Open dependabot[bot] opened 5 hours ago
Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information
Thanks for opening this pull request!
This pull request updates several GitHub Actions dependencies across the repository. The changes include upgrading actions/checkout, GitGuardian/ggshield, actions/setup-node, and actions/stale to their latest versions. These updates aim to improve the CI/CD pipeline by incorporating the latest features and bug fixes from these actions.
graph TD;
A[GitHub Actions Workflow] --> B[actions/checkout@v4];
A --> C[GitGuardian/ggshield@v1.32.2];
A --> D[actions/setup-node@v4];
A --> E[actions/stale@v9];
B -->|Updated from v3 to v4| B;
C -->|Updated from v1.32.0 to v1.32.2| C;
D -->|Updated from v3 to v4| D;
E -->|Updated from v5 to v9| E;
Change | Details | Files |
---|---|---|
Update actions/checkout from v3 to v4 |
|
.github/workflows/gitguardian.yaml .github/workflows/stale-to-pr.yml |
Update GitGuardian/ggshield from v1.32.0 to v1.32.2 |
|
.github/workflows/gitguardian.yaml |
Update actions/setup-node from v3 to v4 |
|
.github/workflows/package-v.yml |
Update actions/stale from v5 to v9 |
|
.github/workflows/stale-to-pr.yml |
Review changes with SemanticDiff.
Here's the code health analysis summary for commits ae5a67c..ee6b8d9
. View details on DeepSource ↗.
Analyzer | Status | Summary | Link |
---|---|---|---|
Python | ✅ Success | View Check ↗ | |
Java | ✅ Success | View Check ↗ | |
C# | ✅ Success | View Check ↗ | |
JavaScript | ✅ Success | View Check ↗ | |
Shell | ✅ Success | View Check ↗ | |
Kotlin | ✅ Success | View Check ↗ |
💡 If you’re a repository administrator, you can configure the quality gates from the settings.
Enhanced Checkout Action
The checkout
action, utilized in all workflow files, has been upgraded from version v3
to v4
. This boosts the integrity and reliability of our code management.
Latest GitGuardian Action
The GitGuardian
secret scanning action present in gitguardian.yaml
has been updated from version v1.32.0
to v1.32.2
, enhancing our security measures against secret leaks.
Improved Node.js Setup
The setup-node
action in package-v.yml
was upgraded from v3
to v4
, resulting in better and more efficient setup of our Node.js environment.
Advanced 'Stale' Action Tracking
Noticeable progress is made in stale-to-pr.yml
where the stale
action got upgraded from v5
to v9
. This overhaul leads to significantly improved tracking of stagnant action items.
Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information
**Action:** GitGuardian scan |
**Failed stage:** [GitGuardian scan](https://github.com/Andrewshin-7th-technology-student/build-CI/actions/runs/11483989613/job/31960713744) [❌] |
**Failure summary:**
The action failed due to the following reason:GITGUARDIAN_API_KEY environment variable is either missing, incorrect, or not authorized. |
Relevant error logs:```yaml 1: ##[group]Operating System 2: Ubuntu ... 182: ##[endgroup] 183: ##[command]/usr/bin/docker run --name gitguardianggshieldv1322_68749f --label e6732c --workdir /github/workspace --rm -e "GITHUB_PUSH_BEFORE_SHA" -e "GITHUB_PUSH_BASE_SHA" -e "GITHUB_PULL_BASE_SHA" -e "GITHUB_DEFAULT_BRANCH" -e "GITGUARDIAN_API_KEY" -e "INPUT_ARGS" -e "HOME" -e "GITHUB_JOB" -e "GITHUB_REF" -e "GITHUB_SHA" -e "GITHUB_REPOSITORY" -e "GITHUB_REPOSITORY_OWNER" -e "GITHUB_REPOSITORY_OWNER_ID" -e "GITHUB_RUN_ID" -e "GITHUB_RUN_NUMBER" -e "GITHUB_RETENTION_DAYS" -e "GITHUB_RUN_ATTEMPT" -e "GITHUB_REPOSITORY_ID" -e "GITHUB_ACTOR_ID" -e "GITHUB_ACTOR" -e "GITHUB_TRIGGERING_ACTOR" -e "GITHUB_WORKFLOW" -e "GITHUB_HEAD_REF" -e "GITHUB_BASE_REF" -e "GITHUB_EVENT_NAME" -e "GITHUB_SERVER_URL" -e "GITHUB_API_URL" -e "GITHUB_GRAPHQL_URL" -e "GITHUB_REF_NAME" -e "GITHUB_REF_PROTECTED" -e "GITHUB_REF_TYPE" -e "GITHUB_WORKFLOW_REF" -e "GITHUB_WORKFLOW_SHA" -e "GITHUB_WORKSPACE" -e "GITHUB_ACTION" -e "GITHUB_EVENT_PATH" -e "GITHUB_ACTION_REPOSITORY" -e "GITHUB_ACTION_REF" -e "GITHUB_PATH" -e "GITHUB_ENV" -e "GITHUB_STEP_SUMMARY" -e "GITHUB_STATE" -e "GITHUB_OUTPUT" -e "RUNNER_OS" -e "RUNNER_ARCH" -e "RUNNER_NAME" -e "RUNNER_ENVIRONMENT" -e "RUNNER_TOOL_CACHE" -e "RUNNER_TEMP" -e "RUNNER_WORKSPACE" -e "ACTIONS_RUNTIME_URL" -e "ACTIONS_RUNTIME_TOKEN" -e "ACTIONS_CACHE_URL" -e "ACTIONS_RESULTS_URL" -e GITHUB_ACTIONS=true -e CI=true --entrypoint "/app/docker/actions-secret-entrypoint.sh" -v "/var/run/docker.sock":"/var/run/docker.sock" -v "/home/runner/work/_temp/_github_home":"/github/home" -v "/home/runner/work/_temp/_github_workflow":"/github/workflow" -v "/home/runner/work/_temp/_runner_file_commands":"/github/file_commands" -v "/home/runner/work/build-CI/build-CI":"/github/workspace" gitguardian/ggshield:v1.32.2 "" 184: github_push_before_sha: 2c35aa46f5ab0b94056012222b06df8f286f05e9 185: github_push_base_sha: 186: github_pull_base_sha: ae5a67c3e53a254582fb4621813230d064307dd3 187: github_default_branch: main 188: github_head_sha: 88cfeec04a48f048faff6b77db830024a7f9381e 189: Commits to scan: 2 190: [31m[22m[22mError: Invalid API key.[0m ``` |
🚨 Prettier check failed for the following files:
[warn] .github/workflows/package-v.yml
[warn] .github/workflows/stale-to-pr.yml
[warn] Code style issues found in 2 files. Run Prettier with --write to fix.
