AgentSkillsCN

jenkinsfile-to-gha

将 Jenkins 流水线(Jenkinsfile)转换为 GitHub Actions 工作流。适用于从 Jenkins 迁移 CI/CD 到 GitHub Actions 时使用,或当用户提供了 Jenkinsfile 并希望生成 GHA 工作流时使用。

SKILL.md
--- frontmatter
name: jenkinsfile-to-gha
description: Convert Jenkins pipelines (Jenkinsfiles) to GitHub Actions workflows. Use when migrating CI/CD from Jenkins to GitHub Actions, or when user provides a Jenkinsfile and wants a GHA workflow.
license: MIT
compatibility: Works with Claude Code and similar agents. No external tools required.
metadata:
  author: kenny
  version: "2.0"

Jenkinsfile to GitHub Actions Converter

Convert Jenkins Declarative and Scripted Pipelines to GitHub Actions workflows.

When to Use This Skill

  • User provides a Jenkinsfile and wants GitHub Actions equivalent
  • User asks to migrate from Jenkins to GitHub Actions
  • User mentions Jenkins pipeline conversion
  • User has CI/CD in Jenkins and wants to move to GHA

Quick Reference

JenkinsGitHub Actions
pipeline {}.github/workflows/*.yml
agent anyruns-on: ubuntu-latest
stages {}jobs:
steps {}steps:
environment {}env:
when { branch 'main' }if: github.ref == 'refs/heads/main'
parallel {}Multiple jobs (parallel by default)
post { always {} }if: always()
input (approval)environment: with reviewers

See references/concept-mappings.md for complete mappings.

Conversion Workflow

1. Analyze the Jenkinsfile

Identify:

  • Pipeline type (Declarative vs Scripted)
  • Stages and their purposes
  • Build tools used (Maven, Gradle, npm, etc.)
  • Jenkins plugins referenced
  • Environment variables and credentials
  • Triggers (cron, webhooks, SCM polling)
  • Post-build actions
  • Shared library usage (@Library)

2. Ask Clarifying Questions

When converting complex pipelines, ask:

  1. Shared libraries - "I see you're using my-lib. Do you have an equivalent reusable workflow?"
  2. Credentials - "This pipeline uses credentials 'deploy-key'. What secrets should I reference?"
  3. Triggers - "Jenkins uses pollSCM every 15 min. Should I convert to push-based triggers?"
  4. Approvals - "There's an input step. Use GitHub Environments with required reviewers?"
  5. Action mirrors - "Do you need internal action mirrors? What's your prefix?"
  6. Runners - "GitHub-hosted or self-hosted runners? What labels?"

3. Generate Workflow

Apply mappings from reference docs:

4. Document Setup Requirements

Always list:

  • Secrets to configure
  • GitHub Environments to create
  • OIDC trust policies (if using)
  • Any manual steps needed

Examples

Key Patterns

Parallel Stages → Parallel Jobs

groovy
// Jenkins
parallel {
    stage('Unit') { steps { sh 'npm test:unit' } }
    stage('Lint') { steps { sh 'npm run lint' } }
}
yaml
# GitHub Actions - jobs run in parallel by default
jobs:
  unit:
    runs-on: ubuntu-latest
    steps:
      - run: npm test:unit
  lint:
    runs-on: ubuntu-latest
    steps:
      - run: npm run lint

Credentials → Secrets + OIDC

groovy
// Jenkins
withCredentials([[$class: 'AmazonWebServicesCredentialsBinding', credentialsId: 'aws']]) {
    sh 'aws s3 ls'
}
yaml
# GitHub Actions - prefer OIDC
permissions:
  id-token: write
steps:
  - uses: aws-actions/configure-aws-credentials@v4
    with:
      role-to-assume: ${{ secrets.AWS_ROLE_ARN }}
      aws-region: us-east-1
  - run: aws s3 ls

Manual Approval → Environments

groovy
// Jenkins
input message: 'Deploy to prod?', submitter: 'release-team'
yaml
# GitHub Actions
jobs:
  deploy:
    environment: production  # Configure required reviewers in GitHub

Output Checklist

When generating a workflow, ensure:

  • SHA-pinned actions with version comments (e.g., @abc123 # v4.1.1)
  • timeout-minutes set on all jobs
  • concurrency group to prevent duplicate runs
  • Caching enabled for dependencies
  • Least-privilege permissions
  • Secrets listed in setup requirements
  • OIDC recommended over stored credentials