fix(ci): Docker is missing in small/medium act runners

fix: Code formatting
chore: Build
2025-03-04 17:07:46 +01:00 · 2025-03-04 16:13:44 +01:00 · 2024-12-16 03:38:12 +01:00 · 2024-12-16 03:37:45 +01:00 · 2024-12-15 02:37:47 +01:00 · 2024-12-10 12:24:33 +00:00
81 changed files with 48187 additions and 12934 deletions
--- a/.eslintignore
+++ b/.eslintignore
@ -0,0 +1,3 @@
+dist/
+lib/
+node_modules/
--- a/.eslintrc.json
+++ b/.eslintrc.json
@ -1,17 +1,23 @@
 {
-    "env": {
-        "commonjs": true,
-        "es6": true,
-        "node": true
-    },
-    "extends": "eslint:recommended",
-    "globals": {
-        "Atomics": "readonly",
-        "SharedArrayBuffer": "readonly"
-    },
-    "parserOptions": {
-        "ecmaVersion": 2018
-    },
-    "rules": {
+  "env": { "node": true, "jest": true },
+  "parser": "@typescript-eslint/parser",
+  "parserOptions": { "ecmaVersion": 9, "sourceType": "module" },
+  "extends": [
+    "eslint:recommended",
+    "plugin:@typescript-eslint/eslint-recommended",
+    "plugin:@typescript-eslint/recommended",
+    "plugin:import/errors",
+    "plugin:import/warnings",
+    "plugin:import/typescript",
+    "plugin:prettier/recommended"
+  ],
+  "plugins": ["@typescript-eslint"],
+  "rules": {
+    "@typescript-eslint/camelcase": "off"
+  },
+  "settings": {
+    "import/resolver": {
+      "typescript": {}
    }
-}
+  }
+}
--- a/.github/FUNDING.yml
+++ b/.github/FUNDING.yml
@ -0,0 +1 @@
+github: peter-evans
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@ -0,0 +1,20 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "tuesday"
+    labels:
+      - "dependencies"
+
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "tuesday"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-major"]
+    labels:
+      - "dependencies"
--- a/.github/workflows/automerge-dependabot.yml
+++ b/.github/workflows/automerge-dependabot.yml
@ -0,0 +1,13 @@
+name: Auto-merge Dependabot
+on: pull_request
+
+jobs:
+  automerge:
+    runs-on: ubuntu-latest
+    if: github.actor == 'dependabot[bot]'
+    steps:
+      - uses: peter-evans/enable-pull-request-automerge@v3
+        with:
+          token: ${{ secrets.ACTIONS_BOT_TOKEN }}
+          pull-request-number: ${{ github.event.pull_request.number }}
+          merge-method: squash
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@ -1,34 +1,44 @@
 name: CI
 on:
  push:
-    branches: [master]
+    branches: [main]
    paths-ignore:
      - 'README.md'
      - 'docs/**'
  pull_request:
-    branches: [master]
+    branches: [main]
    paths-ignore:
      - 'README.md'
      - 'docs/**'
+
+permissions:
+  pull-requests: write
+  contents: write
+
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v1
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v4
        with:
-          node-version: 12.x
-      - uses: actions/setup-python@v2
-        with:
-          python-version: '3.x'
+          node-version: 20.x
+          cache: npm
+      - name: Install Docker
+        run: apt update && apt install docker.io -y
      - run: npm ci
-      - run: npm run clean
+      - run: npm run build
+      - run: npm run format-check
+      - run: npm run lint
      - run: npm run test
-      - run: npm run package
-      - uses: actions/upload-artifact@v2
+      - uses: actions/upload-artifact@v4
        with:
          name: dist
          path: dist
+      - uses: actions/upload-artifact@v4
+        with:
+          name: action.yml
+          path: action.yml

  test:
    if: github.event_name == 'push' || github.event.pull_request.head.repo.full_name == github.repository
@ -38,14 +48,19 @@ jobs:
      matrix:
        target: [built, committed]
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
-          ref: master
+          ref: main
      - if: matrix.target == 'built' || github.event_name == 'pull_request'
-        uses: actions/download-artifact@v2
+        uses: actions/download-artifact@v4
        with:
          name: dist
          path: dist
+      - if: matrix.target == 'built' || github.event_name == 'pull_request'
+        uses: actions/download-artifact@v4
+        with:
+          name: action.yml
+          path: .

      - name: Create change
        run: date +%s > report.txt
@ -55,8 +70,8 @@ jobs:
        uses: ./
        with:
          commit-message: '[CI] test ${{ matrix.target }}'
-          committer: GitHub <noreply@github.com>
-          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+          committer: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
+          author: ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>
          title: '[CI] test ${{ matrix.target }}'
          body: |
            - CI test case for target '${{ matrix.target }}'
@ -64,10 +79,10 @@ jobs:
            Auto-generated by [create-pull-request][1]

            [1]: https://github.com/peter-evans/create-pull-request
-          branch: ci-test-${{ matrix.target }}
+          branch: ci-test-${{ matrix.target }}-${{ github.sha }}

      - name: Close Pull
-        uses: peter-evans/close-pull@v1
+        uses: peter-evans/close-pull@v3
        with:
          pull-request-number: ${{ steps.cpr.outputs.pull-request-number }}
          comment: '[CI] test ${{ matrix.target }}'
@ -79,7 +94,7 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Find Comment
-        uses: peter-evans/find-comment@v1
+        uses: peter-evans/find-comment@v3
        id: fc
        with:
          issue-number: ${{ github.event.number }}
@ -88,34 +103,36 @@ jobs:

      - if: steps.fc.outputs.comment-id == ''
        name: Create comment
-        uses: peter-evans/create-or-update-comment@v1
+        uses: peter-evans/create-or-update-comment@v4
        with:
          issue-number: ${{ github.event.number }}
          body: |
            Full test suite slash command (repository admin only)
            ```
-            /test repository=${{ github.event.pull_request.head.repo.full_name }} branch=${{ github.event.pull_request.head.ref }} build=true
+            /test repository=${{ github.event.pull_request.head.repo.full_name }} ref=${{ github.event.pull_request.head.ref }} build=true
+            ```
+            ```
+            /test repository=${{ github.event.pull_request.head.repo.full_name }} ref=${{ github.event.pull_request.head.ref }} build=true sign-commits=true
            ```

  package:
-    if: github.event_name == 'push' && github.ref == 'refs/heads/master'
+    if: github.event_name == 'push' && github.ref == 'refs/heads/main'
    needs: [test]
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/download-artifact@v2
+      - uses: actions/checkout@v4
+      - uses: actions/download-artifact@v4
        with:
          name: dist
          path: dist
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
-          commit-message: Update distribution
-          committer: GitHub <noreply@github.com>
-          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+          token: ${{ secrets.ACTIONS_BOT_TOKEN }}
+          commit-message: 'build: update distribution'
          title: Update distribution
          body: |
-            - Updates the distribution for changes on `master`
+            - Updates the distribution for changes on `main`

            Auto-generated by [create-pull-request][1]

--- a/.github/workflows/cpr-example-command.yml
+++ b/.github/workflows/cpr-example-command.yml
@ -6,40 +6,43 @@ jobs:
  createPullRequest:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4

-      - name: Create report file
+      - name: Make changes to pull request
        run: date +%s > report.txt

      - name: Create Pull Request
        id: cpr
        uses: ./
        with:
-          commit-message: Add report file
-          committer: GitHub <noreply@github.com>
-          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
-          title: '[Example] Add report file'
+          commit-message: Update report
+          committer: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
+          author: ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>
+          signoff: false
+          title: '[Example] Update report'
          body: |
-            New report
-            - Contains *today's* date
+            Update report
+            - Updated with *today's* date
            - Auto-generated by [create-pull-request][1]

            [1]: https://github.com/peter-evans/create-pull-request
-          labels: report, automated pr
+          labels: |
+            report
+            automated pr
          assignees: peter-evans
          reviewers: peter-evans
          milestone: 1
          draft: false
          branch: example-patches
-          request-to-parent: false
+          delete-branch: true

-      - name: Check outputs
+      - name: Check output
        run: |
-          echo "Pull Request Number - ${{ env.PULL_REQUEST_NUMBER }}"
          echo "Pull Request Number - ${{ steps.cpr.outputs.pull-request-number }}"
+          echo "Pull Request URL - ${{ steps.cpr.outputs.pull-request-url }}"

      - name: Add reaction
-        uses: peter-evans/create-or-update-comment@v1
+        uses: peter-evans/create-or-update-comment@v4
        with:
          repository: ${{ github.event.client_payload.github.payload.repository.full_name }}
          comment-id: ${{ github.event.client_payload.github.payload.comment.id }}
--- a/.github/workflows/slash-command-dispatch.yml
+++ b/.github/workflows/slash-command-dispatch.yml
@ -7,10 +7,9 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Slash Command Dispatch
-        uses: peter-evans/slash-command-dispatch@v1
+        uses: peter-evans/slash-command-dispatch@v4
        with:
-          token: ${{ secrets.REPO_ACCESS_TOKEN }}
-          reaction-token: ${{ secrets.GITHUB_TOKEN }}
+          token: ${{ secrets.ACTIONS_BOT_TOKEN }}
          config: >
            [
              {
@ -20,7 +19,7 @@ jobs:
                "named_args": true
              },
              {
-                "command": "pytest",
+                "command": "testv5",
                "permission": "admin",
                "repository": "peter-evans/create-pull-request-tests",
                "named_args": true
@ -34,5 +33,11 @@ jobs:
                "command": "cpr-example",
                "permission": "admin",
                "issue_type": "issue"
+              },
+              {
+                "command": "rebase",
+                "permission": "admin",
+                "repository": "peter-evans/slash-command-dispatch-processor",
+                "issue_type": "pull-request"
              }
            ]
--- a/.github/workflows/update-dep.yml
+++ b/.github/workflows/update-dep.yml
@ -1,31 +0,0 @@
-name: Update Dependencies
-on:
-  schedule:
-    - cron:  '0 1 * * 4'
-jobs:
-  update-dep:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v1
-        with:
-          node-version: '12.x'
-      - name: Update dependencies
-        run: |
-          npx -p npm-check-updates ncu -u
-          npm install
-      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
-        with:
-            token: ${{ secrets.ACTIONS_BOT_TOKEN }}
-            commit-message: Update dependencies
-            committer: GitHub <noreply@github.com>
-            author: actions-bot <actions-bot@users.noreply.github.com>
-            title: Update dependencies
-            body: |
-              - Dependency updates
-  
-              Auto-generated by [create-pull-request][1]
-  
-              [1]: https://github.com/peter-evans/create-pull-request
-            branch: update-dependencies
--- a/.github/workflows/update-major-version.yml
+++ b/.github/workflows/update-major-version.yml
@ -0,0 +1,32 @@
+name: Update Major Version
+run-name: Update ${{ github.event.inputs.main_version }} to ${{ github.event.inputs.target }}
+
+on:
+  workflow_dispatch:
+    inputs:
+      target:
+        description: The target tag or reference
+        required: true
+      main_version:
+        type: choice
+        description: The major version tag to update
+        options:
+          - v6
+          - v7
+
+jobs:
+  tag:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+      with:
+        token: ${{ secrets.ACTIONS_BOT_TOKEN }}
+        fetch-depth: 0
+    - name: Git config
+      run: |
+        git config user.name actions-bot
+        git config user.email actions-bot@users.noreply.github.com
+    - name: Tag new target
+      run: git tag -f ${{ github.event.inputs.main_version }} ${{ github.event.inputs.target }}
+    - name: Push new tag
+      run: git push origin ${{ github.event.inputs.main_version }} --force
--- a/.gitignore
+++ b/.gitignore
@ -1,6 +1,5 @@
-__pycache__
-.python-version
-
-node_modules
+lib/
+node_modules/

 .DS_Store
+.idea
--- a/.prettierignore
+++ b/.prettierignore
@ -0,0 +1,3 @@
+dist/
+lib/
+node_modules/
--- a/.prettierrc.json
+++ b/.prettierrc.json
@ -0,0 +1,11 @@
+{
+  "printWidth": 80,
+  "tabWidth": 2,
+  "useTabs": false,
+  "semi": false,
+  "singleQuote": true,
+  "trailingComma": "none",
+  "bracketSpacing": false,
+  "arrowParens": "avoid",
+  "parser": "typescript"
+}
--- a/README.md
+++ b/README.md
@ -1,6 +1,6 @@
 # <img width="24" height="24" src="docs/assets/logo.svg"> Create Pull Request
 [![CI](https://github.com/peter-evans/create-pull-request/workflows/CI/badge.svg)](https://github.com/peter-evans/create-pull-request/actions?query=workflow%3ACI)
-[![GitHub Marketplace](https://img.shields.io/badge/Marketplace-Create%20Pull%20Request-blue.svg?colorA=24292e&colorB=0366d6&style=flat&longCache=true&logo=data:image/png;base64,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)](https://github.com/marketplace/actions/create-pull-request)
+[![GitHub Marketplace](https://img.shields.io/badge/Marketplace-Create%20Pull%20Request-blue.svg?colorA=24292e&colorB=0366d6&style=flat&longCache=true&logo=github)](https://github.com/marketplace/actions/create-pull-request)

 A GitHub action to create a pull request for changes to your repository in the actions workspace.

@ -15,120 +15,222 @@ Create Pull Request action will:
   - tracked (modified) files
   - commits made during the workflow that have not been pushed
 2. Commit all changes to a new branch, or update an existing pull request branch.
-3. Create a pull request to merge the new branch into the base&mdash;the branch checked out in the workflow.
+3. Create or update a pull request to merge the branch into the base&mdash;the branch checked out in the workflow.

 ## Documentation

 - [Concepts, guidelines and advanced usage](docs/concepts-guidelines.md)
 - [Examples](docs/examples.md)
- [Updating from v1](docs/updating.md)
+- [Updating to v7](docs/updating.md)
+- [Common issues](docs/common-issues.md)

 ## Usage

 ```yml
+      - uses: actions/checkout@v4
+
+      # Make changes to pull request here
+
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
 ```

-You can also pin to a [specific release](https://github.com/peter-evans/create-pull-request/releases) version in the format `@v2.x.x`
+You can also pin to a [specific release](https://github.com/peter-evans/create-pull-request/releases) version in the format `@v7.x.x`
+
+### Workflow permissions
+
+For this action to work you must explicitly allow GitHub Actions to create pull requests.
+This setting can be found in a repository's settings under Actions > General > Workflow permissions.
+
+For repositories belonging to an organization, this setting can be managed by admins in organization settings under Actions > General > Workflow permissions.

 ### Action inputs

-All inputs are **optional**. If not set, sensible default values will be used.
-
-**Note**: If you want pull requests created by this action to trigger an `on: push` or `on: pull_request` workflow then you cannot use the default `GITHUB_TOKEN`. See the [documentation here](https://github.com/peter-evans/create-pull-request/blob/master/docs/concepts-guidelines.md#triggering-further-workflow-runs) for workarounds.
+All inputs are **optional**. If not set, sensible defaults will be used.

 | Name | Description | Default |
 | --- | --- | --- |
-| `token` | `GITHUB_TOKEN` or a `repo` scoped [PAT](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line). | `GITHUB_TOKEN` |
+| `token` | The token that the action will use to create and update the pull request. See [token](#token). | `GITHUB_TOKEN` |
+| `branch-token` | The token that the action will use to create and update the branch. See [branch-token](#branch-token). | Defaults to the value of `token` |
 | `path` | Relative path under `GITHUB_WORKSPACE` to the repository. | `GITHUB_WORKSPACE` |
-| `commit-message` | The message to use when committing changes. | `[create-pull-request] automated change` |
-| `committer` | The committer name and email address in the format `Display Name <email@address.com>`. | Defaults to the GitHub Actions bot user. See [Committer and author](#committer-and-author) for details. |
-| `author` | The author name and email address in the format `Display Name <email@address.com>`. | Defaults to the GitHub Actions bot user. See [Committer and author](#committer-and-author) for details. |
+| `add-paths` | A comma or newline-separated list of file paths to commit. Paths should follow git's [pathspec](https://git-scm.com/docs/gitglossary#Documentation/gitglossary.txt-aiddefpathspecapathspec) syntax. If no paths are specified, all new and modified files are added. See [Add specific paths](#add-specific-paths). | |
+| `commit-message` | The message to use when committing changes. See [commit-message](#commit-message). | `[create-pull-request] automated change` |
+| `committer` | The committer name and email address in the format `Display Name <email@address.com>`. Defaults to the GitHub Actions bot user on github.com. | `github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>` |
+| `author` | The author name and email address in the format `Display Name <email@address.com>`. Defaults to the user who triggered the workflow run. | `${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>` |
+| `signoff` | Add [`Signed-off-by`](https://git-scm.com/docs/git-commit#Documentation/git-commit.txt---signoff) line by the committer at the end of the commit log message. | `false` |
+| `branch` | The pull request branch name. | `create-pull-request/patch` |
+| `delete-branch` | Delete the `branch` if it doesn't have an active pull request associated with it. See [delete-branch](#delete-branch). | `false` |
+| `branch-suffix` | The branch suffix type when using the alternative branching strategy. Valid values are `random`, `timestamp` and `short-commit-hash`. See [Alternative strategy](#alternative-strategy---always-create-a-new-pull-request-branch) for details. | |
+| `base` | Sets the pull request base branch. | Defaults to the branch checked out in the workflow. |
+| `push-to-fork` | A fork of the checked-out parent repository to which the pull request branch will be pushed. e.g. `owner/repo-fork`. The pull request will be created to merge the fork's branch into the parent's base. See [push pull request branches to a fork](docs/concepts-guidelines.md#push-pull-request-branches-to-a-fork) for details. | |
+| `sign-commits` | Sign commits as `github-actions[bot]` when using `GITHUB_TOKEN`, or your own bot when using [GitHub App tokens](docs/concepts-guidelines.md#authenticating-with-github-app-generated-tokens). See [commit signing](docs/concepts-guidelines.md#commit-signature-verification-for-bots) for details.  | `false` |
 | `title` | The title of the pull request. | `Changes by create-pull-request action` |
 | `body` | The body of the pull request. | `Automated changes by [create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action` |
-| `labels` | A comma separated list of labels. | |
-| `assignees` | A comma separated list of assignees (GitHub usernames). | |
-| `reviewers` | A comma separated list of reviewers (GitHub usernames) to request a review from. | |
-| `team-reviewers` | A comma separated list of GitHub teams to request a review from. A `repo` scoped [PAT](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line) may be required. See [this issue](https://github.com/peter-evans/create-pull-request/issues/155). | |
+| `body-path` | The path to a file containing the pull request body. Takes precedence over `body`. | |
+| `labels` | A comma or newline-separated list of labels. | |
+| `assignees` | A comma or newline-separated list of assignees (GitHub usernames). | |
+| `reviewers` | A comma or newline-separated list of reviewers (GitHub usernames) to request a review from. | |
+| `team-reviewers` | A comma or newline-separated list of GitHub teams to request a review from. Note that a `repo` scoped [PAT](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token), or equivalent [GitHub App permissions](docs/concepts-guidelines.md#authenticating-with-github-app-generated-tokens), are required. | |
 | `milestone` | The number of the milestone to associate this pull request with. | |
-| `project` | *Deprecated*. See [Create a project card](#create-a-project-card) for details. | |
-| `project-column` | *Deprecated*. See [Create a project card](#create-a-project-card) for details. | |
-| `draft` | Create a [draft pull request](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-requests#draft-pull-requests). | `false` |
-| `branch` | The branch name. See [Branch naming](#branch-naming) for details. | `create-pull-request/patch` |
-| `request-to-parent` | Create the pull request in the parent repository of the checked out fork. See [push pull request branches to a fork](https://github.com/peter-evans/create-pull-request/blob/master/docs/concepts-guidelines.md#push-pull-request-branches-to-a-fork) for details. | `false` |
-| `base` | Sets the pull request base branch. | Defaults to the branch checked out in the workflow. |
-| `branch-suffix` | The branch suffix type. Valid values are `random`, `timestamp` and `short-commit-hash`. See [Branch naming](#branch-naming) for details. | |
+| `draft` | Create a [draft pull request](https://docs.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-requests#draft-pull-requests). Valid values are `true` (only on create), `always-true` (on create and update), and `false`.  | `false` |
+| `maintainer-can-modify` | Indicates whether [maintainers can modify](https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/working-with-forks/allowing-changes-to-a-pull-request-branch-created-from-a-fork) the pull request. | `true` |
+
+#### token
+
+The token input defaults to the repository's `GITHUB_TOKEN`.
+
+> [!IMPORTANT]  
+> - If you want pull requests created by this action to trigger an `on: push` or `on: pull_request` workflow then you cannot use the default `GITHUB_TOKEN`. See the [documentation here](docs/concepts-guidelines.md#triggering-further-workflow-runs) for further details.
+> - If using the repository's `GITHUB_TOKEN` and your repository was created after 2nd February 2023, the [default permission is read-only](https://github.blog/changelog/2023-02-02-github-actions-updating-the-default-github_token-permissions-to-read-only/). Elevate the [permissions](https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token#defining-access-for-the-github_token-permissions) in your workflow.
+>   ```yml
+>   permissions:
+>     contents: write
+>     pull-requests: write
+>   ```
+
+Other token options:
+- Classic [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) with `repo` scope.
+- Fine-grained [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) with `contents: write` and `pull-requests: write` scopes.
+- [GitHub App tokens](docs/concepts-guidelines.md#authenticating-with-github-app-generated-tokens) with `contents: write` and `pull-requests: write` scopes.
+
+> [!TIP]  
+> If pull requests could contain changes to Actions workflows you may also need the `workflows` scope.
+
+#### branch-token
+
+The action first creates a branch, and then creates a pull request for the branch.
+For some rare use cases it can be useful, or even necessary, to use different tokens for these operations.
+It is not advisable to use this input unless you know you need to.
+
+#### commit-message
+
+In addition to a message, the `commit-message` input can also be used to populate the commit description. Leave a single blank line between the message and description.
+
+```yml
+          commit-message: |
+            the first line is the commit message
+
+            the commit description starts
+            after a blank line and can be
+            multiple lines
+```
+
+#### delete-branch
+
+The `delete-branch` feature doesn't delete branches immediately on merge. (It can't do that because it would require the merge to somehow trigger the action.)
+The intention of the feature is that when the action next runs it will delete the `branch` if there is no diff.
+
+Enabling this feature leads to the following behaviour:
+1. If a pull request was merged and the branch is left undeleted, when the action next runs it will delete the branch if there is no further diff.
+2. If a pull request is open, but there is now no longer a diff and the PR is unnecessary, the action will delete the branch causing the PR to close.
+
+If you want branches to be deleted immediately on merge then you should use GitHub's `Automatically delete head branches` feature in your repository settings.
+
+#### Proxy support
+
+For self-hosted runners behind a corporate proxy set the `https_proxy` environment variable.
+```yml
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        env:
+          https_proxy: http://<proxy_address>:<port>
+```

 ### Action outputs

-The pull request number is output as both an environment variable and a step output.
-Note that in order to read the step output the action step must have an id.
+The following outputs can be used by subsequent workflow steps.
+
+- `pull-request-number` - The pull request number.
+- `pull-request-url` - The URL of the pull request.
+- `pull-request-operation` - The pull request operation performed by the action, `created`, `updated`, `closed` or `none`.
+- `pull-request-head-sha` - The commit SHA of the pull request branch.
+- `pull-request-branch` - The branch name of the pull request.
+- `pull-request-commits-verified` - Whether GitHub considers the signature of the branch's commits to be verified; `true` or `false`.
+
+Step outputs can be accessed as in the following example.
+Note that in order to read the step outputs the action step must have an id.

 ```yml
      - name: Create Pull Request
        id: cpr
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
      - name: Check outputs
+        if: ${{ steps.cpr.outputs.pull-request-number }}
        run: |
-          echo "Pull Request Number - ${{ env.PULL_REQUEST_NUMBER }}"
          echo "Pull Request Number - ${{ steps.cpr.outputs.pull-request-number }}"
+          echo "Pull Request URL - ${{ steps.cpr.outputs.pull-request-url }}"
 ```

-### Checkout
+### Action behaviour

-This action expects repositories to be checked out with `actions/checkout@v2`.
+The default behaviour of the action is to create a pull request that will be continually updated with new changes until it is merged or closed.
+Changes are committed and pushed to a fixed-name branch, the name of which can be configured with the `branch` input.
+Any subsequent changes will be committed to the *same* branch and reflected in the open pull request.

-If there is some reason you need to use `actions/checkout@v1` the following step can be added to checkout the branch.
+How the action behaves:

-```yml
-      - uses: actions/checkout@v1
-      - run: git checkout "${GITHUB_REF:11}"
-```
+- If there are changes (i.e. a diff exists with the checked-out base branch), the changes will be pushed to a new `branch` and a pull request created.
+- If there are no changes (i.e. no diff exists with the checked-out base branch), no pull request will be created and the action exits silently.
+- If a pull request already exists it will be updated if necessary. Local changes in the Actions workspace, or changes on the base branch, can cause an update. If no update is required the action exits silently.
+- If a pull request exists and new changes on the base branch make the pull request unnecessary (i.e. there is no longer a diff between the pull request branch and the base), the pull request is automatically closed. Additionally, if [`delete-branch`](#delete-branch) is set to `true` the `branch` will be deleted.

-### Branch naming
+For further details about how the action works and usage guidelines, see [Concepts, guidelines and advanced usage](docs/concepts-guidelines.md).

-For branch naming there are two strategies. Create a fixed-name pull request branch that will be updated with new changes until it is merged or closed, OR, always create a new unique branch each time there are changes to be committed.
+#### Alternative strategy - Always create a new pull request branch

-#### Strategy A - Create and update a pull request branch (default)
+For some use cases it may be desirable to always create a new unique branch each time there are changes to be committed.
+This strategy is *not recommended* because if not used carefully it could result in multiple pull requests being created unnecessarily. If in doubt, use the [default strategy](#action-behaviour) of creating an updating a fixed-name branch.

-This strategy is the default behaviour of the action. The input `branch` defaults to `create-pull-request/patch`. Changes will be committed to this branch and a pull request created. Any subsequent changes will be committed to the *same* branch and reflected in the open pull request. If the pull request is merged or closed a new one will be created. If subsequent changes cause the branch to no longer differ from the base the pull request will be automatically closed and the branch deleted.
+To use this strategy, set input `branch-suffix` with one of the following options.

-#### Strategy B - Always create a new pull request branch
-
-For this strategy there are three options to suffix the branch name.
-The branch name is defined by the input `branch` and defaults to `create-pull-request/patch`. The following options are values for `branch-suffix`.
-
- `random` - Commits will be made to a branch suffixed with a random alpha-numeric string. This option should be used if multiple pull requests will be created during the execution of a workflow. e.g. `create-pull-request/patch-6qj97jr`, `create-pull-request/patch-5jrjhvd`
+- `random` - Commits will be made to a branch suffixed with a random alpha-numeric string. e.g. `create-pull-request/patch-6qj97jr`, `create-pull-request/patch-5jrjhvd`

 - `timestamp` - Commits will be made to a branch suffixed by a timestamp. e.g. `create-pull-request/patch-1569322532`, `create-pull-request/patch-1569322552`

 - `short-commit-hash` - Commits will be made to a branch suffixed with the short SHA1 commit hash. e.g. `create-pull-request/patch-fcdfb59`, `create-pull-request/patch-394710b`

-### Ignoring files
+### Controlling committed files
+
+The action defaults to adding all new and modified files.
+If there are files that should not be included in the pull request, you can use the following methods to control the committed content.
+
+#### Remove files
+
+The most straightforward way to handle unwanted files is simply to remove them in a step before the action runs.
+
+```yml
+      - run: |
+          rm -rf temp-dir
+          rm temp-file.txt
+```
+
+#### Ignore files

 If there are files or directories you want to ignore you can simply add them to a `.gitignore` file at the root of your repository. The action will respect this file.

-### Committer and author
+#### Add specific paths

-If neither `committer` or `author` inputs are supplied the action will default to making commits that appear to be made by the GitHub Actions bot user.
+You can control which files are committed with the `add-paths` input.
+Paths should follow git's [pathspec](https://git-scm.com/docs/gitglossary#Documentation/gitglossary.txt-aiddefpathspecapathspec) syntax.
+File changes that do not match one of the paths will be stashed and restored after the action has completed.

-The following configuration can be used to have commits authored by the user who triggered the workflow event.
 ```yml
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
-          committer: GitHub <noreply@github.com>
-          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
+          add-paths: |
+            *.java
+            docs/*.md
 ```

-### Controlling commits
+#### Create your own commits

 As well as relying on the action to handle uncommitted changes, you can additionally make your own commits before the action runs.
+Note that the repository must be checked out on a branch with a remote, it won't work for [events which checkout a commit](docs/concepts-guidelines.md#events-which-checkout-a-commit).

 ```yml
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
      - name: Create commits
        run: |
          git config user.name 'Peter Evans'
@ -141,69 +243,59 @@ As well as relying on the action to handle uncommitted changes, you can addition
      - name: Uncommitted change
        run: date +%s > report.txt
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
 ```

-### Create a project card
+### Auto-merge

-To create a project card for the pull request, pass the `pull-request-number` step output to [create-or-update-project-card](https://github.com/peter-evans/create-or-update-project-card) action.
-
-```yml
-      - name: Create Pull Request
-        id: cpr
-        uses: peter-evans/create-pull-request@v2
-
-      - name: Create or Update Project Card
-        uses: peter-evans/create-or-update-project-card@v1
-        with:
-          project-name: My project
-          column-name: My column
-          issue-number: ${{ steps.cpr.outputs.pull-request-number }}
-```
+Auto-merge can be enabled on a pull request allowing it to be automatically merged once requirements have been satisfied.
+See [enable-pull-request-automerge](https://github.com/peter-evans/enable-pull-request-automerge) action for usage details.

 ## Reference Example

-The following workflow is a reference example that sets all the main inputs.
+The following workflow sets many of the action's inputs for reference purposes.
+Check the [defaults](#action-inputs) to avoid setting inputs unnecessarily.

