From 2d2cd3c094b82daf4a85daabc9d1aba59a7dde3c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 27 Jan 2025 09:10:03 -0300 Subject: [PATCH 01/13] build(deps): bump github/codeql-action from 3.28.1 to 3.28.5 (#1753) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.1 to 3.28.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.28.1...v3.28.5) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 38ea5d3000..4ebffd8261 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.28.1 + uses: github/codeql-action/init@v3.28.5 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.28.1 + uses: github/codeql-action/autobuild@v3.28.5 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.28.1 + uses: github/codeql-action/analyze@v3.28.5 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index ac24936d89..499e796eb1 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.28.1 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.28.5 # v1.0.26 with: sarif_file: results.sarif From 61d31d2d5425eb33e2c4ece1abd1a27c7b26a48e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 3 Feb 2025 09:14:52 -0300 Subject: [PATCH 02/13] build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 (#1757) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.5 to 3.28.8. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.28.5...v3.28.8) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 4ebffd8261..2497dd96e3 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.28.5 + uses: github/codeql-action/init@v3.28.8 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.28.5 + uses: github/codeql-action/autobuild@v3.28.8 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.28.5 + uses: github/codeql-action/analyze@v3.28.8 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 499e796eb1..243c2a741c 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.28.5 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.28.8 # v1.0.26 with: sarif_file: results.sarif From 04351de6bbfd560808e8c65795f5b727431885be Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Mon, 3 Feb 2025 14:15:10 -0300 Subject: [PATCH 03/13] Update README.md --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index ac10887299..ddd070e5c2 100644 --- a/README.md +++ b/README.md @@ -142,7 +142,7 @@ Codecov's Action supports inputs from the user. These inputs, along with their d | `override_pr` | Specify the pull request number manually. Used to override pre-existing CI environment variables. | Optional | `plugins` | Comma-separated list of plugins to run. Specify `noop` to turn off all plugins | Optional | `report_code` | The code of the report if using local upload. If unsure, leave unset. Read more here https://docs.codecov.com/docs/the-codecov-cli#how-to-use-local-upload | Optional -| `report_type` | The type of file to upload, coverage by default. Possible values are "testing", "coverage". | Optional +| `report_type` | The type of file to upload, coverage by default. Possible values are "test_results", "coverage". | Optional | `root_dir` | Root folder from which to consider paths on the network section. Defaults to current working directory. | Optional | `run_command` | Choose which CLI command to run. Options are "upload-coverage", "empty-upload", "pr-base-picking", "send-notifications". "upload-coverage" is run by default.' | Optional | `skip_validation` | Skip integrity checking of the CLI. This is NOT recommended. | Optional From 5efa07bc177542802086d6a447e0ba274759c103 Mon Sep 17 00:00:00 2001 From: AVM Date: Tue, 4 Feb 2025 07:10:36 -0500 Subject: [PATCH 04/13] Fix a typo in the example (#1758) Fix a typo in the example --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index ddd070e5c2..d9f340dbdc 100644 --- a/README.md +++ b/README.md @@ -176,7 +176,7 @@ jobs: - name: Setup Python uses: actions/setup-python@main with: - python-version: 3.10 + python-version: '3.10' - name: Generate coverage report run: | pip install pytest From 4898080f15c09ae860fcec6796854d10a2e23de8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Feb 2025 21:00:00 -0300 Subject: [PATCH 05/13] build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 (#1765) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.8 to 3.28.