chore(deps): update code.forgejo.org/forgejo/runner docker tag to v11 - autoclosed #3

renovate-bot · 2025-10-03T20:10:16Z

renovate-bot commented

2025-10-03 20:10:16 +00:00

This PR contains the following updates:

Package	Update	Change
code.forgejo.org/forgejo/runner (source)	major	`8.0.1` -> `11.1.2`

Release Notes

forgejo/runner (code.forgejo.org/forgejo/runner)

`v11.1.2`

Compare Source

Release Notes

features
- PR: feat: support evaluating workflow-level concurrency blocks in jobparser
bug fixes
- PR: fix(security): a multiline secret may be found in a single log entry
- PR: fix: improve logging to diagnose mystery job terminations
- PR: fix: modifying a cache secret does not invalidate cached entries
- PR: fix: allow GC & cache operations to operate concurrently
- PR: fix: do not attempt to run the LXC stop script with self-hosted
- PR: fix: event.pull_request.action == closed can use the cache of the base repository
- PR: fix: Correctly override the value of Forgejo-Cache-Host when ACTIONS_CACHE_URL is overridden.
- PR: fix: a composite action must not change the result of the calling step before it completes
other
- PR: chore: test: exercise contexts in matrix when validating workflows
- PR: Update module connectrpc.com/connect to v1.19.0
- PR: chore: fix typo in the documentation
- PR: Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.5.0
- PR: Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.6
- PR: chore: upgrade LXC example to Debian GNU/Linux trixie
- PR: Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.4
- PR: Update forgejo-runner to v11.1.1

`v11.1.1`

Compare Source

Release Notes

bug fixes
- PR: fix: outputs are only set when the job is successful
- PR: fix(pre-commit): don’t default verbose to on
other
- PR: chore: document that DOCKER_HOST should be used instead of --container-daemon-socket

`v11.1.0`

Compare Source

Warning

Upgrade to v11.1.1 instead. A regression was found that crashed the runner on skipped or failed jobs.

Release Notes

features
- PR: feat: add pre-commit hook for validator
- PR: feat: validate --directory alternative to --repository to not clone
- PR: feat: the forgejo context is equivalent to the github context
- PR: feat: add support for a Debian GNU/Linux LXC backend based on trixie (e.g. trixie-lxc:lxc://debian:trixie)
bug fixes
- PR: fix: schema validation must accept aliases and merges
- PR: fix: forgejo-runner validate exit with error when validation fails
- PR: fix: do not save .runner unless it is modified
- PR: fix: remove LXC working directory when it completes
- PR: fix: send job outputs & job result to Forgejo in sync with each other
- PR: fix: if the Forgejo instance failed a job, cancel it
- PR: fix: enforce job..timeout-minutes
- PR: fix: use a fixed runner name for old (<= v1.20) Forgejo instances
- PR: fix: docker-compose example: allow the runner to keep its labels
other
- PR: Update dependency forgejo/lxc-helpers to v1.1.0
- PR: chore: minimal integration test for the LXC backend
- PR: chore: unify actions URLs in .forgejo/workflows
- PR: Update https://data.forgejo.org/actions/cascading-pr action to v2.3.0
- PR: chore: data.forgejo.org/actions/cascading-pr is the canonical location
- PR: Update dependency forgejo/release-notes-assistant to v1.4.1
- PR: chore: wait 4 times longer for the forgejo cascade pull request to complete
- PR: Remove windows build/test pipeline for GitHub
- PR: Update module code.forgejo.org/forgejo/actions-proto to v0.5.2
- PR: Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.3
- PR: Update forgejo-runner to v11 (major)
- PR: ci: update forgejo version for release integration
- PR: chore: lxc-systemd may need more time to start on slow machines
- PR: Update module golang.org/x/term to v0.35.0
- PR: chore: call the release notes assistant when opening a new pull request
- PR: chore: skip release-notes-assistant for dependency updates

`v11.0.0`

Compare Source

Release Notes

The breaking change in this release is not technical, it is the change of the license which is now GPLv3-or-later.

PR: chore: change the license to GPLv3-or-later

bug fixes
- PR: fix: shutdown the runner when the cache fails with a non recoverable error
- PR: fix: also cascade if run-*-test is set when the PR is open
- PR: fix: graceful shutdown of tasks being interrupted by signal
- PR: fix: lxc-systemd example: export INPUTS_SERIAL
- PR: fix: allow inputs context in action defaults
- PR: fix: an expression in with: for a reusable workflow call can use env
other
- PR: Update module golang.org/x/time to v0.13.0
- PR: Revert "fix: also cascade if run-*-test is set when the PR is open (#948)"
- PR: Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.5
- PR: Update module github.com/docker/docker to v28.4.0+incompatible
- PR: chore: change the license to GPLv3-or-later
- PR: chore: bump version to v11
- PR: refactor: remove duplicate computeMac function
- PR: Update module github.com/docker/cli to v28.4.0+incompatible
- PR: chore: refactor act/artifactcache Handler to an interface
- PR: Update dependency go to v1.24.7
- PR: Update module github.com/spf13/pflag to v1.0.10
- PR: Update module github.com/spf13/cobra to v1.10.1
- PR: Update dependency forgejo/runner to v10

`v10.0.1`

Compare Source

Release Notes

bug fixes
- PR: fix: pull_request_target events can share the cache of the repository

`v10.0.0`

Compare Source

Warning

Upgrade to v10.0.1 instead. A regression was found on pull_request_target events and is fixed in the v10.0.1 release.

Release Notes

PR: fix(security): prevent on: pull_request actions from mutating caches of other workflow events
forgej-runner currently creates a safer execution environment for workflows triggered by pull requests by denying those workflows access to the repository's secrets, preventing pull requests from compromising the confidentiality of the secrets.

