From 016d0631fa493e826db22f1d2583235e5e4b2554 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 3 Jan 2024 22:34:23 +0000
Subject: [PATCH 01/16] Bump github from 9.20.0 to 9.22.0 in /app_dart (#3385)
Bumps [github](https://github.com/SpinlockLabs/github.dart) from 9.20.0 to 9.22.0.
Changelog
Sourced from github's changelog.
9.22.0
- Add support for the
Ghost user when the Github user is deleted.
9.21.0
- Update MiscService.getApiStatus() to use the v2 API
APIStatus has been refactored to match, now exposing page and status
Commits
6b9678e Make User field nullable in PullRequestReview (#383)741c26d Update MiscService.getApiStatus to v2 (#393)7bc0667 Bump actions/github-script from 6 to 7 (#394)df7118a Bump actions/checkout from 3 to 4 (#395)948c0f9 Bump JamesIves/github-pages-deploy-action from 4.4.3 to 4.5.0 (#396)52f71de Update release process to use actions (#392)d2c7bb2 Bump JamesIves/github-pages-deploy-action from 4.4.2 to 4.4.3 (#382)1d4023c Bump actions/checkout from 3 to 4 (#388)- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
app_dart/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/app_dart/pubspec.yaml b/app_dart/pubspec.yaml
index 372da7714..2f9360dd5 100644
--- a/app_dart/pubspec.yaml
+++ b/app_dart/pubspec.yaml
@@ -20,7 +20,7 @@ dependencies:
file: 7.0.0
fixnum: 1.1.0
gcloud: 0.8.11
- github: 9.20.0
+ github: 9.22.0
googleapis: 11.4.0
googleapis_auth: 1.4.1
gql: 1.0.1-alpha+1696717343881
From 3db9827be2145c375bf91bff948f9833c4b91643 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 3 Jan 2024 23:03:58 +0000
Subject: [PATCH 02/16] Bump archive from 3.4.9 to 3.4.10 in
/cipd_packages/codesign (#3387)
Bumps [archive](https://github.com/brendan-duncan/archive) from 3.4.9 to 3.4.10.
Changelog
Sourced from archive's changelog.
3.4.10 - January 2, 2024
Commits
187d723 Fix ZipCrypto password decodingc394e7d Add autoClose to ZipEncoder addFile7290be0 Add closeSync method to OutpuFileStream and ArchiveFile2ec62f0 Merge pull request #302 from aemelyanovff/mainbb87b2f Prevent modifying Archive.files directly - doing this makes "files" and "_fil...d44b9bf Merge pull request #300 from CaiJingLong/main5b10f87 Merge pull request #299 from alestiago/alestiago/update-example39af7bb feat: InputStream to InputStreamBase for zlibbeb6405 Merge pull request #298 from alestiago/feat/filename-format-exceptionb6997bc docs: _composeZipDirectoryPath- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/codesign/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index de24ce467..f6a897d86 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -10,7 +10,7 @@ dev_dependencies:
lints: 3.0.0
test: 1.25.0
dependencies:
- archive: 3.4.9
+ archive: 3.4.10
args: 2.4.2
crypto: 3.0.3
fake_async: 1.3.1
From 541c0a941897cd433e9a9402a7cc151d9731a2ab Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 19:06:10 +0000
Subject: [PATCH 03/16] Bump @types/node from 20.10.5 to 20.10.6 in
/gh_actions/third_party/no-response (#3381)
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.10.5 to 20.10.6.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.../third_party/no-response/package-lock.json | 14 +++++++-------
gh_actions/third_party/no-response/package.json | 2 +-
2 files changed, 8 insertions(+), 8 deletions(-)
diff --git a/gh_actions/third_party/no-response/package-lock.json b/gh_actions/third_party/no-response/package-lock.json
index 254293c5d..b17a9b244 100644
--- a/gh_actions/third_party/no-response/package-lock.json
+++ b/gh_actions/third_party/no-response/package-lock.json
@@ -17,7 +17,7 @@
"devDependencies": {
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
- "@types/node": "^20.10.5",
+ "@types/node": "^20.10.6",
"@typescript-eslint/parser": "^6.17.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
@@ -1554,9 +1554,9 @@
"dev": true
},
"node_modules/@types/node": {
- "version": "20.10.5",
- "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.5.tgz",
- "integrity": "sha512-nNPsNE65wjMxEKI93yOP+NPGGBJz/PoN3kZsVLee0XMiJolxSekEVD8wRwBUBqkwc7UWop0edW50yrCQW4CyRw==",
+ "version": "20.10.6",
+ "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.6.tgz",
+ "integrity": "sha512-Vac8H+NlRNNlAmDfGUP7b5h/KA+AtWIzuXy0E6OyP8f1tCLYAtPvKRRDJjAPqhpCb0t6U2j7/xqAuLEebW2kiw==",
"dev": true,
"dependencies": {
"undici-types": "~5.26.4"
@@ -8530,9 +8530,9 @@
"dev": true
},
"@types/node": {
- "version": "20.10.5",
- "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.5.tgz",
- "integrity": "sha512-nNPsNE65wjMxEKI93yOP+NPGGBJz/PoN3kZsVLee0XMiJolxSekEVD8wRwBUBqkwc7UWop0edW50yrCQW4CyRw==",
+ "version": "20.10.6",
+ "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.6.tgz",
+ "integrity": "sha512-Vac8H+NlRNNlAmDfGUP7b5h/KA+AtWIzuXy0E6OyP8f1tCLYAtPvKRRDJjAPqhpCb0t6U2j7/xqAuLEebW2kiw==",
"dev": true,
"requires": {
"undici-types": "~5.26.4"
diff --git a/gh_actions/third_party/no-response/package.json b/gh_actions/third_party/no-response/package.json
index 2c42bbca3..298f03dd4 100644
--- a/gh_actions/third_party/no-response/package.json
+++ b/gh_actions/third_party/no-response/package.json
@@ -33,7 +33,7 @@
"devDependencies": {
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
- "@types/node": "^20.10.5",
+ "@types/node": "^20.10.6",
"@typescript-eslint/parser": "^6.17.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
From 43b7f430ca4d1db3eafc07e70838cd125db2abda Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 22:27:41 +0000
Subject: [PATCH 04/16] Bump platform from 3.1.3 to 3.1.4 in /licenses (#3388)
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.3 to 3.1.4.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
licenses/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/licenses/pubspec.yaml b/licenses/pubspec.yaml
index 40c3847f0..4f23d15f3 100644
--- a/licenses/pubspec.yaml
+++ b/licenses/pubspec.yaml
@@ -6,7 +6,7 @@ environment:
dependencies:
path: 1.9.0
- platform: 3.1.3
+ platform: 3.1.4
dev_dependencies:
mockito: 5.4.4
From d554a660f85230c7886463c6c2e3e057ab25c1b6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 22:35:12 +0000
Subject: [PATCH 05/16] Bump process from 5.0.1 to 5.0.2 in
/cipd_packages/codesign (#3390)
Bumps [process](https://github.com/flutter/packages/tree/main/packages) from 5.0.1 to 5.0.2.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/codesign/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index f6a897d86..5bc1f890f 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -19,4 +19,4 @@ dependencies:
logging: 1.2.0
meta: 1.11.0
platform: 3.1.3
- process: 5.0.1
+ process: 5.0.2
From 4505cb8a7f2c93c24b8d43b474b06f4589c01c3f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 22:56:00 +0000
Subject: [PATCH 06/16] Bump firebase_crashlytics from 3.4.8 to 3.4.9 in
/dashboard (#3391)
Bumps [firebase_crashlytics](https://github.com/firebase/flutterfire/tree/master/packages/firebase_crashlytics) from 3.4.8 to 3.4.9.
