actions workflow and open a pull request with the changes.

Configuring credentials

The configure CLI command is used to set required credentials and options for GitHub Actions Importer when working with Azure DevOps and GitHub.

Create a GitHub personal access token (classic). For more information, see Gestion de vos jetons d'accès personnels.

Your token must have the workflow scope.

After creating the token, copy it and save it in a safe location for later use.
Create an Azure DevOps personal access token. For more information, see Use personal access tokens in the Azure DevOps documentation. The token must have the following scopes:
- Agents Pool: Read
- Build: Read
- Code: Read
- Release: Read
- Service Connections: Read
- Task Groups: Read
- Variable Groups: Read
After creating the token, copy it and save it in a safe location for later use.
In your terminal, run the GitHub Actions Importer configure CLI command:
```
gh actions-importer configure
```
The configure command will prompt you for the following information:
- For "Which CI providers are you configuring?", use the arrow keys to select Azure DevOps, press Space to select it, then press Enter.
- For "Personal access token for GitHub", enter the value of the personal access token (classic) that you created earlier, and press Enter.
- For "Base url of the GitHub instance", press Enter to accept the default value (http://github.com).
- For "Personal access token for Azure DevOps", enter the value for the Azure DevOps personal access token that you created earlier, and press Enter.
- For "Base url of the Azure DevOps instance", press Enter to accept the default value (http://dev.azure.com).
- For "Azure DevOps organization name", enter the name for your Azure DevOps organization, and press Enter.
- For "Azure DevOps project name", enter the name for your Azure DevOps project, and press Enter.
An example of the configure command is shown below:
```
$ gh actions-importer configure
✔ Which CI providers are you configuring?: Azure DevOps
Enter the following values (leave empty to omit):
✔ Personal access token for GitHub: ***************
✔ Base url of the GitHub instance: http://github.com
✔ Personal access token for Azure DevOps: ***************
✔ Base url of the Azure DevOps instance: http://dev.azure.com
✔ Azure DevOps organization name: :organization
✔ Azure DevOps project name: :project
Environment variables successfully updated.
```
In your terminal, run the GitHub Actions Importer update CLI command to connect to the GitHub Packages Container registry and ensure that the container image is updated to the latest version:
```
gh actions-importer update
```
The output of the command should be similar to below:
```
Updating ghcr.io/actions-importer/cli:latest...
ghcr.io/actions-importer/cli:latest up-to-date
```

Perform an audit of Azure DevOps

You can use the audit command to get a high-level view of all projects in an Azure DevOps organization.

The audit command performs the following steps:

Fetches all of the projects defined in an Azure DevOps organization.
Converts each pipeline to its equivalent GitHub Actions workflow.
Generates a report that summarizes how complete and complex of a migration is possible with GitHub Actions Importer.

Running the audit command

To perform an audit of an Azure DevOps organization, run the following command in your terminal:

gh actions-importer audit azure-devops --output-dir tmp/audit

Inspecting the audit results

Les fichiers dans le répertoire de sortie spécifié contiennent les résultats de l’audit. Consultez le fichier audit_summary.md pour obtenir un résumé des résultats de l’audit.

Le résumé de l’audit comporte les sections suivantes.

Pipelines

La section « Pipelines » contient des statistiques générales concernant le taux de conversion effectué par GitHub Actions Importer.

Vous trouverez ci-dessous quelques termes clés qui peuvent apparaître dans la section « Pipelines » :

Les pipelines réussis sont ceux dont 100 % des constructions de pipeline et des éléments individuels ont été convertis automatiquement en leur équivalent GitHub Actions.
Les pipelines partiellement réussis sont ceux dont la totalité des constructions de pipeline ont été converties ; toutefois, certains éléments individuels n’ont pas été convertis automatiquement en leur équivalent GitHub Actions.
Les pipelines non pris en charge sont des types de définition qui ne sont pas pris en charge par GitHub Actions Importer.
Les pipelines ayant échoué sont ceux qui ont rencontré une erreur irrécupérable lors de la conversion. Cela peut se produire pour l’une des trois raisons suivantes :
- Le pipeline a été mal configuré à l’origine et n’était pas valide.
- GitHub Actions Importer a rencontré une erreur interne lors de sa conversion.
- Une réponse réseau infructueuse a rendu le pipeline inaccessible, ce qui est souvent dû à des informations d’identification non valides.

