71e4061ace
feat: test bzlmod usage on CI ( #16319 )
...
Closes #16319
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/16319 from protocolbuffers:bcr d66845cfcb
8 months ago
0641202bcc
Fix syntax error in test_objectivec.yml
...
I'm not sure why exactly but GitHub Actions is complaining about the reference
to `matrix.PLATFORM`. Let's just delete that and the visionos builds until
we're ready to turn visionos back on.
PiperOrigin-RevId: 617922287
8 months ago
61a079ff0b
Automated rollback of commit c076f9d874.
...
PiperOrigin-RevId: 617678321
8 months ago
c076f9d874
ci: add visionOS pod lib lint check ( #15903 )
...
as title
Closes #15903
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/15903 from YoloMao:feat/visionos_support 62474c592c
8 months ago
6898451f5e
Setup upb installation with cmake.
...
This installs a upb's static library, headers, and three protoc plugin binaries (upb, upbdefs, upb_minitable). These will now be enabled by default, but can be disabled by setting protobuf_BUILD_LIBUPB=OFF.
To qualify this, we hook into our existing install test infrastructure which attempts to build and run our tests without any of the installation artifacts available from the source tree. Public headers are deleted, and builds of exported libraries/binaries are disabled.
PiperOrigin-RevId: 617376961
8 months ago
0176f8a72a
Downgrade our sanitized builds to ubuntu-20.
...
The latest github runner image of ubuntu-22 includes a kernel update that breaks the sanitizers we use in our docker images. Long-term, we'll likely need to upgrade the images to new sanitizers and clang.
PiperOrigin-RevId: 616319042
9 months ago
c17b102148
Disable TSAN tests due to what appears to be a sanitizer bug
...
PiperOrigin-RevId: 616138585
9 months ago
b6032d72e3
Add basic upb cmake support.
...
libupb will always be statically linked, and currently doesn't ever install itself.
PiperOrigin-RevId: 615136389
9 months ago
9a262c2091
Update setup-php to 2.30.0 and re-enable macOS PHP 8.2 tests.
...
setup-php 2.30.0 should fix https://github.com/shivammathur/setup-php/issues/823
PiperOrigin-RevId: 612882408
9 months ago
360531cd08
Drop Ruby 2.7.
...
This updates the required ruby version to >= 3.0 and removes Ruby 2.7 tests from main branch, in anticipation for end of Ruby 2.7 support on 3/31 in 27.x
See https://cloud.google.com/ruby/getting-started/supported-ruby-versions
PiperOrigin-RevId: 612841114
9 months ago
119e71c40a
Run C# tests with non-Bazel protobuf-ci actions.
...
The Bazel action currently isn't setup to regenerate the proto gencode itself, meaning that it won't actually be running on changes in the pending PR. Long-term, we should migrate this back to Bazel after enabling proto codegen properly.
PiperOrigin-RevId: 611238217
9 months ago
bda13f3bfa
Add back error message unconditionally
...
PiperOrigin-RevId: 611105036
9 months ago
fc6adb6c0e
Actually fail if staleness fail
...
PiperOrigin-RevId: 610833812
9 months ago
396e26b475
Enable C++ tests for Bazel 7 on mac
...
PiperOrigin-RevId: 610573579
9 months ago
4dc2c07025
Disable Mac PHP 8.2 test
...
PiperOrigin-RevId: 610520746
9 months ago
8ca628db61
Update error message to clarify what needs to happen for tests to run
...
When we get a pull request from outside the protobuf repository, the tests will
not run until a protobuf team member adds the `safe for tests` tag. This change
updates the error message to make it more clear what has to happen to get the
tests to run.
Fixes #15847 .
PiperOrigin-RevId: 608660908
9 months ago
2f9b5e1204
Add 26.x to staleness checks
...
PiperOrigin-RevId: 606443838
10 months ago
9252b64ef3
Automated rollback of commit 0ee34d35de.
