Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the octokit group in /extensions/ql-vscode with 3 updates #3899

Merged
merged 1 commit into from
Feb 14, 2025
Merged

Bump the octokit group in /extensions/ql-vscode with 3 updates #3899

merged 1 commit into from
Feb 14, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 16, 2025
edited
Loading

Bumps the octokit group in /extensions/ql-vscode with 3 updates: @octokit/plugin-retry, @octokit/plugin-throttling and @octokit/rest.

Updates @octokit/plugin-retry from 7.1.2 to 7.1.3

Release notes

Sourced from @​octokit/plugin-retry's releases.

v7.1.3

7.1.3 (2025-01-07)

Bug Fixes

  • deps: bump octokit deps to fix Deno compat (#602) (b76ebd6)
Commits

Updates @octokit/plugin-throttling from 9.3.2 to 9.4.0

Release notes

Sourced from @​octokit/plugin-throttling's releases.

v9.4.0

9.4.0 (2025-01-08)

Features

  • new action runner groups endpoints, new code scanning alerts autofix endpoints, new sub-issues endpoints, new private registries enpoints, new code security endpoints (#762) (2dab79a)

v9.3.3

9.3.3 (2025-01-07)

Bug Fixes

  • deps: bump Octokit deps to fix Deno compat (#761) (553f0b4)
Commits
  • 2dab79a feat: new action runner groups endpoints, new code scanning alerts autofix en...
  • 553f0b4 fix(deps): bump Octokit deps to fix Deno compat (#761)
  • 2a6e70a build(deps): lock file maintenance (#760)
  • 1028270 build(deps): lock file maintenance (#759)
  • e150c35 build(deps): lock file maintenance (#758)
  • a5eabc5 chore(deps): update dependency prettier to v3.4.2 (#756)
  • c1b2b54 build(deps): lock file maintenance (#757)
  • c4b3e9b build(deps): lock file maintenance (#755)
  • a439606 chore(deps): update dependency prettier to v3.4.1 (#753)
  • a53d18f build(deps): lock file maintenance (#751)
  • Additional commits viewable in compare view

Updates @octokit/rest from 21.0.2 to 21.1.0

Release notes

Sourced from @​octokit/rest's releases.

v21.1.0

21.1.0 (2025-01-08)

Features

  • new endpoints, bump Octokit deps to fix Deno (#477) (908b1c8)
Commits
  • 908b1c8 feat: new endpoints, bump Octokit deps to fix Deno (#477)
  • 751b522 chore(deps): update dependency fetch-mock to v12 (#470)
  • 5ad12fd chore(deps): update dependency @​types/node to v22 (#472)
  • c88980a ci(action): update actions/checkout digest to 11bd719 (#469)
  • 94443df ci(action): update actions/checkout digest to eef6144 (#467)
  • c59fcf6 chore(deps): update dependency @​octokit/tsconfig to v4 (#464)
  • 2f97e4c build(deps): Bump body-parser and express (#465)
  • 2dec6cc chore(deps): update dependency esbuild to ^0.24.0 (#463)
  • See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
@octokit/plugin-throttling [>= 6.a, < 7]
@octokit/plugin-retry [>= 5.a, < 6]
@octokit/plugin-throttling [>= 7.a, < 8]
@octokit/rest [>= 20.a, < 21]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested a review from a team as a code owner January 16, 2025 13:47
@dependabot dependabot bot added the Update dependencies Dependabot update PRs label Jan 16, 2025
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/extensions/ql-vscode/octokit-c675e4ebdd branch from 4baf261 to 6687eb1 Compare January 23, 2025 13:36
@robertbrignull robertbrignull requested a review from a team as a code owner January 28, 2025 12:23
@robertbrignull
Copy link
Contributor

I've pushed a new way to calculate the number of requests we'll be making, by looking at the link header instead of total_count.

The total_count field is still there in the response from GH and you can see it if you make a request with curl, but it is genuinely gone from response.data that we have access to at this point in the code and I didn't see any other way that it was accessible on the response object.

@robertbrignull
Copy link
Contributor

I've tested this locally by importing some repos from a code search and the progress bar was working correctly.

@koesie10
Copy link
Member

I think this is caused by octokit/plugin-paginate-rest.js#637, which tries to correct the types for the items of a octokit.paginate.iterator call. However, I think the types might still not be correct, since the total_count should be available on each item because it's added to the response.data here and then directly returned here.

Would it make sense to raise an issue in octokit/plugin-paginate-rest.js or create a PR if it's easy to fix, instead of trying to work around it?

@robertbrignull
Copy link
Contributor

I've opened octokit/plugin-paginate-rest.js#652 on the dependency to ask for advice.

@koesie10
Copy link
Member

There's a new release that should include the fix: https://github.com/octokit/plugin-paginate-rest.js/releases/tag/v11.4.2. I'll try to get Dependabot to include that version in this PR, but that will also undo the changes that have been made to this PR. I think that's fine since ideally we would have made no changes.

@koesie10
Copy link
Member

@dependabot recreate

@dependabot
Bump the octokit group in /extensions/ql-vscode with 3 updates
0bdd4c2 
Bumps the octokit group in /extensions/ql-vscode with 3 updates: [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js), [@octokit/plugin-throttling](https://github.com/octokit/plugin-throttling.js) and [@octokit/rest](https://github.com/octokit/rest.js).


Updates `@octokit/plugin-retry` from 7.1.2 to 7.1.3
- [Release notes](https://github.com/octokit/plugin-retry.js/releases)
- [Commits](octokit/plugin-retry.js@v7.1.2...v7.1.3)

Updates `@octokit/plugin-throttling` from 9.3.2 to 9.4.0
- [Release notes](https://github.com/octokit/plugin-throttling.js/releases)
- [Commits](octokit/plugin-throttling.js@v9.3.2...v9.4.0)

Updates `@octokit/rest` from 21.0.2 to 21.1.0
- [Release notes](https://github.com/octokit/rest.js/releases)
- [Commits](octokit/rest.js@v21.0.2...v21.1.0)

---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: octokit
- dependency-name: "@octokit/plugin-throttling"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: octokit
- dependency-name: "@octokit/rest"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: octokit
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/extensions/ql-vscode/octokit-c675e4ebdd branch from c60493d to 0bdd4c2 Compare February 14, 2025 08:41
koesie10
koesie10 approved these changes Feb 14, 2025
View reviewed changes
Copy link
Member

@koesie10 koesie10 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've tested the Code Search functionality and it still works after these updates.

@koesie10 koesie10 merged commit 50aad9e into main Feb 14, 2025
15 checks passed
@koesie10 koesie10 deleted the dependabot/npm_and_yarn/extensions/ql-vscode/octokit-c675e4ebdd branch February 14, 2025 09:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@koesie10 koesie10 koesie10 approved these changes

Assignees
No one assigned
Labels
Update dependencies Dependabot update PRs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@robertbrignull @koesie10