helpers:pinGitHubActionDigestsToSemver silently skips non-semver actions #43337
Unanswered
dontgitit
asked this question in
Request Help
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
How are you running Renovate?
Self-hosted Renovate CLI (via
renovatebot/github-action)Which platform are you running Renovate on?
GitHub.com
Which version of Renovate are you using?
43.x (action default)
Please tell us more about your question or problem
The
helpers:pinGitHubActionDigestsToSemverpreset silently skips GitHub Actions that use major-only tags (e.g.,v6,v21) because itsextractVersionregex requires full semver:extractVersion: '^(?<version>v?\\d+\\.\\d+\\.\\d+)$'This conflicts with the new
github-actionsversioning added in #42713 / v43.138.0, which correctly handles major-only tags viasemver.coerce().Expected behavior:
Actions using major-only tags should be detected for updates when using
helpers:pinGitHubActionDigestsToSemver, since the underlying manager now supports this.Current behavior:
Actions with major-only tags (e.g.,
dawidd6/action-download-artifactwhich usesv6,v21) are silently skipped — no updates are proposed, no warnings appear in the dependency dashboard.Reproduction:
renovate.json5:
Workflow file:
No updates will be proposed for this action despite newer versions existing.
Workaround:
Add a package rule with
versioning: loosefor affected actions:Suggested fix:
Update
helpers:pinGitHubActionDigestsToSemverto use the newgithub-actionsversioning instead of the custom regex versioning, while preserving theextractVersionregex so that comments still show full semver (e.g.,# v6.0.2instead of# v6).Related:
github-actionsversioning by default #42713 - feat(manager/github-actions): usegithub-actionsversioning by defaultBeta Was this translation helpful? Give feedback.
All reactions