Create an action to keep track of cffconvert version #43
Comments
|
Dependabot is a bot related to this topic. Whenever a configured dependency is updated, it will submit a Pull Request with an appropriate update to the repository it is set up for. Authorised people watching the repository can then instruct Dependabot to merge its Pull Request by commenting on it, an automatic email response to mails fulfilling the pattern of this repository should suffice for automation. Might this be an option? |
|
Thanks for the suggestion, I don't know much about dependabot, but it might be an option. Whoever takes up this issue can check that. |
|
Hello, @abelsiqueira! I think I found a concrete solution for this issue.
Paste this to This file will be solely edited by Dependabot and is required for the workflow to fetch all Python packages for the version update. I expect the versions of the CLI, the Docker edition as well as the Action to be synchronised. Now for Dependabot: version: 2
updates:
- package-ecosystem: pip
directory: / # `requirements.txt` in the repository root.
schedule: # When to check for updates?
interval: daily # Almost daily; I experienced a delay of about two days for Git sub-modules.
time: '00:00' # Dummy UTC time. I highly recommend to set a time in order to override the random time set for this repository.You can also add milestones and / or assignees, at option. You can assign all maintainers of this repository to the resulting Pull Request such that all of you will receive an email from Dependabot. Answer that message ("Reply to List") to instruct Dependabot to update the This will configure bump2version: [bumpversion]
commit = True
current_version = 2.0.0
tag = True
tag_message =
tag_name = {new_version}
[bumpversion:file:CITATION.cff]
[bumpversion:file:action.yml]When called, bump2version will update the version of And now, finally, the workflow: name: bump2version # Dummy name.
on:
push:
paths:
- requirements.txt # Dispatched when Dependabot updates the file due to the email it received.
permissions:
contents: write # The version increments need to be committed.
jobs:
update: # Dummy name.
name: release # Dummy name.
runs-on: ubuntu-latest
steps:
- name: python # We need to run Python CLIs.
uses: actions/setup-python@v4
with:
python-version: 3.9 # This is a mandatory field. It might need to be updated once in about two years.
- name: checkout # Make `requirements.txt` accessible.
uses: actions/checkout@v3
with:
persist-credentials: false # Persisting them is not required.
- name: dependencies # Install all dependencies.
uses: py-actions/py-dependency-install@v4
- name: bump2version # A rather dirty hack but it works.
run: bump2version major --new-version `cffconvert --version`If Dependabot also tracks the GitHub Actions, they can be kept always up-to-date, as well. Important: this is just a suggestion I did not test, yet. If you like the idea, I can submit you a working implementation in a Pull Request. I am looking forward for your feedback! |
|
Another option would be Renovate which only requires an initial setup to listen to the |
|
Hi @kevinmatthes, sorry to leave you hanging. I haven't been working on this project lately. Also, the updates to cffconvert version were not so frequent so the investment in keeping this action up-to-date was not warranted (because it remained up-to-date). |
Since we are hardcoding the docker image version, if it is updated, this needs to be updated.
The text was updated successfully, but these errors were encountered: