aws-actions
diff --git a/‎.eslintrc.js‎
Lines changed: 0 additions & 24 deletions b/‎.eslintrc.js‎
Lines changed: 0 additions & 24 deletions
diff --git a/‎.github/workflows/integration-test.yml‎
Lines changed: 152 additions & 0 deletions b/‎.github/workflows/integration-test.yml‎
Lines changed: 152 additions & 0 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 25 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 25 additions & 0 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 82 additions & 0 deletions b/‎CONTRIBUTING.md‎
Lines changed: 82 additions & 0 deletions
@@ -0,0 +1,152 @@
+name: Integration Tests
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  test-modes:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        test-case:
+          - name: "create-and-execute"
+            mode: "create-and-execute"
+          - name: "create-only"
+            mode: "create-only"
+          - name: "drift-revert"
+            mode: "create-only"
+            deployment-mode: "REVERT_DRIFT"
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+
+      - name: Test ${{ matrix.test-case.name }}
+        id: deploy
+        uses: ./
+        with:
+          mode: ${{ matrix.test-case.mode }}
+          name: test-${{ matrix.test-case.name }}-${{ github.run_number }}
+          template: |
+            AWSTemplateFormatVersion: '2010-09-09'
+            Parameters:
+              BucketPrefix:
+                Type: String
+                Default: test
+            Resources:
+              TestBucket:
+                Type: AWS::S3::Bucket
+                Properties:
+                  BucketName: !Sub '${BucketPrefix}-bucket-${AWS::StackId}'
+            Outputs:
+              BucketName:
+                Value: !Ref TestBucket
+          parameter-overrides: "BucketPrefix=integration-test"
+          deployment-mode: ${{ matrix.test-case.deployment-mode }}
+          no-fail-on-empty-changeset: "1"
+
+      - name: Verify outputs
+        run: |
+          echo "Stack ID: ${{ steps.deploy.outputs.stack-id }}"
+          echo "Bucket Name: ${{ steps.deploy.outputs.BucketName }}"
+          if [ "${{ matrix.test-case.mode }}" = "create-only" ]; then
+            echo "Change Set ID: ${{ steps.deploy.outputs.change-set-id }}"
+            echo "Has Changes: ${{ steps.deploy.outputs.has-changes }}"
+            echo "Changes Count: ${{ steps.deploy.outputs.changes-count }}"
+          fi
+
+  test-execute-only:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+
+      - name: Create change set
+        id: create-cs
+        uses: ./
+        with:
+          mode: "create-only"
+          name: test-execute-${{ github.run_number }}
+          template: |
+            AWSTemplateFormatVersion: '2010-09-09'
+            Resources:
+              TestBucket:
+                Type: AWS::S3::Bucket
+
+      - name: Execute change set
+        uses: ./
+        with:
+          mode: "execute-only"
+          name: test-execute-${{ github.run_number }}
+          execute-change-set-id: ${{ steps.create-cs.outputs.change-set-id }}
+
+  test-advanced-features:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+
+      - name: Test with all features
+        uses: ./
+        with:
+          name: test-advanced-${{ github.run_number }}
+          template: |
+            AWSTemplateFormatVersion: '2010-09-09'
+            Parameters:
+              Environment:
+                Type: String
+            Resources:
+              TestBucket:
+                Type: AWS::S3::Bucket
+                Properties:
+                  Tags:
+                    - Key: Environment
+                      Value: !Ref Environment
+          parameter-overrides: "Environment=test"
+          capabilities: "CAPABILITY_IAM,CAPABILITY_NAMED_IAM"
+          tags: '[{"Key": "Project", "Value": "Integration-Test"}]'
+          timeout-in-minutes: 10
+          include-nested-stacks-change-set: "1"
+          change-set-name: "custom-changeset-name"
+
+  cleanup:
+    runs-on: ubuntu-latest
+    needs: [test-modes, test-execute-only, test-advanced-features]
+    if: always()
+    steps:
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+
+      - name: Cleanup test stacks
+        run: |
+          aws cloudformation list-stacks --stack-status-filter CREATE_COMPLETE UPDATE_COMPLETE --query "StackSummaries[?contains(StackName, 'test-') && contains(StackName, '${{ github.run_number }}')].StackName" --output text | tr '\t' '\n' | while read stack; do
+            if [ ! -z "$stack" ]; then
+              echo "Deleting stack: $stack"
+              aws cloudformation delete-stack --stack-name "$stack" || true
+            fi
+          done
@@ -2,6 +2,31 @@
 
 All notable changes to this project will be documented in this file. See [standard-version](https://github.com/conventional-changelog/standard-version) for commit guidelines.
 
+## [Unreleased]
+
+### Features
+
+- **Enhanced Change Set Support**: Added three-mode operation for better change set management
+  - Create & Execute (default behavior)
+  - Create Only (`no-execute-changeset: true`) with detailed change set information outputs
+  - Execute Only (`execute-change-set-id`) for executing pre-created change sets
+- **Rich Change Set Information**: New outputs when creating change sets without execution
+  - `change-set-id` - The change set ID
+  - `change-set-name` - The change set name
+  - `has-changes` - Boolean indicating if changes exist
+  - `changes-count` - Number of changes in the change set
+  - `changes-summary` - JSON summary of all changes with detailed information
+- **Drift-Aware Change Sets**: Added `deployment-mode: "REVERT_DRIFT"` support for creating change sets that revert resource drift
+- **Enhanced Change Set Visibility**: Using `IncludePropertyValues: true` to show actual before/after property values
+- **Missing Parameter**: Added `include-nested-stacks-change-set` parameter to action.yml (was implemented but not documented)
+
+### Dependencies
+
+- Updated AWS SDK v3 to latest version (3.935.0)
+- Updated TypeScript to 5.9.3 with compatible ESLint plugins
+- Updated all development dependencies to latest versions
+- Fixed security vulnerabilities in dependencies
+
 ## Features
 
 #12, #13 Supporting more input parameters
 
@@ -57,3 +57,85 @@ If you discover a potential security issue in this project we ask that you notif
 See the [LICENSE](https://github.com/aws-actions/aws-cloudformation-github-deploy/blob/master/LICENSE) file for our project's licensing. We will ask you to confirm the licensing of your contribution.
 
 We may ask you to sign a [Contributor License Agreement (CLA)](http://en.wikipedia.org/wiki/Contributor_License_Agreement) for larger changes.
+
+## Development
+
+### Prerequisites
+- Node.js 20+
+- npm
+
+### Setup
+```bash
+npm install
+```
+
+### Testing
+```bash
+# Run all tests
+npm test
+
+# Run tests with coverage
+npm run test:coverage
+
+# Run linting
+npm run lint
+
+# Fix linting issues
+npm run lint:fix
+```
+
+### Building
+```bash
+# Build the action
+npm run build
+
+# Package for distribution
+npm run package
+```
+
+### AWS CloudFormation API Calls
+
+This action makes the following AWS CloudFormation API calls:
+
+**Core Operations:**
+- `DescribeStacks` - Check stack existence and status
+- `CreateChangeSet` - Create change sets for stack operations
+- `DescribeChangeSet` - Monitor change set status and retrieve changes
+- `ExecuteChangeSet` - Execute change sets (when not in create-only mode)
+- `DeleteChangeSet` - Clean up failed change sets
+
+**Error Reporting:**
+- `DescribeStackEvents` - Retrieve detailed error information for validation failures
+
+**Required Permissions:**
+```json
+{
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "cloudformation:CreateStack",
+                "cloudformation:DescribeStacks", 
+                "cloudformation:CreateChangeSet",
+                "cloudformation:DescribeChangeSet",
+                "cloudformation:DeleteChangeSet",
+                "cloudformation:ExecuteChangeSet",
+                "cloudformation:DescribeStackEvents"
+            ],
+            "Resource": "*"
+        }
+    ]
+}
+```
+
+### Architecture
+
+The action uses a change set-based deployment approach:
+
+1. **Stack Detection**: Check if stack exists using `DescribeStacks`
+2. **Change Set Creation**: Create change set using `CreateChangeSet` 
+3. **Change Set Validation**: Monitor status with `DescribeChangeSet`
+4. **Execution**: Execute change set with `ExecuteChangeSet` (unless create-only mode)
+5. **Output Processing**: Retrieve final stack state and outputs
+6. **Error Handling**: Use `DescribeStackEvents` for detailed error reporting