How to automatically update versions of GitHub actions (with renovate)?
I use renovate as App on GitHub and it successfully updates my package.json.
I would like to have a similar feature for the action files themselves under .github/workflows
For example a step
steps:
- uses: actions/checkout@v3
should be updated to use current version of action:
steps:
- uses: actions/checkout@v4
=> Is renovate able to do so?
If yes: how to get it working/how to configure correctly to do so?
If no: is there another tool for it? Or do I need to do this manually? (Then I exchanged manual update of package.json with manual update of *.yml)
At
https://docs.renovatebot.com/modules/manager/github-actions/
It states
"Renovate supports updating Github Actions dependencies."
but I do not understand how to activate it.
Edit
Using renovate, my renovate action run through and had green state. Nevertheless, the version of an outdated action has not been updated.
After I understood, that the versions of actions should be updated by renovate with its default configuration, I had a closer look at the log of my renovate action:
INFO: Dependency extraction complete (repository=fraunhofer-isi/micat-next, baseBranch=main)
"stats": {
"managers": {
"github-actions": {"fileCount": 9, "depCount": 33},
"npm": {"fileCount": 1, "depCount": 57}
},
"total": {"fileCount": 10, "depCount": 90}
}
INFO: Workflows update rejection - aborting branch. (repository=fraunhofer-isi/micat-next, branch=renovate/actions-setup-node-4.x)
If I interpret this correctly, renovate correctly determined, that actions-setup-node should be updated (from version 2) to version 4.
However, the update somehow got rejected.
Related:
Renovate should update the version of workflow actions by default. It does not need to be explicitly enabled in the renovate configuration file.
a) Try to uninstall the renovate GitHub app and install the recent version of the App. That fixed the permission issues for me.
b) You might want to check if the access token has the workflow permission.
User => Settings => Developer Settings => Personal access tokens => Tokens (classic)
If it does not have the permissions, renovate does not show an error. The renovate action runs through and shows a warning like
INFO: Workflows update rejection - aborting branch. (repository=..., branch=renovate/actions-setup-node-4.x)
c) Also check your renovate config file for syntax errors like trailing commas. If it has syntax errors, it might not be applied.
Also see:
https://docs.renovatebot.com/security-and-permissions/#global-permissions
- Why when I use github actions CI for a gradle project I face "./gradlew: Permission denied" error?
- Playwright tests inside docker fails to load fonts
- Gitlab CI/CD auto tagging release
- Problem with sha pointer ["error": "--from is not a valid sha pointer: \"origin/master\"",]
- Gitlab CI/CD: New runner has not been connected yet
- Error: AADSTS700213: No matching federated identity record found for presented assertion subject
- Azure devops - build number vs build id
- Disallow Python Variadic Arguments
- How to populate author, branch, commit, message in Cypres Dashboard in CI with Jenkins?
- What is the correct way of using secrets in strategy-matrix pattern in GitHub Actions?
- GitLab CI/CD Pipeline job fails after it can not find an artifact after merge to master is performed
- Jenkins build fails with "Treating warnings as errors because of process.env.CI = true"
- can we use dynamic jobs names in gitlab-ci.yml?
- GitHub workflow to tag a submodule
- Running xinc on OpenBSD's Apache Server
- How to change or specify a DVC experiment name?
- Best practice for SPA rollback on Azure Static Webapp with Azure Devops Deployment?
- Azure Pipeline: Unable to locate executable file: 'gulp'. during task Gulp@1
- How to only run a step if the workflow is running in the main repository in Github Actions?
- How to add release number from pipeline into K6-InfluxDB-Grafana stack so that in grafana we can filter results based on Release Number as well
- How to find Package.json version, and use as variable in Github Action
- How can I install and use compilers for embedded C on an external server?
- Run notification when status changes from previous run of the workflow on the same branch
- Using multiple runners in one gitlab-ci pipeline action
- Trigger Azure DevOps CI Build when pushing a branch with a certain name
- Change port for TeamCity web server
- Matching nvmrc node version to Docker node base image
- Run ASP.NET Core Backend in Azure DevOps CI Environment with Docker
- Gitlab CI/CD variables are not being passed down to Firebase when deploying
- Cannot understand how to download secure files in GitLab