 See [examples](docs/examples.md) for more realistic use cases.

 ```yml
-name: Create Pull Request
-on: push
 jobs:
  createPullRequest:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - name: Create report file
+      - uses: actions/checkout@v4
+
+      - name: Make changes to pull request
        run: date +%s > report.txt
+
      - name: Create Pull Request
        id: cpr
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          commit-message: Add report file
-          committer: GitHub <noreply@github.com>
-          author: ${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>
-          title: '[Example] Add report file'
+          token: ${{ secrets.PAT }}
+          commit-message: Update report
+          committer: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
+          author: ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>
+          signoff: false
+          branch: example-patches
+          delete-branch: true
+          title: '[Example] Update report'
          body: |
-            New report
-            - Contains *today's* date
+            Update report
+            - Updated with *today's* date
            - Auto-generated by [create-pull-request][1]

            [1]: https://github.com/peter-evans/create-pull-request
-          labels: report, automated pr
+          labels: |
+            report
+            automated pr
          assignees: peter-evans
          reviewers: peter-evans
-          team-reviewers: owners, maintainers
+          team-reviewers: |
+            developers
+            qa-team
          milestone: 1
          draft: false
-          branch: example-patches
-          request-to-parent: false
-      - name: Check outputs
-        run: |
-          echo "Pull Request Number - ${{ env.PULL_REQUEST_NUMBER }}"
-          echo "Pull Request Number - ${{ steps.cpr.outputs.pull-request-number }}"
 ```

 An example based on the above reference configuration creates pull requests that look like this:
--- a/test/create-or-update-branch.int.test.ts
+++ b/test/create-or-update-branch.int.test.ts
--- a/test/entrypoint.sh
+++ b/test/entrypoint.sh
@ -0,0 +1,49 @@
+#!/bin/sh -l
+set -euo pipefail
+
+# Save the working directory
+WORKINGDIR=$PWD
+
+# Create and serve a remote repo
+mkdir -p /git/remote/repos
+git config --global init.defaultBranch main
+git init --bare /git/remote/repos/test-base.git
+git daemon --verbose --enable=receive-pack --base-path=/git/remote --export-all /git/remote &>/dev/null &
+
+# Give the daemon time to start
+sleep 2
+
+# Create a local clone and make initial commits
+mkdir -p /git/local/repos
+git clone git://127.0.0.1/repos/test-base.git /git/local/repos/test-base
+cd /git/local/repos/test-base
+git config --global user.email "you@example.com"
+git config --global user.name "Your Name"
+echo "#test-base" > README_TEMP.md
+git add .
+git commit -m "initial commit"
+git commit --allow-empty -m "empty commit for tests"
+echo "#test-base :sparkles:" > README_TEMP.md
+git add .
+git commit -m "add sparkles" -m "Change description:
+- updates README_TEMP.md to add sparkles to the title"
+mv README_TEMP.md README.md
+git add .
+git commit -m "rename readme"
+git push -u
+git log -1 --pretty=oneline
+git config --global --unset user.email
+git config --global --unset user.name
+git config -l
+
+# Clone a server-side fork of the base repo
+cd $WORKINGDIR
+git clone --mirror git://127.0.0.1/repos/test-base.git /git/remote/repos/test-fork.git
+cd /git/remote/repos/test-fork.git
+git log -1 --pretty=oneline
+
+# Restore the working directory
+cd $WORKINGDIR
+
+# Execute integration tests
+jest int --runInBand
--- a/test/git-command-manager.int.test.ts
+++ b/test/git-command-manager.int.test.ts
@ -0,0 +1,48 @@
+import {GitCommandManager} from '../lib/git-command-manager'
+
+const REPO_PATH = '/git/local/repos/test-base'
+
+describe('git-command-manager integration tests', () => {
+  let git: GitCommandManager
+
+  beforeAll(async () => {
+    git = await GitCommandManager.create(REPO_PATH)
+    await git.checkout('main')
+  })
+
+  it('tests getCommit', async () => {
+    const initialCommit = await git.getCommit('HEAD^^^')
+    const emptyCommit = await git.getCommit('HEAD^^')
+    const modifiedCommit = await git.getCommit('HEAD^')
+    const headCommit = await git.getCommit('HEAD')
+
+    expect(initialCommit.subject).toEqual('initial commit')
+    expect(initialCommit.signed).toBeFalsy()
+    expect(initialCommit.changes[0].mode).toEqual('100644')
+    expect(initialCommit.changes[0].status).toEqual('A')
+    expect(initialCommit.changes[0].path).toEqual('README_TEMP.md')
+
+    expect(emptyCommit.subject).toEqual('empty commit for tests')
+    expect(emptyCommit.tree).toEqual(initialCommit.tree) // empty commits have no tree and reference the parent's
+    expect(emptyCommit.parents[0]).toEqual(initialCommit.sha)
+    expect(emptyCommit.signed).toBeFalsy()
+    expect(emptyCommit.changes).toEqual([])
+
+    expect(modifiedCommit.subject).toEqual('add sparkles')
+    expect(modifiedCommit.parents[0]).toEqual(emptyCommit.sha)
+    expect(modifiedCommit.signed).toBeFalsy()
+    expect(modifiedCommit.changes[0].mode).toEqual('100644')
+    expect(modifiedCommit.changes[0].status).toEqual('M')
+    expect(modifiedCommit.changes[0].path).toEqual('README_TEMP.md')
+
+    expect(headCommit.subject).toEqual('rename readme')
+    expect(headCommit.parents[0]).toEqual(modifiedCommit.sha)
+    expect(headCommit.signed).toBeFalsy()
+    expect(headCommit.changes[0].mode).toEqual('100644')
+    expect(headCommit.changes[0].status).toEqual('A')
+    expect(headCommit.changes[0].path).toEqual('README.md')
+    expect(headCommit.changes[1].mode).toEqual('100644')
+    expect(headCommit.changes[1].status).toEqual('D')
+    expect(headCommit.changes[1].path).toEqual('README_TEMP.md')
+  })
+})
--- a/test/git-config-helper.int.test.ts
+++ b/test/git-config-helper.int.test.ts
@ -0,0 +1,85 @@
+import {GitCommandManager} from '../lib/git-command-manager'
+import {GitConfigHelper} from '../lib/git-config-helper'
+
+const REPO_PATH = '/git/local/repos/test-base'
+
+const extraheaderConfigKey = 'http.https://127.0.0.1/.extraheader'
+
+describe('git-config-helper integration tests', () => {
+  let git: GitCommandManager
+
+  beforeAll(async () => {
+    git = await GitCommandManager.create(REPO_PATH)
+  })
+
+  it('tests save and restore with no persisted auth', async () => {
+    const gitConfigHelper = await GitConfigHelper.create(git)
+    await gitConfigHelper.close()
+  })
+
+  it('tests configure and removal of auth', async () => {
+    const gitConfigHelper = await GitConfigHelper.create(git)
+    await gitConfigHelper.configureToken('github-token')
+    expect(await git.configExists(extraheaderConfigKey)).toBeTruthy()
+    expect(await git.getConfigValue(extraheaderConfigKey)).toEqual(
+      'AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2l0aHViLXRva2Vu'
+    )
+
+    await gitConfigHelper.close()
+    expect(await git.configExists(extraheaderConfigKey)).toBeFalsy()
+  })
+
+  it('tests save and restore of persisted auth', async () => {
+    const extraheaderConfigValue = 'AUTHORIZATION: basic ***persisted-auth***'
+    await git.config(extraheaderConfigKey, extraheaderConfigValue)
+
+    const gitConfigHelper = await GitConfigHelper.create(git)
+
+    const exists = await git.configExists(extraheaderConfigKey)
+    expect(exists).toBeFalsy()
+
+    await gitConfigHelper.close()
+
+    const configValue = await git.getConfigValue(extraheaderConfigKey)
+    expect(configValue).toEqual(extraheaderConfigValue)
+
+    const unset = await git.tryConfigUnset(
+      extraheaderConfigKey,
+      '^AUTHORIZATION:'
+    )
+    expect(unset).toBeTruthy()
+  })
+
+  it('tests not adding/removing the safe.directory config when it already exists', async () => {
+    await git.config('safe.directory', '/another-value', true, true)
+
+    const gitConfigHelper = await GitConfigHelper.create(git)
+
+    expect(
+      await git.configExists('safe.directory', '/another-value', true)
+    ).toBeTruthy()
+
+    await gitConfigHelper.close()
+
+    const unset = await git.tryConfigUnset(
+      'safe.directory',
+      '/another-value',
+      true
+    )
+    expect(unset).toBeTruthy()
+  })
+
+  it('tests adding and removing the safe.directory config', async () => {
+    const gitConfigHelper = await GitConfigHelper.create(git)
+
+    expect(
+      await git.configExists('safe.directory', REPO_PATH, true)
+    ).toBeTruthy()
+
+    await gitConfigHelper.close()
+
+    expect(
+      await git.configExists('safe.directory', REPO_PATH, true)
+    ).toBeFalsy()
+  })
+})
--- a/test/git-config-helper.unit.test.ts
+++ b/test/git-config-helper.unit.test.ts
@ -0,0 +1,93 @@
+import {GitConfigHelper} from '../lib/git-config-helper'
+
+describe('git-config-helper unit tests', () => {
+  test('parseGitRemote successfully parses HTTPS remote URLs', async () => {
+    const remote1 = GitConfigHelper.parseGitRemote(
+      'https://github.com/peter-evans/create-pull-request'
+    )
+    expect(remote1.hostname).toEqual('github.com')
+    expect(remote1.protocol).toEqual('HTTPS')
+    expect(remote1.repository).toEqual('peter-evans/create-pull-request')
+
+    const remote2 = GitConfigHelper.parseGitRemote(
+      'https://xxx:x-oauth-basic@github.com/peter-evans/create-pull-request'
+    )
+    expect(remote2.hostname).toEqual('github.com')
+    expect(remote2.protocol).toEqual('HTTPS')
+    expect(remote2.repository).toEqual('peter-evans/create-pull-request')
+
+    const remote3 = GitConfigHelper.parseGitRemote(
+      'https://github.com/peter-evans/create-pull-request.git'
+    )
+    expect(remote3.hostname).toEqual('github.com')
+    expect(remote3.protocol).toEqual('HTTPS')
+    expect(remote3.repository).toEqual('peter-evans/create-pull-request')
+
+    const remote4 = GitConfigHelper.parseGitRemote(
+      'https://github.com/peter-evans/ungit'
+    )
+    expect(remote4.hostname).toEqual('github.com')
+    expect(remote4.protocol).toEqual('HTTPS')
+    expect(remote4.repository).toEqual('peter-evans/ungit')
+
+    const remote5 = GitConfigHelper.parseGitRemote(
+      'https://github.com/peter-evans/ungit.git'
+    )
+    expect(remote5.hostname).toEqual('github.com')
+    expect(remote5.protocol).toEqual('HTTPS')
+    expect(remote5.repository).toEqual('peter-evans/ungit')
+
+    const remote6 = GitConfigHelper.parseGitRemote(
+      'https://github.internal.company/peter-evans/create-pull-request'
+    )
+    expect(remote6.hostname).toEqual('github.internal.company')
+    expect(remote6.protocol).toEqual('HTTPS')
+    expect(remote6.repository).toEqual('peter-evans/create-pull-request')
+  })
+
+  test('parseGitRemote successfully parses SSH remote URLs', async () => {
+    const remote1 = GitConfigHelper.parseGitRemote(
+      'git@github.com:peter-evans/create-pull-request.git'
+    )
+    expect(remote1.hostname).toEqual('github.com')
+    expect(remote1.protocol).toEqual('SSH')
+    expect(remote1.repository).toEqual('peter-evans/create-pull-request')
+
+    const remote2 = GitConfigHelper.parseGitRemote(
+      'git@github.com:peter-evans/ungit.git'
+    )
+    expect(remote2.hostname).toEqual('github.com')
+    expect(remote2.protocol).toEqual('SSH')
+    expect(remote2.repository).toEqual('peter-evans/ungit')
+
+    const remote3 = GitConfigHelper.parseGitRemote(
+      'git@github.internal.company:peter-evans/create-pull-request.git'
+    )
+    expect(remote3.hostname).toEqual('github.internal.company')
+    expect(remote3.protocol).toEqual('SSH')
+    expect(remote3.repository).toEqual('peter-evans/create-pull-request')
+  })
+
+  test('parseGitRemote successfully parses GIT remote URLs', async () => {
+    // Unauthenticated git protocol for integration tests only
+    const remote1 = GitConfigHelper.parseGitRemote(
+      'git://127.0.0.1/repos/test-base.git'
+    )
+    expect(remote1.hostname).toEqual('127.0.0.1')
+    expect(remote1.protocol).toEqual('GIT')
+    expect(remote1.repository).toEqual('repos/test-base')
+  })
+
+  test('parseGitRemote fails to parse a remote URL', async () => {
+    const remoteUrl = 'https://github.com/peter-evans'
+    try {
+      GitConfigHelper.parseGitRemote(remoteUrl)
+      // Fail the test if an error wasn't thrown
+      expect(true).toEqual(false)
+    } catch (e: any) {
+      expect(e.message).toEqual(
+        `The format of '${remoteUrl}' is not a valid GitHub repository URL`
+      )
+    }
+  })
+})
--- a/test/integration-tests.sh
+++ b/test/integration-tests.sh
@ -0,0 +1,23 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+IMAGE="cpr-integration-tests:latest"
+ARG1=${1:-}
+
+if [[ "$(docker images -q $IMAGE 2> /dev/null)" == "" || $ARG1 == "build" ]]; then
+    echo "Building Docker image $IMAGE ..."
+
+    cat > Dockerfile << EOF
+FROM node:20-alpine
+RUN apk --no-cache add git git-daemon
+RUN npm install jest jest-environment-jsdom --global
+WORKDIR /cpr
+COPY __test__/entrypoint.sh /entrypoint.sh
+ENTRYPOINT ["/entrypoint.sh"]
+EOF
+
+    docker build --no-cache -t $IMAGE .
+    rm Dockerfile
+fi
+
+docker run -v $PWD:/cpr $IMAGE
--- a/test/utils.unit.test.ts
+++ b/test/utils.unit.test.ts
@ -0,0 +1,120 @@
+import * as path from 'path'
+import * as utils from '../lib/utils'
+
+const originalGitHubWorkspace = process.env['GITHUB_WORKSPACE']
+
+describe('utils tests', () => {
+  beforeAll(() => {
+    // GitHub workspace
+    process.env['GITHUB_WORKSPACE'] = __dirname
+  })
+
+  afterAll(() => {
+    // Restore GitHub workspace
+    delete process.env['GITHUB_WORKSPACE']
+    if (originalGitHubWorkspace) {
+      process.env['GITHUB_WORKSPACE'] = originalGitHubWorkspace
+    }
+  })
+
+  test('getStringAsArray splits string input by newlines and commas', async () => {
+    const array = utils.getStringAsArray('1, 2, 3\n4, 5, 6')
+    expect(array.length).toEqual(6)
+
+    const array2 = utils.getStringAsArray('')
+    expect(array2.length).toEqual(0)
+  })
+
+  test('stripOrgPrefixFromTeams strips org prefixes correctly', async () => {
+    const array = utils.stripOrgPrefixFromTeams([
+      'org/team1',
+      'org/team2',
+      'team3'
+    ])
+    expect(array.length).toEqual(3)
+    expect(array[0]).toEqual('team1')
+    expect(array[1]).toEqual('team2')
+    expect(array[2]).toEqual('team3')
+  })
+
+  test('getRepoPath successfully returns the path to the repository', async () => {
+    expect(utils.getRepoPath()).toEqual(process.env['GITHUB_WORKSPACE'])
+    expect(utils.getRepoPath('foo')).toEqual(
+      path.resolve(process.env['GITHUB_WORKSPACE'] || '', 'foo')
+    )
+  })
+
+  test('getRemoteUrl successfully returns remote URLs', async () => {
+    const url1 = utils.getRemoteUrl(
+      'HTTPS',
+      'github.com',
+      'peter-evans/create-pull-request'
+    )
+    expect(url1).toEqual('https://github.com/peter-evans/create-pull-request')
+
+    const url2 = utils.getRemoteUrl(
+      'SSH',
+      'github.com',
+      'peter-evans/create-pull-request'
+    )
+    expect(url2).toEqual('git@github.com:peter-evans/create-pull-request.git')
+
+    const url3 = utils.getRemoteUrl(
+      'HTTPS',
+      'mygithubserver.com',
+      'peter-evans/create-pull-request'
+    )
+    expect(url3).toEqual(
+      'https://mygithubserver.com/peter-evans/create-pull-request'
+    )
+  })
+
+  test('secondsSinceEpoch returns the number of seconds since the Epoch', async () => {
+    const seconds = `${utils.secondsSinceEpoch()}`
+    expect(seconds.length).toEqual(10)
+  })
+
+  test('randomString returns strings of length 7', async () => {
+    for (let i = 0; i < 1000; i++) {
+      expect(utils.randomString().length).toEqual(7)
+    }
+  })
+
+  test('parseDisplayNameEmail successfully parses display name email formats', async () => {
+    const parsed1 = utils.parseDisplayNameEmail('abc def <abc@def.com>')
+    expect(parsed1.name).toEqual('abc def')
+    expect(parsed1.email).toEqual('abc@def.com')
+
+    const parsed2 = utils.parseDisplayNameEmail(
+      'github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>'
+    )
+    expect(parsed2.name).toEqual('github-actions[bot]')
+    expect(parsed2.email).toEqual(
+      '41898282+github-actions[bot]@users.noreply.github.com'
+    )
+  })
+
+  test('parseDisplayNameEmail fails to parse display name email formats', async () => {
+    const displayNameEmail1 = 'abc@def.com'
+    try {
+      utils.parseDisplayNameEmail(displayNameEmail1)
+      // Fail the test if an error wasn't thrown
+      expect(true).toEqual(false)
+    } catch (e: any) {
+      expect(e.message).toEqual(
+        `The format of '${displayNameEmail1}' is not a valid email address with display name`
+      )
+    }
+
+    const displayNameEmail2 = ' < >'
+    try {
+      utils.parseDisplayNameEmail(displayNameEmail2)
+      // Fail the test if an error wasn't thrown
+      expect(true).toEqual(false)
+    } catch (e: any) {
+      expect(e.message).toEqual(
+        `The format of '${displayNameEmail2}' is not a valid email address with display name`
+      )
+    }
+  })
+})
--- a/action.yml
+++ b/action.yml
@ -2,50 +2,99 @@ name: 'Create Pull Request'
 description: 'Creates a pull request for changes to your repository in the actions workspace'
 inputs:
  token:
-    description: 'GITHUB_TOKEN or a repo scoped PAT'
+    description: 'The token that the action will use to create and update the pull request.'
    default: ${{ github.token }}
+  branch-token:
+    description: >
+      The token that the action will use to create and update the branch.
+      Defaults to the value of `token`.
  path:
-    description: 'Relative path under $GITHUB_WORKSPACE to the repository.'
+    description: >
+      Relative path under $GITHUB_WORKSPACE to the repository.
+      Defaults to $GITHUB_WORKSPACE.
+  add-paths:
+    description: >
+      A comma or newline-separated list of file paths to commit.
+      Paths should follow git's pathspec syntax.
+      Defaults to adding all new and modified files.
  commit-message:
    description: 'The message to use when committing changes.'
+    default: '[create-pull-request] automated change'
  committer:
-    description: 'The committer name and email address.'
+    description: >
+      The committer name and email address in the format `Display Name <email@address.com>`.
+      Defaults to the GitHub Actions bot user.
+    default: 'github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>'
  author:
-    description: 'The author name and email address.'
-  title:
-    description: 'The title of the pull request.'
-  body:
-    description: 'The body of the pull request.'
-  labels:
-    description: 'A comma separated list of labels.'
-  assignees:
-    description: 'A comma separated list of assignees (GitHub usernames).'
-  reviewers:
-    description: 'A comma separated list of reviewers (GitHub usernames) to request a review from.'
-  team-reviewers:
-    description: 'A comma separated list of GitHub teams to request a review from.'
-  milestone:
-    description: 'The number of the milestone to associate this pull request with.'
-  project:
-    description: 'Deprecated. See README for details.'
-  project-column:
-    description: 'Deprecated. See README for details.'
-  draft:
-    description: 'Create a draft pull request'
+    description: >
+      The author name and email address in the format `Display Name <email@address.com>`.
+      Defaults to the user who triggered the workflow run.
+    default: '${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>'
+  signoff:
+    description: 'Add `Signed-off-by` line by the committer at the end of the commit log message.'
+    default: false
  branch:
    description: 'The pull request branch name.'
-  request-to-parent:
-    description: 'Create the pull request in the parent repository of the checked out fork.'
+    default: 'create-pull-request/patch'
+  delete-branch:
+    description: >
+      Delete the `branch` if it doesn't have an active pull request associated with it.
    default: false
-  base:
-    description: 'The pull request base branch.'
  branch-suffix:
-    description: 'The branch suffix type.'
+    description: 'The branch suffix type when using the alternative branching strategy.'
+  base:
+    description: >
+      The pull request base branch.
+      Defaults to the branch checked out in the workflow.
+  push-to-fork:
+    description: >
+      A fork of the checked out parent repository to which the pull request branch will be pushed.
+      e.g. `owner/repo-fork`.
+      The pull request will be created to merge the fork's branch into the parent's base.
+  sign-commits:
+    description: 'Sign commits as `github-actions[bot]` when using `GITHUB_TOKEN`, or your own bot when using GitHub App tokens.'
+    default: false
+  title:
+    description: 'The title of the pull request.'
+    default: 'Changes by create-pull-request action'
+  body:
+    description: 'The body of the pull request.'
+    default: 'Automated changes by [create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action'
+  body-path:
+    description: 'The path to a file containing the pull request body. Takes precedence over `body`.'
+  labels:
+    description: 'A comma or newline separated list of labels.'
+  assignees:
+    description: 'A comma or newline separated list of assignees (GitHub usernames).'
+  reviewers:
+    description: 'A comma or newline separated list of reviewers (GitHub usernames) to request a review from.'
+  team-reviewers:
+    description: >
+      A comma or newline separated list of GitHub teams to request a review from.
+      Note that a `repo` scoped Personal Access Token (PAT) may be required.
+  milestone:
+    description: 'The number of the milestone to associate the pull request with.'
+  draft:
+    description: >
+      Create a draft pull request.
+      Valid values are `true` (only on create), `always-true` (on create and update), and `false`.
+    default: false
+  maintainer-can-modify:
+    description: 'Indicates whether maintainers can modify the pull request.'
+    default: true
 outputs:
  pull-request-number:
    description: 'The pull request number'
+  pull-request-url:
+    description: 'The URL of the pull request.'
+  pull-request-operation:
+    description: 'The pull request operation performed by the action, `created`, `updated` or `closed`.'
+  pull-request-head-sha:
+    description: 'The commit SHA of the pull request branch.'
+  pull-request-branch:
+    description: 'The pull request branch name'
 runs:
-  using: 'node12'
+  using: 'node20'
  main: 'dist/index.js'
 branding:
  icon: 'git-pull-request'
--- a/dist/790.index.js
+++ b/dist/790.index.js
@ -0,0 +1,16 @@
+"use strict";
+exports.id = 790;
+exports.ids = [790];
+exports.modules = {
+
+/***/ 790:
+/***/ ((__unused_webpack_module, exports, __webpack_require__) => {
+
+var y=Object.defineProperty;var c=(R,o)=>y(R,"name",{value:o,configurable:!0});__webpack_require__(3024),__webpack_require__(6760);const node=__webpack_require__(117);__webpack_require__(7067),__webpack_require__(4708),__webpack_require__(8522),__webpack_require__(7075),__webpack_require__(4573),__webpack_require__(7975),__webpack_require__(7713),__webpack_require__(3136),__webpack_require__(7030);let s=0;const S={START_BOUNDARY:s++,HEADER_FIELD_START:s++,HEADER_FIELD:s++,HEADER_VALUE_START:s++,HEADER_VALUE:s++,HEADER_VALUE_ALMOST_DONE:s++,HEADERS_ALMOST_DONE:s++,PART_DATA_START:s++,PART_DATA:s++,END:s++};let f=1;const F={PART_BOUNDARY:f,LAST_BOUNDARY:f*=2},LF=10,CR=13,SPACE=32,HYPHEN=45,COLON=58,A=97,Z=122,lower=c(R=>R|32,"lower"),noop=c(()=>{},"noop"),g=class g{constructor(o){this.index=0,this.flags=0,this.onHeaderEnd=noop,this.onHeaderField=noop,this.onHeadersEnd=noop,this.onHeaderValue=noop,this.onPartBegin=noop,this.onPartData=noop,this.onPartEnd=noop,this.boundaryChars={},o=`\r
+--`+o;const t=new Uint8Array(o.length);for(let n=0;n<o.length;n++)t[n]=o.charCodeAt(n),this.boundaryChars[t[n]]=!0;this.boundary=t,this.lookbehind=new Uint8Array(this.boundary.length+8),this.state=S.START_BOUNDARY}write(o){let t=0;const n=o.length;let E=this.index,{lookbehind:l,boundary:h,boundaryChars:H,index:e,state:a,flags:d}=this;const b=this.boundary.length,m=b-1,O=o.length;let r,P;const u=c(D=>{this[D+"Mark"]=t},"mark"),i=c(D=>{delete this[D+"Mark"]},"clear"),T=c((D,p,_,N)=>{(p===void 0||p!==_)&&this[D](N&&N.subarray(p,_))},"callback"),L=c((D,p)=>{const _=D+"Mark";_ in this&&(p?(T(D,this[_],t,o),delete this[_]):(T(D,this[_],o.length,o),this[_]=0))},"dataCallback");for(t=0;t<n;t++)switch(r=o[t],a){case S.START_BOUNDARY:if(e===h.length-2){if(r===HYPHEN)d|=F.LAST_BOUNDARY;else if(r!==CR)return;e++;break}else if(e-1===h.length-2){if(d&F.LAST_BOUNDARY&&r===HYPHEN)a=S.END,d=0;else if(!(d&F.LAST_BOUNDARY)&&r===LF)e=0,T("onPartBegin"),a=S.HEADER_FIELD_START;else return;break}r!==h[e+2]&&(e=-2),r===h[e+2]&&e++;break;case S.HEADER_FIELD_START:a=S.HEADER_FIELD,u("onHeaderField"),e=0;case S.HEADER_FIELD:if(r===CR){i("onHeaderField"),a=S.HEADERS_ALMOST_DONE;break}if(e++,r===HYPHEN)break;if(r===COLON){if(e===1)return;L("onHeaderField",!0),a=S.HEADER_VALUE_START;break}if(P=lower(r),P<A||P>Z)return;break;case S.HEADER_VALUE_START:if(r===SPACE)break;u("onHeaderValue"),a=S.HEADER_VALUE;case S.HEADER_VALUE:r===CR&&(L("onHeaderValue",!0),T("onHeaderEnd"),a=S.HEADER_VALUE_ALMOST_DONE);break;case S.HEADER_VALUE_ALMOST_DONE:if(r!==LF)return;a=S.HEADER_FIELD_START;break;case S.HEADERS_ALMOST_DONE:if(r!==LF)return;T("onHeadersEnd"),a=S.PART_DATA_START;break;case S.PART_DATA_START:a=S.PART_DATA,u("onPartData");case S.PART_DATA:if(E=e,e===0){for(t+=m;t<O&&!(o[t]in H);)t+=b;t-=m,r=o[t]}if(e<h.length)h[e]===r?(e===0&&L("onPartData",!0),e++):e=0;else if(e===h.length)e++,r===CR?d|=F.PART_BOUNDARY:r===HYPHEN?d|=F.LAST_BOUNDARY:e=0;else if(e-1===h.length)if(d&F.PART_BOUNDARY){if(e=0,r===LF){d&=~F.PART_BOUNDARY,T("onPartEnd"),T("onPartBegin"),a=S.HEADER_FIELD_START;break}}else d&F.LAST_BOUNDARY&&r===HYPHEN?(T("onPartEnd"),a=S.END,d=0):e=0;if(e>0)l[e-1]=r;else if(E>0){const D=new Uint8Array(l.buffer,l.byteOffset,l.byteLength);T("onPartData",0,E,D),E=0,u("onPartData"),t--}break;case S.END:break;default:throw new Error(`Unexpected state entered: ${a}`)}L("onHeaderField"),L("onHeaderValue"),L("onPartData"),this.index=e,this.state=a,this.flags=d}end(){if(this.state===S.HEADER_FIELD_START&&this.index===0||this.state===S.PART_DATA&&this.index===this.boundary.length)this.onPartEnd();else if(this.state!==S.END)throw new Error("MultipartParser.end(): stream ended unexpectedly")}};c(g,"MultipartParser");let MultipartParser=g;function _fileName(R){const o=R.match(/\bfilename=("(.*?)"|([^()<>@,;:\\"/[\]?={}\s\t]+))($|;\s)/i);if(!o)return;const t=o[2]||o[3]||"";let n=t.slice(t.lastIndexOf("\\")+1);return n=n.replace(/%22/g,'"'),n=n.replace(/&#(\d{4});/g,(E,l)=>String.fromCharCode(l)),n}c(_fileName,"_fileName");async function toFormData(R,o){if(!/multipart/i.test(o))throw new TypeError("Failed to fetch");const t=o.match(/boundary=(?:"([^"]+)"|([^;]+))/i);if(!t)throw new TypeError("no or bad content-type header, no multipart boundary");const n=new MultipartParser(t[1]||t[2]);let E,l,h,H,e,a;const d=[],b=new node.FormData,m=c(i=>{h+=u.decode(i,{stream:!0})},"onPartData"),O=c(i=>{d.push(i)},"appendToFile"),r=c(()=>{const i=new node.File(d,a,{type:e});b.append(H,i)},"appendFileToFormData"),P=c(()=>{b.append(H,h)},"appendEntryToFormData"),u=new TextDecoder("utf-8");u.decode(),n.onPartBegin=function(){n.onPartData=m,n.onPartEnd=P,E="",l="",h="",H="",e="",a=null,d.length=0},n.onHeaderField=function(i){E+=u.decode(i,{stream:!0})},n.onHeaderValue=function(i){l+=u.decode(i,{stream:!0})},n.onHeaderEnd=function(){if(l+=u.decode(),E=E.toLowerCase(),E==="content-disposition"){const i=l.match(/\bname=("([^"]*)"|([^()<>@,;:\\"/[\]?={}\s\t]+))/i);i&&(H=i[2]||i[3]||""),a=_fileName(l),a&&(n.onPartData=O,n.onPartEnd=r)}else E==="content-type"&&(e=l);l="",E=""};for await(const i of R)n.write(i);return n.end(),b}c(toFormData,"toFormData"),exports.toFormData=toFormData;
+
+
+/***/ })
+
+};
+;
--- a/dist/cpr/common.py
+++ b/dist/cpr/common.py
@ -1,48 +0,0 @@
-#!/usr/bin/env python3
-import random
-import re
-import string
-
-
-def get_random_string(length=7, chars=string.ascii_lowercase + string.digits):
-    return "".join(random.choice(chars) for _ in range(length))
-
-
-def parse_github_repository(url):
-    # Parse the protocol and github repository from a URL
-    # e.g. HTTPS, peter-evans/create-pull-request
-    https_pattern = re.compile(r"^https://github.com/(.+/.+)$")
-    ssh_pattern = re.compile(r"^git@github.com:(.+/.+).git$")
-
-    match = https_pattern.match(url)
-    if match is not None:
-        return "HTTPS", match.group(1)
-
-    match = ssh_pattern.match(url)
-    if match is not None:
-        return "SSH", match.group(1)
-
-    raise ValueError(f"The format of '{url}' is not a valid GitHub repository URL")
-
-
-def parse_display_name_email(display_name_email):
-    # Parse the name and email address from a string in the following format
-    # Display Name <email@address.com>
-    pattern = re.compile(r"^([^<]+)\s*<([^>]+)>$")
-
-    # Check we have a match
-    match = pattern.match(display_name_email)
-    if match is None:
-        raise ValueError(
-            f"The format of '{display_name_email}' is not a valid email address with display name"
-        )
-
-    # Check that name and email are not just whitespace
-    name = match.group(1).strip()
-    email = match.group(2).strip()
-    if len(name) == 0 or len(email) == 0:
-        raise ValueError(
-            f"The format of '{display_name_email}' is not a valid email address with display name"
-        )
-
-    return name, email
--- a/dist/cpr/create_or_update_branch.py
+++ b/dist/cpr/create_or_update_branch.py
@ -1,145 +0,0 @@
-#!/usr/bin/env python3
-""" Create or Update Branch """
-import common as cmn
-from git import Repo, GitCommandError
-import os
-
-
-CHERRYPICK_EMPTY = (
-    "The previous cherry-pick is now empty, possibly due to conflict resolution."
-)
-
-
-def fetch_successful(repo, repo_url, branch):
-    try:
-        repo.git.fetch(repo_url, f"{branch}:refs/remotes/origin/{branch}")
-    except GitCommandError:
-        return False
-    return True
-
-
-def is_ahead(repo, branch_1, branch_2):
-    # Return true if branch_2 is ahead of branch_1
-    return (
-        int(repo.git.rev_list("--right-only", "--count", f"{branch_1}...{branch_2}"))
-        > 0
-    )
-
-
-def is_behind(repo, branch_1, branch_2):
-    # Return true if branch_2 is behind branch_1
-    return (
-        int(repo.git.rev_list("--left-only", "--count", f"{branch_1}...{branch_2}")) > 0
-    )
-
-
-def is_even(repo, branch_1, branch_2):
-    # Return true if branch_2 is even with branch_1
-    return not is_ahead(repo, branch_1, branch_2) and not is_behind(
-        repo, branch_1, branch_2
-    )
-
-
-def has_diff(repo, branch_1, branch_2):
-    diff = repo.git.diff(f"{branch_1}..{branch_2}")
-    return len(diff) > 0
-
-
-def create_or_update_branch(repo, repo_url, commit_message, base, branch):
-    # Set the default return values
-    action = "none"
-    diff = False
-
-    # Get the working base. This may or may not be the actual base.
-    working_base = repo.git.symbolic_ref("HEAD", "--short")
-    # If the base is not specified it is assumed to be the working base
-    if base is None:
-        base = working_base
-
-    # Save the working base changes to a temporary branch
-    temp_branch = cmn.get_random_string(length=20)
-    repo.git.checkout("HEAD", b=temp_branch)
-    # Commit any uncomitted changes
-    if repo.is_dirty(untracked_files=True):
-        print(f"Uncommitted changes found. Adding a commit.")
-        repo.git.add("-A")
-        repo.git.commit(m=commit_message)
-
-    # Perform fetch and reset the working base
-    # Commits made during the workflow will be removed
-    repo.git.fetch("--force", repo_url, f"{working_base}:{working_base}")
-
-    # If the working base is not the base, rebase the temp branch commits
-    if working_base != base:
-        print(
-            f"Rebasing commits made to branch '{working_base}' on to base branch '{base}'"
-        )
-        # Checkout the actual base
-        repo.git.fetch("--force", repo_url, f"{base}:{base}")
-        repo.git.checkout(base)
-        # Cherrypick commits from the temporary branch starting from the working base
-        commits = repo.git.rev_list("--reverse", f"{working_base}..{temp_branch}", ".")
-        for commit in commits.splitlines():
-            try:
-                repo.git.cherry_pick(
-                    "--strategy",
-                    "recursive",
-                    "--strategy-option",
-                    "theirs",
-                    f"{commit}",
-                )
-            except GitCommandError as e:
-                if CHERRYPICK_EMPTY not in e.stderr:
-                    print("Unexpected error: ", e)
-                    raise
-        # Reset the temp branch to the working index
-        repo.git.checkout("-B", temp_branch, "HEAD")
-        # Reset the base
-        repo.git.fetch("--force", repo_url, f"{base}:{base}")
-
-    # Try to fetch the pull request branch
-    if not fetch_successful(repo, repo_url, branch):
-        # The pull request branch does not exist
-        print(f"Pull request branch '{branch}' does not exist yet")
-        # Create the pull request branch
-        repo.git.checkout("HEAD", b=branch)
-        # Check if the pull request branch is ahead of the base
-        diff = is_ahead(repo, base, branch)
-        if diff:
-            action = "created"
-            print(f"Created branch '{branch}'")
-        else:
-            print(
-                f"Branch '{branch}' is not ahead of base '{base}' and will not be created"
-            )
-    else:
-        # The pull request branch exists
-        print(
-            f"Pull request branch '{branch}' already exists as remote branch 'origin/{branch}'"
-        )
-        # Checkout the pull request branch
-        repo.git.checkout(branch)
-
-        if has_diff(repo, branch, temp_branch):
-            # If the branch differs from the recreated temp version then the branch is reset
-            # For changes on base this action is similar to a rebase of the pull request branch
-            print(f"Resetting '{branch}'")
-            repo.git.checkout("-B", branch, temp_branch)
-            # repo.git.switch("-C", branch, temp_branch)
-
-        # Check if the pull request branch has been updated
-        # If the branch was reset or updated it will be ahead
-        # It may be behind if a reset now results in no diff with the base
-        if not is_even(repo, f"origin/{branch}", branch):
-            action = "updated"
-            print(f"Updated branch '{branch}'")
-        else:
-            print(f"Branch '{branch}' is even with its remote and will not be updated")
-
-        # Check if the pull request branch is ahead of the base
-        diff = is_ahead(repo, base, branch)
-
-    # Delete the temporary branch
-    repo.git.branch("--delete", "--force", temp_branch)
-
-    return {"action": action, "diff": diff, "base": base}
--- a/dist/cpr/create_or_update_pull_request.py
+++ b/dist/cpr/create_or_update_pull_request.py
@ -1,162 +0,0 @@
-#!/usr/bin/env python3
-""" Create or Update Pull Request """
-from github import Github, GithubException
-import os
-
-
-def string_to_bool(str):
-    if str is None:
-        return False
-    else:
-        return str.lower() in [
-            "true",
-            "1",
-            "t",
-            "y",
-            "yes",
-            "on",
-        ]
-
-
-def cs_string_to_list(str):
-    # Split the comma separated string into a list
-    l = [i.strip() for i in str.split(",")]
-    # Remove empty strings
-    return list(filter(None, l))
-
-
-def create_project_card(github_repo, project_name, project_column_name, pull_request):
-    # Locate the project by name
-    project = None
-    for project_item in github_repo.get_projects("all"):
-        if project_item.name == project_name:
-            project = project_item
-            break
-
-    if not project:
-        print("::error::Project not found. Unable to create project card.")
-        return
-
-    # Locate the column by name
-    column = None
-    for column_item in project.get_columns():
-        if column_item.name == project_column_name:
-            column = column_item
-            break
-
-    if not column:
-        print("::error::Project column not found. Unable to create project card.")
-        return
-
-    # Create a project card for the pull request
-    column.create_card(content_id=pull_request.id, content_type="PullRequest")
-    print(
-        "Added pull request #%d to project '%s' under column '%s'"
-        % (pull_request.number, project.name, column.name)
-    )
-
-
-def create_or_update_pull_request(
-    github_token,
-    github_repository,
-    branch,
-    base,
-    title,
-    body,
-    labels,
-    assignees,
-    milestone,
-    reviewers,
-    team_reviewers,
-    project_name,
-    project_column_name,
-    draft,
-    request_to_parent,
-):
-    github_repo = head_repo = Github(github_token).get_repo(github_repository)
-    if string_to_bool(request_to_parent):
-        github_repo = github_repo.parent
-        if github_repo is None:
-            raise ValueError(
-                "The checked out repository is not a fork. Input 'request-to-parent' should be set to false."
-            )
-
-    head_branch = f"{head_repo.owner.login}:{branch}"
-
-    # Create the pull request
-    try:
-        pull_request = github_repo.create_pull(
-            title=title,
-            body=body,
-            base=base,
-            head=head_branch,
-            draft=string_to_bool(draft),
-        )
-        print(
-            f"Created pull request #{pull_request.number} ({head_branch} => {github_repo.owner.login}:{base})"
-        )
-    except GithubException as e:
-        if e.status == 422:
-            # A pull request exists for this branch and base
-            # Get the pull request
-            pull_request = github_repo.get_pulls(
-                state="open", base=base, head=head_branch
-            )[0]
-            # Update title and body
-            pull_request.as_issue().edit(title=title, body=body)
-            print(
-                f"Updated pull request #{pull_request.number} ({head_branch} => {github_repo.owner.login}:{base})"
-            )
-        else:
-            print(str(e))
-            raise
-
-    # Set the output variables
-    os.system(f"echo ::set-env name=PULL_REQUEST_NUMBER::{pull_request.number}")
-    os.system(f"echo ::set-output name=pull-request-number::{pull_request.number}")
-    # 'pr_number' is deprecated
-    os.system(f"echo ::set-output name=pr_number::{pull_request.number}")
-
-    # Set labels, assignees and milestone
-    if labels is not None:
-        print(f"Applying labels '{labels}'")
-        pull_request.as_issue().edit(labels=cs_string_to_list(labels))
-    if assignees is not None:
-        print(f"Applying assignees '{assignees}'")
-        pull_request.as_issue().edit(assignees=cs_string_to_list(assignees))
-    if milestone is not None:
-        print(f"Applying milestone '{milestone}'")
-        milestone = github_repo.get_milestone(int(milestone))
-        pull_request.as_issue().edit(milestone=milestone)
-
-    # Set pull request reviewers
-    if reviewers is not None:
-        print(f"Requesting reviewers '{reviewers}'")
-        try:
-            pull_request.create_review_request(reviewers=cs_string_to_list(reviewers))
-        except GithubException as e:
-            # Likely caused by "Review cannot be requested from pull request author."
-            if e.status == 422:
-                print("Request reviewers failed - {}".format(e.data["message"]))
-
-    # Set pull request team reviewers
-    if team_reviewers is not None:
-        print(f"Requesting team reviewers '{team_reviewers}'")
-        pull_request.create_review_request(
-            team_reviewers=cs_string_to_list(team_reviewers)
-        )
-
-    # Create a project card for the pull request
-    if project_name is not None and project_column_name is not None:
-        try:
-            create_project_card(
-                github_repo, project_name, project_column_name, pull_request
-            )
-        except GithubException as e:
-            # Likely caused by "Project already has the associated issue."
-            if e.status == 422:
-                print(
-                    "Create project card failed - {}".format(
-                        e.data["errors"][0]["message"]
-                    )
-                )
--- a/dist/cpr/create_pull_request.py
+++ b/dist/cpr/create_pull_request.py
@ -1,229 +0,0 @@
-#!/usr/bin/env python3
-""" Create Pull Request """
-import base64
-import common as cmn
-import create_or_update_branch as coub
-import create_or_update_pull_request as coupr
-from git import Repo, GitCommandError
-import json
-import os
-import sys
-import time
-
-
-# Default the committer and author to the GitHub Actions bot
-DEFAULT_COMMITTER = "GitHub <noreply@github.com>"
-DEFAULT_AUTHOR = (
-    "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
-)
-DEFAULT_COMMIT_MESSAGE = "[create-pull-request] automated change"
-DEFAULT_TITLE = "Changes by create-pull-request action"
-DEFAULT_BODY = (
-    "Automated changes by "
-    + "[create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action"
-)
-DEFAULT_BRANCH = "create-pull-request/patch"
-
-
-def get_git_config_value(repo, name):
-    try:
-        return repo.git.config("--get", name)
-    except GitCommandError:
-        return None
-
-
-def get_repository_detail(repo):
-    remote_origin_url = get_git_config_value(repo, "remote.origin.url")
-    if remote_origin_url is None:
-        raise ValueError("Failed to fetch 'remote.origin.url' from git config")
-    protocol, github_repository = cmn.parse_github_repository(remote_origin_url)
-    return remote_origin_url, protocol, github_repository
-
-
-def git_user_config_is_set(repo):
-    name = get_git_config_value(repo, "user.name")
-    email = get_git_config_value(repo, "user.email")
-
-    if name is not None and email is not None:
-        print(f"Git user already configured as '{name} <{email}>'")
-        return True
-
-    committer_name = get_git_config_value(repo, "committer.name")
-    committer_email = get_git_config_value(repo, "committer.email")
-    author_name = get_git_config_value(repo, "author.name")
-    author_email = get_git_config_value(repo, "author.email")
-
-    if (
-        committer_name is not None
-        and committer_email is not None
-        and author_name is not None
-        and author_email is not None
-    ):
-        print(
-            f"Git committer already configured as '{committer_name} <{committer_email}>'"
-        )
-        print(f"Git author already configured as '{author_name} <{author_email}>'")
-        return True
-
-    return False
-
-
-def set_committer_author(repo, committer, author):
-    # If either committer or author is supplied they will be cross used
-    if committer is None and author is not None:
-        print("Supplied author will also be used as the committer.")
-        committer = author
-    if author is None and committer is not None:
-        print("Supplied committer will also be used as the author.")
-        author = committer
-
-    # If no committer/author has been supplied but user configuration already
-    # exists in git config we can exit and use the existing config as-is.
-    if committer is None and author is None:
-        if git_user_config_is_set(repo):
-            return
-
-    # Set defaults if no committer/author has been supplied
-    if committer is None and author is None:
-        committer = DEFAULT_COMMITTER
-        author = DEFAULT_AUTHOR
-
-    # Set git environment. This will not persist after the action completes.
-    committer_name, committer_email = cmn.parse_display_name_email(committer)
-    author_name, author_email = cmn.parse_display_name_email(author)
-    repo.git.update_environment(
-        GIT_COMMITTER_NAME=committer_name,
-        GIT_COMMITTER_EMAIL=committer_email,
-        GIT_AUTHOR_NAME=author_name,
-        GIT_AUTHOR_EMAIL=author_email,
-    )
-    print(f"Configured git committer as '{committer_name} <{committer_email}>'")
-    print(f"Configured git author as '{author_name} <{author_email}>'")
-
-
-# Get required environment variables
-github_token = os.environ["GITHUB_TOKEN"]
-# Get environment variables with defaults
-path = os.getenv("CPR_PATH", os.getcwd())
-branch = os.getenv("CPR_BRANCH", DEFAULT_BRANCH)
-commit_message = os.getenv("CPR_COMMIT_MESSAGE", DEFAULT_COMMIT_MESSAGE)
-# Get environment variables with a default of 'None'
-committer = os.environ.get("CPR_COMMITTER")
-author = os.environ.get("CPR_AUTHOR")
-base = os.environ.get("CPR_BASE")
-
-# Set the repo path
-repo = Repo(path)
-
-# Determine the GitHub repository from git config
-# This will be the target repository for the pull request
-repo_url, protocol, github_repository = get_repository_detail(repo)
-print(f"Target repository set to {github_repository}")
-
-if protocol == "HTTPS":
-    print(f"::debug::Using HTTPS protocol")
-    # Encode and configure the basic credential for HTTPS access
-    basic_credential = base64.b64encode(
-        f"x-access-token:{github_token}".encode("utf-8")
-    ).decode("utf-8")
-    # Mask the basic credential in logs and debug output
-    print(f"::add-mask::{basic_credential}")
-    repo.git.set_persistent_git_options(
-        c=f"http.https://github.com/.extraheader=AUTHORIZATION: basic {basic_credential}"
-    )
-
-# Determine if the checked out ref is a valid base for a pull request
-# The action needs the checked out HEAD ref to be a branch
-# This check will fail in the following cases:
-# - HEAD is detached
-# - HEAD is a merge commit (pull_request events)
-# - HEAD is a tag
-try:
-    working_base = repo.git.symbolic_ref("HEAD", "--short")
-except GitCommandError as e:
-    print(f"::debug::{e.stderr}")
-    print(
-        f"::error::The checked out ref is not a valid base for a pull request. "
-        + "Unable to continue. Exiting."
-    )
-    sys.exit(1)
-
-# Exit if the working base is a PR branch created by this action.
-# This may occur when using a PAT instead of GITHUB_TOKEN because
-# a PAT allows workflow actions to trigger further events.
-if working_base.startswith(branch):
-    print(
-        f"::error::Working base branch '{working_base}' was created by this action. "
-        + "Unable to continue. Exiting."
-    )
-    sys.exit(1)
-
-# Fetch an optional environment variable to determine the branch suffix
-branch_suffix = os.environ.get("CPR_BRANCH_SUFFIX")
-if branch_suffix is not None:
-    if branch_suffix == "short-commit-hash":
-        # Suffix with the short SHA1 hash
-        branch = "{}-{}".format(branch, repo.git.rev_parse("--short", "HEAD"))
-    elif branch_suffix == "timestamp":
-        # Suffix with the current timestamp
-        branch = "{}-{}".format(branch, int(time.time()))
-    elif branch_suffix == "random":
-        # Suffix with a 7 character random string
-        branch = "{}-{}".format(branch, cmn.get_random_string())
-    else:
-        print(
-            f"::error::Branch suffix '{branch_suffix}' is not a valid value. "
-            + "Unable to continue. Exiting."
-        )
-        sys.exit(1)
-
-# Output head branch
-print(f"Pull request branch to create or update set to '{branch}'")
-
-# Set the committer and author
-try:
-    set_committer_author(repo, committer, author)
-except ValueError as e:
-    print(f"::error::{e} " + "Unable to continue. Exiting.")
-    sys.exit(1)
-
-# Create or update the pull request branch
-result = coub.create_or_update_branch(repo, repo_url, commit_message, base, branch)
-
-if result["action"] in ["created", "updated"]:
-    # The branch was created or updated
-    print(f"Pushing pull request branch to 'origin/{branch}'")
-    repo.git.push("--force", repo_url, f"HEAD:refs/heads/{branch}")
-
-    # Set the base. It would have been 'None' if not specified as an input
-    base = result["base"]
-
-    # If there is no longer a diff with the base delete the branch and exit
-    if not result["diff"]:
-        print(f"Branch '{branch}' no longer differs from base branch '{base}'")
-        print(f"Closing pull request and deleting branch '{branch}'")
-        repo.git.push("--delete", "--force", repo_url, f"refs/heads/{branch}")
-        sys.exit()
-
-    # Fetch optional environment variables with default values
-    title = os.getenv("CPR_TITLE", DEFAULT_TITLE)
-    body = os.getenv("CPR_BODY", DEFAULT_BODY)
-
-    # Create or update the pull request
-    coupr.create_or_update_pull_request(
-        github_token,
-        github_repository,
-        branch,
-        base,
-        title,
-        body,
-        os.environ.get("CPR_LABELS"),
-        os.environ.get("CPR_ASSIGNEES"),
-        os.environ.get("CPR_MILESTONE"),
-        os.environ.get("CPR_REVIEWERS"),
-        os.environ.get("CPR_TEAM_REVIEWERS"),
-        os.environ.get("CPR_PROJECT_NAME"),
-        os.environ.get("CPR_PROJECT_COLUMN_NAME"),
-        os.environ.get("CPR_DRAFT"),
-        os.environ.get("CPR_REQUEST_TO_PARENT"),
-    )
--- a/dist/cpr/requirements.txt
+++ b/dist/cpr/requirements.txt
@ -1,4 +0,0 @@
-setuptools==46.2.0
-wheel==0.34.2
-GitPython==3.1.2
-PyGithub==1.51
--- a/dist/cpr/test_common.py
+++ b/dist/cpr/test_common.py
@ -1,63 +0,0 @@
-#!/usr/bin/env python3
-""" Test Common """
-import common as cmn
-import pytest
-
-
-def test_get_random_string():
-    assert len(cmn.get_random_string()) == 7
-    assert len(cmn.get_random_string(length=20)) == 20
-
-
-def test_parse_github_repository_success():
-    protocol, repository = cmn.parse_github_repository(
-        "https://github.com/peter-evans/create-pull-request"
-    )
-    assert protocol == "HTTPS"
-    assert repository == "peter-evans/create-pull-request"
-
-    protocol, repository = cmn.parse_github_repository(
-        "git@github.com:peter-evans/create-pull-request.git"
-    )
-    assert protocol == "SSH"
-    assert repository == "peter-evans/create-pull-request"
-
-
-def test_parse_github_repository_failure():
-    url = "https://github.com/peter-evans"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_github_repository(url)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{url}' is not a valid GitHub repository URL"
-    )
-
-
-def test_parse_display_name_email_success():
-    name, email = cmn.parse_display_name_email("abc def <abc@def.com>")
-    assert name == "abc def"
-    assert email == "abc@def.com"
-
-    name, email = cmn.parse_display_name_email(
-        "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
-    )
-    assert name == "github-actions[bot]"
-    assert email == "41898282+github-actions[bot]@users.noreply.github.com"
-
-
-def test_parse_display_name_email_failure():
-    display_name_email = "abc@def.com"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_display_name_email(display_name_email)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{display_name_email}' is not a valid email address with display name"
-    )
-
-    display_name_email = " < >"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_display_name_email(display_name_email)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{display_name_email}' is not a valid email address with display name"
-    )
--- a/dist/cpr/test_create_or_update_branch.py
+++ b/dist/cpr/test_create_or_update_branch.py
@ -1,757 +0,0 @@
-#!/usr/bin/env python3
-""" Test Create or Update Branch """
-import create_or_update_branch as coub
-from git import Repo
-import os
-import pytest
-import sys
-import time
-
-
-# Set git repo
-REPO_PATH = os.getenv("COUB_REPO_PATH", os.getcwd())
-repo = Repo(REPO_PATH)
-
-# Set git environment
-author_name = "github-actions[bot]"
-author_email = "41898282+github-actions[bot]@users.noreply.github.com"
-committer_name = "GitHub"
-committer_email = "noreply@github.com"
-repo.git.update_environment(
-    GIT_AUTHOR_NAME=author_name,
-    GIT_AUTHOR_EMAIL=author_email,
-    GIT_COMMITTER_NAME=committer_name,
-    GIT_COMMITTER_EMAIL=committer_email,
-)
-
-REPO_URL = repo.git.config("--get", "remote.origin.url")
-
-TRACKED_FILE = "tracked-file.txt"
-UNTRACKED_FILE = "untracked-file.txt"
-
-DEFAULT_BRANCH = "tests/master"
-NOT_BASE_BRANCH = "tests/branch-that-is-not-the-base"
-NOT_EXIST_BRANCH = "tests/branch-that-does-not-exist"
-
-COMMIT_MESSAGE = "[create-pull-request] automated change"
-BRANCH = "tests/create-pull-request/patch"
-BASE = DEFAULT_BRANCH
-
-
-def create_tracked_change(content=None):
-    if content is None:
-        content = str(time.time())
-    # Create a tracked file change
-    with open(os.path.join(REPO_PATH, TRACKED_FILE), "w") as f:
-        f.write(content)
-    return content
-
-
-def create_untracked_change(content=None):
-    if content is None:
-        content = str(time.time())
-    # Create an untracked file change
-    with open(os.path.join(REPO_PATH, UNTRACKED_FILE), "w") as f:
-        f.write(content)
-    return content
-
-
-def get_tracked_content():
-    # Read the content of the tracked file
-    with open(os.path.join(REPO_PATH, TRACKED_FILE), "r") as f:
-        return f.read()
-
-
-def get_untracked_content():
-    # Read the content of the untracked file
-    with open(os.path.join(REPO_PATH, UNTRACKED_FILE), "r") as f:
-        return f.read()
-
-
-def create_changes(tracked_content=None, untracked_content=None):
-    tracked_content = create_tracked_change(tracked_content)
-    untracked_content = create_untracked_change(untracked_content)
-    return tracked_content, untracked_content
-
-
-def create_commits(number=2, final_tracked_content=None, final_untracked_content=None):
-    for i in range(number):
-        commit_number = i + 1
-        if commit_number == number:
-            tracked_content, untracked_content = create_changes(
-                final_tracked_content, final_untracked_content
-            )
-        else:
-            tracked_content, untracked_content = create_changes()
-        repo.git.add("-A")
-        repo.git.commit(m=f"Commit {commit_number}")
-    return tracked_content, untracked_content
-
-
-@pytest.fixture(scope="module", autouse=True)
-def before_after_all():
-    print("Before all tests")
-    # Check there are no local changes that might be
-    # destroyed by running these tests
-    assert not repo.is_dirty(untracked_files=True)
-
-    # Create a new default branch for the test run
-    repo.remotes.origin.fetch()
-    repo.git.checkout("master")
-    repo.git.checkout("HEAD", b=NOT_BASE_BRANCH)
-    create_tracked_change()
-    repo.git.add("-A")
-    repo.git.commit(m="This commit should not appear in pr branches")
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{NOT_BASE_BRANCH}")
-    # Create a new default branch for the test run
-    repo.git.checkout("master")
-    repo.git.checkout("HEAD", b=DEFAULT_BRANCH)
-    create_tracked_change()
-    repo.git.add("-A")
-    repo.git.commit(m="Add file to be a tracked file for tests")
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-
-    yield
-
-    print("After all tests")
-    repo.git.checkout("master")
-    # Delete the "not base branch" created for the test run
-    repo.git.branch("--delete", "--force", NOT_BASE_BRANCH)
-    repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{NOT_BASE_BRANCH}")
-    # Delete the default branch created for the test run
-    repo.git.branch("--delete", "--force", DEFAULT_BRANCH)
-    repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{DEFAULT_BRANCH}")
-
-
-def before_test():
-    print("Before test")
-    # Checkout the default branch
-    repo.git.checkout(DEFAULT_BRANCH)
-
-
-def after_test(delete_remote=True):
-    print("After test")
-    # Output git log
-    print(repo.git.log("-5", pretty="oneline"))
-    # Delete the pull request branch if it exists
-    repo.git.checkout(DEFAULT_BRANCH)
-    print(f"Deleting {BRANCH}")
-    for branch in repo.branches:
-        if branch.name == BRANCH:
-            repo.git.branch("--delete", "--force", BRANCH)
-            break
-    if delete_remote:
-        print(f"Deleting origin/{BRANCH}")
-        for ref in repo.remotes.origin.refs:
-            if ref.name == f"origin/{BRANCH}":
-                repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{BRANCH}")
-                repo.remotes.origin.fetch("--prune")
-                break
-
-
-@pytest.fixture(autouse=True)
-def before_after_tests():
-    before_test()
-    yield
-    after_test()
-
-
-# Tests if a branch exists and can be fetched
-def coub_fetch_successful():
-    assert coub.fetch_successful(repo, REPO_URL, NOT_BASE_BRANCH)
-    assert not coub.fetch_successful(repo, REPO_URL, NOT_EXIST_BRANCH)
-
-
-# Tests no changes resulting in no new branch being created
-def coub_no_changes_on_create():
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "none"
-
-
-# Tests create and update with a tracked file change
-def coub_tracked_changes():
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-
-
-# Tests create and update with an untracked file change
-def coub_untracked_changes():
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with identical changes
-# The pull request branch will not be updated
-def coub_identical_changes():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create identical tracked and untracked file changes
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "none"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with commits on the base inbetween
-def coub_commits_on_base():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and then an update with no changes
-# This effectively reverts the branch back to match the base and results in no diff
-def coub_changes_no_diff():
-    # Save the default branch tracked content
-    default_tracked_content = get_tracked_content()
-
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Running with no update effectively reverts the branch back to match the base
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == default_tracked_content
-
-
-# Tests create and update with commits on the base inbetween
-# The changes on base effectively revert the branch back to match the base and results in no diff
-def coub_commits_on_base_no_diff():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    tracked_content, untracked_content = create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create the same tracked and untracked file changes that were made to the base
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with commits on the working base (during the workflow)
-def coub_commits_on_working_base():
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with changes and commits on the working base (during the workflow)
-def coub_changes_and_commits_on_working_base():
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with changes and commits on the working base (during the workflow)
-# with commits on the base inbetween
-def coub_changes_and_commits_on_base_and_working_base():
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests no changes resulting in no new branch being created
-def coub_wbnb_no_changes_on_create():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "none"
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with a tracked file change
-def coub_wbnb_tracked_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with an untracked file change
-def coub_wbnb_untracked_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with identical changes
-# The pull request branch will not be updated
-def coub_wbnb_identical_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create identical tracked and untracked file changes
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "none"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the base inbetween
-def coub_wbnb_commits_on_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and then an update with no changes
-# This effectively reverts the branch back to match the base and results in no diff
-def coub_wbnb_changes_no_diff():
-    # Save the default branch tracked content
-    default_tracked_content = get_tracked_content()
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Running with no update effectively reverts the branch back to match the base
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == default_tracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the base inbetween
-# The changes on base effectively revert the branch back to match the base and results in no diff
-# This scenario will cause cherrypick to fail due to an empty commit.
-# The commit is empty because the changes now exist on the base.
-def coub_wbnb_commits_on_base_no_diff():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    tracked_content, untracked_content = create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create the same tracked and untracked file changes that were made to the base
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the working base (during the workflow)
-def coub_wbnb_commits_on_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with changes and commits on the working base (during the workflow)
-def coub_wbnb_changes_and_commits_on_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with changes and commits on the working base (during the workflow)
-# with commits on the base inbetween
-def coub_wbnb_changes_and_commits_on_base_and_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# pytest -v -s ~/git/create-pull-request/src
-
-test_coub_fetch_successful = coub_fetch_successful
-
-test_coub_no_changes_on_create = coub_no_changes_on_create
-test_coub_tracked_changes = coub_tracked_changes
-test_coub_untracked_changes = coub_untracked_changes
-test_coub_identical_changes = coub_identical_changes
-test_coub_commits_on_base = coub_commits_on_base
-
-test_coub_changes_no_diff = coub_changes_no_diff
-test_coub_commits_on_base_no_diff = coub_commits_on_base_no_diff
-
-test_coub_commits_on_working_base = coub_commits_on_working_base
-test_coub_changes_and_commits_on_working_base = coub_changes_and_commits_on_working_base
-test_coub_changes_and_commits_on_base_and_working_base = (
-    coub_changes_and_commits_on_base_and_working_base
-)
-
-# WBNB
-test_coub_wbnb_no_changes_on_create = coub_wbnb_no_changes_on_create
-test_coub_wbnb_tracked_changes = coub_wbnb_tracked_changes
-test_coub_wbnb_untracked_changes = coub_wbnb_untracked_changes
-test_coub_wbnb_identical_changes = coub_wbnb_identical_changes
-test_coub_wbnb_commits_on_base = coub_wbnb_commits_on_base
-
-test_coub_wbnb_changes_no_diff = coub_wbnb_changes_no_diff
-test_coub_wbnb_commits_on_base_no_diff = coub_wbnb_commits_on_base_no_diff
-
-test_coub_wbnb_commits_on_working_base = coub_wbnb_commits_on_working_base
-test_coub_wbnb_changes_and_commits_on_working_base = (
-    coub_wbnb_changes_and_commits_on_working_base
-)
-test_coub_wbnb_changes_and_commits_on_base_and_working_base = (
-    coub_wbnb_changes_and_commits_on_base_and_working_base
-)
--- a/dist/index.js
+++ b/dist/index.js
--- a/dist/vendor/Deprecated-1.2.9.tar.gz
+++ b/dist/vendor/Deprecated-1.2.9.tar.gz
--- a/dist/vendor/GitPython-3.1.1.tar.gz
+++ b/dist/vendor/GitPython-3.1.1.tar.gz
--- a/dist/vendor/GitPython-3.1.2.tar.gz
+++ b/dist/vendor/GitPython-3.1.2.tar.gz
--- a/dist/vendor/PyGithub-1.50.tar.gz
+++ b/dist/vendor/PyGithub-1.50.tar.gz
--- a/dist/vendor/PyGithub-1.51.tar.gz
+++ b/dist/vendor/PyGithub-1.51.tar.gz
--- a/dist/vendor/PyJWT-1.7.1.tar.gz
+++ b/dist/vendor/PyJWT-1.7.1.tar.gz
--- a/dist/vendor/certifi-2020.4.5.1.tar.gz
+++ b/dist/vendor/certifi-2020.4.5.1.tar.gz
--- a/dist/vendor/chardet-3.0.4.tar.gz
+++ b/dist/vendor/chardet-3.0.4.tar.gz
--- a/dist/vendor/gitdb-4.0.4.tar.gz
+++ b/dist/vendor/gitdb-4.0.4.tar.gz
--- a/dist/vendor/gitdb-4.0.5.tar.gz
+++ b/dist/vendor/gitdb-4.0.5.tar.gz
--- a/dist/vendor/idna-2.9.tar.gz
+++ b/dist/vendor/idna-2.9.tar.gz
--- a/dist/vendor/requests-2.23.0.tar.gz
+++ b/dist/vendor/requests-2.23.0.tar.gz
--- a/dist/vendor/setuptools-46.1.3.zip
+++ b/dist/vendor/setuptools-46.1.3.zip
--- a/dist/vendor/setuptools-46.2.0.zip
+++ b/dist/vendor/setuptools-46.2.0.zip
--- a/dist/vendor/smmap-3.0.2.tar.gz
+++ b/dist/vendor/smmap-3.0.2.tar.gz
--- a/dist/vendor/smmap-3.0.4.tar.gz
+++ b/dist/vendor/smmap-3.0.4.tar.gz
--- a/dist/vendor/urllib3-1.25.9.tar.gz
+++ b/dist/vendor/urllib3-1.25.9.tar.gz
--- a/dist/vendor/wheel-0.34.2.tar.gz
+++ b/dist/vendor/wheel-0.34.2.tar.gz
--- a/dist/vendor/wrapt-1.12.1.tar.gz
+++ b/dist/vendor/wrapt-1.12.1.tar.gz
--- a/docs/assets/cpr-gitgraph.htm
+++ b/docs/assets/cpr-gitgraph.htm
@ -29,37 +29,37 @@
            orientation: "vertical-reverse"
        });

