gradle/actions
1
0
Fork 0
mirror of https://github.com/gradle/actions.git synced 2025-04-30 06:39:19 +08:00
Code Issues Packages Projects Releases Wiki Activity
actions/sources/src/dependency-graph.ts

248 lines
9.6 KiB
TypeScript
Raw Normal View History

First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
import * as core from '@actions/core'
import * as github from '@actions/github'
import * as glob from '@actions/glob'
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
import {DefaultArtifactClient} from '@actions/artifact'
Use github.getOctokit() for compat with GitHub Enterprise Thanks @nise-nabe for the inspiration Fixes #885
2023-09-21 18:55:26 +02:00
import {GitHub} from '@actions/github/lib/utils'
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
import {RequestError} from '@octokit/request-error'
Use correct SHA for pull request events In a pull request, GITHUB_SHA is set to the "last merge commit on the GITHUB_REF branch". This isn't the correct value to use when generating a dependency graph. This changes to use the value of `pull_request.head.sha`, which is the correct value for a dependency graph. Fixes #882
2023-09-26 05:14:11 -06:00
import type {PullRequestEvent} from '@octokit/webhooks-types'
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
import * as path from 'path'
import fs from 'fs'
Enable wrapper validation with setup-gradle action
2024-04-11 11:56:55 -06:00
import {JobFailure} from './errors'
Rename 'input-params' to 'configuration'
2024-04-09 13:47:18 -06:00
import {DependencyGraphConfig, DependencyGraphOption, getGithubToken, getWorkspaceDirectory} from './configuration'
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const DEPENDENCY_GRAPH_PREFIX = 'dependency-graph_'
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
export async function setup(config: DependencyGraphConfig): Promise<void> {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
const option = config.getDependencyGraphOption()
if (option === DependencyGraphOption.Disabled) {
Make dependency-submission and setup-gradle play nicely Now, a `dependency-submission` step will trigger a dependency-graph generation, even if it follows a `setup-gradle` step in the workflow. Similarly, a `setup-gradle` step with `dependency-graph` configured will function as expected even if it follows a `setup-gradle` step.
2024-04-06 19:03:51 -06:00
core.exportVariable('GITHUB_DEPENDENCY_GRAPH_ENABLED', 'false')
Improve compat with dependency-review-action When using 'download-and-submit' for dependency graphs, we now run the submission immediately instead of waiting until the post-action. This allows a single job to both submit the graph and run the dependency review action.
2023-09-29 20:36:16 -06:00
return
}
// Download and submit early, for compatability with dependency review.
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
if (option === DependencyGraphOption.DownloadAndSubmit) {
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
await downloadAndSubmitDependencyGraphs(config)
Allow flexible use of dependency-graph support Adds a 'dependency-graph' parameter that has 4 options: 1. 'disabled': no dependency graph files generated (the default) 2. 'generate': dependency graph files will be generated and saved as artifacts. 3. 'generate-and-submit': dependency graph files will be generated, saved as artifacts, and submitted to the Dependency Submission API on job completion. 4. 'download-and-submit': any previously uploaded dependency graph artifacts will be downloaded and submitted to the Dependency Submission API.
2023-07-05 12:33:47 -06:00
return
}
core.info('Enabling dependency graph generation')
Make dependency-submission and setup-gradle play nicely Now, a `dependency-submission` step will trigger a dependency-graph generation, even if it follows a `setup-gradle` step in the workflow. Similarly, a `setup-gradle` step with `dependency-graph` configured will function as expected even if it follows a `setup-gradle` step.
2024-04-06 19:03:51 -06:00
core.exportVariable('GITHUB_DEPENDENCY_GRAPH_ENABLED', 'true')
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_CONTINUE_ON_FAILURE', config.getDependencyGraphContinueOnFailure())
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_JOB_CORRELATOR', config.getJobCorrelator())
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_JOB_ID', github.context.runId)
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_REF', github.context.ref)
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_SHA', getShaFromContext())
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_WORKSPACE', getWorkspaceDirectory())
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
maybeExportVariable(
Update to latest plugin version
2023-07-17 15:12:30 -06:00
'DEPENDENCY_GRAPH_REPORT_DIR',
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
path.resolve(getWorkspaceDirectory(), 'dependency-graph-reports')
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
)
Add a new option to clear the dependency-graph When changing workflow names or when changing to the new 'dependency-submission' action, it can be useful to clear existing dependency graph snapshots from previous submissions. While the old graphs will eventually "age out", the 'clear' option will submit an empty dependency graph for an existing Job correlator, ensuring that old dependency graphs don't linger.
2024-01-23 14:55:59 -07:00
// To clear the dependency graph, we generate an empty graph by excluding all projects and configurations
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
if (option === DependencyGraphOption.Clear) {
Add a new option to clear the dependency-graph When changing workflow names or when changing to the new 'dependency-submission' action, it can be useful to clear existing dependency graph snapshots from previous submissions. While the old graphs will eventually "age out", the 'clear' option will submit an empty dependency graph for an existing Job correlator, ensuring that old dependency graphs don't linger.
2024-01-23 14:55:59 -07:00
core.exportVariable('DEPENDENCY_GRAPH_INCLUDE_PROJECTS', '')
core.exportVariable('DEPENDENCY_GRAPH_INCLUDE_CONFIGURATIONS', '')
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
function maybeExportVariable(variableName: string, value: unknown): void {
if (!process.env[variableName]) {
core.exportVariable(variableName, value)
}
}
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
export async function complete(config: DependencyGraphConfig): Promise<void> {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
const option = config.getDependencyGraphOption()
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
try {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
switch (option) {
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
case DependencyGraphOption.Disabled:
case DependencyGraphOption.Generate: // Performed via init-script: nothing to do here
case DependencyGraphOption.DownloadAndSubmit: // Performed in setup
return
case DependencyGraphOption.GenerateAndSubmit:
Add a new option to clear the dependency-graph When changing workflow names or when changing to the new 'dependency-submission' action, it can be useful to clear existing dependency graph snapshots from previous submissions. While the old graphs will eventually "age out", the 'clear' option will submit an empty dependency graph for an existing Job correlator, ensuring that old dependency graphs don't linger.
2024-01-23 14:55:59 -07:00
case DependencyGraphOption.Clear: // Submit the empty dependency graph
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
await submitDependencyGraphs(await findGeneratedDependencyGraphFiles())
return
case DependencyGraphOption.GenerateAndUpload:
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
await uploadDependencyGraphs(await findGeneratedDependencyGraphFiles(), config)
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
}
} catch (e) {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
warnOrFail(config, option, e)
Allow flexible use of dependency-graph support Adds a 'dependency-graph' parameter that has 4 options: 1. 'disabled': no dependency graph files generated (the default) 2. 'generate': dependency graph files will be generated and saved as artifacts. 3. 'generate-and-submit': dependency graph files will be generated, saved as artifacts, and submitted to the Dependency Submission API on job completion. 4. 'download-and-submit': any previously uploaded dependency graph artifacts will be downloaded and submitted to the Dependency Submission API.
2023-07-05 12:33:47 -06:00
}
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
async function findGeneratedDependencyGraphFiles(): Promise<string[]> {
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
const workspaceDirectory = getWorkspaceDirectory()
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
return await findDependencyGraphFiles(workspaceDirectory)
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
async function uploadDependencyGraphs(dependencyGraphFiles: string[], config: DependencyGraphConfig): Promise<void> {
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
if (isRunningInActEnvironment()) {
core.info('Dependency graph upload not supported in the ACT environment.')
core.info(`Would upload: ${dependencyGraphFiles.join(', ')}`)
return
}
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
const workspaceDirectory = getWorkspaceDirectory()
Allow flexible use of dependency-graph support Adds a 'dependency-graph' parameter that has 4 options: 1. 'disabled': no dependency graph files generated (the default) 2. 'generate': dependency graph files will be generated and saved as artifacts. 3. 'generate-and-submit': dependency graph files will be generated, saved as artifacts, and submitted to the Dependency Submission API on job completion. 4. 'download-and-submit': any previously uploaded dependency graph artifacts will be downloaded and submitted to the Dependency Submission API.
2023-07-05 12:33:47 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const artifactClient = new DefaultArtifactClient()
for (const dependencyGraphFile of dependencyGraphFiles) {
const relativePath = getRelativePathFromWorkspace(dependencyGraphFile)
core.info(`Uploading dependency graph file: ${relativePath}`)
const artifactName = `${DEPENDENCY_GRAPH_PREFIX}${path.basename(dependencyGraphFile)}`
await artifactClient.uploadArtifact(artifactName, [dependencyGraphFile], workspaceDirectory, {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
retentionDays: config.getArtifactRetentionDays()
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
})
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
async function downloadAndSubmitDependencyGraphs(config: DependencyGraphConfig): Promise<void> {
Convert `dependency-submission` action to Typescript Instead of being a thin wrapper over `setup-gradle`, the `dependency-submission` action is now a fully-fledged action sharing implementation with `setup-gradle`.
2024-04-06 16:35:03 -06:00
if (isRunningInActEnvironment()) {
core.info('Dependency graph download and submit not supported in the ACT environment.')
return
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
try {
await submitDependencyGraphs(await downloadDependencyGraphs())
} catch (e) {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
warnOrFail(config, DependencyGraphOption.DownloadAndSubmit, e)
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
async function submitDependencyGraphs(dependencyGraphFiles: string[]): Promise<void> {
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
if (isRunningInActEnvironment()) {
core.info('Dependency graph submit not supported in the ACT environment.')
core.info(`Would submit: ${dependencyGraphFiles.join(', ')}`)
return
}
for (const dependencyGraphFile of dependencyGraphFiles) {
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
try {
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
await submitDependencyGraphFile(dependencyGraphFile)
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
} catch (error) {
if (error instanceof RequestError) {
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
throw new Error(translateErrorMessage(dependencyGraphFile, error))
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
} else {
throw error
}
}
}
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
function translateErrorMessage(jsonFile: string, error: RequestError): string {
Improve reporting for dependency-graph failure The previous message was assuming a permissions issue, and was not including the underlying error message in the response.
2023-12-19 13:55:20 -07:00
const relativeJsonFile = getRelativePathFromWorkspace(jsonFile)
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
const mainWarning = `Dependency submission failed for ${relativeJsonFile}.\n${String(error)}`
Improve reporting for dependency-graph failure The previous message was assuming a permissions issue, and was not including the underlying error message in the response.
2023-12-19 13:55:20 -07:00
if (error.message === 'Resource not accessible by integration') {
return `${mainWarning}
Please ensure that the 'contents: write' permission is available for the workflow job.
Note that this permission is never available for a 'pull_request' trigger from a repository fork.
`
}
return mainWarning
}
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
async function submitDependencyGraphFile(jsonFile: string): Promise<void> {
const octokit = getOctokit()
const jsonContent = fs.readFileSync(jsonFile, 'utf8')
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
const jsonObject = JSON.parse(jsonContent)
jsonObject.owner = github.context.repo.owner
jsonObject.repo = github.context.repo.repo
const response = await octokit.request('POST /repos/{owner}/{repo}/dependency-graph/snapshots', jsonObject)
const relativeJsonFile = getRelativePathFromWorkspace(jsonFile)
core.notice(`Submitted ${relativeJsonFile}: ${response.data.message}`)
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
async function downloadDependencyGraphs(): Promise<string[]> {
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
const workspaceDirectory = getWorkspaceDirectory()
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const findBy = github.context.payload.workflow_run
? {
token: getGithubToken(),
workflowRunId: github.context.payload.workflow_run.id,
repositoryName: github.context.repo.repo,
repositoryOwner: github.context.repo.owner
}
: undefined
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const artifactClient = new DefaultArtifactClient()
const downloadPath = path.resolve(workspaceDirectory, 'dependency-graph')
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const dependencyGraphArtifacts = (
await artifactClient.listArtifacts({
latest: true,
findBy
})
).artifacts.filter(candidate => candidate.name.startsWith(DEPENDENCY_GRAPH_PREFIX))
for (const artifact of dependencyGraphArtifacts) {
const downloadedArtifact = await artifactClient.downloadArtifact(artifact.id, {
path: downloadPath,
findBy
})
core.info(`Downloading dependency-graph artifact ${artifact.name} to ${downloadedArtifact.downloadPath}`)
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
return findDependencyGraphFiles(downloadPath)
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
async function findDependencyGraphFiles(dir: string): Promise<string[]> {
const globber = await glob.create(`${dir}/dependency-graph-reports/*.json`)
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
const allFiles = await globber.glob()
const unprocessedFiles = allFiles.filter(file => !isProcessed(file))
unprocessedFiles.forEach(markProcessed)
return unprocessedFiles
}
function isProcessed(dependencyGraphFile: string): boolean {
const markerFile = `${dependencyGraphFile}.processed`
return fs.existsSync(markerFile)
}
function markProcessed(dependencyGraphFile: string): void {
const markerFile = `${dependencyGraphFile}.processed`
fs.writeFileSync(markerFile, '')
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
function warnOrFail(config: DependencyGraphConfig, option: String, error: unknown): void {
if (!config.getDependencyGraphContinueOnFailure()) {
Enable wrapper validation with setup-gradle action
2024-04-11 11:56:55 -06:00
throw new JobFailure(error)
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
}
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
core.warning(`Failed to ${option} dependency graph. Will continue.\n${String(error)}`)
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
}
Use github.getOctokit() for compat with GitHub Enterprise Thanks @nise-nabe for the inspiration Fixes #885
2023-09-21 18:55:26 +02:00
function getOctokit(): InstanceType<typeof GitHub> {
return github.getOctokit(getGithubToken())
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
function getRelativePathFromWorkspace(file: string): string {
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
const workspaceDirectory = getWorkspaceDirectory()
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
return path.relative(workspaceDirectory, file)
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
Use correct SHA for pull request events In a pull request, GITHUB_SHA is set to the "last merge commit on the GITHUB_REF branch". This isn't the correct value to use when generating a dependency graph. This changes to use the value of `pull_request.head.sha`, which is the correct value for a dependency graph. Fixes #882
2023-09-26 05:14:11 -06:00
function getShaFromContext(): string {
const context = github.context
const pullRequestEvents = [
'pull_request',
'pull_request_comment',
'pull_request_review',
'pull_request_review_comment'
// Note that pull_request_target is omitted here.
// That event runs in the context of the base commit of the PR,
// so the snapshot should not be associated with the head commit.
]
if (pullRequestEvents.includes(context.eventName)) {
const pr = (context.payload as PullRequestEvent).pull_request
return pr.head.sha
} else {
return context.sha
}
}
Convert `dependency-submission` action to Typescript Instead of being a thin wrapper over `setup-gradle`, the `dependency-submission` action is now a fully-fledged action sharing implementation with `setup-gradle`.
2024-04-06 16:35:03 -06:00
function isRunningInActEnvironment(): boolean {
return process.env.ACT !== undefined
}
Reference in New Issue Copy Permalink