search

oduwsdl / ipwb

InterPlanetary Wayback: A distributed and persistent archive replay system using IPFS
MIT License
613 stars 39 forks source link

The Releases GitHub Action is broken #849

Open machawk1 opened 3 days ago

machawk1 commented 3 days ago

This ties into Pypi deployment

UNSUPPORTED GITHUB ACTION VERSION \n\n You are using . The branch of this project has been sunset and will not receive any updates, not even security bug fixes. Please, make sure to use a supported version. If you want to pin to v1 major version, use . If you feel adventurous, you may opt to use use instead. A more general recommendation is to pin to exact tags or commit shas. \n\n \n\n ### Oh, and while you are here — #StandWithUkraine \n\n [![SWUbanner]][SWUdocs] \n\n [SWUbanner]: https://raw.githubusercontent.com/vshymanskyy/StandWithUkraine/main/banner-direct-single.svg \n\n [SWUdocs]: https://github.com/vshymanskyy/StandWithUkraine/blob/main/docs/README.md

machawk1 commented 3 days ago

Warning: Input 'password' has been deprecated with message: UNSUPPORTED GITHUB ACTION VERSION

You are using pypa/gh-action-pypi-publish@master. The master branch of this project has been sunset and will not receive any updates, not even security bug fixes. Please, make sure to use a supported version. If you want to pin to v1 major version, use pypa/gh-action-pypi-publish@release/v1. If you feel adventurous, you may opt to use use pypa/gh-action-pypi-publish@unstable/v1 instead. A more general recommendation is to pin to exact tags or commit SHAs.

Please also consider migrating your setup to use secretless publishing: https://github.com/marketplace/actions/pypi-publish#trusted-publishing

https://stand-with-ukraine.pp.ua

Run pypa/gh-action-pypi-publish@master /usr/bin/docker run --name dcb0a47a47cd952af048ed9abcf21ab2e9d632_a5c4cc --label dcb0a4 --workdir /github/workspace --rm -e "pythonLocation" -e "PKG_CONFIG_PATH" -e "Python_ROOT_DIR" -e "Python2_ROOT_DIR" -e "Python3_ROOT_DIR" -e "LD_LIBRARY_PATH" -e "INPUT_PASSWORD" -e "INPUT_USER" -e "INPUT_REPOSITORY_URL" -e "INPUT_PACKAGES_DIR" -e "INPUT_VERIFY_METADATA" -e "INPUT_SKIP_EXISTING" -e "INPUT_VERBOSE" -e "INPUT_PRINT_HASH" -e "HOME" -e "GITHUB_JOB" -e "GITHUB_REF" -e "GITHUB_SHA" -e "GITHUB_REPOSITORY" -e "GITHUB_REPOSITORY_OWNER" -e "GITHUB_REPOSITORY_OWNER_ID" -e "GITHUB_RUN_ID" -e "GITHUB_RUN_NUMBER" -e "GITHUB_RETENTION_DAYS" -e "GITHUB_RUN_ATTEMPT" -e "GITHUB_REPOSITORY_ID" -e "GITHUB_ACTOR_ID" -e "GITHUB_ACTOR" -e "GITHUB_TRIGGERING_ACTOR" -e "GITHUB_WORKFLOW" -e "GITHUB_HEAD_REF" -e "GITHUB_BASE_REF" -e "GITHUB_EVENT_NAME" -e "GITHUB_SERVER_URL" -e "GITHUB_API_URL" -e "GITHUB_GRAPHQL_URL" -e "GITHUB_REF_NAME" -e "GITHUB_REF_PROTECTED" -e "GITHUB_REF_TYPE" -e "GITHUB_WORKFLOW_REF" -e "GITHUB_WORKFLOW_SHA" -e "GITHUB_WORKSPACE" -e "GITHUB_ACTION" -e "GITHUB_EVENT_PATH" -e "GITHUB_ACTION_REPOSITORY" -e "GITHUB_ACTION_REF" -e "GITHUB_PATH" -e "GITHUB_ENV" -e "GITHUB_STEP_SUMMARY" -e "GITHUB_STATE" -e "GITHUB_OUTPUT" -e "RUNNER_OS" -e "RUNNER_ARCH" -e "RUNNER_NAME" -e "RUNNER_ENVIRONMENT" -e "RUNNER_TOOL_CACHE" -e "RUNNER_TEMP" -e "RUNNER_WORKSPACE" -e "ACTIONS_RUNTIME_URL" -e "ACTIONS_RUNTIME_TOKEN" -e "ACTIONS_CACHE_URL" -e "ACTIONS_RESULTS_URL" -e GITHUB_ACTIONS=true -e CI=true -v "/var/run/docker.sock":"/var/run/docker.sock" -v "/home/runner/work/_temp/_github_home":"/github/home" -v "/home/runner/work/_temp/_github_workflow":"/github/workflow" -v "/home/runner/work/_temp/_runner_file_commands":"/github/file_commands" -v "/home/runner/work/ipwb/ipwb":"/github/workspace" dcb0a4:7a47cd952af048ed9abcf21ab2e9d632 "token" "***" "" "dist" "true" "false" "false" "false" /app/twine-upload.sh: line 6: pypa/gh-action-pypi-publish@master: No such file or directory /app/twine-upload.sh: line 6: master: command not found /app/twine-upload.sh: line 6: pypa/gh-action-pypi-publish@release/v1: No such file or directory /app/twine-upload.sh: line 6: pypa/gh-action-pypi-publish@unstable/v1: No such file or directory Warning: You are using "pypa/gh-action-pypi-publish@master". The "master" branch of this project has been sunset and will not receive any updates, not even security bug fixes. Please, make sure to use a supported version. If you want to pin to v1 major version, use "pypa/gh-action-pypi-publish@release/v1". If you feel adventurous, you may opt to use use "pypa/gh-action-pypi-publish@unstable/v1" instead. A more general recommendation is to pin to exact tags or commit shas. Checking dist/ipwb-0.2024.10.17.1730-py3-none-any.whl: PASSED Checking dist/ipwb-0.2024.10.17.1730.tar.gz: PASSED Uploading distributions to https://upload.pypi.org/legacy/ Uploading ipwb-0.2024.10.17.1730-py3-none-any.whl 25l 0% ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 0.0/101.2 kB • --:-- • ? 81% ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━╺━━━━━━━ 81.9/101.2 kB • 00:01 • 96.3 MB/s 100% ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 101.2/101.2 kB • 00:00 • 4.1 MB/s 100% ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 101.2/101.2 kB • 00:00 • 4.1 MB/s 25hWARNING Error during upload. Retry with the --verbose option for more details. ERROR HTTPError: 400 Bad Request from https://upload.pypi.org/legacy/
User 'ibnesayeed' does not have two-factor authentication enabled.
Please enable two-factor authentication before attempting to upload to PyPI. See https://pypi.org/help/#two-factor-authentication for more
information.

machawk1 commented 3 days ago

See https://github.com/oduwsdl/ipwb/blob/master/.github/workflows/release.yml

machawk1 commented 3 days ago

Perhaps use trusted publishing instead of creds:

https://github.com/marketplace/actions/pypi-publish#trusted-publishing