Changelog
Sourced from firebase_crashlytics's changelog.
firebase_crashlytics - v3.4.9
- FIX(crashlytics): update exception
reason to ensure it does not produce incorrect value in Firebase console (#12053). (1cf38b86)
firebase_database - v10.4.0
- FEAT(database,android): automatically map the host to 10.0.2.2 when using useDatabaseEmulator to match other plugins (#11976). (6c6c589a)
firebase_messaging - v14.7.10
- FIX(messaging,android): increase notification storage limit to
100 (#12060). (2718db66)
- FIX(messaging,android): possible fix to a crash occurring on android background executor (#12057). (3eaae47f)
firebase_storage - v11.6.0
- FEAT: allow users to disable automatic host mapping (#11962). (13c1ce33)
2023-12-12
Changes
Packages with breaking changes:
- There are no breaking changes in this release.
Packages with other changes:
Packages with dependency updates only:
Packages listed below depend on other packages in this workspace that have had changes. Their versions have been incremented to bump the minimum dependency versions of the packages they depend upon in this project.
cloud_firestore_odm - v1.0.0-dev.81cloud_firestore_web - v3.8.10firebase_auth_web - v5.8.12
... (truncated)
Commits
94a156a chore(release): prepare for release (#12115)1cf38b8 fix(crashlytics): update exception reason to ensure it does not produce inc...- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
dashboard/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/dashboard/pubspec.yaml b/dashboard/pubspec.yaml
index fc89d980c..7845ec6f0 100644
--- a/dashboard/pubspec.yaml
+++ b/dashboard/pubspec.yaml
@@ -14,7 +14,7 @@ dependencies:
flutter:
sdk: flutter
collection: any # Match Flutter SDK
- firebase_crashlytics: 3.4.8 # Rolled by dependabot
+ firebase_crashlytics: 3.4.9 # Rolled by dependabot
firebase_core: 2.24.2 # Rolled by dependabot
fixnum: 1.1.0 # Rolled by dependabot
flutter_app_icons: 0.0.9 # Rolled by dependabot
From 83a4b3fbab37ef5434e535235b639cf35c5eaa80 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 22:57:31 +0000
Subject: [PATCH 07/16] Bump url_launcher_platform_interface from 2.2.0 to
2.3.0 in /dashboard (#3392)
Bumps [url_launcher_platform_interface](https://github.com/flutter/packages/tree/main/packages/url_launcher) from 2.2.0 to 2.3.0.
Commits
7beab0d [url_launcher] Add InAppBrowserConfiguration parameter (#5758)31fc7b5 bump mockito across repo to 5.4.4 (#5794)bb97da8 [various] Sync lints with flutter/flutter (#5717)2b53f72 [Android] Bump Gradle version to 7.6.3 (#5522)ea318b9 [url_launcher] Return false on Windows when there is no handler (#5359)73d2f3e [url_launcher] Simplify Linux implementation (#5376)e848d62 [url_launcher] Adds documentation that a launch needs to be triggered by a u...ee26151 [various] Update mockito to 5.4.3 (#5530)4be0de6 [url_launcher_web] migrate to pkg:web (#5451)639c5f0 [ci] Roll minimum allowable Flutter to 3.10 (#5425)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
dashboard/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/dashboard/pubspec.yaml b/dashboard/pubspec.yaml
index 7845ec6f0..5631ad32d 100644
--- a/dashboard/pubspec.yaml
+++ b/dashboard/pubspec.yaml
@@ -26,7 +26,7 @@ dependencies:
provider: 6.1.1 # Rolled by dependabot
truncate: 3.0.1 # Rolled by dependabot
url_launcher: 6.2.2 # Rolled by dependabot
- url_launcher_platform_interface: 2.2.0 # Rolled by dependabot
+ url_launcher_platform_interface: 2.3.0 # Rolled by dependabot
url_launcher_web: 2.2.2 # Rolled by dependabot
dev_dependencies:
From cab05ea7e8ea7bbda31f9be04cdc354589d0f6f1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 23:07:43 +0000
Subject: [PATCH 08/16] Bump process from 5.0.1 to 5.0.2 in
/cipd_packages/device_doctor (#3394)
Bumps [process](https://github.com/flutter/packages/tree/main/packages) from 5.0.1 to 5.0.2.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/device_doctor/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/device_doctor/pubspec.yaml b/cipd_packages/device_doctor/pubspec.yaml
index 6115f017d..e297003fb 100644
--- a/cipd_packages/device_doctor/pubspec.yaml
+++ b/cipd_packages/device_doctor/pubspec.yaml
@@ -11,7 +11,7 @@ dependencies:
logging: 1.2.0
meta: 1.11.0
path: 1.9.0
- process: 5.0.1
+ process: 5.0.2
retry: 3.1.2
yaml: 3.1.2
From eb3b7e88c8d22ef65e8ad280bda346b5179e0dea Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 23:12:50 +0000
Subject: [PATCH 09/16] Bump process from 5.0.1 to 5.0.2 in /app_dart (#3396)
Bumps [process](https://github.com/flutter/packages/tree/main/packages) from 5.0.1 to 5.0.2.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
app_dart/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/app_dart/pubspec.yaml b/app_dart/pubspec.yaml
index 2f9360dd5..039f1735f 100644
--- a/app_dart/pubspec.yaml
+++ b/app_dart/pubspec.yaml
@@ -34,7 +34,7 @@ dependencies:
mutex: 3.1.0
neat_cache: 2.0.3
path: 1.9.0
- process: 5.0.1
+ process: 5.0.2
process_runner: 4.2.0
protobuf: 2.1.0
retry: ^3.1.2
From c125c32e30e22019dc6f680fe45ed4b8af52977d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 23:13:59 +0000
Subject: [PATCH 10/16] Bump platform from 3.1.3 to 3.1.4 in /app_dart (#3395)
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.3 to 3.1.4.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
app_dart/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/app_dart/pubspec.yaml b/app_dart/pubspec.yaml
index 039f1735f..5839c06a6 100644
--- a/app_dart/pubspec.yaml
+++ b/app_dart/pubspec.yaml
@@ -48,7 +48,7 @@ dev_dependencies:
flutter_lints: 3.0.1
json_serializable: 6.7.1
mockito: 5.4.4
- platform: 3.1.3
+ platform: 3.1.4
test: 1.25.0
builders:
From beb07688c12af8c536bd204e39a30866b5dd8eca Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 23:15:48 +0000
Subject: [PATCH 11/16] Bump platform from 3.1.3 to 3.1.4 in /analyze (#3397)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
â ï¸ **Dependabot is rebasing this PR** â ï¸
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
---
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.3 to 3.1.4.