Workflows do have access to write to the action cache, which is shared with future workflow executions, including executions that may have access to repository secrets. This was assumed safe as the cache is a "write-once" operation based upon the cache key; if an execution writes to that cache, it will be read by other workflows only if a matching key parameter is provided, and it can not be modified again. These assumptions were identified as weak security practices with known workarounds.

It is possible for a malicious pull request to mutate the shared cache and embed untrusted artifacts, which may later be executed in workflow executions with access to secrets, risking the confidentiality of those secrets.

In order to eliminate this risk, workflows executing with the pull_request and pull_request_target events have their write operations to the cache isolated to future workflow executions from the same pull request. They can continue to read from the shared cache if applicable.

If using an external cache server configuration, both the cache server and other instances of the runner must be running the same software version. The recommended upgrade procedure in this configuration is to bring all runners offline, upgrade the cache server to the latest release and bring it online, and then bring all other runners online.
PR: fix(security): ensure unique names for container images created by actions
Without this fix, when a workflow ran a local docker action (e.g. the example in the end-to-end tests), it used an image tag that could collide with other workflows that happen to use the same name. The workaround for older runner versions is to set [container].force_rebuild: true in the runner configuration file.

bug fixes
- PR: fix(security): prevent on: pull_request actions from mutating caches of other workflow events
- PR: fix(security): ensure unique names for container images created by actions
other
- PR: Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.4
- PR: chore: explain the difference between job_level and level
- PR: chore: add reminder of how to run a local test
- PR: chore: unify cascade-setup-forgejo with cascade-forgejo
- PR: chore: remove github.com/pkg/errors
- PR: Update module github.com/stretchr/testify to v1.11.1
- PR: Update module google.golang.org/protobuf to v1.36.8
- PR: Update module go.etcd.io/bbolt to v1.4.3
- PR: test: remove internal timeout in TestRunnerCacheConfiguration
- PR: chore: skip tests that require Forgejo if it is not available
- PR: chore: rework the README
- PR: Update github.com/go-viper/mapstructure/v2 (indirect) to v2.4.0 [SECURITY]
- PR: chore: remove TestRunContext_GetGitHubContext
- PR: chore: do not force GOPROXY
- PR: Update module github.com/vektra/mockery/v2 to v2.53.5
- PR: chore: fix .PHONY lint targets
- PR: Update dependency forgejo/runner to v9.1.1
- PR: Update code.forgejo.org/forgejo/runner Docker tag to v9.1.1

`v9.1.1`

Compare Source

Release Notes

bug fixes
- PR: fix: an error from a SKIPPED job does not transform it into a FAILURE
- PR: fix: artifact cache DB not using indexes for searching
- PR: fix: RunsOn in jobparser is not used by the runner but it is used by Forgejo [skip cascade]
- PR: fix: fixes the build on FreeBSD
other
- PR: chore: replace gopkg.in/yaml.v3 with go.yaml.in/yaml/v3
- PR: chore: merge ACT and runner unit & integration tests together
- PR: test: run all tests with the data race detector
- PR: chore: fix 'false positive' data race detection in Id/Number default init
- PR: test: add an integration test for embedded runner cache
- PR: chore: when comparing mockery generated files, ignore the version
- PR: chore: fix data race in reusable workflows with inherited secrets
- PR: chore: revert mockery v3 update and validate mockery updates
- PR: chore: cascade forgejo pull request out of the runner branch or PR
- PR: Update dependency forgejo/runner to v9.1.0
- PR: chore: go.mod should use the minor version only
- PR: Update code.forgejo.org/forgejo/runner Docker tag to v9.1.0

`v9.1.0`

Compare Source

Release Notes

features
- PR: feat: support actions with 'using: node24'
- PR: feat: fail when using an invalid label during non interactive registration
- PR: feat: added support for dereferenced map properties
- PR: feat: support evaluation of concurrency clauses in runner
- PR: feat: log parsed commands and step summary
- PR: feat: added info log when container image platform mismatched
- PR: feat: wait for services to be healthy before starting a job
bug fixes
- PR: fix: report the job as failed when the [runner].timeout expires
- PR: fix: data race in 'runs-on' expressions causes incorrect job labels during execution
- PR: fix: race condition in matrix job result state may result in failed jobs being marked as successful
- PR: fix: ensure unique container names for reusable workflows
- PR: fix: data race condition causing incorrect shell on a task step if it referenced a matrix variable
- PR: fix: use a unique random name to derive network and volumes for a job
- PR: fix: the configuration must not be used as temporary storage
- PR: fix: container removal is the runner responsibility
- PR: fix: update reusable workflow input handling
- PR: fix(security): multline secrets trivially transformed are redacted
- PR: fix: prevent unintended input replacement in reusable workflows with workflow_dispatch when using workflow_call
- PR: fix: composite action input pollution
- PR: fix: prevent space prefix/suffix in runner labels
- PR: fix: valueMasker concurrent map write
- PR: fix: short sha has at least four digits
- PR: fix: amd64 arch to X64 (#2580)
other
- PR: test: fix data race triggered by testing mocks in TestSetJobResultConcurrency
- PR: Update module github.com/vektra/mockery/v2 to v3.5.3
- PR: docs: clarify actions_cache_url_option
- PR: chore: prevent 'false positive' data race detection with Job.If [skip cascade]
- PR: Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.2
- PR: test: fix data race in TestNewParallelExecutor... tests
- PR: chore: prevent "false positive" data race detection w/ ContainerDaemonSocket
- PR: test: prevent data race detection in TestActionCache
- PR: chore: modernize code
- PR: chore: refactor NewDockerVolumeRemoveExecutor
- PR: chore: panic if a random name cannot be created
- PR: Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.4.0
- PR: chore: require Go v1.24
- PR: chore: integration tests can run for more than 10 minutes
- PR: chore: use t.Context for tests, activate usetesting for lint + add t.TempDir and t.Chdir
- PR: chore(tests): differentiate 'failed to copy content' errors
- PR: chore: set the Kind/Chore label on dependencies upgrades
- PR: Update module github.com/imdario/mergo to v1
- PR: Update module github.com/vektra/mockery/v2 to v3
- PR: Update code.forgejo.org/forgejo/runner Docker tag to v9
- PR: chore: remove the alpha quality warning, it is secure enough to be used in production
- PR: Update module golang.org/x/term to v0.34.0
- PR: Update module github.com/docker/go-connections to v0.6.0
- PR: chore: "unable to get git repo" is a debug message, not a warning
- PR: Update dependency go to v1.24
- PR: chore: cancel context used in CI when running workflows
- PR: Update module google.golang.org/protobuf to v1.36.7
- PR: test: fix failures caused by node24 usage in hello-world-javascript-action [skip cascade]
- PR: chore: restore GitHub windows build workflow
- PR: chore: run_context: add GITHUB_RUN_ATTEMPT (#2458)
- PR: Update dependency go to v1.23.12
- PR: Update dependency forgejo/runner to v9.0.3
- PR: chore: links to container images and documentation in the release

