`update_not_possible` error when updating all nuget packages

dhavv commented 1 month ago

Describe the bug I'm getting these update_not_possible on some of my repos. I am not sure what's triggering it but it seems like similar to this #1380 I added nuget_native_analysis=true,nuget_dependency_solver=true in the experiments and it doesn't seem to fix the issue

Categorization

[x] This is not a permissions issue (Seek help at https://github.com/tinglesoftware/dependabot-azure-devops/discussions/1245)

Repository URL: e.g. https://dev.azure.com/tingle/dependabot/_git/repro-684

To Reproduce Steps to reproduce the behavior:

Trigger the pipeline
PR cannot be created because of update_not_possible

Expected behavior PR should be created, no error

Logs and screenshots

Starting: dependabot
==============================================================================
Task         : Dependabot
Description  : Automatically update dependencies and vulnerabilities in your code using [Dependabot CLI](https://github.com/dependabot/cli)
Version      : 2.36.1003
Author       : Tingle Software
Help         : https://github.com/tinglesoftware/dependabot-azure-devops/issues
==============================================================================
Dependabot CLI install was not found, installing now with `go install dependabot`...
/usr/bin/go install github.com/dependabot/cli/cmd/dependabot@latest
go: downloading github.com/dependabot/cli v1.55.0
go: downloading github.com/MakeNowJust/heredoc v1.0.0
go: downloading github.com/spf13/cobra v1.8.1
go: downloading gopkg.in/yaml.v3 v3.0.1
go: downloading github.com/docker/cli v26.1.4+incompatible
go: downloading github.com/docker/docker v26.1.4+incompatible
go: downloading github.com/goware/prefixer v0.0.0-20160118172347-395022866408
go: downloading github.com/hexops/gotextdiff v1.0.3
go: downloading github.com/moby/moby v26.1.4+incompatible
go: downloading github.com/moby/sys/signal v0.7.0

  proxy | 2024/10/21 16:22:05 [281] POST http://host.docker.internal:45911/update_jobs/update_0_nuget_all/record_update_job_error
{"data":{"error-type":"update_not_possible","error-details":{"dependencies":["Microsoft.Extensions.Logging"]}},"type":"record_update_job_error"}
  proxy | 2024/10/21 16:22:05 [281] 200 http://host.docker.internal:45911/update_jobs/update_0_nuget_all/record_update_job_error
updater | 2024/10/21 16:22:05 INFO <job_update_0_nuget_all> Handled error whilst updating Microsoft.Extensions.Logging: update_not_possible {:dependencies=>["Microsoft.Extensions.Logging"]}
updater | 2024/10/21 16:22:05 INFO <job_update_0_nuget_all> Checking if Microsoft.Extensions.Logging.Abstractions 8.0.1 needs updating

  proxy | 2024/10/21 16:27:18 [840] PATCH http://host.docker.internal:45911/update_jobs/update_0_nuget_all/mark_as_processed
{"data":{"base-commit-sha":"2dcb220b4a041159c1dc9ef9b4fe8558e3023173"},"type":"mark_as_processed"}
  proxy | 2024/10/21 16:27:18 [840] 200 http://host.docker.internal:45911/update_jobs/update_0_nuget_all/mark_as_processed
updater | 2024/10/21 16:27:18 INFO <job_update_0_nuget_all> Finished job processing
updater | 2024/10/21 16:27:18 INFO Results:
updater | +------------------------------------------------------------------------------------------------------------------------------------+
updater | |                                                Changes to Dependabot Pull Requests                                                 |
updater | +---------+--------------------------------------------------------------------------------------------------------------------------+
updater | | created | Microsoft.Extensions.DependencyInjection ( from 8.0.0 to 8.0.1 ), Microsoft.Extensions.DependencyInjection ( from 8.0... |
updater | +---------+--------------------------------------------------------------------------------------------------------------------------+
updater | Dependabot encountered '2' error(s) during execution, please check the logs for more details.
updater | +-----------------------------------------------------------------+
updater | |                  Dependencies failed to update                  |
updater | +-------------------------------------------+---------------------+
updater | | Microsoft.Extensions.Logging              | update_not_possible |
updater | | Microsoft.Extensions.Logging.Abstractions | update_not_possible |
updater | +-------------------------------------------+---------------------+
  proxy | 2024/10/21 16:27:20 159/921 calls cached (17%)
  proxy | 2024/10/21 16:27:20 Skipping sending metrics because api endpoint is empty
    cli | 2024/10/21 16:27:21 updater failure: updater exited with code 1

##[error]Dependabot failed with exit code 1
##[error]1 update tasks(s) failed, check logs for more information
Finishing: dependabot

Dependabot.yml

trigger:
- main

schedules:
- cron: '0 3 * * 1'
  displayName: 'Monday weekly dependabot'
  branches:
    include:
      - main

pool:
  vmImage: ubuntu-latest

steps:
- task: NuGetAuthenticate@1
  displayName: 'NuGet Private Feed Authentication'

