upadte [goreleaser]

.codecov.yml

@@ -45,6 +45,7 @@ flags:
   cctp-relayer:
     paths:
       - services/cctp-relayer/
+    carryforward: true
   rfq:
     paths:
       - services/rfq/

.github/actions/add-label/action.yml

@@ -32,7 +32,7 @@ runs:
       shell: bash
 
     - name: Add Label
-      uses: actions/github-script@v6
+      uses: actions/github-script@v7
       with:
         script: |
           github.rest.issues.addLabels({

.github/actions/remove-label/action.yml

@@ -32,7 +32,7 @@ runs:
       shell: bash
 
     - name: Remove Label
-      uses: actions/github-script@v6
+      uses: actions/github-script@v7
       with:
         script: |
           async function removeLabel() {

.github/workflows/close-stale.yml

@@ -11,7 +11,7 @@ jobs:
   stale-prs:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/stale@v8
+      - uses: actions/stale@v9
         with:
           stale-pr-message: 'This PR is stale because it has been open 14 days with no activity. Remove stale label or comment or this will be closed in 5 days.'
           exempt-pr-labels: exempt-stale

.github/workflows/codeql.yaml

@@ -25,10 +25,10 @@ jobs:
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
       - name: Install Go
         if: ${{ matrix.language == 'go' }}
-        uses: actions/setup-go@v4
+        uses: actions/setup-go@v5
         with:
           go-version-file: 'go.work'
 
@@ -42,7 +42,7 @@ jobs:
 
       - name: Go modules cache
         if: ${{ matrix.language == 'go' }}
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           # see https://github.com/mvdan/github-actions-golang
           path: |

.github/workflows/go.yml

@@ -107,11 +107,11 @@ jobs:
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
           submodules: 'recursive'
 
       - name: Go modules cache
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           # see https://github.com/mvdan/github-actions-golang
           # also: https://glebbahmutov.com/blog/do-not-let-npm-cache-snowball/ w/ go build (workaround now is having a cache that just gets expired at night)
@@ -125,7 +125,7 @@ jobs:
             ${{ runner.os }}-test-${{matrix.package}}
 
       - name: Install Go
-        uses: actions/setup-go@v4
+        uses: actions/setup-go@v5
         with:
           go-version: ${{ matrix.go-version }}
 
@@ -259,14 +259,14 @@ jobs:
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
       - name: Install Go
-        uses: actions/setup-go@v4
+        uses: actions/setup-go@v5
         with:
           go-version: ${{ matrix.go-version }}
 
       - name: Go modules cache
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           # see https://github.com/mvdan/github-actions-golang
           # also: https://glebbahmutov.com/blog/do-not-let-npm-cache-snowball/ w/ go build (workaround now is having a cache that just gets expired at night)
@@ -301,7 +301,7 @@ jobs:
         # e.g. ['package1', 'package2'] if both package folders contains changes
         package: ${{ fromJSON(needs.changes.outputs.packages_nodeps) }}
     steps:
-      - uses: actions/setup-go@v4
+      - uses: actions/setup-go@v5
         with:
           go-version: 1.22.x
 
@@ -379,7 +379,7 @@ jobs:
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
           submodules: 'recursive'
 
       - name: Setup NodeJS
@@ -396,12 +396,12 @@ jobs:
         run: npx lerna exec npm run build:go --parallel
 
       # Setup Go
-      - uses: actions/setup-go@v4
+      - uses: actions/setup-go@v5
         with:
           go-version: 1.22.x
 
       - name: Go modules cache
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           # see https://github.com/mvdan/github-actions-golang
           # also: https://glebbahmutov.com/blog/do-not-let-npm-cache-snowball/ w/ go build (workaround now is having a cache that just gets expired at night)
@@ -474,7 +474,7 @@ jobs:
       - uses: actions/checkout@v4
         if: ${{ contains(fromJson(needs.pr_metadata.outputs.labels), format('needs-go-generate-{0}', matrix.package)) }}
         with:
-          fetch-depth: 1
+          fetch-depth: 2
       - name: Remove Label
         if: ${{ contains(fromJson(needs.pr_metadata.outputs.labels), format('needs-go-generate-{0}', matrix.package)) }}
         uses: ./.github/actions/remove-label
@@ -496,7 +496,7 @@ jobs:
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
           submodules: 'recursive'
 
       - name: Setup NodeJS
@@ -519,12 +519,12 @@ jobs:
         if: ${{ contains(matrix.package, 'agents') || contains(matrix.package, 'services/rfq') }}
 
       # Setup Go
-      - uses: actions/setup-go@v4
+      - uses: actions/setup-go@v5
         with:
           go-version: 1.22.x
 
