pipechecker 0.2.2

CI/CD Pipeline Auditor - Catch errors before you push
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206

# 🔍 Pipecheck

[![CI](https://github.com/Ayyankhan101/PipeCheck/workflows/CI/badge.svg)](https://github.com/Ayyankhan101/PipeCheck/actions)
[![Crates.io](https://img.shields.io/crates/v/pipecheck.svg)](https://crates.io/crates/pipecheck)
[![npm](https://img.shields.io/npm/v/pipecheck.svg)](https://www.npmjs.com/package/pipecheck)
[![License](https://img.shields.io/badge/license-MIT%2FApache--2.0-blue.svg)](LICENSE-MIT)

**A blazingly fast CI/CD pipeline auditor that catches errors before you push.**

Stop wasting time debugging CI failures. Pipecheck validates your GitHub Actions, GitLab CI, and CircleCI configurations locally, catching syntax errors, circular dependencies, and security issues instantly.

## 🚀 Quick Start

### Install via npm (recommended)
```bash
npm install -g pipecheck
```

### Install via Cargo
```bash
cargo install pipecheck
```

### Run
```bash
pipecheck .github/workflows/ci.yml
```

## ✨ Features

- ✅ **Syntax Validation** - Parse and validate GitHub Actions, GitLab CI, and CircleCI configs
- 🔄 **Dependency Analysis** - Detect circular dependencies in job workflows
- 🔐 **Secrets Auditing** - Identify hardcoded secrets and environment variable issues
- đŸŗ **Docker Validation** - Check Docker image references and tags
- 📊 **Multiple Output Formats** - Text and JSON output for CI integration
- ⚡ **Fast** - Written in Rust for maximum performance
- đŸŽ¯ **Zero Config** - Works out of the box

## 💡 Why Pipecheck?

**Before Pipecheck:**
```
git push
→ Wait 5 minutes
→ CI fails: "Circular dependency detected"
→ Fix locally
→ git push again
→ Wait 5 minutes...
```

**With Pipecheck:**
```
pipecheck .github/workflows/ci.yml
→ ❌ ERROR: Circular dependency detected: job-a -> job-c -> job-b
→ Fix immediately
→ git push with confidence ✅
```

## 📖 Usage

### Quick Start

```bash
# Auto-detect and check workflow
pipecheck

# Check specific file
pipecheck .github/workflows/ci.yml

# Check all workflows
pipecheck --all

# Interactive TUI mode
pipecheck --tui
```

### All Options

```
CI/CD Pipeline Auditor - Catch errors before you push

Usage: pipecheck [OPTIONS] [FILE]

Arguments:
  [FILE]  Path to pipeline configuration file (auto-detects if not provided)

Options:
  -a, --all              Check all workflow files in directory
      --install-hook     Install pre-commit hook
  -w, --watch            Watch for file changes and re-check
      --fix              Automatically fix issues where possible
      --tui              Interactive terminal UI mode
  -f, --format <FORMAT>  Output format (text, json) [default: text]
      --no-docker        Skip Docker image checks
  -s, --strict           Enable strict mode (warnings as errors)
  -h, --help             Print help
  -V, --version          Print version
```

### Interactive Features

```bash
# Install pre-commit hook
pipecheck --install-hook

# Watch mode - auto-recheck on file changes
pipecheck --watch

# Interactive TUI mode
pipecheck --tui

# Auto-fix issues (Coming soon!)
pipecheck --fix
```

### Configuration File

Create `.pipecheckrc.yml` in your project root:

```yaml
ignore:
  - .github/workflows/old-*.yml
  
rules:
  circular_dependencies: true
  missing_secrets: true
  docker_latest_tag: true
```

### Output Formats

```bash
# Text output (default)
pipecheck .github/workflows/ci.yml

# JSON output for CI integration
pipecheck .github/workflows/ci.yml --format json

# Strict mode (warnings as errors)
pipecheck .github/workflows/ci.yml --strict

# Skip Docker checks
pipecheck .github/workflows/ci.yml --no-docker
```

## 📋 Example Output

```
Provider: GitHubActions

1 errors, 0 warnings

❌ ERROR: Circular dependency detected: job-a -> job-c -> job-b
   💡 Remove one of the dependencies to break the cycle

ℹī¸  INFO: Job 'build' uses secret: API_KEY
   💡 Ensure this secret is configured in repository settings
```

## 🔧 Supported Platforms

| Platform | Status | File Pattern |
|----------|--------|--------------|
| **GitHub Actions** | ✅ Full Support | `.github/workflows/*.yml` |
| **GitLab CI** | ✅ Full Support | `.gitlab-ci.yml` |
| **CircleCI** | ✅ Full Support | `.circleci/config.yml` |

## 🏗ī¸ Use in CI/CD

### GitHub Actions
```yaml
- name: Validate workflows
  run: |
    npm install -g pipecheck
    pipecheck .github/workflows/*.yml --strict
```

### GitLab CI
```yaml
validate:
  script:
    - cargo install pipecheck
    - pipecheck .gitlab-ci.yml --strict
```

### Pre-commit Hook
```bash
#!/bin/bash
pipecheck .github/workflows/*.yml --strict || exit 1
```

## 🤝 Contributing

Contributions are welcome! See [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines.

## 📝 License

Licensed under either of:
- MIT License ([LICENSE-MIT](LICENSE-MIT))
- Apache License, Version 2.0 ([LICENSE-APACHE](LICENSE-APACHE))

at your option.

## 🌟 Show Your Support

If Pipecheck saves you time, give it a ⭐ on GitHub!