Update README

Author: segiddins

LICENSE

@@ -1,4 +1,3 @@
-
 The MIT License (MIT)
 
 Copyright (c) 2018 GitHub, Inc. and contributors
@@ -19,4 +18,4 @@ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
-THE SOFTWARE.
+THE SOFTWARE.

README.md

@@ -1,105 +1,117 @@
 <p align="center">
-  <a href="https://github.com/actions/typescript-action/actions"><img alt="typescript-action status" src="https://github.com/actions/typescript-action/workflows/build-test/badge.svg"></a>
+  <a href="https://github.com/rubygems/configure-rubygems-credentials/actions">
+  <img alt="configure-rubygems-credentials-action status" src="https://github.com/rubygems/configure-rubygems-credentials/workflows/build-test/badge.svg">
+  </a>
 </p>
 
-# Create a JavaScript Action using TypeScript
+## Configure RubyGems Credentials for GitHub Actions
 
-Use this template to bootstrap the creation of a TypeScript action.:rocket:
+Configure your RubyGems credentials and for use in other
+GitHub Actions. This action implements OIDC support, writes gem credentials files,
+and exports environment variables used by both `rubygems` and
+`bundler` for your other Actions to use.
 
-This template includes compilation support, tests, a validation workflow, publishing, and versioning guidance.  
+### Table of Contents
 
-If you are new, there's also a simpler introduction.  See the [Hello World JavaScript Action](https://github.com/actions/hello-world-javascript-action)
+<!-- toc -->
 
-## Create an action from this template
+- [Usage](#usage)
+  - [Examples](#examples)
+    - [OIDC (recommended)](#oidc-recommended)
+    - [Static API token in repository secrets](#static-api-token-in-repository-secrets)
+  - [Use with the RubyGems CLI](#use-with-the-rubygems-cli)
+- [License Summary](#license-summary)
+- [Security Disclosures](#security-disclosures)
 
-Click the `Use this Template` and provide the new repo details for your action
+<!-- tocstop -->
 
-## Code in Main
+## Usage
 
-> First, you'll need to have a reasonably modern version of `node` handy. This won't work with versions older than 9, for instance.
+We recommend that
+you use GitHub's OIDC provider in conjunction with a configured
+RubyGems OIDC API Key Role.
 
-Install the dependencies  
-```bash
-$ npm install
-```
+To do that, you would add the following step to your workflow:
 
-Build the typescript and package it for distribution
-```bash
-$ npm run build && npm run package
+```yaml
+- name: Configure RubyGems Credentials
+  uses: rubygems/configure-rubygems-credentials@main
+  with:
+    role-to-assume: 3
 ```
 
-Run the tests :heavy_check_mark:  
-```bash
-$ npm test
+You can use this action with the `rubygems` or `bundler` command line tools,
+or run this action multiple times
+to use different RubyGems.org accounts or OIDC API Key roles in the same GitHub Actions
+workflow. As an example, here is a complete workflow file that pushes a gem release.
 
- PASS  ./index.test.js
-  ✓ throws invalid number (3ms)
-  ✓ wait 500 ms (504ms)
-  ✓ test runs (95ms)
-
-...
+```yaml
+on:
+  - push
+
+jobs:
+  job:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      id-token: write
+    steps:
+      - uses: rubygems/configure-rubygems-credentials@main
+        with:
+          role-to-assume: 2
+          gem-server: 'https://oidc-api-token.rubygems.org'
+          audience: 'https://oidc-api-token.rubygems.org'
+      - uses: actions/checkout@v3
+      - name: Set remote URL
+        run: |
+          git config --global user.email "$(git log -1 --pretty=format:'%ae')"
+          git config --global user.name "$(git log -1 --pretty=format:'%an')"
+          git remote set-url origin "https://x-access-token:${{ secrets.GITHUB_TOKEN }}@github.com/$GITHUB_REPOSITORY"
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: '3.2.1'
+          bundler-cache: true
+      - name: Release
+        run: bundle exec rake release
 ```
 
-## Change action.yml
-
-The action.yml defines the inputs and output for your action.
-
-Update the action.yml with your name, description, inputs and outputs for your action.
-
-See the [documentation](https://help.github.com/en/articles/metadata-syntax-for-github-actions)
-
-## Change the Code
+See [action.yml](action.yml) for the full documentation for this action's inputs
+and outputs.
 
-Most toolkit and CI/CD operations involve async operations so the action is run in an async function.
+### Examples
 
-```javascript
-import * as core from '@actions/core';
-...
+#### OIDC (recommended)
 
-async function run() {
-  try { 
-      ...
-  } 
-  catch (error) {
-    core.setFailed(error.message);
-  }
-}
-
-run()
+```yaml
+- name: Configure RubyGems Credentials
+  uses: rubygems/configure-rubygems-credentials@main
+  with:
+    role-to-assume: 3
 ```
 
-See the [toolkit documentation](https://github.com/actions/toolkit/blob/master/README.md#packages) for the various packages.
+In this example, the Action will load the OIDC token from the GitHub-provided environment variable and use it to assume the role `3`.
 
-## Publish to a distribution branch
+#### Static API token in repository secrets
 
-Actions are run from GitHub repos so we will checkin the packed dist folder. 
-
-Then run [ncc](https://github.com/zeit/ncc) and push the results:
-```bash
-$ npm run package
-$ git add dist
-$ git commit -a -m "prod dependencies"
-$ git push origin releases/v1
+```yaml
+- name: Configure RubyGems Credentials
+  uses: rubygems/configure-rubygems-credentials@main
+  with:
+    api-token: ${{ secrets.RUBYGEMS_API_TOKEN }}
 ```
 
-Note: We recommend using the `--license` option for ncc, which will create a license file for all of the production node modules used in your project.
+In this example, the secret `RUBYGEMS_API_TOKEN` contains a string like `rubygems_1a072a969ecdd84bb190c3c218e13e3c6f5d419f3f0f5b22`.
 
-Your action is now published! :rocket: 
+### Use with the RubyGems CLI
 
-See the [versioning documentation](https://github.com/actions/toolkit/blob/master/docs/action-versioning.md)
+This workflow does _not_ install the rubygems
+into your environment.
 
-## Validate
-
-You can now validate the action by referencing `./` in a workflow in your repo (see [test.yml](.github/workflows/test.yml))
-
-```yaml
-uses: ./
-with:
-  milliseconds: 1000
-```
+## License Summary
 
-See the [actions tab](https://github.com/actions/typescript-action/actions) for runs of this action! :rocket:
+This code is made available under the MIT license.
 
-## Usage:
+## Security Disclosures
 
-After testing you can [create a v1 tag](https://github.com/actions/toolkit/blob/master/docs/action-versioning.md) to reference the stable and latest V1 action
+If you would like to report a potential security issue in this project, please do not create a GitHub issue. Instead, please follow the instructions [here](https://rubygems.org/pages/security) or [email the RubyGems security team](mailto:[email protected]).