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.28.8...v3.28.9) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 2497dd96e3..8d8f9d5071 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.28.8 + uses: github/codeql-action/init@v3.28.9 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.28.8 + uses: github/codeql-action/autobuild@v3.28.9 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.28.8 + uses: github/codeql-action/analyze@v3.28.9 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 243c2a741c..52fe09218a 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.28.8 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.28.9 # v1.0.26 with: sarif_file: results.sarif From a5dc5a573e8953ff2a96046d39d03621989c794b Mon Sep 17 00:00:00 2001 From: Craig Scott Date: Tue, 18 Feb 2025 21:11:15 +1100 Subject: [PATCH 06/13] Fix description for report_type input (#1770) The description stated "testing" was a valid value, but that leads to an error if you try to use it. The error message indicates that the value should be "test_results" instead. --- action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/action.yml b/action.yml index 5333ef67ce..3c86f0fe9c 100644 --- a/action.yml +++ b/action.yml @@ -116,7 +116,7 @@ inputs: description: 'The code of the report if using local upload. If unsure, leave default. Read more here https://docs.codecov.com/docs/the-codecov-cli#how-to-use-local-upload' required: false report_type: - description: 'The type of file to upload, coverage by default. Possible values are "testing", "coverage".' + description: 'The type of file to upload, coverage by default. Possible values are "test_results", "coverage".' required: false root_dir: description: 'Root folder from which to consider paths on the network section. Defaults to current working directory.' From 2e6e9c5a74ec004831b6d17edfb76c53a54d4d55 Mon Sep 17 00:00:00 2001 From: Alexander Grund Date: Tue, 18 Feb 2025 12:12:43 +0100 Subject: [PATCH 07/13] Fix use of safe.directory inside containers (#1768) * Fix use of safe.directory inside containers Inside a container the actual workspace path is a mount point and not the same as outside the container. E.g.: - `${{github.workspace}} == /home/runner/work/locale/locale` - `$GITHUB_WORKSPACE == /__w/locale/locale` So it seems `/home/runner/work` is mounted at `/__w` and this is reflected by the environment variable but not the context. So use that variable instead. * Update action.yml * Update action.yml * Update action.yml --------- Co-authored-by: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> --- action.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/action.yml b/action.yml index 3c86f0fe9c..3605b3a13c 100644 --- a/action.yml +++ b/action.yml @@ -181,7 +181,8 @@ runs: if: ${{ inputs.disable_safe_directory != 'true' }} shell: bash run: | - git config --global --add safe.directory ${{ github.workspace }} + git config --global --add safe.directory "${{ github.workspace }}" + git config --global --add safe.directory "$GITHUB_WORKSPACE" - name: Set fork shell: bash From 1fecca8ce3a22284e70b371077fb5219f54095b8 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=F0=9F=87=BA=F0=9F=87=A6=20Sviatoslav=20Sydorenko=20=28?= =?UTF-8?q?=D0=A1=D0=B2=D1=8F=D1=82=D0=BE=D1=81=D0=BB=D0=B0=D0=B2=20=D0=A1?= =?UTF-8?q?=D0=B8=D0=B4=D0=BE=D1=80=D0=B5=D0=BD=D0=BA=D0=BE=29?