New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ci: Add GitHub Workflow #1879
ci: Add GitHub Workflow #1879
Conversation
More changes to come:
|
8ef0ded
to
ce54b54
Compare
If we keep the pipeline configured to run for the maintenance and current LTS versions, we probably don't need to retry the Jest tests 3 times in CI. |
93c3293
to
dd1e79b
Compare
I'm not sure if we will be able to get all required tokens without the help from original author. Last time I tried to contact him, he didn't reply. I think will try again on LinkedIn since I get the best output from contacting him there. |
Just added NPM token. I think that |
Also added Sauce Labs access token and my username, I'm in isomorphic-git team, let's hope it will work. |
We could also try to exfiltrate them from the pipeline. Let me know if/when you want me to try. |
We can't access the secrets from the UI but you can use them in the pipeline and run whatever code we want. Here's an article for inspiration which prints them out with base64 encoding. We could use the GitHub API to create secrets in the repo/org if we had a GitHub token with the right scope and permissions.
I'd be surprised if we have the right permissions with the GitHub token used in ADO but we can try. Are we creating the secrets in GitHub for the repo or the organization? It changes the API and token scope we need. 😁 |
If that worked, it would be great. But let's wait few days (especially during week days) until we will see if original author will respond on LinkedIn.
I've created secrets in repo, I have no idea what permission the token have. |
Got reply from Billie Hilton on LinkedIN, he said that he will provide the required credentials. |
That's great! Thanks Billie! I hope you're well! 👋 |
I've merged the PR with disabled test. It seems there is a conflict with that file you modified there. |
9b5bf8f
to
a302dce
Compare
I fixed the conflict and rebased. If we get the secrets in I'd expect the Workflows to pass. |
Generated my own token and save it to Got invitation to BrowserStack account, but there is some kind of conflict with my own Open Source subscription. |
We should remove that integration then eh? |
Yes, I think so, but first I will check if there are no other way to post to Twitter. |
So I got invitation to BrowserStack account, but they don't have something like teams or orgs like in GitHub and got a warning that I need to delete my old account (I already have Open Source account for my other project). I talk with BrowserStack support just now, and it seems that I don't need to delete my account I can use my current one since only TOKEN is needed on BrowserStack part, and it will just work. I will generate a token soon, will try today when I find some free time. |
) Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.19.2. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.1...4.19.2) --- updated-dependencies: - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add BrowserStack, the Twitter can be removed. |
What else is needed? |
Note that you can't create a secret that start with |
Ah, sorry, the GITHUB_TOKEN is automatic. I should have checked that off. |
a302dce
to
3a8fe61
Compare
It's been a while so I've rebased and run the tests. It looks like I've got trouble accessing the Secrets from the Workflow:
Once we resolve those issues, the tests might pass, and we can review the code. |
eca8373
to
8d1ff17
Compare
Based on these errors from Node v18 and v20, we also have to configure NODE_OPTIONS |
OK. Great! Thanks for confirming they're Repository Secrets. It turns out it is expected behaviour. Sorry. I'm not used to setting up Workflows in a fork. 🤦 From Using secrets in a Workflow:
I'll do a bit more research to confirm how to set this up to run from a fork. I wonder if you reran what it'd do. |
This is a pretty good reference - https://dvc.ai/blog/testing-external-contributions-using-github-actions-secrets. |
I can create experimental branch |
Sorry for the late reply, I totally forget that I need to do something. Created a |
Created a PR #1901 with your changes. If you have any updates just create a PR to |
Proposed Changes
This PR helps migrate to use GitHub Actions. Here's a summary from #1496:
This PR:
TODO
BROWSER_STACK_ACCESS_KEY
BROWSER_STACK_USERNAME
BUNDLEWATCH_GITHUB_TOKEN
GITHUB_TOKEN
(automatic)NPM_TOKEN
SAUCE_ACCESS_KEY
SAUCE_USERNAME
TWITTER_ACCESS_TOKEN_SECRET
(deleted)TWITTER_CONSUMER_SECRET
(deleted)