Commits
bb97da8 [various] Sync lints with flutter/flutter (#5717)6b2249f [pointer_interceptor_web] Update package APIs and tests. (#5785)ece0d7b [google_sign_in] Correct method channel clearAuthCache declaration (#5787)bff79f6 [google_sign_in] Correct clearAuthCache declarations (#5693)bbb4134 [camerax] Implement lockCaptureOrientation & unlockCaptureOrientation (#5...36a7b99 [path_provider]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /...fa74d3e [pigeon]: Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.21 to 1.9.2...6660212 [go_router] Refactored RouteMatchList and imperative APIs (#5497)a38446d [webview]: Bump androidx.annotation:annotation from 1.7.0 to 1.7.1 in /packag...65e0a81 [webview_flutter] Implement platform interface for JavaScript dialog (#5670)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
analyze/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/analyze/pubspec.yaml b/analyze/pubspec.yaml
index db48416ca..8ab3de673 100644
--- a/analyze/pubspec.yaml
+++ b/analyze/pubspec.yaml
@@ -8,7 +8,7 @@ environment:
dependencies:
file: 7.0.0
path: 1.9.0
- platform: 3.1.3
+ platform: 3.1.4
dev_dependencies:
mockito: 5.4.4
From f7bff7603e2c8da1e1acae11f6c3c9cf9ee71390 Mon Sep 17 00:00:00 2001
From: Casey Hillers
Date: Thu, 4 Jan 2024 16:41:45 -0800
Subject: [PATCH 12/16] [codesign] Add additional retries on notarytool
commands with exponential backoff (#3398)
Fixes https://github.com/flutter/flutter/issues/138636
* Migrate to package:retry instead of hand writing the retry logic
* Enables easily adding exponential backoff
* Minor cleanup
---
.../lib/src/file_codesign_visitor.dart | 123 ++++++++----------
cipd_packages/codesign/pubspec.yaml | 1 +
.../test/file_codesign_visitor_test.dart | 90 ++++++-------
3 files changed, 98 insertions(+), 116 deletions(-)
diff --git a/cipd_packages/codesign/lib/src/file_codesign_visitor.dart b/cipd_packages/codesign/lib/src/file_codesign_visitor.dart
index 2107aae15..31f7a6844 100644
--- a/cipd_packages/codesign/lib/src/file_codesign_visitor.dart
+++ b/cipd_packages/codesign/lib/src/file_codesign_visitor.dart
@@ -6,7 +6,9 @@ import 'dart:async';
import 'dart:io' as io;
import 'package:file/file.dart';
+import 'package:meta/meta.dart';
import 'package:process/process.dart';
+import 'package:retry/retry.dart';
import 'log.dart';
import 'utils.dart';
@@ -34,6 +36,10 @@ class FileCodesignVisitor {
required this.codesignAppstoreIDFilePath,
required this.codesignTeamIDFilePath,
this.dryrun = true,
+ @visibleForTesting this.retryOptions = const RetryOptions(
+ maxAttempts: 5,
+ delayFactor: Duration(seconds: 2),
+ ),
this.notarizationTimerDuration = const Duration(seconds: 5),
}) {
entitlementsFile = rootDirectory.childFile('Entitlements.plist')..writeAsStringSync(_entitlementsFileContents);
@@ -54,6 +60,7 @@ class FileCodesignVisitor {
final String codesignTeamIDFilePath;
final bool dryrun;
final Duration notarizationTimerDuration;
+ final RetryOptions retryOptions;
// 'Apple developer account email used for authentication with notary service.'
late String codesignAppstoreId;
@@ -287,8 +294,6 @@ update these file paths accordingly.
Future visitBinaryFile({
required File binaryFile,
required String parentVirtualPath,
- int retryCount = 3,
- int sleepTime = 1,
}) async {
final String currentFileName = binaryFile.basename;
final String entitlementCurrentPath = joinEntitlementPaths(parentVirtualPath, currentFileName);
@@ -325,27 +330,19 @@ update these file paths accordingly.
],
];
- io.ProcessResult? result;
- while (retryCount > 0) {
+ await retryOptions.retry(() async {
log.info('Executing: ${args.join(' ')}\n');
- result = await processManager.run(args);
+ final io.ProcessResult result = await processManager.run(args);
if (result.exitCode == 0) {
return;
}
- log.severe(
+ throw CodesignException(
'Failed to codesign ${binaryFile.absolute.path} with args: ${args.join(' ')}\n'
'stdout:\n${(result.stdout as String).trim()}'
'stderr:\n${(result.stderr as String).trim()}',
);
-
- retryCount -= 1;
- await Future.delayed(Duration(seconds: sleepTime));
- sleepTime *= 2;
- }
- throw CodesignException('Failed to codesign ${binaryFile.absolute.path} with args: ${args.join(' ')}\n'
- 'stdout:\n${(result!.stdout as String).trim()}\n'
- 'stderr:\n${(result.stderr as String).trim()}');
+ });
}
/// Delete codesign metadata at ALL places inside engine binary.