`v9.0.3`

Compare Source

Release Notes

features
- PR: feat: lxc-systemd defaults to using Forgejo runner 9.0.2
- PR: feat: --health-* options are allowed in job.<id>.services.<id>.options
bug fixes
- PR: fix: log the URL of the action when it fails schema validation
- PR: fix: lingering services/volumes/networks after jobs if cleanup takes >1min
other
- PR: chore: upgrade lxc-helpers
- PR: chore: teach renovate about examples/lxc-systemd/forgejo-runner-service.sh
- PR: Update module github.com/containerd/errdefs to v1
- PR: chore: explain that part of the source is Apache 2
- PR: chore(cleanup): dispatch workflows according to the role of the repository
- PR: chore: unify forgejo image names location
- PR: chore: replace docker hub with code.forgejo.org
- PR: Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.1
- PR: Update module github.com/opencontainers/selinux to v1.12.0
- PR: Update module github.com/go-git/go-git/v5 to v5.16.2
- PR: Update module github.com/docker/cli to v28.3.3+incompatible
- PR: Update dependency forgejo/release-notes-assistant to v1.4.0
- PR: Update module github.com/spf13/pflag to v1.0.7
- PR: Update module github.com/opencontainers/image-spec to v1.1.1
- PR: Update module go.etcd.io/bbolt to v1.4.2
- PR: Update module github.com/rhysd/actionlint to v1.7.7
- PR: Update module github.com/go-git/go-billy/v5 to v5.6.2
- PR: chore: the release link to RELEASE-NOTES.md is no longer needed (take 2)

`v9.0.2`

Compare Source

features
- PR: feat: use cache-{from,to}: type=gha in the docker/build-push-action example
- PR: feat: add an LXC based example of docker/build-push-action usage
bug fixes
- PR: fix: vars context is allowed in default values of action inputs
other
- PR: Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.4.1
- PR: chore: the release link to RELEASE-NOTES.md is no longer needed
- PR: chore(ci): autoremove when running a workflow in a test
- PR: Update dependency forgejo/release-notes-assistant to v1.3.6

`v9.0.1`

Compare Source

other
- PR: chore: to allow the runner to be imported, v9 needs to be in the go module
- PR: Update module github.com/docker/docker to v28.3.3+incompatible [SECURITY]
- PR: chore: release notes are now published together with the release

`v9.0.0`

Compare Source

Workflows and actions go through a schema validation and the runner will not start a job if they do not pass. Some existing workflows or actions may have syntax errors that did not prevent them from running with versions 7.0.0 and below but they will no longer work with versions 8.0.0 and above.

Existing workflows can be verified and fixed before upgrading by using the new forgejo-runner validate command. For instance, the following will try to validate workflows and/or actions found in the Git repository at https://example.com/my/repo (a local directory at the root of a Git repository can also be used):

$ forgejo-runner validate --repository https://example.com/my/repo
.forgejo/workflows/release.yml workflow schema validation OK
.forgejo/workflows/test.yml workflow schema validation OK

If the error is not immediately obvious, please file an issue with a copy of the failed workflow and revert to using version 7.0.0 until it is resolved.

features including breaking changes
- PR: feat!: remove support for using an artifact server via CLI
features
- PR: feat: the new forgejo-runner validate command can be used to verify if an action or a workflow is conformant with the expected schema. forgejo-runner validate --repository https://example.com/my/repository will validate all the workflows and actions a Git repository contains. Alternatively forgejo-runner validate --path myaction/action.yml --action or forgejo-runner validate --path .forgejo/workflows/test.yml --workflow can be used to validate a single file. It is recommended to use these commands to verify existing actions and workflows pass before upgrading to Forgejo runner v8.0.0 or above to not disrupt existing workflows.
- PR: feat(security): recommend security issues are reported to security@forgejo.org
- PR: feat(tests): cmd executeCommand captures stderr & stdout
- PR: feat: merge forgejo/act/pkg in the act directory
bug fixes
- PR: fix: allow expressions in action descriptions and incomplete action inputs
- PR: fix: the vars context is allowed in an action step env
- PR: fix: allow expressions in step and job uses:
- PR: fix(ci): use code.forgejo.org instead of the docker hub
other
- PR: Restore contrib/forgejo-runner.service
- PR: chore: remove unused/unmaintained files
- PR: chore: a single testutils for both act and the runner
- PR: chore: renovate must not look at any testdata subdirectory
- PR: chore(release-notes): finalize 9.0.0
- PR: chore: use the act directory instead of https://code.forgejo.org/forgejo/act
- PR: chore(docs): naked host schema in 8.0.0 is a breaking change
- PR: chore: disable package name checks for revive [skip cascade]

