IBX-11778: [GHA] Updated GitHub Actions in workflows#230
Merged
Conversation
alongosz
force-pushed
the
ibx-11778-update-gha
branch
3 times, most recently
from
June 19, 2026 14:36
ec339ea to
baddd8a
Compare
alongosz
marked this pull request as ready for review
June 19, 2026 15:31
5 tasks
Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Co-Authored-By: Codex <codex@openai.com>
Co-Authored-By: Codex <codex@openai.com>
Co-Authored-By: Codex <codex@openai.com>
alongosz
force-pushed
the
ibx-11778-update-gha
branch
from
July 15, 2026 17:21
f0ffbc3 to
746b598
Compare
The selenium.yml compose file was only needed because it injects EZP_TEST_REST_HOST=$WEB_HOST into the app container, pointing the functional tests at the nginx "web" service instead of the default localhost. Passing the variable explicitly on docker compose exec makes the whole Selenium container redundant. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
…flags `@dev` is only a stability flag: `~4.6.0@dev` still matches any tagged 4.6.* release, so the solver may resolve to old stable versions with different dependency sets. An explicit `~4.6.x-dev` branch-alias constraint is more predictable. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
ibexa/ci-scripts is a standalone project; CI workflows fetch its scripts directly from GitHub, so the Composer package was unused. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
alongosz
force-pushed
the
ibx-11778-update-gha
branch
from
July 15, 2026 17:50
746b598 to
648b362
Compare
…package Audit ignores were only ever configured on the workflow checkout, which becomes vendor/ibexa/rest solely when this callable runs in ibexa/rest itself. For external callers (e.g. ibexa/http-cache) the checkout is the caller's package and vendor/ibexa/rest comes pristine from the 4.6 branch, so its composer update hit Composer 2.10's advisory blocking on PHP 7.4 (unsolvable twig/guzzle advisories on EOL PHP). Applying the ignores inside vendor/ibexa/rest covers every caller and makes the runner-side audit ignores step redundant, hence it's dropped. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
alongosz
force-pushed
the
ibx-11778-update-gha
branch
from
July 15, 2026 19:04
71aa09a to
bc3001a
Compare
|
alongosz
requested review from
Steveb-p,
ViniTou,
barw4,
bnowak,
ciastektk,
konradoboza,
mikadamczyk and
tbialcz
July 16, 2026 07:42
konradoboza
approved these changes
Jul 16, 2026
wiewiurdp
approved these changes
Jul 16, 2026
Steveb-p
approved these changes
Jul 16, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.



Related PRs:
Description:
actions/cacheto v6actions/checkoutto v7Note
Node version bump here is not related to node version run by actions' runners, it's about node version used by Ibexa DXP instance and it aligns with ibexa/docker#60 drop of node 18 support.
ghcr.io/ibexa/docker/php:7.4-node20along with other supported images were rebuild to upgrade Composer version to2.10.1after security advisories patches and introducing support for the new GitHub token format.json_decodeusage issues detected by the newest version of PHPStan.selenium.ymlwas only needed because it injectedEZP_TEST_REST_HOST=$WEB_HOSTinto theappcontainer; that variable is now passed explicitly ondocker compose exec, so the Selenium container is no longer started at all.vendor/ibexa/restinside the container — the runner-side step only covered the workflow checkout, which is the caller's package when this callable runs from another repo (e.g. ibexa/http-cache), leavingvendor/ibexa/rest'scomposer updateblocked by Composer security advisories on PHP 7.4.~4.6.x-dev) instead of@devstability flags —~4.6.0@devalso matches any tagged 4.6.* release, so the solver could resolve to old stable versions with different dependency sets.ibexa/ci-scriptsdev dependency — it's a standalone project; CI workflows fetch its scripts directly from GitHub, so the package was unused.