@@ -395,7 +392,7 @@ update these file paths accordingly.
/// binaries are properly codesigned, and notarize the entire archive.
Future notarize(File file) async {
final Completer completer = Completer();
- final String uuid = uploadZipToNotary(file);
+ final String uuid = await uploadZipToNotary(file);
Future callback(Timer timer) async {
final bool notaryFinished = checkNotaryJobFinished(uuid);
@@ -461,57 +458,49 @@ update these file paths accordingly.
throw CodesignException('Notarization failed with: $status\n$combinedOutput');
}
- /// Upload artifact to Apple notary service.
- String uploadZipToNotary(File localFile, [int retryCount = 3, int sleepTime = 1]) {
- while (retryCount > 0) {
- final List args = [
- 'xcrun',
- 'notarytool',
- 'submit',
- localFile.absolute.path,
- '--apple-id',
- codesignAppstoreId,
- '--password',
- appSpecificPassword,
- '--team-id',
- codesignTeamId,
- '--verbose',
- ];
-
- String argsWithoutCredentials = args.join(' ');
- for (var key in redactedCredentials.keys) {
- argsWithoutCredentials = argsWithoutCredentials.replaceAll(key, redactedCredentials[key]!);
- }
- log.info('uploading to notary: $argsWithoutCredentials');
- final io.ProcessResult result = processManager.runSync(args);
- if (result.exitCode != 0) {
- throw CodesignException(
- 'Command "$argsWithoutCredentials" failed with exit code ${result.exitCode}\nStdout: ${result.stdout}\nStderr: ${result.stderr}',
- );
- }
-
- final String combinedOutput = (result.stdout as String) + (result.stderr as String);
- final RegExpMatch? match;
- match = _notarytoolRequestPattern.firstMatch(combinedOutput);
-
- if (match == null) {
- log.warning('Failed to upload to the notary service with args: $argsWithoutCredentials');
- log.warning('{combinedOutput.trim()}');
- retryCount -= 1;
- log.warning('Trying again $retryCount more time${retryCount > 1 ? 's' : ''}...');
- io.sleep(Duration(seconds: sleepTime));
- continue;
- }
-
- final String requestUuid = match.group(1)!;
- log.info('RequestUUID for ${localFile.path} is: $requestUuid');
-
- return requestUuid;
- }
- log.warning('The upload to notary service failed after retries, and'
- ' the output format does not match the current notary tool version.'
- ' If after inspecting the output, you believe the process finished '
- 'successfully but was not detected, please contact flutter release engineers');
- throw CodesignException('Failed to upload ${localFile.path} to the notary service');
+ /// Upload artifact to Apple notary service and return the tracking request UUID.
+ Future uploadZipToNotary(File localFile) {
+ return retryOptions.retry(
+ () async {
+ final List args = [
+ 'xcrun',
+ 'notarytool',
+ 'submit',
+ localFile.absolute.path,
+ '--apple-id',
+ codesignAppstoreId,
+ '--password',
+ appSpecificPassword,
+ '--team-id',
+ codesignTeamId,
+ '--verbose',
+ ];
+
+ String argsWithoutCredentials = args.join(' ');
+ for (var key in redactedCredentials.keys) {
+ argsWithoutCredentials = argsWithoutCredentials.replaceAll(key, redactedCredentials[key]!);
+ }
+ log.info('uploading to notary: $argsWithoutCredentials');
+ final io.ProcessResult result = processManager.runSync(args);
+ if (result.exitCode != 0) {
+ throw CodesignException(
+ 'Command "$argsWithoutCredentials" failed with exit code ${result.exitCode}\nStdout: ${result.stdout}\nStderr: ${result.stderr}',
+ );
+ }
+
+ final String combinedOutput = (result.stdout as String) + (result.stderr as String);
+ final RegExpMatch? match = _notarytoolRequestPattern.firstMatch(combinedOutput);
+
+ if (match == null) {
+ log.warning('Failed to upload to the notary service');
+ log.warning('$argsWithoutCredentials\n$combinedOutput');
+ throw CodesignException('Failed to upload to the notary service\n$combinedOutput');
+ }
+
+ final String requestUuid = match.group(1)!;
+ log.info('RequestUUID for ${localFile.path} is: $requestUuid');
+ return requestUuid;
+ },
+ );
}
}
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index 5bc1f890f..e06f4068d 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -20,3 +20,4 @@ dependencies:
meta: 1.11.0
platform: 3.1.3
process: 5.0.2
+ retry: 3.1.2
diff --git a/cipd_packages/codesign/test/file_codesign_visitor_test.dart b/cipd_packages/codesign/test/file_codesign_visitor_test.dart
index a8dbe5a57..53a2ee5fa 100644
--- a/cipd_packages/codesign/test/file_codesign_visitor_test.dart
+++ b/cipd_packages/codesign/test/file_codesign_visitor_test.dart
@@ -10,6 +10,7 @@ import 'package:codesign/src/utils.dart';
import 'package:file/file.dart';
import 'package:file/memory.dart';
import 'package:logging/logging.dart';
+import 'package:retry/retry.dart';
import 'package:test/test.dart';
import './src/fake_process_manager.dart';
@@ -52,8 +53,9 @@ void main() {
rootDirectory: rootDirectory,
inputZipPath: inputZipPath,
outputZipPath: outputZipPath,
- notarizationTimerDuration: const Duration(seconds: 0),
+ notarizationTimerDuration: Duration.zero,
dryrun: false,
+ retryOptions: const RetryOptions(maxAttempts: 0),
);
codesignVisitor.directoriesVisited.clear();
});
@@ -108,10 +110,11 @@ void main() {
codesignTeamIDFilePath: codesignTeamIDFilePath,
processManager: processManager,
rootDirectory: rootDirectory,
- notarizationTimerDuration: const Duration(seconds: 0),
+ notarizationTimerDuration: Duration.zero,
dryrun: false,
inputZipPath: inputZipPath,
outputZipPath: outputZipPath,
+ retryOptions: const RetryOptions(maxAttempts: 0),
);
codesignVisitor.directoriesVisited.clear();
codesignVisitor.appSpecificPassword = fakePassword;
@@ -240,6 +243,7 @@ void main() {
inputZipPath: inputZipPath,
outputZipPath: outputZipPath,
notarizationTimerDuration: Duration.zero,
+ retryOptions: const RetryOptions(maxAttempts: 3, delayFactor: Duration.zero),
);
codesignVisitor.directoriesVisited.clear();
codesignVisitor.appSpecificPassword = randomString;
@@ -569,7 +573,8 @@ void main() {
inputZipPath: inputZipPath,
outputZipPath: outputZipPath,
dryrun: false,
- notarizationTimerDuration: const Duration(seconds: 0),
+ notarizationTimerDuration: Duration.zero,
+ retryOptions: const RetryOptions(maxAttempts: 0),
);
codesignVisitor.appSpecificPassword = randomString;
codesignVisitor.codesignAppstoreId = randomString;
@@ -658,6 +663,7 @@ void main() {
codesignTeamIDFilePath: codesignTeamIDFilePath,
processManager: processManager,
rootDirectory: rootDirectory,
+ retryOptions: const RetryOptions(maxAttempts: 0),
);
codesignVisitor.directoriesVisited.clear();
codesignVisitor.appSpecificPassword = randomString;
@@ -765,6 +771,7 @@ file_c''',
codesignTeamIDFilePath: codesignTeamIDFilePath,
processManager: processManager,
rootDirectory: rootDirectory,
+ retryOptions: const RetryOptions(maxAttempts: 3, delayFactor: Duration.zero),
);
codesignVisitor.directoriesVisited.clear();
codesignVisitor.appSpecificPassword = fakePassword;
@@ -928,14 +935,13 @@ status: Invalid''',
],
stdout: '''Successfully uploaded file.
id: 2efe2717-52ef-43a5-96dc-0797e4ca1041
+ RequestUUID: 2EFE2717-52EF-43A5-96DC-0797E4CA1041
path: /Users/flutter/Desktop/OvernightTextEditor_11.6.8.zip''',
),
]);
- final String uuid = codesignVisitor.uploadZipToNotary(
+ final String uuid = await codesignVisitor.uploadZipToNotary(
fileSystem.file('${rootDirectory.absolute.path}/temp'),
- 3,
- 0,
);
expect(uuid, '2efe2717-52ef-43a5-96dc-0797e4ca1041');
final List messages = records
@@ -944,46 +950,38 @@ status: Invalid''',
.toList();
expect(
messages,
- contains('Failed to upload to the notary service with args: '
- 'xcrun notarytool submit ${rootDirectory.absolute.path}/temp '
- '--apple-id --password --team-id '
- '--verbose'),
- );
- expect(
- messages,
- contains('Trying again 2 more times...'),
+ contains('Failed to upload to the notary service'),
);
});
test('upload notary throws exception if exit code is unnormal', () async {
fileSystem.file('${rootDirectory.absolute.path}/temp').createSync();
- processManager.addCommands([
- FakeCommand(
- command: [
- 'xcrun',
- 'notarytool',
- 'submit',
- '${rootDirectory.absolute.path}/temp',
- '--apple-id',
- fakeAppleID,
- '--password',
- fakePassword,
- '--team-id',
- fakeTeamID,
- '--verbose',
- ],
- stdout: '''Error uploading file.
+ for (int i = 0; i < 3; i++) {
+ processManager.addCommands([
+ FakeCommand(
+ command: [
+ 'xcrun',
+ 'notarytool',
+ 'submit',
+ '${rootDirectory.absolute.path}/temp',
+ '--apple-id',
+ fakeAppleID,
+ '--password',
+ fakePassword,
+ '--team-id',
+ fakeTeamID,
+ '--verbose',
+ ],
+ stdout: '''Error uploading file.
Id: something that causes failure
path: /Users/flutter/Desktop/OvernightTextEditor_11.6.8.zip''',
- exitCode: -1,
- ),
- ]);
-
+ exitCode: 1,
+ ),
+ ]);
+ }
expect(
- () => codesignVisitor.uploadZipToNotary(
+ () async => codesignVisitor.uploadZipToNotary(
fileSystem.file('${rootDirectory.absolute.path}/temp'),
- 1,
- 0,
),
throwsA(
isA(),
@@ -1053,23 +1051,15 @@ status: Invalid''',
expect(
() => codesignVisitor.uploadZipToNotary(
fileSystem.file('${rootDirectory.absolute.path}/temp'),
- 3,
- 0,
),
throwsA(
isA(),
),
);
- final List messages = records
- .where((LogRecord record) => record.level == Level.WARNING)
- .map((LogRecord record) => record.message)
- .toList();
+ final List messages = records.map((LogRecord record) => record.message).toList();
expect(
messages,
- contains('The upload to notary service failed after retries, and'
- ' the output format does not match the current notary tool version.'
- ' If after inspecting the output, you believe the process finished '
- 'successfully but was not detected, please contact flutter release engineers'),
+ contains('Failed to upload to the notary service'),
);
});
});
@@ -1086,7 +1076,8 @@ status: Invalid''',
codesignTeamIDFilePath: codesignTeamIDFilePath,
processManager: processManager,
rootDirectory: rootDirectory,
- notarizationTimerDuration: const Duration(seconds: 0),
+ notarizationTimerDuration: Duration.zero,
+ retryOptions: const RetryOptions(maxAttempts: 0),
);
codesignVisitor.directoriesVisited.clear();
codesignVisitor.appSpecificPassword = fakePassword;
@@ -1237,7 +1228,8 @@ status: Invalid''',
codesignTeamIDFilePath: codesignTeamIDFilePath,
processManager: processManager,
rootDirectory: rootDirectory,
- notarizationTimerDuration: const Duration(seconds: 0),
+ notarizationTimerDuration: Duration.zero,
+ retryOptions: const RetryOptions(maxAttempts: 0),
dryrun: false,
);
codesignVisitor.appSpecificPassword = fakePassword;
From 68b7b1eb67827ea4414d87b8313d7c75bdde2dc0 Mon Sep 17 00:00:00 2001
From: Casey Hillers
Date: Thu, 4 Jan 2024 19:39:12 -0800
Subject: [PATCH 13/16] Reduce dependabot updates to weekly in off peak hours
(#3399)
* Add staggered intervals
* Reduce merge conflicts on Cocoon PRs
* Save some capacity
---
.github/dependabot.yml | 52 +++++++++++++++++++++++++++++++-----------
1 file changed, 39 insertions(+), 13 deletions(-)
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 93801197e..5c28220dd 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -8,76 +8,100 @@ updates:
- package-ecosystem: "github-actions"
directory: "/"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:00" # 12 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