La section « Étapes de génération » contient une vue d’ensemble des étapes de génération individuelles utilisées dans tous les pipelines ainsi que le nombre d’étapes converties automatiquement par GitHub Actions Importer.

Vous trouverez ci-dessous quelques termes clés qui peuvent apparaître dans la section « Étapes de génération » :

Une étape de génération connue est une étape qui a été automatiquement convertie en action équivalente.
Une étape de génération inconnue est une étape qui n’a pas été automatiquement convertie en action équivalente.
Une étape de génération non prise en charge est une étape qui est :
- Fondamentalement non prise en charge par GitHub Actions.
- Configuré d’une manière incompatible avec GitHub Actions.
Une action est une liste des actions qui ont été utilisées dans les workflows convertis. Cela peut être important pour :
- Rassembler la liste des actions à synchroniser avec votre instance, si vous utilisez GitHub Enterprise Server.
- Définir une liste d’autorisation au niveau de l’organisation des actions utilisées. Cette liste d’actions est une liste complète d’actions que vos équipes de sécurité ou de conformité peuvent avoir besoin d’examiner.

Tâches manuelles

La section « Tâches manuelles » contient une vue d’ensemble des tâches que GitHub Actions Importer ne peut pas accomplir automatiquement et que vous devez effectuer manuellement.

Vous trouverez ci-dessous quelques termes clés qui peuvent apparaître dans la section « Tâches manuelles » :

Un secret est un secret au niveau de l’organisation ou du dépôt qui est utilisé dans les pipelines convertis. Ces secrets doivent être créés manuellement dans GitHub Actions pour que ces pipelines fonctionnent correctement. Pour plus d’informations, consultez « Using secrets in GitHub Actions ».
Un exécuteur auto-hébergé fait référence à une étiquette d’un exécuteur référencé dans un pipeline converti qui n’est pas un exécuteur hébergé par GitHub. Vous devez définir manuellement ces exécuteurs pour que ces pipelines fonctionnent correctement.

Fichiers

La dernière section du rapport d’audit fournit un manifeste de tous les fichiers qui ont été écrits sur le disque pendant l’audit.

À chaque fichier de pipeline correspond une série de fichiers inclus dans l’audit, notamment :

Le pipeline d’origine tel qu’il a été défini dans GitHub.
Toutes les réponses réseau utilisées pour convertir le pipeline.
Le fichier de workflow converti.
Les traces de pile qui peuvent être utilisées pour résoudre les problèmes liés à une conversion de pipeline ayant échoué.

De plus, le fichier workflow_usage.csv contient une liste séparée par des virgules de l’ensemble des actions, secrets et exécuteurs qui sont utilisés par chaque pipeline converti avec succès. Cela peut être utile pour déterminer quels workflows utilisent quelles actions, quels secrets ou quels exécuteurs, et pour effectuer des révisions de sécurité.

Forecast potential GitHub Actions usage

You can use the forecast command to forecast potential GitHub Actions usage by computing metrics from completed pipeline runs in Azure DevOps.

Running the forecast command

To perform a forecast of potential GitHub Actions usage, run the following command in your terminal. By default, GitHub Actions Importer includes the previous seven days in the forecast report.

gh actions-importer forecast azure-devops --output-dir tmp/forecast_reports

Inspecting the forecast report

The forecast_report.md file in the specified output directory contains the results of the forecast.

Listed below are some key terms that can appear in the forecast report:

The job count is the total number of completed jobs.
The pipeline count is the number of unique pipelines used.
Execution time describes the amount of time a runner spent on a job. This metric can be used to help plan for the cost of GitHub-hosted runners.

This metric is correlated to how much you should expect to spend in GitHub Actions. This will vary depending on the hardware used for these minutes. You can use the GitHub Actions pricing calculator to estimate the costs.
Queue time metrics describe the amount of time a job spent waiting for a runner to be available to execute it.
Concurrent jobs metrics describe the amount of jobs running at any given time. This metric can be used to define the number of runners you should configure.

Additionally, these metrics are defined for each queue of runners in Azure DevOps. This is especially useful if there is a mix of hosted or self-hosted runners, or high or low spec machines, so you can see metrics specific to different types of runners.

Perform a dry-run migration

You can use the dry-run command to convert an Azure DevOps pipeline to an equivalent GitHub Actions workflow. A dry run creates the output files in a specified directory, but does not open a pull request to migrate the pipeline.

