feat: first working version

Author: derberg

.eslintignore

@@ -0,0 +1,3 @@
+node_modules
+dist
+clones

.eslintrc

@@ -0,0 +1,98 @@
+env:
+  node: true
+  es6: true
+  jest/globals: true
+
+plugins:
+  - sonarjs
+  - jest
+
+extends:
+  - plugin:sonarjs/recommended
+
+parserOptions:
+  ecmaVersion: 2018
+
+rules:
+  # Ignore Rules
+  strict: 0
+  no-underscore-dangle: 0
+  no-mixed-requires: 0
+  no-process-exit: 0
+  no-warning-comments: 0
+  curly: 0
+  no-multi-spaces: 0
+  no-alert: 0
+  consistent-return: 0
+  consistent-this: [0, self]
+  func-style: 0
+  max-nested-callbacks: 0
+  camelcase: 0
+
+  # Warnings
+  no-debugger: 1
+  no-empty: 1
+  no-invalid-regexp: 1
+  no-unused-expressions: 1
+  no-native-reassign: 1
+  no-fallthrough: 1
+  sonarjs/cognitive-complexity: 1
+
+  # Errors
+  eqeqeq: 2
+  no-undef: 2
+  no-dupe-keys: 2
+  no-empty-character-class: 2
+  no-self-compare: 2
+  valid-typeof: 2
+  no-unused-vars: [2, { "args": "none" }]
+  handle-callback-err: 2
+  no-shadow-restricted-names: 2
+  no-new-require: 2
+  no-mixed-spaces-and-tabs: 2
+  block-scoped-var: 2
+  no-else-return: 2
+  no-throw-literal: 2
+  no-void: 2
+  radix: 2
+  wrap-iife: [2, outside]
+  no-shadow: 0
+  no-use-before-define: [2, nofunc]
+  no-path-concat: 2
+  valid-jsdoc: [0, {requireReturn: false, requireParamDescription: false, requireReturnDescription: false}]
+
+  # stylistic errors
+  no-spaced-func: 2
+  semi-spacing: 2
+  quotes: [2, 'single']
+  key-spacing: [2, { beforeColon: false, afterColon: true }]
+  indent: [2, 2]
+  no-lonely-if: 2
+  no-floating-decimal: 2
+  brace-style: [2, 1tbs, { allowSingleLine: true }]
+  comma-style: [2, last]
+  no-multiple-empty-lines: [2, {max: 1}]
+  no-nested-ternary: 2
+  operator-assignment: [2, always]
+  padded-blocks: [2, never]
+  quote-props: [2, as-needed]
+  keyword-spacing: [2, {'before': true, 'after': true, 'overrides': {}}]
+  space-before-blocks: [2, always]
+  array-bracket-spacing: [2, never]
+  computed-property-spacing: [2, never]
+  space-in-parens: [2, never]
+  space-unary-ops: [2, {words: true, nonwords: false}]
+  wrap-regex: 2
+  linebreak-style: [2, unix]
+  semi: [2, always]
+  arrow-spacing: [2, {before: true, after: true}]
+  no-class-assign: 2
+  no-const-assign: 2
+  no-dupe-class-members: 2
+  no-this-before-super: 2
+  no-var: 2
+  object-shorthand: [2, always]
+  prefer-arrow-callback: 2
+  prefer-const: 2
+  prefer-spread: 2
+  prefer-template: 2

