-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
major: remove backing web app #107
Conversation
One the first point above is something you have to change if you customized it, the second always applies. Mention the changes in order of importance please.
We need to show an example here |
Looks awesome, thanks. We need to think about a migration plan. See @mcollina's concerns in the original issue. Do you think they're still valid? Matteo was suggesting to rebrand this. If we do, I would like to move it back to the @nearform org though, since in practice we have done all the development, but I'm not sure if he would agree. Nonetheless, NearForm developed it. |
Regarding the rollout. The main issue is that we don't want auto-merge a major version of this package, regardless of the
So, I think we should act on both sides: the external application and this GHA. The GHA changes:
The external application changes:
These changes are not mandatories, since the changes on the GHA should be enough. Finally:
Yeah, I will add the credits for it |
Okay that sounds like a reasonable plan. Can we create a timeline to go through so we know we're not missing any steps? Then we close this issue when all steps are completed. |
increase coverage
fix test workflow
fix feedback fix readme fix feedback
if (API_URL !== DEFAULT_API_URL && | ||
pkgName === 'github-action-merge-dependabot' && | ||
isMajorRelease(pr)) { | ||
if (pkgName === 'github-action-merge-dependabot' && isMajorRelease(pr)) { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
shall we not move this check above, right after the check on whether it's a dependabot PR?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I added this check here after the exclude packages check because it seems less confusing for those users that have added the github-action-merge-dependabot
into the exclude
option.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
don't we want to fail independently of whether the package would eventually be automerged or not? ok maybe it doesn't make a big difference
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Let's make sure
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
where is the migration guide?
I plan to include the message here #107 (comment) into the GH release: `https://github.com/fastify/github-action-merge-dependabot/releases/tag/v3.0.0 |
actions stopped working with a 404:
example: |
fix #103
This PR removes the need for an external application to merge the PRs.
Here is an example of how it shows up: #106
How to upgrade from
2.x
to new3.x
permissions
configuration into your workflow or, instead, you can set the permissions rules on the repository or on the organization.api-url
you can:api-url
option from your workflow.dependabot-merge-action-app
application.Migration example: