Skip to content

Release Candidate for 2.1.2: Update CI/CD actions and improve recv module documentation for next stable #551

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
reactive-firewall wants to merge 39 commits into
base: stable
Choose a base branch
from
Open

Release Candidate for 2.1.2: Update CI/CD actions and improve recv module documentation for next stable #551

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
39 commits
Select commit Hold shift + click to select a range
0950bb4
[DOCUMENATION] Improved recv module documentation slightly
reactive-firewall Feb 21, 2026
964352c
[STYLE] Improvements as discussed in review (- WIP PR #529 -)
reactive-firewall Feb 22, 2026
e5918a6
[DOCUMENTATION] Minor fixes to documentation from review (- WIP PR #5…
reactive-firewall Feb 22, 2026
10a484f
[DOCUMENTATION] Reworded for technical accuracy.
reactive-firewall Feb 23, 2026
05e975a
[UPDATE] (deps): Bump actions/setup-go in /.github/workflows
dependabot[bot] Mar 3, 2026
f9bce3e
[UPDATE] (deps): Bump reactive-firewall/shellcheck-scan
dependabot[bot] Mar 3, 2026
71e7167
[UPDATE] (deps): Bump github/codeql-action in /.github/workflows
dependabot[bot] Mar 3, 2026
ae85967
Update .github/workflows/shellcheck.yml
reactive-firewall Mar 3, 2026
c1044d3
[UPDATE] Update to use v2.1.1 as base
reactive-firewall Mar 4, 2026
9d1cdc6
[UPDATE] (deps): Bump actions/upload-artifact in /.github/workflows
dependabot[bot] Mar 4, 2026
97d5ccd
[UPDATE] (deps): Bump actions/download-artifact in /.github/workflows
dependabot[bot] Mar 4, 2026
649b038
[SYNC] Synced with v2.1.1 (- WIP PR #534 -)
reactive-firewall Mar 4, 2026
d649d74
[SYNC] Synced with version 2.1.1
reactive-firewall Mar 4, 2026
2a019da
[SYNC] Synced with version v2.1.1 (- WIP PR #535 -)
reactive-firewall Mar 4, 2026
1f213d4
[UPDATE] Add missing actions/upload-artifact updates to v7.0.0 (- WIP…
reactive-firewall Mar 4, 2026
20b0e98
[UPDATE] Add missing actions/download-artifact updates
reactive-firewall Mar 4, 2026
54fe2d3
[SECURITY] Configure per-run ID tagged download actions to error on d…
reactive-firewall Mar 4, 2026
951d6ef
[UPDATE] Merge multiple updates into master (- WIP PR #529 -)
reactive-firewall Mar 5, 2026
37dc099
[UPDATE] Version bump setup-go for makefile linting in CI/CD (- WIP P…
reactive-firewall Mar 5, 2026
f589c80
[UPDATE] (deps): Bump actions/attest-build-provenance
dependabot[bot] Mar 10, 2026
512b398
[UPDATE] (deps): Bump reactive-firewall/shellcheck-scan
dependabot[bot] Mar 10, 2026
29b14da
[UPDATE] (deps): Bump github/codeql-action in /.github/workflows
dependabot[bot] Mar 10, 2026
ced586c
[UPDATE] Refactor to use pure attest instead of wrapper.
reactive-firewall Mar 12, 2026
3fd4158
[UPDATE] Multiple version bumps
reactive-firewall Mar 12, 2026
269b26a
[UPDATE] (deps): Bump actions/download-artifact in /.github/workflows
dependabot[bot] Mar 17, 2026
ee9babc
[UPDATE] (deps): Bump actions/cache in /.github/workflows
dependabot[bot] Mar 24, 2026
1c90726
[UPDATE] (deps): Bump github/codeql-action in /.github/workflows
dependabot[bot] Mar 31, 2026
0dbcd23
[UPDATE] (deps): Bump codecov/codecov-action in /.github/workflows
dependabot[bot] Mar 31, 2026
15b99a3
[UPDATE] (deps): Bump actions/setup-go in /.github/workflows
dependabot[bot] Mar 31, 2026
fe3981a
[UPDATE] Also bump GHA actions to use download-artifact v8.0.1 (- WIP…
