v4.0.8

What's Changed

• chore(deps): bump the aws-sdk group with 2 updates by @dependabot in #170
• chore(deps): bump esbuild from 0.23.1 to 0.24.0 by @dependabot in #172

Full Changelog: v4.0.7...v4.0.8

v4.0.7

What's Changed

• chore(deps): bump esbuild from 0.23.0 to 0.23.1 by @dependabot in #167
• chore(deps): bump the aws-sdk group with 2 updates by @dependabot in #165

Full Changelog: v4.0.6...v4.0.7

v4.0.6

What's Changed

• chore(deps): bump esbuild from 0.22.0 to 0.23.0 by @dependabot in #157
• chore: Configure Dependabot by @akash1810 in #159
• chore(deps): bump actions/stale from 5 to 9 by @dependabot in #162
• chore(deps): bump actions/checkout from 2 to 4 by @dependabot in #161
• chore(deps): bump actions/setup-node from 3 to 4 by @dependabot in #160
• chore(deps): bump the aws-sdk group with 2 updates by @dependabot in #163

Full Changelog: v4.0.5...v4.0.6

v4.0.5

What's Changed

• fix(esbuild): Include packages in bundle by @akash1810 in #153

Full Changelog: v4.0.4...v4.0.5

v4.0.4

Caution

This version is broken, and should not be used!
A fix is released in v4.0.5.

What's Changed

• chore(deps): bump @aws-sdk/client-s3 from 3.596.0 to 3.606.0 by @dependabot in #149
• chore(deps-dev): bump @types/node from 20.14.2 to 20.14.9 by @dependabot in #150
• chore(deps): bump @aws-sdk/credential-providers from 3.596.0 to 3.606.0 by @dependabot in #151
• chore(deps): bump esbuild from 0.21.5 to 0.22.0 by @dependabot in #152

Full Changelog: v4.0.3...v4.0.4

v4.0.3

What's Changed

• chore(deps): bump @aws-sdk/credential-providers from 3.540.0 to 3.565.0 by @dependabot in #131
• chore(deps-dev): bump @types/node from 20.12.2 to 20.12.8 by @dependabot in #132
• chore(deps): bump @aws-sdk/client-s3 from 3.540.0 to 3.568.0 by @dependabot in #133
• chore(deps-dev): bump @guardian/tsconfig from 0.2.0 to 0.3.0 by @dependabot in #128
• chore(deps): bump esbuild from 0.20.2 to 0.21.4 by @dependabot in #139
• chore(deps-dev): bump @guardian/prettier from 8.0.0 to 8.0.1 by @dependabot in #138
• chore(deps-dev): bump @types/node from 20.12.8 to 20.14.1 by @dependabot in #140
• chore(deps): bump esbuild from 0.21.4 to 0.21.5 by @dependabot in #145
• chore(deps-dev): bump @types/node from 20.14.1 to 20.14.2 by @dependabot in #143
• chore(deps-dev): bump braces from 3.0.2 to 3.0.3 by @dependabot in #146
• chore(deps): bump @aws-sdk/client-s3 from 3.568.0 to 3.596.0 by @dependabot in #141
• chore(deps): bump @aws-sdk/credential-providers from 3.565.0 to 3.596.0 by @dependabot in #144
• chore(deps-dev): bump ws from 7.5.9 to 7.5.10 by @dependabot in #148

Full Changelog: v4.0.2...v4.0.3

v4.0.2

What's Changed

• feat: Handle Riff-Raff upload error, and PR commenting error separately by @akash1810 in #127

Full Changelog: v4.0.1...v4.0.2

v4.0.1

What's Changed

• fix: Improve feedback on S3 upload failure by @akash1810 in #126

Full Changelog: v4.0.0...v4.0.1

v4.0.0

Breaking changes

• A roleArn input now needs to be passed into the action, so that it can assume the role to upload to Riff-Raff #108. This removes the need to use the aws-configure-credentials action in previous steps of the workflow.

Migrating from v3 to v4

Prior to v4, workflows that used this action were required to assume the role necessary to upload artifacts to Riff-Raff, via configure-aws-credentials. This is no longer required, as this action does it for you. This has the benefit of hardening your workflows, as intermediate steps no longer have access to AWS credentials.

To migrate:

1. Bump guardian/actions-riff-raff@v3 to guardian/actions-riff-raff@v4 in your workflow file.

2. Add the required roleArn property under the with section of the guardian/actions-riff-raff@v4 action. This is typically stored as a secret that can be accessed via ${{ secrets.GU_RIFF_RAFF_ROLE_ARN }}.

3. Remove the configure-aws-credentials step from your workflow, as it's no longer required.

Note

For the action to successfully assume the Riff-Raff role, you still need to include the following permission:

permissions:
  id-token: write
  # ...

What's Changed

• chore(deps): bump @aws-sdk/client-s3 from 3.462.0 to 3.484.0 by @dependabot in #96
• chore(deps-dev): bump @types/node from 20.10.1 to 20.10.6 by @dependabot in #97
• chore(deps): bump esbuild from 0.19.8 to 0.19.11 by @dependabot in #98
• chore(deps-dev): bump @guardian/prettier from 5.0.0 to 7.0.0 by @dependabot in #99
• chore(deps): bump @aws-sdk/client-s3 from 3.484.0 to 3.504.0 by @dependabot in #102
• chore(deps-dev): bump @types/node from 20.10.6 to 20.11.14 by @dependabot in #104
• chore(deps): bump esbuild from 0.19.11 to 0.20.0 by @dependabot in #105
• chore(deps-dev): bump @guardian/prettier from 7.0.0 to 8.0.0 by @dependabot in #103
• chore(deps): bump @aws-sdk/client-s3 from 3.504.0 to 3.509.0 by @dependabot in #106
• chore(deps-dev): bump @types/node from 20.11.14 to 20.11.17 by @dependabot in #107
• Assume Riff-Raff role within the action itself by @AshCorr @chrislomaxjones in #108

New Contributors

• @chrislomaxjones made their first contribution in #108

Full Changelog: v3...v4

v3.3.2

What's Changed

• fix(commenting): Update all comments created by actions-riff-raff by @akash1810 in #95

Full Changelog: v3.3.1...v3.3.2