Skip to content

Build(deps): Bump EnricoMi/publish-unit-test-result-action from 1.17 to 2.7 #26

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 6 commits into
base: master
Choose a base branch
from
Open

Build(deps): Bump EnricoMi/publish-unit-test-result-action from 1.17 to 2.7 #26

dependabot wants to merge 6 commits into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Sep 18, 2024
edited by grom72
Loading

Bumps EnricoMi/publish-unit-test-result-action from 1.17 to 2.7.

Release notes

Sourced from EnricoMi/publish-unit-test-result-action's releases.

v2.7.0

Adds the following features:

  • Add test time to case annotation (test failures and errors) (#439)
  • Allow to publish job summary for pull_request event on fork (#441)
  • Links in comments point to README.md version that matches the used action (#432)

v2.6.2

Fixes the following issues:

  • Publish comment on the pull request of the event, or on the pull request of the commit otherwise (#438)

In contrast to v2.6.1, the action falls back to the commit's pull requests when the event does not provide a PR.

v2.6.1

Fixes the following issues:

  • Publish comments only to the pull request that triggered the action (not all commit's pull requests) (#428)

This means that the action only publishes pull request comments on pull_request events (and workflow_run events triggered from pull_request events). The action running on either pull request used to overwrite the other pull request's results. This is not useful since different pull requests that share a commit may have different results.

v2.6.0

Adds the following features:

  • Reduce likelihood of secondary rate limit errors (#425)

v2.5.0

Adds the following features:

  • Add support for Dart and Mocha JSON test results (#404)
  • Speed up composite action by caching PIP packages (#418, #422)
  • Speed up package installation by always installing wheel package
  • Pin versions of all transient dependencies so that composite action always uses the same versions (#421)
  • Speed up parsing large TRX files by adding lookup index (#417)
  • Restrict XSLT permissions used for non-JUnit XML files (#415)
  • Add explicit number typing to XSLT (#416)

v2.4.2

Fixes the following issues:

  • Fix list of added/removed tests when test list is spread over multiple annotations (#407)
  • Log detected file types only if there actually are files
  • Remove deprecation comment from composite action.yaml

v2.4.1

Adds the following features:

  • Auto-detect file format, re-introduce the FILES option (#395)
  • Add option to parse XML with huge tree option (#400)

v2.3.0

Adds the following features:

  • Add suite logs as annotations (#392)
  • Add action_fail option to fail publish action on test failures (#378)
  • Fix action example that fetches all artifacts from triggering workflow (84dbe97e32cee14268d9642598ea2e5991d25417)
  • Upgrade all dependencies except lxml to latest (#394)

... (truncated)

Commits
  • 4e7013f Releasing v2.7.0
  • 68c617d Allow to publish job summary for pull_request event on fork (#441)
  • c8e55ea Add test time to case annotation (#439)
  • d7c2936 Update links on comments to point to the used version (#432)
  • 39ee91a Releasing v2.6.2
  • 9d34049 Fix wording in event type section
  • 6334727 Fix new section
  • 9d7bc1c Add section on different events types
  • 45f3496 Publish comment on pull request of event, or of commit otherwise (#438)
  • b2e8ee2 Add link for .Net testint
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

This change is Reviewable

grom72 and others added 6 commits September 16, 2024 12:58
@grom72
SRE-2454 common: fix license to follow SPDX rules
96f76c9 
Github license tool claims too low similarity with
SPDX reference license:
"BSD-2-Clause-Patent similarity:  96.30%"
At least 98% is expected.

Scorecard result will not change due to separate issue with Github
(ossf/scorecard#4347 (comment))
Github does not recognize fully BSD-2-Clause-Patent license.

Doc-only: true

Required-githooks: true

Signed-off-by: Tomasz Gromadzki <[email protected]>
@grom72
Update scorecard action to the latest version
17f9299 
as suggested in
ossf/scorecard#4347 (comment)

Required-githooks: true

Signed-off-by: Tomasz Gromadzki <[email protected]>
@grom72
Merge pull request #21 from grom72/grom72/LICENSE
d85aff5 
Grom72/license
@grom72
Create dependabot.yml
fcb997d
@grom72
Merge pull request #22 from grom72/grom72-patch-1
a32d496 
Create dependabot.yml
@dependabot
Build(deps): Bump EnricoMi/publish-unit-test-result-action
3cf6df4 
Bumps [EnricoMi/publish-unit-test-result-action](https://github.com/enricomi/publish-unit-test-result-action) from 1.17 to 2.7.
- [Release notes](https://github.com/enricomi/publish-unit-test-result-action/releases)
- [Commits](EnricoMi/publish-unit-test-result-action@v1.17...v2.7)

---
updated-dependencies:
- dependency-name: EnricoMi/publish-unit-test-result-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 18, 2024
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 18, 2024
View reviewed changes
.github/workflows/ci2.yml
- name: Publish NLT test results
if: always()
uses: EnricoMi/publish-unit-test-result-action@v1.17
uses: EnricoMi/publish-unit-test-result-action@v2.7

Check warning

Code scanning / Scorecard

Pinned-Dependencies

score is 1: third-party GitHubAction not pinned by hash Click Remediation section below to solve this issue
.github/workflows/landing-builds.yml
- name: Publish NLT test results
if: always()
uses: EnricoMi/publish-unit-test-result-action@v1.17
uses: EnricoMi/publish-unit-test-result-action@v2.7

Check warning

Code scanning / Scorecard

Pinned-Dependencies

score is 1: third-party GitHubAction not pinned by hash Click Remediation section below to solve this issue
.github/workflows/rpm-build-and-test.yml
if: (!cancelled()) && (success() || failure()) &&
steps.run-test.outcome != 'skipped'
uses: EnricoMi/publish-unit-test-result-action@v2
uses: EnricoMi/publish-unit-test-result-action@v2.7

Check warning

Code scanning / Scorecard

Pinned-Dependencies

score is 1: third-party GitHubAction not pinned by hash Click Remediation section below to solve this issue
.github/workflows/rpm-build-and-test.yml
if: (!cancelled()) && (success() || failure()) &&
steps.run-test.outcome != 'skipped'
uses: EnricoMi/publish-unit-test-result-action@v2
uses: EnricoMi/publish-unit-test-result-action@v2.7

Check warning

Code scanning / Scorecard

Pinned-Dependencies

score is 1: third-party GitHubAction not pinned by hash Click Remediation section below to solve this issue
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@grom72