reactive-firewall Apr 2, 2026
fe35f91
[UPDATE] also update GHA to use codecov/codecov-action v6 (- WIP PR #…
reactive-firewall Apr 2, 2026
b0ef559
[MERGE] Superseds PRs #543 #547 #548 #549 #550
reactive-firewall Apr 2, 2026
314cc97
[HOTFIX] Possible fix for pip-licenses update regression
reactive-firewall Apr 4, 2026
494283f
[SECURITY] Fix for possible CWE-601
reactive-firewall Apr 4, 2026
3ab200c
[DEPENDENCIES] Possible fix for CI/CD License check false failures
reactive-firewall Apr 5, 2026
627a4a1
[UPDATE] (deps): Bump actions/upload-artifact in /.github/workflows
dependabot[bot] Apr 14, 2026
9b29654
[UPDATE] (deps): Bump actions/cache in /.github/workflows
dependabot[bot] Apr 14, 2026
365032f
[PATCH] Also version bump reusable GHA workflows for actions/upload-a…
reactive-firewall Apr 14, 2026
7d5e74f
[UPDATE] version bumps for GHA
reactive-firewall Apr 15, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 32 additions & 3 deletions .github/actions/check-control/action.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -192,11 +192,40 @@ runs:
printf "check_date=%s\n" $(TZ=UTC date -Iseconds | cut -d+ -f1-1) >> "$GITHUB_OUTPUT"
- id: output_check_details_url
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
env:
CI_INPUT_TARGET_URL: '${{ inputs.details-url }}'
SAFEURL: 'https://github.com/'
shell: bash
run: |
if [[ "${{ inputs.details-url }}" != "DEFAULT" ]] ; then
printf "details_url=%s\n" '${{ inputs.details-url }}' >> "$GITHUB_OUTPUT"
printf "::debug:: %s\n" "Check detail url was provided: ${{ inputs.details-url }}" ;
set -euo pipefail
raw_input="${CI_INPUT_TARGET_URL}"
# Reject NUL or newline immediately
if printf '%s' "$raw_input" | grep -q '[^[:print:]]'; then
printf "::error title='Invalid':: %s\n" "Error: input contains disallowed control characters" >&2
exit 1
fi
# Strip one level of surrounding quotes and trim whitespace
normalize() {
local s="$1"
s="${s#"${s%%[![:space:]]*}"}"
s="${s%"${s##*[![:space:]]}"}"
if [[ (${s:0:1} == "'" && ${s: -1} == "'") || (${s:0:1} == '"' && ${s: -1} == '"') ]]; then
s="${s:1:-1}"
fi
if [[ "$s" == *$'\n'* ]] || [[ "$s" == *$'\r'* ]]; then
printf "::error title='Invalid Detail Link'::%s\n" "Input contains newline or CR" >&2
return 125
fi
if [[ "$s" == *$'::'* ]] || [[ "$s" == *$'##'* ]]; then
printf "::error title='Invalid Detail Link'::%s\n" "Input contains anomalies" >&2
return 125
fi
printf '%s' "$s"
}
input_url="$(normalize "$raw_input")"
if [[ "${input_url:0:7}" != "DEFAULT" ]] && [[ "${input_url:0:19}" == "${SAFEURL}" ]] ; then
printf "details_url=%s\n" "${input_url}" >> "$GITHUB_OUTPUT"
printf "::debug:: %s\n" "Check detail url was provided: ${input_url}" ;
else
if [[ "${{ inputs.workflow-run-id }}" != "" ]] ; then
printf "details_url=%s\n" 'https://github.com/reactive-firewall-org/multicast/actions/runs/${{ github.run_id }}' >> "$GITHUB_OUTPUT"
Comment on lines +225 to 231
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot Apr 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🟡 Minor

Use inputs.workflow-run-id when rebuilding the fallback details URL.

If details-url is omitted or rejected, Line 231 still points at the current github.run_id instead of the caller-supplied workflow-run-id. That yields a wrong check link as soon as this action is used to operate on a different workflow run.

