- Add validate-pr composite action for validating non-maintainer PRs against contribution guidelines and enforcing draft status (#153)
- Updater - Support CMake
GIT_TAGwith variable references like${FOO_REF}, resolving and updating the correspondingset()definition (#149)
- Sentry-CLI integration test action - Accept chunked ProGuard uploads for compatibility with Sentry CLI 3.x (#140)
- Danger - Add support for repository-specific dangerfiles (#129)
- Add
extra-dangerfileinput parameter to run custom Danger checks alongside shared workflow checks - Add
extra-install-packagesinput to install additional apt packages required by custom dangerfiles - Custom dangerfiles receive full Danger API access (
fail,warn,message,markdown,danger) - Enables repositories to extend Danger checks without overwriting shared workflow comments
- Add
- Sentry-CLI integration test action - Add
InvokeSentryResult::Events()method to extract events from envelopes (#137)
- Sentry-CLI integration test action - Replace literal "\n" with newlines (#138)
- Updater - Add
post-update-scriptinput parameter to run custom scripts after dependency updates (#130, #133)- Scripts receive original and new version as arguments
- Support both bash (
.sh) and PowerShell (.ps1) scripts - Enables workflows like updating lock files, running code generators, or modifying configuration files
- Updater - Add SSH key support and comprehensive authentication validation (#134)
- Add
ssh-keyinput parameter for deploy key authentication - Support using both
ssh-key(for git) andapi-token(for GitHub API) together - Add detailed token validation with actionable error messages
- Detect common token issues: expiration, whitespace, SSH keys in wrong input, missing scopes
- Validate SSH key format when provided
- Add
- Updater - Fix boolean input handling for
changelog-entryparameter and add input validation (#127) - Updater - Fix cryptic authentication errors with better validation and error messages (#134, closes #128)
-
Updater: The default value for
pr-strategyhas been changed fromcreatetoupdate. (#124) This change means the updater will now maintain a single PR that gets updated with new dependency versions (instead of creating separate PRs for each version). If you want to preserve the previous behavior of creating separate PRs, explicitly setpr-strategy: createin your workflow:- uses: getsentry/github-workflows/updater@v3 with: # ... other inputs ... pr-strategy: create # Add this to preserve previous behavior
In case you have existing open PRs created with the
createstrategy, you will need to remove these old branches manually as the new name would be a prefix of the old PRs, which git doesnt' allow. -
Updater and Danger reusable workflows are now composite actions (#114)
To update your existing Updater workflows:
### Before native: uses: getsentry/github-workflows/.github/workflows/updater.yml@v2 with: path: scripts/update-sentry-native-ndk.sh name: Native SDK secrets: # If a custom token is used instead, a CI would be triggered on a created PR. api-token: ${{ secrets.CI_DEPLOY_KEY }} ### After (v3.0) native: runs-on: ubuntu-latest steps: - uses: getsentry/github-workflows/updater@v3 with: path: scripts/update-sentry-native-ndk.sh name: Native SDK api-token: ${{ secrets.CI_DEPLOY_KEY }}
Note: If you were using SSH deploy keys with the v2 reusable workflow, the v3.0 composite action initially only supported tokens. SSH key support was restored in v3.1 (#134). To use SSH keys, update to v3.1+ and use the
ssh-keyinput:### With SSH key (v3.1+) native: runs-on: ubuntu-latest steps: - uses: getsentry/github-workflows/updater@v3 with: path: scripts/update-sentry-native-ndk.sh name: Native SDK ssh-key: ${{ secrets.CI_DEPLOY_KEY }}
To update your existing Danger workflows:
### Before danger: uses: getsentry/github-workflows/.github/workflows/danger.yml@v2 ### After danger: runs-on: ubuntu-latest steps: - uses: getsentry/github-workflows/danger@v3
- Updater now supports targeting non-default branches via the new
target-branchinput parameter (#118) - Updater now supports filtering releases by GitHub release title patterns, e.g. to support release channels (#117)
- Updater now supports dependencies without changelog files by falling back to git commit messages (#116)
- Danger - Improve conventional commit scope handling, and non-conventional PR title support (#105)
- Add Proguard artifact endpoint for Android builds in sentry-server (#100)
- Updater - Add CMake FetchContent support for automated dependency updates (#104)
- Updater - Prevent script injection vulnerabilities through workflow inputs (#98)
- Updater - Fix null reference error when changelog has no existing bullet points (#125)
- Updater - Fix bullet-point resolution when plain text precedes bullet points (#123)
- Improve changelog generation for non-tagged commits and edge cases (#115)
- Use GITHUB_WORKFLOW_REF instead of _workflow_version input parameter to automatically determine workflow script versions (#109)
- Updater - invalid workflow syntax - reverts recent switch to env vars (#97)
- Danger - Changelog checks can now additionally be skipped with a
skip-changeloglabel (#94)
- Gzip-compressed HTTP requests (#88)
- Don't update from a manually-updated prerelease to a latest stable release that is earlier than the prerelease (#78)
- Cross-repo links in changelog notes (#82)
- Truncate changelog to nearest SemVer even if actual previous version is missing (#84)
- Add support for prettier-ignore notes on
CHANGELOG.md(#75)
Example of notes before ## Unreleased Header on CHANGELOG.md
Important
If you are upgrading to the 1.x versions of the Sentry SDK from 0.x or below,
make sure you follow our migration guide first.
- Remove
octokit/request-actiondependency in favor of usinggh api(#74)
- Bump updater action dependency to fix an issue when creating/updating a PR (#71)
- Bump
actions/checkoutfrom v3 to v4 (#72) - Bump
styfle/cancel-workflow-actionfrom v0.12.0 to v0.12.1 (#73)
- Danger - fix pinned action check if the ref is at the end of the file (#70)
- Danger - recognize PR links based on full URL instead of just the PR number. (#68)
- Bump
danger/danger-jsfrom v11.1.2 to v11.3.1 (#59)
- Sentry-CLI integration test - set server script root so assets access works. (#63)
- Updater - non-bot commit-checks in PRs for SSH repository URLs (starting with
git@github.com:) (#62)
- Sentry-CLI integration test action: support envelopes (#58)
- Bump updater action dependencies (#61)
- Sentry-CLI integration test action (#54)
- Danger - add "github" to the list of whitelisted users for action-pinning check (#55)
- Updater - exit code in PR commit check if the PR doesn't exist yet (#51)
- Updater - don't update existing branches if there are manually added commits (#50)
- Danger - ignore "deps" and "test" PR flavors in changelog checks (#49)
- Updater - update deprecated actions (#48)
- Danger - check that a changelog entry is not added to an already released section (#44)
- Updater - add
changelog-entryoption to disable adding a changelog entry (#43)
- Skip local actions when checking pinned actions in Danger (#41)
- Support comments when parsing pinned actions in Danger (#40)
- Danger - check for that actions are pinned to a commit (#39)
- Show GitHub annotations when running from forks - can't post a PR comment in that case (#37)
- New reusable workflow,
danger.yml, to check Pull Requests with predefined rules (#34)
- Rename
api_tokensecret toapi-token(#21) - Change changelog target section header from "Features" to "Dependencies" (#19)
- Add
pr-strategyswitch to choose between creating new PRs or updating an existing one (#22) - Add
changelog-sectioninput setting to specify target changelog section header (#19)
- Preserve changelog bullet-point format (#20)
- Changelog section parsing when an entry text contains the section name in the text (#25)
Initial release & subsequent fixes - only major version v1 was kept & overridden for this release.