Skip to content

⬆️(ci) upgrade GitHub Actions workflow steps to latest versions #63

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
StephanMeijer wants to merge 1 commit into
base: main
Choose a base branch
from
Open

⬆️(ci) upgrade GitHub Actions workflow steps to latest versions #63

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 5 additions & 5 deletions .github/workflows/build-and-push-docker-base-image.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,23 +16,23 @@ jobs:
runs-on: self-hosted
steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Set up QEMU
uses: docker/setup-qemu-action@v2
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
uses: docker/setup-buildx-action@v3

- name: Login to GitHub Container Registry
uses: docker/login-action@v2
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Build and push
uses: docker/build-push-action@v4
uses: docker/build-push-action@v6
with:
context: .
platforms: linux/amd64,linux/arm64,linux/arm/v7
Expand Down
10 changes: 5 additions & 5 deletions .github/workflows/build-and-push-docker-image-dev.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,16 +17,16 @@ jobs:
runs-on: self-hosted
Copy link

@coderabbitai coderabbitai bot Feb 19, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🟠 Major

❓ Verification inconclusive

Script executed:

#!/bin/bash
# Find all workflow files referencing self-hosted runners
echo "=== Workflows using self-hosted runners ==="
rg -n "self-hosted" --type yaml .github/workflows/ 2>/dev/null || echo "No matches found"

echo -e "\n=== All workflows in .github/workflows ==="
ls -la .github/workflows/ 2>/dev/null || echo "Directory not found"

echo -e "\n=== Check for runner setup/configuration scripts ==="
fd -e sh -e bash --type f . 2>/dev/null | xargs rg -l "node" 2>/dev/null | grep -E "(setup|bootstrap|runner|provision)" | head -10

echo -e "\n=== Check for documentation about runners ==="
fd -e md --type f . 2>/dev/null | xargs rg -l "self-hosted\|runner.*setup\|node.*version" 2>/dev/null | head -10

Repository: suitenumerique/projects

Repository: suitenumerique/projects
Exit code: 0

stdout:

=== Workflows using self-hosted runners ===
.github/workflows/build-and-push-docker-image.yml:9:    runs-on: self-hosted
.github/workflows/build-and-push-docker-image-dev.yml:17:    runs-on: self-hosted
.github/workflows/build-and-push-docker-base-image.yml:16:    runs-on: self-hosted

=== All workflows in .github/workflows ===
total 24
drwxr-xr-x 2 jailuser jailuser  160 Feb 19 18:41 .
drwxr-xr-x 4 jailuser jailuser   80 Feb 19 18:41 ..
-rw-r--r-- 1 jailuser jailuser 1113 Feb 19 18:41 build-and-push-docker-base-image.yml
-rw-r--r-- 1 jailuser jailuser 1350 Feb 19 18:41 build-and-push-docker-image-dev.yml
-rw-r--r-- 1 jailuser jailuser 1459 Feb 19 18:41 build-and-push-docker-image.yml
-rw-r--r-- 1 jailuser jailuser 1387 Feb 19 18:41 build-and-push-release-package.yml
-rw-r--r-- 1 jailuser jailuser 1877 Feb 19 18:41 build-and-test.yml
-rw-r--r-- 1 jailuser jailuser  675 Feb 19 18:41 lint.yml

=== Check for runner setup/configuration scripts ===

=== Check for documentation about runners ===

actions/checkout v6 Node.js version requirement

actions/checkout@v6 is a JavaScript action that runs on the node24 runtime (runs.using: node24). [1]

Because it uses the Node.js 24 runtime, your environment needs a GitHub Actions runner version that supports it—minimum Actions Runner v2.327.1. [2]

Additionally, if you run authenticated git commands from a Docker container action, checkout@v6 requires Actions Runner v2.329.0 or later. [2]

Sources:
[1] actions/checkout action.yml (v6) showing runs.using: node24 (raw.githubusercontent.com)
[2] actions/checkout README notes on Node.js 24 runtime + runner minimums (github.com)

Citations:

actions/checkout@v6 release date December 2025

actions/checkout had a v6 release in December 2025: v6.0.1, published December 2, 2025. [1]

(For context, the initial v6.0.0 release was November 20, 2025, i.e., not in December.) [1]

Sources: [1]

Confirm self-hosted runner is v2.327.1+ before merging

actions/checkout@v6 (released December 2, 2025) requires GitHub Actions Runner v2.327.1 or later, which is when Node.js 24 runtime support was added. Unlike GitHub-hosted runners that are automatically kept up to date, self-hosted runners (line 17) require manual provisioning. If the runner is older than v2.327.1, the workflow will fail at the Checkout step.

Verify the self-hosted runner version with: ./run.sh --version

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In @.github/workflows/build-and-push-docker-image-dev.yml at line 17, The
workflow currently sets runs-on: self-hosted while using actions/checkout@v6
which requires runner v2.327.1+; before merging, verify the self-hosted runner
meets that minimum by running ./run.sh --version on the runner and, if it is
older, either upgrade the runner to v2.327.1+ or change the workflow to use a
GitHub-hosted runner (e.g., ubuntu-latest) or pin checkout to a compatible older
action version; ensure you document the chosen approach in the PR so CI will not
fail at the Checkout step.

Copy link
Author

@StephanMeijer StephanMeijer Feb 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good bot 🤖

Copy link

@coderabbitai coderabbitai bot Feb 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@StephanMeijer Thank you for the positive feedback! I'm glad the review comment was helpful. If you need any assistance verifying the runner version or have questions about the workflow updates, feel free to let me know! 🐰

ヽ(✿゚▽゚)ノ ✨

steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Set up QEMU
uses: docker/setup-qemu-action@v2
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
uses: docker/setup-buildx-action@v3

- name: Login to GitHub Container Registry
uses: docker/login-action@v2
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
Expand All @@ -41,7 +41,7 @@ jobs:
type=raw,value=dev

- name: Build and push
uses: docker/build-push-action@v4
uses: docker/build-push-action@v6
with:
context: .
platforms: linux/amd64,linux/arm64,linux/arm/v7
Expand Down
12 changes: 6 additions & 6 deletions .github/workflows/build-and-push-docker-image.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,23 +9,23 @@ jobs:
runs-on: self-hosted
steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Set up QEMU
uses: docker/setup-qemu-action@v2
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
uses: docker/setup-buildx-action@v3

- name: Login to GitHub Container Registry
uses: docker/login-action@v2
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Set version
uses: actions/github-script@v6
uses: actions/github-script@v8
id: set-version
with:
result-encoding: string
Expand All @@ -42,7 +42,7 @@ jobs:
type=raw,value=latest

- name: Build and push
uses: docker/build-push-action@v4
uses: docker/build-push-action@v6
with:
context: .
platforms: linux/amd64,linux/arm64,linux/arm/v7
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/build-and-push-release-package.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,8 +9,8 @@ jobs:
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v3
- uses: actions/checkout@v6
- uses: actions/setup-node@v6
with:
node-version: '18'
cache: 'npm'
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/build-and-test.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,23 +17,23 @@ jobs:
POSTGRES_PASSWORD: password
steps:
- name: Checkout
uses: actions/checkout@v3
uses: actions/checkout@v6

- name: Setup Node.js
uses: actions/setup-node@v4
uses: actions/setup-node@v6
with:
node-version: 18
cache: 'npm'

- name: Setup PostgreSQL
uses: ikalnytskyi/action-setup-postgres@v5
uses: ikalnytskyi/action-setup-postgres@v8
with:
database: ${{ env.POSTGRES_DB }}
username: ${{ env.POSTGRES_USER }}
password: ${{ env.POSTGRES_PASSWORD }}

- name: Cache Node.js modules
uses: actions/cache@v3
uses: actions/cache@v5
with:
path: client/node_modules
key: ${{ runner.os }}-node-${{ hashFiles('client/package-lock.json') }}
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/lint.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,16 +10,16 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Setup Node.js
uses: actions/setup-node@v4
uses: actions/setup-node@v6
with:
node-version: 18
cache: 'npm'

- name: Cache Node.js modules
uses: actions/cache@v3
uses: actions/cache@v5
with:
path: client/node_modules
key: ${{ runner.os }}-node-${{ hashFiles('client/package-lock.json') }}
Expand Down