-        const master = gitgraph.branch("master");
-        master.commit("Last commit on base");
-        const localMaster = gitgraph.branch("<#1> master (local)");
-        localMaster.commit({
-            subject: "<uncommited changes>",
-            body: "Changes made to the local base during the workflow",
+        const main = gitgraph.branch("main");
+        main.commit("Last commit on base");
+        const localMain = gitgraph.branch("<#1> main (local)");
+        localMain.commit({
+            subject: "<uncommitted changes>",
+            body: "Changes to the local base during the workflow",
        })
        const remotePatch = gitgraph.branch("create-pull-request/patch");
        remotePatch.merge({
-            branch: localMaster,
+            branch: localMain,
            commitOptions: {
                subject: "[create-pull-request] automated change",
                body: "Changes pushed to create the remote branch",
            },
        });
-        master.commit("New commit on base");
+        main.commit("New commit on base");

-        const localMaster2 = gitgraph.branch("<#2> master (local)");
-        localMaster2.commit({
-            subject: "<uncommited changes>",
-            body: "Changes made to the updated local base during the workflow",
+        const localMain2 = gitgraph.branch("<#2> main (local)");
+        localMain2.commit({
+            subject: "<uncommitted changes>",
+            body: "Changes to the updated local base during the workflow",
        })
        remotePatch.merge({
-            branch: localMaster2,
+            branch: localMain2,
            commitOptions: {
                subject: "[create-pull-request] automated change",
                body: "Changes force pushed to update the remote branch",
            },
        });

-        master.merge(remotePatch);
+        main.merge(remotePatch);

    </script>

--- a/docs/assets/cpr-gitgraph.png
+++ b/docs/assets/cpr-gitgraph.png
--- a/docs/assets/pull-request-example.png
+++ b/docs/assets/pull-request-example.png
--- a/docs/common-issues.md
+++ b/docs/common-issues.md
@ -0,0 +1,53 @@
+# Common issues
+
+- [Troubleshooting](#troubleshooting)
+  - [Create using an existing branch as the PR branch](#create-using-an-existing-branch-as-the-pr-branch)
+- [Frequently requested features](#use-case-create-a-pull-request-to-update-x-on-release)
+  - [Disable force updates to existing PR branches](#disable-force-updates-to-existing-pr-branches)
+  - [Add a no-verify option to bypass git hooks](#add-a-no-verify-option-to-bypass-git-hooks)
+
+## Troubleshooting
+
+### Create using an existing branch as the PR branch
+
+A common point of confusion is to try and use an existing branch containing changes to raise in a PR as the `branch` input. This will not work because the action is primarily designed to be used in workflows where the PR branch does not exist yet. The action creates and manages the PR branch itself.
+
+If you have an existing branch that you just want to create a PR for, then I recommend using the official [GitHub CLI](https://cli.github.com/manual/gh_pr_create) in a workflow step.
+
+Alternatively, if you are trying to keep a branch up to date with another branch, then you can follow [this example](https://github.com/peter-evans/create-pull-request/blob/main/docs/examples.md#keep-a-branch-up-to-date-with-another).
+
+## Frequently requested features
+
+### Disable force updates to existing PR branches
+
+This behaviour is fundamental to how the action works and is a conscious design decision. The "rule" that I based this design on is that when a workflow executes the action to create or update a PR, the result of those two possible actions should never be different. The easiest way to maintain that consistency is to rebase the PR branch and force push it.
+
+If you want to avoid this behaviour there are some things that might work depending on your use case:
+- Check if the pull request branch exists in a separate step before the action runs and act accordingly.
+- Use the [alternative strategy](https://github.com/peter-evans/create-pull-request#alternative-strategy---always-create-a-new-pull-request-branch) of always creating a new PR that won't be updated by the action.
+- [Create your own commits](https://github.com/peter-evans/create-pull-request#create-your-own-commits) each time the action is created/updated.
+
+### Add a no-verify option to bypass git hooks
+
+Presently, there is no plan to add this feature to the action.
+The reason is that I'm trying very hard to keep the interface for this action to a minimum to prevent it becoming bloated and complicated.
+
+Git hooks must be installed after a repository is checked out in order for them to work.
+So the straightforward solution is to just not install them during the workflow where this action is used.
+
+- If hooks are automatically enabled by a framework, use an option provided by the framework to disable them. For example, for Husky users, they can be disabled with the `--ignore-scripts` flag, or by setting the `HUSKY` environment variable when the action runs.
+  ```yml
+  uses: peter-evans/create-pull-request@v7
+  env:
+    HUSKY: '0'
+  ```
+- If hooks are installed in a script, then add a condition checking if the `CI` environment variable exists.
+   ```sh
+   #!/bin/sh
+
+   [ -n "$CI" ] && exit 0
+   ```
+- If preventing the hooks installing is problematic, just delete them in a workflow step before the action runs.
+   ```yml
+   - run: rm .git/hooks -rf
+   ```
--- a/docs/concepts-guidelines.md
+++ b/docs/concepts-guidelines.md
@ -7,20 +7,25 @@ This document covers terminology, how the action works, general usage guidelines
 - [How the action works](#how-the-action-works)
 - [Guidelines](#guidelines)
  - [Providing a consistent base](#providing-a-consistent-base)
-  - [Pull request events](#pull-request-events)
-  - [Restrictions on forked repositories](#restrictions-on-forked-repositories)
+  - [Events which checkout a commit](#events-which-checkout-a-commit)
+  - [Restrictions on repository forks](#restrictions-on-repository-forks)
  - [Triggering further workflow runs](#triggering-further-workflow-runs)
  - [Security](#security)
 - [Advanced usage](#advanced-usage)
  - [Creating pull requests in a remote repository](#creating-pull-requests-in-a-remote-repository)
  - [Push using SSH (deploy keys)](#push-using-ssh-deploy-keys)
  - [Push pull request branches to a fork](#push-pull-request-branches-to-a-fork)
-  - [Running in a container](#running-in-a-container)
-  - [Creating pull requests on tag push](#creating-pull-requests-on-tag-push)
+    - [Pushing to a fork with fine-grained permissions](#pushing-to-a-fork-with-fine-grained-permissions)
+  - [Authenticating with GitHub App generated tokens](#authenticating-with-github-app-generated-tokens)
+    - [Creating pull requests in a remote repository using GitHub App generated tokens](#creating-pull-requests-in-a-remote-repository-using-github-app-generated-tokens)
+  - [Commit signing](#commit-signing)
+    - [Commit signature verification for bots](#commit-signature-verification-for-bots)
+    - [GPG commit signature verification](#gpg-commit-signature-verification)
+  - [Running in a container or on self-hosted runners](#running-in-a-container-or-on-self-hosted-runners)

 ## Terminology

-[Pull requests](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-requests#about-pull-requests) are proposed changes to a repository branch that can be reviewed by a repository's collaborators before being accepted or rejected. 
+[Pull requests](https://docs.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-requests#about-pull-requests) are proposed changes to a repository branch that can be reviewed by a repository's collaborators before being accepted or rejected. 