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [code.forgejo.org/forgejo/runner](https://forgejo.org) ([source](https://code.forgejo.org/forgejo/runner)) | major | `8.0.1` -> `11.1.2` | --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner)</summary> ### [`v11.1.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.1.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.1.1...v11.1.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1026): feat: support evaluating workflow-level concurrency blocks in jobparser - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1051): fix(security): a multiline secret may be found in a single log entry - [PR](https://code.forgejo.org/forgejo/runner/pulls/1048): fix: improve logging to diagnose mystery job terminations - [PR](https://code.forgejo.org/forgejo/runner/pulls/1043): fix: modifying a cache secret does not invalidate cached entries - [PR](https://code.forgejo.org/forgejo/runner/pulls/1040): fix: allow GC & cache operations to operate concurrently - [PR](https://code.forgejo.org/forgejo/runner/pulls/1037): fix: do not attempt to run the LXC stop script with self-hosted - [PR](https://code.forgejo.org/forgejo/runner/pulls/1031): fix: event.pull\_request.action == closed can use the cache of the base repository - [PR](https://code.forgejo.org/forgejo/runner/pulls/1027): fix: Correctly override the value of `Forgejo-Cache-Host` when ACTIONS\_CACHE\_URL is overridden. - [PR](https://code.forgejo.org/forgejo/runner/pulls/1019): fix: a composite action must not change the result of the calling step before it completes - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1033): chore: test: exercise contexts in matrix when validating workflows - [PR](https://code.forgejo.org/forgejo/runner/pulls/1029): Update module connectrpc.com/connect to v1.19.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/1025): chore: fix typo in the documentation - [PR](https://code.forgejo.org/forgejo/runner/pulls/1023): Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.5.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/1022): Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.6 - [PR](https://code.forgejo.org/forgejo/runner/pulls/1020): chore: upgrade LXC example to Debian GNU/Linux trixie - [PR](https://code.forgejo.org/forgejo/runner/pulls/1021): Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.0.4 - [PR](https://code.forgejo.org/forgejo/runner/pulls/1018): Update forgejo-runner to v11.1.1  ### [`v11.1.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.1.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.1.0...v11.1.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1017): fix: outputs are only set when the job is successful - [PR](https://code.forgejo.org/forgejo/runner/pulls/1015): fix(pre-commit): don’t default `verbose` to on - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1013): chore: document that DOCKER\_HOST should be used instead of --container-daemon-socket  ### [`v11.1.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.1.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.0.0...v11.1.0) > **Warning** Upgrade to v11.1.1 instead. A [regression was found](https://code.forgejo.org/forgejo/runner/issues/1016) that crashed the runner on skipped or failed jobs. - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1002): feat: add pre-commit hook for validator - [PR](https://code.forgejo.org/forgejo/runner/pulls/1008): feat: validate --directory alternative to --repository to not clone - [PR](https://code.forgejo.org/forgejo/runner/pulls/999): feat: the forgejo context is equivalent to the github context - [PR](https://code.forgejo.org/forgejo/runner/pulls/997): feat: add support for a Debian GNU/Linux LXC backend based on trixie (e.g. trixie-lxc:lxc://debian:trixie) - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1012): fix: schema validation must accept aliases and merges - [PR](https://code.forgejo.org/forgejo/runner/pulls/1009): fix: forgejo-runner validate exit with error when validation fails - [PR](https://code.forgejo.org/forgejo/runner/pulls/1006): fix: do not save .runner unless it is modified - [PR](https://code.forgejo.org/forgejo/runner/pulls/1003): fix: remove LXC working directory when it completes - [PR](https://code.forgejo.org/forgejo/runner/pulls/995): fix: send job outputs & job result to Forgejo in sync with each other - [PR](https://code.forgejo.org/forgejo/runner/pulls/986): fix: if the Forgejo instance failed a job, cancel it - [PR](https://code.forgejo.org/forgejo/runner/pulls/982): fix: enforce job.<job-id>.timeout-minutes - [PR](https://code.forgejo.org/forgejo/runner/pulls/972): fix: use a fixed runner name for old (<= v1.20) Forgejo instances - [PR](https://code.forgejo.org/forgejo/runner/pulls/965): fix: docker-compose example: allow the runner to keep its labels - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1001): Update dependency forgejo/lxc-helpers to v1.1.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/1000): chore: minimal integration test for the LXC backend - [PR](https://code.forgejo.org/forgejo/runner/pulls/993): chore: unify actions URLs in .forgejo/workflows - [PR](https://code.forgejo.org/forgejo/runner/pulls/992): Update <https://data.forgejo.org/actions/cascading-pr> action to v2.3.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/990): chore: data.forgejo.org/actions/cascading-pr is the canonical location - [PR](https://code.forgejo.org/forgejo/runner/pulls/989): Update dependency forgejo/release-notes-assistant to v1.4.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/988): chore: wait 4 times longer for the forgejo cascade pull request to complete - [PR](https://code.forgejo.org/forgejo/runner/pulls/985): Remove windows build/test pipeline for GitHub - [PR](https://code.forgejo.org/forgejo/runner/pulls/981): Update module code.forgejo.org/forgejo/actions-proto to v0.5.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/969): Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.0.3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/975): Update forgejo-runner to v11 (major) - [PR](https://code.forgejo.org/forgejo/runner/pulls/973): ci: update forgejo version for release integration - [PR](https://code.forgejo.org/forgejo/runner/pulls/970): chore: lxc-systemd may need more time to start on slow machines - [PR](https://code.forgejo.org/forgejo/runner/pulls/966): Update module golang.org/x/term to v0.35.