From e838f75135c3b8c2728a1622cc33817545c0648d Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Mon, 27 May 2024 23:01:01 -0400 Subject: [PATCH 01/10] Enable Dependabot version updates Creates dependabot.yml configured to run version update scans every Monday at 9am London time. --- .github/dependabot.yml | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..eb914390 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,32 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file + +version: 2 +updates: + # Maintain dependencies for yarn + - package-ecosystem: "npm" # works for yarn + directory: "/" # Location of package manifests + schedule: + interval: "weekly" + time: "09:00" + timezone: "Europe/London" + + # Maintain dependencies for GitHub Actions + - package-ecosystem: "github-actions" + # Workflow files stored in the default location of `.github/workflows`. (You don't need to specify `/.github/workflows` for `directory`. You can use `directory: "/"`.) + directory: "/" + schedule: + interval: "weekly" + time: "09:00" + timezone: "Europe/London" + + # Maintain dependencies for bundler + - package-ecosystem: "bundler" + directory: "/" + schedule: + interval: "weekly" + time: "09:00" + timezone: "Europe/London" + From d873fd06bb9dae9b2f30bc2d544ea6e9a80c429b Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Tue, 28 May 2024 05:27:51 -0400 Subject: [PATCH 02/10] Actions: Create issues from dependabot pull requests workflow Created create-dependabot-issues.yml --- .../workflows/create-dependabot-issues.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 .github/workflows/create-dependabot-issues.yml diff --git a/.github/workflows/create-dependabot-issues.yml b/.github/workflows/create-dependabot-issues.yml new file mode 100644 index 00000000..c8a2b0d1 --- /dev/null +++ b/.github/workflows/create-dependabot-issues.yml @@ -0,0 +1,31 @@ +name: Create Dependabot Issues # from pull requests + +on: + pull_request: + types: [opened, synchronize] + branches: [main] + +jobs: + create-issue: + runs-on: ubuntu-latest + permissions: + issues: write + if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' }} + steps: + - name: Create issue + uses: actions-cool/issues-helper@v3 + with: + actions: 'create-issue' + token: ${{ secrets.GITHUB_TOKEN }} + title: ${{ github.event.pull_request.title }} + body: | + ### Dependabot opened a pull request to update a dependency. Please review it: ${{ github.event.pull_request.html_url }} + - [ ] Comment on this issue tagging Chayn staff (@kyleecodes) to be assigned as a reviewer on the PR. + - [ ] Review the pull request. See GitHub Docs below for guidance. Check the files changed, dependency review, and workflow test runs. + - [ ] Verify tests and happy paths are functional by cloning the dependabot branch and running locally. + - [ ] If pull request does not pass tests, suggest changes or write comments in the review. + - [ ] When tests pass, approve changes to complete the review, then notify us in issue discussions so we can get this merged. + + ### Resources + GitHub Docs - Reviewing Pull Requests with Dependency Updates: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-dependency-changes-in-a-pull-request + labels: 'dependencies' From fb6fea764a9a0df3ead3be2f2f7c4ea575fe4cb1 Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Thu, 30 May 2024 16:44:27 -0400 Subject: [PATCH 03/10] Actions: Remove synchronize trigger in create-dependabot-issues.yml Synchronize trigger only necessary to catch up issues with PRs opened before workflow was implemented. Disables repeat issue creation for same PR. --- .github/workflows/create-dependabot-issues.