289 Commits

Author	SHA1	Message	Date
Zanie Blue	973ae7e922	Disable the fuzzer CI job (#9369) ... The job is failing to compile. We should resolve separately but I am disabling for now since it breaks pull requests. See https://github.com/astral-sh/ruff/issues/9368	2024-01-02 16:05:39 -06:00
Charlie Marsh	772e5d587d	Remove `flake8-to-ruff` (#9329) ... ## Summary We stopped releasing this a while ago and no longer advertise it anywhere. IMO, we should remove it so that we stop paying the cost of maintaining it. If we want to revive it, we can always do so from Git.	2023-12-31 11:09:56 -05:00
Henry Schreiner	74dba3ee59	ci: group dependabot updates (#9249) ... See https://github.com/scientific-python/cookie/pull/348. Signed-off-by: Henry Schreiner <henryschreineriii@gmail.com>	2023-12-22 23:39:52 -06:00
Charlie Marsh	bb86d359d4	Run cargo with `--locked` in CI (#9247) ... This should ensure that CI fails if the lockfile is not up-to-date (see: https://github.com/astral-sh/ruff/pull/9235).	2023-12-22 15:53:42 +00:00
dependabot[bot]	0977fa987b	Bump dawidd6/action-download-artifact from 2 to 3 (#9178) ... Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dawidd6/action-download-artifact/releases">dawidd6/action-download-artifact's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <p>Node was updated from 16 to 20. Node 20 requires <code>glibc&gt;=2.28</code>.</p> <h2>v2.28.0</h2> <p>No release notes provided.</p> <h2>v2.27.0</h2> <p>No release notes provided.</p> <h2>v2.26.1</h2> <p>No release notes provided.</p> <h2>v2.26.0</h2> <p>No release notes provided.</p> <h2>v2.25.0</h2> <p>No release notes provided.</p> <h2>v2.24.4</h2> <p>No release notes provided.</p> <h2>v2.24.3</h2> <p>No release notes provided.</p> <h2>v2.24.2</h2> <p>No release notes provided.</p> <h2>v2.24.0</h2> <p>No release notes provided.</p> <h2>v2.23.0</h2> <p>No release notes provided.</p> <h2>v2.22.0</h2> <p>No release notes provided.</p> <h2>v2.21.1</h2> <p>No release notes provided.</p> <h2>v2.21.0</h2> <p>No release notes provided.</p> <h2>v2.20.0</h2> <p>No release notes provided.</p> <h2>v2.19.0</h2> <p>No release notes provided.</p> <h2>v2.18.0</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="e7466d1a75"><code>e7466d1</code></a> build(deps): bump <code>@​actions/artifact</code> from 1.1.2 to 2.0.0 (<a href="https://redirect.github.com/dawidd6/action-download-artifact/issues/260">#260</a>)</li> <li><a href="f29d1b6a89"><code>f29d1b6</code></a> node_modules: upgrade</li> <li><a href="587cee61f5"><code>587cee6</code></a> action: node16 -&gt; node20 (<a href="https://redirect.github.com/dawidd6/action-download-artifact/issues/259">#259</a>)</li> <li><a href="1cf761fba6"><code>1cf761f</code></a> build(deps): bump undici from 5.25.4 to 5.28.2 (<a href="https://redirect.github.com/dawidd6/action-download-artifact/issues/258">#258</a>)</li> <li><a href="d44631c448"><code>d44631c</code></a> build(deps): bump <code>@​actions/github</code> from 5.1.1 to 6.0.0 (<a href="https://redirect.github.com/dawidd6/action-download-artifact/issues/252">#252</a>)</li> <li>See full diff in <a href="https://github.com/dawidd6/action-download-artifact/compare/v2...v3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-12-18 14:18:14 +01:00
dependabot[bot]	108260298f	Bump actions/setup-python from 4 to 5 (#9084)	2023-12-11 15:49:32 -05:00
konsti	cd2bf26845	Fix alpine CI (#9085) ... The builds are failing with > error: externally-managed-environment I've added a venv	2023-12-11 09:47:38 +01:00
Zanie Blue	d22ce5372d	Fix determine changes detection of "code" changes (#9038) ... Replaces https://github.com/astral-sh/ruff/pull/9035 Fixes https://github.com/astral-sh/ruff/pull/8225 The issue appears to be that `*/**` was used instead of `**/*` which did not match _any_ changed file as desired	2023-12-07 03:55:12 +00:00
Zanie Blue	06c9f625b6	Fix detection of changed files in CI (#9035) ... These were literals instead of expressions... and were consequently not evaluated. Fixes bug from #8225	2023-12-06 21:14:58 -06:00
Torbjörn Lönnemark	3def18fc21	Include version number in release archive names (#9002) ... ## Summary Add a release's version number to the names of archives containing binaries that are attached to that GitHub release. This makes it possible for users to easily tell archives from different downloaded releases apart. See also: #8961 ## Test Plan The workflow was tested in my fork. The example release can be found at: [https://github.com/tobbez/ruff/releases/tag/v0.1.7](https://github.com/tobbez/ruff/releases/tag/v0.1.7). To allow the workflow run to succeed in the fork while testing, I had to use a small commit to prevent interaction with external services (ghcr, PyPI, and the ruff-pre-commit repository): ```diff diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 86eac6ebc..56b9fa908 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -463,10 +463,12 @@ jobs: id-token: write steps: - uses: actions/download-artifact@v3 + if: false with: name: wheels path: wheels - name: Publish to PyPi + if: false uses: pypa/gh-action-pypi-publish@release/v1 with: skip-existing: true @@ -517,6 +519,7 @@ jobs: tag_name: v${{ inputs.tag }} docker-publish: + if: false # This action doesn't need to wait on any other task, it's easy to re-tag if something failed and we're validating # the tag here also name: Push Docker image ghcr.io/astral-sh/ruff @@ -575,6 +578,7 @@ jobs: # After the release has been published, we update downstream repositories # This is separate because if this fails the release is still fine, we just need to do some manual workflow triggers update-dependents: + if: false name: Update dependents runs-on: ubuntu-latest needs: publish-release ``` Those workflow jobs are however not modified by this PR, so they should not be affected.	2023-12-05 14:42:04 -05:00
dependabot[bot]	fe54ef08aa	Bump CodSpeedHQ/action from 1 to 2 (#8989) ... Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-12-05 00:00:40 +00:00
Andrey	08f3110f1e	Optimize workflow run (#8225)	2023-11-30 00:09:33 +00:00
T-256	aec80dc3ab	Ruff ecosystem: pass no-preview cli arg by default (#8775) ... Addresses https://github.com/astral-sh/ruff/pull/8489#issuecomment-1793513411 That issues still exist on formatter, but since `black` doesn't support `no-preview` cli arg, I didn't include it in this PR. --------- Co-authored-by: Zanie <contact@zanie.dev>	2023-11-20 12:21:51 -06:00
dependabot[bot]	779a5a9c32	Bump actions/github-script from 6 to 7 (#8780) ... Bumps [actions/github-script](https://github.com/actions/github-script) from 6 to 7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/github-script/releases">actions/github-script's releases</a>.</em></p> <blockquote> <h2>v7.0.0</h2> <h2>What's Changed</h2> <ul> <li>Add base-url option by <a href="https://github.com/robandpdx"><code>@​robandpdx</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/429">actions/github-script#429</a></li> <li>Expose async-function argument type by <a href="https://github.com/viktorlott"><code>@​viktorlott</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/402">actions/github-script#402</a>, see for details <a href="https://github.com/actions/github-script#use-scripts-with-jsdoc-support">https://github.com/actions/github-script#use-scripts-with-jsdoc-support</a></li> <li>Update dependencies and use Node 20 by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/425">actions/github-script#425</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/navarroaxel"><code>@​navarroaxel</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/285">actions/github-script#285</a></li> <li><a href="https://github.com/robandpdx"><code>@​robandpdx</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/429">actions/github-script#429</a></li> <li><a href="https://github.com/viktorlott"><code>@​viktorlott</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/402">actions/github-script#402</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v6.4.1...v7.0.0">https://github.com/actions/github-script/compare/v6.4.1...v7.0.0</a></p> <h2>v6.4.1</h2> <h2>What's Changed</h2> <ul> <li>Add <code>@​octokit/plugin-request-log</code>, to produce debug output for requests by <a href="https://github.com/mjpieters"><code>@​mjpieters</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/358">actions/github-script#358</a></li> <li>fix input handling by <a href="https://github.com/mjpieters"><code>@​mjpieters</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/357">actions/github-script#357</a></li> <li>Remove unused dependencies by <a href="https://github.com/mjpieters"><code>@​mjpieters</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/356">actions/github-script#356</a></li> <li>Default debug to current runner debug state by <a href="https://github.com/mjpieters"><code>@​mjpieters</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/363">actions/github-script#363</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/mjpieters"><code>@​mjpieters</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/358">actions/github-script#358</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v6.4.0...v6.4.1">https://github.com/actions/github-script/compare/v6.4.0...v6.4.1</a></p> <h2>v6.4.0</h2> <h2>What's Changed</h2> <ul> <li>Bump json5 from 2.1.3 to 2.2.3 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/319">actions/github-script#319</a></li> <li>Bump minimatch from 3.0.4 to 3.1.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/320">actions/github-script#320</a></li> <li>Add node-fetch by <a href="https://github.com/danmichaelo"><code>@​danmichaelo</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/321">actions/github-script#321</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/jongwooo"><code>@​jongwooo</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/313">actions/github-script#313</a></li> <li><a href="https://github.com/austinvazquez"><code>@​austinvazquez</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/306">actions/github-script#306</a></li> <li><a href="https://github.com/danmichaelo"><code>@​danmichaelo</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/321">actions/github-script#321</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v6.3.3...v6.4.0">https://github.com/actions/github-script/compare/v6.3.3...v6.4.0</a></p> <h2>v6.3.3</h2> <h2>What's Changed</h2> <ul> <li>Update <code>@actions/glob</code> to 0.3.0 by <a href="https://github.com/nineinchnick"><code>@​nineinchnick</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/279">actions/github-script#279</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/nineinchnick"><code>@​nineinchnick</code></a> made their first contribution in <a href="https://redirect.github.com/actions/github-script/pull/279">actions/github-script#279</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v6.3.2...v6.3.3">https://github.com/actions/github-script/compare/v6.3.2...v6.3.3</a></p> <h2>v6.3.2</h2> <h2>What's Changed</h2> <ul> <li>Update <code>@​actions/core</code> to 1.10.0 by <a href="https://github.com/rentziass"><code>@​rentziass</code></a> in <a href="https://redirect.github.com/actions/github-script/pull/295">actions/github-script#295</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="60a0d83039"><code>60a0d83</code></a> Merge pull request <a href="https://redirect.github.com/actions/github-script/issues/440">#440</a> from actions/joshmgross/v7.0.1</li> <li><a href="b7fb2001b4"><code>b7fb200</code></a> Update version to 7.0.1</li> <li><a href="12e22ed06b"><code>12e22ed</code></a> Merge pull request <a href="https://redirect.github.com/actions/github-script/issues/439">#439</a> from actions/joshmgross/avoid-setting-base-url</li> <li><a href="d319f8f5b5"><code>d319f8f</code></a> Avoid setting <code>baseUrl</code> to undefined when input is not provided</li> <li><a href="e69ef5462f"><code>e69ef54</code></a> Merge pull request <a href="https://redirect.github.com/actions/github-script/issues/425">#425</a> from actions/joshmgross/node-20</li> <li><a href="ee0914b839"><code>ee0914b</code></a> Update licenses</li> <li><a href="d6fc56f33b"><code>d6fc56f</code></a> Use <code>@types/node</code> for Node 20</li> <li><a href="384d6cf581"><code>384d6cf</code></a> Fix quotations in tests</li> <li><a href="84724927e3"><code>8472492</code></a> Only validate GraphQL <code>previews</code></li> <li><a href="84903f5182"><code>84903f5</code></a> Remove <code>node-fetch</code> from type</li> <li>Additional commits viewable in <a href="https://github.com/actions/github-script/compare/v6...v7">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-11-20 09:32:56 +01:00
dependabot[bot]	bba43029d4	Bump docker/metadata-action from 4 to 5 (#8778) ... Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/metadata-action/releases">docker/metadata-action's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <ul> <li>Node 20 as default runtime (requires <a href="https://github.com/actions/runner/releases/tag/v2.308.0">Actions Runner v2.308.0</a> or later) by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/metadata-action/pull/328">docker/metadata-action#328</a></li> <li>Bump <code>@​actions/core</code> from 1.10.0 to 1.10.1 in <a href="https://redirect.github.com/docker/metadata-action/pull/333">docker/metadata-action#333</a></li> <li>Bump csv-parse from 5.4.0 to 5.5.0 in <a href="https://redirect.github.com/docker/metadata-action/pull/320">docker/metadata-action#320</a></li> <li>Bump semver from 7.5.1 to 7.5.2 in <a href="https://redirect.github.com/docker/metadata-action/pull/304">docker/metadata-action#304</a></li> <li>Bump handlebars from 4.7.7 to 4.7.8 in <a href="https://redirect.github.com/docker/metadata-action/pull/315">docker/metadata-action#315</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.6.0...v5.0.0">https://github.com/docker/metadata-action/compare/v4.6.0...v5.0.0</a></p> <h2>v4.6.0</h2> <ul> <li>Dedup and sort labels by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/metadata-action/pull/301">docker/metadata-action#301</a></li> <li>Bump <code>@​docker/actions-toolkit</code> from 0.3.0 to 0.5.0 in <a href="https://redirect.github.com/docker/metadata-action/pull/302">docker/metadata-action#302</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.5.0...v4.6.0">https://github.com/docker/metadata-action/compare/v4.5.0...v4.6.0</a></p> <h2>v4.5.0</h2> <ul> <li>Bump <code>@​docker/actions-toolkit</code> from 0.1.0 to 0.3.0 in <a href="https://redirect.github.com/docker/metadata-action/pull/296">docker/metadata-action#296</a></li> <li>Bump csv-parse from 5.3.8 to 5.4.0 in <a href="https://redirect.github.com/docker/metadata-action/pull/294">docker/metadata-action#294</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.4.0...v4.5.0">https://github.com/docker/metadata-action/compare/v4.4.0...v4.5.0</a></p> <h2>v4.4.0</h2> <ul> <li>Add <code>context</code> input to define the metadata provider by <a href="https://github.com/neilime"><code>@​neilime</code></a> in <a href="https://redirect.github.com/docker/metadata-action/pull/248">docker/metadata-action#248</a></li> <li>Switch to actions-toolkit implementation by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/metadata-action/pull/266">docker/metadata-action#266</a> <a href="https://redirect.github.com/docker/metadata-action/pull/273">docker/metadata-action#273</a> <a href="https://redirect.github.com/docker/metadata-action/pull/284">docker/metadata-action#284</a></li> <li>Bump csv-parse from 5.3.3 to 5.3.8 in <a href="https://redirect.github.com/docker/metadata-action/pull/271">docker/metadata-action#271</a> <a href="https://redirect.github.com/docker/metadata-action/pull/286">docker/metadata-action#286</a></li> <li>Bump moment-timezone from 0.5.40 to 0.5.43 in <a href="https://redirect.github.com/docker/metadata-action/pull/268">docker/metadata-action#268</a> <a href="https://redirect.github.com/docker/metadata-action/pull/278">docker/metadata-action#278</a> <a href="https://redirect.github.com/docker/metadata-action/pull/281">docker/metadata-action#281</a></li> <li>Bump semver from 7.4.0 to 7.5.0 in <a href="https://redirect.github.com/docker/metadata-action/pull/285">docker/metadata-action#285</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.3.0...v4.4.0">https://github.com/docker/metadata-action/compare/v4.3.0...v4.4.0</a></p> <h2>v4.3.0</h2> <ul> <li>Provide outputs as env vars by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://redirect.github.com/docker/metadata-action/issues/257">#257</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.2.0...v4.3.0">https://github.com/docker/metadata-action/compare/v4.2.0...v4.3.0</a></p> <h2>v4.2.0</h2> <ul> <li>Add <code>tz</code> attribute to handlebar date function by <a href="https://github.com/chroju"><code>@​chroju</code></a> (<a href="https://redirect.github.com/docker/metadata-action/issues/251">#251</a>)</li> <li>Bump minimatch from 3.0.4 to 3.1.2 (<a href="https://redirect.github.com/docker/metadata-action/issues/242">#242</a>)</li> <li>Bump csv-parse from 5.3.1 to 5.3.3 (<a href="https://redirect.github.com/docker/metadata-action/issues/245">#245</a>)</li> <li>Bump json5 from 2.2.0 to 2.2.3 (<a href="https://redirect.github.com/docker/metadata-action/issues/252">#252</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.1.1...v4.2.0">https://github.com/docker/metadata-action/compare/v4.1.1...v4.2.0</a></p> <h2>v4.1.1</h2> <ul> <li>Revert changes to set associated head sha on pull request event by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://redirect.github.com/docker/metadata-action/issues/239">#239</a>) <ul> <li>User can still set associated head sha on PR by setting the env var <code>DOCKER_METADATA_PR_HEAD_SHA=true</code></li> </ul> </li> <li>Bump csv-parse from 5.3.0 to 5.3.1 (<a href="https://redirect.github.com/docker/metadata-action/issues/237">#237</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.1.0...v4.1.1">https://github.com/docker/metadata-action/compare/v4.1.0...v4.1.1</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Upgrade guide</summary> <p><em>Sourced from <a href="https://github.com/docker/metadata-action/blob/master/UPGRADE.md">docker/metadata-action's upgrade guide</a>.