= Date: Thu, 20 Feb 2025 22:27:22 +0100 Subject: [PATCH 08/13] Clarify in README that `use_pypi` bypasses integrity checks too (#1773) --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index d9f340dbdc..9884674200 100644 --- a/README.md +++ b/README.md @@ -152,7 +152,7 @@ Codecov's Action supports inputs from the user. These inputs, along with their d | `url` | Set to the Codecov instance URl. Used by Dedicated Enterprise Cloud customers. | Optional | `use_legacy_upload_endpoint` | Use the legacy upload endpoint. | Optional | `use_oidc` | Use OIDC instead of token. This will ignore any token supplied | Optional -| `use_pypi` | Use the pypi version of the CLI instead of from cli.codecov.io | Optional +| `use_pypi` | Use the pypi version of the CLI instead of from cli.codecov.io. If specified, integrity checking will be bypassed. | Optional | `verbose` | Enable verbose logging | Optional | `version` | Which version of the Codecov CLI to use (defaults to 'latest') | Optional | `working-directory` | Directory in which to execute codecov.sh | Optional From 062ee7e02eae2193bf3772a3d8b4b7529204e133 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 17:01:26 -0300 Subject: [PATCH 09/13] build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 (#1777) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.9 to 3.28.10. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.28.9...v3.28.10) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 8d8f9d5071..c6d76f2baf 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.28.9 + uses: github/codeql-action/init@v3.28.10 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.28.9 + uses: github/codeql-action/autobuild@v3.28.10 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.28.9 + uses: github/codeql-action/analyze@v3.28.10 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 52fe09218a..27c930da4f 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.28.9 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.28.10 # v1.0.26 with: sarif_file: results.sarif From a46c158416052ffd00ef9c3fc11ff1bbec4ec700 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 17:01:57 -0300 Subject: [PATCH 10/13] build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (#1776) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.4.0 to 2.4.1. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/62b2cac7ed8198b15735ed49ab1e5cf35480ba46...f49aabe0b5af0936a0987cfb85d86b75731b0186) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 27c930da4f..41b8d07967 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -30,7 +30,7 @@ jobs: persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0 + uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1 with: results_file: results.sarif results_format: sarif From 2488e996fab00fd35d4bfea876db7531c9fa1ea3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 17:02:06 -0300 Subject: [PATCH 11/13] build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 (#1775) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.0 to 4.6.1. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08...4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 41b8d07967..68c3c4d9a6 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -49,7 +49,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 with: name: SARIF file path: results.sarif From c545d7bd451c5545ff63f9fda37b34bde3259a5d Mon Sep 17 00:00:00 2001 From: matt-codecov <137832199+matt-codecov@users.noreply.github.com> Date: Wed, 26 Feb 2025 15:27:14 -0800 Subject: [PATCH 12/13] update wrapper submodule to 0.2.0, add recurse_submodules arg (#1780) --- README.md | 1 + action.yml | 4 ++++ src/scripts | 2 +- 3 files changed, 6 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 9884674200..79008bf378 100644 --- a/README.md +++ b/README.md @@ -141,6 +141,7 @@ Codecov's Action supports inputs from the user. These inputs, along with their d | `override_commit` | Commit SHA (with 40 chars) | Optional | `override_pr` | Specify the pull request number manually. Used to override pre-existing CI environment variables. | Optional | `plugins` | Comma-separated list of plugins to run. Specify `noop` to turn off all plugins | Optional +| `recurse_submodules` | Whether to enumerate files inside of submodules for path-fixing purposes. Off by default. | Optional | `report_code` | The code of the report if using local upload. If unsure, leave unset. Read more here https://docs.codecov.com/docs/the-codecov-cli#how-to-use-local-upload | Optional | `report_type` | The type of file to upload, coverage by default. Possible values are "test_results", "coverage". | Optional | `root_dir` | Root folder from which to consider paths on the network section. Defaults to current working directory. | Optional diff --git a/action.yml b/action.yml index 3605b3a13c..aa709a1c81 100644 --- a/action.yml +++ b/action.yml @@ -112,6 +112,9 @@ inputs: plugins: description: 'Comma-separated list of plugins to run. Specify `noop` to turn off all plugins' required: false + recurse_submodules: + description: 'Whether to enumerate files inside of submodules for path-fixing purposes. Off by default.' + default: 'false' report_code: description: 'The code of the report if using local upload. If unsure, leave default. Read more here https://docs.codecov.com/docs/the-codecov-cli#how-to-use-local-upload' required: false @@ -300,6 +303,7 @@ runs: CC_OS: ${{ inputs.os }} CC_PARENT_SHA: ${{ inputs.commit_parent }} CC_PLUGINS: ${{ inputs.plugins }} + CC_RECURSE_SUBMODULES: ${{ inputs.recurse_submodules }} CC_REPORT_TYPE: ${{ inputs.report_type }} CC_RUN_CMD: ${{ inputs.run_command }} CC_SERVICE: ${{ inputs.git_service }} diff --git a/src/scripts b/src/scripts index ad7c6465b6..96f8531c88 160000 --- a/src/scripts +++ b/src/scripts @@ -1 +1 @@ -Subproject commit ad7c6465b6a6a1bc64d0be39ff1312b8ac76c6ea +Subproject commit 96f8531c88a811b53ea0b4ea7bbd691400d369c9 From 0565863a31f2c772f9f0395002a31e3f06189574 Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Wed, 26 Feb 2025 20:40:17 -0300 Subject: [PATCH 13/13] chore(release): 5.4.0 (#1781) --- CHANGELOG.md | 19 +++++++++++++++++++ dist/codecov.sh | 31 ++++++++++++++++--------------- src/version | 2 +- 3 files changed, 36 insertions(+), 16 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 7adc9e201b..45dc685e72 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,22 @@ +## v5.4.0 + +### What's Changed +* update wrapper submodule to 0.2.0, add recurse_submodules arg by @matt-codecov in https://github.com/codecov/codecov-action/pull/1780 +* build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1775 +* build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1776 +* build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1777 +* Clarify in README that `use_pypi` bypasses integrity checks too by @webknjaz in https://github.com/codecov/codecov-action/pull/1773 +* Fix use of safe.directory inside containers by @Flamefire in https://github.com/codecov/codecov-action/pull/1768 +* Fix description for report_type input by @craigscott-crascit in https://github.com/codecov/codecov-action/pull/1770 +* build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1765 +* Fix a typo in the example by @miranska in https://github.com/codecov/codecov-action/pull/1758 +* build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1757 +* build(deps): bump github/codeql-action from 3.28.1 to 3.28.5 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1753 + + +**Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.3.1..v5.4.0 + + ## v5.3.1 ### What's Changed diff --git a/dist/codecov.sh b/dist/codecov.sh index d29497c574..f2bc8e44ca 100755 --- a/dist/codecov.sh +++ b/dist/codecov.sh @@ -1,5 +1,5 @@ #!