Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump github/branch-deploy from 9 to 10 in the github-actions group #352

Merged
merged 2 commits into from
Jan 21, 2025
Merged

Bump github/branch-deploy from 9 to 10 in the github-actions group #352

merged 2 commits into from
Jan 21, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 1, 2025

Bumps the github-actions group with 1 update: github/branch-deploy.

Updates github/branch-deploy from 9 to 10

Release notes

Sourced from github/branch-deploy's releases.

v10.0.0

v10 of the github/branch-deploy Action is focused around safety, security, and usability improvements 🚀

BREAKING

Please note that even though there are breaking changes listed, the vast majority of users should be able to simply upgrade to github/branch-deploy@v10 without any issues

  • The checks input option can now be used with a comma separated list of CI checks if you only want certain checks to be considered "blocking" in terms of deployments. Read more here.
  • Pull requests in the CHANGES_REQUESTED state are now treated the same as PRs in the REVIEW_REQUIRED state.
  • The structure and content of the pre/post deployment messages (that get written to PRs) has changed to contain more rich information. This isn't really a breaking change, but it could be if you are parsing these comments in some way.
  • The deployment payload that gets set to the GitHub API will now contain two new attributes: params and parsed_params
  • By default, you can no longer .deploy or .noop a pull request fork unless it has approvals - reference. These changes have been made as an extra safety check against potentially untrusted commits
  • You will no longer be able to deploy a pull request if the target branch is not the default branch - reference1 reference2

Key Changes

  • You should use ${{ steps.branch-deploy.outputs.sha }} everywhere instead of ${{ steps.branch-deploy.outputs.ref }} - documentation
  • The structure of the deployment payload that gets sent to the GitHub API has a few new attributes - documentation
  • You can now have fine grained control to include or ignore CI checks that can (or can't) block your deployments - documentation
  • The message rendering system for pre/post deployment messages has been greatly improved. It now has many more variables for custom deployment messages and the default structures have been updated a bit - PR reference
  • A new input option has been added commit_verification: true that enforces commits to be signed/verified before they can be deployed by this Action - PR reference
  • A lot of new outputs have been added so subsequent workflow steps have access to even more rich data related to deployments
  • Preventing the ability to deploy a pull request that is not targeting the default branch
  • Branch ruleset warning checks - If you have a potential security misconfiguration in your branch rulesets, this Action will loudly warn you about it in the deployment logs
  • The sha output is now available on "Merge commit strategy" deployments as well

What's Changed

Here is a full list of changes:

... (truncated)

Commits
  • 1ba61f9 publish v10
  • a6f4541 Merge pull request #346 from github/commit-verification-text-update
  • 6a4ed7b update the text that gets returned when a commit verification fails
  • 1c7b2cc Merge pull request #345 from github/branch-ruleset-fixes
  • 8971daa gracefully handle cases where an org/user does not have repo rulesets availab...
  • 305bb05 rename to rulesets
  • 242b260 move the logging of commit SHAs in post deploys further down
  • 3d4735a Merge pull request #344 from github/unlock-on-merge-improvements
  • 4a9ed04 check for lock branches before checking for lock files - also add coloring
  • 304e4d2 Merge pull request #343 from github/improvements
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump github/branch-deploy from 9 to 10 in the github-actions group
2a96533 
Bumps the github-actions group with 1 update: [github/branch-deploy](https://github.com/github/branch-deploy).


Updates `github/branch-deploy` from 9 to 10
- [Release notes](https://github.com/github/branch-deploy/releases)
- [Commits](github/branch-deploy@v9...v10)

---
updated-dependencies:
- dependency-name: github/branch-deploy
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 1, 2025
@dependabot dependabot bot requested a review from a team as a code owner January 1, 2025 00:08
@dependabot dependabot bot added the github_actions Pull requests that update GitHub Actions code label Jan 1, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jan 1, 2025

👋 Thanks for opening a pull request!

If you are new, please check out the trimmed down summary of our deployment process below:

  1. 👀 Observe the CI jobs and tests to ensure they are passing

  2. ✔️ Obtain an approval/review on this pull request

  3. 🚀 Deploy your pull request to the development environment with .deploy to development

  4. 🚀 Deploy your pull request to the production environment with .deploy

    If anything goes wrong, rollback with .deploy main

  5. 🎉 Merge!

Need help? Type .help as a comment or visit the usage guide for more details

Please note, if you have a more complex change, it is advised to claim a deployment lock with .lock <environment> --reason <reason> to prevent other deployments from happening while you are working on your change.

Once your PR has been merged, you can remove the lock with .unlock <environment>.

@Razzmatazzz
Copy link
Member

.deploy

@github-actions GitHub Actions
Copy link
Contributor

Deployment Triggered 🚀

Razzmatazzz, started a branch deployment to production

You can watch the progress here 🔗

Branch: dependabot/github_actions/github-actions-b2f618c0a6

@github-actions GitHub Actions
Copy link
Contributor

API Deployment - Production 🌔

The API has been deployed to the production environment 🚀

Pusher: @Razzmatazzz, Action: issue_comment, Workflow: branch-deploy;

@github-actions GitHub Actions
Copy link
Contributor

Deployment Results ✅

Razzmatazzz successfully deployed branch dependabot/github_actions/github-actions-b2f618c0a6 to production

Environment URL: api.tarkov.dev/graphql

@Razzmatazzz Razzmatazzz merged commit 4786fb3 into main Jan 21, 2025
4 checks passed
@Razzmatazzz Razzmatazzz deleted the dependabot/github_actions/github-actions-b2f618c0a6 branch January 21, 2025 00:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Razzmatazzz Razzmatazzz Razzmatazzz approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Razzmatazzz