</em></p> <blockquote> <h1>Upgrade notes</h1> <h2>v2 to v3</h2> <ul> <li>Repository has been moved to docker org. Replace <code>crazy-max/ghaction-docker-meta@v2</code> with <code>docker/metadata-action@v5</code></li> <li>The default bake target has been changed: <code>ghaction-docker-meta</code> &gt; <code>docker-metadata-action</code></li> </ul> <h2>v1 to v2</h2> <ul> <li><a href="https://github.com/docker/metadata-action/blob/master/#inputs">inputs</a> <ul> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-sha"><code>tag-sha</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-edge--tag-edge-branch"><code>tag-edge</code> / <code>tag-edge-branch</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-semver"><code>tag-semver</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-match--tag-match-group"><code>tag-match</code> / <code>tag-match-group</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-latest"><code>tag-latest</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-schedule"><code>tag-schedule</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#tag-custom--tag-custom-only"><code>tag-custom</code> / <code>tag-custom-only</code></a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#label-custom"><code>label-custom</code></a></li> </ul> </li> <li><a href="https://github.com/docker/metadata-action/blob/master/#basic-workflow">Basic workflow</a></li> <li><a href="https://github.com/docker/metadata-action/blob/master/#semver-workflow">Semver workflow</a></li> </ul> <h3>inputs</h3> <table> <thead> <tr> <th>New</th> <th>Unchanged</th> <th>Removed</th> </tr> </thead> <tbody> <tr> <td><code>tags</code></td> <td><code>images</code></td> <td><code>tag-sha</code></td> </tr> <tr> <td><code>flavor</code></td> <td><code>sep-tags</code></td> <td><code>tag-edge</code></td> </tr> <tr> <td><code>labels</code></td> <td><code>sep-labels</code></td> <td><code>tag-edge-branch</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-semver</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-match</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-match-group</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-latest</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-schedule</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-custom</code></td> </tr> <tr> <td></td> <td></td> <td><code>tag-custom-only</code></td> </tr> <tr> <td></td> <td></td> <td><code>label-custom</code></td> </tr> </tbody> </table> <h4><code>tag-sha</code></h4> <pre lang="yaml"><code>tags: | type=sha </code></pre> <h4><code>tag-edge</code> / <code>tag-edge-branch</code></h4> <pre lang="yaml"><code>tags: | # default branch &lt;/tr&gt;&lt;/table&gt; </code></pre> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="96383f4557"><code>96383f4</code></a> Merge pull request <a href="https://redirect.github.com/docker/metadata-action/issues/320">#320</a> from docker/dependabot/npm_and_yarn/csv-parse-5.5.0</li> <li><a href="f138b9677b"><code>f138b96</code></a> chore: update generated content</li> <li><a href="9cf7015b15"><code>9cf7015</code></a> Bump csv-parse from 5.4.0 to 5.5.0</li> <li><a href="5a8a5ff8df"><code>5a8a5ff</code></a> Merge pull request <a href="https://redirect.github.com/docker/metadata-action/issues/315">#315</a> from docker/dependabot/npm_and_yarn/handlebars-4.7.8</li> <li><a href="2279d9af58"><code>2279d9a</code></a> chore: update generated content</li> <li><a href="c659933213"><code>c659933</code></a> Bump handlebars from 4.7.7 to 4.7.8</li> <li><a href="48d23ccc05"><code>48d23cc</code></a> Merge pull request <a href="https://redirect.github.com/docker/metadata-action/issues/333">#333</a> from docker/dependabot/npm_and_yarn/actions/core-1.10.1</li> <li><a href="b83ffb48d6"><code>b83ffb4</code></a> chore: update generated content</li> <li><a href="3207f2405f"><code>3207f24</code></a> Bump <code>@​actions/core</code> from 1.10.0 to 1.10.1</li> <li><a href="63f4a263e5"><code>63f4a26</code></a> Merge pull request <a href="https://redirect.github.com/docker/metadata-action/issues/328">#328</a> from crazy-max/update-node20</li> <li>Additional commits viewable in <a href="https://github.com/docker/metadata-action/compare/v4...v5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-11-20 09:32:31 +01:00
dependabot[bot]	1de5425f7d	Bump docker/build-push-action from 3 to 5 (#8779) ... Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <ul> <li>Node 20 as default runtime (requires <a href="https://github.com/actions/runner/releases/tag/v2.308.0">Actions Runner v2.308.0</a> or later) by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/954">docker/build-push-action#954</a></li> <li>Bump <code>@​actions/core</code> from 1.10.0 to 1.10.1 in <a href="https://redirect.github.com/docker/build-push-action/pull/959">docker/build-push-action#959</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v4.2.1...v5.0.0">https://github.com/docker/build-push-action/compare/v4.2.1...v5.0.0</a></p> <h2>v4.2.1</h2> <blockquote> <p><strong>Note</strong></p> <p>Buildx v0.10 enables support for a minimal <a href="https://slsa.dev/provenance/">SLSA Provenance</a> attestation, which requires support for <a href="https://github.com/opencontainers/image-spec">OCI-compliant</a> multi-platform images. This may introduce issues with registry and runtime support (e.g. <a href="https://redirect.github.com/docker/buildx/issues/1533">Google Cloud Run and AWS Lambda</a>). You can optionally disable the default provenance attestation functionality using <code>provenance: false</code>.</p> </blockquote> <ul> <li>warn if docker config can't be parsed by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/957">docker/build-push-action#957</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v4.2.0...v4.2.1">https://github.com/docker/build-push-action/compare/v4.2.0...v4.2.1</a></p> <h2>v4.2.0</h2> <blockquote> <p><strong>Note</strong></p> <p>Buildx v0.10 enables support for a minimal <a href="https://slsa.dev/provenance/">SLSA Provenance</a> attestation, which requires support for <a href="https://github.com/opencontainers/image-spec">OCI-compliant</a> multi-platform images. This may introduce issues with registry and runtime support (e.g. <a href="https://redirect.github.com/docker/buildx/issues/1533">Google Cloud Run and AWS Lambda</a>). You can optionally disable the default provenance attestation functionality using <code>provenance: false</code>.</p> </blockquote> <ul> <li>display proxy configuration by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/872">docker/build-push-action#872</a></li> <li>chore(deps): Bump <code>@​docker/actions-toolkit</code> from 0.6.0 to 0.8.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/930">docker/build-push-action#930</a></li> <li>chore(deps): Bump word-wrap from 1.2.3 to 1.2.5 in <a href="https://redirect.github.com/docker/build-push-action/pull/925">docker/build-push-action#925</a></li> <li>chore(deps): Bump semver from 6.3.0 to 6.3.1 in <a href="https://redirect.github.com/docker/build-push-action/pull/902">docker/build-push-action#902</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v4.1.1...v4.2.0">https://github.com/docker/build-push-action/compare/v4.1.1...v4.2.0</a></p> <h2>v4.1.1</h2> <blockquote> <p><strong>Note</strong></p> <p>Buildx v0.10 enables support for a minimal <a href="https://slsa.dev/provenance/">SLSA Provenance</a> attestation, which requires support for <a href="https://github.com/opencontainers/image-spec">OCI-compliant</a> multi-platform images. This may introduce issues with registry and runtime support (e.g. <a href="https://redirect.github.com/docker/buildx/issues/1533">Google Cloud Run and AWS Lambda</a>). You can optionally disable the default provenance attestation functionality using <code>provenance: false</code>.