.gitignore

@@ -0,0 +1,2 @@
+node_modules
+clones

README.md

@@ -1,2 +1,58 @@
-# org-projects-dependency-manager
+# Organization Projects' Dependency Manager
 GitHub Action that handles automated update of dependencies in package.json between projects from the same GitHub organization.
+
+<!-- toc -->
+
+- [Why I Created This Action?](#why-i-created-this-action)
+- [Action Flow](#action-flow)
+- [Configuration](#configuration)
+- [Examples](#examples)
+  * [Minimum Workflow](#minimum-workflow)
+  * [Advanced Workflow](#advanced-workflow)
+- [Development](#development)
+
+<!-- tocstop -->
+
+## Why I Created This Action?
+
+//TODO
+
+## Action Flow
+
+ <img src="diagram.png" alt="flow diagram" width="20%"> 
+
+## Configuration
+
+Name | Description | Required | Default
+--|------|--|--
+github_token | Token to use GitHub API. It must have "repo" scopes so it can push to repos. It cannot be the default GitHub Actions token GITHUB_TOKEN. GitHub Action token's permissions are limited to the repository that contains your workflows. Provide token of the user that has rights to push to the repos that this action is suppose to update.  | true | -
+packagejson_path | Path to package.json file if not located in the root of the project. Provide just the path without file name. In the format: `./nested/location`. | false | `./`
+committer_username | The username (not display name) of the committer will be used to commit changes in the workflow file in a specific repository. In the format `web-flow`. | false | `web-flow`
+committer_email | The committer's email that will be used in the commit of changes in the workflow file in a specific repository. In the format `[email protected]`.| false | `[email protected]`
+commit_message_prod | It is used as a commit message when bumping dependency from "dependencies" section in package.json. In case dependency is located in both dependencies and devDependencies of dependant, then prod commit message is used. It is also used as a title of the pull request that is created by this action. | false | `Update dependency`
+commit_message_dev | It is used as a commit message when bumping dependency from "devDependencies" section in package.json. It is also used as a title of the pull request that is created by this action. | false | `Update devDependency`
+repos_to_ignore | Comma-separated list of repositories that should not get updates from this action. Action already ignores the repo in which the action is triggered so you do not need to add it explicitly. In the format `repo1,repo2`. | false | -
+
+## Examples
+
+//TODO
+
+### Minimum Workflow
+
+### Advanced Workflow
+
+## Development
+
+```bash
+# GITHUB_TOKEN provide personal GitHub token with scope to push to repos
+# GITHUB_REPOSITORY provide name of org/user and the repo in which this workflow is suppose to run
+# PACKAGE_JSON_LOC=test is a path to package.json file against you want to test
+GITHUB_TOKEN=token PACKAGE_JSON_LOC=test GITHUB_REPOSITORY="lukasz-lab/.github" npm start
+```
+
+## TODO
+
+This action should not be used yet. I need to:
+- write decent amount of tests as this action can do some harm
+- make final clarification of search usage
+- provide examples

action.yml

@@ -0,0 +1,51 @@
+name: Organization Projects' Dependency Manager
+description: This action handles automated update of dependencies in package.json between projects from the same GitHub organization. 
+inputs:
+  github_token:
+    description: >
+      Token to use GitHub API. It must have "repo" scopes so it can push to repos.
+      It cannot be the default GitHub Actions token GITHUB_TOKEN. GitHub Action token's permissions are limited to the repository that contains your workflows.
+      Provide token of the user that has rights to push to the repos that this action is suppose to update. 
+    required: true
+  committer_username:
+    description: >
+      The username (not display name) of the committer that will be used in the commit of changes in the workflow file in specific repository.
+      In the format `web-flow`.
+    default: web-flow
+    required: false
+  committer_email:
+    description: >
+      The email of the committer that will be used in the commit of changes in the workflow file in specific repository.
+      In the format `[email protected]`.
+    default: [email protected]
+    required: false
+  commit_message_prod:
+    description: >
+      It is used as a commit message when bumping dependency from "dependencies" section in package.json. 
+      In case dependency is located in both dependencies and devDependencies of dependant, then prod commit message is used.
+      It is also used as a title of the pull request that is created by this action.
+    default: Update dependency
+    required: false
+  commit_message_dev:
+    description: >
+      It is used as a commit message when bumping dependency from "devDependencies" section in package.json. 
+      It is also used as a title of the pull request that is created by this action.
+    default: Update devDependency
+    required: false
+  packagejson_path:
+    description: >
+      Path to package.json file if not located in the root of the project. Provide just the path without file name. In the format: `./nested/location`.
+    default: ./
+    required: false
+  repos_to_ignore:
+    description: >
+      Comma-separated list of repositories that should not get updates from this action.
+      Action already ignores the repo in which the action is triggered so you do not need to add it explicitly.
+      In the format: `repo1,repo2`.
+    required: false
+runs:
+  using: node12
+  main: dist/index.js
+branding:
+  icon: chevrons-up
+  color: gray-dark