Releases: gradle/gradle-build-action
v2.5.1
Fixes a regression in v2.5.0 that resulted in failure when running a workflow that has a name containing a comma.
Fixes
- Cache key Validation Error when workflow name contains a comma #756
Changelog
v2.5.0
This minor release fixes a couple of issues that affected the action in particular scenarios, and updates all dependencies to recent versions.
Fixes
- Parallel workflows containing jobs with the same name use the same cache key #699
- Build scans are not captured when GE plugin is applied within
settingsEvaluated#626
Full changelog: v2.4.2...v2.5.0
v2.4.2
This release disables the save/restore of configuration-cache data, since this functionality has been shown to be problematic.
Gradle 8.1 has made changes to this functionality which will require a more comprehensive rework of the action before we can re-enable this.
v2.4.1
This patch release updates a number of dependencies, including xmljs which was reported to have a security vulnerability (https://nvd.nist.gov/vuln/detail/CVE-2023-0842).
There is no evidence that this vulnerability affected the gradle-build-action.
Full changelog: v2.4.0...v2.4.1
v2.4.0
What's new
The v.2.4.0 release contains various library updates and fixes to fully support Gradle 8.
Notable changes:
- Update to
@actions/cache: 3.1.3should improve cache save/restore performance on Windows by using gnu tar and zstd when available. - Fix caching of extracted JDK toolchains for Gradle 7.6+ (e444647)
Full Changelog: v2.3.3...v2.4.0
v2.3.3
This patch release removes all uses of the deprecated set-output and set-state commands, and should remove deprecation warnings from build logs. See #461 and #477 for more details.
Full Changelog: v2.3.2...v2.3.3
v2.3.2
This patch release fixes an issue which could result in errors in the post-action step. See #441 for details.
Full Changelog: v2.3.1...v2.3.2
v2.3.1
This patch release addresses some security vulnerabilities reported by the CodeQL check:
- Removes
sourcemap-register.js: this triggered Incorrect suffix check - Patches the
@azure/loggerlibrary to avoid logging an environment variable value: this triggered Clear-text logging of sensitive information - Updates a bunch of development dependencies, which should not impact production code
The release contains no functional changes.
Full Changelog: v2.3.0...v2.3.1
v2.3.0
What's new
With v2.3.0, the gradle-build-action can now attempt to remove any unused files from the Gradle User Home directory before storing to the GitHub Actions cache. This can prevent cases where the size of cache entry grows over time.
Gradle Home cache cleanup is disabled by default. You can enable this feature for the action as follows:
gradle-home-cache-cleanup: trueSee the README for more details.
Full Changelog: v2.2.5...v2.3.0
v2.3.0-beta.1
Introduces experimental support for removing unused files from Gradle User Home prior to caching.