simenandre
commented
1 year ago config-map currently needs to be defined using YAML, as we only support that.
Using you're example, we can rewrite that as such:
- uses: pulumi/actions@v4.4.0
with:
command: up
comment-on-pr: true
stack-name: ${{ steps.extract_branch.outputs.branch }}
work-dir: infrastructure_generation/gcp
upsert: true
refresh: true
config-map: |
gcsCreds:
value: ${{ secrets.GCLOUD_SERVICE_ACCOUNT_JSON_DEV }}
secret: falseNotice that | is still there, as it is actually a string that is later parsed to YAML.
Off-topic on GCP Credentials: I suggest you pass Google Credentials using application default credentials. Passing GCP credentials can be unsafe and should be avoided (google-github-actions/auth is really nice for this when working with application default and Github Action). Further, you should consider dropping JSON keys in favour of authenticating via Workload Identity Federation.
What happened?
Using pulumi up in github actions, but discovered that the config got serialized incorrectly.
Expected Behavior
Configs are set and serialized correctly.
Steps to reproduce
Put gcp config json (or any json) in github action secrets. pass that secret into the action using the config param.
Use pulumi config refresh locally to see the config, it shows as
Output of
pulumi aboutFound no pending operations associated with alex-pulumi-cleanup
Backend Name pulumi.com URL https://app.pulumi.com/alexxi19 User alexxi19 Organizations alexxi19
Additional context
Seems like a json serialization issue with the input. Saw something in the changelog and tried to use
- uses: pulumi/actions@v4.4.0but that also didn't work.Contributing
Vote on this issue by adding a 👍 reaction. To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already).