Pour tout ce que GitHub Actions Importer n’a pas pu convertir automatiquement, comme des étapes de génération inconnues ou un pipeline partiellement réussi, vous pouvez créer des transformateurs personnalisés pour personnaliser davantage le processus de conversion. Pour plus d’informations, consultez « Extending GitHub Actions Importer with custom transformers ».

Running the dry-run command for a build pipeline

To perform a dry run of migrating your Azure DevOps build pipeline to GitHub Actions, run the following command in your terminal, replacing pipeline_id with the ID of the pipeline you are converting.

gh actions-importer dry-run azure-devops pipeline --pipeline-id :pipeline_id --output-dir tmp/dry-run

You can view the logs of the dry run and the converted workflow files in the specified output directory.

Running the dry-run command for a release pipeline

To perform a dry run of migrating your Azure DevOps release pipeline to GitHub Actions, run the following command in your terminal, replacing pipeline_id with the ID of the pipeline you are converting.

gh actions-importer dry-run azure-devops release --pipeline-id :pipeline_id --output-dir tmp/dry-run

You can view the logs of the dry run and the converted workflow files in the specified output directory.

Perform a production migration

You can use the migrate command to convert an Azure DevOps pipeline and open a pull request with the equivalent GitHub Actions workflow.

Running the migrate command for a build pipeline

To migrate an Azure DevOps build pipeline to GitHub Actions, run the following command in your terminal, replacing the target-url value with the URL for your GitHub repository, and pipeline_id with the ID of the pipeline you are converting.

gh actions-importer migrate azure-devops pipeline --pipeline-id :pipeline_id --target-url http://github.com/octo-org/octo-repo --output-dir tmp/migrate

The command's output includes the URL of the pull request that adds the converted workflow to your repository. An example of a successful output is similar to the following:

$ gh actions-importer migrate azure-devops pipeline --target-url http://github.com/octo-org/octo-repo --output-dir tmp/migrate --azure-devops-project my-azure-devops-project
[2022-08-20 22:08:20] Logs: 'tmp/migrate/log/actions-importer-20220916-014033.log'
[2022-08-20 22:08:20] Pull request: 'http://github.com/octo-org/octo-repo/pull/1'

Running the migrate command for a release pipeline

To migrate an Azure DevOps release pipeline to GitHub Actions, run the following command in your terminal, replacing the target-url value with the URL for your GitHub repository, and pipeline_id with the ID of the pipeline you are converting.

gh actions-importer migrate azure-devops release --pipeline-id :pipeline_id --target-url http://github.com/octo-org/octo-repo --output-dir tmp/migrate

The command's output includes the URL of the pull request that adds the converted workflow to your repository. An example of a successful output is similar to the following:

$ gh actions-importer migrate azure-devops release --target-url http://github.com/octo-org/octo-repo --output-dir tmp/migrate --azure-devops-project my-azure-devops-project
[2022-08-20 22:08:20] Logs: 'tmp/migrate/log/actions-importer-20220916-014033.log'
[2022-08-20 22:08:20] Pull request: 'http://github.com/octo-org/octo-repo/pull/1'

Inspection de la demande de tirage

La sortie d’une exécution réussie de la commande migrate contient un lien vers la nouvelle demande de tirage qui ajoute le workflow converti à votre dépôt.

Voici quelques éléments importants de la demande de tirage :

Dans la description de la demande de tirage, une section appelée Étapes manuelles, qui liste les étapes que vous devez effectuer manuellement avant de pouvoir terminer la migration de vos pipelines vers GitHub Actions. Par exemple, cette section peut vous indiquer de créer des secrets utilisés dans vos workflows.
Fichier de workflows converti. Sélectionnez l’onglet Fichiers changés dans la demande de tirage pour afficher le fichier de flux de travail à ajouter à votre référentiel GitHub.

Une fois que vous avez terminé d’inspecter la demande de tirage, vous pouvez la fusionner pour ajouter le flux de travail à votre référentiel GitHub.

Reference

This section contains reference information on environment variables, optional arguments, and supported syntax when using GitHub Actions Importer to migrate from Azure DevOps.

Configuration environment variables

GitHub Actions Importer utilise des variables d’environnement pour sa configuration d’authentification. Ces variables sont définies lors du processus de configuration au moyen de la commande configure. Pour plus d’informations, consultez la section Configuration des informations d’identification.

