Comments (9)
I've created a new issue to track this: #398, closing this issue.
Contributions are always welcome. If you'd like to work on this enhancement please see our contributor's guide, or ping me directly!
from dependency-review-action.
Any updates regarding this @jamime? We have the same (or at least a similar) issue with the action just failing with Server Error
and no more info when running with debugging.
For context: we are moving around a lot of packages internally in a monorepo using yarn workspaces.
The actions seems really flaky and occasionally passes. but most of the time i get this error.
from dependency-review-action.
@jamime @fbjaras are you able to use the Dependency Review API on the PRs where the Action fails? I'm guessing this is a server error, not something related to the Action, but it'd be good to have some confirmation before proceeding.
Yes this also fails. I guess i should raise a support ticket for this as well then!
Thank you!
from dependency-review-action.
I raised a support ticket for this with information on how to reproduce the issue. Looks like the API is returning a 502.
#1993524
from dependency-review-action.
@jamime @fbjaras are you able to use the Dependency Review API on the PRs where the Action fails? I'm guessing this is a server error, not something related to the Action, but it'd be good to have some confirmation before proceeding.
from dependency-review-action.
I started to get same issue for some reason. I did nothing. No new deps or something. Just started to get error.
from dependency-review-action.
@dzmitry-lahoda do you have a public repo where this behavior can be seen? Are you able to hit the API directly?
from dependency-review-action.
https://github.com/ComposableFi/composable/actions/runs/5568024051/jobs/10172706662
It was success on 5 or 6 retry.
Here is example debug enabled log
I think I saw issue when I deleted many files (like 100+, may be 1000). Like big diff fails deps bot.
from dependency-review-action.
@dzmitry-lahoda thanks for the extra details. I can see that the timeout is coming from the GitHub API and not the Action itself:
$ gh api -H "Accept: application/vnd.github+json" repos/ComposableFI/composable/dependency-graph/compare/main...4c50abd
{
"message": "Server Error"
}
gh: Server Error (HTTP 502)
from dependency-review-action.
Related Issues (20)
- Use with `scalacenter/sbt-dependency-submission` (Dependency Submission API) HOT 10
- Bug: Error "fetch failed" when fetching v3.1.1 HOT 20
- "Unknown License" reported for reusable workflow dependencies (likely API issue) HOT 2
- Error: Invalid purl: version must be percent-encoded HOT 5
- Unxpected behavior with "fail-on-severity" configuration option HOT 8
- Hide snapshot warning messages if not needed HOT 4
- Python `purl` URLs seem incorrect, some examples don't work HOT 7
- Mark previous PR comment as outdated HOT 4
- No clear Error 403 on submit depenedncy graph for public repo HOT 1
- retry-on-snapshot-warnings - not working as expected on separate snapshot/review workflows HOT 7
- Feature Request: Ensure GitHub Action Dependencies are Pinned HOT 1
- detected a "new" vulnerbility which was already in the project HOT 1
- deny-licenses mistakenly blocking LGPL-3.0 license
- Characterization of thosomes HOT 1
- Update previous comment when failure is resolved HOT 3
- 15WeKFs8FmJrAKHs5iMhS2Mb87LqkA43HE
- Dependency repo
- B
- Properly resolve licenses with "OR" expressions HOT 4
- Failure to determine license and flag to explicitly deny unknown licenses HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dependency-review-action.