fix(ci): rebuild weekly-update.yml, add .node-version

jdalton · jdalton · commit ee58d73fc0d5 · 2026-03-25T19:18:24.000-04:00
Add .node-version (25.8.2), remove .node-version from .gitignore.
Add notify job, job summary, set +e/PIPESTATUS exit code capture,
persist-credentials: false with git remote set-url for push auth,
PR body via variable construction.
diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml
@@ -27,25 +27,22 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
-          fetch-depth: 0
           persist-credentials: false
 
+      - name: Setup pnpm
+        uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5
+
       - name: Setup Node.js
         uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version-file: .node-version
-          cache: ''
-
-      - name: Setup pnpm
-        uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5
+          cache: 'pnpm'
 
       - name: Install dependencies
-        shell: bash
         run: pnpm install --frozen-lockfile
 
       - name: Check for npm updates
         id: check
-        shell: bash
         run: |
           echo "Checking for npm package updates..."
           HAS_UPDATES=false
@@ -59,7 +56,7 @@ jobs:
   apply-updates:
     name: Apply updates with Claude Code
     needs: check-updates
-    if: needs.check-updates.outputs.has-updates == 'true' && github.event.inputs.dry-run != 'true'
+    if: needs.check-updates.outputs.has-updates == 'true' && inputs.dry-run != true
     runs-on: ubuntu-latest
     permissions:
       contents: write
@@ -71,59 +68,63 @@ jobs:
           fetch-depth: 0
           persist-credentials: false
 
+      - name: Setup pnpm
+        uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5
+
       - name: Setup Node.js
         uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version-file: .node-version
-          cache: ''
-
-      - name: Setup pnpm
-        uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5
+          cache: 'pnpm'
 
       - name: Install dependencies
-        shell: bash
         run: pnpm install --frozen-lockfile
 
       - name: Install Claude Code
-        shell: bash
         run: npm install -g @anthropic-ai/claude-code
 
       - name: Create update branch
         id: branch
-        shell: bash
+        env:
+          GH_TOKEN: ${{ github.token }}
         run: |
           BRANCH_NAME="weekly-update-$(date +%Y%m%d)"
           git config user.name "github-actions[bot]"
           git config user.email "github-actions[bot]@users.noreply.github.com"
+          git remote set-url origin "https://x-access-token:${GH_TOKEN}@github.com/${{ github.repository }}.git"
           git checkout -b "$BRANCH_NAME"
           echo "branch=$BRANCH_NAME" >> $GITHUB_OUTPUT
 
       - name: Run updating skill with Claude Code
         id: claude
         timeout-minutes: 30
-        shell: bash
         env:
           ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
           CI: 'true'
           GITHUB_ACTIONS: 'true'
         run: |
           if [ -z "$ANTHROPIC_API_KEY" ]; then
-            echo "⚠️  ANTHROPIC_API_KEY not set - skipping automated update"
+            echo "ANTHROPIC_API_KEY not set - skipping automated update"
             echo "success=false" >> $GITHUB_OUTPUT
             exit 0
           fi
 
-          set -o pipefail
+          set +e
           claude --print --dangerously-skip-permissions \
             --model sonnet \
             "/updating - Run the updating skill to update all dependencies. Create atomic commits for each update. You are running in CI mode - skip builds and tests. Do not push or create a PR." \
             2>&1 | tee claude-output.log
+          CLAUDE_EXIT=${PIPESTATUS[0]}
+          set -e
 
-          echo "success=true" >> $GITHUB_OUTPUT
+          if [ "$CLAUDE_EXIT" -eq 0 ]; then
+            echo "success=true" >> $GITHUB_OUTPUT
+          else
+            echo "success=false" >> $GITHUB_OUTPUT
+          fi
 
       - name: Check for changes
         id: changes
-        shell: bash
         run: |
           if [ -n "$(git status --porcelain)" ] || [ "$(git rev-list --count HEAD ^origin/main)" -gt 0 ]; then
             echo "has-changes=true" >> $GITHUB_OUTPUT
@@ -133,52 +134,78 @@ jobs:
 
