yeisonvargasf
commented
1 year ago Hi @rbarrois, thank you for the detailed report!
You are right; I updated the image with a fix to handle the old versions of the GitHub action.
Run integration tests, ensuring that past versions of the action don't crash;
I implemented regression tests, so we can monitor if new features will break the old versions of the GitHub action.
Communicate with its customers when old versions of its Github Actions are deprecated and should no longer be used;
I communicated this to our internal team.
Provide a clear error message when the Docker container fails on invalid error message (e.g. "Please update to pyupio/safety@2.x.y")
Working on this too, it's in the roadmap.
This issue should be fixed, please let me know if all is good from your side and I'll close this issue. Happy to help!
Description
We run the pyupio/safety Github Action as described here: https://docs.pyup.io/docs/github-actions-safety#step-3-configure-your-github-workflow-yaml-file-to-run-safety-scans
That action relies on the latest docker version from safety; however, when said version requires new parameters, the related action is not kept up-to-date, and crashes.
What I Did
We defined the action as:
And got the following error:
Suggested fix
I think safety should implement one of the following patterns:
pyupio/safety@2.x.y")Thanks!