-
Notifications
You must be signed in to change notification settings - Fork 4
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade to actions/upload-artifact@4.0.0
and actions/download-artifact@4.0.0
#77
Comments
While the situation has improved for using the latest version of these actions, after experimenting with them a bit for a separate project, the downloading of artifacts seems much more finicky now. I have seen much higher rates of failures for downloads than with the previous version; most seem to be of the nature of a timeout. So, while anecdotal, we'll probably be best served by letting these new GitHub services mature a bit more before implementing them en masse. |
Additionally, because the previous and new versions are not compatible with each other in at least one important operating mode, the upgrade will likely require several co-dependent PRs to rollout the updates to use the new versions across the repos. |
This reverts commit 63caca8. See: actions/upload-artifact#472 https://github.com/orgs/aio-libs/discussions/31 beeware/.github#77 https://github.com/Ralim/IronOS/pull/1855/files Bug to revert back again when we have clear guidance: #12803 ###### Microsoft Reviewers: [Open in CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/Azure/bicep/pull/12802) Co-authored-by: Stephen Weatherford <Stephen.Weatherford.com>
FWIW, more anecdotes about timeouts (which I'm also still seeing in a daily workflow I set up): |
I went ahead and did the work to upgrade to v4; whether you want to merge this now or later is up to you. There are still the request timeouts for the In general, the upgrades are rather straightforward; for the repos where the Dependabot PR succeeded, these new PRs can be merged independently and whenever. Although, I wasn't sure how to test any of them... As for the repos where the Dependabot PRs failed, these new PRs will all need to be merged in tandem with #78. The one peculiar bit is the output |
What is the problem or limitation you are having?
The v4 releases of
actions/upload-artifact
andactions/download-artifact
include a series of massive backwards incompatibilities:Describe the solution you'd like
Make the changes necessary to track the new releases.
Describe alternatives you've considered
Additional context
Github issue requesting guidance on migration
The following Dependabot PRs were created automatically, and failed CI:
The following Dependabot PRs were created automatically, and passed CI:
Even though they passed CI, Dependabot was suspended for the upload/download actions. It's possible they've worked as intended; but given the size of the change, they usage needs to be carefully audited.
The text was updated successfully, but these errors were encountered: