Skip to content

Commit

Permalink
testing commit signing
Browse files Browse the repository at this point in the history
  • Loading branch information
@aalu1418
aalu1418 committed Feb 15, 2024
1 parent b80c70e commit b35d279
Showing 1 changed file with 26 additions and 4 deletions.
30 changes: 26 additions & 4 deletions .github/workflows/dependency-updates.yml
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
name: DependencyUpdater
on:
push: # TODO: remove
workflow_dispatch:
schedule:
- cron: '0 0 * * *' # check every day at midnight UTC
Expand All @@ -22,21 +23,42 @@ jobs:
run: |
prs=$(gh pr list \
--repo "$GITHUB_REPOSITORY" \
--head "bump/solana-${{ steps.solImage.outputs.image }}" \
--head "bump/solana-${{ steps.solImage.outputs.image }}-test" \
--json title \
--jq 'length')
if ((prs > 0)); then
echo "skip=true" >> "$GITHUB_OUTPUT"
fi
- name: "Create new branch if needed"
id: branch
if: '!steps.check.outputs.skip'
run: |

Check failure on line 35 in .github/workflows/dependency-updates.yml

View workflow job for this annotation

GitHub Actions / actionlint

[actionlint] .github/workflows/dependency-updates.yml#L35 

shellcheck reported issue in this script: SC2086:info:1:62: Double quote to prevent globbing and word splitting [shellcheck]
Raw output 
.github/workflows/dependency-updates.yml:35:9: shellcheck reported issue in this script: SC2086:info:1:62: Double quote to prevent globbing and word splitting [shellcheck]

Check failure on line 35 in .github/workflows/dependency-updates.yml

View workflow job for this annotation

GitHub Actions / actionlint

[actionlint] .github/workflows/dependency-updates.yml#L35 

"github.head_ref" is potentially untrusted. avoid using it directly in inline scripts. instead, pass it through an environment variable. see https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions for more details [expression]
Raw output 
.github/workflows/dependency-updates.yml:35:33: "github.head_ref" is potentially untrusted. avoid using it directly in inline scripts. instead, pass it through an environment variable. see https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions for more details [expression]
echo "original=${{ github.head_ref || github.ref_name }}" >> $GITHUB_OUTPUT
git branch "bump/solana-${{ steps.solImage.outputs.image }}-test" # TODO: remove suffix
git push origin "bump/solana-${{ steps.solImage.outputs.image }}-test" # TODO: remove suffix
- uses: planetscale/[email protected]
if: '!steps.check.outputs.skip'
with:
commit_message: "[automated] bump solana dependencies"
repo: ${{ github.repository }}
branch: "bump/solana-${{ steps.solImage.outputs.image }}-test" # TODO: remove suffix
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: "Pull branch from ghcommit push"
if: '!steps.check.outputs.skip'
run: |
git reset --hard
git branch --set-upstream-to=origin/bump/solana-${{ steps.solImage.outputs.image }}-test # TODO: remove prefix
git pull
- name: Create pull request
if: '!steps.check.outputs.skip'
uses: peter-evans/create-pull-request@b1ddad2c994a25fbc81a28b3ec0e368bb2021c50 # v6.0.0
with:
title: "[automated] bump solana image to ${{ steps.solImage.outputs.image }}"
branch: bump/solana-${{ steps.solImage.outputs.image }}
author: "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
base: ${{ steps.branch.outputs.original }}
branch: bump/solana-${{ steps.solImage.outputs.image }}-test # TODO: remove suffix
# author: "github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>"
reviewers: aalu1418
commit-message: "[automated] bump solana dependencies"
body: |
Latest Solana mainnet release is [\"${{ steps.solImage.outputs.image }}\"](https://github.com/solana-labs/solana/releases/latest)
(run CI by closing + reopening PR)
Expand Down

0 comments on commit b35d279

Please sign in to comment.