Skip to content

Fix CI workflow to detect package.json changes for Dependabot PRs#3572

Merged
tvdeyen merged 5 commits intomainfrom
fix-ci-dependabot-js-updates
Jan 20, 2026
Merged

Fix CI workflow to detect package.json changes for Dependabot PRs#3572
tvdeyen merged 5 commits intomainfrom
fix-ci-dependabot-js-updates

Conversation

@tvdeyen
Copy link
Member

@tvdeyen tvdeyen commented Jan 20, 2026

What is this pull request for?

The workflow was checking if bun.lockdb changed, but Dependabot only updates package.json. Now checks for package.json changes and commits both the updated bun.lockdb and vendor/javascript bundles.

Checklist

@tvdeyen
Fix CI workflow to detect package.json changes for Dependabot PRs
686ac63 
The workflow was checking if bun.lockdb changed, but Dependabot only
updates package.json. Now checks for package.json changes and commits
both the updated bun.lockdb and vendor/javascript bundles.
@codecov
Copy link

codecov bot commented Jan 20, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 97.37%. Comparing base (87fc9cc) to head (c62b5db).
⚠️ Report is 6 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #3572   +/-   ##
=======================================
  Coverage   97.37%   97.37%           
=======================================
  Files         312      312           
  Lines        8087     8087           
=======================================
  Hits         7875     7875           
  Misses        212      212

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@tvdeyen
Remove unnecessary bun install from check_package_json job
35a1696 
The job only needs git to check changed files, no need to install
Bun or run bun install.
@tvdeyen
Fix git diff to work on both push and PR events
9bf4f45 
Use github.event.pull_request.base.sha for PRs and
github.event.before for push events.
@tvdeyen
Add package.json to node_modules cache key
6b74c30 
Ensures cache invalidates when package.json changes, even if
bun.lockdb hasn't been committed yet (e.g., Dependabot PRs).
@tvdeyen
Fix Vitest to use updated dependencies when package.json changes
c62b5db 
- Add dependency on check_package_json and build_javascript jobs
- Download bun.lockdb artifact when package.json changed
- Add package.json to cache key
@tvdeyen
Copy link
Member Author

tvdeyen commented Jan 20, 2026

tested with #3571

@tvdeyen tvdeyen marked this pull request as ready for review January 20, 2026 15:24
@tvdeyen tvdeyen requested a review from a team as a code owner January 20, 2026 15:24
@tvdeyen tvdeyen merged commit 315bb7e into main Jan 20, 2026
19 checks passed
@tvdeyen tvdeyen deleted the fix-ci-dependabot-js-updates branch January 20, 2026 15:24
This was referenced Feb 4, 2026
Closed
Closed
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tvdeyen