[SPARK-56724][INFRA][4.1] Make docker/* GitHub Actions up-to-date#56525
Closed
sarutak wants to merge 1 commit into
Closed
[SPARK-56724][INFRA][4.1] Make docker/* GitHub Actions up-to-date#56525sarutak wants to merge 1 commit into
sarutak wants to merge 1 commit into
Conversation
This PR upgrades four `docker/*` GitHub Actions to the latest commit hashes approved by the Apache Software Foundation in [`infrastructure-actions/approved_patterns.yml`](https://github.com/apache/infrastructure-actions/blob/main/approved_patterns.yml): | Action | Before (tag) | After (tag) | | --- | --- | --- | | `docker/build-push-action` | `10e90e3645eae34f1e60eeb005ba3a3d33f178e8` (v6.19.2) | `bcafcacb16a39f128d818304e6c9c0c18556b85f` (v7.1.0) | | `docker/login-action` | `c94ce9fb468520275223c153574b00df6fe4bcc9` (v3.7.0) | `4907a6ddec9925e35a0a9e82d7399ccc52663121` (v4.1.0) | | `docker/setup-buildx-action` | `8d2750c68a42422c14e847fe6c8ac0403b4cbd6f` (v3.12.0) | `4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd` (v4.0.0) | | `docker/setup-qemu-action` | `29109295f81e9208d7d86ff1c6c12d2833863392` (v3.6.0) | `ce360397dd3f832beb865e1373c09c0e9f86d70a` (v4.0.0) | Updated workflow files (25 references in total): - `.github/workflows/build_and_test.yml` (8 references) - `.github/workflows/build_infra_images_cache.yml` (17 references) The previously pinned hashes were one major version behind upstream and predate the Node.js 20 runtime that Docker actions require going forward. Apache Infrastructure has already approved the newer hashes in `approved_patterns.yml`, so this PR brings Apache Spark's Docker actions onto the supported baseline while keeping ASF policy compliance. No. CI-only change; no Spark runtime, API, or release artifact is affected. Pass the CIs. Generated-by: Claude Code (claude-opus-4-7) Closes apache#55687 from dongjoon-hyun/SPARK-56724. Authored-by: Dongjoon Hyun <dongjoon@apache.org> Signed-off-by: Dongjoon Hyun <dongjoon@apache.org>
dongjoon-hyun
approved these changes
Jun 15, 2026
dongjoon-hyun
left a comment
dongjoon-hyun
left a comment
Member
There was a problem hiding this comment.
+1, LGTM. Thank you, @sarutak .
Member
|
You know that you can make a PR to branch-4.2 too. It's okay to make a PR unless we merge it. |
HyukjinKwon
approved these changes
Jun 15, 2026
sarutak
pushed a commit
that referenced
this pull request
Jun 17, 2026
### What changes were proposed in this pull request? Update the commit SHAs of the following Docker-related GitHub Actions in `branch-4.1` to match the ones registered in the Apache organization's GitHub Actions allowlist: - `docker/login-action` - `docker/setup-qemu-action` - `docker/setup-buildx-action` - `docker/build-push-action` ### Why are the changes needed? CI on `branch-4.1` fails with the error: > The actions docker/login-actionc94ce9fb..., docker/setup-qemu-action29109295..., docker/setup-buildx-action8d2750c6..., and docker/build-push-action10e90e36... are not allowed in apache/spark because all actions must be from a repository owned by your enterprise, created by GitHub, or match one of the patterns... https://github.com/apache/spark/actions/runs/27502448688 The `master` branch was already updated to the new SHAs, but `branch-4.1` still had the old ones that are no longer in the allowlist. - #55687 ### Does this PR introduce _any_ user-facing change? No. ### How was this patch tested? CI should pass with this change. ### Was this patch authored or co-authored using generative AI tooling? Kiro CLI / Claude Closes #56525 from sarutak/update-docker-actions-branch-4.1. Authored-by: Dongjoon Hyun <dongjoon@apache.org> Signed-off-by: Kousuke Saruta <sarutak@apache.org>
Member
Author
|
Merged to |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What changes were proposed in this pull request?
Update the commit SHAs of the following Docker-related GitHub Actions in
branch-4.1to match the ones registered in the Apache organization's GitHub Actions allowlist:docker/login-actiondocker/setup-qemu-actiondocker/setup-buildx-actiondocker/build-push-actionWhy are the changes needed?
CI on
branch-4.1fails with the error:https://github.com/apache/spark/actions/runs/27502448688
The
masterbranch was already updated to the new SHAs, butbranch-4.1still had the old ones that are no longer in the allowlist.docker/*GitHub Actions up-to-date #55687Does this PR introduce any user-facing change?
No.
How was this patch tested?
CI should pass with this change.
Was this patch authored or co-authored using generative AI tooling?
Kiro CLI / Claude