🐛 Proposed fix 
-        if [[ "${input_url:0:7}" != "DEFAULT" ]] && [[ "${input_url:0:19}" == "${SAFEURL}" ]] ; then
+        if [[ "$input_url" != "DEFAULT" ]] && [[ "$input_url" == "${SAFEURL}"* ]] ; then
           printf "details_url=%s\n" "${input_url}" >> "$GITHUB_OUTPUT"
           printf "::debug:: %s\n" "Check detail url was provided: ${input_url}" ;
         else
           if [[ "${{ inputs.workflow-run-id }}" != "" ]] ; then
-            printf "details_url=%s\n" 'https://github.com/reactive-firewall-org/multicast/actions/runs/${{ github.run_id }}' >> "$GITHUB_OUTPUT"
+            printf "details_url=%s\n" 'https://github.com/reactive-firewall-org/multicast/actions/runs/${{ inputs.workflow-run-id }}' >> "$GITHUB_OUTPUT"
             printf "::debug:: %s\n" "Check detail url was created from workflow ${{ inputs.workflow-run-id }}" ;
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
input_url="$(normalize "$raw_input")"
if [[ "${input_url:0:7}" != "DEFAULT" ]] && [[ "${input_url:0:19}" == "${SAFEURL}" ]] ; then
printf "details_url=%s\n" "${input_url}" >> "$GITHUB_OUTPUT"
printf "::debug:: %s\n" "Check detail url was provided: ${input_url}" ;
else
if [[ "${{ inputs.workflow-run-id }}" != "" ]] ; then
printf "details_url=%s\n" 'https://github.com/reactive-firewall-org/multicast/actions/runs/${{ github.run_id }}' >> "$GITHUB_OUTPUT"
input_url="$(normalize "$raw_input")"
if [[ "$input_url" != "DEFAULT" ]] && [[ "$input_url" == "${SAFEURL}"* ]] ; then
printf "details_url=%s\n" "${input_url}" >> "$GITHUB_OUTPUT"
printf "::debug:: %s\n" "Check detail url was provided: ${input_url}" ;
else
if [[ "${{ inputs.workflow-run-id }}" != "" ]] ; then
printf "details_url=%s\n" 'https://github.com/reactive-firewall-org/multicast/actions/runs/${{ inputs.workflow-run-id }}' >> "$GITHUB_OUTPUT"
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In @.github/actions/check-control/action.yml around lines 225 - 231, The
fallback details URL uses the current run id instead of the caller-supplied run
id; update the printf that writes details_url to use the inputs.workflow-run-id
value rather than github.run_id. Locate the conditional branch that checks "${{
inputs.workflow-run-id }}" and change the URL string currently containing '${{
github.run_id }}' to use '${{ inputs.workflow-run-id }}' (ensuring the same
quoting/expansion pattern as the surrounding printf to write to GITHUB_OUTPUT).