- task: dependabot@2
  inputs:
    abandonUnwantedPullRequests: true
    commentPullRequests: true
    setAutoComplete: true
    mergeStrategy: 'squash'
    gitHubConnection: 'Github Public Repo PAT'
    experiments: 'nuget_native_analysis=true,nuget_dependency_solver=true'

csproj

<Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFrameworks>net8.0</TargetFrameworks>
    <Nullable>enable</Nullable>
    <OutputType>Exe</OutputType>
  </PropertyGroup>

    <PropertyGroup>
        <TreatWarningsAsErrors>True</TreatWarningsAsErrors>
    </PropertyGroup>

  <ItemGroup>
    <PackageReference Include="Dapper" Version="2.1.44" />
    <PackageReference Include="Microsoft.Data.SqlClient" Version="5.2.2" />
    <PackageReference Include="Microsoft.Extensions.DependencyInjection" Version="8.0.0" />
    <PackageReference Include="Microsoft.Extensions.Hosting" Version="8.0.0" />
    <PackageReference Include="Microsoft.Extensions.Logging" Version="8.0.0" />
    <PackageReference Include="Microsoft.Extensions.Logging.Abstractions" Version="8.0.1" />
    <PackageReference Include="Microsoft.SqlServer.DacFx" Version="162.3.566" />
    <PackageReference Include="System.IO.Compression" Version="4.3.0" />
    <PackageReference Include="System.Text.Json" Version="8.0.4" />
  </ItemGroup>

</Project>

dhavv commented 1 month ago

2024-10-21T16:22:31.9139322Z updater | Updating project [/home/dependabot/dependabot-updater/repo/Project/src/Project.DatabaseUpgrade/Project.DatabaseUpgrade.csproj]
2024-10-21T16:22:31.9140576Z updater |   Running 'PackageReference' project direct XML update
2024-10-21T16:22:31.9141924Z updater |     Package [Microsoft.Extensions.Logging.Abstractions] already meets the requested dependency version in [/home/dependabot/dependabot-updater/repo/Project/src/Project.DatabaseUpgrade/Project.DatabaseUpgrade.csproj].
2024-10-21T16:22:31.9142647Z updater | Update complete.
2024-10-21T16:22:31.9143460Z updater |   Writing update result to [/tmp/update-result.json].
2024-10-21T16:22:31.9148937Z updater | 2024/10/21 16:22:31 INFO <job_update_0_nuget_all> update result: {
2024-10-21T16:22:31.9149556Z updater |   "ErrorType": null,
2024-10-21T16:22:31.9150276Z updater |   "ErrorDetails": null
2024-10-21T16:22:31.9150724Z updater | }
2024-10-21T16:22:31.9180610Z updater | Adding BOM to [src/Project.DatabaseUpgrade/Project.DatabaseUpgrade.csproj].
2024-10-21T16:22:31.9261978Z   proxy | 2024/10/21 16:22:31 [320] POST http://host.docker.internal:45911/update_jobs/update_0_nuget_all/record_update_job_error
2024-10-21T16:22:31.9263902Z {"data":{"error-type":"update_not_possible","error-details":{"dependencies":["Microsoft.Extensions.Logging.Abstractions"]}},"type":"record_update_job_error"}
2024-10-21T16:22:31.9265684Z   proxy | 2024/10/21 16:22:31 [320] 200 http://host.docker.internal:45911/update_jobs/update_0_nuget_all/record_update_job_error
2024-10-21T16:22:31.9274971Z updater | 2024/10/21 16:22:31 INFO <job_update_0_nuget_all> Handled error whilst updating Microsoft.Extensions.Logging.Abstractions: update_not_possible {:dependencies=>["Microsoft.Extensions.Logging.Abstractions"]}

apologies, seems like the issue was somewhere along in already meets the requested dependency version

I'm thinking the issue it's because of Microsoft.Extensions.Hosting is updated to 8.0.1 by dependabot in the logs and since Microsoft.Extensions.Logging is a dependency of Microsoft.Extensions.Hosting it fails to update since it's already updated. same as how Microsoft.Extensions.Logging.Abstractions is a dependency Microsoft.Extensions.Logging

Attached some logs as well Dependabotlog.txt

rhyskoedijk commented 1 month ago

@dhavv thanks, I've managed to reproduce the issue; the minimal reproduction repo is:

version: 2
updates:
  - package-ecosystem: 'nuget'
    directory: '/'
    groups:
       all:
         patterns:
         - "*"

<Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFrameworks>net8.0</TargetFrameworks>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="Microsoft.Extensions.DependencyInjection" Version="8.0.0" />
    <PackageReference Include="Microsoft.Extensions.Logging" Version="8.0.0" />
    <PackageReference Include="Microsoft.Extensions.Logging.Abstractions" Version="8.0.1" />
  </ItemGroup>
</Project>

Your comment about Microsoft.Extensions.Logging.Abstractions being updated earlier in the process sounds likely. It seems to only be an issue if the update is grouped as if I remove your "all" group rule, the update succeeds.

In either case, unfortunately, this issue isn't something that can be fixed in the scope of this project; I'd suggest either:

Remove your "all" group rule until this problem is fixed in dependabot-core;
Log a new issue in dependabot-core with the minimal repo above; https://github.com/dependabot/dependabot-core/issues/10744#issuecomment-2417578577 was the closest per-existing issue I could find, which is not exactly the same issue, but close.

