Re: [PR] feat(ci): add GHA workflow to sync lockfiles for version bumping PRs in frontend's npm workspaces [superset]

via GitHub Thu, 05 Feb 2026 23:27:37 -0800


codeant-ai-for-open-source[bot] commented on PR #37738:
URL: https://github.com/apache/superset/pull/37738#issuecomment-3858500517


   ## **Sequence Diagram**
   
   This PR adds a GitHub Actions workflow that, when Dependabot opens a PR 
touching frontend workspace packages/plugins, runs npm install to update the 
root lockfile and commits the synchronized lockfile back to the PR.
   
   ```mermaid
   sequenceDiagram
       participant Dependabot
       participant GitHub
       participant Runner
       participant Node/npm
       participant Repo
   
       Dependabot->>GitHub: Open PR touching superset-frontend/packages/** or 
plugins/**
       GitHub->>Runner: Trigger "Sync lockfile for Dependabot PRs" workflow 
(actor=dependabot[bot])
       Runner->>Repo: Checkout code (ref = head_ref)
       Runner->>Node/npm: Setup Node from .nvmrc and run npm install
       Node/npm-->>Runner: Updated lockfile(s)
       Runner->>Repo: Commit & push lockfile changes back to PR
   ```
   
   ---
   *Generated by [CodeAnt AI](https://codeant.ai)*
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Re: [PR] feat(ci): add GHA workflow to sync lockfiles for version bumping PRs in frontend's npm workspaces [superset]

Reply via email to