Expand Down
3 changes: 2 additions & 1 deletion .github/actions/checkout-and-rebuild/action.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -127,14 +127,15 @@ runs:
- id: fetch_artifact_files
name: "Fetch Build Files"
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && success() }}
uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: ${{ inputs.path }}/dist
pattern: multicast-build-${{ steps.output_sha.outputs.sha }}
merge-multiple: true
repository: reactive-firewall-org/multicast
github-token: ${{ inputs.token }}
run-id: ${{ inputs.build-run-id }}
digest-mismatch: error
- name: "Enumerate Fetched Files"
id: output_artifact_files
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && success() }}
Expand Down
2 changes: 1 addition & 1 deletion .github/actions/run-minimal-acceptance-tests/action.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -353,7 +353,7 @@ runs:
- name: "Upload Details"
id: upload
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: MATS
name: ${{ steps.output_artifact_name.outputs.artifact-name }}
Expand Down
2 changes: 1 addition & 1 deletion .github/actions/setup-py-reqs/action.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -282,7 +282,7 @@ runs:
- name: "Upload Details"
id: upload
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: DEPS
name: ${{ steps.output_artifact_name.outputs.artifact-name }}
Expand Down
4 changes: 2 additions & 2 deletions .github/actions/test-reporter-upload/action.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -304,7 +304,7 @@ runs:
- name: Upload ${{ steps.output_os.outputs.os }} Python ${{ steps.output_python.outputs.python-version }} coverage to Codecov
id: coverage-codecov-upload
if: ${{ success() && (steps.output_can_upload.outputs.can_upload == 'true') && (steps.output_upload_tools.outputs.can_upload_to_codecov == 'true') }}
uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2
uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2 # v6.0.0
with:
token: ${{ inputs.codecov-token }}
job_code: ${{ inputs.job_code || '' }}
Expand All @@ -321,7 +321,7 @@ runs:
- name: Upload ${{ steps.output_os.outputs.os }} Python ${{ steps.output_python.outputs.python-version }} Artifact
id: coverage-reports-upload
if: ${{ !cancelled() && (steps.output_can_upload.outputs.can_upload == 'true') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
name: Test-Report-${{ steps.output_os.outputs.os }}-${{ steps.output_python.outputs.python-version }}-${{ steps.output_sha.outputs.sha }}
path: ./test-reports/
Expand Down
19 changes: 10 additions & 9 deletions .github/workflows/CI-BUILD.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -70,7 +70,7 @@ jobs:
printf "python-version=%s\n" "${{ steps.build-python.outputs.python-version }}" >> "$GITHUB_OUTPUT"
printf "PYTHON_VERSION=%s\n" "${{ steps.build-python.outputs.python-version }}" >> "$GITHUB_ENV"
printf "%s\n" "::endgroup::"
- uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3
- uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ hashFiles('**/requirements.txt') }}
Expand Down Expand Up @@ -123,7 +123,7 @@ jobs:
- name: Upload build artifact
id: upload
if: ${{ !cancelled() && (steps.buildfiles.outputs.files != '') && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: dist
name: multicast-build-${{ github.sha }}
Expand Down Expand Up @@ -246,6 +246,7 @@ jobs:
id-token: write
contents: read
attestations: write
artifact-metadata: write
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai Bot Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🧹 Nitpick | 🔵 Trivial

🧩 Analysis chain

🌐 Web query:

Does actions/attest@v4.1.0 require artifact-metadata write permission?

💡 Result:

No, actions/attest@v4.1.0 does not strictly require the artifact-metadata: write permission for core functionality (creating attestations). It requires id-token: write and attestations: write permissions. However, the artifact-metadata: write permission is required if you want to create an optional "artifact metadata storage record" (e.g., when using push-to-registry: true or create-storage-record: true). Without it, the action will warn but continue without creating the storage record.

Citations:

The artifact-metadata: write permission is not strictly required for actions/attest@v4.1.0 core functionality.

This permission is only needed if the attest action is configured with optional features such as push-to-registry: true or create-storage-record: true. If these options are not explicitly used in your workflow configuration, consider removing this permission to follow the principle of least privilege.

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In @.github/workflows/CI-BUILD.yml at line 249, The workflow grants the broad
"artifact-metadata: write" permission which is only required when
actions/attest@v4.1.0 is invoked with optional features like push-to-registry or
create-storage-record; remove the "artifact-metadata: write" entry (the
permission key "artifact-metadata") from the permissions block in CI-BUILD.yml
unless you actually enable those options for actions/attest@v4.1.0, or, if
needed, scope it conditionally to only the job that runs actions/attest and
ensure the attest step configuration includes
push-to-registry/create-storage-record when the permission is kept.