EDIT: I have logged an issue about this in dependabot-core; https://github.com/dependabot/dependabot-core/issues/10834

Ossiam commented 3 weeks ago

@rhyskoedijk Not sure, but this might also be related to group update. If you want I can create a separate issue for it

2024-10-28T06:00:50.7699563Z ##[section]Starting: Run Dependabot
2024-10-28T06:00:50.7706388Z ==============================================================================
2024-10-28T06:00:50.7706549Z Task         : Dependabot
2024-10-28T06:00:50.7706626Z Description  : Automatically update dependencies and vulnerabilities in your code using [Dependabot CLI](https://github.com/dependabot/cli)
2024-10-28T06:00:50.7706785Z Version      : 2.36.1003
2024-10-28T06:00:50.7706864Z Author       : Tingle Software
2024-10-28T06:00:50.7706942Z Help         : https://github.com/tinglesoftware/dependabot-azure-devops/issues
2024-10-28T06:00:50.7707061Z ==============================================================================
2024-10-28T06:00:51.9506311Z 🌎 🠊 [GET] https://dev.azure.com/Repo/Project/_apis/git/repositories/Project/pullrequests
2024-10-28T06:00:52.7093620Z 🌎 🠈 [200] OK
2024-10-28T06:00:52.7100120Z 🌎 🠊 [GET] https://dev.azure.com/Repo/Project/_apis/git/repositories/Project/pullrequests/24807/properties
2024-10-28T06:00:52.8259580Z 🌎 🠈 [200] OK
2024-10-28T06:00:53.2536036Z Dependabot CLI install was not found, installing now with `go install dependabot`...
2024-10-28T06:00:53.2551351Z [command]/usr/bin/go install github.com/dependabot/cli/cmd/dependabot@latest
2024-10-28T06:00:53.5680113Z go: downloading github.com/dependabot/cli v1.56.0
2024-10-28T06:00:53.6177101Z go: downloading github.com/MakeNowJust/heredoc v1.0.0
2024-10-28T06:00:53.6196076Z go: downloading github.com/spf13/cobra v1.8.1
2024-10-28T06:00:53.6379312Z go: downloading gopkg.in/yaml.v3 v3.0.1
2024-10-28T06:00:53.8127068Z go: downloading github.com/docker/cli v26.1.4+incompatible
2024-10-28T06:00:53.8918527Z go: downloading github.com/docker/docker v26.1.4+incompatible
2024-10-28T06:00:54.7620652Z go: downloading github.com/goware/prefixer v0.0.0-20160118172347-395022866408
2024-10-28T06:00:54.7626909Z go: downloading github.com/hexops/gotextdiff v1.0.3
2024-10-28T06:00:54.7872231Z go: downloading github.com/moby/moby v26.1.4+incompatible
2024-10-28T06:00:55.8030591Z go: downloading github.com/moby/sys/signal v0.7.0
2024-10-28T06:00:56.0224063Z go: downloading github.com/spf13/pflag v1.0.5
2024-10-28T06:00:56.1675505Z go: downloading github.com/moby/term v0.5.0
2024-10-28T06:00:56.1684631Z go: downloading github.com/sirupsen/logrus v1.9.3
2024-10-28T06:00:56.1975635Z go: downloading github.com/docker/go-connections v0.5.0
2024-10-28T06:00:56.2105126Z go: downloading github.com/docker/go-units v0.5.0
2024-10-28T06:00:56.2258361Z go: downloading github.com/moby/docker-image-spec v1.3.1
2024-10-28T06:00:56.2457421Z go: downloading github.com/containerd/containerd v1.7.18
2024-10-28T06:00:56.2562608Z go: downloading github.com/containerd/log v0.1.0
2024-10-28T06:00:56.2801996Z go: downloading github.com/klauspost/compress v1.17.9
2024-10-28T06:00:56.8399820Z go: downloading github.com/moby/patternmatcher v0.6.0
2024-10-28T06:00:56.8556781Z go: downloading github.com/moby/sys/sequential v0.5.0
2024-10-28T06:00:56.8829025Z go: downloading github.com/pkg/errors v0.9.1
2024-10-28T06:00:56.9002385Z go: downloading golang.org/x/sys v0.21.0
2024-10-28T06:00:57.2606992Z go: downloading github.com/opencontainers/image-spec v1.1.0
2024-10-28T06:00:57.3255146Z go: downloading github.com/distribution/reference v0.6.0
2024-10-28T06:00:57.3464050Z go: downloading github.com/opencontainers/go-digest v1.0.0
2024-10-28T06:00:57.3681192Z go: downloading go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.52.0
2024-10-28T06:00:57.3912839Z go: downloading go.opentelemetry.io/otel/trace v1.27.0
2024-10-28T06:00:57.4125200Z go: downloading go.opentelemetry.io/otel v1.27.0
2024-10-28T06:00:57.6260688Z go: downloading github.com/moby/sys/user v0.1.0
2024-10-28T06:00:57.6507808Z go: downloading github.com/felixge/httpsnoop v1.0.4
2024-10-28T06:00:57.6560986Z go: downloading go.opentelemetry.io/otel/metric v1.27.0
2024-10-28T06:00:57.6838520Z go: downloading github.com/gogo/protobuf v1.3.2
2024-10-28T06:00:57.7176030Z go: downloading github.com/go-logr/logr v1.4.2
2024-10-28T06:00:57.8292271Z go: downloading github.com/go-logr/stdr v1.2.2
2024-10-28T06:01:29.6035077Z 
2024-10-28T06:01:29.6106224Z Running Dependabot update job '/tmp/dependabot-jobs/update-0-nuget-all/job.yaml'...
2024-10-28T06:01:29.6107538Z [command]/home/vsts/go/bin/dependabot update --file /tmp/dependabot-jobs/update-0-nuget-all/job.yaml --output /tmp/dependabot-jobs/update-0-nuget-all/scenario.yaml --provider azure
