Impossible to suppress 'Found encrypted data but no privateKey' errors in a specific situation

[ikesyo]

Which Renovate are you using?

Both Renovate Open Source CLI (through the GitHub Action) and WhiteSource Renovate App

Which platform are you using?

GitHub.com

Have you checked the logs? Don't forget to include them if relevant

 INFO: Renovate is exiting with a non-zero code due to the following logged errors
       "loggerErrors": [
         {
           "name": "renovate",
           "level": 50,
           "logContext": "NoojEw2h1",
           "repository": "foo/bar",
           "msg": "Found encrypted data but no privateKey"
         },
         {
           "name": "renovate",
           "level": 50,
           "logContext": "NoojEw2h1",
           "repository": "foo/baz",
           "msg": "Found encrypted data but no privateKey"
         }
       ]
Error: The process '/usr/bin/docker' failed with exit code 1

What would you like to do?

I'd like to suppress the errors in a situation:

• A repository is configured with both A) the Renovate GitHub App and B) the GitHub Action
  • The latter (B) is for updating GitHub Actions versions (Setup using GitHub personal access token config-help#570, Add support to update action in GitHub Actions workflow #5733)
• The repository has encrypted.npmToken and npmrc options in its renovate.json config fifle
  • The npmToken is encrypted using https://app.renovatebot.com/encrypt so can be decrypted only in the Renovate GitHub App
  • That is used to access private npm modules (on A) but that is not needed when updating GitHub Actions (on B)
• Even though I have the following self-hosted config options when running CLI through the GitHub Action (on B), that doesn't take effect:

  • "force": {
      "encrypted": null,
      "npmrc": null
    },

[rarkins]

We might need to add a special case, Eg if force.encrypted === null

[jarnove]

I'm having the same issue in the next scenario:

A repo with the renovate bot
Two other repositories that should be updated automatically, both configured with a fully encrypted npmrc file/value in renovate.json via Encrypted entire .npmrc file into config. (https://docs.renovatebot.com/private-modules/)

"encrypted": {
  "npmrc": "..."
}

Found encrypted data but no privateKey on both repositories.

When I hardcode the npmrc file in the config file, it works, but that's of course not the best solution.

Any ideas?

[viceice]

@jahredhope You can't share encrypted renovate objects between github app and self-hosted bot.

If you like to use encryption with the saelf-hosted bot, you need to create a custom public and private key pair.

checkout https://docs.renovatebot.com/self-hosted-configuration/#privatekey

For more config questions please open a new discussion.