GitHub Actions Importer uses the following environment variables to connect to your Azure DevOps instance:

GITHUB_ACCESS_TOKEN: The personal access token (classic) used to create pull requests with a converted workflow (requires the workflow scope).
GITHUB_INSTANCE_URL: The URL to the target GitHub instance (for example, http://github.com).
AZURE_DEVOPS_ACCESS_TOKEN: The personal access token used to authenticate with your Azure DevOps instance. This token requires the following scopes:
- Build: Read
- Agent Pools: Read
- Code: Read
- Release: Read
- Service Connections: Read
- Task Groups: Read
- Variable Groups: Read
AZURE_DEVOPS_PROJECT: The project name or GUID to use when migrating a pipeline. If you'd like to perform an audit on all projects, this is optional.
AZURE_DEVOPS_ORGANIZATION: The organization name of your Azure DevOps instance.
AZURE_DEVOPS_INSTANCE_URL: The URL to the Azure DevOps instance, such as http://dev.azure.com.

These environment variables can be specified in a .env.local file that is loaded by GitHub Actions Importer when it is run.

Optional arguments

Vous pouvez utiliser des arguments facultatifs avec les sous-commandes GitHub Actions Importer pour personnaliser votre migration.

`--source-file-path`

You can use the --source-file-path argument with the forecast, dry-run, or migrate subcommands.

By default, GitHub Actions Importer fetches pipeline contents from source control. The --source-file-path argument tells GitHub Actions Importer to use the specified source file path instead.

For example:

gh actions-importer dry-run azure-devops pipeline --output-dir ./output/ --source-file-path ./path/to/azure_devops/pipeline.yml

`--config-file-path`

You can use the --config-file-path argument with the audit, dry-run, and migrate subcommands.

By default, GitHub Actions Importer fetches pipeline contents from source control. The --config-file-path argument tells GitHub Actions Importer to use the specified source files instead.

The --config-file-path argument can also be used to specify which repository a converted reusable workflow or composite action should be migrated to.

Audit example

In this example, GitHub Actions Importer uses the specified YAML configuration file as the source file to perform an audit.

gh actions-importer audit azure-devops pipeline --output-dir ./output/ --config-file-path ./path/to/azure_devops/config.yml

To audit an Azure DevOps instance using a configuration file, the configuration file must be in the following format and each repository_slug must be unique:

source_files:
  - repository_slug: azdo-project/1
    path: file.yml
  - repository_slug: azdo-project/2
    paths: path.yml

You can generate the repository_slug for a pipeline by combining the Azure DevOps organization name, project name, and the pipeline ID. For example, my-organization-name/my-project-name/42.

Dry run example

In this example, GitHub Actions Importer uses the specified YAML configuration file as the source file to perform a dry run.

The pipeline is selected by matching the repository_slug in the configuration file to the value of the --azure-devops-organization and --azure-devops-project option. The path is then used to pull the specified source file.

gh actions-importer dry-run azure-devops pipeline --output-dir ./output/ --config-file-path ./path/to/azure_devops/config.yml

Specify the repository of converted reusable workflows and composite actions

GitHub Actions Importer uses the YAML file provided to the --config-file-path argument to determine the repository that converted reusable workflows and composite actions are migrated to.

To begin, you should run an audit without the --config-file-path argument:

gh actions-importer audit azure-devops --output-dir ./output/

The output of this command will contain a file named config.yml that contains a list of all the reusable workflows and composite actions that were converted by GitHub Actions Importer. For example, the config.yml file may have the following contents:

reusable_workflows:
  - name: my-reusable-workflow.yml
    target_url: http://github.com/octo-org/octo-repo
    ref: main

composite_actions:
  - name: my-composite-action.yml
    target_url: http://github.com/octo-org/octo-repo
    ref: main

You can use this file to specify which repository and ref a reusable workflow or composite action should be added to. You can then use the --config-file-path argument to provide the config.yml file to GitHub Actions Importer. For example, you can use this file when running a migrate command to open a pull request for each unique repository defined in the config file:

gh actions-importer migrate azure-devops pipeline --config-file-path config.yml --target-url http://github.com/my-org/my-repo

Supported syntax for Azure DevOps pipelines

The following table shows the type of properties that GitHub Actions Importer is currently able to convert.