 A pull request references two branches:

@ -29,21 +34,20 @@ A pull request references two branches:

 ## Events and checkout

-For each [event type](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/events-that-trigger-workflows) there is a default `GITHUB_SHA` that will be checked out by the GitHub Actions [checkout](https://github.com/actions/checkout) action.
-
-The majority of events will default to checking out the "last commit on default branch," which in most cases will be the latest commit on `master`.
+This action expects repositories to be checked out with the official GitHub Actions [checkout](https://github.com/actions/checkout) action.
+For each [event type](https://docs.github.com/en/actions/reference/events-that-trigger-workflows) there is a default `GITHUB_SHA` that will be checked out.

 The default can be overridden by specifying a `ref` on checkout.

 ```yml
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          ref: develop
 ```

 ## How the action works

-By default, the action expects to be executed on the pull request `base`&mdash;the branch you intend to modify with the proposed changes.
+Unless the `base` input is supplied, the action expects the target repository to be checked out on the pull request `base`&mdash;the branch you intend to modify with the proposed changes.

 Workflow steps:

@ -59,11 +63,11 @@ The following git diagram shows how the action creates and updates a pull reques

 ### Providing a consistent base

-For the action to work correctly it should be executed in a workflow that checks out a *consistent base* branch. This will be the base of the pull request unless overridden with the `base` input.
+For the action to work correctly it should be executed in a workflow that checks out a *consistent* base branch. This will be the base of the pull request unless overridden with the `base` input.

 This means your workflow should be consistently checking out the branch that you intend to modify once the PR is merged.

-In the following example, the [`push`](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/events-that-trigger-workflows#push-event-push) and [`create`](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/events-that-trigger-workflows#create-event-create) events both trigger the same workflow. This will cause the checkout action to checkout commits from inconsistent branches. Do *not* do this. It will cause multiple pull requests to be created for each additional `base` the action is executed against.
+In the following example, the [`push`](https://docs.github.com/en/actions/reference/events-that-trigger-workflows#push) and [`create`](https://docs.github.com/en/actions/reference/events-that-trigger-workflows#create) events both trigger the same workflow. This will cause the checkout action to checkout inconsistent branches and commits. Do *not* do this. It will cause multiple pull requests to be created for each additional `base` the action is executed against.

 ```yml
 on:
@ -73,35 +77,51 @@ jobs:
  example:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
 ```

-Although rare, there may be use cases where it makes sense to execute the workflow on a branch that is not the base of the pull request. In these cases, the base branch can be specified with the `base` action input. The action will attempt to rebase changes made during the workflow on to the actual base.
+There may be use cases where it makes sense to execute the workflow on a branch that is not the base of the pull request. In these cases, the base branch can be specified with the `base` action input. The action will attempt to rebase changes made during the workflow on to the actual base.

-### Pull request events
+### Events which checkout a commit

-Workflows triggered by `pull_request` events will by default check out a [merge commit](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/events-that-trigger-workflows#pull-request-event-pull_request). To prevent the merge commit being included in created pull requests it is necessary to checkout the `head_ref`.
+The [default checkout](#events-and-checkout) for the majority of events will leave the repository checked out on a branch.
+However, some events such as `release` and `pull_request` will leave the repository in a "detached HEAD" state.
+This is because they checkout a commit, not a branch.
+In these cases, you *must supply* the `base` input so the action can rebase changes made during the workflow for the pull request.
+
+Workflows triggered by [`pull_request`](https://docs.github.com/en/actions/reference/events-that-trigger-workflows#pull_request) events will by default check out a merge commit. Set the `base` input as follows to base the new pull request on the current pull request's branch.

 ```yml
-      - uses: actions/checkout@v2
+      - uses: peter-evans/create-pull-request@v7
        with:
-          ref: ${{ github.head_ref }}
+          base: ${{ github.head_ref }}
 ```

-### Restrictions on forked repositories
+Workflows triggered by [`release`](https://docs.github.com/en/actions/reference/events-that-trigger-workflows#release) events will by default check out a tag. For most use cases, you will need to set the `base` input to the branch name of the tagged commit.

-GitHub Actions have imposed restrictions on events triggered by a forked repository. Specifically, the `pull_request` event triggered by a fork opening a pull request in the upstream repository.
+```yml
+      - uses: peter-evans/create-pull-request@v7
+        with:
+          base: main
+```

- Events from forks cannot access secrets, except for for the default `GITHUB_TOKEN`.
+### Restrictions on repository forks
+
+GitHub Actions have imposed restrictions on workflow runs triggered by public repository forks.
+Private repositories can be configured to [enable workflows](https://docs.github.com/en/github/administering-a-repository/disabling-or-limiting-github-actions-for-a-repository#enabling-workflows-for-private-repository-forks) from forks to run without restriction.
+
+The restrictions apply to the `pull_request` event triggered by a fork opening a pull request in the upstream repository.
+
+- Events from forks cannot access secrets, except for the default `GITHUB_TOKEN`.
    > With the exception of GITHUB_TOKEN, secrets are not passed to the runner when a workflow is triggered from a forked repository.

-    [GitHub Actions: Using encrypted secrets in a workflow](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/creating-and-using-encrypted-secrets#using-encrypted-secrets-in-a-workflow)
+    [GitHub Actions: Using encrypted secrets in a workflow](https://docs.github.com/en/actions/configuring-and-managing-workflows/creating-and-storing-encrypted-secrets#using-encrypted-secrets-in-a-workflow)

 - The `GITHUB_TOKEN` has read-only access when an event is triggered by a forked repository.

-   [GitHub Actions: Permissions for the GITHUB_TOKEN](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/authenticating-with-the-github_token#permissions-for-the-github_token)
+   [GitHub Actions: Permissions for the GITHUB_TOKEN](https://docs.github.com/en/actions/configuring-and-managing-workflows/authenticating-with-the-github_token#permissions-for-the-github_token)

-These restrictions mean that during a `pull_request` event triggered by a forked repository, actions have no write access to GitHub resources and will fail on attempt.
+These restrictions mean that during a `pull_request` event triggered by a forked repository, actions have no write access to GitHub resources and will fail on any attempt.

 A job condition can be added to prevent workflows from executing when triggered by a repository fork.

@ -114,123 +134,333 @@ jobs:
    if: github.event.pull_request.head.repo.full_name == github.repository
 ```

+For further reading regarding the security of pull requests, see this GitHub blog post titled [Keeping your GitHub Actions and workflows secure: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)
+
 ### Triggering further workflow runs

 Pull requests created by the action using the default `GITHUB_TOKEN` cannot trigger other workflows. If you have `on: pull_request` or `on: push` workflows acting as checks on pull requests, they will not run.

-> When you use the repository's GITHUB_TOKEN to perform tasks on behalf of the GitHub Actions app, events triggered by the GITHUB_TOKEN will not create a new workflow run.
+> When you use the repository's `GITHUB_TOKEN` to perform tasks, events triggered by the `GITHUB_TOKEN` will not create a new workflow run. This prevents you from accidentally creating recursive workflow runs. For example, if a workflow run pushes code using the repository's `GITHUB_TOKEN`, a new workflow will not run even when the repository contains a workflow configured to run when `push` events occur.

-[GitHub Actions: Events that trigger workflows](https://help.github.com/en/actions/reference/events-that-trigger-workflows#triggering-new-workflows-using-a-personal-access-token)
+[GitHub Actions: Triggering a workflow from a workflow](https://docs.github.com/en/actions/using-workflows/triggering-a-workflow#triggering-a-workflow-from-a-workflow)

 #### Workarounds to trigger further workflow runs

 There are a number of workarounds with different pros and cons.

- Use the default `GITHUB_TOKEN` and allow the action to create pull requests that have no checks enabled. Manually close pull requests and immediately reopen them. This will enable `on: pull_request` workflows to run and be added as checks.
- Use a `repo` scoped [Personal Access Token (PAT)](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line) created on an account that has write access to the repository that pull requests are being created in. This is the standard workaround and [recommended by GitHub](https://help.github.com/en/actions/reference/events-that-trigger-workflows#triggering-new-workflows-using-a-personal-access-token). However, the PAT cannot be scoped to a specific repository so the token becomes a very sensitive secret. If this is a concern, the PAT can instead be created for a dedicated [machine account](https://help.github.com/en/github/site-policy/github-terms-of-service#3-account-requirements) that has collaborator access to the repository. Also note that because the account that owns the PAT will be the creator of pull requests, that user account will be unable to perform actions such as request changes or approve the pull request.
+- Use the default `GITHUB_TOKEN` and allow the action to create pull requests that have no checks enabled. Manually close pull requests and immediately reopen them. This will enable `on: pull_request` workflows to run and be added as checks. To prevent merging of pull requests without checks erroneously, use [branch protection rules](https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/defining-the-mergeability-of-pull-requests).
+
+- Create draft pull requests by setting the `draft: always-true` input, and configure your workflow to trigger `on: ready_for_review`. The workflow will run when users manually click the "Ready for review" button on the draft pull requests. If the pull request is updated by the action, the `always-true` mode ensures that the pull request will be converted back to a draft.
+
+- Use a [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) created on an account that has write access to the repository that pull requests are being created in. This is the standard workaround and [recommended by GitHub](https://docs.github.com/en/actions/using-workflows/triggering-a-workflow#triggering-a-workflow-from-a-workflow). It's advisable to use a dedicated [machine account](https://docs.github.com/en/github/site-policy/github-terms-of-service#3-account-requirements) that has collaborator access to the repository, rather than creating a PAT on a personal user account. Also note that because the account that owns the PAT will be the creator of pull requests, that user account will be unable to perform actions such as request changes or approve the pull request.
+
 - Use [SSH (deploy keys)](#push-using-ssh-deploy-keys) to push the pull request branch. This is arguably more secure than using a PAT because deploy keys can be set per repository. However, this method will only trigger `on: push` workflows.
+
 - Use a [machine account that creates pull requests from its own fork](#push-pull-request-branches-to-a-fork). This is the most secure because the PAT created only grants access to the machine account's fork, not the main repository. This method will trigger `on: pull_request` workflows to run. Workflows triggered `on: push` will not run because the push event is in the fork.

+- Use a [GitHub App to generate a token](#authenticating-with-github-app-generated-tokens) that can be used with this action. GitHub App generated tokens are more secure than using a Classic PAT because access permissions can be set with finer granularity and are scoped to only repositories where the App is installed. This method will trigger both `on: push` and `on: pull_request` workflows.
+
 ### Security

 From a security perspective it's good practice to fork third-party actions, review the code, and use your fork of the action in workflows.
 By using third-party actions directly the risk exists that it could be modified to do something malicious, such as capturing secrets.

-This action uses [ncc](https://github.com/zeit/ncc) to compile the Node.js code and dependencies into a single file.
-Python dependencies are vendored and committed to the repository [here](https://github.com/peter-evans/create-pull-request/tree/master/dist/vendor).
-No dependencies are downloaded during the action execution.
-
-Vendored Python dependencies can be reviewed by rebuilding the [dist](https://github.com/peter-evans/create-pull-request/tree/master/dist) directory and redownloading dependencies.
-The following commands require Node and Python 3.
-
-```
-npm install
-npm run clean
-npm run package
+Alternatively, use the action directly and reference the commit hash for the version you want to target.
+```yml
+  - uses: thirdparty/foo-action@172ec762f2ac8e050062398456fccd30444f8f30
 ```

-The `dist` directory should be rebuilt leaving no git diff.
+This action uses [ncc](https://github.com/vercel/ncc) to compile the Node.js code and dependencies into a single JavaScript file under the [dist](https://github.com/peter-evans/create-pull-request/tree/main/dist) directory.

 ## Advanced usage

 ### Creating pull requests in a remote repository

-Checking out a branch from a different repository from where the workflow is executing will make *that repository* the target for the created pull request. In this case, a `repo` scoped [Personal Access Token (PAT)](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line) is required.
+Checking out a branch from a different repository from where the workflow is executing will make *that repository* the target for the created pull request. In this case, the `GITHUB_TOKEN` will not work and one of the other [token options](../README.md#token) must be used.

 ```yml
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          token: ${{ secrets.PAT }}
          repository: owner/repo

      # Make changes to pull request here

-      - uses: peter-evans/create-pull-request@v2
+      - uses: peter-evans/create-pull-request@v7
        with:
          token: ${{ secrets.PAT }}
 ```

 ### Push using SSH (deploy keys)

-[Deploy keys](https://developer.github.com/v3/guides/managing-deploy-keys/#deploy-keys) can be set per repository and so are arguably more secure than using a `repo` scoped [Personal Access Token (PAT)](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line).
+[Deploy keys](https://developer.github.com/v3/guides/managing-deploy-keys/#deploy-keys) can be set per repository and so are arguably more secure than using a Classic [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token).
 Allowing the action to push with a configured deploy key will trigger `on: push` workflows. This makes it an alternative to using a PAT to trigger checks for pull requests.

+> [!NOTE]
+> You cannot use deploy keys alone to [create a pull request in a remote repository](#creating-pull-requests-in-a-remote-repository) because then using a PAT would become a requirement.
+> This method only makes sense if creating a pull request in the repository where the workflow is running.
+
 How to use SSH (deploy keys) with create-pull-request action:

-1. [Create a new SSH key pair](https://help.github.com/en/github/authenticating-to-github/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent#generating-a-new-ssh-key) for your repository. Do not set a passphrase.
+1. [Create a new SSH key pair](https://docs.github.com/en/github/authenticating-to-github/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent#generating-a-new-ssh-key) for your repository. Do not set a passphrase.
 2. Copy the contents of the public key (.pub file) to a new repository [deploy key](https://developer.github.com/v3/guides/managing-deploy-keys/#deploy-keys) and check the box to "Allow write access."
 3. Add a secret to the repository containing the entire contents of the private key.
 4. As shown in the example below, configure `actions/checkout` to use the deploy key you have created.

 ```yml
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          ssh-key: ${{ secrets.SSH_PRIVATE_KEY }}

      # Make changes to pull request here

      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
 ```

 ### Push pull request branches to a fork

 Instead of pushing pull request branches to the repository you want to update, you can push them to a fork of that repository.
-This allows you to employ the [principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege) by using a dedicated user acting as a [machine account](https://help.github.com/en/github/site-policy/github-terms-of-service#3-account-requirements).
-This user has no access to the main repository.
+This allows you to employ the [principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege) by using a dedicated user acting as a [machine account](https://docs.github.com/en/github/site-policy/github-terms-of-service#3-account-requirements).
+This user only has `read` access to the main repository.
 It will use their own fork to push code and create the pull request.

+> [!NOTE]
+> If you choose to not give the machine account `write` access to the parent repository, the following inputs cannot be used: `labels`, `assignees`, `reviewers`, `team-reviewers` and `milestone`.
+
 1. Create a new GitHub user and login.
 2. Fork the repository that you will be creating pull requests in.
-3. Create a [Personal Access Token (PAT)](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line).
-4. Logout and log back in to your main user account.
+3. Create a Classic [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) with `repo` and `workflow` scopes.
+4. Logout and log back into your main user account.
 5. Add a secret to your repository containing the above PAT.
-6. As shown in the following example workflow, switch the git remote to the fork's URL after checkout and set the action input `request-to-parent` to `true`.
+6. As shown in the following example workflow, set the `push-to-fork` input to the full repository name of the fork.

 ```yaml
-      - uses: actions/checkout@v2
-
-      - run: |
-          git config user.password ${{ secrets.MACHINE_USER_PAT }}
-          git remote set-url origin https://github.com/machine-user/fork-of-repository
-          git fetch --unshallow -p origin
+      - uses: actions/checkout@v4

      # Make changes to pull request here

-      - uses: peter-evans/create-pull-request@v2
+      - uses: peter-evans/create-pull-request@v7
        with:
          token: ${{ secrets.MACHINE_USER_PAT }}
-          request-to-parent: true
+          push-to-fork: machine-user/fork-of-repository
 ```

-### Running in a container
+> [!TIP]
+> You can also combine `push-to-fork` with [creating pull requests in a remote repository](#creating-pull-requests-in-a-remote-repository).

-This action can be run inside a container by installing the action's dependencies either in the Docker image itself, or during the workflow.
+#### Pushing to a fork with fine-grained permissions

-The action requires `python3`, `pip3` and `git` to be installed and on the `PATH`.
+Using a fine-grained [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) or [GitHub App](#authenticating-with-github-app-generated-tokens) with `push-to-fork` can be achieved, but comes with some caveats.

-Note that `actions/checkout` requires Git 2.18 or higher to be installed, otherwise it will just download the source of the repository instead of cloning it.
+When using `push-to-fork`, the action needs permissions for two different repositories.
+It needs `contents: write` for the fork to push the branch, and `pull-requests: write` for the parent repository to create the pull request.
+
+There are two main scenarios:
+1. The parent and fork have different owners. In this case, it's not possible to create a token that is scoped to both repositories so different tokens must be used for each.
+2. The parent and fork both have the same owner (i.e. they exist in the same org). In this case, a single token can be scoped to both repositories, but the permissions granted cannot be different. So it would defeat the purpose of using `push-to-fork`, and you might as well just create the pull request directly on the parent repository.
+
+For the first scenario, the solution is to scope the token for the fork, and use the `branch-token` input to push the branch.
+The `token` input will then default to the repository's `GITHUB_TOKEN`, which will be used to create the pull request.
+
+> [!NOTE]
+> Solution limitations:
+> - Since `GITHUB_TOKEN` will be used to create the pull request, the workflow *must* be executing in the parent repository where the pull request should be created.
+> - `maintainer-can-modify` *must* be set to `false`, because the `GITHUB_TOKEN` will not have `write` access to the head branch in the fork.
+
+The following is an example of pushing to a fork using GitHub App tokens.
+```yaml
+      - uses: actions/create-github-app-token@v1
+        id: generate-token
+        with:
+          app-id: ${{ secrets.APP_ID }}
+          private-key: ${{ secrets.APP_PRIVATE_KEY }}
+          owner: owner
+          repositories: fork-of-repo
+
+      - uses: actions/checkout@v4
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          branch-token: ${{ steps.generate-token.outputs.token }}
+          push-to-fork: owner/fork-of-repo
+          maintainer-can-modify: false
+```
+
+### Authenticating with GitHub App generated tokens
+
+A GitHub App can be created for the sole purpose of generating tokens for use with GitHub actions.
+GitHub App generated tokens can be configured with fine-grained permissions and are scoped to only repositories where the App is installed.
+
+1. Create a minimal [GitHub App](https://docs.github.com/en/developers/apps/creating-a-github-app), setting the following fields:
+
+    - Set `GitHub App name`.
+    - Set `Homepage URL` to anything you like, such as your GitHub profile page.
+    - Uncheck `Active` under `Webhook`. You do not need to enter a `Webhook URL`.
+    - Under `Repository permissions: Contents` select `Access: Read & write`.
+    - Under `Repository permissions: Pull requests` select `Access: Read & write`.
+    - Under `Repository permissions: Workflows` select `Access: Read & write`.
+      - **NOTE**: Only needed if pull requests could contain changes to Actions workflows.
+    - Under `Organization permissions: Members` select `Access: Read-only`.
+      - **NOTE**: Only needed if you would like add teams as reviewers to PRs.
+
+2. Create a Private key from the App settings page and store it securely.
+
+3. Install the App on repositories that the action will require access to in order to create pull requests.
+
+4. Set secrets on your repository containing the GitHub App ID, and the private key you created in step 2. e.g. `APP_ID`, `APP_PRIVATE_KEY`.
+
+5. The following example workflow shows how to use [actions/create-github-app-token](https://github.com/actions/create-github-app-token) to generate a token for use with this action.
+
+```yaml
+    steps:
+      - uses: actions/create-github-app-token@v1
+        id: generate-token
+        with:
+          app-id: ${{ secrets.APP_ID }}
+          private-key: ${{ secrets.APP_PRIVATE_KEY }}
+
+      - uses: actions/checkout@v4
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ steps.generate-token.outputs.token }}
+```
+
+#### Creating pull requests in a remote repository using GitHub App generated tokens
+
+For this case a token must be generated from the GitHub App installation of the remote repository.
+
+In the following example, a pull request is being created in remote repo `owner/repo`.
+```yaml
+    steps:
+      - uses: actions/create-github-app-token@v1
+        id: generate-token
+        with:
+          app-id: ${{ secrets.APP_ID }}
+          private-key: ${{ secrets.APP_PRIVATE_KEY }}
+          owner: owner
+          repositories: repo
+
+      - uses: actions/checkout@v4
+        with:
+          token: ${{ steps.generate-token.outputs.token }} # necessary if the repo is private
+          repository: owner/repo
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ steps.generate-token.outputs.token }}
+```
+
+### Commit signing
+
+[Commit signature verification](https://docs.github.com/en/authentication/managing-commit-signature-verification/about-commit-signature-verification) is a feature where GitHub will mark signed commits as "verified" to give confidence that changes are from a trusted source.
+Some organizations require commit signing, and enforce it with branch protection rules.
+
+The action supports two methods to sign commits, [commit signature verification for bots](#commit-signature-verification-for-bots), and [GPG commit signature verification](#gpg-commit-signature-verification).
+
+#### Commit signature verification for bots
+
+The action can sign commits as `github-actions[bot]` when using the repository's default `GITHUB_TOKEN`, or your own bot when using [GitHub App tokens](#authenticating-with-github-app-generated-tokens).
+
+> [!IMPORTANT]  
+> - When setting `sign-commits: true` the action will ignore the `committer` and `author` inputs.
+> - If you attempt to use a [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) the action will create the pull request, but commits will *not* be signed. Commit signing is only supported with bot generated tokens.
+> - The GitHub API has a 40MiB limit when creating git blobs. An error will be raised if there are files in the pull request larger than this. If you hit this limit, use [GPG commit signature verification](#gpg-commit-signature-verification) instead.
+
+In this example the `token` input is not supplied, so the action will use the repository's default `GITHUB_TOKEN`. This will sign commits as `github-actions[bot]`.
+```yaml
+    steps:
+      - uses: actions/checkout@v4
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          sign-commits: true
+```
+
+In this example, the `token` input is generated using a GitHub App. This will sign commits as `<application-name>[bot]`.
+```yaml
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/create-github-app-token@v1
+        id: generate-token
+        with:
+          app-id: ${{ secrets.APP_ID }}
+          private-key: ${{ secrets.APP_PRIVATE_KEY }}
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ steps.generate-token.outputs.token }}
+          sign-commits: true
+```
+
+#### GPG commit signature verification
+
+The action can use GPG to sign commits with a GPG key that you generate yourself.
+
+1. Follow GitHub's guide to [generate a new GPG key](https://docs.github.com/en/github/authenticating-to-github/generating-a-new-gpg-key).
+
+2. [Add the public key](https://docs.github.com/en/github/authenticating-to-github/adding-a-new-gpg-key-to-your-github-account) to the user account associated with the [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) that you will use with the action.
+
+3. Copy the private key to your clipboard, replacing `email@example.com` with the email address of your GPG key.
+   ```
+   # macOS
+   gpg --armor --export-secret-key email@example.com | pbcopy
+   ```
+
+4. Paste the private key into a repository secret where the workflow will run. e.g. `GPG_PRIVATE_KEY`
+
+5. Create another repository secret for the key's passphrase, if applicable. e.g. `GPG_PASSPHRASE`
+
+6. The following example workflow shows how to use [crazy-max/ghaction-import-gpg](https://github.com/crazy-max/ghaction-import-gpg) to import your GPG key and allow the action to sign commits.
+
+> [!IMPORTANT]
+> The `committer` email address *MUST* match the email address used to create your GPG key.
+
+```yaml
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: crazy-max/ghaction-import-gpg@v5
+        with:
+          gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
+          passphrase: ${{ secrets.GPG_PASSPHRASE }}
+          git_user_signingkey: true
+          git_commit_gpgsign: true
+
+      # Make changes to pull request here
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ secrets.PAT }}
+          committer: example <email@example.com>
+```
+
+### Running in a container or on self-hosted runners
+
+This action can be run inside a container, or on [self-hosted runners](https://docs.github.com/en/actions/hosting-your-own-runners), by installing the necessary dependencies.
+
+This action requires `git` to be installed and on the `PATH`. Note that `actions/checkout` requires Git 2.18 or higher to be installed, otherwise it will just download the source of the repository instead of cloning it.
+
+The following examples of running in a container show the dependencies being installed during the workflow, but they could also be pre-installed in a custom image.

 **Alpine container example:**
 ```yml
@ -241,14 +471,14 @@ jobs:
      image: alpine
    steps:
      - name: Install dependencies
-        run: apk --no-cache add git python3
+        run: apk --no-cache add git

-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4

      # Make changes to pull request here

      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
 ```

 **Ubuntu container example:**
@ -264,72 +494,12 @@ jobs:
          apt-get update
          apt-get install -y software-properties-common
          add-apt-repository -y ppa:git-core/ppa
-          apt-get install -y python3 python3-pip git
+          apt-get install -y git

-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4

      # Make changes to pull request here

      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
-```
-
-### Creating pull requests on tag push
-
-An `on: push` workflow will also trigger when tags are pushed.
-During these events, the `actions/checkout` action will check out the `ref/tags/<tag>` git ref by default.
-This means the repository will *not* be checked out on an active branch.
-
-If you would like to run `create-pull-request` action on the tagged commit you can achieve this by creating a temporary branch as follows.
-
-```yml
-on:
-  push:
-    tags:
-      - 'v*.*.*'
-jobs:
-  example:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v2
-
-      - name: Create a temporary tag branch
-        run: |
-          git config --global user.name 'GitHub'
-          git config --global user.email 'noreply@github.com'
-          git checkout -b temp-${GITHUB_REF:10}
-          git push --set-upstream origin temp-${GITHUB_REF:10}
-
-      # Make changes to pull request here
-
-      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
-        with:
-          base: master
-
-      - name: Delete tag branch
-        run: |
-          git push --delete origin temp-${GITHUB_REF:10}
-```
-
-This is an alternative, simpler workflow to the one above. However, this is not guaranteed to checkout the tagged commit.
-There is a chance that in between the tag being pushed and checking out the `master` branch in the workflow, another commit is made to `master`. If that possibility is not a concern, this workflow will work fine.
-
-```yml
-on:
-  push:
-    tags:
-      - 'v*.*.*'
-jobs:
-  example:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v2
-        with:
-          ref: master
-
-      # Make changes to pull request here
-
-      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
 ```
--- a/docs/examples.md
+++ b/docs/examples.md
@ -3,9 +3,14 @@
 - [Use case: Create a pull request to update X on push](#use-case-create-a-pull-request-to-update-x-on-push)
  - [Update project authors](#update-project-authors)
  - [Keep a branch up-to-date with another](#keep-a-branch-up-to-date-with-another)
+- [Use case: Create a pull request to update X on release](#use-case-create-a-pull-request-to-update-x-on-release)
+  - [Update changelog](#update-changelog)
 - [Use case: Create a pull request to update X periodically](#use-case-create-a-pull-request-to-update-x-periodically)
  - [Update NPM dependencies](#update-npm-dependencies)
+  - [Update Gradle dependencies](#update-gradle-dependencies)
+  - [Update Cargo dependencies](#update-cargo-dependencies)
  - [Update SwaggerUI for GitHub Pages](#update-swaggerui-for-github-pages)
+  - [Keep a fork up-to-date with its upstream](#keep-a-fork-up-to-date-with-its-upstream)
  - [Spider and download a website](#spider-and-download-a-website)
 - [Use case: Create a pull request to update X by calling the GitHub API](#use-case-create-a-pull-request-to-update-x-by-calling-the-github-api)
  - [Call the GitHub API from an external service](#call-the-github-api-from-an-external-service)
@ -15,6 +20,7 @@
 - [Misc workflow tips](#misc-workflow-tips)
  - [Filtering push events](#filtering-push-events)
  - [Dynamic configuration using variables](#dynamic-configuration-using-variables)
+  - [Using a markdown template](#using-a-markdown-template)
  - [Debugging GitHub Actions](#debugging-github-actions)


@ -31,19 +37,19 @@ name: Update AUTHORS
 on:
  push:
    branches:
-      - master
+      - main
 jobs:
  updateAuthors:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          fetch-depth: 0
      - name: Update AUTHORS
        run: |
          git log --format='%aN <%aE>%n%cN <%cE>' | sort -u > AUTHORS
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          commit-message: update authors
          title: Update AUTHORS
@ -55,31 +61,70 @@ jobs:

 This is a use case where a branch should be kept up to date with another by opening a pull request to update it. The pull request should then be updated with new changes until it is merged or closed.

-In this example scenario, a branch called `production` should be updated via pull request to keep it in sync with `master`. Merging the pull request is effectively promoting those changes to production.
+In this example scenario, a branch called `production` should be updated via pull request to keep it in sync with `main`. Merging the pull request is effectively promoting those changes to production.

 ```yml
 name: Create production promotion pull request
 on:
  push:
    branches:
-      - master
+      - main
 jobs:
  productionPromotion:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          ref: production
      - name: Reset promotion branch
        run: |
-          git fetch origin master:master
-          git reset --hard master
+          git fetch origin main:main
+          git reset --hard main
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          branch: production-promotion
 ```

+## Use case: Create a pull request to update X on release
+
+This pattern will work well for updating any kind of static content based on the tagged commit of a release. Note that because `release` is one of the [events which checkout a commit](concepts-guidelines.md#events-which-checkout-a-commit) it is necessary to supply the `base` input to the action.
+
+### Update changelog
+
+Raises a pull request to update the `CHANGELOG.md` file based on the tagged commit of the release.
+Note that [git-chglog](https://github.com/git-chglog/git-chglog/) requires some configuration files to exist in the repository before this workflow will work.
+
+This workflow assumes the tagged release was made on a default branch called `main`.
+
+```yml
+name: Update Changelog
+on:
+  release:
+    types: [published]
+jobs:
+  updateChangelog:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Update Changelog
+        run: |
+          curl -o git-chglog -L https://github.com/git-chglog/git-chglog/releases/download/0.9.1/git-chglog_linux_amd64
+          chmod u+x git-chglog
+          ./git-chglog -o CHANGELOG.md
+          rm git-chglog
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          commit-message: update changelog
+          title: Update Changelog
+          body: Update changelog to reflect release changes
+          branch: update-changelog
+          base: main
+```
+
 ## Use case: Create a pull request to update X periodically

 This pattern will work well for updating any kind of static content from an external source. The workflow executes on a schedule and raises a pull request when there are changes.
@ -88,7 +133,7 @@ This pattern will work well for updating any kind of static content from an exte

 This workflow will create a pull request for npm dependencies.
 It works best in combination with a build workflow triggered on `push` and `pull_request`.
-A [Personal Access Token (PAT)](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line) can be used in order for the creation of the pull request to trigger further workflows. See the [documentation here](https://github.com/peter-evans/create-pull-request/blob/master/docs/concepts-guidelines.md#triggering-further-workflow-runs) for further details.
+A [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) can be used in order for the creation of the pull request to trigger further workflows. See the [documentation here](concepts-guidelines.md#triggering-further-workflow-runs) for further details.