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/964): chore: call the release notes assistant when opening a new pull request - [PR](https://code.forgejo.org/forgejo/runner/pulls/954): chore: skip release-notes-assistant for dependency updates  ### [`v11.0.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.0.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v10.0.1...v11.0.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes The breaking change in this release is not technical, it is the change of the license which is now GPLv3-or-later. - [PR](https://code.forgejo.org/forgejo/runner/pulls/773): chore: change the license to GPLv3-or-later ***   - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/935): fix: shutdown the runner when the cache fails with a non recoverable error - [PR](https://code.forgejo.org/forgejo/runner/pulls/948): fix: also cascade if run-\*-test is set when the PR is open - [PR](https://code.forgejo.org/forgejo/runner/pulls/946): fix: graceful shutdown of tasks being interrupted by signal - [PR](https://code.forgejo.org/forgejo/runner/pulls/943): fix: lxc-systemd example: export INPUTS\_SERIAL - [PR](https://code.forgejo.org/forgejo/runner/pulls/941): fix: allow inputs context in action defaults - [PR](https://code.forgejo.org/forgejo/runner/pulls/931): fix: an expression in with: for a reusable workflow call can use env - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/951): Update module golang.org/x/time to v0.13.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/950): Revert "fix: also cascade if run-\*-test is set when the PR is open ([#948](https://github.com/forgejo/runner/issues/948))" - [PR](https://code.forgejo.org/forgejo/runner/pulls/945): Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.5 - [PR](https://code.forgejo.org/forgejo/runner/pulls/942): Update module github.com/docker/docker to v28.4.0+incompatible - [PR](https://code.forgejo.org/forgejo/runner/pulls/773): chore: change the license to GPLv3-or-later - [PR](https://code.forgejo.org/forgejo/runner/pulls/940): chore: bump version to v11 - [PR](https://code.forgejo.org/forgejo/runner/pulls/936): refactor: remove duplicate computeMac function - [PR](https://code.forgejo.org/forgejo/runner/pulls/938): Update module github.com/docker/cli to v28.4.0+incompatible - [PR](https://code.forgejo.org/forgejo/runner/pulls/934): chore: refactor act/artifactcache Handler to an interface - [PR](https://code.forgejo.org/forgejo/runner/pulls/933): Update dependency go to v1.24.7 - [PR](https://code.forgejo.org/forgejo/runner/pulls/932): Update module github.com/spf13/pflag to v1.0.10 - [PR](https://code.forgejo.org/forgejo/runner/pulls/930): Update module github.com/spf13/cobra to v1.10.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/928): Update dependency forgejo/runner to v10  ### [`v10.0.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v10.0.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v10.0.0...v10.0.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/927): fix: pull\_request\_target events can share the cache of the repository  ### [`v10.0.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v10.0.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.1.1...v10.0.0) > **Warning** Upgrade to v10.0.1 instead. A regression was found on `pull_request_target` events and is fixed in the [v10.0.1 release](https://code.forgejo.org/forgejo/runner/releases/tag/v10.0.1). - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes - [PR](https://code.forgejo.org/forgejo/runner/pulls/925): fix(security): prevent on: pull\_request actions from mutating caches of other workflow events forgej-runner currently creates a safer execution environment for workflows triggered by pull requests by denying those workflows access to the repository's secrets, preventing pull requests from compromising the confidentiality of the secrets. Workflows do have access to write to the action cache, which is shared with future workflow executions, including executions that may have access to repository secrets. This was assumed safe as the cache is a "write-once" operation based upon the cache key; if an execution writes to that cache, it will be read by other workflows only if a matching key parameter is provided, and it can not be modified again. These assumptions were identified as weak security practices with known workarounds. It is possible for a malicious pull request to mutate the shared cache and embed untrusted artifacts, which may later be executed in workflow executions with access to secrets, risking the confidentiality of those secrets. In order to eliminate this risk, workflows executing with the `pull_request` and `pull_request_target` events have their write operations to the cache isolated to future workflow executions from the same pull request. They can continue to read from the shared cache if applicable. If using an external cache server configuration, both the cache server and other instances of the runner must be running the same software version. The recommended upgrade procedure in this configuration is to bring all runners offline, upgrade the cache server to the latest release and bring it online, and then bring all other runners online. - [PR](https://code.forgejo.org/forgejo/runner/pulls/924): fix(security): ensure unique names for container images created by actions Without this fix, when a workflow ran a local [docker action](https://forgejo.org/docs/next/user/actions/actions/#docker-actions) (e.g. the [example in the end-to-end tests](https://code.forgejo.org/forgejo/end-to-end/src/commit/8f920b4b7adcb920e435db1acd02407b2312ab74/actions/example-force-rebuild/.forgejo/workflows/test.yml)), it used an image tag that could collide with other workflows that happen to use the same name. The workaround for older runner versions is to set [`[container].force_rebuild: true`](https://forgejo.org/docs/next/admin/actions/runner-installation/#configuration) in the runner configuration file. ***   - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/925): fix(security): prevent on: pull\_request actions from mutating caches of other workflow events - [PR](https://code.forgejo.org/forgejo/runner/pulls/924): fix(security): ensure unique names for container images created by actions - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/921): Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.4 - [PR](https://code.forgejo.org/forgejo/runner/pulls/922): chore: explain the difference between `job_level` and `level` - [PR](https://code.forgejo.org/forgejo/runner/pulls/917): chore: add reminder of how to run a local test - [PR](https://code.forgejo.org/forgejo/runner/pulls/919): chore: unify cascade-setup-forgejo with cascade-forgejo - [PR](https://code.forgejo.org/forgejo/runner/pulls/873): chore: remove `github.com/pkg/errors` - [PR](https://code.forgejo.org/forgejo/runner/pulls/915): Update module github.com/stretchr/testify to v1.11.