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/create-dependabot-issues.yml b/.github/workflows/create-dependabot-issues.yml index c8a2b0d1..7dbfd9db 100644 --- a/.github/workflows/create-dependabot-issues.yml +++ b/.github/workflows/create-dependabot-issues.yml @@ -2,7 +2,7 @@ name: Create Dependabot Issues # from pull requests on: pull_request: - types: [opened, synchronize] + types: [opened] branches: [main] jobs: From 4e2480d3583d6cb9b8eff37c032ea89236b78831 Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Thu, 6 Jun 2024 21:02:45 -0400 Subject: [PATCH 04/10] Actions: Config dependabot on PRs (#438) Updated directions for creating issues for dependabot PRs. New workflow to run dependabot scans on PRs. --- .github/dependabot.yml | 1 - .../workflows/create-dependabot-issues.yml | 31 --------------- .github/workflows/dependabot-open-issues.yml | 39 +++++++++++++++++++ .github/workflows/dependabot-pr-review.yml | 22 +++++++++++ 4 files changed, 61 insertions(+), 32 deletions(-) delete mode 100644 .github/workflows/create-dependabot-issues.yml create mode 100644 .github/workflows/dependabot-open-issues.yml create mode 100644 .github/workflows/dependabot-pr-review.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml index eb914390..69f21554 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -29,4 +29,3 @@ updates: interval: "weekly" time: "09:00" timezone: "Europe/London" - diff --git a/.github/workflows/create-dependabot-issues.yml b/.github/workflows/create-dependabot-issues.yml deleted file mode 100644 index 7dbfd9db..00000000 --- a/.github/workflows/create-dependabot-issues.yml +++ /dev/null @@ -1,31 +0,0 @@ -name: Create Dependabot Issues # from pull requests - -on: - pull_request: - types: [opened] - branches: [main] - -jobs: - create-issue: - runs-on: ubuntu-latest - permissions: - issues: write - if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' }} - steps: - - name: Create issue - uses: actions-cool/issues-helper@v3 - with: - actions: 'create-issue' - token: ${{ secrets.GITHUB_TOKEN }} - title: ${{ github.event.pull_request.title }} - body: | - ### Dependabot opened a pull request to update a dependency. Please review it: ${{ github.event.pull_request.html_url }} - - [ ] Comment on this issue tagging Chayn staff (@kyleecodes) to be assigned as a reviewer on the PR. - - [ ] Review the pull request. See GitHub Docs below for guidance. Check the files changed, dependency review, and workflow test runs. - - [ ] Verify tests and happy paths are functional by cloning the dependabot branch and running locally. - - [ ] If pull request does not pass tests, suggest changes or write comments in the review. - - [ ] When tests pass, approve changes to complete the review, then notify us in issue discussions so we can get this merged. - - ### Resources - GitHub Docs - Reviewing Pull Requests with Dependency Updates: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-dependency-changes-in-a-pull-request - labels: 'dependencies' diff --git a/.github/workflows/dependabot-open-issues.yml b/.github/workflows/dependabot-open-issues.yml new file mode 100644 index 00000000..fcf138c9 --- /dev/null +++ b/.github/workflows/dependabot-open-issues.yml @@ -0,0 +1,39 @@ +# This workflow opens issues for pull requests opened by dependabot. +# See for more info: https://github.com/actions-cool/issues-helper + +name: Open Dependabot Issues # from pull requests + +on: + pull_request: + types: [opened] + branches: [develop] + +jobs: + create-issue: + runs-on: ubuntu-latest + permissions: + issues: write + if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' }} + steps: + - name: Create issue + uses: actions-cool/issues-helper@v3 + with: + actions: "create-issue" + token: ${{ secrets.GITHUB_TOKEN }} + title: ${{ github.event.pull_request.title }} + body: | + ### Dependabot opened a pull request to update a dependency. Please review it: ${{ github.event.pull_request.html_url }} + - [ ] Comment on this issue tagging Chayn staff (@kyleecodes) to be assigned this issue. + - [ ] If you are a Chayn volunteer, we will assign you as a reviewer to the PR after you've accepted an invite to join this repo as a collaborator. + - [ ] Review the pull request. Check dependency files (such as package.json) to verify that the dependency has not already been updated. + - [ ] See GitHub Docs below for guidance. Check