 ```yml
 name: Update Dependencies
@ -99,16 +144,16 @@ jobs:
  update-dep:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v1
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v3
        with:
-          node-version: '12.x'
+          node-version: '16.x'
      - name: Update dependencies
        run: |
          npx -p npm-check-updates ncu -u
          npm install
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
            token: ${{ secrets.PAT }}
            commit-message: Update dependencies
@ -128,22 +173,96 @@ The above workflow works best in combination with a build workflow triggered on
 name: CI
 on:
  push:
-    branches: [master]
+    branches: [main]
  pull_request:
-    branches: [master]
+    branches: [main]
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v1
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v3
        with:
-          node-version: 12.x
+          node-version: 16.x
      - run: npm ci
      - run: npm run test
      - run: npm run build
 ```

+### Update Gradle dependencies
+
+The following workflow will create a pull request for Gradle dependencies.
+It requires first configuring your project to use Gradle lockfiles.
+See [here](https://github.com/peter-evans/gradle-auto-dependency-updates) for how to configure your project and use the following workflow.
+
+```yml
+name: Update Dependencies
+on:
+  schedule:
+    - cron:  '0 1 * * 1'
+jobs:
+  update-dep:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-java@v2
+        with:
+          distribution: 'temurin'
+          java-version: 1.8
+      - name: Grant execute permission for gradlew
+        run: chmod +x gradlew
+      - name: Perform dependency resolution and write new lockfiles
+        run: ./gradlew dependencies --write-locks
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+            token: ${{ secrets.PAT }}
+            commit-message: Update dependencies
+            title: Update dependencies
+            body: |
+              - Dependency updates
+  
+              Auto-generated by [create-pull-request][1]
+  
+              [1]: https://github.com/peter-evans/create-pull-request
+            branch: update-dependencies
+```
+
+### Update Cargo dependencies
+
+The following workflow will create a pull request for Cargo dependencies.
+It optionally uses [`cargo-edit`](https://github.com/killercup/cargo-edit) to update `Cargo.toml` and keep it in sync with `Cargo.lock`.
+
+```yml
+name: Update Dependencies
+on:
+  schedule:
+    - cron:  '0 1 * * 1'
+jobs:
+  update-dep:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Update dependencies
+        run: |
+          cargo install cargo-edit
+          cargo update
+          cargo upgrade --to-lockfile
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+            token: ${{ secrets.PAT }}
+            commit-message: Update dependencies
+            title: Update dependencies
+            body: |
+              - Dependency updates
+  
+              Auto-generated by [create-pull-request][1]
+  
+              [1]: https://github.com/peter-evans/create-pull-request
+            branch: update-dependencies
+```
+
 ### Update SwaggerUI for GitHub Pages

 When using [GitHub Pages to host Swagger documentation](https://github.com/peter-evans/swagger-github-pages), this workflow updates the repository with the latest distribution of [SwaggerUI](https://github.com/swagger-api/swagger-ui).
@ -158,12 +277,14 @@ jobs:
  updateSwagger:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
      - name: Get Latest Swagger UI Release
        id: swagger-ui
        run: |
-          echo ::set-output name=release_tag::$(curl -sL https://api.github.com/repos/swagger-api/swagger-ui/releases/latest | jq -r ".tag_name")
-          echo ::set-output name=current_tag::$(<swagger-ui.version)
+          release_tag=$(curl -sL https://api.github.com/repos/swagger-api/swagger-ui/releases/latest | jq -r ".tag_name")
+          echo "release_tag=$release_tag" >> $GITHUB_OUTPUT
+          current_tag=$(<swagger-ui.version)
+          echo "current_tag=$current_tag" >> $GITHUB_OUTPUT
      - name: Update Swagger UI
        if: steps.swagger-ui.outputs.current_tag != steps.swagger-ui.outputs.release_tag
        env:
@ -186,7 +307,7 @@ jobs:
          # Update current release
          echo ${{ steps.swagger-ui.outputs.release_tag }} > swagger-ui.version
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          commit-message: Update swagger-ui to ${{ steps.swagger-ui.outputs.release_tag }}
          title: Update SwaggerUI to ${{ steps.swagger-ui.outputs.release_tag }}
@ -201,6 +322,41 @@ jobs:
          branch: swagger-ui-updates
 ```

+### Keep a fork up-to-date with its upstream
+
+This example is designed to be run in a separate repository from the fork repository itself.
+The aim of this is to prevent committing anything to the fork's default branch would cause it to differ from the upstream.
+
+In the following example workflow, `owner/repo` is the upstream repository and `fork-owner/repo` is the fork. It assumes the default branch of the upstream repository is called `main`.
+
+The [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) should have `repo` scope. Additionally, if the upstream makes changes to the `.github/workflows` directory, the action will be unable to push the changes to a branch and throw the error "_(refusing to allow a GitHub App to create or update workflow `.github/workflows/xxx.yml` without `workflows` permission)_". To allow these changes to be pushed to the fork, add the `workflow` scope to the PAT. Of course, allowing this comes with the risk that the workflow changes from the upstream could run and do something unexpected. Disabling GitHub Actions in the fork is highly recommended to prevent this.
+
+When you merge the pull request make sure to choose the [`Rebase and merge`](https://docs.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-request-merges#rebase-and-merge-your-pull-request-commits) option. This will make the fork's commits match the commits on the upstream.
+
+```yml
+name: Update fork
+on:
+  schedule:
+    - cron:  '0 0 * * 0'
+jobs:
+  updateFork:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          repository: fork-owner/repo
+      - name: Reset the default branch with upstream changes
+        run: |
+          git remote add upstream https://github.com/owner/repo.git
+          git fetch upstream main:upstream-main
+          git reset --hard upstream-main
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          token: ${{ secrets.PAT }}
+          branch: upstream-changes
+```
+
 ### Spider and download a website

 This workflow spiders a website and downloads the content. Any changes to the website will be raised in a pull request.
@ -214,7 +370,7 @@ jobs:
  format:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
      - name: Download website
        run: |
          wget \
@ -228,7 +384,7 @@ jobs:
            --domains quotes.toscrape.com \
            http://quotes.toscrape.com/
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          commit-message: update local website copy
          title: Automated Updates to Local Website Copy
@ -238,7 +394,7 @@ jobs:

 ## Use case: Create a pull request to update X by calling the GitHub API

-You can use the GitHub API to trigger a webhook event called [`repository_dispatch`](https://help.github.com/en/github/automating-your-workflow-with-github-actions/events-that-trigger-workflows#external-events-repository_dispatch) when you want to trigger a workflow for activity that happens outside of GitHub.
+You can use the GitHub API to trigger a webhook event called [`repository_dispatch`](https://docs.github.com/en/actions/reference/events-that-trigger-workflows#repository_dispatch) when you want to trigger a workflow for any activity that happens outside of GitHub.
 This pattern will work well for updating any kind of static content from an external source.

 You can modify any of the examples in the previous section to work in this fashion.
@ -256,7 +412,7 @@ on:
 An `on: repository_dispatch` workflow can be triggered by a call to the GitHub API as follows.

 - `[username]` is a GitHub username
- `[token]` is a `repo` scoped [Personal Access Token](https://help.github.com/en/articles/creating-a-personal-access-token-for-the-command-line)
+- `[token]` is a `repo` scoped [Personal Access Token](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token)
 - `[repository]` is the name of the repository the workflow resides in.

 ```
@ -273,7 +429,7 @@ An `on: repository_dispatch` workflow can be triggered from another workflow wit

 ```yml
 - name: Repository Dispatch
-  uses: peter-evans/repository-dispatch@v1
+  uses: peter-evans/repository-dispatch@v2
  with:
    token: ${{ secrets.REPO_ACCESS_TOKEN }}
    repository: username/my-repo
@ -287,7 +443,8 @@ An `on: repository_dispatch` workflow can be triggered from another workflow wit

 This is a pattern that lends itself to automated code linting and fixing. A pull request can be created to fix or modify something during an `on: pull_request` workflow. The pull request containing the fix will be raised with the original pull request as the base. This can be then be merged to update the original pull request and pass any required tests.

-Note that due to [limitations on forked repositories](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/authenticating-with-the-github_token#permissions-for-the-github_token) workflows for this use case do not work for pull requests raised from forks.
+Note that due to [token restrictions on public repository forks](https://docs.github.com/en/actions/configuring-and-managing-workflows/authenticating-with-the-github_token#permissions-for-the-github_token), workflows for this use case do not work for pull requests raised from forks.
+Private repositories can be configured to [enable workflows](https://docs.github.com/en/github/administering-a-repository/disabling-or-limiting-github-actions-for-a-repository#enabling-workflows-for-private-repository-forks) from forks to run without restriction. 

 ### autopep8

@ -309,7 +466,7 @@ jobs:
    if: startsWith(github.head_ref, 'autopep8-patches') == false && github.event.pull_request.head.repo.full_name == github.repository
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
        with:
          ref: ${{ github.head_ref }}
      - name: autopep8
@ -319,10 +476,12 @@ jobs:
          args: --exit-code --recursive --in-place --aggressive --aggressive .
      - name: Set autopep8 branch name
        id: vars
-        run: echo ::set-output name=branch-name::"autopep8-patches/${{ github.head_ref }}"
+        run: |
+          branch-name="autopep8-patches/${{ github.head_ref }}"
+          echo "branch-name=$branch-name" >> $GITHUB_OUTPUT
      - name: Create Pull Request
        if: steps.autopep8.outputs.exit-code == 2
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          commit-message: autopep8 action fixes
          title: Fixes by autopep8 action
@ -356,61 +515,72 @@ jobs:
    if: startsWith(github.ref, 'refs/heads/')
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
      ...

  someOtherJob:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
      ...
 ```

 ### Dynamic configuration using variables

 The following examples show how configuration for the action can be dynamically defined in a previous workflow step.
-
-The recommended method is to use [`set-output`](https://help.github.com/en/github/automating-your-workflow-with-github-actions/development-tools-for-github-actions#set-an-output-parameter-set-output). Note that the step where output variables are defined must have an id.
+Note that the step where output variables are defined must have an id.

 ```yml
      - name: Set output variables
        id: vars
        run: |
-          echo ::set-output name=pr_title::"[Test] Add report file $(date +%d-%m-%Y)"
-          echo ::set-output name=pr_body::"This PR was auto-generated on $(date +%d-%m-%Y) \
+          pr_title="[Test] Add report file $(date +%d-%m-%Y)"
+          pr_body="This PR was auto-generated on $(date +%d-%m-%Y) \
            by [create-pull-request](https://github.com/peter-evans/create-pull-request)."
+          echo "pr_title=$pr_title" >> $GITHUB_OUTPUT
+          echo "pr_body=$pr_body" >> $GITHUB_OUTPUT
      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+        uses: peter-evans/create-pull-request@v7
        with:
          title: ${{ steps.vars.outputs.pr_title }}
          body: ${{ steps.vars.outputs.pr_body }}
 ```

-Alternatively, [`set-env`](https://help.github.com/en/github/automating-your-workflow-with-github-actions/development-tools-for-github-actions#set-an-environment-variable-set-env) can be used to create environment variables.
+### Using a markdown template

+In this example, a markdown template file is added to the repository at `.github/pull-request-template.md` with the following content.
+```
+This is a test pull request template
+Render template variables such as {{ .foo }} and {{ .bar }}.
+```
+
+The template is rendered using the [render-template](https://github.com/chuhlomin/render-template) action and the result is used to create the pull request.
 ```yml
-      - name: Set environment variables
-        run: |
-          echo ::set-env name=PULL_REQUEST_TITLE::"[Test] Add report file $(date +%d-%m-%Y)"
-          echo ::set-env name=PULL_REQUEST_BODY::"This PR was auto-generated on $(date +%d-%m-%Y) \
-            by [create-pull-request](https://github.com/peter-evans/create-pull-request)."
-      - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v2
+      - name: Render template
+        id: template
+        uses: chuhlomin/render-template@v1.4
        with:
-          title: ${{ env.PULL_REQUEST_TITLE }}
-          body: ${{ env.PULL_REQUEST_BODY }}
+          template: .github/pull-request-template.md
+          vars: |
+            foo: this
+            bar: that
+
+      - name: Create Pull Request
+        uses: peter-evans/create-pull-request@v7
+        with:
+          body: ${{ steps.template.outputs.result }}
 ```

 ### Debugging GitHub Actions

 #### Runner Diagnostic Logging

-[Runner diagnostic logging](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/managing-a-workflow-run#enabling-runner-diagnostic-logging) provides additional log files that contain information about how a runner is executing an action.
+[Runner diagnostic logging](https://docs.github.com/en/actions/configuring-and-managing-workflows/managing-a-workflow-run#enabling-runner-diagnostic-logging) provides additional log files that contain information about how a runner is executing an action.
 To enable runner diagnostic logging, set the secret `ACTIONS_RUNNER_DEBUG` to `true` in the repository that contains the workflow.

 #### Step Debug Logging

-[Step debug logging](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/managing-a-workflow-run#enabling-step-debug-logging) increases the verbosity of a job's logs during and after a job's execution.
+[Step debug logging](https://docs.github.com/en/actions/configuring-and-managing-workflows/managing-a-workflow-run#enabling-step-debug-logging) increases the verbosity of a job's logs during and after a job's execution.
 To enable step debug logging set the secret `ACTIONS_STEP_DEBUG` to `true` in the repository that contains the workflow.

 #### Output Various Contexts
--- a/docs/updating.md
+++ b/docs/updating.md
@ -1,25 +1,140 @@
-# Updating from `v1` to `v2`
+## Updating from `v6` to `v7`

-## Breaking changes
+### Behaviour changes
+
+- Action input `git-token` has been renamed `branch-token`, to be more clear about its purpose. The `branch-token` is the token that the action will use to create and update the branch.
+- The action now handles requests that have been rate-limited by GitHub. Requests hitting a primary rate limit will retry twice, for a total of three attempts. Requests hitting a secondary rate limit will not be retried.
+- The `pull-request-operation` output now returns `none` when no operation was executed.
+- Removed deprecated output environment variable `PULL_REQUEST_NUMBER`. Please use the `pull-request-number` action output instead.
+
+### What's new
+
+- The action can now sign commits as `github-actions[bot]` when using `GITHUB_TOKEN`, or your own bot when using [GitHub App tokens](concepts-guidelines.md#authenticating-with-github-app-generated-tokens). See [commit signing](concepts-guidelines.md#commit-signature-verification-for-bots) for details.
+- Action input `draft` now accepts a new value `always-true`. This will set the pull request to draft status when the pull request is updated, as well as on creation.
+- A new action input `maintainer-can-modify` indicates whether [maintainers can modify](https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/working-with-forks/allowing-changes-to-a-pull-request-branch-created-from-a-fork) the pull request. The default is `true`, which retains the existing behaviour of the action.
+- A new output `pull-request-commits-verified` returns `true` or `false`, indicating whether GitHub considers the signature of the branch's commits to be verified.
+
+## Updating from `v5` to `v6`
+
+### Behaviour changes
+
+- The default values for `author` and `committer` have changed. See "What's new" below for details. If you are overriding the default values you will not be affected by this change.
+- On completion, the action now removes the temporary git remote configuration it adds when using `push-to-fork`. This should not affect you unless you were using the temporary configuration for some other purpose after the action completes.
+
+### What's new
+
+- Updated runtime to Node.js 20
+  - The action now requires a minimum version of [v2.308.0](https://github.com/actions/runner/releases/tag/v2.308.0) for the Actions runner. Update self-hosted runners to v2.308.0 or later to ensure compatibility.
+- The default value for `author` has been changed to `${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>`. The change adds the `${{ github.actor_id }}+` prefix to the email address to align with GitHub's standard format for the author email address.
+- The default value for `committer` has been changed to `github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>`. This is to align with the default GitHub Actions bot user account.
+- Adds input `git-token`, the [Personal Access Token (PAT)](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token) that the action will use for git operations. This input defaults to the value of `token`. Use this input if you would like the action to use a different token for git operations than the one used for the GitHub API.
+- `push-to-fork` now supports pushing to sibling repositories in the same network.
+- Previously, when using `push-to-fork`, the action did not remove temporary git remote configuration it adds during execution. This has been fixed and the configuration is now removed when the action completes.
+- If the pull request body is truncated due to exceeding the maximum length, the action will now suffix the body with the message "...*[Pull request body truncated]*" to indicate that the body has been truncated.
+- The action now uses `--unshallow` only when necessary, rather than as a default argument of `git fetch`. This should improve performance, particularly for large git repositories with extensive commit history.
+- The action can now be executed on one GitHub server and create pull requests on a *different* GitHub server. Server products include GitHub hosted (github.com), GitHub Enterprise Server (GHES), and GitHub Enterprise Cloud (GHEC). For example, the action can be executed on GitHub hosted and create pull requests on a GHES or GHEC instance.
+
+## Updating from `v4` to `v5`
+
+### Behaviour changes
+
+- The action will no longer leave the local repository checked out on the pull request `branch`. Instead, it will leave the repository checked out on the branch or commit that it was when the action started.
+- When using `add-paths`, uncommitted changes will no longer be destroyed. They will be stashed and restored at the end of the action run.
+
+### What's new
+
+- Adds input `body-path`, the path to a file containing the pull request body.
+- At the end of the action run the local repository is now checked out on the branch or commit that it was when the action started.
+- Any uncommitted tracked or untracked changes are now stashed and restored at the end of the action run. Currently, this can only occur when using the `add-paths` input, which allows for changes to not be committed. Previously, any uncommitted changes would be destroyed.
+- The proxy implementation has been revised but is not expected to have any change in behaviour. It continues to support the standard environment variables `http_proxy`, `https_proxy` and `no_proxy`.
+- Now sets the git `safe.directory` configuration for the local repository path. The configuration is removed when the action completes. Fixes issue https://github.com/peter-evans/create-pull-request/issues/1170.
+- Now determines the git directory path using the `git rev-parse --git-dir` command. This allows users with custom repository configurations to use the action.
+- Improved handling of the `team-reviewers` input and associated errors.
+
+## Updating from `v3` to `v4`
+
+### Behaviour changes
+
+- The `add-paths` input no longer accepts `-A` as a valid value. When committing all new and modified files the `add-paths` input should be omitted.
+
+- If using self-hosted runners or GitHub Enterprise Server, there are minimum requirements for `v4` to run. See "What's new" below for details.
+
+### What's new
+
+- Updated runtime to Node.js 16
+  - The action now requires a minimum version of v2.285.0 for the [Actions Runner](https://github.com/actions/runner/releases/tag/v2.285.0).
+  - If using GitHub Enterprise Server, the action requires [GHES 3.4](https://docs.github.com/en/enterprise-server@3.4/admin/release-notes) or later.
+
+## Updating from `v2` to `v3`
+
+### Behaviour changes
+
+- The `author` input now defaults to the user who triggered the workflow run. This default is set via [action.yml](../action.yml) as `${{ github.actor }} <${{ github.actor }}@users.noreply.github.com>`, where `github.actor` is the GitHub user account associated with the run. For example, `peter-evans <peter-evans@users.noreply.github.com>`.
+
+  To continue to use the `v2` default, set the `author` input as follows.
+  ```yaml
+      - uses: peter-evans/create-pull-request@v3
+        with:
+          author: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
+  ```
+
+- The `author` and `committer` inputs are no longer cross-used if only one is supplied. Additionally, when neither input is set, the `author` and `committer` are no longer determined from an existing identity set in git config. In both cases, the inputs will fall back to their default set in [action.yml](../action.yml).
+
+- Deprecated inputs `project` and `project-column` have been removed in favour of an additional action step. See [Create a project card](https://github.com/peter-evans/create-pull-request#create-a-project-card) for details.
+
+- Deprecated output `pr_number` has been removed in favour of `pull-request-number`.
+
+- Input `request-to-parent` has been removed in favour of `push-to-fork`. This greatly simplifies pushing the pull request branch to a fork of the parent repository. See [Push pull request branches to a fork](concepts-guidelines.md#push-pull-request-branches-to-a-fork) for details.
+
+  e.g.
+  ```yaml
+      - uses: actions/checkout@v2
+
+      # Make changes to pull request here
+
+      - uses: peter-evans/create-pull-request@v3
+        with:
+          token: ${{ secrets.MACHINE_USER_PAT }}
+          push-to-fork: machine-user/fork-of-repository
+  ```
+
+### What's new
+
+- The action has been converted to Typescript giving it a significant performance improvement.
+
+- If you run this action in a container, or on [self-hosted runners](https://docs.github.com/en/actions/hosting-your-own-runners), `python` and `pip` are no longer required dependencies. See [Running in a container or on self-hosted runners](concepts-guidelines.md#running-in-a-container-or-on-self-hosted-runners) for details.
+
+- Inputs `labels`, `assignees`, `reviewers` and `team-reviewers` can now be newline separated, or comma separated.
+  e.g.
+  ```yml
+          labels: |
+            chore
+            dependencies
+            automated
+  ```
+
+## Updating from `v1` to `v2`
+
+### Behaviour changes

 - `v2` now expects repositories to be checked out with `actions/checkout@v2`

  To use `actions/checkout@v1` the following step to checkout the branch is necessary.
-  ```
+  ```yml
      - uses: actions/checkout@v1
      - name: Checkout branch
        run: git checkout "${GITHUB_REF:11}"
  ```

- The two branch naming strategies have been swapped. Fixed branch naming strategy is now the default. i.e. `branch-suffix: none` is now the default and should be removed from configuration if set.
+- The two branch naming strategies have been swapped. Fixed-branch naming strategy is now the default. i.e. `branch-suffix: none` is now the default and should be removed from configuration if set.

 - `author-name`, `author-email`, `committer-name`, `committer-email` have been removed in favour of `author` and `committer`.
  They can both be set in the format `Display Name <email@address.com>`

  If neither `author` or `committer` are set the action will default to making commits as the GitHub Actions bot user.

