Skip to content

ci: bump actions to Node 24 runtime versions#512

Open
mbruzda-splunk wants to merge 1 commit into
developfrom
fix/node24-action-bumps
Open

ci: bump actions to Node 24 runtime versions#512
mbruzda-splunk wants to merge 1 commit into
developfrom
fix/node24-action-bumps

Conversation

@mbruzda-splunk

@mbruzda-splunk mbruzda-splunk commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

What

Bumps all GitHub Actions still bundling the deprecated Node 20 runtime to their first major version that targets Node 24, resolving the Node.js 20 is deprecated warnings across all jobs in this workflow family.

Action Before After
actions/checkout v4 v5
actions/setup-python v5 v6
actions/download-artifact v4 v7
actions/upload-artifact v4 v6
actions/cache v4 v5
amannn/action-semantic-pull-request v5.5.3 v6.1.1
aws-actions/configure-aws-credentials v4 v6
dorny/test-reporter v1.9.1 v3.0.0
geekyeggo/delete-artifact v5 v6
softprops/action-gh-release v2 v3

Applied consistently across all four workflow files:

  • reusable-build-test-release.yml
  • build-test-release.yaml
  • reusable-publish-to-splunkbase.yml
  • reusable-validate-deploy-docs.yml

Left unchanged (already Node 24, or docker/composite)

setup-java@v5, create-github-app-token@v3, amazon-ecr-login@v2, svenstaro/upload-release-action@v2, and all docker/composite actions (splunk/*, fsfe/reuse-action, pre-commit/action, trufflehog, skywalking-eyes).

Testing

Ran the full build-test-release pipeline on splunk-add-on-for-microsoft-cloud-services pointed at this branch — pipeline succeeded, and the Node 20 deprecation warnings are gone from every job that consumes these actions (build, setup, meta, unit tests, all appinspect jobs, etc.).

https://github.com/splunk/splunk-add-on-for-microsoft-cloud-services/actions/runs/28662878022

Known remaining warnings (out of scope — external sources)

  • pre-commit job → actions/cache@v4 is hardcoded inside pre-commit/action@v3.0.1 (latest release).
  • semgrep / sast-scan job → checkout@v4 / upload-artifact@v4 come from splunk/sast-scanning/.github/workflows/sast-scan.yml@main (separate repo; addressed here: ci: bump actions to Node 24 runtime versions sast-scanning#7).

🤖 Generated with Claude Code

Bumps all GitHub Actions still bundling the deprecated Node 20 runtime
to their first major version that targets Node 24, resolving the
"Node.js 20 is deprecated" warnings across all jobs.

- actions/checkout v4 -> v5
- actions/setup-python v5 -> v6
- actions/download-artifact v4 -> v7
- actions/upload-artifact v4 -> v6
- actions/cache v4 -> v5
- amannn/action-semantic-pull-request v5.5.3 -> v6.1.1
- aws-actions/configure-aws-credentials v4 -> v6
- dorny/test-reporter v1.9.1 -> v3.0.0
- geekyeggo/delete-artifact v5 -> v6
- softprops/action-gh-release v2 -> v3

Actions already on Node 24 (setup-java@v5, create-github-app-token@v3,
amazon-ecr-login@v2, upload-release-action@v2) and docker/composite
actions (splunk/*, reuse-action, pre-commit, trufflehog,
skywalking-eyes) are unchanged.

Co-Authored-By: Claude <noreply@anthropic.com>
@mbruzda-splunk mbruzda-splunk requested a review from a team as a code owner July 3, 2026 14:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant