Closed evverx closed 2 years ago
Thanks for sharing. The release is mainly handled by https://github.com/semantic-release/semantic-release, which generates the release. However the actual build is happening afterwards which then results in n this unpleasant state. I'll look into it
Will work on this as part of the upcoming v3 release
Fixed in v2.0.4 and onwards. Thanks for making me aware of this issue.
When the action is pinned to a full SHA of a release (as recommended in https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions) it fails with
To get it around it was pinned to https://github.com/stefanbuck/github-issue-parser/commit/fc06b2a0adc5ccb7702ab6b641fd8a742a5e9cc0. It kind of works but it isn't compatible with Dependabot in the sense that it can't update the action automatically because it follows releases usually.
cc @jamacku