2024-10-28T06:01:29.6245928Z     cli | 2024/10/28 06:01:29 Failed to find credentials for GitHub container registry.
2024-10-28T06:01:29.6254750Z     cli | 2024/10/28 06:01:29 pulling image: ghcr.io/github/dependabot-update-job-proxy/dependabot-update-job-proxy:latest
2024-10-28T06:01:31.8475484Z     cli | 2024/10/28 06:01:31 using image ghcr.io/github/dependabot-update-job-proxy/dependabot-update-job-proxy:latest at sha256:4f808dfd8f35a9fb1d8e557bea7a2b0f72d5b663f9a7446288292faa5e905042
2024-10-28T06:01:31.8481341Z     cli | 2024/10/28 06:01:31 Failed to find credentials for GitHub container registry.
2024-10-28T06:01:31.8481979Z     cli | 2024/10/28 06:01:31 pulling image: ghcr.io/dependabot/dependabot-updater-nuget
2024-10-28T06:02:29.2613556Z     cli | 2024/10/28 06:02:29 using image ghcr.io/dependabot/dependabot-updater-nuget at sha256:37c64e0c9f1c733fb4453314fc753467166734dfbd2f0bd49cc56bfb963cb680
2024-10-28T06:02:30.3584787Z   proxy | 2024/10/28 06:02:30 proxy starting, commit: 41881abec5bb353fbea347b2394f90fb7f78881e
2024-10-28T06:02:30.3585940Z   proxy | 2024/10/28 06:02:30 GitHubAPIHandler has no app access tokens
2024-10-28T06:02:30.3657745Z   proxy | 2024/10/28 06:02:30 Listening (:1080)
2024-10-28T06:02:30.6869010Z updater | Updating certificates in /etc/ssl/certs...
2024-10-28T06:02:31.8173572Z updater | rehash: warning: skipping ca-certificates.crt,it does not contain exactly one certificate or CRL
2024-10-28T06:02:31.8275478Z updater | 1 added, 0 removed; done.
2024-10-28T06:02:31.8278362Z updater | Running hooks in /etc/ca-certificates/update.d...
2024-10-28T06:02:31.8303952Z updater | done.
2024-10-28T06:02:31.8904823Z updater | NuGet native updater experiment value: null
2024-10-28T06:02:35.4954718Z updater | 2024/10/28 06:02:35 INFO <job_update_0_nuget_all> Starting job processing
2024-10-28T06:02:35.4959189Z updater | 2024/10/28 06:02:35 INFO <job_update_0_nuget_all> Job definition: {"job":{"package-manager":"nuget","allowed-updates":[{"dependency-type":"all"}],"debug":false,"dependency-groups":[{"name":"bap-server-dependencies","rules":{"patterns":["*"],"update-types":["minor","patch"]}}],"dependencies":null,"dependency-group-to-refresh":null,"existing-pull-requests":[],"existing-group-pull-requests":[{"dependency-group-name":"buan-daily-dependencies","dependencies":[{"dependency-name":"Azure.Identity","dependency-version":"1.13.0","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.Extensions.Configuration","dependency-version":"2.1.1","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.Extensions.Logging","dependency-version":"2.1.1","directory":"/src/reports/project/project"},{"dependency-name":"Newtonsoft.Json","dependency-version":"13.0.1","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.NET.Sdk.Functions","dependency-version":"4.5.0","directory":"/src/reports/project/project"},{"dependency-name":"Azure.Security.KeyVault.Secrets","dependency-version":"4.7.0","directory":"/src/reports/project/project"}]}],"experiments":null,"ignore-conditions":[{"dependency-name":"*","update-types":["version-update:semver-major"]}],"lockfile-only":false,"requirements-update-strategy":null,"security-advisories":[],"security-updates-only":false,"source":{"provider":"azure","repo":"Repo/Project/_git/Project","directory":"/src/server","hostname":"dev.azure.com","api-endpoint":"https://dev.azure.com:/"},"update-subdependencies":true,"updating-a-pull-request":false,"vendor-dependencies":false,"reject-external-code":false,"repo-private":false,"commit-message-options":null,"credentials-metadata":[{"host":"dev.azure.com","type":"git_source"}],"max-updater-run-time":0}}
2024-10-28T06:02:35.8475386Z   proxy | 2024/10/28 06:02:35 [002] GET https://dev.azure.com:443/Repo/Project/_git/Project/info/refs?service=git-upload-pack
2024-10-28T06:02:35.8476002Z   proxy | 2024/10/28 06:02:35 [002] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:35.9700464Z   proxy | 2024/10/28 06:02:35 [002] 200 https://dev.azure.com:443/Repo/Project/_git/Project/info/refs?service=git-upload-pack
2024-10-28T06:02:36.0914084Z   proxy | 2024/10/28 06:02:36 [004] POST https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:36.0914767Z   proxy | 2024/10/28 06:02:36 [004] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:36.2237192Z   proxy | 2024/10/28 06:02:36 [004] 200 https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:36.2747704Z   proxy | 2024/10/28 06:02:36 [006] POST https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:36.2748636Z   proxy | 2024/10/28 06:02:36 [006] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:36.3308385Z   proxy | 2024/10/28 06:02:36 [006] 200 https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:39.4807340Z updater | 2024/10/28 06:02:39 ERROR <job_update_0_nuget_all> Error during file fetching; aborting: Unable to find `*.sln`, `*.(cs|vb|fs)proj`, or `*.proj` in directory `/src/server`
