Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: fix snyk.yaml and release.yaml for Node v20 #11461

Merged
merged 2 commits into from
Jul 27, 2023
Merged

ci: fix snyk.yaml and release.yaml for Node v20 #11461

merged 2 commits into from
Jul 27, 2023

Conversation

agilgur5
Copy link
Contributor

@agilgur5 agilgur5 commented Jul 27, 2023
edited
Loading

Fixes #11459 , Fixes #11410 (comment)

Motivation

There was some breakage in different CI workflows due to the node v20 upgrade in #11410

Modifications

  • add actions/setup-node@v3 with node-version: "20" to snyk.yaml
    • also add comments about updating Node in all GH workflows, not just one
  • remove --openssl-legacy-provider from release.yaml

Verification

CI build should pass now

Future Work

Ideally, we should update more NPM deps so that this flag is not needed

@agilgur5
fix(ci): update to node v20 for Snyk
71df4ae 
- node was updated in `ci-build.yaml` but not `synk.yaml`
  - caused Snyk to (correctly) error on the `node.engines` requirement
    - see https://github.com/argoproj/argo-workflows/actions/runs/5676115276/job/15382363976

Signed-off-by: Anton Gilgur <agilgur5@gmail.com>
@agilgur5
fix(ci): remove global --openssl-legacy-provider from Release
f87f0e2 
- it is already set in-line in the `package.json`, so no need to set it globally as an env var
  - setting it as an env var also breaks GH's default runner version that runs for `checkout`: https://github.com/argoproj/argo-workflows/actions/runs/5676125574/job/15383405669
  - this was removed from some of the GH workflows during the node v20 upgrade original PR's iteration, but this one reference seems to have been left in

Signed-off-by: Anton Gilgur <agilgur5@gmail.com>
@terrytangyuan terrytangyuan merged commit 2d20532 into argoproj:master Jul 27, 2023
23 checks passed
@agilgur5 agilgur5 deleted the fix-snyk-node branch July 27, 2023 18:23
@agilgur5
Copy link
Contributor Author

Snyk passed: https://github.com/argoproj/argo-workflows/actions/runs/5683894853/job/15405447864
Release passed: https://github.com/argoproj/argo-workflows/actions/runs/5683894876/job/15406913607

@terrytangyuan
Copy link
Member

Thanks!

@terrytangyuan terrytangyuan mentioned this pull request Aug 9, 2023
Closed
45 tasks
terrytangyuan pushed a commit that referenced this pull request Aug 11, 2023
@agilgur5 @terrytangyuan
ci: fix snyk.yaml and release.yaml for Node v20 (#11461)
d42b857 
Signed-off-by: Anton Gilgur <agilgur5@gmail.com>
@agilgur5 agilgur5 added the area/build Build or GithubAction/CI issues label Aug 27, 2023
@agilgur5 agilgur5 added type/dependencies PRs and issues specific to updating dependencies javascript Pull requests that update Javascript dependencies labels Sep 13, 2023
@agilgur5 agilgur5 mentioned this pull request Jan 6, 2024
Closed
dpadhiar pushed a commit to dpadhiar/argo-workflows that referenced this pull request May 9, 2024
@agilgur5 @dpadhiar
ci: fix snyk.yaml and release.yaml for Node v20 (argoproj#11461)
d5f4a61 
Signed-off-by: Anton Gilgur <agilgur5@gmail.com>
Signed-off-by: Dillen Padhiar <dillen_padhiar@intuit.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@terrytangyuan terrytangyuan terrytangyuan approved these changes

Assignees
No one assigned
Labels
area/build Build or GithubAction/CI issues javascript Pull requests that update Javascript dependencies type/dependencies PRs and issues specific to updating dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Build failures related to Node upgrade
2 participants
@agilgur5 @terrytangyuan