mirror of https://github.com/bahdotsh/wrkflw.git synced 2026-05-18 05:05:35 +02:00

Go to file

bahdotsh 500f6a3814 docs: run both Docker and Podman in the demo

Showing the runtime indicator cycle through four values was
technically correct but a bit hand-wavy — you see the badge change,
not the actual container backend doing work.

Run the same workflow twice: once on Docker, then reset with \`R\`,
cycle the runtime to Podman with \`e\`, and run again. Both
Execution + Logs tabs now show real streaming output with the
runtime badge matching the backend that's actually running, which
is the thing we were trying to demonstrate in the first place.

2026-04-21 23:24:59 +05:30

.github

…

crates

feat(ui): ship screens 4, 7, 8 and the Tweaks overlay (#105 )

2026-04-21 22:47:50 +05:30

examples

feat(ui): ship screens 4, 7, 8 and the Tweaks overlay (#105 )

2026-04-21 22:47:50 +05:30

schemas

…

scripts

…

tests

docs: clean up READMEs, remove dead files and bloat (#84 )

2026-04-02 23:58:51 +05:30

.gitignore

fix(executor): propagate composite action outputs back to caller (#94 )

2026-04-13 15:06:43 +05:30

.gitlab-ci.yml

…

BREAKING_CHANGES.md

feat: add diff-aware selective execution and watch mode (#91 )

2026-04-11 20:27:34 +05:30

Cargo.lock

feat(ui): ship screens 4, 7, 8 and the Tweaks overlay (#105 )

2026-04-21 22:47:50 +05:30

Cargo.toml

feat: add diff-aware selective execution and watch mode (#91 )

2026-04-11 20:27:34 +05:30

CLAUDE.md

…

cliff.toml

…

demo.gif

docs: run both Docker and Podman in the demo

2026-04-21 23:24:59 +05:30

INDEX.md

feat(executor): easy GHA emulation fixes for better compatibility (#82 )

2026-04-02 18:00:41 +05:30

LICENSE

…

publish_crates.sh

…

README.md

docs: clean up READMEs, remove dead files and bloat (#84 )

2026-04-02 23:58:51 +05:30

README.md

WRKFLW

A command-line tool for validating and executing GitHub Actions workflows locally. Test your workflows on your machine before pushing to GitHub.

Features

TUI interface — interactive terminal UI for browsing, running, and monitoring workflows
Workflow validation — syntax checks, structural validation, and composite action input cross-checking with CI/CD-friendly exit codes
Local execution — run workflows using Docker, Podman, or emulation mode (no containers)
Job selection — run individual jobs with --job flag or via TUI job selection mode
Job dependency resolution — automatic ordering based on needs with parallel execution of independent jobs
Action support — Docker container actions, JavaScript actions, composite actions, and local actions
Reusable workflows — execute caller jobs via jobs.<id>.uses (local or owner/repo/path@ref)
GitHub context emulation — environment variables, GITHUB_OUTPUT, GITHUB_ENV, GITHUB_PATH, GITHUB_STEP_SUMMARY
Matrix builds — full support for include, exclude, max-parallel, and fail-fast
Secrets management — multiple providers (env, file, Vault, AWS, Azure, GCP) with masking and encryption
Remote triggering — trigger workflow_dispatch runs on GitHub or GitLab pipelines
GitLab support — validate and trigger GitLab CI pipelines

Installation

cargo install wrkflw

Or build from source:

git clone https://github.com/bahdotsh/wrkflw.git
cd wrkflw
cargo build --release

Quick Start

# Launch the TUI (auto-detects .github/workflows)
wrkflw

# Validate workflows
wrkflw validate

# Run a workflow
wrkflw run .github/workflows/ci.yml

Usage

Validation

# Validate all workflows in .github/workflows
wrkflw validate

# Validate specific files or directories
wrkflw validate path/to/workflow.yml
wrkflw validate path/to/workflows/

# Validate multiple paths
wrkflw validate flow-1.yml flow-2.yml path/to/workflows/

# GitLab pipelines
wrkflw validate .gitlab-ci.yml --gitlab

# Verbose output
wrkflw validate --verbose path/to/workflow.yml

Exit codes: 0 = all valid, 1 = validation failures, 2 = usage error. Use --no-exit-code to disable.