2024-10-28T06:02:39.5624445Z   proxy | 2024/10/28 06:02:39 [007] POST http://host.docker.internal:41095/update_jobs/update_0_nuget_all/record_update_job_error
2024-10-28T06:02:39.5634981Z {"data":{"error-type":"dependency_file_not_found","error-details":{"file-path":"/src/server/*.(sln|csproj|vbproj|fsproj|proj)","message":"Unable to find `*.sln`, `*.(cs|vb|fs)proj`, or `*.proj` in directory `/src/server`"}},"type":"record_update_job_error"}
2024-10-28T06:02:39.5637634Z   proxy | 2024/10/28 06:02:39 [007] 200 http://host.docker.internal:41095/update_jobs/update_0_nuget_all/record_update_job_error
2024-10-28T06:02:39.5728196Z   proxy | 2024/10/28 06:02:39 [008] PATCH http://host.docker.internal:41095/update_jobs/update_0_nuget_all/mark_as_processed
2024-10-28T06:02:39.5733497Z {"data":{"base-commit-sha":"a1a9ed81b7800aa932efe0918c259bd10b1ce23a"},"type":"mark_as_processed"}
2024-10-28T06:02:39.5737852Z   proxy | 2024/10/28 06:02:39 [008] 200 http://host.docker.internal:41095/update_jobs/update_0_nuget_all/mark_as_processed
2024-10-28T06:02:39.5746776Z updater | 2024/10/28 06:02:39 INFO <job_update_0_nuget_all> Finished job processing
2024-10-28T06:02:39.5770395Z updater | 2024/10/28 06:02:39 INFO Results:
2024-10-28T06:02:39.5771172Z updater | Dependabot encountered '1' error(s) during execution, please check the logs for more details.
2024-10-28T06:02:39.5771573Z updater | +---------------------------+
2024-10-28T06:02:39.5771747Z updater | |          Errors           |
2024-10-28T06:02:39.5771980Z updater | +---------------------------+
2024-10-28T06:02:39.5772178Z updater | | dependency_file_not_found |
2024-10-28T06:02:39.5772422Z updater | +---------------------------+
2024-10-28T06:02:40.4863135Z   proxy | 2024/10/28 06:02:40 0/3 calls cached (0%)
2024-10-28T06:02:41.1602960Z     cli | 2024/10/28 06:02:41 updater failure: updater exited with code 1
2024-10-28T06:02:41.1606896Z 
2024-10-28T06:02:41.1661778Z ##[error]Dependabot failed with exit code 1
2024-10-28T06:02:41.1672840Z Running Dependabot update job '/tmp/dependabot-jobs/update-pr-24807/job.yaml'...
2024-10-28T06:02:41.1673401Z [command]/home/vsts/go/bin/dependabot update --file /tmp/dependabot-jobs/update-pr-24807/job.yaml --output /tmp/dependabot-jobs/update-pr-24807/scenario.yaml --provider azure
2024-10-28T06:02:41.1795493Z     cli | 2024/10/28 06:02:41 using image ghcr.io/github/dependabot-update-job-proxy/dependabot-update-job-proxy:latest at sha256:4f808dfd8f35a9fb1d8e557bea7a2b0f72d5b663f9a7446288292faa5e905042
2024-10-28T06:02:41.1807669Z     cli | 2024/10/28 06:02:41 using image ghcr.io/dependabot/dependabot-updater-nuget at sha256:37c64e0c9f1c733fb4453314fc753467166734dfbd2f0bd49cc56bfb963cb680
2024-10-28T06:02:42.0184583Z   proxy | 2024/10/28 06:02:42 proxy starting, commit: 41881abec5bb353fbea347b2394f90fb7f78881e
2024-10-28T06:02:42.0189045Z   proxy | 2024/10/28 06:02:42 GitHubAPIHandler has no app access tokens
2024-10-28T06:02:42.0214100Z   proxy | 2024/10/28 06:02:42 Listening (:1080)
2024-10-28T06:02:42.3374970Z updater | Updating certificates in /etc/ssl/certs...
2024-10-28T06:02:43.5089389Z updater | rehash: warning: skipping ca-certificates.crt,it does not contain exactly one certificate or CRL
2024-10-28T06:02:43.5157966Z updater | 1 added, 0 removed; done.
2024-10-28T06:02:43.5158524Z updater | Running hooks in /etc/ca-certificates/update.d...
2024-10-28T06:02:43.5171194Z updater | done.
2024-10-28T06:02:43.5675863Z updater | NuGet native updater experiment value: null
2024-10-28T06:02:47.0734159Z updater | 2024/10/28 06:02:47 INFO <job_update_pr_24807> Starting job processing
2024-10-28T06:02:47.0741112Z updater | 2024/10/28 06:02:47 INFO <job_update_pr_24807> Job definition: {"job":{"package-manager":"nuget","allowed-updates":[{"dependency-type":"all"}],"debug":false,"dependency-groups":[{"name":"bap-server-dependencies","rules":{"patterns":["*"],"update-types":["minor","patch"]}}],"dependencies":["Azure.Identity","Microsoft.Extensions.Configuration","Microsoft.Extensions.Logging","Newtonsoft.Json","Microsoft.NET.Sdk.Functions","Azure.Security.KeyVault.Secrets"],"dependency-group-to-refresh":"buan-daily-dependencies","existing-pull-requests":[],"existing-group-pull-requests":[{"dependency-group-name":"buan-daily-dependencies","dependencies":[{"dependency-name":"Azure.Identity","dependency-version":"1.13.0","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.Extensions.Configuration","dependency-version":"2.1.1","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.Extensions.Logging","dependency-version":"2.1.1","directory":"/src/reports/project/project"},{"dependency-name":"Newtonsoft.Json","dependency-version":"13.0.1","directory":"/src/reports/project/project"},{"dependency-name":"Microsoft.NET.Sdk.Functions","dependency-version":"4.5.0","directory":"/src/reports/project/project"},{"dependency-name":"Azure.Security.KeyVault.Secrets","dependency-version":"4.7.0","directory":"/src/reports/project/project"}]}],"experiments":null,"ignore-conditions":[{"dependency-name":"*","update-types":["version-update:semver-major"]}],"lockfile-only":false,"requirements-update-strategy":null,"security-advisories":[],"security-updates-only":false,"source":{"provider":"azure","repo":"Repo/Project/_git/Project","directory":"/src/server","hostname":"dev.azure.com","api-endpoint":"https://dev.azure.com:/"},"update-subdependencies":true,"updating-a-pull-request":true,"vendor-dependencies":false,"reject-external-code":false,"repo-private":false,"commit-message-options":null,"credentials-metadata":[{"host":"dev.azure.com","type":"git_source"}],"max-updater-run-time":0}}
2024-10-28T06:02:47.5353630Z   proxy | 2024/10/28 06:02:47 [002] GET https://dev.azure.com:443/Repo/Project/_git/Project/info/refs?service=git-upload-pack
2024-10-28T06:02:47.5354191Z   proxy | 2024/10/28 06:02:47 [002] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:47.6617304Z   proxy | 2024/10/28 06:02:47 [002] 200 https://dev.azure.com:443/Repo/Project/_git/Project/info/refs?service=git-upload-pack
2024-10-28T06:02:47.7804701Z   proxy | 2024/10/28 06:02:47 [004] POST https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:47.7805924Z   proxy | 2024/10/28 06:02:47 [004] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:47.8424051Z   proxy | 2024/10/28 06:02:47 [004] 200 https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:47.8940399Z   proxy | 2024/10/28 06:02:47 [006] POST https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:47.8940938Z   proxy | 2024/10/28 06:02:47 [006] * authenticating git server request (host: dev.azure.com)
2024-10-28T06:02:47.9489331Z   proxy | 2024/10/28 06:02:47 [006] 200 https://dev.azure.com:443/Repo/Project/_git/Project/git-upload-pack
2024-10-28T06:02:50.9562974Z updater | 2024/10/28 06:02:50 ERROR <job_update_pr_24807> Error during file fetching; aborting: Unable to find `*.sln`, `*.(cs|vb|fs)proj`, or `*.proj` in directory `/src/server`
2024-10-28T06:02:51.0278801Z   proxy | 2024/10/28 06:02:51 [007] POST http://host.docker.internal:46229/update_jobs/update_pr_24807/record_update_job_error
2024-10-28T06:02:51.0289055Z {"data":{"error-type":"dependency_file_not_found","error-details":{"file-path":"/src/server/*.(sln|csproj|vbproj|fsproj|proj)","message":"Unable to find `*.sln`, `*.(cs|vb|fs)proj`, or `*.proj` in directory `/src/server`"}},"type":"record_update_job_error"}
2024-10-28T06:02:51.0293850Z   proxy | 2024/10/28 06:02:51 [007] 200 http://host.docker.internal:46229/update_jobs/update_pr_24807/record_update_job_error
2024-10-28T06:02:51.0378811Z   proxy | 2024/10/28 06:02:51 [008] PATCH http://host.docker.internal:46229/update_jobs/update_pr_24807/mark_as_processed
2024-10-28T06:02:51.0388145Z {"data":{"base-commit-sha":"a1a9ed81b7800aa932efe0918c259bd10b1ce23a"},"type":"mark_as_processed"}
2024-10-28T06:02:51.0395162Z   proxy | 2024/10/28 06:02:51 [008] 200 http://host.docker.internal:46229/update_jobs/update_pr_24807/mark_as_processed
2024-10-28T06:02:51.0403289Z updater | 2024/10/28 06:02:51 INFO <job_update_pr_24807> Finished job processing
2024-10-28T06:02:51.0435228Z updater | 2024/10/28 06:02:51 INFO Results:
2024-10-28T06:02:51.0435708Z updater | Dependabot encountered '1' error(s) during execution, please check the logs for more details.
2024-10-28T06:02:51.0435988Z updater | +---------------------------+
2024-10-28T06:02:51.0436165Z updater | |          Errors           |
2024-10-28T06:02:51.0436538Z updater | +---------------------------+
2024-10-28T06:02:51.0436716Z updater | | dependency_file_not_found |
2024-10-28T06:02:51.0436943Z updater | +---------------------------+
2024-10-28T06:02:51.8921009Z   proxy | 2024/10/28 06:02:51 0/3 calls cached (0%)
2024-10-28T06:02:52.5145346Z     cli | 2024/10/28 06:02:52 updater failure: updater exited with code 1
2024-10-28T06:02:52.5153600Z 
2024-10-28T06:02:52.5159635Z ##[error]Dependabot failed with exit code 1
2024-10-28T06:02:52.5161982Z ##[error]2 update tasks(s) failed, check logs for more information
2024-10-28T06:02:52.5275722Z ##[section]Finishing: Run Dependabot