needs: [BUILD]
runs-on: ubuntu-latest
environment: ${{ needs.BUILD.outputs.build_environment }}
Expand All @@ -255,7 +256,7 @@ jobs:
build-artifact-attestation-id: ${{ steps.multicast-build-attest.outputs.attestation-id }}
steps:
- name: Download All Artifacts
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: ${{ github.workspace }}/dist
pattern: multicast-build-${{ github.sha }}
Expand All @@ -266,14 +267,14 @@ jobs:
- name: "Attest Build Checksums"
id: multicast-build-chksum-attest
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') && (needs.BUILD.outputs.build_environment == 'Deployment' && startsWith(github.ref, 'refs/tags/v')) }}
uses: actions/attest-build-provenance@96278af6caaf10aea03fd8d33a09a777ca52d62f # v3.2.0
uses: actions/attest@59d89421af93a897026c735860bf21b6eb4f7b26 # v4.1.0
with:
subject-checksums: build.checksums.txt
github-token: ${{ github.token }}
- name: "Attest Build Artifact"
id: multicast-build-attest
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/attest-build-provenance@96278af6caaf10aea03fd8d33a09a777ca52d62f # v3.2.0
uses: actions/attest@59d89421af93a897026c735860bf21b6eb4f7b26 # v4.1.0
with:
subject-name: multicast-build-${{ github.sha }}
subject-digest: sha256:${{ needs.BUILD.outputs.artifact-digest }}
Expand Down Expand Up @@ -338,15 +339,15 @@ jobs:
printf "%s\n" "build_id=${{ github.run_id }}" >> "$GITHUB_OUTPUT"
cat <"$GITHUB_OUTPUT" >> "BUILD-info.txt"
- name: Download All Artifacts
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: ${{ github.workspace }}/dist
pattern: multicast-build-${{ github.sha }}
merge-multiple: true
- name: Upload build summary
id: upload-build-info
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: "BUILD-info.txt"
name: multicast-info-${{ github.sha }}
Expand Down Expand Up @@ -393,7 +394,7 @@ jobs:
- name: Upload build summary
id: upload-build-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: ./Build-Summary-Artifact.txt
name: BUILD-COMMENT-BODY-${{ github.sha }}
Expand All @@ -414,7 +415,7 @@ jobs:
- name: "Download Status Summary Artifact"
id: download-build-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: BUILD-COMMENT-BODY-${{ github.sha }}
github-token: ${{ github.token }}
Expand Down
13 changes: 7 additions & 6 deletions .github/workflows/CI-CHGLOG.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,14 +75,15 @@ jobs:
fi
- name: "Fetch Build Info"
if: ${{ (steps.check.outputs.should_run == 'true') && success() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: "BUILD-info.txt"
pattern: multicast-info-*
repository: reactive-firewall-org/multicast
merge-multiple: true
github-token: ${{ env.GH_TOKEN }}
run-id: ${{ steps.get_trigger_id.outputs.trigger_id }}
digest-mismatch: error
- name: "move into place"
if: ${{ (steps.check.outputs.should_run == 'true') && success() && (github.repository == 'reactive-firewall-org/multicast') }}
id: load_build_info
Expand Down Expand Up @@ -189,7 +190,7 @@ jobs:
- name: Upload CHANGELOG artifact
id: upload
if: ${{ success() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: CHANGELOG.md
name: 'multicast-chglog-${{ needs.check_build.outputs.sha }}'
Expand All @@ -214,7 +215,7 @@ jobs:
steps:
- name: Download ChangeLog Artifact
id: download
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: '${{ runner.temp }}/'
artifact-ids: ${{ needs.CHGLOG.outputs.artifact-id }}
Expand Down Expand Up @@ -259,7 +260,7 @@ jobs:
- name: "Upload chglog summary"
id: upload-chglog-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: ./chglog-Summary-Artifact.txt
name: chglog-COMMENT-BODY-${{ needs.check_build.outputs.sha }}
Expand Down Expand Up @@ -339,7 +340,7 @@ jobs:
- name: Upload build summary
id: upload-build-info
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: "chglog-info.txt"
name: multicast-chglog-info-${{ needs.check_build.outputs.sha }}
Expand All @@ -359,7 +360,7 @@ jobs:
- name: "Download Status Summary Artifact"
id: download-chglog-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: chglog-COMMENT-BODY-${{ needs.check_build.outputs.sha }}