...
PiperOrigin-RevId: 603802046
10 months ago
54931ca45e
Disable test that seems to be using pre-Java 8
...
PiperOrigin-RevId: 603746010
10 months ago
a892c20578
[ObjC] Re-enable watchOS cocoapods validations
...
The image used for this actions has a new enough CocoaPods that
this should now work.
PiperOrigin-RevId: 601855822
10 months ago
f6812b7d6d
Bump python version to 3.9 for gcloud 460.0.0
...
PiperOrigin-RevId: 599953322
10 months ago
3c8a3d27f7
Raise minimum PHP version to 8.1, due to PHP 8.0 EOL per https://cloud.google.com/php/getting-started/supported-php-versions
...
Drops tests for PHP 8.0, and adds tests for PHP 8.3. See https://www.php.net/supported-versions.php .
PiperOrigin-RevId: 599636473
11 months ago
1581e72425
Disable linkage-monitor test in anticipation of a breaking (major version) java release: 4.26
...
PiperOrigin-RevId: 597629358
11 months ago
648c20d602
Pass crate mapping from Bazel to protoc
...
This will enable us to get the correct crate names for Rust gencode. The actual
reading of the mapping file in protoc happens in the followup.
PiperOrigin-RevId: 597509582
11 months ago
33080e9917
upb: disable the Fast Table CI tests on GH
...
PiperOrigin-RevId: 597310347
11 months ago
a7b0421c78
Breaking change: make protobuf comply with the C++ layering check
...
This check enforces that each C++ build target has the correct dependencies for
all headers that it includes. We have many targets that were not correct with
respect to this check, so I fixed them up.
I also cleaned up the C++ targets related to the well-known types. I created a
cc_proto_library() target for each one and removed the :wkt_cc_protos target,
since this was necessary to satisfy the layering check. I deleted the
//src/google/protobuf:protobuf_nowkt target and deprecated :protobuf_nowkt,
because the distinction between the :protobuf and :protobuf_nowkt targets was
not really correct. Neither one exposed the headers for the well-known types in
a way that was valid with respect to the layering check, and the idea of
bundling all the well-known types together is not idiomatic in Bazel anyway.
This is a breaking change, because the //:protobuf target no longer bundles the
well-known types. From now on they should be accessed through the new
//:*_cc_proto aliases in our top-level package.
I renamed the :port_def target to :port, which simplifies things a bit by
matching our internal name.
The original motivation for this change was that to move utf8_range onto our CI
infrastructure, we needed to make its dependency rules_fuzzing compatible with
Bazel 6. The rules_fuzzing project builds with the layering check, and I found
that the process of upgrading it to Bazel 6 made it take a dependency on
protobuf, which caused it to break due to layering violations. I was able to
work around this, but it would still be nice to comply with the layering check
so that we don't have to worry about this kind of thing in the future.
PiperOrigin-RevId: 595516736
11 months ago
807f00b4db
Fix typo in cache-clearing workflow
...
PiperOrigin-RevId: 595424484
11 months ago
0317875286
Update Ruby GHA to test against Ruby 3.3 in Linux / MacOS / Install and FFI combinations.
...
PiperOrigin-RevId: 594132729
11 months ago
36bb6fb0dd
Disable MacOS C++ Cmake test for now.
...
PiperOrigin-RevId: 594102279
11 months ago
2f7b2832b6
Update Ruby GHA to test against Ruby 3.3.
...
Fixes #15182
PiperOrigin-RevId: 593899707
11 months ago
9f96118e1e
Pin bundler version to 2.4.22 for Ruby 2.7 support.
...
Latest bundler 2.5.0 release results in the following error: `The last version of bundler (>= 0) to support your Ruby & RubyGems was 2.4.22. Try installing it with gem install bundler -v 2.4.22 bundler requires Ruby version >= 3.0.0. The current ruby version is 2.7.3.183.`
PiperOrigin-RevId: 591288515
12 months ago
eea39d6f53
Add Bazel 7 test points.
...
This adds tests for C++ under linux, and windows, and upb on linux.
PiperOrigin-RevId: 591056302
12 months ago
92619cdd43
Bump ossf/scorecard-action from 2.1.2 to 2.3.1 ( #14554 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.2 to 2.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ossf/scorecard-action/releases ">ossf/scorecard-action's releases</a>.</em></p>
<blockquote>
<h2>v2.3.1</h2>
<h2>What's Changed</h2>
<ul>
<li>🌱 Bump github.com/ossf/scorecard/v4 from v4.13.0 to v4.13.1 by <a href="https://github.com/spencerschrock "><code>@spencerschrock</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1282 ">ossf/scorecard-action#1282</a>
<ul>
<li>Adds additional Fuzzing detection and fixes a SAST bug related to detecting CodeQL. For a full changelist of what this includes, see the <a href="https://github.com/ossf/scorecard/releases/tag/v4.13.1 ">v4.13.1</a> release notes</li>
</ul>
</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/ossf/scorecard-action/compare/v2.3.0...v2.3.1 ">https://github.com/ossf/scorecard-action/compare/v2.3.0...v2.3.1 </a></p>
<h2>v2.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>🌱 Bump github.com/ossf/scorecard/v4 from v4.11.0 to v4.13.0 by <a href="https://github.com/spencerschrock "><code>@spencerschrock</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1270 ">ossf/scorecard-action#1270</a>
<ul>
<li>For a full changelist of what this includes, see the <a href="https://github.com/ossf/scorecard/releases/tag/v4.12.0 ">v4.12.0</a> and <a href="https://github.com/ossf/scorecard/releases/tag/v4.13.0 ">v4.13.0</a> release notes</li>
</ul>
</li>
<li>✨ Send rekor tlog index to webapp when publishing results by <a href="https://github.com/spencerschrock "><code>@spencerschrock</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1169 ">ossf/scorecard-action#1169</a></li>
<li>🐛 Prevent url clipping for GHES instances by <a href="https://github.com/rajbos "><code>@rajbos</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1225 ">ossf/scorecard-action#1225</a></li>
</ul>
<h3>Documentation</h3>
<ul>
<li>📖 Update access rights needed to see the results in code scanning by <a href="https://github.com/rajbos "><code>@rajbos</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1229 ">ossf/scorecard-action#1229</a></li>
<li>📖 Add package comments. by <a href="https://github.com/spencerschrock "><code>@spencerschrock</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1221 ">ossf/scorecard-action#1221</a></li>
<li>📖 Add SECURITY.md file by <a href="https://github.com/david-a-wheeler "><code>@david-a-wheeler</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1250 ">ossf/scorecard-action#1250</a></li>
<li>📖 Fix typo in token input docs by <a href="https://github.com/aabouzaid "><code>@aabouzaid</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1258 ">ossf/scorecard-action#1258</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/david-a-wheeler "><code>@david-a-wheeler</code></a> made their first contribution in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1250 ">ossf/scorecard-action#1250</a></li>
<li><a href="https://github.com/aabouzaid "><code>@aabouzaid</code></a> made their first contribution in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1258 ">ossf/scorecard-action#1258</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/ossf/scorecard-action/compare/v2.2.0...v2.3.0 ">https://github.com/ossf/scorecard-action/compare/v2.2.0...v2.3.0 </a></p>
<h2>v2.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>🌱 Bump github.com/ossf/scorecard/v4 from v4.10.5 to v4.11.0 by <a href="https://github.com/spencerschrock "><code>@spencerschrock</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1192 ">ossf/scorecard-action#1192</a></li>
</ul>
<h2>Scorecard Result Viewer</h2>
<p>Thanks to contributions from <a href="https://github.com/cynthia-sg "><code>@cynthia-sg</code></a> and <a href="https://github.com/tegioz "><code>@tegioz</code></a> at <a href="https://github.com/cncf/clomonitor ">CLOMonitor</a>, there is a new Scorecard Result visualization page at <code>https://securityscorecards.dev/viewer/?uri=<project-url> ;</code>.</p>
<ul>
<li><a href="https://redirect.github.com/ossf/scorecard-webapp/pull/406 ">ossf/scorecard-webapp#406</a></li>
<li><a href="https://redirect.github.com/ossf/scorecard-webapp/pull/422 ">ossf/scorecard-webapp#422</a></li>
</ul>
<p>As an example, you can see our own score visualized <a href="https://securityscorecards.dev/viewer/?uri=github.com/ossf/scorecard ">here</a>
Checkout our <a href="08b4669551/README.md (scorecard-badge)08b4669551/README.md (workflow-restrictions)https://redirect.github.com/ossf/scorecard-action/pull/1156 ">ossf/scorecard-action#1156</a>, resolved <a href="https://redirect.github.com/ossf/scorecard-action/issues/1150 ">ossf/scorecard-action#1150</a>)</li>
<li>Scorecard action will retry when signing results and submitting them to our web API. This should help with flakiness from connection failures. (<a href="https://redirect.github.com/ossf/scorecard-action/pull/1191 ">ossf/scorecard-action#1191</a>)</li>
</ul>
<h2>Docs</h2>
<ul>
<li>📖 Update README to accept fine-grained tokens by <a href="https://github.com/pnacht "><code>@pnacht</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1175 ">ossf/scorecard-action#1175</a></li>
<li>📖 Update installation instructions to match current GitHub UI by <a href="https://github.com/joycebrum "><code>@joycebrum</code></a> in <a href="https://redirect.github.com/ossf/scorecard-action/pull/1153 ">ossf/scorecard-action#1153</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="0864cf1902🌱 Bump docker tag to for v2.3.1 release (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1284 ">#1284</a>)</li>
<li><a href="72df3bff66🌱 Bump github.com/ossf/scorecard/v4 from v4.13.0 to v4.13.1 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1282 ">#1282</a>)</li>
<li><a href="0ea411f94a🌱 Bump the docker-images group with 1 update (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1281 ">#1281</a>)</li>
<li><a href="dbfd042453🌱 Bump the github-actions group with 1 update (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1280 ">#1280</a>)</li>
<li><a href="2fa1e2fa15🌱 Bump golang.org/x/net from 0.16.0 to 0.17.0 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1278 ">#1278</a>)</li>
<li><a href="652ddd06c8🌱 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1277 ">#1277</a>)</li>
<li><a href="28d0c92b8b🌱 Group Dependabot updates for GitHub Actions and Dockerfiles (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1276 ">#1276</a>)</li>
<li><a href="cb50491a46🌱 Bump distroless/base from <code>a35b652</code> to <code>b31a6e0</code> (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1275 ">#1275</a>)</li>
<li><a href="87157ac77d🌱 Bump github/codeql-action from 2.21.9 to 2.22.1 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1274 ">#1274</a>)</li>
<li><a href="7c1648b23e🌱 Bump step-security/harden-runner from 2.5.1 to 2.6.0 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1273 ">#1273</a>)</li>
<li>Additional commits viewable in <a href="e38b1902ae...0864cf1902https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.1.2&new-version=2.3.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Closes #14554
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/14554 from protocolbuffers:dependabot/github_actions/ossf/scorecard-action-2.3.1 543f85ba25
1 year ago
8699fde0a9
Enable upb editions conformance testing.
...
This also cleans up some pre-existing bugs and adds a Fasttable/ASAN build.
PiperOrigin-RevId: 581408568
1 year ago
5ca84008fc
Move utf8_range into the protobuf repo
...
This makes third_party/utf8_range no longer a Git subtree, but instead the
permanent location and source of truth for utf8_range. It is also now
incorporated into the @com_google_protobuf Bazel repo. Utf8_range still has its
own separate CMake build for now, though.
PiperOrigin-RevId: 580682733
1 year ago
24fef03259
Add support and partial CI coverage for Python 3.12
...
There's a test run in test_python.yml that is non-trivial to get working with
Python 3.12 due to some refactoring of our Docker images that would be needed.
But this change updates everything else to add coverage for Python 3.12.
The main changes necessary to get the builds working were to upgrade some Pip
packages via requirements.txt, including in a patch to `rules_fuzzing` that I
plan to upstream soon. I also had to take an explicit dependency on
`setuptools`.
I removed tox.ini, since it was outdated and we have not been actively
maintaining it.
PiperOrigin-RevId: 580548224
1 year ago
62f4888824
Bump mac PHP version to 8.2 to fix non-hermetic breakages.
...
This was likely either a change in macos or the github runners
PiperOrigin-RevId: 580245853
1 year ago
7463878e35
Give protobuf janitor access to edit prs/issues and exempt issues with the 'help wanted' tag.
...
The initial job ran and found stale PRs/issues, but lacked the permission to comment on them, add labels, or close issues/PRs.
Any issues with 'help wanted' shouldn't be auto-closed as we want them to be able to sit inactive.
PiperOrigin-RevId: 580209299
1 year ago
f247630a10
Add CI coverage for utf8_range
...
We will soon be moving utf8_range into the protobuf repo, not as a subtree
anymore but as the real source of truth. This change adds CI coverage in
advance so that there will not be a lapse in coverage.
I also upgraded our pinned versions of rules_fuzzing and rules_python, to fix
some errors that came up with Bazel 6 and Python 3.12. I had to patch
rules_fuzzing but I am working on upstreaming the fixes.
PiperOrigin-RevId: 579987379
1 year ago
25f28ee6ca
Fix typo with janitor GHA, close-pr-message was accidentally defined twice.
...
PiperOrigin-RevId: 579213119
1 year ago
9b0e9d50af
Automated rollback of commit 108a4a3094.
...
PiperOrigin-RevId: 578962175
1 year ago
3718338bdc
Pin python at 3.11.
...
Github changed their mac runners to use 3.12 by default, which removed setuptools and is causing breakages in some of our tests.
PiperOrigin-RevId: 578917538
1 year ago
76305620a1
Add a job to the janitor GHA to annotate any issues/PRs that have been inactive for the past 90 days with the `inactive` label (which has been added to github). The job will then close an issue if it has been marked inactive for 14 days.
...
Most of this is taken from https://github.com/carbon-language/carbon-lang/blob/trunk/.github/workflows/stale.yaml with a few adjustments, most importantly allowing the bot to auto-close issues.
PiperOrigin-RevId: 578906074
1 year ago
5f146f8dfe
Enable caching of pip dependencies
...
PiperOrigin-RevId: 578740011
1 year ago
769ab10e3b
Fix windows 2019 build.
...
setup-gcloud doesn't honor the environment variables set by setup-python, so we need to manually set CLOUDSDK_PYTHON before running it.
PiperOrigin-RevId: 578674246
1 year ago
f2ce105a48
Migrate tests to windows 2022 by default.
...
For the windows 2019 test, we need to upgrade python for the latest gcloud to work.
PiperOrigin-RevId: 578600130
1 year ago
a286c9b56d
upb: create upb/reflection/BUILD
...
