neil/cache
1
0
Fork 0
mirror of https://github.com/actions/cache.git synced 2026-01-30 07:54:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
753 Commits 104 Branches 77 Tags
Commit Graph

753 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Bassem Dghaidi
2e9cddfa69 Use wernight/squid (permissive proxy) and fix verification tests 
- Switch from ubuntu/squid to wernight/squid which allows all HTTPS CONNECT
- Fix verification tests to explicitly use -x flag to prove proxy works
- Tests now verify:
  1. Proxy accepts and forwards requests (using curl -x)
  2. Direct blob storage access is blocked by iptables
  3. Blob storage access through proxy succeeds

The cache action should now fail because it doesn't use the proxy,
not because the proxy rejects the connection.
 2026-01-29 09:41:44 -08:00
Bassem Dghaidi
34472f2415 Add explicit iptables rules to block blob storage IPs 
The previous firewall setup relied on a catch-all REJECT rule for blob
storage, but it wasn't blocking traffic. Now we explicitly resolve and
block the IPs for productionresultssa0-3.blob.core.windows.net using
iptables -I OUTPUT 1 to insert rules at the top of the chain.
 2026-01-29 09:31:15 -08:00
Bassem Dghaidi
e0d51ac399 Switch to sameersbn/squid image and simplify verification 
- Replace ubuntu/squid with sameersbn/squid:latest (more reliable)
- Remove shared volume mounts that may cause permission issues
- Simplify verification steps since we can't access service container logs
- The test validates proxy works by verifying cache operations succeed
  when direct access is blocked by iptables
 2026-01-29 09:27:29 -08:00
Bassem Dghaidi
26cd8c103b Add wait loop for squid-proxy service to be resolvable 2026-01-29 09:22:42 -08:00
Bassem Dghaidi
0d4af5e74f Remove proxy env from Fetch GitHub meta step - must run before firewall setup 2026-01-29 09:20:18 -08:00
Bassem Dghaidi
61ba4b9b0a Merge branch 'Link-/fix-proxy-integration-tests' of github.com:actions/cache into Link-/fix-proxy-integration-tests 2026-01-29 09:18:24 -08:00
Bassem Dghaidi
2f8c9d682d Use shared volume between job container and squid service for log access 2026-01-29 09:17:52 -08:00
Bassem Dghaidi
56cc052f4d Use shared volume between job container and squid service for log access 2026-01-29 09:13:07 -08:00
Bassem Dghaidi
ef4c2110b5 Actually verify that the traffic and calls went through the proxy 2026-01-29 08:33:17 -08:00
Bassem Dghaidi
c5ddd32390 Fix what gets blocked and what passes through 2026-01-29 08:23:41 -08:00
Bassem Dghaidi
6bfa66432f Fix proxy integration tests 2026-01-29 07:56:38 -08:00
Bassem Dghaidi
b45623637f
Merge pull request #1690 from XZTDean/docs/v5-example-update 
docs: Update examples to use the latest version
 2026-01-29 11:36:35 +01:00
Bassem Dghaidi
bdb94ce451
Merge branch 'main' into docs/v5-example-update 2026-01-29 11:32:26 +01:00
Bassem Dghaidi
cb6ea63971
Merge pull request #1699 from actions/Link-/fix-workflow-permissions 
Fix workflow permissions and cleanup workflow names / formatting
 2026-01-29 11:31:19 +01:00
Bassem Dghaidi
49bc452f55 Merge branch 'Link-/fix-workflow-permissions' of github.com:actions/cache into Link-/fix-workflow-permissions 2026-01-29 02:27:40 -08:00
Bassem Dghaidi
1e06c934a1
Merge branch 'main' of github.com:actions/cache into Link-/fix-workflow-permissions 2026-01-29 02:27:32 -08:00
Bassem Dghaidi
a838313d22
Merge pull request #1697 from actions/alert-autofix-52 
Potential fix for code scanning alert no. 52: Workflow does not contain permissions
 2026-01-29 11:26:02 +01:00
Bassem Dghaidi
6e48a73476
Update .github/workflows/pr-opened-workflow.yml 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-01-29 11:25:11 +01:00
Bassem Dghaidi
9848277c90 Cleanup workflow file names 2026-01-29 02:19:45 -08:00
Bassem Dghaidi
94056f1871 Fix workflow permissions and cleanup 2026-01-29 02:17:35 -08:00
Bassem Dghaidi
b56bb3a202 Fix permissions for workflows/workflow.yml 2026-01-29 02:11:09 -08:00
Bassem Dghaidi
4a6586c009
Merge branch 'main' into alert-autofix-52 2026-01-29 11:04:16 +01:00
Bassem Dghaidi
0de23fd4eb
Merge pull request #1696 from actions/Link-/release-docs 
Add release instructions and update maintainer docs
 2026-01-29 11:03:40 +01:00
Bassem Dghaidi
4e38c8636e
Potential fix for code scanning alert no. 52: Workflow does not contain permissions 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
 2026-01-29 11:02:45 +01:00
Bassem Dghaidi
24e8b877a8 Add note 2026-01-29 01:58:41 -08:00
Bassem Dghaidi
3baa5f1c7b Update contribution docs 2026-01-29 01:58:05 -08:00
Bassem Dghaidi
cdf6c1fa76
Merge pull request #1695 from actions/Link-/prepare-5.0.3 
Prepare v5.0.3 release
v5.0.3 v5 		2026-01-29 10:43:43 +01:00
Bassem Dghaidi
a1bee22673 Add review for the @actions/http-client license 2026-01-29 01:39:24 -08:00
Bassem Dghaidi
46957638dc
Add licensed output 2026-01-29 01:31:38 -08:00
Bassem Dghaidi
dc73bb9f7b Upgrade dependencies and address security warnings 
- Bump `@actions/cache` to v5.0.5
- Bump `@actions/core` to v2.0.3
 2026-01-29 01:25:30 -08:00
Bassem Dghaidi
345d5c2f76
Add 5.0.3 builds 2026-01-29 01:24:44 -08:00
Ryan Ghadimi
8b402f58fb
Merge pull request #1692 from GhadimiR/main 
Bump @actions/cache to 5.0.3
v5.0.2 		2026-01-16 17:25:13 +00:00
Ryan Ghadimi
304ab5a070 license for httpclient 2026-01-16 13:30:00 +00:00
Ryan Ghadimi
609fc19e67 Update licensed record for cache 2026-01-16 12:28:12 +00:00
Ryan Ghadimi
b22231e43d Build 2026-01-16 11:42:17 +00:00
Ryan Ghadimi
93150cdfb3 Add PR link to releases 2026-01-16 11:39:29 +00:00
Ryan Ghadimi
9b8ca9f07e Bump actions/cache to 5.0.3 2026-01-16 11:35:54 +00:00
XZTDean
5b7a9f8ae5 docs: Update other actions in examples to the latest version 2025-12-15 06:34:21 -08:00
XZTDean
de99935c0c docs: Update examples to cache@v5 2025-12-15 06:15:33 -08:00
Salman Chishti
9255dc7a25
Merge pull request #1686 from actions/cache-v5.0.1-release 
prepare release v5.0.1
v5.0.1 		2025-12-12 16:35:06 +00:00
Salman Muin Kayser Chishti
8ff5423e8b chore: release v5.0.1 
- Bump version to 5.0.1
- Fix Node.js 24 punycode deprecation warning via @actions/cache@5.0.1
- Updates @azure/storage-blob to ^12.29.1