github-token: ${{ github.token }}
Expand Down
13 changes: 7 additions & 6 deletions .github/workflows/CI-DOCS.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -71,14 +71,15 @@ jobs:
fi
- name: "Fetch MATs Info"
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && success() }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: "multicast-info.txt"
pattern: multicast-info-*
repository: reactive-firewall-org/multicast
merge-multiple: true
github-token: ${{ env.GH_TOKEN }}
run-id: ${{ steps.get_trigger_id.outputs.trigger_id }}
digest-mismatch: error
- name: "move into place"
id: load_build_info
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && success() }}
Expand Down Expand Up @@ -182,7 +183,7 @@ jobs:
fi
- name: Upload Docs Artifact with Python ${{ matrix.python-version }} on ${{ matrix.os }}
id: upload-documentation
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
name: Multicast-Documentation-${{ needs.check_mats.outputs.build_sha }}-${{ matrix.os }}-${{ matrix.python-version }}
path: ./Multicast-Documentation
Expand Down Expand Up @@ -210,7 +211,7 @@ jobs:
if: ${{ !cancelled() && (needs.check_mats.outputs.should_run == 'true') && (needs.DOCS.outputs.docs_outcome != 'cancelled') }}
steps:
- name: Download All Artifacts
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: ${{ github.workspace }}/Multicast-Documentation
pattern: Multicast-Documentation-${{ needs.check_mats.outputs.build_sha }}-*-*
Expand Down Expand Up @@ -238,7 +239,7 @@ jobs:
- name: "Upload DOCs summary"
id: upload-docs-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: ./DOCUMENTATION-Summary-Artifact.txt
name: DOCUMENTATION-COMMENT-BODY-${{ needs.check_mats.outputs.build_sha }}
Expand All @@ -249,7 +250,7 @@ jobs:
- name: "Upload DOCs Bundle"
id: upload-docs-bundle
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: Multicast-Documentation
name: Multicast-Documentation-${{ needs.check_mats.outputs.build_sha }}-ALL
Expand Down Expand Up @@ -290,7 +291,7 @@ jobs:
- name: "Download Status Summary Artifact"
id: download-documentation-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: DOCUMENTATION-COMMENT-BODY-${{ needs.check_mats.outputs.build_sha }}
github-token: ${{ github.token }}
Expand Down
11 changes: 6 additions & 5 deletions .github/workflows/CI-MATs.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -79,14 +79,15 @@ jobs:
fi
- name: "Fetch Build Info"
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && (steps.check.outputs.should_run == 'true') && success() }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: "BUILD-info.txt"
pattern: multicast-info-*
repository: reactive-firewall-org/multicast
merge-multiple: true
github-token: ${{ env.GH_TOKEN }}
run-id: ${{ steps.get_trigger_id.outputs.trigger_id }}
digest-mismatch: error
- name: "move into place"
id: load_build_info
if: ${{ (github.repository == 'reactive-firewall-org/multicast') && (steps.check.outputs.should_run == 'true') && success() }}
Expand Down Expand Up @@ -217,7 +218,7 @@ jobs:
build_sha: ${{ needs.check_build.outputs.sha }}
steps:
- name: Download All Artifacts
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
path: ${{ github.workspace }}/MATS
pattern: multicast-mats-${{ needs.check_build.outputs.sha }}-part-*
Expand Down Expand Up @@ -291,7 +292,7 @@ jobs:
- name: "Upload MATs summary"
id: upload-mats-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: ./MATs-Summary-Artifact.txt
name: MATS-COMMENT-BODY-${{ needs.check_build.outputs.sha }}
Expand Down Expand Up @@ -371,7 +372,7 @@ jobs:
- name: Upload build summary
id: upload-build-info
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
with:
path: "multicast-info.txt"
name: multicast-info-${{ needs.check_build.outputs.sha }}
Expand All @@ -391,7 +392,7 @@ jobs:
- name: "Download Status Summary Artifact"
id: download-mats-summary
if: ${{ !cancelled() && (github.repository == 'reactive-firewall-org/multicast') }}
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: MATS-COMMENT-BODY-${{ needs.check_build.outputs.sha }}
github-token: ${{ github.token }}
Expand Down
Loading
Loading