the files changed, dependency review, and workflow test runs. + - [ ] Upgrade the dependency. Please research it instead of simply updating the version numbers, as some upgrades may require code changes. + - [ ] Verify tests and happy paths are functional by cloning the dependabot branch and running locally. + - [ ] Next, complete the pull request review if you a volunteer, or notify us in issue discussions that you are done reviewing the PR. + - If the dependency upgrade does not pass tests or breaks the app, notify us in issue discussions, or in the pull request review if you're a volunteer. You may work on the required code changes or finish the review as is. + - If the dependency upgrade passes tests without breaking the app, notify us in the issue discussions, or approve the pull request if you are a volunteer. Then we'll get the PR merged! + + ### Resources + - GitHub Docs - Reviewing Pull Requests with Dependency Updates: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-dependency-changes-in-a-pull-request + - GitHub Docs - Reviewing Pull Requests: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-proposed-changes-in-a-pull-request + labels: "dependencies" diff --git a/.github/workflows/dependabot-pr-review.yml b/.github/workflows/dependabot-pr-review.yml new file mode 100644 index 00000000..6acb24f7 --- /dev/null +++ b/.github/workflows/dependabot-pr-review.yml @@ -0,0 +1,22 @@ +# This workflow enables dependency scans on pull requests. +# When changes in dependencies are detected, it will raise an error +# if any vulnerabilities or invalid licenses are introduced. +# See for more info: https://github.com/actions/dependency-review-action + +name: "Dependency Review" +on: [pull_request] + +permissions: + contents: read + +jobs: + dependency-review: + runs-on: ubuntu-latest + steps: + - name: "Checkout Repository" + uses: actions/checkout@v4 + - name: "Dependency Review" + uses: actions/dependency-review-action@v4 + with: + # fails when moderate vulnerabilities are deteched + fail-on-severity: moderate From b8bfa8283419b735133cd5f75fdd82570963c8bf Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Thu, 6 Jun 2024 21:04:25 -0400 Subject: [PATCH 05/10] Fix: Update main branch in dependabot-open-issues.yml --- .github/workflows/dependabot-open-issues.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependabot-open-issues.yml b/.github/workflows/dependabot-open-issues.yml index fcf138c9..5a135774 100644 --- a/.github/workflows/dependabot-open-issues.yml +++ b/.github/workflows/dependabot-open-issues.yml @@ -6,7 +6,7 @@ name: Open Dependabot Issues # from pull requests on: pull_request: types: [opened] - branches: [develop] + branches: [main] jobs: create-issue: From 23759c37825b4b2703d78ace795a189d6e2d1416 Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Thu, 6 Jun 2024 21:14:22 -0400 Subject: [PATCH 06/10] Actions: comments & stale management (#443) New workflow to manage stale PRs and issues. Upgraded assignee issue comment with markdown using github/script. New first interaction workflow for contributors who open PRs without being assigned issues. --- .../workflows/community-first-pr-comment.yml | 16 +++++++ .github/workflows/community-issue-comment.yml | 35 +++++++++++++++ .../workflows/community-stale-management.yml | 43 +++++++++++++++++++ .github/workflows/community_management.yml | 23 ---------- 4 files changed, 94 insertions(+), 23 deletions(-) create mode 100644 .github/workflows/community-first-pr-comment.yml create mode 100644 .github/workflows/community-issue-comment.yml create mode 100644 .github/workflows/community-stale-management.yml delete mode 100644 .github/workflows/community_management.yml diff --git a/.github/workflows/community-first-pr-comment.yml b/.github/workflows/community-first-pr-comment.yml new file mode 100644 index 00000000..18948e33 --- /dev/null +++ b/.github/workflows/community-first-pr-comment.yml @@ -0,0 +1,16 @@ +# This workflow comments on PRs opened by first time