</p> </blockquote> <ul> <li>Bump <code>@​docker/actions-toolkit</code> from 0.3.0 to 0.5.0 by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/880">docker/build-push-action#880</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v4.1.0...v4.1.1">https://github.com/docker/build-push-action/compare/v4.1.0...v4.1.1</a></p> <h2>v4.1.0</h2> <blockquote> <p><strong>Note</strong></p> <p>Buildx v0.10 enables support for a minimal <a href="https://slsa.dev/provenance/">SLSA Provenance</a> attestation, which requires support for <a href="https://github.com/opencontainers/image-spec">OCI-compliant</a> multi-platform images. This may introduce issues with registry and runtime support (e.g. <a href="https://redirect.github.com/docker/buildx/issues/1533">Google Cloud Run and AWS Lambda</a>). You can optionally disable the default provenance attestation functionality using <code>provenance: false</code>.</p> </blockquote> <ul> <li>Switch to actions-toolkit implementation by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/811">docker/build-push-action#811</a> <a href="https://redirect.github.com/docker/build-push-action/pull/838">docker/build-push-action#838</a> <a href="https://redirect.github.com/docker/build-push-action/pull/855">docker/build-push-action#855</a> <a href="https://redirect.github.com/docker/build-push-action/pull/860">docker/build-push-action#860</a> <a href="https://redirect.github.com/docker/build-push-action/pull/875">docker/build-push-action#875</a></li> <li>e2e: quay.io by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/799">docker/build-push-action#799</a> <a href="https://redirect.github.com/docker/build-push-action/pull/805">docker/build-push-action#805</a></li> <li>e2e: local harbor and nexus by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/800">docker/build-push-action#800</a></li> <li>e2e: add artifactory container registry to test against by <a href="https://github.com/jedevc"><code>@​jedevc</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/804">docker/build-push-action#804</a></li> <li>e2e: add distribution tests by <a href="https://github.com/jedevc"><code>@​jedevc</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/814">docker/build-push-action#814</a> <a href="https://redirect.github.com/docker/build-push-action/pull/815">docker/build-push-action#815</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v4.0.0...v4.1.0">https://github.com/docker/build-push-action/compare/v4.0.0...v4.1.0</a></p> <h2>v4.0.0</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="4a13e500e5"><code>4a13e50</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1006">#1006</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="7416668686"><code>7416668</code></a> chore: update generated content</li> <li><a href="b4f76a5dc6"><code>b4f76a5</code></a> chore(deps): Bump <code>@​docker/actions-toolkit</code> from 0.13.0 to 0.14.0</li> <li><a href="b7feb766fa"><code>b7feb76</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1005">#1005</a> from crazy-max/ci-inspect</li> <li><a href="fae8018297"><code>fae8018</code></a> ci: inspect sbom and provenance</li> <li><a href="b625868b13"><code>b625868</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1004">#1004</a> from crazy-max/ci-update-buildx</li> <li><a href="5193ef1da6"><code>5193ef1</code></a> ci: update buildx to latest</li> <li><a href="d3afd779e4"><code>d3afd77</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/991">#991</a> from docker/dependabot/npm_and_yarn/babel/traverse-7....</li> <li><a href="7a786bb2b9"><code>7a786bb</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/992">#992</a> from crazy-max/annotations</li> <li><a href="c66ae3adcf"><code>c66ae3a</code></a> chore: update generated content</li> <li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/v3...v5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-11-20 09:32:22 +01:00
konsti	a7fc785cc5	Add a ruff docker image at ghcr.io/astral-sh/ruff (#8554) ... This dockerfile creates a minimal docker container that runs ruff ```console $ docker run -v .:/io --rm ruff check --select G004 . scripts/check_ecosystem.py:51:26: G004 Logging statement uses f-string scripts/check_ecosystem.py:55:22: G004 Logging statement uses f-string scripts/check_ecosystem.py:84:13: G004 Logging statement uses f-string scripts/check_ecosystem.py:177:18: G004 Logging statement uses f-string scripts/check_ecosystem.py:200:18: G004 Logging statement uses f-string scripts/check_ecosystem.py:354:18: G004 Logging statement uses f-string scripts/check_ecosystem.py:477:18: G004 Logging statement uses f-string Found 7 errors. ``` ```console $ docker image ls ruff REPOSITORY TAG IMAGE ID CREATED SIZE ruff latest 505876b0f817 2 minutes ago 16.2MB ``` Test repo: https://github.com/konstin/release-testing2 Successful build: https://github.com/konstin/release-testing2/actions/runs/6862107104/job/18659155108 The package: https://github.com/konstin/release-testing2/pkgs/container/release-testing2 After merging this, i have to manually push the first image and connect it the repo in the github UI or the action will fail due to lack of permissions Open questions: * Test arm version: Anyone working on an aarch64 linux machine? I don't see this failing or a high-priority deployment (the vast majority of linux users is on x86), but it would be nice to have it tested one. --------- Co-authored-by: Zanie Blue <contact@zanie.dev>	2023-11-17 19:44:28 +01:00
Charlie Marsh	a8e0d4ab4f	Fix lingering generated reference for MkDocs (#8658) ... Missed this in #8652.	2023-11-13 18:00:01 +00:00
Charlie Marsh	6a6de53722	Omit Insiders-only plugin when building docs on CI (#8652)	2023-11-13 10:24:58 -05:00
Zanie Blue	fe9727ac38	Add `rooster` release management configuration and instructions (#8567) ... I'd rather not be the only one who can easily generate our changelog entries so I invested some time to get Rooster a bit further along and add instructions.	2023-11-08 13:08:19 -06:00
T-256	72964529a5	Skip ecosystem check when no changes detected (#8520) ... <!-- Thank you for contributing to Ruff! To help us out with reviewing, please consider the following: - Does this pull request include a summary of the change? (See below.) - Does this pull request include a descriptive title? - Does this pull request include references to any relevant issues? --> ## Summary For example, https://github.com/astral-sh/ruff/pull/8512 doesn't need ecosystem check <!-- What's the purpose of the change? What does it do, and why? --> ## Test Plan <!-- How was it tested? -->	2023-11-06 12:18:20 -06:00
Zanie Blue	7dd5137913	Fix ecosystem check bug where comment is no longer updated (#8446) ... Instead, a second is posted	2023-11-02 10:49:57 -05:00
Zanie Blue	df4dc040de	Run both stable and preview ecosystem checks (#8422) ... Closes https://github.com/astral-sh/ruff/issues/8076 Follow-up to #8358 Doubles the amount of ecosystem checks we do, adding separate groups for the stable sections. We're likely to run into GitHub comment length restrictions if there are significant deviations. However, it should not be common for changes in stable and preview to occur at the same time, nor should it be common for linter and formatter changes to occur at the same time.	2023-11-01 20:51:21 -05:00
konsti	d5abe55b03	Include rust-toolchain in source distribution (#8414) ... **Summary** Simplify CI by ensuring that the source distribution is always built with the rust version that has been explicitly tested. See discussion in #8389 Closes #8389 --------- Co-authored-by: Zanie <contact@zanie.dev> Co-authored-by: Stijn de Gooijer <stijndegooijer@gmail.com>	2023-11-01 13:51:14 -05:00
Zanie Blue	3fc920cd12	Run ecosystem checks with preview mode enabled (#8358) ... Until https://github.com/astral-sh/ruff/issues/8076 is ready, it seems beneficial to get feedback on preview mode changes. Tested locally, updated logs to output the flags passed to `ruff` and verified `--preview` is used.	2023-11-01 12:12:02 -05:00
Zanie Blue	982ae6ff08	Ensure that ecosystem check job fails if the tooling encounters an unexpected error (#8365) ... Previously, `| tee` would hide bad exit codes from `ruff-ecosystem ...` See poc failure at https://github.com/astral-sh/ruff/actions/runs/6698487019/job/18200852648?pr=8365	2023-10-30 19:48:38 -05:00
dependabot[bot]	03df6fa105	Bump cloudflare/wrangler-action from 3.3.1 to 3.3.2 (#8348) ... Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-30 09:08:55 +00:00
dependabot[bot]	951c59c6ad	Bump actions/setup-node from 3 to 4 (#8349) ... Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-30 09:08:01 +00:00
