From 2c97106b3af991d079089d9f92344f21b6415a99 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 11 Dec 2024 12:13:14 -0500 Subject: [PATCH 1/9] build(deps): bump github/codeql-action from 3.27.5 to 3.27.6 (#1717) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.27.5 to 3.27.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.27.5...v3.27.6) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 0ca813fc88..9a36a4e774 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.27.5 + uses: github/codeql-action/init@v3.27.6 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.27.5 + uses: github/codeql-action/autobuild@v3.27.6 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.27.5 + uses: github/codeql-action/analyze@v3.27.6 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index e8e94a6f66..0d744ccae5 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.27.5 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.27.6 # v1.0.26 with: sarif_file: results.sarif From 5c93f7ab87f1aa9b956609bbc4b50a6e747fe2fb Mon Sep 17 00:00:00 2001 From: Marius Kleidl <1375043+Acconut@users.noreply.github.com> Date: Wed, 11 Dec 2024 18:13:22 +0100 Subject: [PATCH 2/9] Remove mistake from options table (#1718) The table included an erroneous `tional` in its own row that seems to be a left-over mistake from changes to its context. --- README.md | 1 - 1 file changed, 1 deletion(-) diff --git a/README.md b/README.md index af39f5d2de..318980dd1d 100644 --- a/README.md +++ b/README.md @@ -118,7 +118,6 @@ d as described here: https://docs.codecov.com/docs/codecov-yaml#can-i-name-the-f | `exclude` | Comma-separated list of folders to exclude from search. | Optional | `fail_ci_if_error` | On error, exit with non-zero code | Optional | `files` | Comma-separated explicit list of files to upload. These will be added to the coverage files found for upload. If you wish to only upload the specified files, please consider using "disable-search" to disable uploading other files. | Optional -tional | `flags` | Comma-separated list of flags to upload to group coverage metrics. | Optional | `git_service` | Override the git_service (e.g. github_enterprise) | Optional | `gcov_args` | Extra arguments to pass to gcov | Optional From d93fc22ce078505d16266964d0a69961a4f04724 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 16 Dec 2024 08:34:18 -0300 Subject: [PATCH 3/9] build(deps): bump github/codeql-action from 3.27.6 to 3.27.9 (#1722) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.27.6 to 3.27.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.27.6...v3.27.9) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 9a36a4e774..00e91d3879 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3.27.6 + uses: github/codeql-action/init@v3.27.9 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -52,7 +52,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3.27.6 + uses: github/codeql-action/autobuild@v3.27.9 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -66,4 +66,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3.27.6 + uses: github/codeql-action/analyze@v3.27.9 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 0d744ccae5..9cde490ab9 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3.27.6 # v1.0.26 + uses: github/codeql-action/upload-sarif@v3.27.9 # v1.0.26 with: sarif_file: results.sarif From 34ef57048dd0d0f5b23912db0e56e083fa649c9a Mon Sep 17 00:00:00 2001 From: "John T. Wodder II" Date: Mon, 16 Dec 2024 09:14:46 -0500 Subject: [PATCH 4/9] Put quotes around `${{ inputs.token }}` in `action.yml` (#1721) --- action.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/action.yml b/action.yml index 6b340f8a8a..f3575da4b8 100644 --- a/action.yml +++ b/action.yml @@ -177,9 +177,9 @@ runs: then echo "CC_TOKEN=${{ env.CODECOV_TOKEN }}" >> "$GITHUB_ENV" else - if [ -n ${{ inputs.token }} ]; + if [ -n "${{ inputs.token }}" ]; then - CC_TOKEN=$(echo ${{ inputs.token }} | tr -d '\n') + CC_TOKEN=$(echo "${{ inputs.token }}" | tr -d '\n') echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" fi fi From 47e0552fc48070ca786b1b2d61fc0d418c561619 Mon Sep 17 00:00:00 2001 From: "codecov-releaser-app[bot]" <182812899+codecov-releaser-app[bot]@users.noreply.github.com> Date: Mon, 16 Dec 2024 20:42:15 -0300 Subject: [PATCH 5/9] chore(release): wrapper-0.0.31 (#1723) Co-authored-by: codecov-releaser --- src/scripts | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/scripts b/src/scripts index 8d3a8c6c97..8e89f7cbab 160000 --- a/src/scripts +++ b/src/scripts @@ -1 +1 @@ -Subproject commit 8d3a8c6c97c162694658b4b26387669c47a7ccb0 +Subproject commit 8e89f7cbab22e735f8d19adc185b9fe98ac07c2f From 9b01a3419101d2fd03eaa10f7495f7d03c6adf95 Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Tue, 17 Dec 2024 11:37:41 -0300 Subject: [PATCH 6/9] fix: prevent oidc on tokenless due to permissioning (#1724) --- CHANGELOG.md | 2 +- Makefile | 2 +- action.yml | 24 +++++++++++++++++++++--- changelog.py | 3 +-- src/version | 2 +- 5 files changed, 25 insertions(+), 8 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 5e4ffa2e57..48845849af 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -993,4 +993,4 @@ for the full list. ### Dependencies and Misc - #166 Bump requestretry from 4.1.1 to 4.1.2 - #169 Bump typescript from 4.0.5 to 4.1.2 -- #178 Bump @types/jest from 26.0.15 to 26.0.19 \ No newline at end of file +- #178 Bump @types/jest from 26.0.15 to 26.0.19 diff --git a/Makefile b/Makefile index 9908407894..f335ab3247 100644 --- a/Makefile +++ b/Makefile @@ -1,5 +1,5 @@ deploy: - $(eval VERSION := $(shell cat src/version | grep 'CODECOV_ACTION_VERSION=' | cut -d\" -f2)) + $(eval VERSION := $(shell cat src/version)) git tag -d v5 git push origin :v5 git tag v5 diff --git a/action.yml b/action.yml index f3575da4b8..9071979f60 100644 --- a/action.yml +++ b/action.yml @@ -157,7 +157,7 @@ runs: - name: Action version shell: bash run: | - CC_ACTION_VERSION=$(cat ${GITHUB_ACTION_PATH}/src/version | grep 'CODECOV_ACTION_VERSION=' | cut -d\" -f2) + CC_ACTION_VERSION=$(cat ${GITHUB_ACTION_PATH}/src/version) echo -e "\033[0;32m==>\033[0m Running Action version $CC_ACTION_VERSION" - name: Set safe directory if: ${{ inputs.disable_safe_directory != 'true' }} @@ -165,20 +165,38 @@ runs: run: | git config --global --add safe.directory ${{ github.workspace }} + - name: Set fork + shell: bash + run: | + if [ -n "$GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME" ] && [ "${GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME}" != "$GITHUB_REPOSITORY" ]; + then + echo -e "\033[0;32m==>\033[0m Fork detected" + CC_FORK="true" + echo "CC_FORK=$CC_FORK" >> "$GITHUB_ENV" + fi + env: + GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL: ${{ github.event.pull_request.head.label }} + GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME: ${{ github.event.pull_request.head.repo.full_name }} + GITHUB_REPOSITORY: ${{ github.repository }} + + - name: Get and set token shell: bash run: | - if [ "${{ inputs.use_oidc }}" == 'true' ]; + if [ "${{ inputs.use_oidc }}" == 'true' && "$CC_FORK" != 'true']; then # {"count":1984,"value":"***"} + echo -e "\033[0;32m==>\033[0m Requesting OIDC token from ${ACTION_ID_TOKEN_REQUEST_URL}" CC_TOKEN=$(curl -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=https://codecov.io" | cut -d\" -f6) echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" elif [ -n "${{ env.CODECOV_TOKEN }}" ]; then + echo -e "\033[0;32m==>\033[0m Token from from env" echo "CC_TOKEN=${{ env.CODECOV_TOKEN }}" >> "$GITHUB_ENV" else if [ -n "${{ inputs.token }}" ]; then + echo -e "\033[0;32m==>\033[0m Token set from input" CC_TOKEN=$(echo "${{ inputs.token }}" | tr -d '\n') echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" fi @@ -187,7 +205,7 @@ runs: - name: Override branch for forks shell: bash run: | - if [ -z "$CC_BRANCH" ] && [ -z "$CC_TOKEN" ] && [ -n "$GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME" ] && [ "${GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME}" != "$GITHUB_REPOSITORY" ]; + if [ -z "$CC_BRANCH" ] && [ -z "$CC_TOKEN" ] && [ "$CC_FORK" == 'true' ] then echo -e "\033[0;32m==>\033[0m Fork detected, tokenless uploading used" TOKENLESS="$GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL" diff --git a/changelog.py b/changelog.py index 059d91f291..da28b7c8e7 100644 --- a/changelog.py +++ b/changelog.py @@ -4,8 +4,7 @@ def update_changelog(): with open('src/version', 'r') as f: - raw_version = f.read() - version = re.search('\"(.*)\"', raw_version).groups()[0] + version = f.read() changelog = [f"## v{version}"] changelog.append("### What\'s Changed") diff --git a/src/version b/src/version index be682e9dc1..ac14c3dfaa 100644 --- a/src/version +++ b/src/version @@ -1 +1 @@ -CODECOV_ACTION_VERSION="5.1.1" +5.1.1 From c77245a0133aa4d2391077651dc7afff8967322d Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Wed, 18 Dec 2024 14:57:16 -0300 Subject: [PATCH 7/9] fix: update action script (#1725) --- action.yml | 4 ++-- dist/codecov.sh | 41 +++++++++++++++++++---------------------- 2 files changed, 21 insertions(+), 24 deletions(-) diff --git a/action.yml b/action.yml index 9071979f60..ecea88427e 100644 --- a/action.yml +++ b/action.yml @@ -183,7 +183,7 @@ runs: - name: Get and set token shell: bash run: | - if [ "${{ inputs.use_oidc }}" == 'true' && "$CC_FORK" != 'true']; + if [ "${{ inputs.use_oidc }}" == 'true' && "$CC_FORK" != 'true' ]; then # {"count":1984,"value":"***"} echo -e "\033[0;32m==>\033[0m Requesting OIDC token from ${ACTION_ID_TOKEN_REQUEST_URL}" @@ -191,7 +191,7 @@ runs: echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" elif [ -n "${{ env.CODECOV_TOKEN }}" ]; then - echo -e "\033[0;32m==>\033[0m Token from from env" + echo -e "\033[0;32m==>\033[0m Token set from env" echo "CC_TOKEN=${{ env.CODECOV_TOKEN }}" >> "$GITHUB_ENV" else if [ -n "${{ inputs.token }}" ]; diff --git a/dist/codecov.sh b/dist/codecov.sh index 7adca6c3ec..137f6a30aa 100755 --- a/dist/codecov.sh +++ b/dist/codecov.sh @@ -1,5 +1,5 @@ #!