Apply migration from 0.16.0 to 0.17.0

llucax · llucax · commit 8eeecb3b429e · 2026-05-04T14:10:43.000+02:00
For some reason the dependabot PR updated the dependency to v0.17.0 but
the PR and commit description said it was updated to v0.16.0, so the
migration script ran for v0.15.0 and v0.16.0 but not v0.17.0.

We now run the missing migration. Output:

```
Migrating workflows to use ubuntu-slim runner for lightweight jobs...
  Skipped .github/workflows/ci.yaml: already uses ubuntu-slim for job nox-all
  Skipped .github/workflows/ci.yaml: already uses ubuntu-slim for job test-installation-all
  Skipped .github/workflows/ci.yaml: already uses ubuntu-slim for job create-github-release
  Updated .github/workflows/ci.yaml: migrated job publish-to-pypi to ubuntu-slim
  Skipped .github/workflows/release-notes-check.yml: already uses ubuntu-slim for job check-release-notes
  Skipped .github/workflows/dco-merge-queue.yml: already uses ubuntu-slim for job DCO
  Skipped .github/workflows/labeler.yml: already uses ubuntu-slim for job Label
========================================================================
Migrating pyproject license metadata to SPDX format...
  Skipped pyproject.toml (already up to date)
========================================================================
Adding flake8-datetimez plugin to dev-flake8 dependencies...
  Skipped pyproject.toml (flake8-datetimez already present)
========================================================================
Fixing dependabot repo-config and mkdocstrings patterns...
  Skipped .github/dependabot.yml: repo-config patterns already updated
  Skipped .github/dependabot.yml: mkdocstrings patterns already updated
  Skipped .github/dependabot.yml (already up to date)
========================================================================
Migrating auto-dependabot workflow to use GitHub App token...
  Replacing .github/workflows/auto-dependabot.yaml with updated workflow (overwriting any local changes)
========================================================================
Migrating the CI workflows to use a platform matrix...
  - .github/workflows/ci.yaml
    Already uses platform matrix
========================================================================
Installing repo-config migration workflow...
  Replacing .github/workflows/repo-config-migration.yaml with updated workflow (overwriting any local changes)
  Updated .github/workflows/auto-dependabot.yaml: added repo-config group exclusion
========================================================================
Updating 'Protect version branches' GitHub ruleset...
  Ruleset 'Protect version branches' is already up to date
========================================================================
```

Signed-off-by: Leandro Lucarella &lt;luca-frequenz@llucax.com&gt;
diff --git a/.github/workflows/auto-dependabot.yaml b/.github/workflows/auto-dependabot.yaml
@@ -25,7 +25,7 @@ jobs:
     steps:
       - name: Generate GitHub App token
         id: app-token
-        uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3.1.1
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
         with:
           app-id: ${{ secrets.FREQUENZ_AUTO_DEPENDABOT_APP_ID }}
           private-key: ${{ secrets.FREQUENZ_AUTO_DEPENDABOT_APP_PRIVATE_KEY }}
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -314,7 +314,7 @@ jobs:
   publish-to-pypi:
     name: Publish packages to PyPI
     needs: ["create-github-release"]
-    runs-on: ubuntu-24.04
+    runs-on: ubuntu-slim
     permissions:
       # For trusted publishing. See:
       # https://blog.pypi.org/posts/2023-04-20-introducing-trusted-publishers/
diff --git a/.github/workflows/repo-config-migration.yaml b/.github/workflows/repo-config-migration.yaml
@@ -19,7 +19,6 @@
 name: Repo Config Migration
 
 on:
-  merge_group:  # To allow using this as a required check for merging
   pull_request_target:
     types: [opened, synchronize, reopened, labeled, unlabeled]
 
@@ -31,23 +30,17 @@ permissions:
 jobs:
   repo-config-migration:
     name: Migrate Repo Config
-    # Skip if it was triggered by the merge queue. We only need the workflow to
-    # be executed to meet the "Required check" condition for merging, but we
-    # don't need to actually run the job, having the job present as Skipped is
-    # enough.
-    if: |
-      github.event_name == 'pull_request_target' &&
-      contains(github.event.pull_request.title, 'the repo-config group')
+    if: contains(github.event.pull_request.title, 'the repo-config group')
     runs-on: ubuntu-24.04
     steps:
       - name: Generate token
         id: create-app-token
-        uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3.1.1
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
         with:
           app-id: ${{ secrets.FREQUENZ_AUTO_DEPENDABOT_APP_ID }}
           private-key: ${{ secrets.FREQUENZ_AUTO_DEPENDABOT_APP_PRIVATE_KEY }}
       - name: Migrate
-        uses: frequenz-floss/gh-action-dependabot-migrate@45994e185a9040449304a470e8f02d0e197873b4 # v1.1.1
+        uses: frequenz-floss/gh-action-dependabot-migrate@07dc7e74726498c50726a80cc2167a04d896508f # v1.0.0
         with:
           script-url-template: >-
             https://raw.githubusercontent.com/frequenz-floss/frequenz-repo-config-python/{version}/cookiecutter/migrate.py