Execution

# Run with Docker (default)
wrkflw run .github/workflows/ci.yml

# Run with Podman
wrkflw run --runtime podman .github/workflows/ci.yml

# Run in emulation mode (no containers)
wrkflw run --runtime emulation .github/workflows/ci.yml

# Run a specific job
wrkflw run --job build .github/workflows/ci.yml

# List jobs in a workflow
wrkflw run --jobs .github/workflows/ci.yml

# Preserve failed containers for debugging
wrkflw run --preserve-containers-on-failure .github/workflows/ci.yml

TUI

# Open TUI with default directory
wrkflw tui

# Open with specific runtime
wrkflw tui --runtime podman

Controls:

Key	Action
`Tab` / `1-4`	Switch tabs (Workflows, Execution, Logs, Help)
`Up/Down` or `j/k`	Navigate
`Space`	Toggle selection
`Enter`	Run / View details
`r`	Run selected workflows
`a` / `n`	Select all / Deselect all
`e`	Cycle runtime (Docker / Podman / Emulation)
`v`	Toggle Execution / Validation mode
`t`	Trigger remote workflow
`q` / `Esc`	Quit / Back

Remote Triggering

Trigger workflow_dispatch events on GitHub or GitLab.

# GitHub (requires GITHUB_TOKEN env var)
wrkflw trigger workflow-name --branch main --input key=value

# GitLab (requires GITLAB_TOKEN env var)
wrkflw trigger-gitlab --branch main --variable key=value

Runtime Modes

Mode	Description	Best for
Docker (default)	Full container isolation, closest to GitHub runners	Production, CI/CD
Podman	Rootless containers, no daemon required	Security-conscious environments
Emulation	Runs directly on host, no containers needed	Quick local testing

Reusable Workflows

jobs:
  call-local:
    uses: ./.github/workflows/shared.yml

  call-remote:
    uses: my-org/my-repo/.github/workflows/shared.yml@v1
    with:
      foo: bar
    secrets:
      token: ${{ secrets.MY_TOKEN }}

Local refs resolve relative to the working directory
Remote refs are shallow-cloned at the specified @ref
with: entries become INPUT_<KEY> env vars; secrets: become SECRET_<KEY>

Limitations: outputs from called workflows are not propagated back; secrets: inherit is not supported; private repos for remote uses: are not yet supported.

Secrets Management

WRKFLW supports GitHub Actions-compatible ${{ secrets.* }} syntax with multiple providers:

# Environment variables (simplest)
export GITHUB_TOKEN="ghp_..."
wrkflw run .github/workflows/ci.yml

# File-based secrets (JSON, YAML, or .env format)
# Configure in ~/.wrkflw/secrets.yml

Supported providers: environment variables, file-based, HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, Google Cloud Secret Manager. See the secrets demo for detailed examples.

Limitations

Supported

Workflow syntax validation with exit codes
Job dependency resolution and parallel execution
Matrix builds, environment variables, GitHub context
Container, JavaScript, composite, and local actions
Reusable workflows (caller jobs)
Environment files (GITHUB_OUTPUT, GITHUB_ENV, GITHUB_PATH, GITHUB_STEP_SUMMARY)
TUI and CLI interfaces
Container cleanup (even on Ctrl+C)

Not Supported

GitHub encrypted secrets and fine-grained permissions
actions/cache (no persistent cache between runs)
Artifact upload/download between jobs
Event triggers other than workflow_dispatch
Windows and macOS runners
Job/step timeouts, concurrency, and cancellation
Service containers in emulation mode
Reusable workflow output propagation (needs.<id>.outputs.*)

Project Structure

WRKFLW is organized as a Cargo workspace with focused crates:

Crate	Purpose
`wrkflw`	CLI binary and library entry point
`wrkflw-executor`	Workflow execution engine
`wrkflw-parser`	Workflow file parsing and schema validation
`wrkflw-evaluator`	Structural evaluation of workflow files
`wrkflw-validators`	Validation rules for jobs, steps, triggers
`wrkflw-runtime`	Container and emulation runtime abstractions
`wrkflw-ui`	Terminal user interface
`wrkflw-models`	Shared data structures
`wrkflw-matrix`	Matrix expansion utilities
`wrkflw-secrets`	Secrets management with multiple providers
`wrkflw-github`	GitHub API integration
`wrkflw-gitlab`	GitLab API integration
`wrkflw-logging`	In-memory logging for TUI/CLI
`wrkflw-utils`	Shared helpers

License

MIT License - see LICENSE for details.