contributors. +# Reminds first timer contributors to associate their PR with an issue and follow the guidelines. +# See for more info: https://github.com/actions/first-interaction + +name: First Interaction PR Comment + +on: [pull_request] + +jobs: + greeting: + runs-on: ubuntu-latest + steps: + - uses: actions/first-interaction@v1 + with: + repo-token: ${{ secrets.GITHUB_TOKEN }} + pr-message: "First time contributors to Chayn: Please make sure that this PR is linked to an issue you are assigned! We will not merge contributor PRs without a linked assigned issue. Please ask to be assigned an existing issue or create your own before opening a PR. Read our Contributing Guidelines in the CONTRIBUTING.md file for more details. Thank you for your contribution!" diff --git a/.github/workflows/community-issue-comment.yml b/.github/workflows/community-issue-comment.yml new file mode 100644 index 00000000..05ccf99d --- /dev/null +++ b/.github/workflows/community-issue-comment.yml @@ -0,0 +1,35 @@ +# This workflow handles issue comments. + +name: Issue Assignee Comment + +on: + issues: + types: + - assigned + - labeled + +jobs: + # When issues are assigned, a comment is posted + # Tags the assignee with links to helpful resources + # See for more info: https://github.com/actions/github-script + assigned-comment: + runs-on: ubuntu-latest + steps: + - name: Post assignee issue comment + id: assigned-comment + uses: actions/github-script@v7 + with: + github-token: ${{secrets.GITHUB_TOKEN}} + script: | + github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.payload.issue.number, + body: `Thank you @${context.payload.issue.assignee.login} you have been assigned this issue! + **Please follow the directions in our [Contributing Guide](https://github.com/chaynHQ/.github/blob/main/docs/CONTRIBUTING.md). We look forward to reviewing your pull request shortly ✨** + + --- + + Support Chayn's mission? ⭐ Please star this repo to help us find more contributors like you! + Learn more about Chayn [here](https://linktr.ee/chayn) and [explore our projects](https://org.chayn.co/projects). 🌸` + }) diff --git a/.github/workflows/community-stale-management.yml b/.github/workflows/community-stale-management.yml new file mode 100644 index 00000000..a262eda9 --- /dev/null +++ b/.github/workflows/community-stale-management.yml @@ -0,0 +1,43 @@ +# This workflow labels stale issues and PRs after 30 days of inactivity. +# Stale PRs are closed after 1 week of inactivity after labeled stale. +# See for more info: https://github.com/actions/stale + +name: Mark Stale Contributions + +on: + # Enable manual run from the Actions tab so workflow can be run at any time + workflow_dispatch: + # Scheduled to run at 12:00 on every Monday + schedule: + - cron: "0 0 * * MON" + +jobs: + stale: + runs-on: ubuntu-latest + permissions: + issues: write + pull-requests: write + + steps: + - uses: actions/stale@v9 + with: + repo-token: ${{ secrets.GITHUB_TOKEN }} + stale-label: "stale" + days-before-stale: 30 + # disables closing issues + days-before-issue-close: -1 + # close pr after 1 week no updates after stale warning + days-before-pr-close: 7 + # only scan assigned issues + include-only-assigned: true + # ignore issues assigned to staff and bots + exempt-assignees: "kyleecodes, swetha-charles, eleanorreem, annarhughes, tarebyte, dependabot[bot], dependabot, github-actions[bot], github-actions" + # disable removing stale label due to irrelevant activity (like branch updates) + remove-stale-when-updated: false + # exempt dependabot prs from going stale + exempt-pr-labels: dependencies + # disable counting irrelevant activity (branch updates) towards day counter on prs. + ignore-pr-updates: true + stale-pr-message: "As per Chayn policy, after 30 days of inactivity, we will close this PR." + close-pr-message: "This PR has been closed due to inactivity." + stale-issue-message: "As per Chayn policy, after 30 days of inactivity, we will be unassigning this issue. Please comment to stay assigned." diff --git a/.github/workflows/community_management.yml b/.github/workflows/community_management.yml deleted file mode 100644 index 276d4721..00000000 --- a/.github/workflows/community_management.yml +++ /dev/null @@ -1,23 +0,0 @@ -# This workflow comments helpful info in issues when they are assigned. -# For more information, see: -# https://github.com/actions/first-interaction - -name: Community Management -on: - issues: - types: - - assigned -jobs: - add-comment: - runs-on: ubuntu-latest - permissions: - issues: write - steps: - - name: Add comment - run: gh issue comment "$NUMBER" --body "$BODY" - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - GH_REPO: ${{ github.repository }} - NUMBER: ${{ github.event.issue.number }} - BODY: "Thank you for your interest in contributing to Chayn! Please carefully read the CONTRIBUTING.md file and the README.md file for guidance. Let us know if you have any questions. Happy Coding!" - \ No newline at end of file From 66a9014a24aa4e9ecb42af319a0c621461fba6f8 Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Sun, 9 Jun 2024 20:49:54 -0400 Subject: [PATCH 07/10] Actions: Replace directions with link to guide in dependabot-open-issues.yml Replaces directions with link to Contributor Guide to avoid needing to repeat edit issue descriptions when updates are made. --- .github/workflows/dependabot-open-issues.yml | 13 +------------ 1 file changed, 1 insertion(+), 12 deletions(-) diff --git a/.github/workflows/dependabot-open-issues.yml b/.github/workflows/dependabot-open-issues.yml index 5a135774..dd845457 100644 --- a/.github/workflows/dependabot-open-issues.yml +++ b/.github/workflows/dependabot-open-issues.yml @@ -24,16 +24,5 @@ jobs: body: | ### Dependabot opened a pull request to update a dependency. Please review it: ${{ github.event.pull_request.html_url }} - [ ] Comment on this issue tagging Chayn staff (@kyleecodes) to be assigned this issue. - - [ ] If you are a Chayn volunteer, we will assign you as a reviewer to the PR after you've accepted an invite to join this repo as a collaborator. - - [ ] Review the pull request. Check dependency files (such as package.json) to verify that the dependency has not already been updated. - - [ ] See GitHub Docs below for guidance. Check the files changed, dependency review, and workflow test runs. - - [ ] Upgrade the dependency. Please research it instead of simply updating the version numbers, as some upgrades may require code changes. - - [ ] Verify tests and happy paths are functional by cloning the dependabot branch and running locally. - - [ ] Next, complete the pull request review if you a volunteer, or notify us in issue discussions that you are done reviewing the PR. - - If the dependency upgrade does not pass tests or breaks the app, notify us in issue discussions, or in the pull request review if you're a volunteer. You may work on the required code changes or finish the review as is. - - If the dependency upgrade passes tests without breaking the app, notify us in the issue discussions, or approve the pull request if you are a volunteer. Then we'll get the PR merged! - - ### Resources - - GitHub Docs - Reviewing Pull Requests with Dependency Updates: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-dependency-changes-in-a-pull-request - - GitHub Docs - Reviewing Pull Requests: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/reviewing-proposed-changes-in-a-pull-request + - [ ] Follow directions in the Chayn Dependency Upgrade Guide here: https://chayn.notion.site/Chayn-Tech-Contributor-Wiki-5356c7118c134863a2e092e9df6cbc34?pvs=4 labels: "dependencies" From 665954038264a2c7c1f57553fc7c74cbabaebd50 Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Sun, 9 Jun 2024 21:41:06 -0400 Subject: [PATCH 08/10] Fix: replace stale label input in community-stale-management.yml Previous stale-label is out dated. --- .github/workflows/community-stale-management.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/community-stale-management.yml b/.github/workflows/community-stale-management.yml index a262eda9..8408ef6d 100644 --- a/.github/workflows/community-stale-management.yml +++ b/.github/workflows/community-stale-management.yml @@ -22,7 +22,8 @@ jobs: - uses: actions/stale@v9 with: repo-token: ${{ secrets.GITHUB_TOKEN }} - stale-label: "stale" + stale-issue-label: "stale" + stale-pr-label: "stale" days-before-stale: 30 # disables closing issues days-before-issue-close: -1 From 325b1e7bc50ed2b73b3630833f60e679887ee10b Mon Sep 17 00:00:00 2001 From: kyleecodes Date: Wed, 12 Jun 2024 19:30:26 -0400 Subject: [PATCH 09/10] Actions: enable stale issue management --- .github/workflows/community-issue-comment.yml | 25 +++++++++++++++++-- .../workflows/community-stale-management.yml | 1 - 2 files changed, 23 insertions(+), 3 deletions(-) diff --git a/.github/workflows/community-issue-comment.yml b/.github/workflows/community-issue-comment.yml index 05ccf99d..139e0f24 100644 --- a/.github/workflows/community-issue-comment.yml +++ b/.github/workflows/community-issue-comment.yml @@ -1,6 +1,7 @@ # This workflow handles issue comments. +# See for more info: https://github.com/actions/github-script -name: Issue Assignee Comment +name: Issue Comments on: issues: @@ -11,8 +12,8 @@ on: jobs: # When issues are assigned, a comment is posted # Tags the assignee with links to helpful resources - # See for more info: https://github.com/actions/github-script assigned-comment: + if: github.event.action == 'assigned' runs-on: ubuntu-latest steps: - name: Post assignee issue comment @@ -33,3 +34,23 @@ jobs: Support Chayn's mission? ⭐ Please star this repo to help us find more contributors like you! Learn more about Chayn [here](https://linktr.ee/chayn) and [explore our projects](https://org.chayn.co/projects). 🌸` }) + + # When issues are labeled as stale, a comment is posted. + # Tags the assignee with warning. + # Enables manual issue management in addition to community-stale-management.yml + stale-label-comment: + if: github.event.action == 'labeled' && github.event.label.name == 'stale' + runs-on: ubuntu-latest + steps: + - name: Post stale issue comment + id: stale-label-comment + uses: actions/github-script@v7 + with: + github-token: ${{secrets.GITHUB_TOKEN}} + script: | + github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.payload.issue.number, + body: `@${context.payload.issue.assignee.login} As per Chayn policy, after 30 days of inactivity, we will be unassigning this issue. Please comment to stay assigned.` + }) diff --git a/.github/workflows/community-stale-management.yml b/.github/workflows/community-stale-management.yml index 8408ef6d..0fa63dcd 100644 --- a/.github/workflows/community-stale-management.yml +++ b/.github/workflows/community-stale-management.yml @@ -41,4 +41,3 @@ jobs: ignore-pr-updates: true stale-pr-message: "As per Chayn policy, after 30 days of inactivity, we will close this PR." close-pr-message: "This PR has been closed due to inactivity." - stale-issue-message: "As per Chayn policy, after 30 days of inactivity, we will be unassigning this issue. Please comment to stay assigned." From 069c6a2f1105d0781203e2c962656b6edff8d1eb Mon Sep 17 00:00:00 2001 From: Kylee Fields <43586156+kyleecodes@users.noreply.github.com> Date: Tue, 9 Jul 2024 11:24:41 -0400 Subject: [PATCH 10/10] Deps: Update ruby from 3.1.4 to 3.1.6 (#452) Required to run in Devcontainer. 3.1.4 is a patch version, no longer exists on Microsoft devcontainer Ruby registry. 3.1.6 is the latest stable version of 3.1. --- .ruby-version | 2 +- Gemfile | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.ruby-version b/.ruby-version index 0aec50e6..9cec7165 100644 --- a/.ruby-version +++ b/.ruby-version @@ -1 +1 @@ -3.1.4 +3.1.6 diff --git a/Gemfile b/Gemfile index abe2d9aa..5ebd6dae 100644 --- a/Gemfile +++ b/Gemfile @@ -3,7 +3,7 @@ source 'https://rubygems.org' git_source(:github) { |repo| "https://github.com/#{repo}.git" } -ruby '3.1.4' +ruby '3.1.6' gem 'rails', '~> 7.0', '>= 7.0.8' gem 'pg', '~> 1.5', '>= 1.5.3'