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/914): Update module google.golang.org/protobuf to v1.36.8 - [PR](https://code.forgejo.org/forgejo/runner/pulls/907): Update module go.etcd.io/bbolt to v1.4.3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/906): test: remove internal timeout in TestRunnerCacheConfiguration - [PR](https://code.forgejo.org/forgejo/runner/pulls/902): chore: skip tests that require Forgejo if it is not available - [PR](https://code.forgejo.org/forgejo/runner/pulls/903): chore: rework the README - [PR](https://code.forgejo.org/forgejo/runner/pulls/904): Update github.com/go-viper/mapstructure/v2 (indirect) to v2.4.0 \[SECURITY] - [PR](https://code.forgejo.org/forgejo/runner/pulls/900): chore: remove TestRunContext\_GetGitHubContext - [PR](https://code.forgejo.org/forgejo/runner/pulls/899): chore: do not force GOPROXY - [PR](https://code.forgejo.org/forgejo/runner/pulls/890): Update module github.com/vektra/mockery/v2 to v2.53.5 - [PR](https://code.forgejo.org/forgejo/runner/pulls/893): chore: fix .PHONY lint targets - [PR](https://code.forgejo.org/forgejo/runner/pulls/898): Update dependency forgejo/runner to v9.1.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/897): Update code.forgejo.org/forgejo/runner Docker tag to v9.1.1  ### [`v9.1.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.1.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.1.0...v9.1.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/896): fix: an error from a SKIPPED job does not transform it into a FAILURE - [PR](https://code.forgejo.org/forgejo/runner/pulls/878): fix: artifact cache DB not using indexes for searching - [PR](https://code.forgejo.org/forgejo/runner/pulls/884): fix: RunsOn in jobparser is not used by the runner but it is used by Forgejo \[skip cascade] - [PR](https://code.forgejo.org/forgejo/runner/pulls/882): fix: fixes the build on FreeBSD - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/888): chore: replace gopkg.in/yaml.v3 with go.yaml.in/yaml/v3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/894): chore: merge ACT and runner unit & integration tests together - [PR](https://code.forgejo.org/forgejo/runner/pulls/861): test: run all tests with the data race detector - [PR](https://code.forgejo.org/forgejo/runner/pulls/867): chore: fix 'false positive' data race detection in Id/Number default init - [PR](https://code.forgejo.org/forgejo/runner/pulls/889): test: add an integration test for embedded runner cache - [PR](https://code.forgejo.org/forgejo/runner/pulls/891): chore: when comparing mockery generated files, ignore the version - [PR](https://code.forgejo.org/forgejo/runner/pulls/875): chore: fix data race in reusable workflows with inherited secrets - [PR](https://code.forgejo.org/forgejo/runner/pulls/886): chore: revert mockery v3 update and validate mockery updates - [PR](https://code.forgejo.org/forgejo/runner/pulls/883): chore: cascade forgejo pull request out of the runner branch or PR - [PR](https://code.forgejo.org/forgejo/runner/pulls/879): Update dependency forgejo/runner to v9.1.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/880): chore: go.mod should use the minor version only - [PR](https://code.forgejo.org/forgejo/runner/pulls/877): Update code.forgejo.org/forgejo/runner Docker tag to v9.1.0  ### [`v9.1.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.1.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.0.3...v9.1.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/847): feat: support actions with 'using: node24' - [PR](https://code.forgejo.org/forgejo/runner/pulls/647): feat: fail when using an invalid label during non interactive registration - [PR](https://code.forgejo.org/forgejo/runner/pulls/821): feat: added support for dereferenced map properties - [PR](https://code.forgejo.org/forgejo/runner/pulls/827): feat: support evaluation of concurrency clauses in runner - [PR](https://code.forgejo.org/forgejo/runner/pulls/824): feat: log parsed commands and step summary - [PR](https://code.forgejo.org/forgejo/runner/pulls/826): feat: added info log when container image platform mismatched - [PR](https://code.forgejo.org/forgejo/runner/pulls/805): feat: wait for services to be healthy before starting a job - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/870): fix: report the job as failed when the `[runner].timeout` expires - [PR](https://code.forgejo.org/forgejo/runner/pulls/871): fix: data race in 'runs-on' expressions causes incorrect job labels during execution - [PR](https://code.forgejo.org/forgejo/runner/pulls/862): fix: race condition in matrix job result state may result in failed jobs being marked as successful - [PR](https://code.forgejo.org/forgejo/runner/pulls/808): fix: ensure unique container names for reusable workflows - [PR](https://code.forgejo.org/forgejo/runner/pulls/865): fix: data race condition causing incorrect `shell` on a task step if it referenced a matrix variable - [PR](https://code.forgejo.org/forgejo/runner/pulls/850): fix: use a unique random name to derive network and volumes for a job - [PR](https://code.forgejo.org/forgejo/runner/pulls/849): fix: the configuration must not be used as temporary storage - [PR](https://code.forgejo.org/forgejo/runner/pulls/851): fix: container removal is the runner responsibility - [PR](https://code.forgejo.org/forgejo/runner/pulls/834): fix: update reusable workflow input handling - [PR](https://code.forgejo.org/forgejo/runner/pulls/845): fix(security): multline secrets trivially transformed are redacted - [PR](https://code.forgejo.org/forgejo/runner/pulls/833): fix: prevent unintended input replacement in reusable workflows with workflow\_dispatch when using workflow\_call - [PR](https://code.forgejo.org/forgejo/runner/pulls/818): fix: composite action input pollution - [PR](https://code.forgejo.org/forgejo/runner/pulls/829): fix: prevent space prefix/suffix in runner labels - [PR](https://code.forgejo.org/forgejo/runner/pulls/825): fix: valueMasker concurrent map write - [PR](https://code.forgejo.org/forgejo/runner/pulls/820): fix: short sha has at least four digits - [PR](https://code.forgejo.org/forgejo/runner/pulls/819): fix: amd64 arch to X64 ([#2580](https://github.com/forgejo/runner/issues/2580)) - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/869): test: fix data race triggered by testing mocks in TestSetJobResultConcurrency - [PR](https://code.forgejo.org/forgejo/runner/pulls/868): Update module github.com/vektra/mockery/v2 to v3.5.3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/866): docs: clarify actions\_cache\_url\_option - [PR](https://code.forgejo.org/forgejo/runner/pulls/864): chore: prevent 'false positive' data race detection with Job.If \[skip cascade] - [PR](https://code.forgejo.org/forgejo/runner/pulls/863): Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.0.