Azure Pipelines	GitHub Actions	Status
condition	`jobs.<job_id>.if` `jobs.<job_id>.steps[*].if`	Supported
container	`jobs.<job_id>.container` `jobs.<job_id>.name`	Supported
continuousIntegration	`on.<push>.<branches>` `on.<push>.<tags>` `on.<push>.paths`	Supported
job	`jobs.<job_id>`	Supported
pullRequest	`on.<pull_request>.<branches>` `on.<pull_request>.paths`	Supported
stage	`jobs`	Supported
steps	`jobs.<job_id>.steps`	Supported
strategy	`jobs.<job_id>.strategy.fail-fast` `jobs.<job_id>.strategy.max-parallel` `jobs.<job_id>.strategy.matrix`	Supported
timeoutInMinutes	`jobs.<job_id>.timeout-minutes`	Supported
variables	`env` `jobs.<job_id>.env` `jobs.<job_id>.steps.env`	Supported
manual deployment	`jobs.<job_id>.environment`	Partially supported
pool	`runners` `self hosted runners`	Partially supported
services	`jobs.<job_id>.services`	Partially supported
strategy	`jobs.<job_id>.strategy`	Partially supported
triggers	`on`	Partially supported
pullRequest	`on.<pull_request>.<tags>`	Unsupported
schedules	`on.schedule` `on.workflow_run`	Unsupported
triggers	`on.<event_name>.types`	Unsupported

For more information about supported Azure DevOps tasks, see the github/gh-actions-importer repository.

Environment variable mapping

GitHub Actions Importer uses the mapping in the table below to convert default Azure DevOps environment variables to the closest equivalent in GitHub Actions.

Azure Pipelines	GitHub Actions
`$(Agent.BuildDirectory)`	`${{ runner.workspace }}`
`$(Agent.HomeDirectory)`	`${{ env.HOME }}`
`$(Agent.JobName)`	`${{ github.job }}`
`$(Agent.OS)`	`${{ runner.os }}`
`$(Agent.ReleaseDirectory)`	`${{ github.workspace}}`
`$(Agent.RootDirectory)`	`${{ github.workspace }}`
`$(Agent.ToolsDirectory)`	`${{ runner.tool_cache }}`
`$(Agent.WorkFolder)`	`${{ github.workspace }}`
`$(Build.ArtifactStagingDirectory)`	`${{ runner.temp }}`
`$(Build.BinariesDirectory)`	`${{ github.workspace }}`
`$(Build.BuildId)`	`${{ github.run_id }}`
`$(Build.BuildNumber)`	`${{ github.run_number }}`
`$(Build.DefinitionId)`	`${{ github.workflow }}`
`$(Build.DefinitionName)`	`${{ github.workflow }}`
`$(Build.PullRequest.TargetBranch)`	`${{ github.base_ref }}`
`$(Build.PullRequest.TargetBranch.Name)`	`${{ github.base_ref }}`
`$(Build.QueuedBy)`	`${{ github.actor }}`
`$(Build.Reason)`	`${{ github.event_name }}`
`$(Build.Repository.LocalPath)`	`${{ github.workspace }}`
`$(Build.Repository.Name)`	`${{ github.repository }}`
`$(Build.Repository.Provider)`	`GitHub`
`$(Build.Repository.Uri)`	`${{ github.server.url }}/${{ github.repository }}`
`$(Build.RequestedFor)`	`${{ github.actor }}`
`$(Build.SourceBranch)`	`${{ github.ref }}`
`$(Build.SourceBranchName)`	`${{ github.ref }}`
`$(Build.SourceVersion)`	`${{ github.sha }}`
`$(Build.SourcesDirectory)`	`${{ github.workspace }}`
`$(Build.StagingDirectory)`	`${{ runner.temp }}`
`$(Pipeline.Workspace)`	`${{ runner.workspace }}`
`$(Release.DefinitionEnvironmentId)`	`${{ github.job }}`
`$(Release.DefinitionId)`	`${{ github.workflow }}`
`$(Release.DefinitionName)`	`${{ github.workflow }}`
`$(Release.Deployment.RequestedFor)`	`${{ github.actor }}`
`$(Release.DeploymentID)`	`${{ github.run_id }}`
`$(Release.EnvironmentId)`	`${{ github.job }}`
`$(Release.EnvironmentName)`	`${{ github.job }}`
`$(Release.Reason)`	`${{ github.event_name }}`
`$(Release.RequestedFor)`	`${{ github.actor }}`
`$(System.ArtifactsDirectory)`	`${{ github.workspace }}`
`$(System.DefaultWorkingDirectory)`	`${{ github.workspace }}`
`$(System.HostType)`	`build`
`$(System.JobId)`	`${{ github.job }}`
`$(System.JobName)`	`${{ github.job }}`
`$(System.PullRequest.PullRequestId)`	`${{ github.event.number }}`
`$(System.PullRequest.PullRequestNumber)`	`${{ github.event.number }}`
`$(System.PullRequest.SourceBranch)`	`${{ github.ref }}`
`$(System.PullRequest.SourceRepositoryUri)`	`${{ github.server.url }}/${{ github.repository }}`
`$(System.PullRequest.TargetBranch)`	`${{ github.event.base.ref }}`
`$(System.PullRequest.TargetBranchName)`	`${{ github.event.base.ref }}`
`$(System.StageAttempt)`	`${{ github.run_number }}`
`$(System.TeamFoundationCollectionUri)`	`${{ github.server.url }}/${{ github.repository }}`
`$(System.WorkFolder)`	`${{ github.workspace }}`

