Skip to content
Blog

build(deps): bump requests from 2.32.5 to 2.33.0 #425

Sign in to view logs

build(deps): bump requests from 2.32.5 to 2.33.0

build(deps): bump requests from 2.32.5 to 2.33.0 #425

Workflow file for this run

.github/workflows/main.yml at 92a118b
---
name: "Blog"
on:
push:
branches:
- main
- ci-testing*
pull_request:
branches:
- main
- ci-testing*
jobs:
build:
permissions:
contents: read
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- name: Install just
uses: extractions/setup-just@f8a3cce218d9f83db3a2ecd90e41ac3de6cdfd9b # v3.1.0
- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
- uses: jdx/mise-action@5228313ee0372e111a38da051671ca30fc5a96db # v3.6.3
- name: Install dependencies
run: just setup-gha
- name: Assert that our dependencies are reachable
run: |
uv run python --version
uv run pelican --version
sass --version
- name: Build the page
run: |
just generate
- name: Upload build artifact
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: site-build
path: output/
retention-days: 1
verify:
needs: build
runs-on: ubuntu-latest
permissions:
contents: read
strategy:
matrix:
check:
- check-links
- check-html
- check-code
- check-content
- check-feeds
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- name: Install just
uses: extractions/setup-just@f8a3cce218d9f83db3a2ecd90e41ac3de6cdfd9b # v3.1.0
- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
- uses: jdx/mise-action@5228313ee0372e111a38da051671ca30fc5a96db # v3.6.3
- name: Install dependencies
run: just setup-gha
- name: Download build artifact
uses: actions/download-artifact@70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3 # v8.0.0
with:
name: site-build
path: output/
- name: Run verification checks
run: just ${{ matrix.check }}
deploy:
# I am not blocking this on verify because I want the ability to publish
# quick trash.
needs: build
# only run this when the action is push and the destination branch is main
if: github.event_name == 'push' && github.ref_name == 'main'
permissions:
id-token: write
contents: read
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
sparse-checkout: |
justfile
pyproject.toml
uv.lock
package.json
package-lock.json
sparse-checkout-cone-mode: false
- name: Install just
uses: extractions/setup-just@f8a3cce218d9f83db3a2ecd90e41ac3de6cdfd9b # v3.1.0
- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
- name: Install dependencies
run: just setup-gha
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@8df5847569e6427dd6c4fb1cf565c83acfa8afa7 # v6.0.0
with:
aws-region: us-west-2
role-to-assume: arn:aws:iam::984616268605:role/ideas-deployer
role-session-name: deploy-ideas
mask-aws-account-id: false
- name: Download build artifact
uses: actions/download-artifact@70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3 # v8.0.0
with:
name: site-build
path: output/
- name: Publish the content
run: |
just upload
- name: Invalidate the existing distribution
run: |
just invalidate
- name: Tell me about it
if: ${{ always() }}
uses: umahmood/pushover-actions@5da31193f672e7418804bdb51836bdf20f393c8f # v1.1.0
env:
PUSHOVER_TOKEN: ${{ secrets.PUSHOVER_API_TOKEN }}
PUSHOVER_USER: ${{ secrets.PUSHOVER_USER_KEY }}
with:
status: ${{ job.status }}
title: offby1.website update
message: |-
Site publication for offby1.website completed with status=${{ job.status }}
url: https://offby1.website/