# Pub ecosystem.
- package-ecosystem: "pub"
directory: "/analyze"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:00" # 12 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/app_dart"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:00" # 12 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/auto_submit"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:30" # 12:30 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/cipd_packages/codesign"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:30" # 12:30 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/dashboard"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "00:30" # 12:30 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/cipd_packages/device_doctor"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "01:00" # 1 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/test_utilities"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "01:00" # 1 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "pub"
directory: "/licenses"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "01:00" # 1 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
# Docker ecosystem.
- package-ecosystem: "docker"
directory: "/app_dart"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "02:00" # 2 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
- package-ecosystem: "docker"
directory: "/auto_submit"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "02:00" # 2 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
# Go ecosystem.
- package-ecosystem: "gomod"
directory: "/tooling"
schedule:
- interval: "daily"
+ interval: "weekly"
+ time: "02:00" # 2 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
allow:
@@ -86,6 +110,8 @@ updates:
- package-ecosystem: 'npm'
directory: '/gh_actions/third_party/no-response'
schedule:
- interval: 'daily'
+ interval: "weekly"
+ time: "02:00" # 2 AM MTV
+ timezone: "America/Los_Angeles"
labels:
- "autosubmit"
From 80bb89ed4e8fe96ce231cb4b6ac19943d186b57c Mon Sep 17 00:00:00 2001
From: keyonghan <54558023+keyonghan@users.noreply.github.com>
Date: Fri, 5 Jan 2024 13:49:33 -0800
Subject: [PATCH 14/16] Skip priority bump for already bringup true target in
Flake Bot (#3400)
Fixes: https://github.com/flutter/flutter/issues/140886
---
.../update_existing_flaky_issues.dart | 7 +++++++
.../update_existing_flaky_issues_test.dart | 13 +++++--------
2 files changed, 12 insertions(+), 8 deletions(-)
diff --git a/app_dart/lib/src/request_handlers/update_existing_flaky_issues.dart b/app_dart/lib/src/request_handlers/update_existing_flaky_issues.dart
index d1f2b58e3..e581e4655 100644
--- a/app_dart/lib/src/request_handlers/update_existing_flaky_issues.dart
+++ b/app_dart/lib/src/request_handlers/update_existing_flaky_issues.dart
@@ -87,6 +87,7 @@ class UpdateExistingFlakyIssue extends ApiRequestHandler {
GithubService gitHub,
RepositorySlug slug, {
required Bucket bucket,
+ required bool bringup,
required BuilderStatistic statistic,
required Issue existingIssue,
required CiYaml ciYaml,
@@ -97,6 +98,10 @@ class UpdateExistingFlakyIssue extends ApiRequestHandler {
final IssueUpdateBuilder updateBuilder =
IssueUpdateBuilder(statistic: statistic, threshold: _threshold, existingIssue: existingIssue, bucket: bucket);
await gitHub.createComment(slug, issueNumber: existingIssue.number, body: updateBuilder.issueUpdateComment);
+ // No need to bump priority and reassign if this is already marked as `bringup: true`.
+ if (bringup) {
+ return;
+ }
await gitHub.replaceLabelsForIssue(slug, issueNumber: existingIssue.number, labels: updateBuilder.issueLabels);
if (existingIssue.assignee == null && !updateBuilder.isBelow) {
final String testOwnerContent = await gitHub.getFileContent(
@@ -150,6 +155,7 @@ class UpdateExistingFlakyIssue extends ApiRequestHandler {
gitHub,
slug,
bucket: Bucket.prod,
+ bringup: builderFlakyMap[statistic.name]!,
statistic: statistic,
existingIssue: nameToExistingIssue[statistic.name]!,
ciYaml: ciYaml,
@@ -166,6 +172,7 @@ class UpdateExistingFlakyIssue extends ApiRequestHandler {
gitHub,
slug,
bucket: Bucket.staging,
+ bringup: builderFlakyMap[statistic.name]!,
statistic: statistic,
existingIssue: nameToExistingIssue[statistic.name]!,
ciYaml: ciYaml,
diff --git a/app_dart/test/request_handlers/update_existing_flaky_issues_test.dart b/app_dart/test/request_handlers/update_existing_flaky_issues_test.dart
index 698ec38ae..77c8d2ddb 100644
--- a/app_dart/test/request_handlers/update_existing_flaky_issues_test.dart
+++ b/app_dart/test/request_handlers/update_existing_flaky_issues_test.dart
@@ -271,7 +271,8 @@ void main() {
.single as Map;
// Verify comment is created correctly.
- List captured = verify(mockIssuesService.createComment(captureAny, captureAny, captureAny)).captured;
+ final List captured =
+ verify(mockIssuesService.createComment(captureAny, captureAny, captureAny)).captured;
expect(captured.length, 6);
expect(captured[0].toString(), Config.flutterSlug.toString());
expect(captured[1], existingIssueNumber);
@@ -280,18 +281,14 @@ void main() {
expect(captured[4], existingIssueNumber);
expect(captured[5], expectedStagingCiyamlTestIssueComment);
- // Verify labels are applied correctly.
- captured = verify(
+ // Verify no labels are applied for already `bringup: true` target.
+ verifyNever(
mockGitHubClient.request(
captureAny,
captureAny,
body: captureAnyNamed('body'),
),
- ).captured;
- expect(captured.length, 6);
- expect(captured[0].toString(), 'PUT');
- expect(captured[1], '/repos/${Config.flutterSlug.fullName}/issues/$existingIssueNumber/labels');
- expect(captured[2], GitHubJson.encode(['some random label', 'P0']));
+ );
expect(result['Status'], 'success');
});
From 5a0008f9a747e6476be5fb99245dcd733b7bb053 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jan 2024 10:29:54 +0000
Subject: [PATCH 15/16] Bump @types/node from 20.10.6 to 20.10.7 in
/gh_actions/third_party/no-response (#3402)
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.10.6 to 20.10.7.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.../third_party/no-response/package-lock.json | 14 +++++++-------
gh_actions/third_party/no-response/package.json | 2 +-
2 files changed, 8 insertions(+), 8 deletions(-)
diff --git a/gh_actions/third_party/no-response/package-lock.json b/gh_actions/third_party/no-response/package-lock.json
index b17a9b244..02d74b7e4 100644
--- a/gh_actions/third_party/no-response/package-lock.json
+++ b/gh_actions/third_party/no-response/package-lock.json
@@ -17,7 +17,7 @@
"devDependencies": {
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
- "@types/node": "^20.10.6",
+ "@types/node": "^20.10.7",
"@typescript-eslint/parser": "^6.17.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
@@ -1554,9 +1554,9 @@
"dev": true
},
"node_modules/@types/node": {
- "version": "20.10.6",
- "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.6.tgz",
- "integrity": "sha512-Vac8H+NlRNNlAmDfGUP7b5h/KA+AtWIzuXy0E6OyP8f1tCLYAtPvKRRDJjAPqhpCb0t6U2j7/xqAuLEebW2kiw==",
+ "version": "20.10.7",
+ "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.7.tgz",
+ "integrity": "sha512-fRbIKb8C/Y2lXxB5eVMj4IU7xpdox0Lh8bUPEdtLysaylsml1hOOx1+STloRs/B9nf7C6kPRmmg/V7aQW7usNg==",
"dev": true,
"dependencies": {
"undici-types": "~5.26.4"
@@ -8530,9 +8530,9 @@
"dev": true
},
"@types/node": {
- "version": "20.10.6",
- "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.6.tgz",
- "integrity": "sha512-Vac8H+NlRNNlAmDfGUP7b5h/KA+AtWIzuXy0E6OyP8f1tCLYAtPvKRRDJjAPqhpCb0t6U2j7/xqAuLEebW2kiw==",
+ "version": "20.10.7",
+ "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.7.tgz",
+ "integrity": "sha512-fRbIKb8C/Y2lXxB5eVMj4IU7xpdox0Lh8bUPEdtLysaylsml1hOOx1+STloRs/B9nf7C6kPRmmg/V7aQW7usNg==",
"dev": true,
"requires": {
"undici-types": "~5.26.4"
diff --git a/gh_actions/third_party/no-response/package.json b/gh_actions/third_party/no-response/package.json
index 298f03dd4..7bc925fbd 100644
--- a/gh_actions/third_party/no-response/package.json
+++ b/gh_actions/third_party/no-response/package.json
@@ -33,7 +33,7 @@
"devDependencies": {
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
- "@types/node": "^20.10.6",
+ "@types/node": "^20.10.7",
"@typescript-eslint/parser": "^6.17.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
From dc215731cea4dbea3f6f6e476f56ea26e686aabb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jan 2024 10:31:27 +0000
Subject: [PATCH 16/16] Bump @typescript-eslint/parser from 6.17.0 to 6.18.0 in
/gh_actions/third_party/no-response (#3401)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
â ï¸ **Dependabot is rebasing this PR** â ï¸
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
---
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 6.17.0 to 6.18.0.
Release notes
Sourced from @âtypescript-eslint/parser's releases.
v6.18.0
6.18.0 (2024-01-06)
ð Features
- eslint-plugin: [no-var-requires, no-require-imports] allow option (#7710)
- typescript-estree: throw on invalid update expressions (#7202)
- typescript-estree: throw error when CatchClause param contains initializer (#8183)
â¤ï¸ Thank You
You can read about our versioning strategy and releases on our website.
Changelog
Sourced from @âtypescript-eslint/parser's changelog.
6.18.0 (2024-01-06)
This was a version bump only for parser to align it with other projects, there were no code changes.
You can read about our versioning strategy and releases on our website.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.../third_party/no-response/package-lock.json | 98 +++++++++----------
.../third_party/no-response/package.json | 2 +-
2 files changed, 50 insertions(+), 50 deletions(-)
diff --git a/gh_actions/third_party/no-response/package-lock.json b/gh_actions/third_party/no-response/package-lock.json
index 02d74b7e4..10b1905e2 100644
--- a/gh_actions/third_party/no-response/package-lock.json
+++ b/gh_actions/third_party/no-response/package-lock.json
@@ -18,7 +18,7 @@
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
"@types/node": "^20.10.7",
- "@typescript-eslint/parser": "^6.17.0",
+ "@typescript-eslint/parser": "^6.18.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
"eslint-plugin-github": "^4.10.1",
@@ -1640,15 +1640,15 @@
}
},
"node_modules/@typescript-eslint/parser": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-6.17.0.tgz",
- "integrity": "sha512-C4bBaX2orvhK+LlwrY8oWGmSl4WolCfYm513gEccdWZj0CwGadbIADb0FtVEcI+WzUyjyoBj2JRP8g25E6IB8A==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-6.18.0.tgz",
+ "integrity": "sha512-v6uR68SFvqhNQT41frCMCQpsP+5vySy6IdgjlzUWoo7ALCnpaWYcz/Ij2k4L8cEsL0wkvOviCMpjmtRtHNOKzA==",
"dev": true,
"dependencies": {
- "@typescript-eslint/scope-manager": "6.17.0",
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/typescript-estree": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0",
+ "@typescript-eslint/scope-manager": "6.18.0",
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/typescript-estree": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0",
"debug": "^4.3.4"
},
"engines": {
@@ -1668,13 +1668,13 @@
}
},
"node_modules/@typescript-eslint/parser/node_modules/@typescript-eslint/scope-manager": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-6.17.0.tgz",