dependabot[bot]	bdad5e9a5f	Bump tj-actions/changed-files from 39 to 40 (#8347) ... Co-authored-by: dependabot[bot] <!-- raw HTML omitted --> (<a Co-authored-by: jackton1 <a Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-10-30 09:05:45 +00:00
Zanie Blue	af4cb34ce2	Update old ecosystem checks for formatter for clarity (#8285) ... Changes the title and adds some notes re the old formatter ecosystem checks in light of #8223 Does not remove it as I'm not sure where else we test for instabilities.	2023-10-29 00:13:28 -05:00
Zanie Blue	fc94857a20	Rewrite ecosystem checks and add `ruff format` reports (#8223) ... Closes #7239 - Refactors `scripts/check_ecosystem.py` into a new Python project at `python/ruff-ecosystem` - Includes [documentation](https://github.com/astral-sh/ruff/blob/zanie/ecosystem-format/python/ruff-ecosystem/README.md) now - Provides a `ruff-ecosystem` CLI - Fixes bug where `ruff check` report included "fixable" summary line - Adds truncation to `ruff check` reports - Otherwise we often won't see the `ruff format` reports - The truncation uses some very simple heuristics and could be improved in the future - Identifies diagnostic changes that occur just because a violation's fix available changes - We still show the diff for the line because it's could matter _where_ this changes, but we could improve this - Similarly, we could improve detection of diagnostic changes where just the message changes - Adds support for JSON ecosystem check output - I added this primarily for development purposes - If there are no changes, only errors while processing projects, we display a different summary message - When caching repositories, we now checkout the requested ref - Adds `ruff format` reports, which format with the baseline then the use `format --diff` to generate a report - Runs all CI jobs when the CI workflow is changed ## Known problems - Since we must format the project to get a baseline, the permalink line numbers do not exactly correspond to the correct range - This looks... hard. I tried using `git diff` and some wonky hunk matching to recover the original line numbers but it doesn't seem worth it. I think we should probably commit the formatted changes to a fork or something if we want great results here. Consequently, I've just used the start line instead of a range for now. - I don't love the comment structure — it'd be nice, perhaps, to have separate headings for the linter and formatter. - However, the `pr-comment` workflow is an absolute pain to change because it runs _separately_ from this pull request so I if I want to make edits to it I can only test it via manual workflow dispatch. - Lines are not printed "as we go" which means they're all held in memory, presumably this would be a problem for large-scale ecosystem checks - We are encountering a hard limit with the maximum comment length supported by GitHub. We will need to move the bulk of the report elsewhere. ## Future work - Update `ruff-ecosystem` to support non-default projects and `check_ecosystem_all.py` behavior - Remove existing ecosystem check scripts - Add preview mode toggle (#8076) - Add a toggle for truncation - Add hints for quick reproduction of runs locally - Consider parsing JSON output of Ruff instead of using regex to parse the text output - Links to project repositories should use the commit hash we checked against - When caching repositories, we should pull the latest changes for the ref - Sort check diffs by path and rule code only (changes in messages should not change order) - Update check diffs to distinguish between new violations and changes in messages - Add "fix" diffs - Remove existing formatter similarity reports - On release pull request, compare to the previous tag instead --------- Co-authored-by: konsti <konstin@mailbox.org>	2023-10-27 17:28:01 -05:00
Zanie Blue	5f26411577	Update ecosystem pull request comment to post when unrelated jobs fail (#8289) ... While we ran the `pr-comment` workflow on `completed` workflows (i.e. instead of `success`, it can have failed) we used the default artifact download behavior which required `success` workflows (https://github.com/dawidd6/action-download-artifact) which meant that if any jobs failed the ecosystem checks would not be reported. For example, a successful ecosystem run at https://github.com/astral-sh/ruff/actions/runs/6672033727/job/18135290880 was not posted at https://github.com/astral-sh/ruff/actions/runs/6672153598/job/18135534008 because no artifacts met the success criterion. You can see this is "valid" with a manual dispatch at https://github.com/astral-sh/ruff/actions/runs/6672278055/job/18135883849 but it pulls from the latest commit rather than the one with the failed one mentioned above so you can't see verification it'll work for failed jobs. Another manual dispatch at https://github.com/astral-sh/ruff/actions/runs/6672349316/job/18136082917 shows it works great for successful jobs still.	2023-10-27 16:20:39 -05:00
Zanie Blue	40c886c3bc	Separate Windows tests from Linux tests (#8287) ... Windows tests take much longer and downstream CI jobs that require the build from the Linux tests must wait to start. Additionally, we already have if/else logic in the test suite for Windows tests which cannot run the same command. This will require an update to the required checks in the repository settings.	2023-10-27 15:11:36 -05:00
Zanie Blue	802616aac0	Add compatibility test for `ruff-lsp` to CI (#8016) ... Adds a CI job which runs `ruff-lsp` tests against the current Ruff build. Avoids rebuilding Ruff at the cost of running _after_ the cargo tests have finished. Might be worth the rebuild to get earlier feedback but I don't expect it to fail often? xref https://github.com/astral-sh/ruff-lsp/pull/286 ## Test plan Verified use of the development version by inspecting version output in CI; supported by https://github.com/astral-sh/ruff-lsp/pull/289 and #8034	2023-10-23 15:44:51 -05:00
Micha Reiser	2c2ebf952a	Rust 1.73 (#8007)	2023-10-23 02:12:25 +00:00
dependabot[bot]	5718df638f	Bump cloudflare/wrangler-action from 3.2.0 to 3.3.1 (#7982)	2023-10-16 09:32:15 -04:00
dependabot[bot]	74971617a1	Bump cloudflare/wrangler-action from 3.1.1 to 3.2.0 (#7863)	2023-10-09 07:44:51 -04:00
Zanie Blue	5d49d268a0	Fix publish of playground (#7791) ... Same as https://github.com/astral-sh/ruff/pull/7304 Closes https://github.com/astral-sh/ruff/issues/7779	2023-10-03 14:33:09 -05:00
Charlie Marsh	6b99f5e3e6	Re-add formatter to GitHub release notes (#7763) ... We may choose to omit these manually, but we probably want to include _some_ of them, so it's annoying for them to be filtered out.	2023-10-02 15:10:22 +00:00
Zanie Blue	614a19cb4e	Remove unused black compatibility tests (#7712) ... Previously attempted to repair these tests at https://github.com/astral-sh/ruff/pull/6992 but I don't think we should prioritize that and instead I would like to remove this dead code.	2023-09-29 10:31:54 -05:00
konsti	1e173f7909	Rename `Autofix` to `Fix` (#7657) ... **Summary** Mostly mechanical symbol rename and search-and-replace, with small changes to the markdown docs to read better	2023-09-28 10:53:05 +00:00
Zanie Blue	0a737843b5	Increase dependabot check interval from daily to weekly (#7668) ... To reduce the noise of updates. May follow-up with grouping per https://github.blog/changelog/2023-06-30-grouped-version-updates-for-dependabot-public-beta/	2023-09-26 13:59:23 +00:00
Charlie Marsh	5849a75223	Rename `ruff` crate to `ruff_linter` (#7529)	2023-09-20 08:38:27 +02:00
Charlie Marsh	1f6e1485f9	Change playground to use `pages deploy` (#7430) ... Fixes a deprecation warning.	2023-09-16 03:11:34 +00:00
Charlie Marsh	9b43162cc4	Move documentation to docs.astral.sh/ruff (#7419) ... ## Summary We're planning to move the documentation from [https://beta.ruff.rs/docs](https://beta.ruff.rs/docs) to [https://docs.astral.sh/ruff](https://docs.astral.sh/ruff), for a few reasons: 1. We want to remove the `beta` from the domain, as Ruff is no longer considered beta software. 2. We want to migrate to a structure that could accommodate multiple future tools living under one domain. The docs are actually already live at [https://docs.astral.sh/ruff](https://docs.astral.sh/ruff), but later today, I'll add a permanent redirect from the previous to the new domain. **All existing links will continue to work, now and in perpetuity.** This PR contains the code changes necessary for the updated documentation. As part of this effort, I moved the playground and documentation from my personal Cloudflare account to our team Cloudflare account (hence the new `--project-name` references). After merging, I'll also update the secrets on this repo.	2023-09-15 22:49:42 -04:00