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/860): test: fix data race in TestNewParallelExecutor... tests - [PR](https://code.forgejo.org/forgejo/runner/pulls/859): chore: prevent "false positive" data race detection w/ ContainerDaemonSocket - [PR](https://code.forgejo.org/forgejo/runner/pulls/858): test: prevent data race detection in TestActionCache - [PR](https://code.forgejo.org/forgejo/runner/pulls/857): chore: modernize code - [PR](https://code.forgejo.org/forgejo/runner/pulls/854): chore: refactor NewDockerVolumeRemoveExecutor - [PR](https://code.forgejo.org/forgejo/runner/pulls/853): chore: panic if a random name cannot be created - [PR](https://code.forgejo.org/forgejo/runner/pulls/852): Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.4.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/839): chore: require Go v1.24 - [PR](https://code.forgejo.org/forgejo/runner/pulls/843): chore: integration tests can run for more than 10 minutes - [PR](https://code.forgejo.org/forgejo/runner/pulls/844): chore: use t.Context for tests, activate usetesting for lint + add t.TempDir and t.Chdir - [PR](https://code.forgejo.org/forgejo/runner/pulls/846): chore(tests): differentiate 'failed to copy content' errors - [PR](https://code.forgejo.org/forgejo/runner/pulls/842): chore: set the Kind/Chore label on dependencies upgrades - [PR](https://code.forgejo.org/forgejo/runner/pulls/840): Update module github.com/imdario/mergo to v1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/841): Update module github.com/vektra/mockery/v2 to v3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/838): Update code.forgejo.org/forgejo/runner Docker tag to v9 - [PR](https://code.forgejo.org/forgejo/runner/pulls/774): chore: remove the alpha quality warning, it is secure enough to be used in production - [PR](https://code.forgejo.org/forgejo/runner/pulls/837): Update module golang.org/x/term to v0.34.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/836): Update module github.com/docker/go-connections to v0.6.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/822): chore: "unable to get git repo" is a debug message, not a warning - [PR](https://code.forgejo.org/forgejo/runner/pulls/832): Update dependency go to v1.24 - [PR](https://code.forgejo.org/forgejo/runner/pulls/831): chore: cancel context used in CI when running workflows - [PR](https://code.forgejo.org/forgejo/runner/pulls/828): Update module google.golang.org/protobuf to v1.36.7 - [PR](https://code.forgejo.org/forgejo/runner/pulls/830): test: fix failures caused by node24 usage in hello-world-javascript-action \[skip cascade] - [PR](https://code.forgejo.org/forgejo/runner/pulls/815): chore: restore GitHub windows build workflow - [PR](https://code.forgejo.org/forgejo/runner/pulls/817): chore: run\_context: add GITHUB\_RUN\_ATTEMPT ([#2458](https://github.com/forgejo/runner/issues/2458)) - [PR](https://code.forgejo.org/forgejo/runner/pulls/814): Update dependency go to v1.23.12 - [PR](https://code.forgejo.org/forgejo/runner/pulls/812): Update dependency forgejo/runner to v9.0.3 - [PR](https://code.forgejo.org/forgejo/runner/pulls/811): chore: links to container images and documentation in the release  ### [`v9.0.3`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.0.3) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.0.2...v9.0.3) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes ***   - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/804): feat: lxc-systemd defaults to using Forgejo runner 9.0.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/784): feat: --health-\* options are allowed in `job.<id>.services.<id>.options` - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/810): fix: log the URL of the action when it fails schema validation - [PR](https://code.forgejo.org/forgejo/runner/pulls/798): fix: lingering services/volumes/networks after jobs if cleanup takes >1min - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/806): chore: upgrade lxc-helpers - [PR](https://code.forgejo.org/forgejo/runner/pulls/627): chore: teach renovate about examples/lxc-systemd/forgejo-runner-service.sh - [PR](https://code.forgejo.org/forgejo/runner/pulls/807): Update module github.com/containerd/errdefs to v1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/803): chore: explain that part of the source is Apache 2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/790): chore(cleanup): dispatch workflows according to the role of the repository - [PR](https://code.forgejo.org/forgejo/runner/pulls/797): chore: unify forgejo image names location - [PR](https://code.forgejo.org/forgejo/runner/pulls/799): chore: replace docker hub with code.forgejo.org - [PR](https://code.forgejo.org/forgejo/runner/pulls/802): Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/801): Update module github.com/opencontainers/selinux to v1.12.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/800): Update module github.com/go-git/go-git/v5 to v5.16.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/796): Update module github.com/docker/cli to v28.3.3+incompatible - [PR](https://code.forgejo.org/forgejo/runner/pulls/795): Update dependency forgejo/release-notes-assistant to v1.4.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/794): Update module github.com/spf13/pflag to v1.0.7 - [PR](https://code.forgejo.org/forgejo/runner/pulls/793): Update module github.com/opencontainers/image-spec to v1.1.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/792): Update module go.etcd.io/bbolt to v1.4.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/791): Update module github.com/rhysd/actionlint to v1.7.7 - [PR](https://code.forgejo.org/forgejo/runner/pulls/787): Update module github.com/go-git/go-billy/v5 to v5.6.2 - [PR](https://code.forgejo.org/forgejo/runner/pulls/789): chore: the release link to RELEASE-NOTES.md is no longer needed (take 2)  ### [`v9.0.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.0.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.0.1...v9.0.2)   - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/783): feat: use cache-{from,to}: type=gha in the docker/build-push-action example - [PR](https://code.forgejo.org/forgejo/runner/pulls/781): feat: add an LXC based example of docker/build-push-action usage - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/786): fix: vars context is allowed in default values of action inputs - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/788): Update <https://data.forgejo.org/forgejo/forgejo-build-publish> action to v5.4.1 - [PR](https://code.forgejo.org/forgejo/runner/pulls/782): chore: the release link to RELEASE-NOTES.md is no longer needed - [PR](https://code.forgejo.org/forgejo/runner/pulls/780): chore(ci): autoremove when running a workflow in a test - [PR](https://code.forgejo.org/forgejo/runner/pulls/778): Update dependency forgejo/release-notes-assistant to v1.3.6  ### [`v9.0.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.0.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v9.0.0...v9.0.1)   - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/777): chore: to allow the runner to be imported, v9 needs to be in the go module - [PR](https://code.forgejo.org/forgejo/runner/pulls/776): Update module github.com/docker/docker to v28.3.3+incompatible \[SECURITY] - [PR](https://code.forgejo.org/forgejo/runner/pulls/775): chore: release notes are now published together with the release  ### [`v9.0.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v9.0.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v8.0.1...v9.0.0) Workflows and actions go through a schema validation and the runner will not start a job if they do not pass. Some existing workflows or actions may have syntax errors that did not prevent them from running with versions 7.0.0 and below but they will no longer work with versions 8.0.0 and above. Existing workflows can be verified and fixed before upgrading by using the new `forgejo-runner validate` command. For instance, the following will try to validate workflows and/or actions found in the Git repository at `https://example.com/my/repo` (a local directory at the root of a Git repository can also be used): ```sh $ forgejo-runner validate --repository https://example.com/my/repo .forgejo/workflows/release.yml workflow schema validation OK .forgejo/workflows/test.yml workflow schema validation OK ``` If the error is not immediately obvious, please file an issue with a copy of the failed workflow and revert to using version 7.0.0 until it is resolved. ***   - features including breaking changes - [PR](https://code.forgejo.org/forgejo/runner/pulls/740): feat!: remove support for using an artifact server via CLI - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/757): feat: the new `forgejo-runner validate` command can be used to verify if an action or a workflow is conformant with the expected schema. `forgejo-runner validate --repository https://example.com/my/repository` will validate all the workflows and actions a Git repository contains. Alternatively `forgejo-runner validate --path myaction/action.yml --action` or `forgejo-runner validate --path .forgejo/workflows/test.yml --workflow` can be used to validate a single file. It is recommended to use these commands to verify existing actions and workflows pass before upgrading to [Forgejo runner v8.0.0](https://code.forgejo.org/forgejo/runner/src/branch/main/RELEASE-NOTES.md#8-0-0) or above to not disrupt existing workflows. - [PR](https://code.forgejo.org/forgejo/runner/pulls/768): feat(security): recommend security issues are reported to <security@forgejo.org> - [PR](https://code.forgejo.org/forgejo/runner/pulls/769): feat(tests): cmd executeCommand captures stderr & stdout - [PR](https://code.forgejo.org/forgejo/runner/pulls/753): feat: merge forgejo/act/pkg in the act directory - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/770): fix: allow expressions in action descriptions and incomplete action inputs - [PR](https://code.forgejo.org/forgejo/runner/pulls/761): fix: the vars context is allowed in an action step env - [PR](https://code.forgejo.org/forgejo/runner/pulls/766): fix: allow expressions in step and job uses: - [PR](https://code.forgejo.org/forgejo/runner/pulls/762): fix(ci): use code.forgejo.org instead of the docker hub - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/772): Restore `contrib/forgejo-runner.service` - [PR](https://code.forgejo.org/forgejo/runner/pulls/767): chore: remove unused/unmaintained files - [PR](https://code.forgejo.org/forgejo/runner/pulls/759): chore: a single testutils for both act and the runner - [PR](https://code.forgejo.org/forgejo/runner/pulls/758): chore: renovate must not look at any testdata subdirectory - [PR](https://code.forgejo.org/forgejo/runner/pulls/756): chore(release-notes): finalize 9.0.0 - [PR](https://code.forgejo.org/forgejo/runner/pulls/754): chore: use the act directory instead of <https://code.forgejo.org/forgejo/act> - [PR](https://code.forgejo.org/forgejo/runner/pulls/752): chore(docs): naked `host` schema in 8.0.0 is a breaking change - [PR](https://code.forgejo.org/forgejo/runner/pulls/750): chore: disable package name checks for revive \[skip cascade]  </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

renovate-bot added 1 commit 2025-10-03 20:10:17 +00:00

chore(deps): update code.forgejo.org/forgejo/runner docker tag to v11 0a22fa6d48

renovate-bot changed title from ~~chore(deps): update code.forgejo.org/forgejo/runner docker tag to v11~~ to chore(deps): update code.forgejo.org/forgejo/runner docker tag to v11 - autoclosed

2025-10-04 10:10:10 +00:00

renovate-bot closed this pull request

2025-10-04 10:10:11 +00:00

Pull request closed

This pull request cannot be reopened because the branch was deleted.

Sign in to join this conversation.

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: coop-cloud/forgejo-runner#3