/usr/bin/env bash -CC_WRAPPER_VERSION="0.0.30" +CC_WRAPPER_VERSION="0.0.31" set +u say() { echo -e "$1" @@ -52,6 +52,7 @@ then if [ -f "$CC_BINARY" ]; then cc_filename=$CC_BINARY + cc_command=$CC_BINARY else exit_if_error "Could not find binary file $CC_BINARY" fi @@ -59,34 +60,30 @@ else if [ -n "$CC_OS" ]; then say "$g==>$x Overridden OS: $b${CC_OS}$x" - export cc_os=${CC_OS} else - CC_OS="linux" + CC_OS="windows" family=$(uname -s | tr '[:upper:]' '[:lower:]') - cc_os="windows" - [[ $family == "darwin" ]] && cc_os="macos" - [[ $family == "linux" ]] && cc_os="linux" - [[ $cc_os == "linux" ]] && \ + [[ $family == "darwin" ]] && CC_OS="macos" + [[ $family == "linux" ]] && CC_OS="linux" + [[ $CC_OS == "linux" ]] && \ osID=$(grep -e "^ID=" /etc/os-release | cut -c4-) - [[ $osID == "alpine" ]] && cc_os="alpine" - [[ $(arch) == "aarch64" && $family == "linux" ]] && cc_os+="-arm64" - say "$g==>$x Detected $b${cc_os}$x" - export cc_os=${cc_os} + [[ $osID == "alpine" ]] && CC_OS="alpine" + [[ $(arch) == "aarch64" && $family == "linux" ]] && CC_OS+="-arm64" + say "$g==>$x Detected $b${CC_OS}$x" fi - export cc_version=${CC_VERSION} cc_filename="codecov" - [[ $cc_os == "windows" ]] && cc_filename+=".exe" - export cc_filename=${cc_filename} - [[ $cc_os == "macos" ]] && \ + [[ $CC_OS == "windows" ]] && cc_filename+=".exe" + cc_command="./$cc_filename" + [[ $CC_OS == "macos" ]] && \ ! command -v gpg 2>&1 >/dev/null && \ HOMEBREW_NO_AUTO_UPDATE=1 brew install gpg cc_url="https://cli.codecov.io" cc_url="$cc_url/${CC_VERSION}" - cc_url="$cc_url/${cc_os}/${cc_filename}" + cc_url="$cc_url/${CC_OS}/${cc_filename}" say "$g ->$x Downloading $b${cc_url}$x" curl -Os "$cc_url" - say "$g==>$x Finishing downloading $b${cc_os}:${CC_VERSION}$x" - version_url="https://cli.codecov.io/api/${cc_os}/${CC_VERSION}" + say "$g==>$x Finishing downloading $b${CC_OS}:${CC_VERSION}$x" + version_url="https://cli.codecov.io/api/${CC_OS}/${CC_VERSION}" version=$(curl -s "$version_url" -H "Accept:application/json" | jq -r '.version') say " Version: $b$version$x" say " " @@ -101,7 +98,7 @@ CC_PUBLIC_PGP_KEY=$(curl -s https://keybase.io/codecovsecurity/pgp_keys.asc) # One-time step say "$g==>$x Verifying GPG signature integrity" sha_url="https://cli.codecov.io" - sha_url="${sha_url}/${cc_version}/${cc_os}" + sha_url="${sha_url}/${CC_VERSION}/${CC_OS}" sha_url="${sha_url}/${cc_filename}.SHA256SUM" say "$g ->$x Downloading $b${sha_url}$x" say "$g ->$x Downloading $b${sha_url}.sig$x" @@ -192,7 +189,7 @@ cc_uc_args+=( $(k_arg SWIFT_PROJECT) $(v_arg SWIFT_PROJECT)) IFS=$OLDIFS unset NODE_OPTIONS # See https://github.com/codecov/uploader/issues/475 -chmod +x $cc_filename +chmod +x $cc_command if [ -n "$CC_TOKEN_VAR" ]; then token="$(eval echo \$$CC_TOKEN_VAR)" @@ -208,8 +205,8 @@ then token_arg+=( " -t " "$token") fi say "$g==>$x Running upload-coverage" -say " $b./$cc_filename $(echo "${cc_cli_args[@]}") upload-coverage$token_str $(echo "${cc_uc_args[@]}")$x" -if ! ./$cc_filename \ +say " $b$cc_command $(echo "${cc_cli_args[@]}") upload-coverage$token_str $(echo "${cc_uc_args[@]}")$x" +if ! $cc_command \ ${cc_cli_args[*]} \ upload-coverage \ ${token_arg[*]} \ From 277db52c203b15a43138893d8190f8fd3ebd9fc6 Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Wed, 18 Dec 2024 15:33:42 -0300 Subject: [PATCH 8/9] fix: update statment (#1726) --- action.yml | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/action.yml b/action.yml index ecea88427e..b06e40a342 100644 --- a/action.yml +++ b/action.yml @@ -168,12 +168,13 @@ runs: - name: Set fork shell: bash run: | - if [ -n "$GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME" ] && [ "${GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME}" != "$GITHUB_REPOSITORY" ]; + CC_FORK="false" + if [ -n "$GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME" ] && [ "$GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME" != "$GITHUB_REPOSITORY" ]; then