Zanie Blue	f4d50a2aec	Fix release validation step (#7417) ... Proof of concept at #7416 Fixes `main` branch check added in #7279 (see [failure](https://github.com/astral-sh/ruff/actions/runs/6201772425/job/16839150669)) Removes the meaningless "SHA consistency" check (since we literally check out the SHA now)	2023-09-15 20:18:25 +00:00
Zanie Blue	1373e1c395	Update release workflow to checkout the given sha (#7279)	2023-09-13 14:59:41 -05:00
Zanie Blue	5d4dd3e38e	Set the target deployment to `main` during dispatched documentation deployments (#7304) ... Closes #7276 by deploying to production when not triggered by a pull request.	2023-09-12 10:34:05 -05:00
Zanie Blue	40c936922e	Add "Preview" section to auto-generated release notes (#7280)	2023-09-11 18:07:47 -05:00
Zanie Blue	773ba5f816	Update the `docs` workflow to allow publishing a specific ref (#7278) ... Related https://github.com/astral-sh/ruff/issues/7276 Our docs publishing action does not allow targetting a specific commit when run manually which means we cannot update the documentation to anything but the latest commit on `main`. This change allows a ref to be provided. --------- Co-authored-by: Dhruv Manilawala <dhruvmanila@gmail.com>	2023-09-11 18:51:31 +00:00
Zanie Blue	ff0feb191c	Use `pages deploy` instead of the deprecated `pages publish` command to deploy the docs website (#7277) ... See https://github.com/cloudflare/workers-sdk/issues/3067 Related #7276	2023-09-11 13:23:47 -05:00
dependabot[bot]	878813f277	Bump tj-actions/changed-files from 38 to 39 (#7267) ... Co-authored-by: repo-ranger[bot] <!-- raw HTML omitted --> (<a Co-authored-by: renovate[bot] <!-- raw HTML omitted --> (<a Co-authored-by: jackton1 <a Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-11 11:12:24 +02:00
dependabot[bot]	71c8a02ebd	Bump actions/checkout from 3 to 4 (#7266) ... Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-11 11:11:25 +02:00
dependabot[bot]	fbc9b5a604	Bump cloudflare/wrangler-action from 3.1.0 to 3.1.1 (#7045)	2023-09-01 15:00:11 +00:00
Zanie Blue	253a241f5d	Add dependabot for `cargo` dependencies (#7034) ... Ideally we shouldn't have to run `cargo update` manually — it requires us to remember to do so and groups all updates into a single pull request making it challenging to determine which upgrade introduces regressions e.g. #6964. Here we add daily checks for cargo dependency updates. This pull request also simplifies dependabot configuration for GitHub Actions versions.	2023-09-01 09:47:40 -05:00
dependabot[bot]	e1db036f90	ci(deps): bump tj-actions/changed-files from 37 to 38 (#6946) ... Co-authored-by: jackton1 <a Co-authored-by: repo-ranger[bot] <!-- raw HTML omitted --> (<a Co-authored-by: repo-ranger[bot] <!-- raw HTML omitted --> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-08-28 16:50:38 +00:00
Micha Reiser	30ebf7fc86	Truncate ecosystem comment when necessary (#6899)	2023-08-28 07:58:39 +00:00
Micha Reiser	ed1b4122d0	Use Codspeed for continous benchmarking (#6896)	2023-08-26 16:34:35 +02:00
dependabot[bot]	575b77aa52	ci(deps): bump cloudflare/wrangler-action from 3.0.2 to 3.1.0 (#6736) ... Bumps [cloudflare/wrangler-action](https://github.com/cloudflare/wrangler-action) from 3.0.2 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cloudflare/wrangler-action/releases">cloudflare/wrangler-action's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <h3>Minor Changes</h3> <ul> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/154">#154</a> <a href="3f40637a1c"><code>3f40637</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - feat: Quiet mode Some of the stderr, stdout, info &amp; groupings can be a little noisy for some users and use cases. This feature allows for a option to be passed 'quiet: true' this would significantly reduce the noise.</p> <p>There will still be output that lets the user know Wrangler Installed and Wrangler Action completed successfully. Any failure status will still be output to the user as well, to prevent silent failures.</p> <p>resolves <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/142">#142</a></p> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cloudflare/wrangler-action/blob/main/CHANGELOG.md">cloudflare/wrangler-action's changelog</a>.</em></p> <blockquote> <h2>3.1.0</h2> <h3>Minor Changes</h3> <ul> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/154">#154</a> <a href="3f40637a1c"><code>3f40637</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - feat: Quiet mode Some of the stderr, stdout, info &amp; groupings can be a little noisy for some users and use cases. This feature allows for a option to be passed 'quiet: true' this would significantly reduce the noise.</p> <p>There will still be output that lets the user know Wrangler Installed and Wrangler Action completed successfully. Any failure status will still be output to the user as well, to prevent silent failures.</p> <p>resolves <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/142">#142</a></p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="c25aadc965"><code>c25aadc</code></a> Automatic compilation</li> <li><a href="fcf648c789"><code>fcf648c</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/158">#158</a> from cloudflare/changeset-release/main</li> <li><a href="fcbabec21e"><code>fcbabec</code></a> Version Packages</li> <li><a href="0aa12f0c2b"><code>0aa12f0</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/154">#154</a> from cloudflare/jacobmgevans/silence-mode</li> <li><a href="ad7441b6ad"><code>ad7441b</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/157">#157</a> from EstebanBorai/main</li> <li><a href="3f40637a1c"><code>3f40637</code></a> Quiet feature</li> <li><a href="4132892387"><code>4132892</code></a> fix: use <code>wrangler@3.5.1</code> by default</li> <li><a href="62ce9d23a3"><code>62ce9d2</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/155">#155</a> from ethanppl/fix-readme</li> <li><a href="f089b0a195"><code>f089b0a</code></a> Update README.md</li> <li><a href="4318a2fb97"><code>4318a2f</code></a> Fix examples in README.md</li> <li>Additional commits viewable in <a href="https://github.com/cloudflare/wrangler-action/compare/v3.0.2...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-08-21 16:35:59 +00:00
dependabot[bot]	d9bb51dee4	ci(deps): bump cloudflare/wrangler-action from 3.0.0 to 3.0.2 (#6565) ... Bumps [cloudflare/wrangler-action](https://github.com/cloudflare/wrangler-action) from 3.0.0 to 3.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cloudflare/wrangler-action/releases">cloudflare/wrangler-action's releases</a>.</em></p> <blockquote> <h2>v3.0.2</h2> <h3>Patch Changes</h3> <ul> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/147">#147</a> <a href="58f274b9f7"><code>58f274b</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - Added more error logging when a command fails to execute Previously, we prevented any error logs from propagating too far to prevent leaking of any potentially sensitive information. However, this made it difficult for developers to debug their code.</p> <p>In this release, we have updated our error handling to allow for more error messaging from pre/post and custom commands. We still discourage the use of these commands for secrets or other sensitive information, but we believe this change will make it easier for developers to debug their code.</p> <p>Relates to <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/137">#137</a></p> </li> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/147">#147</a> <a href="58f274b9f7"><code>58f274b</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - Adding Changesets</p> </li> <li> <p><a href="https://github.com/cloudflare/wrangler-action/blob/HEAD/#version-300">Version 3.0.0</a></p> </li> <li> <p><a href="https://github.com/cloudflare/wrangler-action/blob/HEAD/#version-200">Version 2.0.0</a></p> </li> </ul> <h2>v3.0.1</h2> <p>Automating Build &amp; Release</p> <h2>What's Changed</h2> <ul> <li>Artifacts are now ESM supported with <code>.mjs</code></li> <li>Update publish to deploy by <a href="https://github.com/lrapoport-cf"><code>@​lrapoport-cf</code></a> in <a href="https://redirect.github.com/cloudflare/wrangler-action/pull/124">cloudflare/wrangler-action#124</a></li> <li>Automatically add issues to workers-sdk GH project by <a href="https://github.com/lrapoport-cf"><code>@​lrapoport-cf</code></a> in <a href="https://redirect.github.com/cloudflare/wrangler-action/pull/127">cloudflare/wrangler-action#127</a></li> <li>Automate Action Release by <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a> in <a href="https://redirect.github.com/cloudflare/wrangler-action/pull/128">cloudflare/wrangler-action#128</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/lrapoport-cf"><code>@​lrapoport-cf</code></a> made their first contribution in <a href="https://redirect.github.com/cloudflare/wrangler-action/pull/124">cloudflare/wrangler-action#124</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/cloudflare/wrangler-action/compare/3.0.0...3.0.1">https://github.com/cloudflare/wrangler-action/compare/3.0.0...3.0.