/usr/bin/env bash -CC_WRAPPER_VERSION="0.1.0" +CC_WRAPPER_VERSION="0.2.0" set +u say() { echo -e "$1" @@ -27,7 +27,7 @@ v_arg() { echo "$(eval echo \$"CC_$1")" fi } -write_truthy_args() { +write_bool_args() { if [ "$(eval echo \$$1)" = "true" ] || [ "$(eval echo \$$1)" = "1" ]; then echo "-$(lower $1)" @@ -143,8 +143,8 @@ then cc_cli_args+=( "--codecov-yml-path" ) cc_cli_args+=( "$CC_YML_PATH" ) fi -cc_cli_args+=( $(write_truthy_args CC_DISABLE_TELEM) ) -cc_cli_args+=( $(write_truthy_args CC_VERBOSE) ) +cc_cli_args+=( $(write_bool_args CC_DISABLE_TELEM) ) +cc_cli_args+=( $(write_bool_args CC_VERBOSE) ) if [ -n "$CC_TOKEN_VAR" ]; then token="$(eval echo \$$CC_TOKEN_VAR)" @@ -162,7 +162,7 @@ fi if [ "$CC_RUN_CMD" == "upload-coverage" ]; then cc_args=() # Args for create commit -cc_args+=( $(write_truthy_args CC_FAIL_ON_ERROR) ) +cc_args+=( $(write_bool_args CC_FAIL_ON_ERROR) ) cc_args+=( $(k_arg GIT_SERVICE) $(v_arg GIT_SERVICE)) cc_args+=( $(k_arg PARENT_SHA) $(v_arg PARENT_SHA)) cc_args+=( $(k_arg PR) $(v_arg PR)) @@ -177,9 +177,9 @@ cc_args+=( $(k_arg BRANCH) $(v_arg BRANCH)) cc_args+=( $(k_arg BUILD) $(v_arg BUILD)) cc_args+=( $(k_arg BUILD_URL) $(v_arg BUILD_URL)) cc_args+=( $(k_arg DIR) $(v_arg DIR)) -cc_args+=( $(write_truthy_args CC_DISABLE_FILE_FIXES) ) -cc_args+=( $(write_truthy_args CC_DISABLE_SEARCH) ) -cc_args+=( $(write_truthy_args CC_DRY_RUN) ) +cc_args+=( $(write_bool_args CC_DISABLE_FILE_FIXES) ) +cc_args+=( $(write_bool_args CC_DISABLE_SEARCH) ) +cc_args+=( $(write_bool_args CC_DRY_RUN) ) if [ -n "$CC_EXCLUDES" ]; then for directory in $CC_EXCLUDES; do @@ -202,9 +202,10 @@ cc_args+=( $(k_arg GCOV_ARGS) $(v_arg GCOV_ARGS)) cc_args+=( $(k_arg GCOV_EXECUTABLE) $(v_arg GCOV_EXECUTABLE)) cc_args+=( $(k_arg GCOV_IGNORE) $(v_arg GCOV_IGNORE)) cc_args+=( $(k_arg GCOV_INCLUDE) $(v_arg GCOV_INCLUDE)) -cc_args+=( $(write_truthy_args CC_HANDLE_NO_REPORTS_FOUND) ) +cc_args+=( $(write_bool_args CC_HANDLE_NO_REPORTS_FOUND) ) +cc_args+=( $(write_bool_args CC_RECURSE_SUBMODULES) ) cc_args+=( $(k_arg JOB_CODE) $(v_arg JOB_CODE)) -cc_args+=( $(write_truthy_args CC_LEGACY) ) +cc_args+=( $(write_bool_args CC_LEGACY) ) if [ -n "$CC_NAME" ]; then cc_args+=( "--name" "$CC_NAME" ) @@ -223,8 +224,8 @@ cc_args+=( $(k_arg SWIFT_PROJECT) $(v_arg SWIFT_PROJECT)) IFS=$OLDIFS elif [ "$CC_RUN_CMD" == "empty-upload" ]; then cc_args=() -cc_args+=( $(write_truthy_args CC_FAIL_ON_ERROR) ) -cc_args+=( $(write_truthy_args CC_FORCE) ) +cc_args+=( $(write_bool_args CC_FAIL_ON_ERROR) ) +cc_args+=( $(write_bool_args CC_FORCE) ) cc_args+=( $(k_arg GIT_SERVICE) $(v_arg GIT_SERVICE)) cc_args+=( $(k_arg SHA) $(v_arg SHA)) cc_args+=( $(k_arg SLUG) $(v_arg SLUG)) @@ -237,7 +238,7 @@ cc_args+=( $(k_arg SERVICE) $(v_arg SERVICE)) elif [ "$CC_RUN_CMD" == "send-notifications" ]; then cc_args=() cc_args+=( $(k_arg SHA) $(v_arg SHA)) -cc_args+=( $(write_truthy_args CC_FAIL_ON_ERROR) ) +cc_args+=( $(write_bool_args CC_FAIL_ON_ERROR) ) cc_args+=( $(k_arg GIT_SERVICE) $(v_arg GIT_SERVICE)) cc_args+=( $(k_arg SLUG) $(v_arg SLUG)) else @@ -245,9 +246,9 @@ else exit fi unset NODE_OPTIONS -# See https://github.com/codecov/uploader/issues/475 +# https://github.com/codecov/uploader/issues/475 say "$g==>$x Running $CC_RUN_CMD" -say " $b$cc_command $(echo "${cc_cli_args[@]}")$CC_RUN_CMD$token_str $(echo "${cc_args[@]}")$x" +say " $b$cc_command $(echo "${cc_cli_args[@]}") $CC_RUN_CMD$token_str $(echo "${cc_args[@]}")$x" if ! $cc_command \ ${cc_cli_args[*]} \ ${CC_RUN_CMD} \ diff --git a/src/version b/src/version index c7cb1311a6..8a30e8f94a 100644 --- a/src/version +++ b/src/version @@ -1 +1 @@ -5.3.1 +5.4.0