-## New features
+### What's new

- Unpushed commits made during the workflow before the action runs will now be considered as changes to be raised in the pull request. See [Controlling commits](https://github.com/peter-evans/create-pull-request#controlling-commits) for details.
+- Unpushed commits made during the workflow before the action runs will now be considered as changes to be raised in the pull request. See [Create your own commits](https://github.com/peter-evans/create-pull-request#create-your-own-commits) for details.
 - New commits made to the pull request base will now be taken into account when pull requests are updated.
 - If an updated pull request no longer differs from its base it will automatically be closed and the pull request branch deleted.
--- a/jest.config.js
+++ b/jest.config.js
@ -1,3 +1,11 @@
-process.env = Object.assign(process.env, {
-  GITHUB_WORKSPACE: __dirname
-});
+module.exports = {
+  clearMocks: true,
+  moduleFileExtensions: ['js', 'ts'],
+  testEnvironment: 'node',
+  testMatch: ['**/*.test.ts'],
+  testRunner: 'jest-circus/runner',
+  transform: {
+    '^.+\\.ts$': 'ts-jest'
+  },
+  verbose: true
+}
--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@ -1,21 +1,27 @@
 {
  "name": "create-pull-request",
-  "version": "2.0.0",
+  "version": "7.0.0",
+  "private": true,
  "description": "Creates a pull request for changes to your repository in the actions workspace",
-  "main": "index.js",
+  "main": "lib/main.js",
  "scripts": {
-    "clean": "rm -rf dist",
-    "lint": "eslint src/index.js",
-    "test": "eslint src/index.js && jest",
-    "build": "ncc build src/index.js -o dist",
-    "vendor-deps": "pip download -r src/cpr/requirements.txt --no-binary=:all: -d dist/vendor",
-    "package": "npm run build && npm run vendor-deps"
+    "build": "tsc && ncc build",
+    "format": "prettier --write '**/*.ts'",
+    "format-check": "prettier --check '**/*.ts'",
+    "lint": "eslint src/**/*.ts",
+    "test:unit": "jest unit",
+    "test:int": "__test__/integration-tests.sh",
+    "test": "npm run test:unit && npm run test:int"
  },
  "repository": {
    "type": "git",
    "url": "git+https://github.com/peter-evans/create-pull-request.git"
  },
-  "keywords": [],
+  "keywords": [
+    "actions",
+    "pull",
+    "request"
+  ],
  "author": "Peter Evans",
  "license": "MIT",
  "bugs": {
@ -23,14 +29,35 @@
  },
  "homepage": "https://github.com/peter-evans/create-pull-request",
  "dependencies": {
-    "@actions/core": "1.2.4",
-    "@actions/exec": "1.0.4",
-    "@actions/tool-cache": "1.3.4",
-    "is-docker": "2.0.0"
+    "@actions/core": "^1.11.1",
+    "@actions/exec": "^1.1.1",
+    "@octokit/core": "^6.1.2",
+    "@octokit/plugin-paginate-rest": "^11.3.6",
+    "@octokit/plugin-rest-endpoint-methods": "^13.2.6",
+    "@octokit/plugin-throttling": "^9.3.2",
+    "node-fetch-native": "^1.6.4",
+    "p-limit": "^6.1.0",
+    "uuid": "^9.0.1"
  },
  "devDependencies": {
-    "@zeit/ncc": "0.22.1",
-    "eslint": "6.8.0",
-    "jest": "26.0.1"
+    "@types/jest": "^29.5.14",
+    "@types/node": "^18.19.67",
+    "@typescript-eslint/eslint-plugin": "^7.18.0",
+    "@typescript-eslint/parser": "^7.18.0",
+    "@vercel/ncc": "^0.38.3",
+    "eslint": "^8.57.1",
+    "eslint-import-resolver-typescript": "^3.7.0",
+    "eslint-plugin-github": "^4.10.2",
+    "eslint-plugin-import": "^2.31.0",
+    "eslint-plugin-jest": "^27.9.0",
+    "eslint-plugin-prettier": "^5.2.1",
+    "jest": "^29.7.0",
+    "jest-circus": "^29.7.0",
+    "jest-environment-jsdom": "^29.7.0",
+    "js-yaml": "^4.1.0",
+    "prettier": "^3.4.2",
+    "ts-jest": "^29.2.5",
+    "typescript": "^5.7.2",
+    "undici": "^6.21.0"
  }
 }
--- a/renovate.json
+++ b/renovate.json
@ -1,9 +0,0 @@
-{
-  "extends": [
-    "config:base"
-  ],
-  "enabledManagers": ["pip_requirements"],
-  "ignorePaths": [
-    "**/dist/**"
-  ]
-}
--- a/src/cpr/common.py
+++ b/src/cpr/common.py
@ -1,48 +0,0 @@
-#!/usr/bin/env python3
-import random
-import re
-import string
-
-
-def get_random_string(length=7, chars=string.ascii_lowercase + string.digits):
-    return "".join(random.choice(chars) for _ in range(length))
-
-
-def parse_github_repository(url):
-    # Parse the protocol and github repository from a URL
-    # e.g. HTTPS, peter-evans/create-pull-request
-    https_pattern = re.compile(r"^https://github.com/(.+/.+)$")
-    ssh_pattern = re.compile(r"^git@github.com:(.+/.+).git$")
-
-    match = https_pattern.match(url)
-    if match is not None:
-        return "HTTPS", match.group(1)
-
-    match = ssh_pattern.match(url)
-    if match is not None:
-        return "SSH", match.group(1)
-
-    raise ValueError(f"The format of '{url}' is not a valid GitHub repository URL")
-
-
-def parse_display_name_email(display_name_email):
-    # Parse the name and email address from a string in the following format
-    # Display Name <email@address.com>
-    pattern = re.compile(r"^([^<]+)\s*<([^>]+)>$")
-
-    # Check we have a match
-    match = pattern.match(display_name_email)
-    if match is None:
-        raise ValueError(
-            f"The format of '{display_name_email}' is not a valid email address with display name"
-        )
-
-    # Check that name and email are not just whitespace
-    name = match.group(1).strip()
-    email = match.group(2).strip()
-    if len(name) == 0 or len(email) == 0:
-        raise ValueError(
-            f"The format of '{display_name_email}' is not a valid email address with display name"
-        )
-
-    return name, email
--- a/src/cpr/create_or_update_branch.py
+++ b/src/cpr/create_or_update_branch.py
@ -1,145 +0,0 @@
-#!/usr/bin/env python3
-""" Create or Update Branch """
-import common as cmn
-from git import Repo, GitCommandError
-import os
-
-
-CHERRYPICK_EMPTY = (
-    "The previous cherry-pick is now empty, possibly due to conflict resolution."
-)
-
-
-def fetch_successful(repo, repo_url, branch):
-    try:
-        repo.git.fetch(repo_url, f"{branch}:refs/remotes/origin/{branch}")
-    except GitCommandError:
-        return False
-    return True
-
-
-def is_ahead(repo, branch_1, branch_2):
-    # Return true if branch_2 is ahead of branch_1
-    return (
-        int(repo.git.rev_list("--right-only", "--count", f"{branch_1}...{branch_2}"))
-        > 0
-    )
-
-
-def is_behind(repo, branch_1, branch_2):
-    # Return true if branch_2 is behind branch_1
-    return (
-        int(repo.git.rev_list("--left-only", "--count", f"{branch_1}...{branch_2}")) > 0
-    )
-
-
-def is_even(repo, branch_1, branch_2):
-    # Return true if branch_2 is even with branch_1
-    return not is_ahead(repo, branch_1, branch_2) and not is_behind(
-        repo, branch_1, branch_2
-    )
-
-
-def has_diff(repo, branch_1, branch_2):
-    diff = repo.git.diff(f"{branch_1}..{branch_2}")
-    return len(diff) > 0
-
-
-def create_or_update_branch(repo, repo_url, commit_message, base, branch):
-    # Set the default return values
-    action = "none"
-    diff = False
-
-    # Get the working base. This may or may not be the actual base.
-    working_base = repo.git.symbolic_ref("HEAD", "--short")
-    # If the base is not specified it is assumed to be the working base
-    if base is None:
-        base = working_base
-
-    # Save the working base changes to a temporary branch
-    temp_branch = cmn.get_random_string(length=20)
-    repo.git.checkout("HEAD", b=temp_branch)
-    # Commit any uncomitted changes
-    if repo.is_dirty(untracked_files=True):
-        print(f"Uncommitted changes found. Adding a commit.")
-        repo.git.add("-A")
-        repo.git.commit(m=commit_message)
-
-    # Perform fetch and reset the working base
-    # Commits made during the workflow will be removed
-    repo.git.fetch("--force", repo_url, f"{working_base}:{working_base}")
-
-    # If the working base is not the base, rebase the temp branch commits
-    if working_base != base:
-        print(
-            f"Rebasing commits made to branch '{working_base}' on to base branch '{base}'"
-        )
-        # Checkout the actual base
-        repo.git.fetch("--force", repo_url, f"{base}:{base}")
-        repo.git.checkout(base)
-        # Cherrypick commits from the temporary branch starting from the working base
-        commits = repo.git.rev_list("--reverse", f"{working_base}..{temp_branch}", ".")
-        for commit in commits.splitlines():
-            try:
-                repo.git.cherry_pick(
-                    "--strategy",
-                    "recursive",
-                    "--strategy-option",
-                    "theirs",
-                    f"{commit}",
-                )
-            except GitCommandError as e:
-                if CHERRYPICK_EMPTY not in e.stderr:
-                    print("Unexpected error: ", e)
-                    raise
-        # Reset the temp branch to the working index
-        repo.git.checkout("-B", temp_branch, "HEAD")
-        # Reset the base
-        repo.git.fetch("--force", repo_url, f"{base}:{base}")
-
-    # Try to fetch the pull request branch
-    if not fetch_successful(repo, repo_url, branch):
-        # The pull request branch does not exist
-        print(f"Pull request branch '{branch}' does not exist yet")
-        # Create the pull request branch
-        repo.git.checkout("HEAD", b=branch)
-        # Check if the pull request branch is ahead of the base
-        diff = is_ahead(repo, base, branch)
-        if diff:
-            action = "created"
-            print(f"Created branch '{branch}'")
-        else:
-            print(
-                f"Branch '{branch}' is not ahead of base '{base}' and will not be created"
-            )
-    else:
-        # The pull request branch exists
-        print(
-            f"Pull request branch '{branch}' already exists as remote branch 'origin/{branch}'"
-        )
-        # Checkout the pull request branch
-        repo.git.checkout(branch)
-
-        if has_diff(repo, branch, temp_branch):
-            # If the branch differs from the recreated temp version then the branch is reset
-            # For changes on base this action is similar to a rebase of the pull request branch
-            print(f"Resetting '{branch}'")
-            repo.git.checkout("-B", branch, temp_branch)
-            # repo.git.switch("-C", branch, temp_branch)
-
-        # Check if the pull request branch has been updated
-        # If the branch was reset or updated it will be ahead
-        # It may be behind if a reset now results in no diff with the base
-        if not is_even(repo, f"origin/{branch}", branch):
-            action = "updated"
-            print(f"Updated branch '{branch}'")
-        else:
-            print(f"Branch '{branch}' is even with its remote and will not be updated")
-
-        # Check if the pull request branch is ahead of the base
-        diff = is_ahead(repo, base, branch)
-
-    # Delete the temporary branch
-    repo.git.branch("--delete", "--force", temp_branch)
-
-    return {"action": action, "diff": diff, "base": base}
--- a/src/cpr/create_or_update_pull_request.py
+++ b/src/cpr/create_or_update_pull_request.py
@ -1,162 +0,0 @@
-#!/usr/bin/env python3
-""" Create or Update Pull Request """
-from github import Github, GithubException
-import os
-
-
-def string_to_bool(str):
-    if str is None:
-        return False
-    else:
-        return str.lower() in [
-            "true",
-            "1",
-            "t",
-            "y",
-            "yes",
-            "on",
-        ]
-
-
-def cs_string_to_list(str):
-    # Split the comma separated string into a list
-    l = [i.strip() for i in str.split(",")]
-    # Remove empty strings
-    return list(filter(None, l))
-
-
-def create_project_card(github_repo, project_name, project_column_name, pull_request):
-    # Locate the project by name
-    project = None
-    for project_item in github_repo.get_projects("all"):
-        if project_item.name == project_name:
-            project = project_item
-            break
-
-    if not project:
-        print("::error::Project not found. Unable to create project card.")
-        return
-
-    # Locate the column by name
-    column = None
-    for column_item in project.get_columns():
-        if column_item.name == project_column_name:
-            column = column_item
-            break
-
-    if not column:
-        print("::error::Project column not found. Unable to create project card.")
-        return
-
-    # Create a project card for the pull request
-    column.create_card(content_id=pull_request.id, content_type="PullRequest")
-    print(
-        "Added pull request #%d to project '%s' under column '%s'"
-        % (pull_request.number, project.name, column.name)
-    )
-
-
-def create_or_update_pull_request(
-    github_token,
-    github_repository,
-    branch,
-    base,
-    title,
-    body,
-    labels,
-    assignees,
-    milestone,
-    reviewers,
-    team_reviewers,
-    project_name,
-    project_column_name,
-    draft,
-    request_to_parent,
-):
-    github_repo = head_repo = Github(github_token).get_repo(github_repository)
-    if string_to_bool(request_to_parent):
-        github_repo = github_repo.parent
-        if github_repo is None:
-            raise ValueError(
-                "The checked out repository is not a fork. Input 'request-to-parent' should be set to false."
-            )
-
-    head_branch = f"{head_repo.owner.login}:{branch}"
-
-    # Create the pull request
-    try:
-        pull_request = github_repo.create_pull(
-            title=title,
-            body=body,
-            base=base,
-            head=head_branch,
-            draft=string_to_bool(draft),
-        )
-        print(
-            f"Created pull request #{pull_request.number} ({head_branch} => {github_repo.owner.login}:{base})"
-        )
-    except GithubException as e:
-        if e.status == 422:
-            # A pull request exists for this branch and base
-            # Get the pull request
-            pull_request = github_repo.get_pulls(
-                state="open", base=base, head=head_branch
-            )[0]
-            # Update title and body
-            pull_request.as_issue().edit(title=title, body=body)
-            print(
-                f"Updated pull request #{pull_request.number} ({head_branch} => {github_repo.owner.login}:{base})"
-            )
-        else:
-            print(str(e))
-            raise
-
-    # Set the output variables
-    os.system(f"echo ::set-env name=PULL_REQUEST_NUMBER::{pull_request.number}")
-    os.system(f"echo ::set-output name=pull-request-number::{pull_request.number}")
-    # 'pr_number' is deprecated
-    os.system(f"echo ::set-output name=pr_number::{pull_request.number}")
-
-    # Set labels, assignees and milestone
-    if labels is not None:
-        print(f"Applying labels '{labels}'")
-        pull_request.as_issue().edit(labels=cs_string_to_list(labels))
-    if assignees is not None:
-        print(f"Applying assignees '{assignees}'")
-        pull_request.as_issue().edit(assignees=cs_string_to_list(assignees))
-    if milestone is not None:
-        print(f"Applying milestone '{milestone}'")
-        milestone = github_repo.get_milestone(int(milestone))
-        pull_request.as_issue().edit(milestone=milestone)
-
-    # Set pull request reviewers
-    if reviewers is not None:
-        print(f"Requesting reviewers '{reviewers}'")
-        try:
-            pull_request.create_review_request(reviewers=cs_string_to_list(reviewers))
-        except GithubException as e:
-            # Likely caused by "Review cannot be requested from pull request author."
-            if e.status == 422:
-                print("Request reviewers failed - {}".format(e.data["message"]))
-
-    # Set pull request team reviewers
-    if team_reviewers is not None:
-        print(f"Requesting team reviewers '{team_reviewers}'")
-        pull_request.create_review_request(
-            team_reviewers=cs_string_to_list(team_reviewers)
-        )
-
-    # Create a project card for the pull request
-    if project_name is not None and project_column_name is not None:
-        try:
-            create_project_card(
-                github_repo, project_name, project_column_name, pull_request
-            )
-        except GithubException as e:
-            # Likely caused by "Project already has the associated issue."
-            if e.status == 422:
-                print(
-                    "Create project card failed - {}".format(
-                        e.data["errors"][0]["message"]
-                    )
-                )
--- a/src/cpr/create_pull_request.py
+++ b/src/cpr/create_pull_request.py
@ -1,229 +0,0 @@
-#!/usr/bin/env python3
-""" Create Pull Request """
-import base64
-import common as cmn
-import create_or_update_branch as coub
-import create_or_update_pull_request as coupr
-from git import Repo, GitCommandError
-import json
-import os
-import sys
-import time
-
-
-# Default the committer and author to the GitHub Actions bot
-DEFAULT_COMMITTER = "GitHub <noreply@github.com>"
-DEFAULT_AUTHOR = (
-    "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
-)
-DEFAULT_COMMIT_MESSAGE = "[create-pull-request] automated change"
-DEFAULT_TITLE = "Changes by create-pull-request action"
-DEFAULT_BODY = (
-    "Automated changes by "
-    + "[create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action"
-)
-DEFAULT_BRANCH = "create-pull-request/patch"
-
-
-def get_git_config_value(repo, name):
-    try:
-        return repo.git.config("--get", name)
-    except GitCommandError:
-        return None
-
-
-def get_repository_detail(repo):
-    remote_origin_url = get_git_config_value(repo, "remote.origin.url")
-    if remote_origin_url is None:
-        raise ValueError("Failed to fetch 'remote.origin.url' from git config")
-    protocol, github_repository = cmn.parse_github_repository(remote_origin_url)
-    return remote_origin_url, protocol, github_repository
-
-
-def git_user_config_is_set(repo):
-    name = get_git_config_value(repo, "user.name")
-    email = get_git_config_value(repo, "user.email")
-
-    if name is not None and email is not None:
-        print(f"Git user already configured as '{name} <{email}>'")
-        return True
-
-    committer_name = get_git_config_value(repo, "committer.name")
-    committer_email = get_git_config_value(repo, "committer.email")
-    author_name = get_git_config_value(repo, "author.name")
-    author_email = get_git_config_value(repo, "author.email")
-
-    if (
-        committer_name is not None
-        and committer_email is not None
-        and author_name is not None
-        and author_email is not None
-    ):
-        print(
-            f"Git committer already configured as '{committer_name} <{committer_email}>'"
-        )
-        print(f"Git author already configured as '{author_name} <{author_email}>'")
-        return True
-
-    return False
-
-
-def set_committer_author(repo, committer, author):
-    # If either committer or author is supplied they will be cross used
-    if committer is None and author is not None:
-        print("Supplied author will also be used as the committer.")
-        committer = author
-    if author is None and committer is not None:
-        print("Supplied committer will also be used as the author.")
-        author = committer
-
-    # If no committer/author has been supplied but user configuration already
-    # exists in git config we can exit and use the existing config as-is.
-    if committer is None and author is None:
-        if git_user_config_is_set(repo):
-            return
-
-    # Set defaults if no committer/author has been supplied
-    if committer is None and author is None:
-        committer = DEFAULT_COMMITTER
-        author = DEFAULT_AUTHOR
-
-    # Set git environment. This will not persist after the action completes.
-    committer_name, committer_email = cmn.parse_display_name_email(committer)
-    author_name, author_email = cmn.parse_display_name_email(author)
-    repo.git.update_environment(
-        GIT_COMMITTER_NAME=committer_name,
-        GIT_COMMITTER_EMAIL=committer_email,
-        GIT_AUTHOR_NAME=author_name,
-        GIT_AUTHOR_EMAIL=author_email,
-    )
-    print(f"Configured git committer as '{committer_name} <{committer_email}>'")
-    print(f"Configured git author as '{author_name} <{author_email}>'")
-
-
-# Get required environment variables
-github_token = os.environ["GITHUB_TOKEN"]
-# Get environment variables with defaults
-path = os.getenv("CPR_PATH", os.getcwd())
-branch = os.getenv("CPR_BRANCH", DEFAULT_BRANCH)
-commit_message = os.getenv("CPR_COMMIT_MESSAGE", DEFAULT_COMMIT_MESSAGE)
-# Get environment variables with a default of 'None'
-committer = os.environ.get("CPR_COMMITTER")
-author = os.environ.get("CPR_AUTHOR")
-base = os.environ.get("CPR_BASE")
-
-# Set the repo path
-repo = Repo(path)
-
-# Determine the GitHub repository from git config
-# This will be the target repository for the pull request
-repo_url, protocol, github_repository = get_repository_detail(repo)
-print(f"Target repository set to {github_repository}")
-
-if protocol == "HTTPS":
-    print(f"::debug::Using HTTPS protocol")
-    # Encode and configure the basic credential for HTTPS access
-    basic_credential = base64.b64encode(
-        f"x-access-token:{github_token}".encode("utf-8")
-    ).decode("utf-8")
-    # Mask the basic credential in logs and debug output
-    print(f"::add-mask::{basic_credential}")
-    repo.git.set_persistent_git_options(
-        c=f"http.https://github.com/.extraheader=AUTHORIZATION: basic {basic_credential}"
-    )
-
-# Determine if the checked out ref is a valid base for a pull request
-# The action needs the checked out HEAD ref to be a branch
-# This check will fail in the following cases:
-# - HEAD is detached
-# - HEAD is a merge commit (pull_request events)
-# - HEAD is a tag
-try:
-    working_base = repo.git.symbolic_ref("HEAD", "--short")
-except GitCommandError as e:
-    print(f"::debug::{e.stderr}")
-    print(
-        f"::error::The checked out ref is not a valid base for a pull request. "
-        + "Unable to continue. Exiting."
-    )
-    sys.exit(1)
-
-# Exit if the working base is a PR branch created by this action.
-# This may occur when using a PAT instead of GITHUB_TOKEN because
-# a PAT allows workflow actions to trigger further events.
-if working_base.startswith(branch):
-    print(
-        f"::error::Working base branch '{working_base}' was created by this action. "
-        + "Unable to continue. Exiting."
-    )
-    sys.exit(1)
-
-# Fetch an optional environment variable to determine the branch suffix
-branch_suffix = os.environ.get("CPR_BRANCH_SUFFIX")
-if branch_suffix is not None:
-    if branch_suffix == "short-commit-hash":
-        # Suffix with the short SHA1 hash
-        branch = "{}-{}".format(branch, repo.git.rev_parse("--short", "HEAD"))
-    elif branch_suffix == "timestamp":
-        # Suffix with the current timestamp
-        branch = "{}-{}".format(branch, int(time.time()))
-    elif branch_suffix == "random":
-        # Suffix with a 7 character random string
-        branch = "{}-{}".format(branch, cmn.get_random_string())
-    else:
-        print(
-            f"::error::Branch suffix '{branch_suffix}' is not a valid value. "
-            + "Unable to continue. Exiting."
-        )
-        sys.exit(1)
-
-# Output head branch
-print(f"Pull request branch to create or update set to '{branch}'")
-
-# Set the committer and author
-try:
-    set_committer_author(repo, committer, author)
-except ValueError as e:
-    print(f"::error::{e} " + "Unable to continue. Exiting.")
-    sys.exit(1)
-
-# Create or update the pull request branch
-result = coub.create_or_update_branch(repo, repo_url, commit_message, base, branch)
-
-if result["action"] in ["created", "updated"]:
-    # The branch was created or updated
-    print(f"Pushing pull request branch to 'origin/{branch}'")
-    repo.git.push("--force", repo_url, f"HEAD:refs/heads/{branch}")
-
-    # Set the base. It would have been 'None' if not specified as an input
-    base = result["base"]
-
-    # If there is no longer a diff with the base delete the branch and exit
-    if not result["diff"]:
-        print(f"Branch '{branch}' no longer differs from base branch '{base}'")
-        print(f"Closing pull request and deleting branch '{branch}'")
-        repo.git.push("--delete", "--force", repo_url, f"refs/heads/{branch}")
-        sys.exit()
-
-    # Fetch optional environment variables with default values
-    title = os.getenv("CPR_TITLE", DEFAULT_TITLE)
-    body = os.getenv("CPR_BODY", DEFAULT_BODY)
-
-    # Create or update the pull request
-    coupr.create_or_update_pull_request(
-        github_token,
-        github_repository,
-        branch,
-        base,
-        title,
-        body,
-        os.environ.get("CPR_LABELS"),
-        os.environ.get("CPR_ASSIGNEES"),
-        os.environ.get("CPR_MILESTONE"),
-        os.environ.get("CPR_REVIEWERS"),
-        os.environ.get("CPR_TEAM_REVIEWERS"),
-        os.environ.get("CPR_PROJECT_NAME"),
-        os.environ.get("CPR_PROJECT_COLUMN_NAME"),
-        os.environ.get("CPR_DRAFT"),
-        os.environ.get("CPR_REQUEST_TO_PARENT"),
-    )
--- a/src/cpr/requirements.txt
+++ b/src/cpr/requirements.txt
@ -1,4 +0,0 @@
-setuptools==46.2.0
-wheel==0.34.2
-GitPython==3.1.2
-PyGithub==1.51
--- a/src/cpr/test_common.py
+++ b/src/cpr/test_common.py
@ -1,63 +0,0 @@
-#!/usr/bin/env python3
-""" Test Common """
-import common as cmn
-import pytest
-
-
-def test_get_random_string():
-    assert len(cmn.get_random_string()) == 7
-    assert len(cmn.get_random_string(length=20)) == 20
-
-
-def test_parse_github_repository_success():
-    protocol, repository = cmn.parse_github_repository(
-        "https://github.com/peter-evans/create-pull-request"
-    )
-    assert protocol == "HTTPS"
-    assert repository == "peter-evans/create-pull-request"
-
-    protocol, repository = cmn.parse_github_repository(
-        "git@github.com:peter-evans/create-pull-request.git"
-    )
-    assert protocol == "SSH"
-    assert repository == "peter-evans/create-pull-request"
-
-
-def test_parse_github_repository_failure():
-    url = "https://github.com/peter-evans"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_github_repository(url)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{url}' is not a valid GitHub repository URL"
-    )
-
-
-def test_parse_display_name_email_success():
-    name, email = cmn.parse_display_name_email("abc def <abc@def.com>")
-    assert name == "abc def"
-    assert email == "abc@def.com"
-
-    name, email = cmn.parse_display_name_email(
-        "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
-    )
-    assert name == "github-actions[bot]"
-    assert email == "41898282+github-actions[bot]@users.noreply.github.com"
-
-
-def test_parse_display_name_email_failure():
-    display_name_email = "abc@def.com"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_display_name_email(display_name_email)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{display_name_email}' is not a valid email address with display name"
-    )
-
-    display_name_email = " < >"
-    with pytest.raises(ValueError) as e_info:
-        cmn.parse_display_name_email(display_name_email)
-    assert (
-        e_info.value.args[0]
-        == f"The format of '{display_name_email}' is not a valid email address with display name"
-    )
--- a/src/cpr/test_create_or_update_branch.py
+++ b/src/cpr/test_create_or_update_branch.py
@ -1,757 +0,0 @@
-#!/usr/bin/env python3
-""" Test Create or Update Branch """
-import create_or_update_branch as coub
-from git import Repo
-import os
-import pytest
-import sys
-import time
-
-
-# Set git repo
-REPO_PATH = os.getenv("COUB_REPO_PATH", os.getcwd())
-repo = Repo(REPO_PATH)
-
-# Set git environment
-author_name = "github-actions[bot]"
-author_email = "41898282+github-actions[bot]@users.noreply.github.com"
-committer_name = "GitHub"
-committer_email = "noreply@github.com"
-repo.git.update_environment(
-    GIT_AUTHOR_NAME=author_name,
-    GIT_AUTHOR_EMAIL=author_email,
-    GIT_COMMITTER_NAME=committer_name,
-    GIT_COMMITTER_EMAIL=committer_email,
-)
-
-REPO_URL = repo.git.config("--get", "remote.origin.url")
-
-TRACKED_FILE = "tracked-file.txt"
-UNTRACKED_FILE = "untracked-file.txt"
-
-DEFAULT_BRANCH = "tests/master"
-NOT_BASE_BRANCH = "tests/branch-that-is-not-the-base"
-NOT_EXIST_BRANCH = "tests/branch-that-does-not-exist"
-
-COMMIT_MESSAGE = "[create-pull-request] automated change"
-BRANCH = "tests/create-pull-request/patch"
-BASE = DEFAULT_BRANCH
-
-
-def create_tracked_change(content=None):
-    if content is None:
-        content = str(time.time())
-    # Create a tracked file change
-    with open(os.path.join(REPO_PATH, TRACKED_FILE), "w") as f:
-        f.write(content)
-    return content
-
-
-def create_untracked_change(content=None):
-    if content is None:
-        content = str(time.time())
-    # Create an untracked file change
-    with open(os.path.join(REPO_PATH, UNTRACKED_FILE), "w") as f:
-        f.write(content)
-    return content
-
-
-def get_tracked_content():
-    # Read the content of the tracked file
-    with open(os.path.join(REPO_PATH, TRACKED_FILE), "r") as f:
-        return f.read()
-
-
-def get_untracked_content():
-    # Read the content of the untracked file
-    with open(os.path.join(REPO_PATH, UNTRACKED_FILE), "r") as f:
-        return f.read()
-
-
-def create_changes(tracked_content=None, untracked_content=None):
-    tracked_content = create_tracked_change(tracked_content)
-    untracked_content = create_untracked_change(untracked_content)
-    return tracked_content, untracked_content
-
-
-def create_commits(number=2, final_tracked_content=None, final_untracked_content=None):
-    for i in range(number):
-        commit_number = i + 1
-        if commit_number == number:
-            tracked_content, untracked_content = create_changes(
-                final_tracked_content, final_untracked_content
-            )
-        else:
-            tracked_content, untracked_content = create_changes()
-        repo.git.add("-A")
-        repo.git.commit(m=f"Commit {commit_number}")
-    return tracked_content, untracked_content
-
-
-@pytest.fixture(scope="module", autouse=True)
-def before_after_all():
-    print("Before all tests")
-    # Check there are no local changes that might be
-    # destroyed by running these tests
-    assert not repo.is_dirty(untracked_files=True)
-
-    # Create a new default branch for the test run
-    repo.remotes.origin.fetch()
-    repo.git.checkout("master")
-    repo.git.checkout("HEAD", b=NOT_BASE_BRANCH)
-    create_tracked_change()
-    repo.git.add("-A")
-    repo.git.commit(m="This commit should not appear in pr branches")
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{NOT_BASE_BRANCH}")
-    # Create a new default branch for the test run
-    repo.git.checkout("master")
-    repo.git.checkout("HEAD", b=DEFAULT_BRANCH)
-    create_tracked_change()
-    repo.git.add("-A")
-    repo.git.commit(m="Add file to be a tracked file for tests")
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-
-    yield
-
-    print("After all tests")
-    repo.git.checkout("master")
-    # Delete the "not base branch" created for the test run
-    repo.git.branch("--delete", "--force", NOT_BASE_BRANCH)
-    repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{NOT_BASE_BRANCH}")
-    # Delete the default branch created for the test run
-    repo.git.branch("--delete", "--force", DEFAULT_BRANCH)
-    repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{DEFAULT_BRANCH}")
-
-
-def before_test():
-    print("Before test")
-    # Checkout the default branch
-    repo.git.checkout(DEFAULT_BRANCH)
-
-
-def after_test(delete_remote=True):
-    print("After test")
-    # Output git log
-    print(repo.git.log("-5", pretty="oneline"))
-    # Delete the pull request branch if it exists
-    repo.git.checkout(DEFAULT_BRANCH)
-    print(f"Deleting {BRANCH}")
-    for branch in repo.branches:
-        if branch.name == BRANCH:
-            repo.git.branch("--delete", "--force", BRANCH)
-            break
-    if delete_remote:
-        print(f"Deleting origin/{BRANCH}")
-        for ref in repo.remotes.origin.refs:
-            if ref.name == f"origin/{BRANCH}":
-                repo.git.push("--delete", "--force", REPO_URL, f"refs/heads/{BRANCH}")
-                repo.remotes.origin.fetch("--prune")
-                break
-
-
-@pytest.fixture(autouse=True)
-def before_after_tests():
-    before_test()
-    yield
-    after_test()
-
-
-# Tests if a branch exists and can be fetched
-def coub_fetch_successful():
-    assert coub.fetch_successful(repo, REPO_URL, NOT_BASE_BRANCH)
-    assert not coub.fetch_successful(repo, REPO_URL, NOT_EXIST_BRANCH)
-
-
-# Tests no changes resulting in no new branch being created
-def coub_no_changes_on_create():
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "none"
-
-
-# Tests create and update with a tracked file change
-def coub_tracked_changes():
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-
-
-# Tests create and update with an untracked file change
-def coub_untracked_changes():
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with identical changes
-# The pull request branch will not be updated
-def coub_identical_changes():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create identical tracked and untracked file changes
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "none"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with commits on the base inbetween
-def coub_commits_on_base():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and then an update with no changes
-# This effectively reverts the branch back to match the base and results in no diff
-def coub_changes_no_diff():
-    # Save the default branch tracked content
-    default_tracked_content = get_tracked_content()
-
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Running with no update effectively reverts the branch back to match the base
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == default_tracked_content
-
-
-# Tests create and update with commits on the base inbetween
-# The changes on base effectively revert the branch back to match the base and results in no diff
-def coub_commits_on_base_no_diff():
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    tracked_content, untracked_content = create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create the same tracked and untracked file changes that were made to the base
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with commits on the working base (during the workflow)
-def coub_commits_on_working_base():
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with changes and commits on the working base (during the workflow)
-def coub_changes_and_commits_on_working_base():
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Tests create and update with changes and commits on the working base (during the workflow)
-# with commits on the base inbetween
-def coub_changes_and_commits_on_base_and_working_base():
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, None, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests no changes resulting in no new branch being created
-def coub_wbnb_no_changes_on_create():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "none"
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with a tracked file change
-def coub_wbnb_tracked_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create a tracked file change
-    tracked_content = create_tracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with an untracked file change
-def coub_wbnb_untracked_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create an untracked file change
-    untracked_content = create_untracked_change()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with identical changes
-# The pull request branch will not be updated
-def coub_wbnb_identical_changes():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create identical tracked and untracked file changes
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "none"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the base inbetween
-def coub_wbnb_commits_on_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and then an update with no changes
-# This effectively reverts the branch back to match the base and results in no diff
-def coub_wbnb_changes_no_diff():
-    # Save the default branch tracked content
-    default_tracked_content = get_tracked_content()
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Running with no update effectively reverts the branch back to match the base
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == default_tracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the base inbetween
-# The changes on base effectively revert the branch back to match the base and results in no diff
-# This scenario will cause cherrypick to fail due to an empty commit.
-# The commit is empty because the changes now exist on the base.
-def coub_wbnb_commits_on_base_no_diff():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    tracked_content, untracked_content = create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create the same tracked and untracked file changes that were made to the base
-    create_changes(tracked_content, untracked_content)
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"] == False
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with commits on the working base (during the workflow)
-def coub_wbnb_commits_on_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    tracked_content, untracked_content = create_commits()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with changes and commits on the working base (during the workflow)
-def coub_wbnb_changes_and_commits_on_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# Working Base is Not Base (WBNB)
-# Tests create and update with changes and commits on the working base (during the workflow)
-# with commits on the base inbetween
-def coub_wbnb_changes_and_commits_on_base_and_working_base():
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "created"
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-    # Push pull request branch to remote
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{BRANCH}")
-    repo.remotes.origin.fetch()
-
-    after_test(delete_remote=False)
