add dependency-update workflow template (fixes #683)#756
Open
Rimsha2535 wants to merge 21 commits intomainfrom
Open
add dependency-update workflow template (fixes #683)#756Rimsha2535 wants to merge 21 commits intomainfrom
Rimsha2535 wants to merge 21 commits intomainfrom
Conversation
Rimsha2535
had a problem deploying
to
manual-approval
GitHub Actions
Failure
kratz00
changed the title
ArBridgeman
reviewed
Mar 31, 2026
Rimsha2535
requested a deployment
to
manual-approval
GitHub Actions
Waiting
Rimsha2535
requested a deployment
to
manual-approval
GitHub Actions
Waiting
ArBridgeman
reviewed
Apr 14, 2026
Rimsha2535
requested a deployment
to
manual-approval
GitHub Actions
Waiting
ArBridgeman
requested a deployment
to
manual-approval
GitHub Actions
Waiting
ArBridgeman
reviewed
Apr 15, 2026
Collaborator
|
The GitHub workflow code looked good, but it's always good test, so here are those tests done via Use cases:
Example PR: Like @ckunki said, we likely need to modify this text more to tell the user what to do. But it sounds like this would be done in a later effort. |
ArBridgeman
reviewed
Apr 15, 2026
ArBridgeman
reviewed
Apr 15, 2026
ckunki
reviewed
Apr 15, 2026
ckunki
requested changes
Apr 15, 2026
tkilias
reviewed
Apr 16, 2026
ArBridgeman
had a problem deploying
to
manual-approval
GitHub Actions
Error
ArBridgeman
requested a deployment
to
manual-approval
GitHub Actions
Waiting
ckunki
reviewed
May 6, 2026
ckunki
requested changes
May 6, 2026
11 tasks
Co-authored-by: Christoph Kuhnke <christoph.kuhnke@exasol.com>
Co-authored-by: Christoph Kuhnke <christoph.kuhnke@exasol.com>
Co-authored-by: Christoph Kuhnke <christoph.kuhnke@exasol.com>
Co-authored-by: Christoph Kuhnke <christoph.kuhnke@exasol.com>
Co-authored-by: Christoph Kuhnke <christoph.kuhnke@exasol.com>
Rimsha2535
requested a deployment
to
manual-approval
GitHub Actions
Waiting
|
Rimsha2535
requested review from
ArBridgeman and
ckunki
and removed request for
ArBridgeman
ArBridgeman
reviewed
May 6, 2026
| status: '${{ job.status }}' | ||
| token: '${{ secrets.GITHUB_TOKEN }}' | ||
| notification_title: 'Dependency update for {repo} created a Pull Request' | ||
| status: '${{ job.status }}', |
Collaborator
There was a problem hiding this comment.
duplicate field
Suggested change
| status: '${{ job.status }}', |
ArBridgeman
reviewed
May 6, 2026
| token: '${{ secrets.GITHUB_TOKEN }}' | ||
| notification_title: 'Dependency update for {repo} created a Pull Request' | ||
| status: '${{ job.status }}', | ||
| token: '${{ secrets.GITHUB_TOKEN }}', |
Collaborator
There was a problem hiding this comment.
duplicate field
Suggested change
| token: '${{ secrets.GITHUB_TOKEN }}', |
ArBridgeman
reviewed
May 6, 2026
| notification_title: 'Dependency update for {repo} created a Pull Request' | ||
| status: '${{ job.status }}', | ||
| token: '${{ secrets.GITHUB_TOKEN }}', | ||
| notification_title: 'Dependency update for {repo} created a Pull Request', |
Collaborator
There was a problem hiding this comment.
duplicate field
Suggested change
| notification_title: 'Dependency update for {repo} created a Pull Request', |
ArBridgeman
reviewed
May 6, 2026
|
|
||
| echo "pr_url=$PR_URL" >> "$GITHUB_OUTPUT" | ||
|
|
||
| pr_url=$(gh pr create \ |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| pr_url=$(gh pr create \ |
ArBridgeman
reviewed
May 6, 2026
| echo "pr_url=$PR_URL" >> "$GITHUB_OUTPUT" | ||
|
|
||
| pr_url=$(gh pr create \ | ||
| --base "$BASE_BRANCH" \ |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| --base "$BASE_BRANCH" \ |
ArBridgeman
reviewed
May 6, 2026
|
|
||
| pr_url=$(gh pr create \ | ||
| --base "$BASE_BRANCH" \ | ||
| --title "Update dependencies to fix vulnerabilities ($(date '+%Y-%m-%d'))" \ |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| --title "Update dependencies to fix vulnerabilities ($(date '+%Y-%m-%d'))" \ |
ArBridgeman
reviewed
May 6, 2026
| pr_url=$(gh pr create \ | ||
| --base "$BASE_BRANCH" \ | ||
| --title "Update dependencies to fix vulnerabilities ($(date '+%Y-%m-%d'))" \ | ||
| --body "Automated dependency update for \`poetry.lock\`.) |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| --body "Automated dependency update for \`poetry.lock\`.) |
ArBridgeman
reviewed
May 6, 2026
| --base "$BASE_BRANCH" \ | ||
| --title "Update dependencies to fix vulnerabilities ($(date '+%Y-%m-%d'))" \ | ||
| --body "Automated dependency update for \`poetry.lock\`.) | ||
| echo "pr_url=$pr_url" >> "$GITHUB_OUTPUT" |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| echo "pr_url=$pr_url" >> "$GITHUB_OUTPUT" |
ArBridgeman
reviewed
May 6, 2026
| echo "pr_url=$pr_url" >> "$GITHUB_OUTPUT" | ||
| This PR was created by the dependency update workflow after running: | ||
| - \`poetry run -- nox -s dependency:audit\` | ||
| - \`poetry update\`" |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| - \`poetry update\`" |
ArBridgeman
reviewed
May 6, 2026
| --body "Automated dependency update for \`poetry.lock\`.) | ||
| echo "pr_url=$pr_url" >> "$GITHUB_OUTPUT" | ||
| This PR was created by the dependency update workflow after running: | ||
| - \`poetry run -- nox -s dependency:audit\` |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| - \`poetry run -- nox -s dependency:audit\` |
ArBridgeman
reviewed
May 6, 2026
| --title "Update dependencies to fix vulnerabilities ($(date '+%Y-%m-%d'))" \ | ||
| --body "Automated dependency update for \`poetry.lock\`.) | ||
| echo "pr_url=$pr_url" >> "$GITHUB_OUTPUT" | ||
| This PR was created by the dependency update workflow after running: |
Collaborator
There was a problem hiding this comment.
not needed
Suggested change
| This PR was created by the dependency update workflow after running: |
ckunki
requested changes
May 6, 2026
| permissions: | ||
| contents: read | ||
|
|
||
| test-python-environment: |
Contributor
There was a problem hiding this comment.
Why has this been removed, now?
Author
There was a problem hiding this comment.
@ckunki Sorry, there was a merge conflict in that file and I think this line was accidentally removed while resolving it.
Collaborator
There was a problem hiding this comment.
Thanks, this shouldn't be removed. It's related to the PTB not fully supporting GitHub workflow changes.
So the poetry run -- nox -s workflow:generate -- all overwrites & we need to manually ensure it stays 😿
@Rimsha2535 lmk if you want to pair briefly on this one.
ckunki
approved these changes
May 6, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Fixes #683
Checklist
Note: If any of the items in the checklist are not relevant to your PR, just check the box.
For any Pull Request
Is the following correct:
When Changes Were Made
Did you:
When Preparing a Release
Have you:
Notes