echo -e "\033[0;32m==>\033[0m Fork detected" CC_FORK="true" - echo "CC_FORK=$CC_FORK" >> "$GITHUB_ENV" fi + echo "CC_FORK=$CC_FORK" >> "$GITHUB_ENV" env: GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL: ${{ github.event.pull_request.head.label }} GITHUB_EVENT_PULL_REQUEST_HEAD_REPO_FULL_NAME: ${{ github.event.pull_request.head.repo.full_name }} @@ -183,10 +184,10 @@ runs: - name: Get and set token shell: bash run: | - if [ "${{ inputs.use_oidc }}" == 'true' && "$CC_FORK" != 'true' ]; + if [ "${{ inputs.use_oidc }}" == 'true' ] && [ "$CC_FORK" != 'true' ]; then # {"count":1984,"value":"***"} - echo -e "\033[0;32m==>\033[0m Requesting OIDC token from ${ACTION_ID_TOKEN_REQUEST_URL}" + echo -e "\033[0;32m==>\033[0m Requesting OIDC token from '$ACTIONS_ID_TOKEN_REQUEST_URL'" CC_TOKEN=$(curl -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=https://codecov.io" | cut -d\" -f6) echo "CC_TOKEN=$CC_TOKEN" >> "$GITHUB_ENV" elif [ -n "${{ env.CODECOV_TOKEN }}" ]; From 1e68e06f1dbfde0e4cefc87efeba9e4643565303 Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Wed, 18 Dec 2024 15:44:32 -0300 Subject: [PATCH 9/9] chore(release): 5.1.2 (#1727) --- CHANGELOG.md | 18 +++++++++++++++++- action.yml | 2 +- src/version | 2 +- 3 files changed, 19 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 48845849af..be64204dfd 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,19 @@ +## v5.1.2 + +### What's Changed +* fix: update statment by @thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1726 +* fix: update action script by @thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1725 +* fix: prevent oidc on tokenless due to permissioning by @thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1724 +* chore(release): wrapper-0.0.31 by @app/codecov-releaser-app in https://github.com/codecov/codecov-action/pull/1723 +* Put quotes around `${{ inputs.token }}` in `action.yml` by @jwodder in https://github.com/codecov/codecov-action/pull/1721 +* build(deps): bump github/codeql-action from 3.27.6 to 3.27.9 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1722 +* Remove mistake from options table by @Acconut in https://github.com/codecov/codecov-action/pull/1718 +* build(deps): bump github/codeql-action from 3.27.5 to 3.27.6 by @app/dependabot in https://github.com/codecov/codecov-action/pull/1717 + + +**Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.1.1..v5.1.2 + + ## v5.1.1 ### What's Changed @@ -993,4 +1009,4 @@ for the full list. ### Dependencies and Misc - #166 Bump requestretry from 4.1.1 to 4.1.2 - #169 Bump typescript from 4.0.5 to 4.1.2 -- #178 Bump @types/jest from 26.0.15 to 26.0.19 +- #178 Bump @types/jest from 26.0.15 to 26.0.19 \ No newline at end of file diff --git a/action.yml b/action.yml index b06e40a342..04dca4f72d 100644 --- a/action.yml +++ b/action.yml @@ -208,7 +208,7 @@ runs: run: | if [ -z "$CC_BRANCH" ] && [ -z "$CC_TOKEN" ] && [ "$CC_FORK" == 'true' ] then - echo -e "\033[0;32m==>\033[0m Fork detected, tokenless uploading used" + echo -e "\033[0;32m==>\033[0m Fork detected, setting branch to $GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL" TOKENLESS="$GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL" CC_BRANCH="$GITHUB_EVENT_PULL_REQUEST_HEAD_LABEL" echo "TOKENLESS=$TOKENLESS" >> "$GITHUB_ENV" diff --git a/src/version b/src/version index ac14c3dfaa..61fcc87350 100644 --- a/src/version +++ b/src/version @@ -1 +1 @@ -5.1.1 +5.1.2