Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump actions/cache from 3.2.6 to 4.0.2 #1825

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump actions/cache from 3.2.6 to 4.0.2 #1825

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2024

Bumps actions/cache from 3.2.6 to 4.0.2.

Release notes

Sourced from actions/cache's releases.

v4.0.2

What's Changed

Full Changelog: actions/cache@v4.0.1...v4.0.2

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/cache@v4...v4.0.1

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/cache@v3...v4.0.0

v3.3.3

What's Changed

New Contributors

Full Changelog: actions/cache@v3...v3.3.3

v3.3.2

What's Changed

... (truncated)

Changelog

Sourced from actions/cache's changelog.

4.0.2

  • Fixed restore fail-on-cache-miss not working.

4.0.1

  • Updated isGhes check

4.0.0

  • Updated minimum runner version support from node 12 -> node 20

3.3.3

  • Updates @​actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378
  • Additional audit fixes of npm package(s)

3.3.2

  • Fixes bug with Azure SDK causing blob downloads to get stuck.

3.3.1

  • Reduced segment size to 128MB and segment timeout to 10 minutes to fail fast in case the cache download is stuck.

3.3.0

  • Added option to lookup cache without downloading it.
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump actions/cache from 3.2.6 to 4.0.2
4562f35 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.6 to 4.0.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@v3.2.6...v4.0.2)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Apr 1, 2024
@dependabot dependabot bot mentioned this pull request Apr 1, 2024
Closed
@soey soey self-requested a review April 3, 2024 10:05
@soey
Copy link
Contributor

soey commented Apr 3, 2024

@mattwr18 : Pipeline is still green even that V4 is "updated minimum runner version support from node 12 -> node 20" and we are requesting node 12.2 in the env. I'm a bit confused here what is happening and what is to be expected.

@soey soey added the node 20 label Apr 3, 2024
@mattwr18
Copy link
Contributor

mattwr18 commented Apr 3, 2024

@soey my understanding is that the step that uses actions/cache, cache NPM dependencies, would use node v20, while our docker build and test run would use the version we specify in our .tool-versions.

To be honest, I am not sure it is even working as we would want it to. I think the idea is to cache the dependencies to speed up the test runs in our CI, but all the runs I looked at reported a miss in the cache hit. Also I don't see any logic to skip the npm install step if there is a cache hit. What even happens if we run npm install with node version 12 and then try to get a cache hit using node version 20?

In the examples for actions/cache, I see this note:

Note It is not recommended to cache node_modules, as it can break across Node versions and won't work with npm ci

It seems like it might be better to remove this step.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@soey soey Awaiting requested review from soey

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code node 20
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@soey @mattwr18