Merge 01808b3aae into 41c5b9677a

chore(deps): bump github/codeql-action from 4.32.0 to 4.32.2 (#13558 )
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.0 to 4.32.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](b20883b0cd...45cbd0c69e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-11 05:39:45 +08:00 · 2026-02-10 20:24:33 +01:00 · 2026-02-08 21:09:55 +01:00 · 2026-02-08 21:09:10 +01:00 · 2021-12-23 21:52:55 +01:00 · 2021-12-22 20:02:11 +01:00
7 changed files with 103 additions and 7 deletions
--- a/.github/workflows/dependencies.yml
+++ b/.github/workflows/dependencies.yml
@ -13,7 +13,7 @@ jobs:
      contents: write # this is needed to push commits and branches
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
--- a/.github/workflows/installer.yml
+++ b/.github/workflows/installer.yml
@ -26,7 +26,7 @@ jobs:
          - macos-latest
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
@ -47,7 +47,7 @@ jobs:
      - test
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@ -24,7 +24,7 @@ jobs:
    if: github.repository == 'ohmyzsh/ohmyzsh'
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@ -17,7 +17,7 @@ jobs:
    if: github.repository == 'ohmyzsh/ohmyzsh'
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
      - name: Authenticate as @ohmyzsh
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@ -36,7 +36,7 @@ jobs:
    steps:
      - name: Harden the runner (Audit all outbound calls)
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
        with:
          egress-policy: audit
@ -60,6 +60,6 @@ jobs:
          retention-days: 5
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0
+        uses: github/codeql-action/upload-sarif@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4.32.2
        with:
          sarif_file: results.sarif
--- a/plugins/adduser/README.md
+++ b/plugins/adduser/README.md
@ -0,0 +1,26 @@
 # adduser
 This plugin adds support for installing "Oh My ZSH" when adding new users.
 To use it, add `adduser` to the plugins array of your `~/.zshrc` file:
 ```zsh
 plugins=(... adduser)
 ```
 ## Usage
 Just run `adduser` as you normally would do and now:
 1. The regular `adduser` command will run.
 2. The shell of the new user will switch to zsh
 3. "Oh My zsh will be installed (as if he would have ran `install.sh` himself).
 ## NOTES
 - It is assumed that the last argument will be the username.<br>*(In rare cases people provide the group as last argument)*
 - `useradd` behaviour is not changed.
 ## Author
 [Nikolas Garofil](https://github.com/ngaro)
--- a/plugins/adduser/adduser.plugin.zsh
+++ b/plugins/adduser/adduser.plugin.zsh
@ -0,0 +1,70 @@
 # Copyright (c) 2021 Nikolas Garofil
 _adduser_result() {
 	local result_string="Installation of 'Oh My Zsh' for '$new_user'"
 	#Erase the temporary copy of the installscript when necessary
 	if [[ ! -z $temp_installscript  ]] ; then
 		rm $temp_installscript
 	fi
 	#mention the result
 	if [[ $1 -eq 0 ]]; then
 		echo "$result_string succeeded."
 	else
 		echo "$result_string failed." > /dev/stderr
 	fi
 }
 adduser() {
 	local path_installscript="$ZSH/tools/install.sh"
 	local unattended_options=" --unattended"
 	local new_user=${@[$#]}
 	local temp_installscript; local unattended_installer; local install_as_user; local change_shell;
 	#Create user, errors will be reported by the 'real' adduser
 	#Don't use $new_user so that we have all args
 	command adduser $@ || return 1
 	echo "\nUser '$new_user' has been created. I will now try to install 'Oh My Zsh'"
 	if [[ ! -f $path_installscript ]] ; then
 		echo "Installationscript '$path_installscript' not available" > /dev/stderr;
 		_adduser_result 1
 		return 1;
 	fi
 	#copy install.sh to a new file in temp that we can give the right owner to execute
 	#and also make sure that after the install script we are no longer the new user
 	temp_installscript=$(mktemp)
 	cp $path_installscript $temp_installscript
 	chown $new_user $temp_installscript && chmod +x $temp_installscript
 	unattended_installer="$temp_installscript $unattended_options"
 	if [[ ( ! -x "$commands[sudo]" ) && ( ! -x "$commands[su]" )  ]] ; then
 		echo "You can't become $new_user (no 'sudo' or 'su' available)" > /dev/stderr;
 		_adduser_result 1
 		return 1;
 	fi
 	if [[ -x "$commands[sudo]" ]] ; then
 		install_as_user="sudo -u $new_user sh -c '$unattended_installer'"
 		change_shell="sudo chsh -s $commands[zsh] $new_user"
 	else
 		install_as_user="su -l $new_user -c '$unattended_installer'"
 		change_shell="su -c 'chsh -s $commands[zsh] $new_user'"
 	fi
 	eval ${install_as_user}
 	#mention the result before changing the shell (even with a bad result it's still installed)
 	if [ ! $? -eq 0 ] ; then
 		_adduser_result 1
 		return 1
 	fi
 	if [[ ! -x "$commands[chsh]" ]] ; then
 		echo "'chsh' is not available, change the shell manually." > /dev/stderr
 	fi
 	eval ${change_shell}
 }
Author	SHA1	Message	Date
Nikolas Garofil	5e0ff8ae4a	Merge `01808b3aae` into `41c5b9677a`	2026-02-10 20:24:33 +01:00
dependabot[bot]	41c5b9677a	chore(deps): bump github/codeql-action from 4.32.0 to 4.32.2 (#13558 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.0 to 4.32.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`b20883b0cd...45cbd0c69e`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-08 21:09:55 +01:00
dependabot[bot]	116be8badd	chore(deps): bump step-security/harden-runner from 2.14.1 to 2.14.2 (#13557 ) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.14.1 to 2.14.2. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](`e3f713f2d8...5ef0c079ce`) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.14.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-08 21:09:10 +01:00
Nikolas Garofil	01808b3aae	Fix(adduser): Better code structure	2021-12-23 21:52:55 +01:00
Nikolas Garofil	8b5f01a22c	Fix(adduser): better changing of shell	2021-12-22 20:02:11 +01:00
Nikolas Garofil	f26b428f8e	Fix(adduser): better returning to shell of original user	2021-12-22 19:18:04 +01:00
Nikolas Garofil	70edfaf348	Fix(adduser): better binary check	2021-12-22 19:16:50 +01:00
Nikolas Garofil	8ceff21474	Fix(adduser): correct echo redirect	2021-12-22 19:15:49 +01:00
Nikolas Garofil	510d7a778a	Fix(adduser): better way to avoid adduser() recursion	2021-12-22 19:15:09 +01:00
Nikolas Garofil	ecc5aab0e7	feat(adduser): add adduser plugin (#10441 ) Automatic "Oh My ZSH" installation when adding new users	2021-12-21 19:40:46 +01:00