       - name: Push branch
         if: steps.claude.outputs.success == 'true' && steps.changes.outputs.has-changes == 'true'
-        shell: bash
         env:
-          GH_TOKEN: ${{ github.token }}
           BRANCH_NAME: ${{ steps.branch.outputs.branch }}
-        run: |
-          git remote set-url origin "https://x-access-token:${GH_TOKEN}@github.com/${{ github.repository }}.git"
-          git push origin "$BRANCH_NAME"
+        run: git push origin "$BRANCH_NAME"
 
       - name: Create Pull Request
         if: steps.claude.outputs.success == 'true' && steps.changes.outputs.has-changes == 'true'
-        shell: bash
         env:
           GH_TOKEN: ${{ github.token }}
           BRANCH_NAME: ${{ steps.branch.outputs.branch }}
         run: |
           COMMITS=$(git log --oneline origin/main..HEAD)
           COMMIT_COUNT=$(git rev-list --count origin/main..HEAD)
 
+          PR_BODY="## Weekly Dependency Update"$'\n\n'
+          PR_BODY+="Automated weekly update of npm packages."$'\n\n'
+          PR_BODY+="---"$'\n\n'
+          PR_BODY+="### Commits (${COMMIT_COUNT})"$'\n\n'
+          PR_BODY+="<details>"$'\n'
+          PR_BODY+="<summary>View commit history</summary>"$'\n\n'
+          PR_BODY+="\`\`\`"$'\n'
+          PR_BODY+="${COMMITS}"$'\n'
+          PR_BODY+="\`\`\`"$'\n\n'
+          PR_BODY+="</details>"$'\n\n'
+          PR_BODY+="---"$'\n\n'
+          PR_BODY+="<sub>Generated by [weekly-update.yml](.github/workflows/weekly-update.yml)</sub>"
+
           gh pr create \
             --title "chore(deps): weekly dependency update ($(date +%Y-%m-%d))" \
-            --body "## Weekly Dependency Update
-
-          Automated weekly update of npm packages.
-
-          ### Commits (${COMMIT_COUNT})
-
-          <details>
-          <summary>View commit history</summary>
-
-          \`\`\`
-          ${COMMITS}
-          \`\`\`
-
-          </details>
-
-          ---
-
-          <sub>Generated by [weekly-update.yml](.github/workflows/weekly-update.yml)</sub>" \
+            --body "$PR_BODY" \
             --draft \
             --head "$BRANCH_NAME" \
             --base main
 
+      - name: Add job summary
+        if: steps.claude.outputs.success == 'true' && steps.changes.outputs.has-changes == 'true'
+        env:
+          BRANCH_NAME: ${{ steps.branch.outputs.branch }}
+        run: |
+          COMMIT_COUNT=$(git rev-list --count origin/main..HEAD)
+          echo "## Weekly Update Complete" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "**Branch:** \`${BRANCH_NAME}\`" >> $GITHUB_STEP_SUMMARY
+          echo "**Commits:** ${COMMIT_COUNT}" >> $GITHUB_STEP_SUMMARY
+
       - name: Upload Claude output
         if: always()
         uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: claude-output-${{ github.run_id }}
           path: claude-output.log
           retention-days: 7
+
+  notify:
+    name: Notify results
+    needs: [check-updates, apply-updates]
+    if: always()
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    steps:
+      - name: Report status
+        env:
+          HAS_UPDATES: ${{ needs.check-updates.outputs.has-updates }}
+          DRY_RUN: ${{ inputs.dry-run }}
+        run: |
+          if [ "$HAS_UPDATES" = "true" ]; then
+            if [ "$DRY_RUN" = "true" ]; then
+              echo "Updates available (dry-run mode - no PR created)"
+            else
+              echo "Weekly update workflow completed"
+              echo "Check the PRs tab for the automated update PR"
+            fi
+          else
+            echo "All dependencies are up to date - no action needed!"
+          fi
diff --git a/.gitignore b/.gitignore
@@ -15,7 +15,6 @@ Thumbs.db
 # ============================================================================
 # Node.js dependencies and configuration
 # ============================================================================
-.node-version
 .npmrc.local
 .nvm
 .pnpmfile.cjs
diff --git a/.node-version b/.node-version
@@ -0,0 +1 @@
+25.8.2