To fix the issue, run the following command:
npx prettier --write .github/workflows/package-v.yml .github/workflows/stale-to-pr.yml
Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information
Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code
Bumps the dev-dependencies group with 4 updates in the / directory: actions/checkout, GitGuardian/ggshield, actions/setup-node and actions/stale.
Updates
actions/checkout
from 3 to 4Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
eef6144
Prepare 4.2.1 release (#1925)6b42224
Add workflow file for publishing releases to immutable action package (#1919)de5a000
Check out other refs/* by commit if provided, fall back to ref (#1924)d632683
Prepare 4.2.0 release (#1878)6d193bf
Bump braces from 3.0.2 to 3.0.3 (#1777)db0cee9
Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)b684943
Add Ref and Commit outputs (#1180)2d7d9f7
Provide explanation for where user email came from (#1869)9a9194f
Bump docker/build-push-action from 5.3.0 to 6.5.0 (#1832)dd960bd
Bump docker/login-action in the minor-actions-dependencies group (#1831)Updates
GitGuardian/ggshield
from 1.32.0 to 1.32.2Release notes
Sourced from GitGuardian/ggshield's releases.
Changelog
Sourced from GitGuardian/ggshield's changelog.
Commits
66269d0
chore(release): 1.32.23668b10
fix: unbreak installing of global git hooks80e46c9
chore: add aget_data_dir()
function to core.dirsc135c97
chore(release): 1.32.1804e3a3
Merge pull request #970 from GitGuardian/agateau/ignore-git-configc97aab6
fix: fix parsing patches when the diff.noprefix git config option is set50b56bb
Merge pull request #968 from GitGuardian/agateau/post-release-fixes6ef1006
test: do not fail if GITGUARDIAN_INSTANCE is set077ef7a
test: wait longer for hashicorp_vault test server to start589aa14
Merge pull request #967 from GitGuardian/agateau/update-ggshield-versionUpdates
actions/setup-node
from 3 to 4Release notes
Sourced from actions/setup-node's releases.
... (truncated)
Commits
0a44ba7
Correct version string (#1124)97ca147
Merge pull request #1125 from actions/add-is-release-workflowaa363de
Create publish-immutable-action.yml1c7b2db
Fix: windows arm64 setup (#1126)26961cf
Documentation update in the README file (#1106)1e60f62
Bump braces from 3.0.2 to 3.0.3 (#1087)eff380d
Fix macos latest check failures (#1041)c2ac33f
Bump undici from 5.26.5 to 5.28.3 (#965)25b062c
Update README.md to update default Node version to 20 (#949)60edb5d
Add support for arm64 Windows (#927)Updates
actions/stale
from 5 to 9Release notes
Sourced from actions/stale's releases.
... (truncated)
Changelog
Sourced from actions/stale's changelog.
... (truncated)
Commits
28ca103
Upgrade Node to v20 (#1110)b69b346
build(deps-dev): bump@types/node
from 18.16.18 to 20.5.1 (#1079)88a6f4f
build(deps-dev): bump typescript from 5.1.3 to 5.2.2 (#1083)796531a
Merge pull request #1080 from akv-platform/fix-delete-cache8986f62
Don not try to delete cache if it does not existscab99b3
fix typo proceeded/processed184e7af
Merge pull request #1064 from actions/dependabot/npm_and_yarn/typescript-esli...523885c
chore: update eslint-plugin, parser and eslint-plugin-jest2487a1d
build(deps-dev): bump@typescript-eslint/eslint-plugin
60c722e
Merge pull request #1063 from actions/dependabot/npm_and_yarn/jest-29.6.2Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show
Summary by Sourcery
Bump versions of several GitHub Actions used in workflows, including actions/checkout, GitGuardian/ggshield, actions/setup-node, and actions/stale, to their latest versions.
Build: