gradle/actions
1
0
Fork 0
mirror of https://github.com/gradle/actions.git synced 2025-04-21 02:09:19 +08:00
Code Issues Packages Projects Releases Wiki Activity
actions/sources/src/dependency-graph.ts

272 lines
10 KiB
TypeScript
Raw Permalink Normal View History

First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
import * as core from '@actions/core'
import * as github from '@actions/github'
import * as glob from '@actions/glob'
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
import {DefaultArtifactClient} from '@actions/artifact'
Use github.getOctokit() for compat with GitHub Enterprise Thanks @nise-nabe for the inspiration Fixes #885
2023-09-21 18:55:26 +02:00
import {GitHub} from '@actions/github/lib/utils'
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
import {RequestError} from '@octokit/request-error'
Use correct SHA for pull request events In a pull request, GITHUB_SHA is set to the "last merge commit on the GITHUB_REF branch". This isn't the correct value to use when generating a dependency graph. This changes to use the value of `pull_request.head.sha`, which is the correct value for a dependency graph. Fixes #882
2023-09-26 05:14:11 -06:00
import type {PullRequestEvent} from '@octokit/webhooks-types'
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
import * as path from 'path'
import fs from 'fs'
Enable wrapper validation with setup-gradle action
2024-04-11 11:56:55 -06:00
import {JobFailure} from './errors'
Rename 'input-params' to 'configuration'
2024-04-09 13:47:18 -06:00
import {DependencyGraphConfig, DependencyGraphOption, getGithubToken, getWorkspaceDirectory} from './configuration'
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const DEPENDENCY_GRAPH_PREFIX = 'dependency-graph_'
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
export async function setup(config: DependencyGraphConfig): Promise<void> {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
const option = config.getDependencyGraphOption()
if (option === DependencyGraphOption.Disabled) {
Make dependency-submission and setup-gradle play nicely Now, a `dependency-submission` step will trigger a dependency-graph generation, even if it follows a `setup-gradle` step in the workflow. Similarly, a `setup-gradle` step with `dependency-graph` configured will function as expected even if it follows a `setup-gradle` step.
2024-04-06 19:03:51 -06:00
core.exportVariable('GITHUB_DEPENDENCY_GRAPH_ENABLED', 'false')
Improve compat with dependency-review-action When using 'download-and-submit' for dependency graphs, we now run the submission immediately instead of waiting until the post-action. This allows a single job to both submit the graph and run the dependency review action.
2023-09-29 20:36:16 -06:00
return
}
// Download and submit early, for compatability with dependency review.
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
if (option === DependencyGraphOption.DownloadAndSubmit) {
Set the report dir for download-and-submit Fixes #196
2024-04-25 10:37:03 +01:00
maybeExportVariable('DEPENDENCY_GRAPH_REPORT_DIR', config.getReportDirectory())
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
await downloadAndSubmitDependencyGraphs(config)
Allow flexible use of dependency-graph support Adds a 'dependency-graph' parameter that has 4 options: 1. 'disabled': no dependency graph files generated (the default) 2. 'generate': dependency graph files will be generated and saved as artifacts. 3. 'generate-and-submit': dependency graph files will be generated, saved as artifacts, and submitted to the Dependency Submission API on job completion. 4. 'download-and-submit': any previously uploaded dependency graph artifacts will be downloaded and submitted to the Dependency Submission API.
2023-07-05 12:33:47 -06:00
return
}
core.info('Enabling dependency graph generation')
Make dependency-submission and setup-gradle play nicely Now, a `dependency-submission` step will trigger a dependency-graph generation, even if it follows a `setup-gradle` step in the workflow. Similarly, a `setup-gradle` step with `dependency-graph` configured will function as expected even if it follows a `setup-gradle` step.
2024-04-06 19:03:51 -06:00
core.exportVariable('GITHUB_DEPENDENCY_GRAPH_ENABLED', 'true')
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_CONTINUE_ON_FAILURE', config.getDependencyGraphContinueOnFailure())
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_JOB_CORRELATOR', config.getJobCorrelator())
Add more input parameters for dependency-graph generation - dependency-graph-include-projects - dependency-graph-exclude-projects - dependency-graph include-configurations - dependency-graph-exclude-configurations
2024-07-19 17:07:41 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_JOB_ID', github.context.runId.toString())
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_REF', github.context.ref)
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_SHA', getShaFromContext())
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
maybeExportVariable('GITHUB_DEPENDENCY_GRAPH_WORKSPACE', getWorkspaceDirectory())
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
maybeExportVariable('DEPENDENCY_GRAPH_REPORT_DIR', config.getReportDirectory())
Add more input parameters for dependency-graph generation - dependency-graph-include-projects - dependency-graph-exclude-projects - dependency-graph include-configurations - dependency-graph-exclude-configurations
2024-07-19 17:07:41 -06:00
maybeExportVariable('DEPENDENCY_GRAPH_EXCLUDE_PROJECTS', config.getExcludeProjects())
maybeExportVariable('DEPENDENCY_GRAPH_INCLUDE_PROJECTS', config.getIncludeProjects())
maybeExportVariable('DEPENDENCY_GRAPH_EXCLUDE_CONFIGURATIONS', config.getExcludeConfigurations())
maybeExportVariable('DEPENDENCY_GRAPH_INCLUDE_CONFIGURATIONS', config.getIncludeConfigurations())
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Add more input parameters for dependency-graph generation - dependency-graph-include-projects - dependency-graph-exclude-projects - dependency-graph include-configurations - dependency-graph-exclude-configurations
2024-07-19 17:07:41 -06:00
function maybeExportVariable(variableName: string, value: string | boolean | undefined): void {
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
if (!process.env[variableName]) {
Add more input parameters for dependency-graph generation - dependency-graph-include-projects - dependency-graph-exclude-projects - dependency-graph include-configurations - dependency-graph-exclude-configurations
2024-07-19 17:07:41 -06:00
if (value !== undefined) {
core.exportVariable(variableName, value)
}
Don't overwrite dependency-graph env vars This allows these vars to be explicitly set, which is required for testing (and could prove useful for debugging).
2024-01-16 09:43:56 -07:00
}
}
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
export async function complete(config: DependencyGraphConfig): Promise<void> {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
const option = config.getDependencyGraphOption()
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
try {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
switch (option) {
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
case DependencyGraphOption.Disabled:
case DependencyGraphOption.Generate: // Performed via init-script: nothing to do here
case DependencyGraphOption.DownloadAndSubmit: // Performed in setup
return
case DependencyGraphOption.GenerateAndSubmit:
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
await findAndSubmitDependencyGraphs(config)
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
return
case DependencyGraphOption.GenerateAndUpload:
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
await findAndUploadDependencyGraphs(config)
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
}
} catch (e) {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
warnOrFail(config, option, e)
Allow flexible use of dependency-graph support Adds a 'dependency-graph' parameter that has 4 options: 1. 'disabled': no dependency graph files generated (the default) 2. 'generate': dependency graph files will be generated and saved as artifacts. 3. 'generate-and-submit': dependency graph files will be generated, saved as artifacts, and submitted to the Dependency Submission API on job completion. 4. 'download-and-submit': any previously uploaded dependency graph artifacts will be downloaded and submitted to the Dependency Submission API.
2023-07-05 12:33:47 -06:00
}
}
Replace static config methods with config types This will allow different entry points to have different inputs.
2024-04-06 20:37:46 -06:00
async function downloadAndSubmitDependencyGraphs(config: DependencyGraphConfig): Promise<void> {
Convert `dependency-submission` action to Typescript Instead of being a thin wrapper over `setup-gradle`, the `dependency-submission` action is now a fully-fledged action sharing implementation with `setup-gradle`.
2024-04-06 16:35:03 -06:00
if (isRunningInActEnvironment()) {
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
core.info('Dependency graph not supported in the ACT environment.')
Convert `dependency-submission` action to Typescript Instead of being a thin wrapper over `setup-gradle`, the `dependency-submission` action is now a fully-fledged action sharing implementation with `setup-gradle`.
2024-04-06 16:35:03 -06:00
return
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
try {
Restrict download-and-submit to selected file
2024-07-16 13:45:14 -06:00
await submitDependencyGraphs(await downloadDependencyGraphs(config))
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
} catch (e) {
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
warnOrFail(config, DependencyGraphOption.DownloadAndSubmit, e)
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
async function findAndSubmitDependencyGraphs(config: DependencyGraphConfig): Promise<void> {
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
if (isRunningInActEnvironment()) {
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
core.info('Dependency graph not supported in the ACT environment.')
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
return
}
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
const dependencyGraphFiles = await findDependencyGraphFiles()
try {
await submitDependencyGraphs(dependencyGraphFiles)
} catch (e) {
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
try {
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
await uploadDependencyGraphs(dependencyGraphFiles, config)
} catch (uploadError) {
core.info(String(uploadError))
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
}
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
throw e
Warn on dependency-graph-submit failure A common issue when submitting a dependency graph is that the required 'contents: write' permission is not set. We now catch any dependency submission failure and inform the user to check that the required permissions are available.
2023-09-30 08:37:51 -06:00
}
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
async function findAndUploadDependencyGraphs(config: DependencyGraphConfig): Promise<void> {
if (isRunningInActEnvironment()) {
core.info('Dependency graph not supported in the ACT environment.')
return
Improve reporting for dependency-graph failure The previous message was assuming a permissions issue, and was not including the underlying error message in the response.
2023-12-19 13:55:20 -07:00
}
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
await uploadDependencyGraphs(await findDependencyGraphFiles(), config)
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Restrict download-and-submit to selected file
2024-07-16 13:45:14 -06:00
async function downloadDependencyGraphs(config: DependencyGraphConfig): Promise<string[]> {
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const findBy = github.context.payload.workflow_run
? {
token: getGithubToken(),
workflowRunId: github.context.payload.workflow_run.id,
repositoryName: github.context.repo.repo,
repositoryOwner: github.context.repo.owner
}
: undefined
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
const artifactClient = new DefaultArtifactClient()
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
Restrict download-and-submit to selected file
2024-07-16 13:45:14 -06:00
let dependencyGraphArtifacts = (
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
await artifactClient.listArtifacts({
latest: true,
findBy
})
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
).artifacts.filter(artifact => artifact.name.startsWith(DEPENDENCY_GRAPH_PREFIX))
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
Restrict download-and-submit to selected file
2024-07-16 13:45:14 -06:00
const artifactName = config.getDownloadArtifactName()
if (artifactName) {
core.info(`Filtering for artifacts ending with ${artifactName}`)
dependencyGraphArtifacts = dependencyGraphArtifacts.filter(artifact => artifact.name.includes(artifactName))
}
Adapt dependency-graph support for new artifact API - Don't upload artifacts when using 'generate-and-submit' - New option 'generate-and-upload' to be used with 'download-and-submit' - Use Artifact API for downloading in the same and different workflow
2023-12-23 18:39:37 -07:00
for (const artifact of dependencyGraphArtifacts) {
const downloadedArtifact = await artifactClient.downloadArtifact(artifact.id, {
findBy
})
core.info(`Downloading dependency-graph artifact ${artifact.name} to ${downloadedArtifact.downloadPath}`)
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
return findDependencyGraphFiles()
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
async function findDependencyGraphFiles(): Promise<string[]> {
const globber = await glob.create(`${getReportDirectory()}/**/*.json`)
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
const allFiles = await globber.glob()
const unprocessedFiles = allFiles.filter(file => !isProcessed(file))
unprocessedFiles.forEach(markProcessed)
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
core.info(`Found dependency graph files: ${unprocessedFiles.join(', ')}`)
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
return unprocessedFiles
}
Upload dependency graph on submission failure (#291)
2024-07-15 12:47:06 -06:00
async function uploadDependencyGraphs(dependencyGraphFiles: string[], config: DependencyGraphConfig): Promise<void> {
if (dependencyGraphFiles.length === 0) {
core.info('No dependency graph files found to upload.')
return
}
const workspaceDirectory = getWorkspaceDirectory()
const artifactClient = new DefaultArtifactClient()
for (const dependencyGraphFile of dependencyGraphFiles) {
const relativePath = getRelativePathFromWorkspace(dependencyGraphFile)
core.info(`Uploading dependency graph file: ${relativePath}`)
const artifactName = `${DEPENDENCY_GRAPH_PREFIX}${path.basename(dependencyGraphFile)}`
await artifactClient.uploadArtifact(artifactName, [dependencyGraphFile], workspaceDirectory, {
retentionDays: config.getArtifactRetentionDays()
})
}
}
async function submitDependencyGraphs(dependencyGraphFiles: string[]): Promise<void> {
if (dependencyGraphFiles.length === 0) {
core.info('No dependency graph files found to submit.')
return
}
for (const dependencyGraphFile of dependencyGraphFiles) {
try {
await submitDependencyGraphFile(dependencyGraphFile)
} catch (error) {
if (error instanceof RequestError) {
error.message = translateErrorMessage(dependencyGraphFile, error)
}
throw error
}
}
}
function translateErrorMessage(jsonFile: string, error: RequestError): string {
const relativeJsonFile = getRelativePathFromWorkspace(jsonFile)
const mainWarning = `Dependency submission failed for ${relativeJsonFile}.\n${error.message}`
if (error.message === 'Resource not accessible by integration') {
return `${mainWarning}
Please ensure that the 'contents: write' permission is available for the workflow job.
Note that this permission is never available for a 'pull_request' trigger from a repository fork.
`
}
return mainWarning
}
async function submitDependencyGraphFile(jsonFile: string): Promise<void> {
const octokit = getOctokit()
const jsonContent = fs.readFileSync(jsonFile, 'utf8')
const jsonObject = JSON.parse(jsonContent)
jsonObject.owner = github.context.repo.owner
jsonObject.repo = github.context.repo.repo
const response = await octokit.request('POST /repos/{owner}/{repo}/dependency-graph/snapshots', jsonObject)
const relativeJsonFile = getRelativePathFromWorkspace(jsonFile)
core.notice(`Submitted ${relativeJsonFile}: ${response.data.message}`)
}
Support custom report dir for dependency-submission (#189) If the `DEPENDENCY_GRAPH_REPORT_DIR` var is set, use this value when locating dependency-graph files to upload/submit. Fixes #188
2024-04-18 13:40:41 -06:00
function getReportDirectory(): string {
return process.env.DEPENDENCY_GRAPH_REPORT_DIR!
}
Generated graph is submitted immediately by dependency-submission action While `setup-gradle` must wait until the end of job to submit all of the generated graphs, the `dependency-submission` action will not save/upload the generated graph immediately, in the same step where it is generated.
2024-04-07 12:27:51 -06:00
function isProcessed(dependencyGraphFile: string): boolean {
const markerFile = `${dependencyGraphFile}.processed`
return fs.existsSync(markerFile)
}
function markProcessed(dependencyGraphFile: string): void {
const markerFile = `${dependencyGraphFile}.processed`
fs.writeFileSync(markerFile, '')
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
}
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
function warnOrFail(config: DependencyGraphConfig, option: String, error: unknown): void {
if (!config.getDependencyGraphContinueOnFailure()) {
Enable wrapper validation with setup-gradle action
2024-04-11 11:56:55 -06:00
throw new JobFailure(error)
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
}
Revert "Provide default config values for dependency-submission" This reverts commit b7ef93c7b71dae2439fcb0c4686dbfa7b986cb63.
2024-04-07 11:54:02 -06:00
core.warning(`Failed to ${option} dependency graph. Will continue.\n${String(error)}`)
Add `dependency-graph-continue-on-failure` input param - Translate to env var for init-script support - Use when deciding whether to log or rethrow errors - Add a custom error type to trigger failure in post action
2024-01-12 11:15:01 -07:00
}
Use github.getOctokit() for compat with GitHub Enterprise Thanks @nise-nabe for the inspiration Fixes #885
2023-09-21 18:55:26 +02:00
function getOctokit(): InstanceType<typeof GitHub> {
return github.getOctokit(getGithubToken())
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
}
function getRelativePathFromWorkspace(file: string): string {
Move execution-related code into subpackage
2024-04-08 14:04:29 -06:00
const workspaceDirectory = getWorkspaceDirectory()
First cut at actions for dependency-graph - Dependency graph init-script references published version of plugin jar. - `dependency-graph-generate` action will: - Provision Gradle if required - Execute Gradle with dependency-graph plugin to generate graph JSON - Upload dependency-graph JSON file as workflow artifact - `dependency-graph-submit` action will: - Download dependency-graph JSON artifact - Submit the graph via the GitHub dependency submission API
2023-06-05 15:14:31 -06:00
return path.relative(workspaceDirectory, file)
}
Configure Gradle User Home for dependency-graph Instead of requiring an action step to generate the graph, configure Gradle User Home so that subsequent Gradle invocations can generate a graph. Any generated graph files are uploaded as artifacts on job completion. - Construct job.correlator from workflow/job/matrix - Export job.correlator as an environment var - Upload artifacts at job completion in post-action step - Specify the location of dependency graph report - Only apply dependency graph init script when explicitly enabled
2023-07-01 19:00:28 -06:00
Use correct SHA for pull request events In a pull request, GITHUB_SHA is set to the "last merge commit on the GITHUB_REF branch". This isn't the correct value to use when generating a dependency graph. This changes to use the value of `pull_request.head.sha`, which is the correct value for a dependency graph. Fixes #882
2023-09-26 05:14:11 -06:00
function getShaFromContext(): string {
const context = github.context
const pullRequestEvents = [
'pull_request',
'pull_request_comment',
'pull_request_review',
'pull_request_review_comment'
// Note that pull_request_target is omitted here.
// That event runs in the context of the base commit of the PR,
// so the snapshot should not be associated with the head commit.
]
if (pullRequestEvents.includes(context.eventName)) {
const pr = (context.payload as PullRequestEvent).pull_request
return pr.head.sha
} else {
return context.sha
}
}
Convert `dependency-submission` action to Typescript Instead of being a thin wrapper over `setup-gradle`, the `dependency-submission` action is now a fully-fledged action sharing implementation with `setup-gradle`.
2024-04-06 16:35:03 -06:00
function isRunningInActEnvironment(): boolean {
return process.env.ACT !== undefined
}
Reference in New Issue Copy Permalink