From f669c3e8db401cb49dff3962e1e7c91692d86697 Mon Sep 17 00:00:00 2001 From: Tim Treis Date: Mon, 8 Jun 2026 15:38:58 +0200 Subject: [PATCH] ci: bump codecov-action to v6 and fail CI on upload error codecov-action below v6.0.2 verifies the codecov CLI against Codecov's old Keybase key, which they bricked after migrating accounts, so uploads now fail with "Could not verify signature". v6 (= 6.0.2) ships the updated key. Also sets fail_ci_if_error: true (the cookiecutter-scverse template default) so a broken coverage upload surfaces as a CI failure instead of passing silently. Ref: https://github.com/codecov/codecov-action/issues/1956 Co-Authored-By: Claude Opus 4.8 --- .github/workflows/test.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 0bd76e8..0257009 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -86,7 +86,9 @@ jobs: uvx hatch run ${{ matrix.env.name }}:cov-report # report visibly uvx hatch run ${{ matrix.env.name }}:coverage xml # create report for upload - name: Upload coverage - uses: codecov/codecov-action@v5 + uses: codecov/codecov-action@v6 + with: + fail_ci_if_error: true # Check that all tests defined above pass. This makes it easy to set a single "required" test in branch # protection instead of having to update it frequently. See https://github.com/re-actors/alls-green#why.