PiperOrigin-RevId: 576631037
1 year ago
8b2a3a6139
Bump actions/checkout from 3.1.0 to 4.1.0 ( #14412 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 4.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/releases ">actions/checkout's releases</a>.</em></p>
<blockquote>
<h2>v4.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Update README.md for V4 by <a href="https://github.com/sivapalan "><code>@sivapalan</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1452 ">actions/checkout#1452</a></li>
<li>Add support for partial checkout filters by <a href="https://github.com/finleygn "><code>@finleygn</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1396 ">actions/checkout#1396</a></li>
<li>Prepare 4.1.0 release by <a href="https://github.com/cory-miller "><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1496 ">actions/checkout#1496</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/sivapalan "><code>@sivapalan</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1452 ">actions/checkout#1452</a></li>
<li><a href="https://github.com/finleygn "><code>@finleygn</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1396 ">actions/checkout#1396</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4.0.0...v4.1.0 ">https://github.com/actions/checkout/compare/v4.0.0...v4.1.0 </a></p>
<h2>v4.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Update default runtime to node20 by <a href="https://github.com/takost "><code>@takost</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1436 ">actions/checkout#1436</a></li>
<li>Support fetching without the --progress option by <a href="https://github.com/simonbaird "><code>@simonbaird</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1067 ">actions/checkout#1067</a></li>
<li>Release 4.0.0 by <a href="https://github.com/takost "><code>@takost</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1447 ">actions/checkout#1447</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/takost "><code>@takost</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1436 ">actions/checkout#1436</a></li>
<li><a href="https://github.com/simonbaird "><code>@simonbaird</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1067 ">actions/checkout#1067</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v3...v4.0.0 ">https://github.com/actions/checkout/compare/v3...v4.0.0 </a></p>
<h2>v3.6.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Mark test scripts with Bash'isms to be run via Bash by <a href="https://github.com/dscho "><code>@dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1377 ">actions/checkout#1377</a></li>
<li>Add option to fetch tags even if fetch-depth > 0 by <a href="https://github.com/RobertWieczoreck "><code>@RobertWieczoreck</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/579 ">actions/checkout#579</a></li>
<li>Release 3.6.0 by <a href="https://github.com/luketomlinson "><code>@luketomlinson</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1437 ">actions/checkout#1437</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/RobertWieczoreck "><code>@RobertWieczoreck</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/579 ">actions/checkout#579</a></li>
<li><a href="https://github.com/luketomlinson "><code>@luketomlinson</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1437 ">actions/checkout#1437</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v3.5.3...v3.6.0 ">https://github.com/actions/checkout/compare/v3.5.3...v3.6.0 </a></p>
<h2>v3.5.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by <a href="https://github.com/megamanics "><code>@megamanics</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1196 ">actions/checkout#1196</a></li>
<li>Fix typos found by codespell by <a href="https://github.com/DimitriPapadopoulos "><code>@DimitriPapadopoulos</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1287 ">actions/checkout#1287</a></li>
<li>Add support for sparse checkouts by <a href="https://github.com/dscho "><code>@dscho</code></a> and <a href="https://github.com/dfdez "><code>@dfdez</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1369 ">actions/checkout#1369</a></li>
<li>Release v3.5.3 by <a href="https://github.com/TingluoHuang "><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1376 ">actions/checkout#1376</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/megamanics "><code>@megamanics</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1196 ">actions/checkout#1196</a></li>
<li><a href="https://github.com/DimitriPapadopoulos "><code>@DimitriPapadopoulos</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1287 ">actions/checkout#1287</a></li>
<li><a href="https://github.com/dfdez "><code>@dfdez</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1369 ">actions/checkout#1369</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v3...v3.5.3 ">https://github.com/actions/checkout/compare/v3...v3.5.3 </a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md ">actions/checkout's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>v4.1.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1396 ">Add support for partial checkout filters</a></li>
</ul>
<h2>v4.0.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1067 ">Support fetching without the --progress option</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1436 ">Update to node20</a></li>
</ul>
<h2>v3.6.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1377 ">Fix: Mark test scripts with Bash'isms to be run via Bash</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/579 ">Add option to fetch tags even if fetch-depth > 0</a></li>
</ul>
<h2>v3.5.3</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1196 ">Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1287 ">Fix typos found by codespell</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1369 ">Add support for sparse checkouts</a></li>
</ul>
<h2>v3.5.2</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1289 ">Fix api endpoint for GHES</a></li>
</ul>
<h2>v3.5.1</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1246 ">Fix slow checkout on Windows</a></li>
</ul>
<h2>v3.5.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1237 ">Add new public key for known_hosts</a></li>
</ul>
<h2>v3.4.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1209 ">Upgrade codeql actions to v2</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1210 ">Upgrade dependencies</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1225 ">Upgrade <code>@actions/io</code></a></li>
</ul>
<h2>v3.3.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/1045 ">Implement branch list using callbacks from exec function</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1050 ">Add in explicit reference to private checkout options</a></li>
<li>[Fix comment typos (that got added in <a href="https://redirect.github.com/actions/checkout/issues/770 ">#770</a>)](<a href="https://redirect.github.com/actions/checkout/pull/1057 ">actions/checkout#1057</a>)</li>
</ul>
<h2>v3.2.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/942 ">Add GitHub Action to perform release</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/967 ">Fix status badge</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1002 ">Replace datadog/squid with ubuntu/squid Docker image</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/964 ">Wrap pipeline commands for submoduleForeach in quotes</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1029 ">Update <code>@actions/io</code> to 1.1.2</a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/1039 ">Upgrading version to 3.2.0</a></li>
</ul>
<h2>v3.1.0</h2>
<ul>
<li><a href="https://redirect.github.com/actions/checkout/pull/939 ">Use <code>@actions/core</code> <code>saveState</code> and <code>getState</code></a></li>
<li><a href="https://redirect.github.com/actions/checkout/pull/922 ">Add <code>github-server-url</code> input</a></li>
</ul>
<h2>v3.0.2</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="8ade135a41https://redirect.github.com/actions/checkout/issues/1496 ">#1496</a>)</li>
<li><a href="c533a0a4cfhttps://redirect.github.com/actions/checkout/issues/1396 ">#1396</a>)</li>
<li><a href="72f2cec99fhttps://redirect.github.com/actions/checkout/issues/1452 ">#1452</a>)</li>
<li><a href="3df4ab11ebhttps://redirect.github.com/actions/checkout/issues/1447 ">#1447</a>)</li>
<li><a href="8b5e8b7687https://redirect.github.com/actions/checkout/issues/1067 ">#1067</a>)</li>
<li><a href="97a652b800https://redirect.github.com/actions/checkout/issues/1436 ">#1436</a>)</li>
<li><a href="f43a0e5ff2https://redirect.github.com/actions/checkout/issues/1437 ">#1437</a>)</li>
<li><a href="7739b9ba2ehttps://redirect.github.com/actions/checkout/issues/579 ">#579</a>)</li>
<li><a href="96f53100bahttps://redirect.github.com/actions/checkout/issues/1377 ">#1377</a>)</li>
<li><a href="c85c95e3d7https://redirect.github.com/actions/checkout/issues/1376 ">#1376</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/actions/checkout/compare/v3.1.0...8ade135a41bc03ea155e62e844d188df1ea18608 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Closes #14412
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/14412 from protocolbuffers:dependabot/github_actions/actions/checkout-4.1.0 20c4eb77c6
1 year ago
108a4a3094
Use protobuf-ci for staleness infra.
...
This will pin our version of Bazel, and avoid non-hermetic breakages from github runner changes
PiperOrigin-RevId: 575277990
1 year ago
3d068a2247
Reduce CI frequency.
...
We're having issues with github runners right now where they're queueing for long periods, and this has become disruptive. We've gotten the flake rate under 2% total (<0.5% per build), and can ramp this up again later if we want to reduce it further.
PiperOrigin-RevId: 575227138
1 year ago
Alex Eagle
Adam Cozzette
Mike Kruskal
YoloMao
Sandy Zhang
Thomas Van Lenten
Protobuf Team Bot
Marcel Hlopko
Eric Salo
Joshua Haberman
dependabot[bot]
Deanna Garcia