Directory.Packages.props

<Project>
  <PropertyGroup>
    <ManagePackageVersionsCentrally>true</ManagePackageVersionsCentrally>
    <CentralPackageTransitivePinningEnabled>true</CentralPackageTransitivePinningEnabled>
  </PropertyGroup>
  <ItemGroup>
    <PackageVersion Include="Asp.Versioning.Mvc" Version="8.1.0" />
    <PackageVersion Include="Asp.Versioning.Mvc.ApiExplorer" Version="8.1.0" />
    <PackageVersion Include="AutoFixture" Version="4.18.1" />
    <PackageVersion Include="AutoFixture.Xunit2" Version="4.18.1" />
    <PackageVersion Include="Azure.Data.Tables" Version="12.9.1" />
    <PackageVersion Include="Azure.Extensions.AspNetCore.Configuration.Secrets" Version="1.3.2" />
    <PackageVersion Include="Azure.Extensions.AspNetCore.DataProtection.Blobs" Version="1.3.4" />
    <PackageVersion Include="Azure.Extensions.AspNetCore.DataProtection.Keys" Version="1.2.4" />
    <PackageVersion Include="Azure.Identity" Version="1.13.0" />
    <PackageVersion Include="Azure.Messaging.EventHubs.Processor" Version="5.11.5" />
    <PackageVersion Include="Azure.Storage.Blobs" Version="12.22.2" />
    <PackageVersion Include="Azure.Storage.Queues" Version="12.20.1" />
    <PackageVersion Include="CSharpFunctionalExtensions" Version="3.1.0" />
    <PackageVersion Include="Dapper" Version="2.1.35" />
    <PackageVersion Include="Expecto" Version="10.2.1" />
    <PackageVersion Include="FluentAssertions" Version="6.12.1" />
    <PackageVersion Include="FSharp.Core" Version="8.0.401" />
    <PackageVersion Include="MediatR" Version="12.4.1" />
    <PackageVersion Include="Microsoft.ApplicationInsights" Version="2.22.0" />
    <PackageVersion Include="Microsoft.ApplicationInsights.AspNetCore" Version="2.22.0" />
    <PackageVersion Include="Microsoft.ApplicationInsights.SnapshotCollector" Version="1.4.6" />
    <PackageVersion Include="Microsoft.AspNet.WebApi.Client" Version="6.0.0" />
    <PackageVersion Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.10" />
    <PackageVersion Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.10" />
    <PackageVersion Include="Microsoft.AspNetCore.Mvc.NewtonsoftJson" Version="8.0.10" />
    <PackageVersion Include="Microsoft.AspNetCore.SignalR.Protocols.NewtonsoftJson" Version="8.0.10" />
    <PackageVersion Include="Microsoft.AspNetCore.SpaServices.Extensions" Version="8.0.10" />
    <PackageVersion Include="Microsoft.AspNetCore.TestHost" Version="8.0.10" />
    <PackageVersion Include="Microsoft.Azure.AppConfiguration.AspNetCore" Version="7.3.0" />
    <PackageVersion Include="Microsoft.Azure.Cosmos" Version="3.44.1" />
    <PackageVersion Include="Microsoft.Data.SqlClient" Version="5.2.2" />
    <PackageVersion Include="Microsoft.EntityFrameworkCore" Version="8.0.10" />
    <PackageVersion Include="Microsoft.EntityFrameworkCore.Design" Version="8.0.10">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageVersion>
    <PackageVersion Include="Microsoft.EntityFrameworkCore.InMemory" Version="8.0.10" />
    <PackageVersion Include="Microsoft.EntityFrameworkCore.Proxies" Version="8.0.10" />
    <PackageVersion Include="Microsoft.EntityFrameworkCore.SqlServer" Version="8.0.10" />
    <PackageVersion Include="Microsoft.EntityFrameworkCore.Tools" Version="8.0.10">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
    </PackageVersion>
    <PackageVersion Include="Microsoft.Extensions.Configuration" Version="8.0.0" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.Abstractions" Version="8.0.0" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.Binder" Version="8.0.2" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.EnvironmentVariables" Version="8.0.0" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.FileExtensions" Version="8.0.1" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.Json" Version="8.0.1" />
