Skip to content

Releases: YGNT7777/Merge-Monitor

Merge-Monitor

05 Jul 13:04
@YGNT7777 YGNT7777
v1.1.0
0d3fb0a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Merge-Monitor Latest
Latest

Merge-Monitor

This GitHub Action helps protect specific files in your repository from being modified by external contributors.

🚫 How It Works

  1. Add a file named .lockedFiles to the root of your repository.
  2. List the file paths you want to protect inside .lockedFiles.

📄 Example : .lockedFiles

src/secure/config.yml
secrets.json
  • Any pull request that modifies these files will be blocked automatically.

✅ Bypass Label

To allow a pull request that modifies locked files to go through anyway, add the label:
BYPASS_LABEL

  • This label will bypass the Merge-Monitor check.

📺 Demo

If there has been changes:

final

No changes

ok

Using label

withLabel

📥 How to Install

1. Download the Action

  • Go to the Releases page of this repository.
  • Download the latest release ZIP file.

2. Add to Your Repo

  • Extract the contents into your own repository.

🏗️ Architecture

.github/
├── actions/
│   └── check-sensitive-files/
│       ├── Dockerfile            # Builds the environment for the action
│       ├── action.yml            # Defines what the action does and how it runs
│       └── check.py              # The script that performs the file check
└── workflows/
    └── pr-check.yml              # The workflow that triggers the action on every PR

.lockedFiles                      # List of files that should not be modified

3. Configure the Workflow

⚠️ This step is already configured in the ZIP release.
But in case it doesn't work or you want to set it up manually

Create a file at .github/workflows/locked-files.yml with the following content:

name: 'PR Check: Sensitive Files'

on:
  pull_request_target:
    types: [opened, synchronize, reopened]

permissions:
  pull-requests: write
  issues: write

jobs:
  check-sensitive-files:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout repository
        uses: actions/checkout@v3

      - name: Run Check Sensitive Files Action
        uses: ./.github/actions/check-sensitive-files
        with:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
          PR_NUMBER: ${{ github.event.pull_request.number }}
          BYPASS_LABEL: ${{ secrets.BYPASS_LABEL }}

4. Edit .lockedFiles

List the files you want to protect, one per line.

5. Commit and Push

Assets 2
Loading

Merge-Monitor

20 Apr 12:11
@YGNT7777 YGNT7777
v1.0.0
ec5a754
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
Merge-Monitor

Merge-Monitor

A GitHub Action that blocks PRs if they modify any files listed in lockedFiles.txt.

How to use:

When you add the github action to your repo, on the lockedFiles.txt add the name of the files that you don't want outsiders to change

If you want to allow a pull request to go through even if it modifies locked files, you can add a special label: BYPASS_LABEL
By adding the label you skip the check

Demos:

If there has been changes:

closeTest

No changes

ok

You can also use label only if you want to make changes to files that isn't allowed

Using label

withLabel

Loading