-    before_test()
-
-    # Create commits on the base
-    create_commits()
-    repo.git.push("--force", REPO_URL, f"HEAD:refs/heads/{DEFAULT_BRANCH}")
-    repo.remotes.origin.fetch()
-
-    # Set the working base to a branch that is not the pull request base
-    repo.git.checkout(NOT_BASE_BRANCH)
-    # Create commits on the working base
-    create_commits()
-    # Create tracked and untracked file changes
-    tracked_content, untracked_content = create_changes()
-    result = coub.create_or_update_branch(repo, REPO_URL, COMMIT_MESSAGE, BASE, BRANCH)
-    assert result["action"] == "updated"
-    assert result["diff"]
-    assert get_tracked_content() == tracked_content
-    assert get_untracked_content() == untracked_content
-
-
-# pytest -v -s ~/git/create-pull-request/src
-
-test_coub_fetch_successful = coub_fetch_successful
-
-test_coub_no_changes_on_create = coub_no_changes_on_create
-test_coub_tracked_changes = coub_tracked_changes
-test_coub_untracked_changes = coub_untracked_changes
-test_coub_identical_changes = coub_identical_changes
-test_coub_commits_on_base = coub_commits_on_base
-
-test_coub_changes_no_diff = coub_changes_no_diff
-test_coub_commits_on_base_no_diff = coub_commits_on_base_no_diff
-
-test_coub_commits_on_working_base = coub_commits_on_working_base
-test_coub_changes_and_commits_on_working_base = coub_changes_and_commits_on_working_base
-test_coub_changes_and_commits_on_base_and_working_base = (
-    coub_changes_and_commits_on_base_and_working_base
-)
-
-# WBNB
-test_coub_wbnb_no_changes_on_create = coub_wbnb_no_changes_on_create
-test_coub_wbnb_tracked_changes = coub_wbnb_tracked_changes
-test_coub_wbnb_untracked_changes = coub_wbnb_untracked_changes
-test_coub_wbnb_identical_changes = coub_wbnb_identical_changes
-test_coub_wbnb_commits_on_base = coub_wbnb_commits_on_base
-
-test_coub_wbnb_changes_no_diff = coub_wbnb_changes_no_diff
-test_coub_wbnb_commits_on_base_no_diff = coub_wbnb_commits_on_base_no_diff
-
-test_coub_wbnb_commits_on_working_base = coub_wbnb_commits_on_working_base
-test_coub_wbnb_changes_and_commits_on_working_base = (
-    coub_wbnb_changes_and_commits_on_working_base
-)
-test_coub_wbnb_changes_and_commits_on_base_and_working_base = (
-    coub_wbnb_changes_and_commits_on_base_and_working_base
-)
--- a/src/create-or-update-branch.ts
+++ b/src/create-or-update-branch.ts
@ -0,0 +1,372 @@
+import * as core from '@actions/core'
+import {GitCommandManager, Commit} from './git-command-manager'
+import {v4 as uuidv4} from 'uuid'
+import * as utils from './utils'
+
+const CHERRYPICK_EMPTY =
+  'The previous cherry-pick is now empty, possibly due to conflict resolution.'
+const NOTHING_TO_COMMIT = 'nothing to commit, working tree clean'
+
+const FETCH_DEPTH_MARGIN = 10
+
+export enum WorkingBaseType {
+  Branch = 'branch',
+  Commit = 'commit'
+}
+
+export async function getWorkingBaseAndType(
+  git: GitCommandManager
+): Promise<[string, WorkingBaseType]> {
+  const symbolicRefResult = await git.exec(
+    ['symbolic-ref', 'HEAD', '--short'],
+    true
+  )
+  if (symbolicRefResult.exitCode == 0) {
+    // A ref is checked out
+    return [symbolicRefResult.stdout.trim(), WorkingBaseType.Branch]
+  } else {
+    // A commit is checked out (detached HEAD)
+    const headSha = await git.revParse('HEAD')
+    return [headSha, WorkingBaseType.Commit]
+  }
+}
+
+export async function tryFetch(
+  git: GitCommandManager,
+  remote: string,
+  branch: string,
+  depth: number
+): Promise<boolean> {
+  try {
+    await git.fetch([`${branch}:refs/remotes/${remote}/${branch}`], remote, [
+      '--force',
+      `--depth=${depth}`
+    ])
+    return true
+  } catch {
+    return false
+  }
+}
+
+export async function buildBranchCommits(
+  git: GitCommandManager,
+  base: string,
+  branch: string
+): Promise<Commit[]> {
+  const output = await git.exec(['log', '--format=%H', `${base}..${branch}`])
+  const shas = output.stdout
+    .split('\n')
+    .filter(x => x !== '')
+    .reverse()
+  const commits: Commit[] = []
+  for (const sha of shas) {
+    const commit = await git.getCommit(sha)
+    commits.push(commit)
+    for (const unparsedChange of commit.unparsedChanges) {
+      core.warning(`Skipping unexpected diff entry: ${unparsedChange}`)
+    }
+  }
+  return commits
+}
+
+// Return the number of commits that branch2 is ahead of branch1
+async function commitsAhead(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string
+): Promise<number> {
+  const result = await git.revList(
+    [`${branch1}...${branch2}`],
+    ['--right-only', '--count']
+  )
+  return Number(result)
+}
+
+// Return true if branch2 is ahead of branch1
+async function isAhead(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string
+): Promise<boolean> {
+  return (await commitsAhead(git, branch1, branch2)) > 0
+}
+
+// Return the number of commits that branch2 is behind branch1
+async function commitsBehind(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string
+): Promise<number> {
+  const result = await git.revList(
+    [`${branch1}...${branch2}`],
+    ['--left-only', '--count']
+  )
+  return Number(result)
+}
+
+// Return true if branch2 is behind branch1
+async function isBehind(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string
+): Promise<boolean> {
+  return (await commitsBehind(git, branch1, branch2)) > 0
+}
+
+// Return true if branch2 is even with branch1
+async function isEven(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string
+): Promise<boolean> {
+  return (
+    !(await isAhead(git, branch1, branch2)) &&
+    !(await isBehind(git, branch1, branch2))
+  )
+}
+
+// Return true if the specified number of commits on branch1 and branch2 have a diff
+async function commitsHaveDiff(
+  git: GitCommandManager,
+  branch1: string,
+  branch2: string,
+  depth: number
+): Promise<boolean> {
+  // Some action use cases lead to the depth being a very large number and the diff fails.
+  // I've made this check optional for now because it was a fix for an edge case that is
+  // very rare, anyway.
+  try {
+    const diff1 = (
+      await git.exec(['diff', '--stat', `${branch1}..${branch1}~${depth}`])
+    ).stdout.trim()
+    const diff2 = (
+      await git.exec(['diff', '--stat', `${branch2}..${branch2}~${depth}`])
+    ).stdout.trim()
+    return diff1 !== diff2
+  } catch (error) {
+    core.info('Failed optional check of commits diff; Skipping.')
+    core.debug(utils.getErrorMessage(error))
+    return false
+  }
+}
+
+function splitLines(multilineString: string): string[] {
+  return multilineString
+    .split('\n')
+    .map(s => s.trim())
+    .filter(x => x !== '')
+}
+
+interface CreateOrUpdateBranchResult {
+  action: string
+  base: string
+  hasDiffWithBase: boolean
+  baseCommit: Commit
+  headSha: string
+  branchCommits: Commit[]
+}
+
+export async function createOrUpdateBranch(
+  git: GitCommandManager,
+  commitMessage: string,
+  base: string,
+  branch: string,
+  branchRemoteName: string,
+  signoff: boolean,
+  addPaths: string[]
+): Promise<CreateOrUpdateBranchResult> {
+  // Get the working base.
+  // When a ref, it may or may not be the actual base.
+  // When a commit, we must rebase onto the actual base.
+  const [workingBase, workingBaseType] = await getWorkingBaseAndType(git)
+  core.info(`Working base is ${workingBaseType} '${workingBase}'`)
+  if (workingBaseType == WorkingBaseType.Commit && !base) {
+    throw new Error(`When in 'detached HEAD' state, 'base' must be supplied.`)
+  }
+
+  // If the base is not specified it is assumed to be the working base.
+  base = base ? base : workingBase
+  const baseRemote = 'origin'
+
+  // Save the working base changes to a temporary branch
+  const tempBranch = uuidv4()
+  await git.checkout(tempBranch, 'HEAD')
+  // Commit any uncommitted changes
+  if (await git.isDirty(true, addPaths)) {
+    core.info('Uncommitted changes found. Adding a commit.')
+    const aopts = ['add']
+    if (addPaths.length > 0) {
+      aopts.push(...['--', ...addPaths])
+    } else {
+      aopts.push('-A')
+    }
+    await git.exec(aopts, true)
+    const popts = ['-m', commitMessage]
+    if (signoff) {
+      popts.push('--signoff')
+    }
+    const commitResult = await git.commit(popts, true)
+    // 'nothing to commit' can occur when core.autocrlf is set to true
+    if (
+      commitResult.exitCode != 0 &&
+      !commitResult.stdout.includes(NOTHING_TO_COMMIT)
+    ) {
+      throw new Error(`Unexpected error: ${commitResult.stderr}`)
+    }
+  }
+
+  // Stash any uncommitted tracked and untracked changes
+  const stashed = await git.stashPush(['--include-untracked'])
+
+  // Reset the working base
+  // Commits made during the workflow will be removed
+  if (workingBaseType == WorkingBaseType.Branch) {
+    core.info(`Resetting working base branch '${workingBase}'`)
+    await git.checkout(workingBase)
+    await git.exec(['reset', '--hard', `${baseRemote}/${workingBase}`])
+  }
+
+  // If the working base is not the base, rebase the temp branch commits
+  // This will also be true if the working base type is a commit
+  if (workingBase != base) {
+    core.info(
+      `Rebasing commits made to ${workingBaseType} '${workingBase}' on to base branch '${base}'`
+    )
+    const fetchArgs = ['--force']
+    if (branchRemoteName != 'fork') {
+      // If pushing to a fork we cannot shallow fetch otherwise the 'shallow update not allowed' error occurs
+      fetchArgs.push('--depth=1')
+    }
+    // Checkout the actual base
+    await git.fetch([`${base}:${base}`], baseRemote, fetchArgs)
+    await git.checkout(base)
+    // Cherrypick commits from the temporary branch starting from the working base
+    const commits = await git.revList(
+      [`${workingBase}..${tempBranch}`, '.'],
+      ['--reverse']
+    )
+    for (const commit of splitLines(commits)) {
+      const result = await git.cherryPick(
+        ['--strategy=recursive', '--strategy-option=theirs', commit],
+        true
+      )
+      if (result.exitCode != 0 && !result.stderr.includes(CHERRYPICK_EMPTY)) {
+        throw new Error(`Unexpected error: ${result.stderr}`)
+      }
+    }
+    // Reset the temp branch to the working index
+    await git.checkout(tempBranch, 'HEAD')
+    // Reset the base
+    await git.fetch([`${base}:${base}`], baseRemote, fetchArgs)
+  }
+
+  // Determine the fetch depth for the pull request branch (best effort)
+  const tempBranchCommitsAhead = await commitsAhead(git, base, tempBranch)
+  const fetchDepth =
+    tempBranchCommitsAhead > 0
+      ? tempBranchCommitsAhead + FETCH_DEPTH_MARGIN
+      : FETCH_DEPTH_MARGIN
+
+  let action = 'none'
+  let hasDiffWithBase = false
+
+  // Try to fetch the pull request branch
+  if (!(await tryFetch(git, branchRemoteName, branch, fetchDepth))) {
+    // The pull request branch does not exist
+    core.info(`Pull request branch '${branch}' does not exist yet.`)
+    // Create the pull request branch
+    await git.checkout(branch, tempBranch)
+    // Check if the pull request branch is ahead of the base
+    hasDiffWithBase = await isAhead(git, base, branch)
+    if (hasDiffWithBase) {
+      action = 'created'
+      core.info(`Created branch '${branch}'`)
+    } else {
+      core.info(
+        `Branch '${branch}' is not ahead of base '${base}' and will not be created`
+      )
+    }
+  } else {
+    // The pull request branch exists
+    core.info(
+      `Pull request branch '${branch}' already exists as remote branch '${branchRemoteName}/${branch}'`
+    )
+    // Checkout the pull request branch
+    await git.checkout(branch)
+
+    // Reset the branch if one of the following conditions is true.
+    // - If the branch differs from the recreated temp branch.
+    // - If the number of commits ahead of the base branch differs between the branch and
+    //   temp branch. This catches a case where the base branch has been force pushed to
+    //   a new commit.
+    // - If the recreated temp branch is not ahead of the base. This means there will be
+    //   no pull request diff after the branch is reset. This will reset any undeleted
+    //   branches after merging. In particular, it catches a case where the branch was
+    //   squash merged but not deleted. We need to reset to make sure it doesn't appear
+    //   to have a diff with the base due to different commits for the same changes.
+    // - If the diff of the commits ahead of the base branch differs between the branch and
+    //   temp branch. This catches a case where changes have been partially merged to the
+    //   base. The overall diff is the same, but the branch needs to be rebased to show
+    //   the correct diff.
+    //
+    // For changes on base this reset is equivalent to a rebase of the pull request branch.
+    const branchCommitsAhead = await commitsAhead(git, base, branch)
+    if (
+      (await git.hasDiff([`${branch}..${tempBranch}`])) ||
+      branchCommitsAhead != tempBranchCommitsAhead ||
+      !(tempBranchCommitsAhead > 0) || // !isAhead
+      (await commitsHaveDiff(git, branch, tempBranch, tempBranchCommitsAhead))
+    ) {
+      core.info(`Resetting '${branch}'`)
+      // Alternatively, git switch -C branch tempBranch
+      await git.checkout(branch, tempBranch)
+    }
+
+    // Check if the pull request branch has been updated
+    // If the branch was reset or updated it will be ahead
+    // It may be behind if a reset now results in no diff with the base
+    if (!(await isEven(git, `${branchRemoteName}/${branch}`, branch))) {
+      action = 'updated'
+      core.info(`Updated branch '${branch}'`)
+    } else {
+      action = 'not-updated'
+      core.info(
+        `Branch '${branch}' is even with its remote and will not be updated`
+      )
+    }
+
+    // Check if the pull request branch is ahead of the base
+    hasDiffWithBase = await isAhead(git, base, branch)
+  }
+
+  // Get the base and head SHAs
+  const baseSha = await git.revParse(base)
+  const baseCommit = await git.getCommit(baseSha)
+  const headSha = await git.revParse(branch)
+
+  let branchCommits: Commit[] = []
+  if (hasDiffWithBase) {
+    // Build the branch commits
+    branchCommits = await buildBranchCommits(git, base, branch)
+  }
+
+  // Delete the temporary branch
+  await git.exec(['branch', '--delete', '--force', tempBranch])
+
+  // Checkout the working base to leave the local repository as it was found
+  await git.checkout(workingBase)
+
+  // Restore any stashed changes
+  if (stashed) {
+    await git.stashPop()
+  }
+
+  return {
+    action: action,
+    base: base,
+    hasDiffWithBase: hasDiffWithBase,
+    baseCommit: baseCommit,
+    headSha: headSha,
+    branchCommits: branchCommits
+  }
+}
--- a/src/create-pull-request.ts
+++ b/src/create-pull-request.ts
@ -0,0 +1,325 @@
+import * as core from '@actions/core'
+import {
+  createOrUpdateBranch,
+  getWorkingBaseAndType,
+  WorkingBaseType
+} from './create-or-update-branch'
+import {GitHubHelper} from './github-helper'
+import {GitCommandManager} from './git-command-manager'
+import {GitConfigHelper} from './git-config-helper'
+import * as utils from './utils'
+
+export interface Inputs {
+  token: string
+  branchToken: string
+  path: string
+  addPaths: string[]
+  commitMessage: string
+  committer: string
+  author: string
+  signoff: boolean
+  branch: string
+  deleteBranch: boolean
+  branchSuffix: string
+  base: string
+  pushToFork: string
+  signCommits: boolean
+  title: string
+  body: string
+  bodyPath: string
+  labels: string[]
+  assignees: string[]
+  reviewers: string[]
+  teamReviewers: string[]
+  milestone: number
+  draft: {
+    value: boolean
+    always: boolean
+  }
+  maintainerCanModify: boolean
+}
+
+export async function createPullRequest(inputs: Inputs): Promise<void> {
+  let gitConfigHelper, git
+  try {
+    core.startGroup('Prepare git configuration')
+    const repoPath = utils.getRepoPath(inputs.path)
+    git = await GitCommandManager.create(repoPath)
+    gitConfigHelper = await GitConfigHelper.create(git)
+    core.endGroup()
+
+    core.startGroup('Determining the base and head repositories')
+    const baseRemote = gitConfigHelper.getGitRemote()
+    // Init the GitHub clients
+    const apiUrl = await GitHubHelper.determineApiUrl(baseRemote.hostname)
+    core.info(`Using API base URL: ${apiUrl}`)
+    const ghBranch = new GitHubHelper(apiUrl, inputs.branchToken)
+    const ghPull = new GitHubHelper(apiUrl, inputs.token)
+    // Determine the head repository; the target for the pull request branch
+    const branchRemoteName = inputs.pushToFork ? 'fork' : 'origin'
+    const branchRepository = inputs.pushToFork
+      ? inputs.pushToFork
+      : baseRemote.repository
+    if (inputs.pushToFork) {
+      // Check if the supplied fork is really a fork of the base
+      core.info(
+        `Checking if '${branchRepository}' is a fork of '${baseRemote.repository}'`
+      )
+      const baseParentRepository = await ghBranch.getRepositoryParent(
+        baseRemote.repository
+      )
+      const branchParentRepository =
+        await ghBranch.getRepositoryParent(branchRepository)
+      if (branchParentRepository == null) {
+        throw new Error(
+          `Repository '${branchRepository}' is not a fork. Unable to continue.`
+        )
+      }
+      if (
+        branchParentRepository != baseRemote.repository &&
+        baseParentRepository != branchParentRepository
+      ) {
+        throw new Error(
+          `Repository '${branchRepository}' is not a fork of '${baseRemote.repository}', nor are they siblings. Unable to continue.`
+        )
+      }
+      // Add a remote for the fork
+      const remoteUrl = utils.getRemoteUrl(
+        baseRemote.protocol,
+        baseRemote.hostname,
+        branchRepository
+      )
+      await git.exec(['remote', 'add', 'fork', remoteUrl])
+    }
+    core.endGroup()
+    core.info(
+      `Pull request branch target repository set to ${branchRepository}`
+    )
+
+    // Configure auth
+    if (baseRemote.protocol == 'HTTPS') {
+      core.startGroup('Configuring credential for HTTPS authentication')
+      await gitConfigHelper.configureToken(inputs.branchToken)
+      core.endGroup()
+    }
+
+    core.startGroup('Checking the base repository state')
+    const [workingBase, workingBaseType] = await getWorkingBaseAndType(git)
+    core.info(`Working base is ${workingBaseType} '${workingBase}'`)
+    // When in detached HEAD state (checked out on a commit), we need to
+    // know the 'base' branch in order to rebase changes.
+    if (workingBaseType == WorkingBaseType.Commit && !inputs.base) {
+      throw new Error(
+        `When the repository is checked out on a commit instead of a branch, the 'base' input must be supplied.`
+      )
+    }
+    // If the base is not specified it is assumed to be the working base.
+    const base = inputs.base ? inputs.base : workingBase
+    // Throw an error if the base and branch are not different branches
+    // of the 'origin' remote. An identically named branch in the `fork`
+    // remote is perfectly fine.
+    if (branchRemoteName == 'origin' && base == inputs.branch) {
+      throw new Error(
+        `The 'base' and 'branch' for a pull request must be different branches. Unable to continue.`
+      )
+    }
+    // For self-hosted runners the repository state persists between runs.
+    // This command prunes the stale remote ref when the pull request branch was
+    // deleted after being merged or closed. Without this the push using
+    // '--force-with-lease' fails due to "stale info."
+    // https://github.com/peter-evans/create-pull-request/issues/633
+    await git.exec(['remote', 'prune', branchRemoteName])
+    core.endGroup()
+
+    // Apply the branch suffix if set
+    if (inputs.branchSuffix) {
+      switch (inputs.branchSuffix) {
+        case 'short-commit-hash':
+          // Suffix with the short SHA1 hash
+          inputs.branch = `${inputs.branch}-${await git.revParse('HEAD', [
+            '--short'
+          ])}`
+          break
+        case 'timestamp':
+          // Suffix with the current timestamp
+          inputs.branch = `${inputs.branch}-${utils.secondsSinceEpoch()}`
+          break
+        case 'random':
+          // Suffix with a 7 character random string
+          inputs.branch = `${inputs.branch}-${utils.randomString()}`
+          break
+        default:
+          throw new Error(
+            `Branch suffix '${inputs.branchSuffix}' is not a valid value. Unable to continue.`
+          )
+      }
+    }
+
+    // Output head branch
+    core.info(
+      `Pull request branch to create or update set to '${inputs.branch}'`
+    )
+
+    // Configure the committer and author
+    core.startGroup('Configuring the committer and author')
+    const parsedAuthor = utils.parseDisplayNameEmail(inputs.author)
+    const parsedCommitter = utils.parseDisplayNameEmail(inputs.committer)
+    git.setIdentityGitOptions([
+      '-c',
+      `author.name=${parsedAuthor.name}`,
+      '-c',
+      `author.email=${parsedAuthor.email}`,
+      '-c',
+      `committer.name=${parsedCommitter.name}`,
+      '-c',
+      `committer.email=${parsedCommitter.email}`
+    ])
+    core.info(
+      `Configured git committer as '${parsedCommitter.name} <${parsedCommitter.email}>'`
+    )
+    core.info(
+      `Configured git author as '${parsedAuthor.name} <${parsedAuthor.email}>'`
+    )
+    core.endGroup()
+
+    // Action outputs
+    const outputs = new Map<string, string>()
+    outputs.set('pull-request-branch', inputs.branch)
+    outputs.set('pull-request-operation', 'none')
+
+    // Create or update the pull request branch
+    core.startGroup('Create or update the pull request branch')
+    const result = await createOrUpdateBranch(
+      git,
+      inputs.commitMessage,
+      inputs.base,
+      inputs.branch,
+      branchRemoteName,
+      inputs.signoff,
+      inputs.addPaths
+    )
+    outputs.set('pull-request-head-sha', result.headSha)
+    // Set the base. It would have been '' if not specified as an input
+    inputs.base = result.base
+    core.endGroup()
+
+    if (['created', 'updated'].includes(result.action)) {
+      // The branch was created or updated
+      core.startGroup(
+        `Pushing pull request branch to '${branchRemoteName}/${inputs.branch}'`
+      )
+      if (inputs.signCommits) {
+        // Create signed commits via the GitHub API
+        const stashed = await git.stashPush(['--include-untracked'])
+        await git.checkout(inputs.branch)
+        const pushSignedCommitsResult = await ghBranch.pushSignedCommits(
+          result.branchCommits,
+          result.baseCommit,
+          repoPath,
+          branchRepository,
+          inputs.branch
+        )
+        outputs.set('pull-request-head-sha', pushSignedCommitsResult.sha)
+        outputs.set(
+          'pull-request-commits-verified',
+          pushSignedCommitsResult.verified.toString()
+        )
+        await git.checkout('-')
+        if (stashed) {
+          await git.stashPop()
+        }
+      } else {
+        await git.push([
+          '--force-with-lease',
+          branchRemoteName,
+          `${inputs.branch}:refs/heads/${inputs.branch}`
+        ])
+      }
+      core.endGroup()
+    }
+
+    if (result.hasDiffWithBase) {
+      core.startGroup('Create or update the pull request')
+      const pull = await ghPull.createOrUpdatePullRequest(
+        inputs,
+        baseRemote.repository,
+        branchRepository
+      )
+      outputs.set('pull-request-number', pull.number.toString())
+      outputs.set('pull-request-url', pull.html_url)
+      if (pull.created) {
+        outputs.set('pull-request-operation', 'created')
+      } else if (result.action == 'updated') {
+        outputs.set('pull-request-operation', 'updated')
+        // The pull request was updated AND the branch was updated.
+        // Convert back to draft if 'draft: always-true' is set.
+        if (inputs.draft.always && pull.draft !== undefined && !pull.draft) {
+          await ghPull.convertToDraft(pull.node_id)
+        }
+      }
+      core.endGroup()
+    } else {
+      // There is no longer a diff with the base
+      // Check we are in a state where a branch exists
+      if (['updated', 'not-updated'].includes(result.action)) {
+        core.info(
+          `Branch '${inputs.branch}' no longer differs from base branch '${inputs.base}'`
+        )
+        if (inputs.deleteBranch) {
+          core.info(`Deleting branch '${inputs.branch}'`)
+          await git.push([
+            '--delete',
+            '--force',
+            branchRemoteName,
+            `refs/heads/${inputs.branch}`
+          ])
+          outputs.set('pull-request-operation', 'closed')
+        }
+      }
+    }
+
+    core.startGroup('Setting outputs')
+    // If the head commit is signed, get its verification status if we don't already know it.
+    // This can happen if the branch wasn't updated (action = 'not-updated'), or GPG commit signing is in use.
+    if (
+      !outputs.has('pull-request-commits-verified') &&
+      result.branchCommits.length > 0 &&
+      result.branchCommits[result.branchCommits.length - 1].signed
+    ) {
+      // Using the local head commit SHA because in this case commits have not been pushed via the API.
+      core.info(`Checking verification status of head commit ${result.headSha}`)
+      try {
+        const headCommit = await ghBranch.getCommit(
+          result.headSha,
+          branchRepository
+        )
+        outputs.set(
+          'pull-request-commits-verified',
+          headCommit.verified.toString()
+        )
+      } catch (error) {
+        core.warning('Failed to check verification status of head commit.')
+        core.debug(utils.getErrorMessage(error))
+      }
+    }
+    if (!outputs.has('pull-request-commits-verified')) {
+      outputs.set('pull-request-commits-verified', 'false')
+    }
+
+    // Set outputs
+    for (const [key, value] of outputs) {
+      core.info(`${key} = ${value}`)
+      core.setOutput(key, value)
+    }
+    core.endGroup()
+  } catch (error) {
+    core.setFailed(utils.getErrorMessage(error))
+  } finally {
+    core.startGroup('Restore git configuration')
+    if (inputs.pushToFork) {
+      await git.exec(['remote', 'rm', 'fork'])
+    }
+    await gitConfigHelper.close()
+    core.endGroup()
+  }
+}
--- a/src/git-command-manager.ts
+++ b/src/git-command-manager.ts
@ -0,0 +1,386 @@
+import * as exec from '@actions/exec'
+import * as io from '@actions/io'
+import * as utils from './utils'
+import * as path from 'path'
+
+const tagsRefSpec = '+refs/tags/*:refs/tags/*'
+
+export type Commit = {
+  sha: string
+  tree: string
+  parents: string[]
+  signed: boolean
+  subject: string
+  body: string
+  changes: {
+    mode: string
+    dstSha: string
+    status: 'A' | 'M' | 'D'
+    path: string
+  }[]
+  unparsedChanges: string[]
+}
+
+export class GitCommandManager {
+  private gitPath: string
+  private workingDirectory: string
+  // Git options used when commands require an identity
+  private identityGitOptions?: string[]
+
+  private constructor(workingDirectory: string, gitPath: string) {
+    this.workingDirectory = workingDirectory
+    this.gitPath = gitPath
+  }
+
+  static async create(workingDirectory: string): Promise<GitCommandManager> {
+    const gitPath = await io.which('git', true)
+    return new GitCommandManager(workingDirectory, gitPath)
+  }
+
+  setIdentityGitOptions(identityGitOptions: string[]): void {
+    this.identityGitOptions = identityGitOptions
+  }
+
+  async checkout(ref: string, startPoint?: string): Promise<void> {
+    const args = ['checkout', '--progress']
+    if (startPoint) {
+      args.push('-B', ref, startPoint)
+    } else {
+      args.push(ref)
+    }
+    // https://github.com/git/git/commit/a047fafc7866cc4087201e284dc1f53e8f9a32d5
+    args.push('--')
+    await this.exec(args)
+  }
+
+  async cherryPick(
+    options?: string[],
+    allowAllExitCodes = false
+  ): Promise<GitOutput> {
+    const args = ['cherry-pick']
+    if (this.identityGitOptions) {
+      args.unshift(...this.identityGitOptions)
+    }
+
+    if (options) {
+      args.push(...options)
+    }
+
+    return await this.exec(args, allowAllExitCodes)
+  }
+
+  async commit(
+    options?: string[],
+    allowAllExitCodes = false
+  ): Promise<GitOutput> {
+    const args = ['commit']
+    if (this.identityGitOptions) {
+      args.unshift(...this.identityGitOptions)
+    }
+
+    if (options) {
+      args.push(...options)
+    }
+
+    return await this.exec(args, allowAllExitCodes)
+  }
+
+  async config(
+    configKey: string,
+    configValue: string,
+    globalConfig?: boolean,
+    add?: boolean
+  ): Promise<void> {
+    const args: string[] = ['config', globalConfig ? '--global' : '--local']
+    if (add) {
+      args.push('--add')
+    }
+    args.push(...[configKey, configValue])
+    await this.exec(args)
+  }
+
+  async configExists(
+    configKey: string,
+    configValue = '.',
+    globalConfig?: boolean
+  ): Promise<boolean> {
+    const output = await this.exec(
+      [
+        'config',
+        globalConfig ? '--global' : '--local',
+        '--name-only',
+        '--get-regexp',
+        configKey,
+        configValue
+      ],
+      true
+    )
+    return output.exitCode === 0
+  }
+
+  async fetch(
+    refSpec: string[],
+    remoteName?: string,
+    options?: string[],
+    unshallow = false
+  ): Promise<void> {
+    const args = ['-c', 'protocol.version=2', 'fetch']
+    if (!refSpec.some(x => x === tagsRefSpec)) {
+      args.push('--no-tags')
+    }
+
+    args.push('--progress', '--no-recurse-submodules')
+
+    if (
+      unshallow &&
+      utils.fileExistsSync(path.join(this.workingDirectory, '.git', 'shallow'))
+    ) {
+      args.push('--unshallow')
+    }
+
+    if (options) {
+      args.push(...options)
+    }
+
+    if (remoteName) {
+      args.push(remoteName)
+    } else {
+      args.push('origin')
+    }
+    for (const arg of refSpec) {
+      args.push(arg)
+    }
+
+    await this.exec(args)
+  }
+
+  async getCommit(ref: string): Promise<Commit> {
+    const endOfBody = '###EOB###'
+    const output = await this.exec([
+      'show',
+      '--raw',
+      '--cc',
+      '--no-renames',
+      '--no-abbrev',
+      `--format=%H%n%T%n%P%n%G?%n%s%n%b%n${endOfBody}`,
+      ref
+    ])
+    const lines = output.stdout.split('\n')
+    const endOfBodyIndex = lines.lastIndexOf(endOfBody)
+    const detailLines = lines.slice(0, endOfBodyIndex)
+
+    const unparsedChanges: string[] = []
+    return <Commit>{
+      sha: detailLines[0],
+      tree: detailLines[1],
+      parents: detailLines[2].split(' '),
+      signed: detailLines[3] !== 'N',
+      subject: detailLines[4],
+      body: detailLines.slice(5, endOfBodyIndex).join('\n'),
+      changes: lines.slice(endOfBodyIndex + 2, -1).map(line => {
+        const change = line.match(
+          /^:(\d{6}) (\d{6}) \w{40} (\w{40}) ([AMD])\s+(.*)$/
+        )
+        if (change) {
+          return {
+            mode: change[4] === 'D' ? change[1] : change[2],
+            dstSha: change[3],
+            status: change[4],
+            path: change[5]
+          }
+        } else {
+          unparsedChanges.push(line)
+        }
+      }),
+      unparsedChanges: unparsedChanges
+    }
+  }
+
+  async getConfigValue(configKey: string, configValue = '.'): Promise<string> {
+    const output = await this.exec([
+      'config',
+      '--local',
+      '--get-regexp',
+      configKey,
+      configValue
+    ])
+    return output.stdout.trim().split(`${configKey} `)[1]
+  }
+
+  getGitDirectory(): Promise<string> {
+    return this.revParse('--git-dir')
+  }
+
+  getWorkingDirectory(): string {
+    return this.workingDirectory
+  }
+
+  async hasDiff(options?: string[]): Promise<boolean> {
+    const args = ['diff', '--quiet']
+    if (options) {
+      args.push(...options)
+    }
+    const output = await this.exec(args, true)
+    return output.exitCode === 1
+  }
+
+  async isDirty(untracked: boolean, pathspec?: string[]): Promise<boolean> {
+    const pathspecArgs = pathspec ? ['--', ...pathspec] : []
+    // Check untracked changes
+    const sargs = ['--porcelain', '-unormal']
+    sargs.push(...pathspecArgs)
+    if (untracked && (await this.status(sargs))) {
+      return true
+    }
+    // Check working index changes
+    if (await this.hasDiff(pathspecArgs)) {
+      return true
+    }
+    // Check staged changes
+    const dargs = ['--staged']
+    dargs.push(...pathspecArgs)
+    if (await this.hasDiff(dargs)) {
+      return true
+    }
+    return false
+  }
+
+  async push(options?: string[]): Promise<void> {
+    const args = ['push']
+    if (options) {
+      args.push(...options)
+    }
+    await this.exec(args)
+  }
+
+  async revList(
+    commitExpression: string[],
+    options?: string[]
+  ): Promise<string> {
+    const args = ['rev-list']
+    if (options) {
+      args.push(...options)
+    }
+    args.push(...commitExpression)
+    const output = await this.exec(args)
+    return output.stdout.trim()
+  }
+
+  async revParse(ref: string, options?: string[]): Promise<string> {
+    const args = ['rev-parse']
+    if (options) {
+      args.push(...options)
+    }
+    args.push(ref)
+    const output = await this.exec(args)
+    return output.stdout.trim()
+  }
+
+  async stashPush(options?: string[]): Promise<boolean> {
+    const args = ['stash', 'push']
+    if (options) {
+      args.push(...options)
+    }
+    const output = await this.exec(args)
+    return output.stdout.trim() !== 'No local changes to save'
+  }
+
+  async stashPop(options?: string[]): Promise<void> {
+    const args = ['stash', 'pop']
+    if (options) {
+      args.push(...options)
+    }
+    await this.exec(args)
+  }
+
+  async status(options?: string[]): Promise<string> {
+    const args = ['status']
+    if (options) {
+      args.push(...options)
+    }
+    const output = await this.exec(args)
+    return output.stdout.trim()
+  }
+
+  async symbolicRef(ref: string, options?: string[]): Promise<string> {
+    const args = ['symbolic-ref', ref]
+    if (options) {
+      args.push(...options)
+    }
+    const output = await this.exec(args)
+    return output.stdout.trim()
+  }
+
+  async tryConfigUnset(
+    configKey: string,
+    configValue = '.',
+    globalConfig?: boolean
+  ): Promise<boolean> {
+    const output = await this.exec(
+      [
+        'config',
+        globalConfig ? '--global' : '--local',
+        '--unset',
+        configKey,
+        configValue
+      ],
+      true
+    )
+    return output.exitCode === 0
+  }
+
+  async tryGetRemoteUrl(): Promise<string> {
+    const output = await this.exec(
+      ['config', '--local', '--get', 'remote.origin.url'],
+      true
+    )
+
+    if (output.exitCode !== 0) {
+      return ''
+    }
+
+    const stdout = output.stdout.trim()
+    if (stdout.includes('\n')) {
+      return ''
+    }
+
+    return stdout
+  }
+
+  async exec(args: string[], allowAllExitCodes = false): Promise<GitOutput> {
+    const result = new GitOutput()
+
+    const env = {}
+    for (const key of Object.keys(process.env)) {
+      env[key] = process.env[key]
+    }
+
+    const stdout: string[] = []
+    const stderr: string[] = []
+
+    const options = {
+      cwd: this.workingDirectory,
+      env,
+      ignoreReturnCode: allowAllExitCodes,
+      listeners: {
+        stdout: (data: Buffer) => {
+          stdout.push(data.toString())
+        },
+        stderr: (data: Buffer) => {
+          stderr.push(data.toString())
+        }
+      }
+    }
+
+    result.exitCode = await exec.exec(`"${this.gitPath}"`, args, options)
+    result.stdout = stdout.join('')
+    result.stderr = stderr.join('')
+    return result
+  }
+}
+
+class GitOutput {
+  stdout = ''
+  stderr = ''
+  exitCode = 0
+}
--- a/src/git-config-helper.ts
+++ b/src/git-config-helper.ts
@ -0,0 +1,217 @@
+import * as core from '@actions/core'
+import * as fs from 'fs'
+import {GitCommandManager} from './git-command-manager'
+import * as path from 'path'
+import {URL} from 'url'
+import * as utils from './utils'
+
+interface GitRemote {
+  hostname: string
+  protocol: string
+  repository: string
+}
+
+export class GitConfigHelper {
+  private git: GitCommandManager
+  private gitConfigPath = ''
+  private workingDirectory: string
+  private safeDirectoryConfigKey = 'safe.directory'
+  private safeDirectoryAdded = false
+  private remoteUrl = ''
+  private extraheaderConfigKey = ''
+  private extraheaderConfigPlaceholderValue = 'AUTHORIZATION: basic ***'
+  private extraheaderConfigValueRegex = '^AUTHORIZATION:'
+  private persistedExtraheaderConfigValue = ''
+
+  private constructor(git: GitCommandManager) {
+    this.git = git
+    this.workingDirectory = this.git.getWorkingDirectory()
+  }
+
+  static async create(git: GitCommandManager): Promise<GitConfigHelper> {
+    const gitConfigHelper = new GitConfigHelper(git)
+    await gitConfigHelper.addSafeDirectory()
+    await gitConfigHelper.fetchRemoteDetail()
+    await gitConfigHelper.savePersistedAuth()
+    return gitConfigHelper
+  }
+
+  async close(): Promise<void> {
+    // Remove auth and restore persisted auth config if it existed
+    await this.removeAuth()
+    await this.restorePersistedAuth()
+    await this.removeSafeDirectory()
+  }
+
+  async addSafeDirectory(): Promise<void> {
+    const exists = await this.git.configExists(
+      this.safeDirectoryConfigKey,
+      this.workingDirectory,
+      true
+    )
+    if (!exists) {
+      await this.git.config(
+        this.safeDirectoryConfigKey,
+        this.workingDirectory,
+        true,
+        true
+      )
+      this.safeDirectoryAdded = true
+    }
+  }
+
+  async removeSafeDirectory(): Promise<void> {
+    if (this.safeDirectoryAdded) {
+      await this.git.tryConfigUnset(
+        this.safeDirectoryConfigKey,
+        this.workingDirectory,
+        true
+      )
+    }
+  }
+
+  async fetchRemoteDetail(): Promise<void> {
+    this.remoteUrl = await this.git.tryGetRemoteUrl()
+  }
+
+  getGitRemote(): GitRemote {
+    return GitConfigHelper.parseGitRemote(this.remoteUrl)
+  }
+
+  static parseGitRemote(remoteUrl: string): GitRemote {
+    const httpsUrlPattern = new RegExp(
+      '^(https?)://(?:.+@)?(.+?)/(.+/.+?)(\\.git)?$',
+      'i'
+    )
+    const httpsMatch = remoteUrl.match(httpsUrlPattern)
