-
-
Notifications
You must be signed in to change notification settings - Fork 0
chore(deps): bump axios from 1.13.4 to 1.13.5 #42
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Changes from 2 commits
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
|
|
@@ -25,10 +25,11 @@ permissions: | |||||
| issues: write | ||||||
|
|
||||||
| jobs: | ||||||
| auto-merge-to-securite: | ||||||
| auto-merge-to-dependencies: | ||||||
| runs-on: ubuntu-latest | ||||||
| env: | ||||||
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||||||
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||||||
| # Force serial execution to prevent conflicts | ||||||
| concurrency: | ||||||
| group: secure-flow-merge | ||||||
|
|
@@ -42,43 +43,57 @@ jobs: | |||||
| with: | ||||||
| fetch-depth: 0 | ||||||
|
|
||||||
| - name: Ensure securite branch exists | ||||||
| - name: Ensure dependencies branch exists | ||||||
| run: | | ||||||
| git fetch origin securite 2>/dev/null || git switch --create securite | ||||||
| git push origin securite || true | ||||||
| git fetch origin dependencies 2>/dev/null || git switch --create dependencies | ||||||
| git push origin dependencies || true | ||||||
|
|
||||||
| - name: Merge dependabot changes to securite branch | ||||||
| - name: Merge dependabot changes to dependencies branch | ||||||
| run: | | ||||||
| git config --global user.name 'github-actions[bot]' | ||||||
| git config --global user.email 'github-actions[bot]@users.noreply.github.com' | ||||||
|
|
||||||
| # Fetch the PR branch | ||||||
| git fetch origin ${{ github.head_ref }}:${{ github.head_ref }} || true | ||||||
|
|
||||||
| # Switch to securite and merge | ||||||
| git switch securite | ||||||
| # Switch to dependencies and merge | ||||||
| git switch dependencies | ||||||
| git merge origin/${{ github.head_ref }} --no-edit || true | ||||||
|
||||||
| git merge origin/${{ github.head_ref }} --no-edit || true | |
| git merge origin/${{ github.head_ref }} --no-edit |
Copilot
AI
Feb 17, 2026
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The gh_retry helper is duplicated in multiple steps. This increases maintenance cost and makes fixes easy to miss. Consider moving it into a small checked-in script (e.g., .github/scripts/gh_retry.sh) and source it from each step, or wrap the GH calls in a reusable composite action.
Outdated
Copilot
AI
Feb 17, 2026
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
git log main..dependencies is likely to fail in this job because actions/checkout (even with fetch-depth: 0) checks out dependencies but does not necessarily create a local main branch ref. With bash -e -o pipefail, this will fail the step. Use origin/main..dependencies (or fetch/create main explicitly) to make this robust.
| NEW_COMMITS=$(git log main..dependencies --oneline | wc -l) | |
| NEW_COMMITS=$(git log origin/main..dependencies --oneline | wc -l) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Branch bootstrap is brittle: if
dependenciesdoesn't exist remotely,git switch --create dependenciescreates it from the currently checked-out ref (for pull_request events this is typically the PR merge ref), which can seeddependencieswith unintended commits. Also, if the branch exists remotely,git fetch origin dependenciesdoesn't ensure a local tracking branch exists. Prefer an explicit flow: fetchorigin/dependencies(ororigin/mainif creating), thengit switch --track -c dependencies origin/dependencies(orgit switch -c dependencies origin/main) before pushing.