Skip to content

fix: pin uv version and add caching to CI workflows #127

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jmeridth merged 1 commit into from
Mar 12, 2026
Merged

fix: pin uv version and add caching to CI workflows #127

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions .github/workflows/linter.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,10 @@ on:
pull_request:
branches: [main]

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

permissions:
contents: read

Expand All @@ -27,6 +31,7 @@ jobs:
- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
with:
version: "0.10.9"
enable-cache: true
Comment on lines 32 to 35
Copy link

Copilot AI Mar 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

enable-cache: true relies on the Actions cache service, but the workflow/job permissions don’t grant any actions scope (only contents, packages, statuses). With permissions set explicitly, actions defaults to none, which can prevent cache restore/save. Add actions: write (or actions: read if you only want restores) when enabling uv caching.

Copilot uses AI. Check for mistakes.
- name: Install dependencies
run: |
Expand Down
5 changes: 5 additions & 0 deletions .github/workflows/python-package.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,10 @@ on:
pull_request:
branches: [main]

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

permissions:
contents: read

Expand All @@ -27,6 +31,7 @@ jobs:
- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
with:
version: "0.10.9"
enable-cache: true
Comment on lines 33 to 35
Copy link

Copilot AI Mar 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This workflow enables setup-uv caching (enable-cache: true) but the workflow-level permissions only grants contents: read, leaving actions as none. GitHub’s cache API requires actions: write to save caches (and actions: read to restore), so the caching step may fail under the restricted token. Add the appropriate actions permission if caching is intended.

Copilot uses AI. Check for mistakes.
- name: Set up Python ${{ matrix.python-version }}
run: uv python install ${{ matrix.python-version }}
Expand Down
3 changes: 3 additions & 0 deletions .github/workflows/update-uv-lock.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,9 @@ jobs:

- name: Install uv
uses: astral-sh/setup-uv@5a095e7a2014a4212f075830d4f7277575a9d098 # v7.3.1
with:
version: "0.10.9"
enable-cache: true
Comment on lines +32 to +34
Copy link

Copilot AI Mar 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

enable-cache: true will attempt to use the GitHub Actions cache, but this workflow explicitly sets permissions and does not grant any actions permission. With restricted GITHUB_TOKEN permissions, cache restore/save can fail (often with "Resource not accessible by integration"). Consider adding actions: write (or at least actions: read if you only want restores) to the workflow/job permissions when enabling uv caching.

Copilot uses AI. Check for mistakes.

- name: Update uv.lock
run: uv lock
Expand Down
Loading