Related: #1685
 2025-12-12 16:25:01 +00:00
Salman Chishti
9233019a15
Merge pull request #1685 from salmanmkc/node24-storage-blob-fix 
fix: update @actions/cache for Node.js 24 punycode deprecation
 2025-12-12 16:16:21 +00:00
Salman Muin Kayser Chishti
b975f2bb84 fix: add peer property to package-lock.json for dependencies 2025-12-12 16:02:25 +00:00
Salman Muin Kayser Chishti
d0a0e18134 fix: update license files for @actions/cache, fast-xml-parser, and strnum 2025-12-12 15:49:07 +00:00
Salman Muin Kayser Chishti
74de208dcf fix: update @actions/cache to ^5.0.1 for Node.js 24 punycode fix 
Updates @actions/cache to version 5.0.1 which includes the @azure/storage-blob
update that fixes the punycode deprecation warning on Node.js 24.
 2025-12-12 15:48:37 +00:00
Salman Muin Kayser Chishti
ac7f1152ea peer 2025-12-12 14:25:41 +00:00
Salman Muin Kayser Chishti
b0f846b50b fix: update @actions/cache with storage-blob fix for Node.js 24 punycode deprecation 2025-12-12 14:14:24 +00:00
Salman Chishti
a783357455
Merge pull request #1684 from actions/prepare-cache-v5-release 
Prepare v5.0.0 release
v5.0.0 		2025-12-11 21:15:52 +00:00
Salman Muin Kayser Chishti
3bb0d78750 docs: highlight v5 runner requirement in releases 2025-12-11 21:12:24 +00:00
Salman Muin Kayser Chishti
054c1f2301 readme note 2025-12-11 21:11:33 +00:00