Templates

You can transform Azure DevOps templates with GitHub Actions Importer.

Limitations

GitHub Actions Importer is able to transform Azure DevOps templates with some limitations.

Azure DevOps templates used under the stages, deployments, and jobs keys are converted into reusable workflows in GitHub Actions. For more information, see Reusing workflows.
Azure DevOps templates used under the steps key are converted into composite actions. For more information, see Creating a composite action.
If you currently have job templates that reference other job templates, GitHub Actions Importer converts the templates into reusable workflows. Because reusable workflows cannot reference other reusable workflows, this is invalid syntax in GitHub Actions. You must manually correct nested reusable workflows.
If a template references an external Azure DevOps organization or GitHub repository, you must use the --credentials-file option to provide credentials to access this template. For more information, see Arguments et paramètres supplémentaires.
You can dynamically generate YAML using each expressions with the following caveats:
- Nested each blocks are not supported and cause the parent each block to be unsupported.
- each and contained if conditions are evaluated at transformation time, because GitHub Actions does not support this style of insertion.
- elseif blocks are unsupported. If this functionality is required, you must manually correct them.
- Nested if blocks are supported, but if/elseif/else blocks nested under an if condition are not.
- if blocks that use predefined Azure DevOps variables are not supported.

Supported templates

GitHub Actions Importer supports the templates listed in the table below.

Azure Pipelines	GitHub Actions	Status
Extending from a template	`Reusable workflow`	Supported
Job templates	`Reusable workflow`	Supported
Stage templates	`Reusable workflow`	Supported
Step templates	`Composite action`	Supported
Task groups in classic editor	Varies	Supported
Templates in a different Azure DevOps organization, project, or repository	Varies	Supported
Templates in a GitHub repository	Varies	Supported
Variable templates	`env`	Supported
Conditional insertion	`if` conditions on job/steps	Partially supported
Iterative insertion	Not applicable	Partially supported
Templates with parameters	Varies	Partially supported

Template file path names

GitHub Actions Importer can extract templates with relative or dynamic file paths with variable, parameter, and iterative expressions in the file name. However, there must be a default value set.

Variable file path name example

# File: azure-pipelines.yml
variables:
- template: 'templates/vars.yml'

steps:
- template: "./templates/$"

# File: templates/vars.yml
variables:
  one: 'simple_step.yml'

Parameter file path name example

parameters:
- name: template
  type: string
  default: simple_step.yml

steps:
- template: "./templates/${{ parameters.template }}"

Iterative file path name example

parameters:
- name: steps
  type: object
  default:
  - build_step
  - release_step
steps:
- ${{ each step in parameters.steps }}:
    - template: "$-variables.yml"

Template parameters

GitHub Actions Importer supports the parameters listed in the table below.

Azure Pipelines	GitHub Actions	Status
string	`inputs.string`	Supported
number	`inputs.number`	Supported
boolean	`inputs.boolean`	Supported
object	`inputs.string` with `fromJSON` expression	Partially supported
step	`step`	Partially supported
stepList	`step`	Partially supported
job	`job`	Partially supported
jobList	`job`	Partially supported
deployment	`job`	Partially supported
deploymentList	`job`	Partially supported
stage	`job`	Partially supported
stageList	`job`	Partially supported

Remarque

A template used under the step key with this parameter type is only serialized as a composite action if the steps are used at the beginning or end of the template steps. A template used under the stage, deployment, and job keys with this parameter type are not transformed into a reusable workflow, and instead are serialized as a standalone workflow.

Legal notice

Certaines parties ont été adaptées à partir de http://github.com/github/gh-actions-importer/ sous la licence MIT :

MIT License

Copyright (c) 2022 GitHub

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.

Migrating from Azure DevOps with GitHub Actions Importer

Dans cet article