+    if (httpsMatch) {
+      return {
+        hostname: httpsMatch[2],
+        protocol: 'HTTPS',
+        repository: httpsMatch[3]
+      }
+    }
+
+    const sshUrlPattern = new RegExp('^git@(.+?):(.+/.+)\\.git$', 'i')
+    const sshMatch = remoteUrl.match(sshUrlPattern)
+    if (sshMatch) {
+      return {
+        hostname: sshMatch[1],
+        protocol: 'SSH',
+        repository: sshMatch[2]
+      }
+    }
+
+    // Unauthenticated git protocol for integration tests only
+    const gitUrlPattern = new RegExp('^git://(.+?)/(.+/.+)\\.git$', 'i')
+    const gitMatch = remoteUrl.match(gitUrlPattern)
+    if (gitMatch) {
+      return {
+        hostname: gitMatch[1],
+        protocol: 'GIT',
+        repository: gitMatch[2]
+      }
+    }
+
+    throw new Error(
+      `The format of '${remoteUrl}' is not a valid GitHub repository URL`
+    )
+  }
+
+  async savePersistedAuth(): Promise<void> {
+    const serverUrl = new URL(`https://${this.getGitRemote().hostname}`)
+    this.extraheaderConfigKey = `http.${serverUrl.origin}/.extraheader`
+    // Save and unset persisted extraheader credential in git config if it exists
+    this.persistedExtraheaderConfigValue = await this.getAndUnset()
+  }
+
+  async restorePersistedAuth(): Promise<void> {
+    if (this.persistedExtraheaderConfigValue) {
+      try {
+        await this.setExtraheaderConfig(this.persistedExtraheaderConfigValue)
+        core.info('Persisted git credentials restored')
+      } catch (e) {
+        core.warning(utils.getErrorMessage(e))
+      }
+    }
+  }
+
+  async configureToken(token: string): Promise<void> {
+    // Encode and configure the basic credential for HTTPS access
+    const basicCredential = Buffer.from(
+      `x-access-token:${token}`,
+      'utf8'
+    ).toString('base64')
+    core.setSecret(basicCredential)
+    const extraheaderConfigValue = `AUTHORIZATION: basic ${basicCredential}`
+    await this.setExtraheaderConfig(extraheaderConfigValue)
+  }
+
+  async removeAuth(): Promise<void> {
+    await this.getAndUnset()
+  }
+
+  private async setExtraheaderConfig(
+    extraheaderConfigValue: string
+  ): Promise<void> {
+    // Configure a placeholder value. This approach avoids the credential being captured
+    // by process creation audit events, which are commonly logged. For more information,
+    // refer to https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/manage/component-updates/command-line-process-auditing
+    // See https://github.com/actions/checkout/blob/main/src/git-auth-helper.ts#L267-L274
+    await this.git.config(
+      this.extraheaderConfigKey,
+      this.extraheaderConfigPlaceholderValue
+    )
+    // Replace the placeholder
+    await this.gitConfigStringReplace(
+      this.extraheaderConfigPlaceholderValue,
+      extraheaderConfigValue
+    )
+  }
+
+  private async getAndUnset(): Promise<string> {
+    let configValue = ''
+    // Save and unset persisted extraheader credential in git config if it exists
+    if (
+      await this.git.configExists(
+        this.extraheaderConfigKey,
+        this.extraheaderConfigValueRegex
+      )
+    ) {
+      configValue = await this.git.getConfigValue(
+        this.extraheaderConfigKey,
+        this.extraheaderConfigValueRegex
+      )
+      if (
+        await this.git.tryConfigUnset(
+          this.extraheaderConfigKey,
+          this.extraheaderConfigValueRegex
+        )
+      ) {
+        core.info(`Unset config key '${this.extraheaderConfigKey}'`)
+      } else {
+        core.warning(
+          `Failed to unset config key '${this.extraheaderConfigKey}'`
+        )
+      }
+    }
+    return configValue
+  }
+
+  private async gitConfigStringReplace(
+    find: string,
+    replace: string
+  ): Promise<void> {
+    if (this.gitConfigPath.length === 0) {
+      const gitDir = await this.git.getGitDirectory()
+      this.gitConfigPath = path.join(this.workingDirectory, gitDir, 'config')
+    }
+    let content = (await fs.promises.readFile(this.gitConfigPath)).toString()
+    const index = content.indexOf(find)
+    if (index < 0 || index != content.lastIndexOf(find)) {
+      throw new Error(`Unable to replace '${find}' in ${this.gitConfigPath}`)
+    }
+    content = content.replace(find, replace)
+    await fs.promises.writeFile(this.gitConfigPath, content)
+  }
+}
--- a/src/git.js
+++ b/src/git.js
@ -1,97 +0,0 @@
-const core = require("@actions/core");
-const exec = require("@actions/exec");
-const path = require("path");
-
-function getRepoPath(relativePath) {
-  let githubWorkspacePath = process.env["GITHUB_WORKSPACE"];
-  if (!githubWorkspacePath) {
-    throw new Error("GITHUB_WORKSPACE not defined");
-  }
-  githubWorkspacePath = path.resolve(githubWorkspacePath);
-  core.debug(`githubWorkspacePath: ${githubWorkspacePath}`);
-
-  repoPath = githubWorkspacePath;
-  if (relativePath) repoPath = path.resolve(repoPath, relativePath);
-
-  core.debug(`repoPath: ${repoPath}`);
-  return repoPath;
-}
-
-async function execGit(repoPath, args, ignoreReturnCode = false) {
-  const stdout = [];
-  const options = {
-    cwd: repoPath,
-    ignoreReturnCode: ignoreReturnCode,
-    listeners: {
-      stdout: data => {
-        stdout.push(data.toString());
-      }
-    }
-  };
-
-  var result = {};
-  result.exitCode = await exec.exec("git", args, options);
-  result.stdout = stdout.join("");
-  return result;
-}
-
-async function addConfigOption(repoPath, name, value) {
-  const result = await execGit(
-    repoPath,
-    ["config", "--local", "--add", name, value],
-    true
-  );
-  return result.exitCode === 0;
-}
-
-async function unsetConfigOption(repoPath, name, valueRegex=".") {
-  const result = await execGit(
-    repoPath,
-    ["config", "--local", "--unset", name, valueRegex],
-    true
-  );
-  return result.exitCode === 0;
-}
-
-async function configOptionExists(repoPath, name, valueRegex=".") {
-  const result = await execGit(
-    repoPath,
-    ["config", "--local", "--name-only", "--get-regexp", name, valueRegex],
-    true
-  );
-  return result.exitCode === 0;
-}
-
-async function getConfigOption(repoPath, name, valueRegex=".") {
-  const result = await execGit(
-    repoPath,
-    ["config", "--local", "--get-regexp", name, valueRegex],
-    true
-  );
-  const option = result.stdout.trim().split(`${name} `);
-  return {
-    name: name,
-    value: option[1]
-  }
-}
-
-async function getAndUnsetConfigOption(repoPath, name, valueRegex=".") {
-  if (await configOptionExists(repoPath, name, valueRegex)) {
-    const option = await getConfigOption(repoPath, name, valueRegex);
-    if (await unsetConfigOption(repoPath, name, valueRegex)) {
-      core.debug(`Unset config option '${name}'`);
-      return option;
-    }
-  }
-  return null;
-}
-
-module.exports = {
-  getRepoPath,
-  execGit,
-  addConfigOption,
-  unsetConfigOption,
-  configOptionExists,
-  getConfigOption,
-  getAndUnsetConfigOption
-};
--- a/src/git.test.js
+++ b/src/git.test.js
@ -1,98 +0,0 @@
-const path = require("path");
-const {
-  getRepoPath,
-  execGit,
-  addConfigOption,
-  unsetConfigOption,
-  configOptionExists,
-  getConfigOption,
-  getAndUnsetConfigOption
-} = require("./git");
-
-test("getRepoPath", async () => {
-  expect(getRepoPath()).toEqual(process.env["GITHUB_WORKSPACE"]);
-  expect(getRepoPath("foo")).toEqual(
-    path.resolve(process.env["GITHUB_WORKSPACE"], "foo")
-  );
-});
-
-test("execGit", async () => {
-  const repoPath = getRepoPath();
-  const result = await execGit(
-    repoPath,
-    ["config", "--local", "--name-only", "--get-regexp", "remote.origin.url"],
-    true
-  );
-  expect(result.exitCode).toEqual(0);
-  expect(result.stdout.trim()).toEqual("remote.origin.url");
-});
-
-test("add and unset config option", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.add.and.unset.config.option", "foo");
-  expect(add).toBeTruthy();
-  const unset = await unsetConfigOption(repoPath, "test.add.and.unset.config.option");
-  expect(unset).toBeTruthy();
-});
-
-test("add and unset config option with value regex", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.add.and.unset.config.option", "foo bar");
-  expect(add).toBeTruthy();
-  const unset = await unsetConfigOption(repoPath, "test.add.and.unset.config.option", "^foo");
-  expect(unset).toBeTruthy();
-});
-
-test("configOptionExists returns true", async () => {
-  const repoPath = getRepoPath();
-  const result = await configOptionExists(repoPath, "remote.origin.url");
-  expect(result).toBeTruthy();
-});
-
-test("configOptionExists returns false", async () => {
-  const repoPath = getRepoPath();
-  const result = await configOptionExists(repoPath, "this.key.does.not.exist");
-  expect(result).toBeFalsy();
-});
-
-test("get config option", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.get.config.option", "foo");
-  expect(add).toBeTruthy();
-  const option = await getConfigOption(repoPath, "test.get.config.option");
-  expect(option.value).toEqual("foo");
-  const unset = await unsetConfigOption(repoPath, "test.get.config.option");
-  expect(unset).toBeTruthy();
-});
-
-test("get config option with value regex", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.get.config.option", "foo bar");
-  expect(add).toBeTruthy();
-  const option = await getConfigOption(repoPath, "test.get.config.option", "^foo");
-  expect(option.value).toEqual("foo bar");
-  const unset = await unsetConfigOption(repoPath, "test.get.config.option", "^foo");
-  expect(unset).toBeTruthy();
-});
-
-test("get and unset config option is successful", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.get.and.unset.config.option", "foo");
-  expect(add).toBeTruthy();
-  const getAndUnset = await getAndUnsetConfigOption(repoPath, "test.get.and.unset.config.option");
-  expect(getAndUnset.value).toEqual("foo");
-});
-
-test("get and unset config option is successful with value regex", async () => {
-  const repoPath = getRepoPath();
-  const add = await addConfigOption(repoPath, "test.get.and.unset.config.option", "foo bar");
-  expect(add).toBeTruthy();
-  const getAndUnset = await getAndUnsetConfigOption(repoPath, "test.get.and.unset.config.option", "^foo");
-  expect(getAndUnset.value).toEqual("foo bar");
-});
-
-test("get and unset config option is unsuccessful", async () => {
-  const repoPath = getRepoPath();
-  const getAndUnset = await getAndUnsetConfigOption(repoPath, "this.key.does.not.exist");
-  expect(getAndUnset).toBeNull();
-});
--- a/src/github-helper.ts
+++ b/src/github-helper.ts
@ -0,0 +1,439 @@
+import * as core from '@actions/core'
+import {Inputs} from './create-pull-request'
+import {Commit} from './git-command-manager'
+import {Octokit, OctokitOptions, throttleOptions} from './octokit-client'
+import pLimit from 'p-limit'
+import * as utils from './utils'
+
+const ERROR_PR_ALREADY_EXISTS = 'A pull request already exists for'
+const ERROR_PR_REVIEW_TOKEN_SCOPE =
+  'Validation Failed: "Could not resolve to a node with the global id of'
+const ERROR_PR_FORK_COLLAB = `Fork collab can't be granted by someone without permission`
+
+const blobCreationLimit = pLimit(8)
+
+interface Repository {
+  owner: string
+  repo: string
+}
+
+interface Pull {
+  number: number
+  html_url: string
+  node_id: string
+  draft?: boolean
+  created: boolean
+}
+
+interface CommitResponse {
+  sha: string
+  tree: string
+  verified: boolean
+}
+
+type TreeObject = {
+  path: string
+  mode: '100644' | '100755' | '040000' | '160000' | '120000'
+  sha: string | null
+  type: 'blob' | 'commit'
+}
+
+export class GitHubHelper {
+  private octokit: InstanceType<typeof Octokit>
+
+  constructor(apiUrl: string, token: string) {
+    const options: OctokitOptions = {}
+    if (token) {
+      options.auth = `${token}`
+    }
+    options.baseUrl = apiUrl
+    options.throttle = throttleOptions
+    this.octokit = new Octokit(options)
+  }
+
+  static async determineApiUrl(hostname: string): Promise<string> {
+    if (hostname === 'github.com') {
+      return 'https://api.github.com'
+    }
+
+    const baseUrl = `https://${hostname}`
+    const possiblePaths = [
+      '/api/v4/version',
+      '/api/forgejo/v1/version',
+      '/api/v1/version'
+    ]
+
+    for (const path of possiblePaths) {
+      try {
+        const url = `${baseUrl}${path}`
+        const response = await fetch(url, {method: 'GET', redirect: 'manual'}) // GitLab redirects
+        // invalid API paths
+        // to login prompt
+        // which returns 200
+
+        const contentType = response.headers.get('Content-Type') || ''
+        if (
+          (response.ok || [401, 403].includes(response.status)) && // We might get 401, 403
+          // as we're unauthorised
+          contentType.includes('application/json')
+        ) {
+          return path.includes('/version') ? url.replace('/version', '') : url
+        }
+      } catch (error) {
+        // Ignore errors and try the next path
+      }
+    }
+
+    throw new Error(
+      `Unable to determine API base URL for hostname: ${hostname}`
+    )
+  }
+
+  private parseRepository(repository: string): Repository {
+    const [owner, repo] = repository.split('/')
+    return {
+      owner: owner,
+      repo: repo
+    }
+  }
+
+  private async createOrUpdate(
+    inputs: Inputs,
+    baseRepository: string,
+    headRepository: string
+  ): Promise<Pull> {
+    const [headOwner] = headRepository.split('/')
+    const headBranch = `${headOwner}:${inputs.branch}`
+
+    // Try to create the pull request
+    try {
+      core.info(`Attempting creation of pull request`)
+      const {data: pull} = await this.octokit.rest.pulls.create({
+        ...this.parseRepository(baseRepository),
+        title: inputs.title,
+        head: headBranch,
+        head_repo: headRepository,
+        base: inputs.base,
+        body: inputs.body,
+        draft: inputs.draft.value,
+        maintainer_can_modify: inputs.maintainerCanModify
+      })
+      core.info(
+        `Created pull request #${pull.number} (${headBranch} => ${inputs.base})`
+      )
+      return {
+        number: pull.number,
+        html_url: pull.html_url,
+        node_id: pull.node_id,
+        draft: pull.draft,
+        created: true
+      }
+    } catch (e) {
+      const errorMessage = utils.getErrorMessage(e)
+      if (errorMessage.includes(ERROR_PR_ALREADY_EXISTS)) {
+        core.info(`A pull request already exists for ${headBranch}`)
+      } else if (errorMessage.includes(ERROR_PR_FORK_COLLAB)) {
+        core.warning(
+          'An attempt was made to create a pull request using a token that does not have write access to the head branch.'
+        )
+        core.warning(
+          `For this case, set input 'maintainer-can-modify' to 'false' to allow pull request creation.`
+        )
+        throw e
+      } else {
+        throw e
+      }
+    }
+
+    // Update the pull request that exists for this branch and base
+    core.info(`Fetching existing pull request`)
+    const {data: pulls} = await this.octokit.rest.pulls.list({
+      ...this.parseRepository(baseRepository),
+      state: 'open',
+      head: headBranch,
+      base: inputs.base
+    })
+    core.info(`Attempting update of pull request`)
+    const {data: pull} = await this.octokit.rest.pulls.update({
+      ...this.parseRepository(baseRepository),
+      pull_number: pulls[0].number,
+      title: inputs.title,
+      body: inputs.body
+    })
+    core.info(
+      `Updated pull request #${pull.number} (${headBranch} => ${inputs.base})`
+    )
+    return {
+      number: pull.number,
+      html_url: pull.html_url,
+      node_id: pull.node_id,
+      draft: pull.draft,
+      created: false
+    }
+  }
+
+  async getRepositoryParent(headRepository: string): Promise<string | null> {
+    const {data: headRepo} = await this.octokit.rest.repos.get({
+      ...this.parseRepository(headRepository)
+    })
+    if (!headRepo.parent) {
+      return null
+    }
+    return headRepo.parent.full_name
+  }
+
+  async createOrUpdatePullRequest(
+    inputs: Inputs,
+    baseRepository: string,
+    headRepository: string
+  ): Promise<Pull> {
+    // Create or update the pull request
+    const pull = await this.createOrUpdate(
+      inputs,
+      baseRepository,
+      headRepository
+    )
+
+    // Apply milestone
+    if (inputs.milestone) {
+      core.info(`Applying milestone '${inputs.milestone}'`)
+      await this.octokit.rest.issues.update({
+        ...this.parseRepository(baseRepository),
+        issue_number: pull.number,
+        milestone: inputs.milestone
+      })
+    }
+    // Apply labels
+    if (inputs.labels.length > 0) {
+      core.info(`Applying labels '${inputs.labels}'`)
+      await this.octokit.rest.issues.addLabels({
+        ...this.parseRepository(baseRepository),
+        issue_number: pull.number,
+        labels: inputs.labels
+      })
+    }
+    // Apply assignees
+    if (inputs.assignees.length > 0) {
+      core.info(`Applying assignees '${inputs.assignees}'`)
+      await this.octokit.rest.issues.addAssignees({
+        ...this.parseRepository(baseRepository),
+        issue_number: pull.number,
+        assignees: inputs.assignees
+      })
+    }
+
+    // Request reviewers and team reviewers
+    const requestReviewersParams = {}
+    if (inputs.reviewers.length > 0) {
+      requestReviewersParams['reviewers'] = inputs.reviewers
+      core.info(`Requesting reviewers '${inputs.reviewers}'`)
+    }
+    if (inputs.teamReviewers.length > 0) {
+      const teams = utils.stripOrgPrefixFromTeams(inputs.teamReviewers)
+      requestReviewersParams['team_reviewers'] = teams
+      core.info(`Requesting team reviewers '${teams}'`)
+    }
+    if (Object.keys(requestReviewersParams).length > 0) {
+      try {
+        await this.octokit.rest.pulls.requestReviewers({
+          ...this.parseRepository(baseRepository),
+          pull_number: pull.number,
+          ...requestReviewersParams
+        })
+      } catch (e) {
+        if (utils.getErrorMessage(e).includes(ERROR_PR_REVIEW_TOKEN_SCOPE)) {
+          core.error(
+            `Unable to request reviewers. If requesting team reviewers a 'repo' scoped PAT is required.`
+          )
+        }
+        throw e
+      }
+    }
+
+    return pull
+  }
+
+  async pushSignedCommits(
+    branchCommits: Commit[],
+    baseCommit: Commit,
+    repoPath: string,
+    branchRepository: string,
+    branch: string
+  ): Promise<CommitResponse> {
+    let headCommit: CommitResponse = {
+      sha: baseCommit.sha,
+      tree: baseCommit.tree,
+      verified: false
+    }
+    for (const commit of branchCommits) {
+      headCommit = await this.createCommit(
+        commit,
+        headCommit,
+        repoPath,
+        branchRepository
+      )
+    }
+    await this.createOrUpdateRef(branchRepository, branch, headCommit.sha)
+    return headCommit
+  }
+
+  private async createCommit(
+    commit: Commit,
+    parentCommit: CommitResponse,
+    repoPath: string,
+    branchRepository: string
+  ): Promise<CommitResponse> {
+    const repository = this.parseRepository(branchRepository)
+    // In the case of an empty commit, the tree references the parent's tree
+    let treeSha = parentCommit.tree
+    if (commit.changes.length > 0) {
+      core.info(`Creating tree objects for local commit ${commit.sha}`)
+      const treeObjects = await Promise.all(
+        commit.changes.map(async ({path, mode, status, dstSha}) => {
+          if (mode === '160000') {
+            // submodule
+            core.info(`Creating tree object for submodule commit at '${path}'`)
+            return <TreeObject>{
+              path,
+              mode,
+              sha: dstSha,
+              type: 'commit'
+            }
+          } else {
+            let sha: string | null = null
+            if (status === 'A' || status === 'M') {
+              try {
+                const {data: blob} = await blobCreationLimit(() =>
+                  this.octokit.rest.git.createBlob({
+                    ...repository,
+                    content: utils.readFileBase64([repoPath, path]),
+                    encoding: 'base64'
+                  })
+                )
+                sha = blob.sha
+              } catch (error) {
+                core.error(
+                  `Error creating blob for file '${path}': ${utils.getErrorMessage(error)}`
+                )
+                throw error
+              }
+            }
+            core.info(
+              `Creating tree object for blob at '${path}' with status '${status}'`
+            )
+            return <TreeObject>{
+              path,
+              mode,
+              sha,
+              type: 'blob'
+            }
+          }
+        })
+      )
+
+      const chunkSize = 100
+      const chunkedTreeObjects: TreeObject[][] = Array.from(
+        {length: Math.ceil(treeObjects.length / chunkSize)},
+        (_, i) => treeObjects.slice(i * chunkSize, i * chunkSize + chunkSize)
+      )
+
+      core.info(`Creating tree for local commit ${commit.sha}`)
+      for (let i = 0; i < chunkedTreeObjects.length; i++) {
+        const {data: tree} = await this.octokit.rest.git.createTree({
+          ...repository,
+          base_tree: treeSha,
+          tree: chunkedTreeObjects[i]
+        })
+        treeSha = tree.sha
+        if (chunkedTreeObjects.length > 1) {
+          core.info(
+            `Created tree ${treeSha} of multipart tree (${i + 1} of ${chunkedTreeObjects.length})`
+          )
+        }
+      }
+      core.info(`Created tree ${treeSha} for local commit ${commit.sha}`)
+    }
+
+    const {data: remoteCommit} = await this.octokit.rest.git.createCommit({
+      ...repository,
+      parents: [parentCommit.sha],
+      tree: treeSha,
+      message: `${commit.subject}\n\n${commit.body}`
+    })
+    core.info(
+      `Created commit ${remoteCommit.sha} for local commit ${commit.sha}`
+    )
+    core.info(
+      `Commit verified: ${remoteCommit.verification.verified}; reason: ${remoteCommit.verification.reason}`
+    )
+    return {
+      sha: remoteCommit.sha,
+      tree: remoteCommit.tree.sha,
+      verified: remoteCommit.verification.verified
+    }
+  }
+
+  async getCommit(
+    sha: string,
+    branchRepository: string
+  ): Promise<CommitResponse> {
+    const repository = this.parseRepository(branchRepository)
+    const {data: remoteCommit} = await this.octokit.rest.git.getCommit({
+      ...repository,
+      commit_sha: sha
+    })
+    return {
+      sha: remoteCommit.sha,
+      tree: remoteCommit.tree.sha,
+      verified: remoteCommit.verification.verified
+    }
+  }
+
+  private async createOrUpdateRef(
+    branchRepository: string,
+    branch: string,
+    newHead: string
+  ) {
+    const repository = this.parseRepository(branchRepository)
+    const branchExists = await this.octokit.rest.repos
+      .getBranch({
+        ...repository,
+        branch: branch
+      })
+      .then(
+        () => true,
+        () => false
+      )
+
+    if (branchExists) {
+      core.info(`Branch ${branch} exists; Updating ref`)
+      await this.octokit.rest.git.updateRef({
+        ...repository,
+        sha: newHead,
+        ref: `heads/${branch}`,
+        force: true
+      })
+    } else {
+      core.info(`Branch ${branch} does not exist; Creating ref`)
+      await this.octokit.rest.git.createRef({
+        ...repository,
+        sha: newHead,
+        ref: `refs/heads/${branch}`
+      })
+    }
+  }
+
+  async convertToDraft(id: string): Promise<void> {
+    core.info(`Converting pull request to draft`)
+    await this.octokit.graphql({
+      query: `mutation($pullRequestId: ID!) {
+        convertPullRequestToDraft(input: {pullRequestId: $pullRequestId}) {
+          pullRequest {
+            isDraft
+          }
+        }
+      }`,
+      pullRequestId: id
+    })
+  }
+}
--- a/src/index.js
+++ b/src/index.js
@ -1,122 +0,0 @@
-const { inspect } = require("util");
-const isDocker = require("is-docker");
-const core = require("@actions/core");
-const exec = require("@actions/exec");
-const setupPython = require("./setup-python");
-const {
-  getRepoPath,
-  getAndUnsetConfigOption,
-  addConfigOption
-} = require("./git");
-
-const EXTRAHEADER_OPTION = "http.https://github.com/.extraheader";
-const EXTRAHEADER_VALUE_REGEX = "^AUTHORIZATION:";
-
-async function run() {
-  try {
-    // Allows ncc to find assets to be included in the distribution
-    const cpr = __dirname + "/cpr";
-    core.debug(`cpr: ${cpr}`);
-
-    // Determine how to access python and pip
-    const { pip, python } = (function() {
-      if (isDocker()) {
-        core.info("Running inside a Docker container");
-        // Python 3 assumed to be installed and on the PATH
-        return {
-          pip: "pip3",
-          python: "python3"
-        };
-      } else {
-        // Setup Python from the tool cache
-        setupPython("3.x", "x64");
-        return {
-          pip: "pip",
-          python: "python"
-        };
-      }
-    })();
-
-    // Install requirements
-    await exec.exec(pip, [
-      "install",
-      "--requirement",
-      `${cpr}/requirements.txt`,
-      "--no-index",
-      `--find-links=${__dirname}/vendor`
-    ]);
-
-    // Fetch action inputs
-    const inputs = {
-      token: core.getInput("token"),
-      path: core.getInput("path"),
-      commitMessage: core.getInput("commit-message"),
-      committer: core.getInput("committer"),
-      author: core.getInput("author"),
-      title: core.getInput("title"),
-      body: core.getInput("body"),
-      labels: core.getInput("labels"),
-      assignees: core.getInput("assignees"),
-      reviewers: core.getInput("reviewers"),
-      teamReviewers: core.getInput("team-reviewers"),
-      milestone: core.getInput("milestone"),
-      project: core.getInput("project"),
-      projectColumn: core.getInput("project-column"),
-      draft: core.getInput("draft"),
-      branch: core.getInput("branch"),
-      requestToParent: core.getInput("request-to-parent"),
-      base: core.getInput("base"),
-      branchSuffix: core.getInput("branch-suffix")
-    };
-    core.debug(`Inputs: ${inspect(inputs)}`);
-
-    // Set environment variables from inputs.
-    if (inputs.token) process.env.GITHUB_TOKEN = inputs.token;
-    if (inputs.path) process.env.CPR_PATH = inputs.path;
-    if (inputs.commitMessage) process.env.CPR_COMMIT_MESSAGE = inputs.commitMessage;
-    if (inputs.committer) process.env.CPR_COMMITTER = inputs.committer;
-    if (inputs.author) process.env.CPR_AUTHOR = inputs.author;
-    if (inputs.title) process.env.CPR_TITLE = inputs.title;
-    if (inputs.body) process.env.CPR_BODY = inputs.body;
-    if (inputs.labels) process.env.CPR_LABELS = inputs.labels;
-    if (inputs.assignees) process.env.CPR_ASSIGNEES = inputs.assignees;
-    if (inputs.reviewers) process.env.CPR_REVIEWERS = inputs.reviewers;
-    if (inputs.teamReviewers) process.env.CPR_TEAM_REVIEWERS = inputs.teamReviewers;
-    if (inputs.milestone) process.env.CPR_MILESTONE = inputs.milestone;
-    if (inputs.project) process.env.CPR_PROJECT_NAME = inputs.project;
-    if (inputs.projectColumn) process.env.CPR_PROJECT_COLUMN_NAME = inputs.projectColumn;
-    if (inputs.draft) process.env.CPR_DRAFT = inputs.draft;
-    if (inputs.branch) process.env.CPR_BRANCH = inputs.branch;
-    if (inputs.requestToParent) process.env.CPR_REQUEST_TO_PARENT = inputs.requestToParent;
-    if (inputs.base) process.env.CPR_BASE = inputs.base;
-    if (inputs.branchSuffix) process.env.CPR_BRANCH_SUFFIX = inputs.branchSuffix;
-
-    // Get the repository path
-    var repoPath = getRepoPath(inputs.path);
-    // Get the extraheader config option if it exists
-    var extraHeaderOption = await getAndUnsetConfigOption(
-      repoPath,
-      EXTRAHEADER_OPTION,
-      EXTRAHEADER_VALUE_REGEX
-    );
-
-    // Execute create pull request
-    await exec.exec(python, [`${cpr}/create_pull_request.py`]);
-  } catch (error) {
-    core.setFailed(error.message);
-  } finally {
-    // Restore the extraheader config option
-    if (extraHeaderOption) {
-      if (
-        await addConfigOption(
-          repoPath,
-          EXTRAHEADER_OPTION,
-          extraHeaderOption.value
-        )
-      )
-        core.debug(`Restored config option '${EXTRAHEADER_OPTION}'`);
-    }
-  }
-}
-
-run();
--- a/src/main.ts
+++ b/src/main.ts
@ -0,0 +1,71 @@
+import * as core from '@actions/core'
+import {Inputs, createPullRequest} from './create-pull-request'
+import {inspect} from 'util'
+import * as utils from './utils'
+
+function getDraftInput(): {value: boolean; always: boolean} {
+  if (core.getInput('draft') === 'always-true') {
+    return {value: true, always: true}
+  } else {
+    return {value: core.getBooleanInput('draft'), always: false}
+  }
+}
+
+async function run(): Promise<void> {
+  try {
+    const inputs: Inputs = {
+      token: core.getInput('token'),
+      branchToken: core.getInput('branch-token'),
+      path: core.getInput('path'),
+      addPaths: utils.getInputAsArray('add-paths'),
+      commitMessage: core.getInput('commit-message'),
+      committer: core.getInput('committer'),
+      author: core.getInput('author'),
+      signoff: core.getBooleanInput('signoff'),
+      branch: core.getInput('branch'),
+      deleteBranch: core.getBooleanInput('delete-branch'),
+      branchSuffix: core.getInput('branch-suffix'),
+      base: core.getInput('base'),
+      pushToFork: core.getInput('push-to-fork'),
+      signCommits: core.getBooleanInput('sign-commits'),
+      title: core.getInput('title'),
+      body: core.getInput('body'),
+      bodyPath: core.getInput('body-path'),
+      labels: utils.getInputAsArray('labels'),
+      assignees: utils.getInputAsArray('assignees'),
+      reviewers: utils.getInputAsArray('reviewers'),
+      teamReviewers: utils.getInputAsArray('team-reviewers'),
+      milestone: Number(core.getInput('milestone')),
+      draft: getDraftInput(),
+      maintainerCanModify: core.getBooleanInput('maintainer-can-modify')
+    }
+    core.debug(`Inputs: ${inspect(inputs)}`)
+
+    if (!inputs.token) {
+      throw new Error(`Input 'token' not supplied. Unable to continue.`)
+    }
+    if (!inputs.branchToken) {
+      inputs.branchToken = inputs.token
+    }
+    if (inputs.bodyPath) {
+      if (!utils.fileExistsSync(inputs.bodyPath)) {
+        throw new Error(`File '${inputs.bodyPath}' does not exist.`)
+      }
+      // Update the body input with the contents of the file
+      inputs.body = utils.readFile(inputs.bodyPath)
+    }
+    // 65536 characters is the maximum allowed for the pull request body.
+    if (inputs.body.length > 65536) {
+      core.warning(
+        `Pull request body is too long. Truncating to 65536 characters.`
+      )
+      inputs.body = inputs.body.substring(0, 65536)
+    }
+
+    await createPullRequest(inputs)
+  } catch (error) {
+    core.setFailed(utils.getErrorMessage(error))
+  }
+}
+
+run()
--- a/src/octokit-client.ts
+++ b/src/octokit-client.ts
@ -0,0 +1,40 @@
+import * as core from '@actions/core'
+import {Octokit as OctokitCore} from '@octokit/core'
+import {paginateRest} from '@octokit/plugin-paginate-rest'
+import {restEndpointMethods} from '@octokit/plugin-rest-endpoint-methods'
+import {throttling} from '@octokit/plugin-throttling'
+import {fetch} from 'node-fetch-native/proxy'
+export {RestEndpointMethodTypes} from '@octokit/plugin-rest-endpoint-methods'
+// eslint-disable-next-line import/no-unresolved
+export {OctokitOptions} from '@octokit/core/dist-types/types'
+
+export const Octokit = OctokitCore.plugin(
+  paginateRest,
+  restEndpointMethods,
+  throttling,
+  autoProxyAgent
+)
+
+export const throttleOptions = {
+  onRateLimit: (retryAfter, options, _, retryCount) => {
+    core.debug(`Hit rate limit for request ${options.method} ${options.url}`)
+    // Retries twice for a total of three attempts
+    if (retryCount < 2) {
+      core.debug(`Retrying after ${retryAfter} seconds!`)
+      return true
+    }
+  },
+  onSecondaryRateLimit: (retryAfter, options) => {
+    core.warning(
+      `Hit secondary rate limit for request ${options.method} ${options.url}`
+    )
+    core.warning(`Requests may be retried after ${retryAfter} seconds.`)
+  }
+}
+
+// Octokit plugin to support the standard environment variables http_proxy, https_proxy and no_proxy
+function autoProxyAgent(octokit: OctokitCore) {
+  octokit.hook.before('request', options => {
+    options.request.fetch = fetch
+  })
+}
--- a/src/setup-python.js
+++ b/src/setup-python.js
@ -1,52 +0,0 @@
-const core = require("@actions/core");
-const tc = require("@actions/tool-cache");
-const path = require("path");
-const semver = require("semver");
-
-/**
- * Setup for Python from the GitHub Actions tool cache
- * Converted from https://github.com/actions/setup-python
- *
- * @param {string} versionSpec version of Python
- * @param {string} arch architecture (x64|x32)
- */
-let setupPython = function(versionSpec, arch) {
-  return new Promise((resolve, reject) => {
-    const IS_WINDOWS = process.platform === "win32";
-
-    // Find the version of Python we want in the tool cache
-    const installDir = tc.find("Python", versionSpec, arch);
-    core.debug(`installDir: ${installDir}`);
-
-    // Set paths
-    core.exportVariable("pythonLocation", installDir);
-    core.addPath(installDir);
-    if (IS_WINDOWS) {
-      core.addPath(path.join(installDir, "Scripts"));
-    } else {
-      core.addPath(path.join(installDir, "bin"));
-    }
-
-    if (IS_WINDOWS) {
-      // Add --user directory
-      // `installDir` from tool cache should look like $AGENT_TOOLSDIRECTORY/Python/<semantic version>/x64/
-      // So if `findLocalTool` succeeded above, we must have a conformant `installDir`
-      const version = path.basename(path.dirname(installDir));
-      const major = semver.major(version);
-      const minor = semver.minor(version);
-
-      const userScriptsDir = path.join(
-        process.env["APPDATA"] || "",
-        "Python",
-        `Python${major}${minor}`,
-        "Scripts"
-      );
-      core.addPath(userScriptsDir);
-    }
-    // On Linux and macOS, pip will create the --user directory and add it to PATH as needed.
-
-    resolve();
-  });
-};
-
-module.exports = setupPython;
--- a/src/utils.ts
+++ b/src/utils.ts
@ -0,0 +1,147 @@
+import * as core from '@actions/core'
+import * as fs from 'fs'
+import * as path from 'path'
+
+export function getInputAsArray(
+  name: string,
+  options?: core.InputOptions
+): string[] {
+  return getStringAsArray(core.getInput(name, options))
+}
+
+export function getStringAsArray(str: string): string[] {
+  return str
+    .split(/[\n,]+/)
+    .map(s => s.trim())
+    .filter(x => x !== '')
+}
+
+export function stripOrgPrefixFromTeams(teams: string[]): string[] {
+  return teams.map(team => {
+    const slashIndex = team.lastIndexOf('/')
+    if (slashIndex > 0) {
+      return team.substring(slashIndex + 1)
+    }
+    return team
+  })
+}
+
+export function getRepoPath(relativePath?: string): string {
+  let githubWorkspacePath = process.env['GITHUB_WORKSPACE']
+  if (!githubWorkspacePath) {
+    throw new Error('GITHUB_WORKSPACE not defined')
+  }
+  githubWorkspacePath = path.resolve(githubWorkspacePath)
+  core.debug(`githubWorkspacePath: ${githubWorkspacePath}`)
+
+  let repoPath = githubWorkspacePath
+  if (relativePath) repoPath = path.resolve(repoPath, relativePath)
+
+  core.debug(`repoPath: ${repoPath}`)
+  return repoPath
+}
+
+export function getRemoteUrl(
+  protocol: string,
+  hostname: string,
+  repository: string
+): string {
+  return protocol == 'HTTPS'
+    ? `https://${hostname}/${repository}`
+    : `git@${hostname}:${repository}.git`
+}
+
+export function secondsSinceEpoch(): number {
+  const now = new Date()
+  return Math.round(now.getTime() / 1000)
+}
+
+export function randomString(): string {
+  return Math.random().toString(36).substr(2, 7)
+}
+
+interface DisplayNameEmail {
+  name: string
+  email: string
+}
+
+export function parseDisplayNameEmail(
+  displayNameEmail: string
+): DisplayNameEmail {
+  // Parse the name and email address from a string in the following format
+  // Display Name <email@address.com>
+  const pattern = /^([^<]+)\s*<([^>]+)>$/i
+
+  // Check we have a match
+  const match = displayNameEmail.match(pattern)
+  if (!match) {
+    throw new Error(
+      `The format of '${displayNameEmail}' is not a valid email address with display name`
+    )
+  }
+
+  // Check that name and email are not just whitespace
+  const name = match[1].trim()
+  const email = match[2].trim()
+  if (!name || !email) {
+    throw new Error(
+      `The format of '${displayNameEmail}' is not a valid email address with display name`
+    )
+  }
+
+  return {
+    name: name,
+    email: email
+  }
+}
+
+export function fileExistsSync(path: string): boolean {
+  if (!path) {
+    throw new Error("Arg 'path' must not be empty")
+  }
+
+  let stats: fs.Stats
+  try {
+    stats = fs.statSync(path)
+  } catch (error) {
+    if (hasErrorCode(error) && error.code === 'ENOENT') {
+      return false
+    }
+
+    throw new Error(
+      `Encountered an error when checking whether path '${path}' exists: ${getErrorMessage(
+        error
+      )}`
+    )
+  }
+
+  if (!stats.isDirectory()) {
+    return true
+  }
+
+  return false
+}
+
+export function readFile(path: string): string {
+  return fs.readFileSync(path, 'utf-8')
+}
+
+export function readFileBase64(pathParts: string[]): string {
+  const resolvedPath = path.resolve(...pathParts)
+  if (fs.lstatSync(resolvedPath).isSymbolicLink()) {
+    return fs
+      .readlinkSync(resolvedPath, {encoding: 'buffer'})
+      .toString('base64')
+  }
+  return fs.readFileSync(resolvedPath).toString('base64')
+}
+
+/* eslint-disable  @typescript-eslint/no-explicit-any */
+function hasErrorCode(error: any): error is {code: string} {
+  return typeof (error && error.code) === 'string'
+}
+
+export function getErrorMessage(error: unknown) {
+  if (error instanceof Error) return error.message
+  return String(error)
+}
--- a/tsconfig.json
+++ b/tsconfig.json
@ -0,0 +1,16 @@
+{
+  "compilerOptions": {
+    "target": "es6",
+    "module": "commonjs",
+    "lib": [
+      "es6"
+    ],
+    "outDir": "./lib",
+    "rootDir": "./src",
+    "declaration": true,
+    "strict": true,
+    "noImplicitAny": false,
+    "esModuleInterop": true
+  },
+  "exclude": ["__test__", "lib", "node_modules"]
+}