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cloudflare/wrangler-action/blob/main/CHANGELOG.md">cloudflare/wrangler-action's changelog</a>.</em></p> <blockquote> <h2>3.0.2</h2> <h3>Patch Changes</h3> <ul> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/147">#147</a> <a href="58f274b9f7"><code>58f274b</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - Added more error logging when a command fails to execute Previously, we prevented any error logs from propagating too far to prevent leaking of any potentially sensitive information. However, this made it difficult for developers to debug their code.</p> <p>In this release, we have updated our error handling to allow for more error messaging from pre/post and custom commands. We still discourage the use of these commands for secrets or other sensitive information, but we believe this change will make it easier for developers to debug their code.</p> <p>Relates to <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/137">#137</a></p> </li> <li> <p><a href="https://redirect.github.com/cloudflare/wrangler-action/pull/147">#147</a> <a href="58f274b9f7"><code>58f274b</code></a> Thanks <a href="https://github.com/JacobMGEvans"><code>@​JacobMGEvans</code></a>! - Adding Changesets</p> </li> <li> <p><a href="https://github.com/cloudflare/wrangler-action/blob/main/#version-300">Version 3.0.0</a></p> </li> <li> <p><a href="https://github.com/cloudflare/wrangler-action/blob/main/#version-200">Version 2.0.0</a></p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="80501a7b4d"><code>80501a7</code></a> Automatic compilation</li> <li><a href="3252711404"><code>3252711</code></a> hotfix</li> <li><a href="2faabf36a2"><code>2faabf3</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/150">#150</a> from cloudflare/jacobmgevans/changesets-tag-cli</li> <li><a href="b734d85d74"><code>b734d85</code></a> Changesets needs a tag created for release</li> <li><a href="8ca2ff1612"><code>8ca2ff1</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/148">#148</a> from cloudflare/changeset-release/main</li> <li><a href="7d08a8657e"><code>7d08a86</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/149">#149</a> from cloudflare/jacobmgevans/changesets-needs-publish</li> <li><a href="e193627f19"><code>e193627</code></a> Spoofing publish for Changeset Action</li> <li><a href="55b80c5f62"><code>55b80c5</code></a> Version Packages</li> <li><a href="f61dc4d5a9"><code>f61dc4d</code></a> Merge pull request <a href="https://redirect.github.com/cloudflare/wrangler-action/issues/147">#147</a> from cloudflare/revert-146-changeset-release/main</li> <li><a href="58f274b9f7"><code>58f274b</code></a> Revert &quot;Version Packages&quot;</li> <li>Additional commits viewable in <a href="https://github.com/cloudflare/wrangler-action/compare/3.0.0...v3.0.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-08-17 09:11:04 -05:00
konsti	c39bcbadff	Always run check-formatter-ecosystem on main (#6503) ... This makes it easier to get the latest similarity numbers from main	2023-08-14 14:01:26 +02:00
konsti	8b24238d19	Show a pretty markdown table in formatter ecosystem checks (#6496) ... **Summary** The formatter ecosystem checks will now print a markdown table you can copy&paste into your PR description.  copied markdown: | project | similarity index | |--------------|------------------| | build | 0.75623 | | cpython | 0.75989 | | django | 0.99784 | | transformers | 0.99470 | | typeshed | 0.74853 | | warehouse | 0.99585 | | zulip | 0.99702 | raw markdown: ```markdown | project | similarity index | |--------------|------------------| | build | 0.75623 | | cpython | 0.75989 | | django | 0.99784 | | transformers | 0.99470 | | typeshed | 0.74853 | | warehouse | 0.99585 | | zulip | 0.99702 | ```	2023-08-11 15:37:21 +02:00
dependabot[bot]	e4f57434a2	ci(deps): bump cloudflare/wrangler-action from 2.0.0 to 3.0.0 (#6398) ... Bumps [cloudflare/wrangler-action](https://github.com/cloudflare/wrangler-action) from 2.0.0 to 3.0.0. <details> <summary>Commits</summary> <ul> <li><a href="089567dec4"><code>089567d</code></a> feat: rewrite Wrangler Action in TypeScript</li> <li>See full diff in <a href="https://github.com/cloudflare/wrangler-action/compare/2.0.0...3.0.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-08-09 10:17:43 -05:00
konsti	e769c74899	Check .git in formatter progress checkouts for build (#6387) ... From the formatter progress CI logs: ``` 2023-08-07T03:49:02.5178602Z + mkdir -p /home/runner/work/ruff/ruff/target/progress_projects 2023-08-07T03:49:02.5193474Z + '[' '!' -d /home/runner/work/ruff/ruff/target/progress_projects/build ']' 2023-08-07T03:49:02.5194228Z + '[' '!' -d /home/runner/work/ruff/ruff/target/progress_projects/django ']' 2023-08-07T03:49:02.5194966Z + git clone --filter=tree:0 https://github.com/django/django /home/runner/work/ruff/ruff/target/progress_projects/django 2023-08-07T03:49:02.5209260Z Cloning into '/home/runner/work/ruff/ruff/target/progress_projects/django'... ``` ``` 2023-08-07T03:51:17.4726088Z 2023-08-07T03:51:17.472404Z ERROR Failed /home/runner/work/ruff/ruff/target/progress_projects/build: no python files in ["/home/runner/work/ruff/ruff/target/progress_projects/build"] ``` Seems that build exists but is an empty cached folder. These changes should fix this by a) checking for `.git` instead of just the folder existing b) running the commit checkout unconditionally. The latter is also important if we ever want to update the SHAs.	2023-08-08 17:46:46 +02:00
Charlie Marsh	8276b26480	Omit formatter PRs from releases by default (#6317) ... I end up removing these manually every time, seems easier to just omit them for now.	2023-08-03 20:45:50 +00:00
konsti	51ff98f9e9	Make formatter ecosystem check failure output better understandable (#6300) ... **Summary** Prompted by https://github.com/astral-sh/ruff/pull/6257#issuecomment-1661308410, it tried to make the ecosystem script output on failure better understandable. All log messages are now written to a file, which is printed on error. Running locally progress is still shown. Looking through the log output i saw that we currently log syntax errors in input, which is confusing because they aren't actual errors, but we don't check that these files don't change due to parser regressions or improvements. I added `--files-with-errors` to catch that. **Test Plan** CI	2023-08-03 20:23:25 +02:00
Zanie Blue	67b88803d8	Use prettier to format yaml files in pre-commit (#6250) ... Prompted by https://github.com/astral-sh/ruff/pull/6248#discussion_r1280855848	2023-08-01 16:45:08 +00:00
konsti	ed45fcb1f7	Remove old CI comment (#6246) ... We don't build abi3 wheels	2023-08-01 11:35:47 -05:00
Zanie Blue	adf227b8a9	Run ecosystem checks on changes to ecosystem test script (#6248) ... e.g. https://github.com/astral-sh/ruff/pull/6245 should probably run checks before merge	2023-08-01 11:35:29 -05:00
konsti	a7aa3caaae	Rename formatter_progress to formatter_ecosystem_checks (#6194) ... Rename the `scripts/formatter_progress.sh` to `formatter/formatter_ecosysytem_checks.sh` since it fits the actual task better.	2023-07-31 18:33:12 +00:00
Micha Reiser	1d7ad30188	CI: Update formatter dependencies (#6168)	2023-07-29 15:24:24 +02:00
konsti	8a7dcb794b	Add formatter progress tracking to CI (#5919) ... **Summary** Add a formatter progress testing script to CI. This script will 1) print the black compability on each run 2) catch regressions wrt to formatter stability, emitting invalid syntax and other kinds of bugs (e.g. #5917) before they land on main 3) have an additional layer of real world tests when implementing new nodes or other new formatter code. This is currently a bash script, i'm not sure if we want to keep it that way, or switch to e.g. the regular ecosystem scripts. The output separation of `format_dev` could also use some polishing. We should also consider pinning commits so we don't get spurious regression when they change their code. **Test Plan** The script extends CI.	2023-07-24 09:12:42 +00:00
Micha Reiser	4759ffc994	Merge changed steps using `files_yaml` (#5923)	2023-07-20 23:18:13 +02:00
Micha Reiser	6fd8574a0b	Only run jobs if relevant files changed (#5908)	2023-07-20 10:01:08 +00:00
Micha Reiser	cda90d071c	Upgrade cargo insta (#5872)	2023-07-19 12:56:32 +02:00