       - name: Go modules cache
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         if: ${{ !contains(matrix.package, 'services/cctp-relayer') }}
         with:
           # see https://github.com/mvdan/github-actions-golang
@@ -541,7 +541,7 @@ jobs:
             ${{ runner.os }}-go-generate-${{matrix.package}}
 
       - name: Cache Linuxbrew
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         if: ${{ contains(matrix.package, 'scribe') }}
         with:
           path: |

.github/workflows/goreleaser-actions.yml

@@ -136,7 +136,7 @@ jobs:
           submodules: 'recursive'
 
       - name: Set up cache
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           path: |
             ~/.cache/go-build

.github/workflows/helm-test.yml

@@ -39,7 +39,7 @@ jobs:
         with:
           version: v3.9.2
 
-      - uses: actions/setup-python@v4
+      - uses: actions/setup-python@v5
         with:
           python-version: 3.7
 

.github/workflows/lerna.yaml

@@ -37,6 +37,9 @@ jobs:
       - name: 'Version and publish' # Interesting step
         env:
           GH_TOKEN: ${{ secrets.LERNA_FGPAT }}
+          CODECOV_TOKEN: ${{ secrets.CODECOV }}
+          GH_COMMIT_SHA: ${{ github.event.pull_request.head.sha }}
+
         # branch is protected so this must be an admin token, this will expire on 03/01/2024
         # replacement should be done by a service account with a fine-grained personal access token
         run: |

.github/workflows/packages.yml

@@ -26,7 +26,7 @@ jobs:
       - name: 'Checkout'
         uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
           submodules: 'recursive'
 
       - name: Setup NodeJS
@@ -40,6 +40,7 @@ jobs:
 
       - name: Run tests # Run tests of all packages
         run: npx lerna exec npm run ci:lint --parallel
+
   test:
       runs-on: ubuntu-latest
       env:
@@ -49,12 +50,18 @@ jobs:
         - name: 'Checkout'
           uses: actions/checkout@v4
           with:
-            fetch-depth: 1
+            fetch-depth: 2
             submodules: 'recursive'
 
         - name: Setup NodeJS
           uses: ./.github/actions/setup-nodejs
 
+        # Foundry is required for build
+        - name: Install Foundry
+          uses: foundry-rs/foundry-toolchain@v1
+          with:
+            version: nightly
+
         - name: Verify Changed files
           uses: tj-actions/[email protected]
           id: verify-yarn-lock
@@ -97,3 +104,9 @@ jobs:
               files: lcov.info
             attempt_limit: 5
             attempt_delay: 30000
+
+        - name: Run build # Run tests of all packages
+          run: npx lerna exec npm run build --parallel || true # only for codecov
+          env:
+            CODECOV_TOKEN: ${{ secrets.CODECOV }}
+            GH_COMMIT_SHA: ${{ github.event.pull_request.head.sha }}

.github/workflows/solidity.yml

@@ -141,7 +141,7 @@ jobs:
         if: ${{ matrix.package != 'solidity-devops' }}
         uses: actions/checkout@v4
         with:
-          fetch-depth: 1
+          fetch-depth: 2
           submodules: 'recursive'
 
       - name: Setup NodeJS

.github/workflows/ui-preview.yaml

@@ -88,12 +88,18 @@ jobs:
           export DEPLOY_URL=$(vercel deploy --prebuilt --token=${{ secrets.VERCEL_TOKEN }})
           echo "DEPLOY_URL=$DEPLOY_URL" >> $GITHUB_ENV
           echo "::set-output name=url::$DEPLOY_URL"
+        env:
+          CODECOV_TOKEN: ${{ secrets.CODECOV }}
+          GH_COMMIT_SHA: ${{ github.event.pull_request.head.sha }}
       - name: Deploy to Vercel (Output Prod)
         if: ${{ format('refs/heads/{0}', github.event.repository.default_branch) == github.ref }}
         run: |
           vercel pull --yes --environment=preview --token=${{ secrets.VERCEL_TOKEN }}
           vercel build --token=${{ secrets.VERCEL_TOKEN }} --prod
           vercel deploy --prebuilt --token=${{ secrets.VERCEL_TOKEN }} --prod
+        env:
+          CODECOV_TOKEN: ${{ secrets.CODECOV }}
+          GH_COMMIT_SHA: ${{ github.event.pull_request.head.sha }}
 
       - name: Update PR Description
         if: ${{ github.event_name == 'pull_request' && format('refs/heads/{0}', github.event.repository.default_branch) != github.ref }}

CONTRIBUTING.md

@@ -285,3 +285,7 @@ func TestEventDBSuite(t *testing.T) {
 }
 
 ```
+
+## Github Actions
+
+If you want to do a shallow clone, use `fetch-depth: 2` rather than `fetch-depth: 1`. This allows [some actions](https://docs.codecov.com/docs/environment-specific-requirements) (though not all of them) to determine the correct sha.