Skip to content
Permalink
c9ae7b0280
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

dependabot-action/src/main.ts

Go to file
 
 
Cannot retrieve contributors at this time
112 lines (95 sloc) 3.39 KB
Raw Blame
import * as core from '@actions/core'
import * as github from '@actions/github'
import {Context} from '@actions/github/lib/context'
import {getJobParameters} from './inputs'
import {ImageService} from './image-service'
import {Updater} from './updater'
import {ApiClient} from './api-client'
import axios from 'axios'
export const UPDATER_IMAGE_NAME =
'docker.pkg.github.com/dependabot/dependabot-updater:v1'
export const PROXY_IMAGE_NAME =
'docker.pkg.github.com/github/dependabot-update-job-proxy:v1'
export enum DependabotErrorType {
Unknown = 'actions_workflow_unknown',
Image = 'actions_workflow_image',
UpdateRun = 'actions_workflow_updater'
}
export async function run(context: Context): Promise<void> {
try {
core.info('🤖 ~ starting update ~')
// Retrieve JobParameters from the Actions environment
const params = getJobParameters(context)
// The parameters will be null if the Action environment
// is not a valid Dependabot-triggered dynamic event.
if (params === null) {
core.info('🤖 ~ finished: nothing to do ~')
return // TODO: This should be setNeutral in future
}
core.setSecret(params.jobToken)
core.setSecret(params.credentialsToken)
const client = axios.create({baseURL: params.dependabotApiUrl})
const apiClient = new ApiClient(client, params)
core.info('Fetching job details')
// If we fail to succeed in fetching the job details, we cannot be sure the job has entered a 'processing' state,
// so we do not try attempt to report back an exception if this fails and instead rely on the the workflow run
// webhook as it anticipates scenarios where jobs have failed while 'enqueued'.
const details = await apiClient.getJobDetails()
try {
const credentials = await apiClient.getCredentials()
const updater = new Updater(
UPDATER_IMAGE_NAME,
PROXY_IMAGE_NAME,
apiClient,
details,
credentials,
params.workingDirectory
)
try {
core.info('Pulling updater images')
await ImageService.pull(UPDATER_IMAGE_NAME)
await ImageService.pull(PROXY_IMAGE_NAME)
} catch (error) {
core.error('Error fetching updater images')
await failJob(apiClient, error, DependabotErrorType.Image)
return
}
try {
core.info('Starting update process')
await updater.runUpdater()
} catch (error) {
core.error('Error performing update')
await failJob(apiClient, error, DependabotErrorType.UpdateRun)
return
}
core.info('🤖 ~ finished ~')
} catch (error) {
await failJob(apiClient, error)
return
}
} catch (error) {
// If we've reached this point, we do not have a viable
// API client to report back to Dependabot API.
//
// We output the raw error in the Action logs and defer
// to workflow_run monitoring to detect the job failure.
core.setFailed(error)
core.info('🤖 ~ finished: unexpected error ~')
}
}
async function failJob(
apiClient: ApiClient,
error: Error,
errorType = DependabotErrorType.Unknown
): Promise<void> {
await apiClient.reportJobError({
'error-type': errorType,
'error-details': {
'action-error': error.message
}
})
await apiClient.markJobAsProcessed()
core.setFailed(error.message)
core.info('🤖 ~ finished: error reported to Dependabot ~')
}
run(github.context)