- "integrity": "sha512-RX7a8lwgOi7am0k17NUO0+ZmMOX4PpjLtLRgLmT1d3lBYdWH4ssBUbwdmc5pdRX8rXon8v9x8vaoOSpkHfcXGA==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-6.18.0.tgz",
+ "integrity": "sha512-o/UoDT2NgOJ2VfHpfr+KBY2ErWvCySNUIX/X7O9g8Zzt/tXdpfEU43qbNk8LVuWUT2E0ptzTWXh79i74PP0twA==",
"dev": true,
"dependencies": {
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0"
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0"
},
"engines": {
"node": "^16.0.0 || >=18.0.0"
@@ -1685,9 +1685,9 @@
}
},
"node_modules/@typescript-eslint/parser/node_modules/@typescript-eslint/types": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-6.17.0.tgz",
- "integrity": "sha512-qRKs9tvc3a4RBcL/9PXtKSehI/q8wuU9xYJxe97WFxnzH8NWWtcW3ffNS+EWg8uPvIerhjsEZ+rHtDqOCiH57A==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-6.18.0.tgz",
+ "integrity": "sha512-/RFVIccwkwSdW/1zeMx3hADShWbgBxBnV/qSrex6607isYjj05t36P6LyONgqdUrNLl5TYU8NIKdHUYpFvExkA==",
"dev": true,
"engines": {
"node": "^16.0.0 || >=18.0.0"
@@ -1698,13 +1698,13 @@
}
},
"node_modules/@typescript-eslint/parser/node_modules/@typescript-eslint/typescript-estree": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-6.17.0.tgz",
- "integrity": "sha512-gVQe+SLdNPfjlJn5VNGhlOhrXz4cajwFd5kAgWtZ9dCZf4XJf8xmgCTLIqec7aha3JwgLI2CK6GY1043FRxZwg==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-6.18.0.tgz",
+ "integrity": "sha512-klNvl+Ql4NsBNGB4W9TZ2Od03lm7aGvTbs0wYaFYsplVPhr+oeXjlPZCDI4U9jgJIDK38W1FKhacCFzCC+nbIg==",
"dev": true,
"dependencies": {
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0",
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0",
"debug": "^4.3.4",
"globby": "^11.1.0",
"is-glob": "^4.0.3",
@@ -1726,12 +1726,12 @@
}
},
"node_modules/@typescript-eslint/parser/node_modules/@typescript-eslint/visitor-keys": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-6.17.0.tgz",
- "integrity": "sha512-H6VwB/k3IuIeQOyYczyyKN8wH6ed8EwliaYHLxOIhyF0dYEIsN8+Bk3GE19qafeMKyZJJHP8+O1HiFhFLUNKSg==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-6.18.0.tgz",
+ "integrity": "sha512-1wetAlSZpewRDb2h9p/Q8kRjdGuqdTAQbkJIOUMLug2LBLG+QOjiWoSj6/3B/hA9/tVTFFdtiKvAYoYnSRW/RA==",
"dev": true,
"dependencies": {
- "@typescript-eslint/types": "6.17.0",
+ "@typescript-eslint/types": "6.18.0",
"eslint-visitor-keys": "^3.4.1"
},
"engines": {
@@ -8596,42 +8596,42 @@
}
},
"@typescript-eslint/parser": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-6.17.0.tgz",
- "integrity": "sha512-C4bBaX2orvhK+LlwrY8oWGmSl4WolCfYm513gEccdWZj0CwGadbIADb0FtVEcI+WzUyjyoBj2JRP8g25E6IB8A==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-6.18.0.tgz",
+ "integrity": "sha512-v6uR68SFvqhNQT41frCMCQpsP+5vySy6IdgjlzUWoo7ALCnpaWYcz/Ij2k4L8cEsL0wkvOviCMpjmtRtHNOKzA==",
"dev": true,
"requires": {
- "@typescript-eslint/scope-manager": "6.17.0",
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/typescript-estree": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0",
+ "@typescript-eslint/scope-manager": "6.18.0",
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/typescript-estree": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0",
"debug": "^4.3.4"
},
"dependencies": {
"@typescript-eslint/scope-manager": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-6.17.0.tgz",
- "integrity": "sha512-RX7a8lwgOi7am0k17NUO0+ZmMOX4PpjLtLRgLmT1d3lBYdWH4ssBUbwdmc5pdRX8rXon8v9x8vaoOSpkHfcXGA==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-6.18.0.tgz",
+ "integrity": "sha512-o/UoDT2NgOJ2VfHpfr+KBY2ErWvCySNUIX/X7O9g8Zzt/tXdpfEU43qbNk8LVuWUT2E0ptzTWXh79i74PP0twA==",
"dev": true,
"requires": {
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0"
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0"
}
},
"@typescript-eslint/types": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-6.17.0.tgz",
- "integrity": "sha512-qRKs9tvc3a4RBcL/9PXtKSehI/q8wuU9xYJxe97WFxnzH8NWWtcW3ffNS+EWg8uPvIerhjsEZ+rHtDqOCiH57A==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-6.18.0.tgz",
+ "integrity": "sha512-/RFVIccwkwSdW/1zeMx3hADShWbgBxBnV/qSrex6607isYjj05t36P6LyONgqdUrNLl5TYU8NIKdHUYpFvExkA==",
"dev": true
},
"@typescript-eslint/typescript-estree": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-6.17.0.tgz",
- "integrity": "sha512-gVQe+SLdNPfjlJn5VNGhlOhrXz4cajwFd5kAgWtZ9dCZf4XJf8xmgCTLIqec7aha3JwgLI2CK6GY1043FRxZwg==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-6.18.0.tgz",
+ "integrity": "sha512-klNvl+Ql4NsBNGB4W9TZ2Od03lm7aGvTbs0wYaFYsplVPhr+oeXjlPZCDI4U9jgJIDK38W1FKhacCFzCC+nbIg==",
"dev": true,
"requires": {
- "@typescript-eslint/types": "6.17.0",
- "@typescript-eslint/visitor-keys": "6.17.0",
+ "@typescript-eslint/types": "6.18.0",
+ "@typescript-eslint/visitor-keys": "6.18.0",
"debug": "^4.3.4",
"globby": "^11.1.0",
"is-glob": "^4.0.3",
@@ -8641,12 +8641,12 @@
}
},
"@typescript-eslint/visitor-keys": {
- "version": "6.17.0",
- "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-6.17.0.tgz",
- "integrity": "sha512-H6VwB/k3IuIeQOyYczyyKN8wH6ed8EwliaYHLxOIhyF0dYEIsN8+Bk3GE19qafeMKyZJJHP8+O1HiFhFLUNKSg==",
+ "version": "6.18.0",
+ "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-6.18.0.tgz",
+ "integrity": "sha512-1wetAlSZpewRDb2h9p/Q8kRjdGuqdTAQbkJIOUMLug2LBLG+QOjiWoSj6/3B/hA9/tVTFFdtiKvAYoYnSRW/RA==",
"dev": true,
"requires": {
- "@typescript-eslint/types": "6.17.0",
+ "@typescript-eslint/types": "6.18.0",
"eslint-visitor-keys": "^3.4.1"
}
},
diff --git a/gh_actions/third_party/no-response/package.json b/gh_actions/third_party/no-response/package.json
index 7bc925fbd..6df5c12fa 100644
--- a/gh_actions/third_party/no-response/package.json
+++ b/gh_actions/third_party/no-response/package.json
@@ -34,7 +34,7 @@
"@octokit/webhooks-types": "^7.3.1",
"@types/jest": "^29.5.11",
"@types/node": "^20.10.7",
- "@typescript-eslint/parser": "^6.17.0",
+ "@typescript-eslint/parser": "^6.18.0",
"@vercel/ncc": "^0.38.1",
"eslint": "^8.56.0",
"eslint-plugin-github": "^4.10.1",