Charlie Marsh	c029c8b37a	Run release testing on PR, not push (#5718) ... ## Summary This job runs whenever I put up a PR to bump the version, which is really useful. But then it also runs again when I merge, and then _that_ job tends to get cancelled immediately, because I run the _actual_ release job, which triggers the cancel-concurrent-runs flow. (See, e.g., https://github.com/astral-sh/ruff/actions/runs/5534191373.) I think it makes sense to run these on PR (when editing `pyproject.toml` and friends), but not again on merge.	2023-07-12 14:22:29 -04:00
Zanie	5665968b42	Bump static Python versions in CI from 3.7 to 3.11 (#5700) ... Python 3.7 is EOL and we should use the latest stable version for builds. Related to https://github.com/astral-sh/ruff-lsp/pull/189 --------- Co-authored-by: konsti <konstin@mailbox.org>	2023-07-12 13:56:22 +00:00
dependabot[bot]	8dc06d1035	ci(deps): bump webfactory/ssh-agent from 0.7.0 to 0.8.0 (#5657)	2023-07-10 13:10:25 -04:00
konsti	d0dae7e576	Fix CI by downgrading to cargo insta 1.29.0 (#5589) ... Since the (implicit) update to cargo-insta 1.30, CI would pass even when the tests failed. This downgrades to cargo insta 1.29.0 and CI fails again when it should (which i can't show here, because CI needs to pass to merge this PR). I've improved the unreferenced snapshot handling in the process See https://github.com/mitsuhiko/insta/issues/392	2023-07-08 14:54:49 +00:00
konsti	60d318ddcf	Check formatter stability on CI (#5446) ... Check formatter stability on CI using CPython. This should be merged into the ecosystem checks, but i think this is a good start.	2023-07-07 18:28:36 +02:00
Charlie Marsh	528bf2df3a	Use non-Insiders MkDocs for building in forks (#5562)	2023-07-06 15:02:46 +00:00
Charlie Marsh	b56b8915ca	Allow MkDocs job to run on forks (#5553) ... Conditionally check whether the secret is available -- see: https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsif.	2023-07-06 05:46:49 +00:00
Charlie Marsh	c9e02c52a8	Add separate configuration for MkDocs Insiders plugins (#5544) ... ## Summary This PR adds a separate configuration file to enable us to turn on [Insiders-only plugins](https://squidfunk.github.io/mkdocs-material/insiders/getting-started/#built-in-plugins). I've turned on the `typeset` plugin which ensures that the settings on the left-hand navigation pane render as code: <img width="1792" alt="Screen Shot 2023-07-05 at 6 27 20 PM" src="https://github.com/astral-sh/ruff/assets/1309177/c93676dd-bb48-417a-9d3b-528bf001e9b7">	2023-07-05 18:40:21 -04:00
Charlie Marsh	ea270da289	Move some MkDocs responsibilities around (#5542) ... ## Summary Note that I've also changed from `mkdocs serve` to `mkdocs serve -f mkdocs.generated.yml` to be clearer that this is a generated file.	2023-07-05 22:06:01 +00:00
Charlie Marsh	1a2e444799	Use Insiders version of `mkdocs-material` (#5540) ... ## Summary This PR migrates our `mkdocs-material` version to [Insiders](https://squidfunk.github.io/mkdocs-material/insiders/), which we can access now that we're sponsors. We can't allow public access to the Insiders version, so we instead have a private fork, which contains a deploy key that I've added as a read-only Actions secret in this repo. (That is: the deploy key only lets you read that one repo, and do nothing else.) In general, non-Astral contributors can use the non-insiders version, and everything is expected to "work", but without the insiders features (they're intended to be ignored). See: https://squidfunk.github.io/mkdocs-material/insiders/#compatibility.	2023-07-05 20:36:26 +00:00
konsti	0a26201643	Merge clippy and clippy (wasm) jobs on CI (#5447) ... ## Summary The clippy wasm job rarely fails if regular clippy doesn't, wasm clippy still compiles a lot of native dependencies for the proc macro and we have less CI jobs overall, so i think this an improvement to our CI. ```shell $ CARGO_TARGET_DIR=target-wasm cargo clippy -p ruff_wasm --target wasm32-unknown-unknown --all-features -j 2 -- -D warnings $ du -sh target-wasm/* 12K target-wasm/CACHEDIR.TAG 582M target-wasm/debug 268M target-wasm/wasm32-unknown-unknown ``` ## Test plan n/a	2023-07-04 15:22:00 -04:00
Charlie Marsh	c0f93fcf3e	Publish GitHub release as draft (#5304) ... I accidentally changed `draft: false` to `draft: true` in #5240. I actually think Copilot did this without me realizing.	2023-06-22 16:11:43 +00:00
Charlie Marsh	2c63f8cdea	Update reference to release step (#5280)	2023-06-22 02:04:43 +00:00
Charlie Marsh	4634560c80	Ensure release tagging has access to repo clone (#5240) ... ## Summary The [release failed](https://github.com/astral-sh/ruff/actions/runs/5329733171/jobs/9656004063), but late enough that I was able to do the remaining steps manually. The issue here is that the tagging step requires that we clone the repo. I split the upload (to PyPI), tagging (in Git), and publishing (to GitHub Releases) phases into their own steps, since they need different resources + permissions anyway.	2023-06-21 10:24:33 -04:00
Charlie Marsh	a332f078db	Checkout repo to support release tag validation (#5238) ... ## Summary The [release](https://github.com/astral-sh/ruff/actions/runs/5329340068/jobs/9655224008) failed due to an inability to find `pyproject.toml`. This PR moves that validation into its own step (so we can fail fast) and ensures we clone the repo.	2023-06-21 03:16:35 +00:00
konstin	b4bd5a5acb	Make the release workflow more resilient (#4728) ... ## Summary Currently, it is possible to create a tag and then have the release fail, which is a problem since we can't edit the tag (https://github.com/charliermarsh/ruff/issues/4468). This change the release process so that the tag is created inside the release workflow. This leaves as a failure mode that we have published to pypi but then creating the tag or GitHub release doesn't work, but in this case we can restart and the pypi upload is just skipped because we use the skip existing option. The release workflow is started by a workflow dispatch with the tag instead of creating the tag yourself. You can start the release workflow without a tag to do a dry run which does not publish an artifacts. You can optionally add a git sha to the workflow run and it will verify that the release runs on the mentioned commit. This also adds docs on how to release and a small style improvement for the maturin integration. ## Test Plan Testing is hard since we can't do real releases, i've tested a minimized workflow in a separate dummy repository.	2023-06-20 18:33:09 +00:00
Thomas de Zeeuw	17f1ecd56e	Open cache files in parallel (#5120) ... ## Summary Open cache files in parallel (again), brings the performance back to be roughly equal to the old implementation. ## Test Plan Existing tests should keep working.	2023-06-20 17:43:09 +02:00
Dhruv Manilawala	bf5fbf8971	Add GitHub CODEOWNERS file (#5054) ... ## Summary Add GitHub CODEOWNERS file. Initiating this, we can discuss and iterate further. https://help.github.com/articles/about-codeowners/ ## Test Plan Look out for review requests :)	2023-06-14 05:21:59 +00:00
konstin	548a3cbb3f	Small CI improvements (#4953) ... * Replace the unmaintained actions-rs/cargo that github actions complains about using an old node version with plain cargo (this was the original motivation for this PR) * Use taiki-e/install-action to install critcmp directly * Use a rust 1.70 nightly toolchain for udeps * Cache python package build (this should cut a good chunk of ci time) * yaml formatting courtesy of pycharm Test Plan: CI itself	2023-06-09 09:03:34 +02:00
Dhruv Manilawala	07cc4bcb0f	Update links to point to Astral org (#4949)	2023-06-08 11:43:40 -04:00
konstin	5c48414093	Use taiki-e/install-action to install cargo fuzz (#4928) ... * Use taiki-e/install-action to install cargo fuzz The cargo fuzz run seems to sometimes fail for unclear reasons (https://github.com/charliermarsh/ruff/actions/runs/5200348677/jobs/9379742606?pr=4900). I hope that this might fix it. I'll push more commits to this PR to check the caching behaviour. * Trigger CI with cache * Change cache * Actually use caching * Undo cargo update * cargo update fuzzer * Revert rust changes	2023-06-07 15:57:33 +00:00
Addison Crump	2f125f4019	Create fuzzers for testing correctness of parsing, linting and fixing (#4822) ... Co-authored-by: Micha Reiser <micha@reiser.io>	2023-06-07 14:57:07 +02:00
Charlie Marsh	222ca98a41	Add `contents: write` permission to release step (#4911)	2023-06-07 08:42:27 -04:00
Charlie Marsh	e1df2b1400	Set default Rust version when testing sdist (#4908)	2023-06-06 16:59:04 -04:00
Charlie Marsh	3ff1f003f4	Omit internal and documentation changes from changelog (#4814)	2023-06-02 15:39:37 +00:00