This is an automated email from the ASF dual-hosted git repository. hainenber pushed a commit to branch feat/sync-lock-file-for-dependabot-prs-in-superset-frontend-workspaces in repository https://gitbox.apache.org/repos/asf/superset.git
commit cf8094cbc866be90f15403c4f8142229c5aea8fe Author: hainenber <[email protected]> AuthorDate: Fri Feb 6 14:15:31 2026 +0700 feat(ci): add GHA workflow to sync lockfiles for version bumping PRs in frontend's npm workspaces Signed-off-by: hainenber <[email protected]> --- ...e-for-dependabot-prs-in-frontend-workspaces.yml | 38 ++++++++++++++++++++++ 1 file changed, 38 insertions(+) diff --git a/.github/workflows/sync-lockfile-for-dependabot-prs-in-frontend-workspaces.yml b/.github/workflows/sync-lockfile-for-dependabot-prs-in-frontend-workspaces.yml new file mode 100644 index 0000000000..740e62aa92 --- /dev/null +++ b/.github/workflows/sync-lockfile-for-dependabot-prs-in-frontend-workspaces.yml @@ -0,0 +1,38 @@ +name: "Sync lockfile for Dependabot PRs in frontend workspaces" + +on: + pull_request: + paths: + - 'superset-frontend/packages/**' + - 'superset-frontend/plugins/**' + +jobs: + sync-lockfile-for-npm-dependabot-prs: + if: github.actor == 'dependabot[bot]' + permissions: + contents: write + runs-on: ubuntu-24.04 + steps: + - name: Checkout code + uses: actions/checkout@v6 + with: + ref: ${{ github.head_ref }} + fetch-depth: 0 + + - name: Setup Node + uses: actions/setup-node@v6 + with: + node-version-file: './superset-frontend/.nvmrc' + + - name: Sync lockfile + run: npm install + + - name: Commit changes + run: | + git config --global user.email "[email protected]" + git config --global user.name "GitHub Action" + git add . + # Only commit if there are actual change in lockfile + git diff-index --quiet HEAD || git commit -m "chore: sync lockfile" + git push + continue-on-error: true