    <PackageVersion Include="Microsoft.Extensions.Configuration.UserSecrets" Version="8.0.1" />
    <PackageVersion Include="Microsoft.Extensions.Http.Polly" Version="8.0.10" />
    <PackageVersion Include="Microsoft.Extensions.Logging.Abstractions" Version="8.0.2" />
    <PackageVersion Include="Microsoft.Extensions.Logging.ApplicationInsights" Version="2.22.0" />
    <PackageVersion Include="Microsoft.Extensions.Logging.AzureAppServices" Version="8.0.10" />
    <PackageVersion Include="Microsoft.FeatureManagement.AspNetCore" Version="3.5.0" />
    <PackageVersion Include="Microsoft.Graph" Version="5.61.0" />
    <PackageVersion Include="Microsoft.NET.Test.Sdk" Version="17.11.1" />
    <PackageVersion Include="Moq" Version="4.20.72" />
    <PackageVersion Include="Newtonsoft.Json" Version="13.0.3" />
    <PackageVersion Include="Parquet.Net" Version="5.0.1" />
    <PackageVersion Include="Ply" Version="0.3.1" />
    <PackageVersion Include="SkiaSharp" Version="2.88.8" />
    <PackageVersion Include="StackifyMiddleware" Version="3.3.3.4767" />
    <PackageVersion Include="StrawberryShake.Server" Version="13.9.14" />
    <PackageVersion Include="Swashbuckle.AspNetCore" Version="6.9.0" />
    <PackageVersion Include="System.IO.Abstractions" Version="21.0.29" />
    <PackageVersion Include="System.Linq.Async" Version="6.0.1" />
    <PackageVersion Include="System.ServiceModel.Http" Version="8.0.0" />
    <PackageVersion Include="Verify.Xunit" Version="26.6.0" />
    <PackageVersion Include="YoloDev.Expecto.TestSdk" Version="0.14.3" />
    <PackageVersion Include="Microsoft.CodeAnalysis.FxCopAnalyzers" Version="3.3.2" />
    <PackageVersion Include="xunit" Version="2.9.2" />
    <PackageVersion Include="xunit.runner.visualstudio" Version="2.8.2">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageVersion>
    <PackageVersion Include="Xunit.SkippableFact" Version="1.4.13" />
  </ItemGroup>
  <ItemGroup Label="Transitive packages pinned to certain versions due to security vulnerabilites">
    <PackageVersion Include="System.Data.SqlClient" Version="4.8.6" />
    <PackageVersion Include="System.Text.RegularExpressions" Version="4.3.1" />
    <PackageVersion Include="System.Security.Cryptography.Pkcs" Version="8.0.0" />
    <PackageVersion Include="System.Net.Http" Version="4.3.4" />
    <PackageVersion Include="System.Text.Json" Version="8.0.5" />
    <PackageVersion Include="System.Formats.Asn1" Version="8.0.1" />
  </ItemGroup>
</Project>

rhyskoedijk commented 3 weeks ago

@Ossiam seems that Dependabot can't find your project file in the /src/server directory. Is that path correct? If there is definitely a project file in that directory then it might be a problem with this extension,

 Error during file fetching; aborting: Unable to find `*.sln`, `*.(cs|vb|fs)proj`, or `*.proj` in directory `/src/server`

rhyskoedijk commented 1 week ago

@mburumaxwell this can be closed now. The original issue (update_not_possible) is an issue in dependabot-core and can be tracked in https://github.com/dependabot/dependabot-core/issues/10834. A change in Dependabot CLI v1.57.0 has also been made so that when this issue happens, the pull requests will still be created regardless of the error.

The other issue mentioned by @Ossiam looks like a misconfiguration (see https://github.com/tinglesoftware/dependabot-azure-devops/issues/1422#issuecomment-2441327552); Please open a new issue if you believe this is a bug.

tinglesoftware / dependabot-azure-devops

`update_not_possible` error when updating all nuget packages #1422