New data collected at 2026-01-12_00-02-07

actions-user · actions-user · commit 04669ef37489 · 2026-01-12T00:02:07.000Z
diff --git a/github-actions/forecast/R-CMD-check.yaml b/github-actions/forecast/R-CMD-check.yaml
@@ -6,7 +6,9 @@ on:
   pull_request:
     branches: [main, master]
 
-name: R-CMD-check
+name: R-CMD-check.yaml
+
+permissions: read-all
 
 jobs:
   R-CMD-check:
diff --git a/github-actions/forecast/pkgdown.yaml b/github-actions/forecast/pkgdown.yaml
@@ -9,7 +9,9 @@ on:
     types: [published]
   workflow_dispatch:
 
-name: pkgdown
+name: pkgdown.yaml
+
+permissions: read-all
 
 jobs:
   pkgdown:
@@ -22,7 +24,7 @@ jobs:
     permissions:
       contents: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: r-lib/actions/setup-pandoc@v2
 
@@ -41,7 +43,7 @@ jobs:
 
       - name: Deploy to GitHub pages 🚀
         if: github.event_name != 'pull_request'
-        uses: JamesIves/github-pages-deploy-action@v4.7.3
+        uses: JamesIves/github-pages-deploy-action@v4.7.6
         with:
           clean: false
           branch: gh-pages
diff --git a/github-actions/forecast/pr-commands.yaml b/github-actions/forecast/pr-commands.yaml
@@ -4,7 +4,9 @@ on:
   issue_comment:
     types: [created]
 
-name: Commands
+name: pr-commands.yaml
+
+permissions: read-all
 
 jobs:
   document:
@@ -13,8 +15,10 @@ jobs:
     runs-on: ubuntu-latest
     env:
       GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }}
+    permissions:
+      contents: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: r-lib/actions/pr-fetch@v2
         with:
@@ -50,8 +54,10 @@ jobs:
     runs-on: ubuntu-latest
     env:
       GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }}
+    permissions:
+      contents: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: r-lib/actions/pr-fetch@v2
         with:
diff --git a/github-actions/mlflow/master.yml b/github-actions/mlflow/master.yml
@@ -102,7 +102,7 @@ jobs:
         run: |
           # this needs to be run in a separate job because installing databricks-connect could break other
           # tests that uses normal SparkSession instead of remote SparkSession
-          uv run --no-sync --with databricks-agents \
+          uv run --no-sync --with 'databricks-agents,databricks-connect' \
             pytest tests/utils/test_requirements_utils.py::test_infer_pip_requirements_on_databricks_agents
 
   database:
@@ -286,28 +286,22 @@ jobs:
       - uses: ./.github/actions/setup-java
       - name: Install dependencies
         run: |
-          source ./dev/install-common-deps.sh
-          pip install openai dspy deepeval litellm ragas
+          uv sync --extra genai
+          uv pip install \
+            -r requirements/test-requirements.txt \
+            deepeval ragas
       - uses: ./.github/actions/show-versions
+      - uses: ./.github/actions/pipdeptree
       - name: Run GenAI Tests (OSS)
         run: |
-          pytest tests/genai
+          uv run --no-sync pytest tests/genai
 
       - name: Run GenAI Tests (Databricks)
         run: |
-          pip install databricks-agents
-          pytest tests/genai --ignore tests/genai/test_genai_import_without_agent_sdk.py \
+          uv run --no-sync --with databricks-agents \
+            pytest tests/genai --ignore tests/genai/test_genai_import_without_agent_sdk.py \
             --ignore tests/genai/optimize --ignore tests/genai/prompts
 
-      - name: Run Tests with Local Spark Session
-        run: |
-          # databricks-agents installs databricks-connect that blocks us from running spark-related
-          # tests with local spark session. To work around this, we run skipped tests after
-          # uninstalling databricks-connect.
-          pip uninstall -y databricks-connect pyspark
-          pip install pyspark
-          pytest tests/genai/evaluate/test_utils.py
-
   pyfunc:
     if: github.event_name != 'pull_request' || github.event.pull_request.draft == false
     runs-on: ubuntu-latest
diff --git a/github-actions/mlflow/resolve.yml b/github-actions/mlflow/resolve.yml
@@ -136,7 +136,7 @@ jobs:
 
       - name: Install Claude CLI
         run: |
-          npm install -g @anthropic-ai/claude-code@2.0.24
+          npm install -g @anthropic-ai/claude-code@2.1.3
 
       - name: Run Claude resolve command
         id: claude-fix
diff --git a/github-actions/mlflow/review.yml b/github-actions/mlflow/review.yml
@@ -3,15 +3,12 @@ name: review
 on:
   issue_comment:
     types: [created]
-  pull_request:
-    paths:
-      - .github/workflows/review.yml
-      - .claude/commands/pr-review.md
-      - dev/mcps/review.py
+  pull_request_target:
+    types: [opened, ready_for_review]
 
 concurrency:
-  group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}
-  cancel-in-progress: ${{ github.event_name == 'pull_request' }}
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.event.issue.number }}
+  cancel-in-progress: true
 
 defaults:
   run:
@@ -24,15 +21,14 @@ jobs:
       pull-requests: write
     timeout-minutes: 30
     # Security: Only run for authorized users.
-    # - pull_request: Only run for PRs from the upstream repo by authorized users (not forks)
+    # - pull_request_target: Only run for maintainers
     # - issue_comment: BOTH PR author and commenter must be authorized (can't trust external PRs)
+    # TODO: Remove `github.event.pull_request.user.login == 'harupy'` after testing
     if: >
-      (github.event_name == 'pull_request' &&
-       github.event.pull_request.head.repo.full_name == github.repository &&
-       (
-        contains(fromJson('["OWNER", "MEMBER", "COLLABORATOR"]'), github.event.pull_request.author_association) ||
-        (github.event.pull_request.user.login == 'Copilot' && github.event.pull_request.user.type == 'Bot')
-       ))
+      (github.event_name == 'pull_request_target' &&
+       github.event.pull_request.draft == false &&
+       contains(fromJson('["OWNER", "MEMBER", "COLLABORATOR"]'), github.event.pull_request.author_association) &&
+       github.event.pull_request.user.login == 'harupy')
       ||
       (github.event_name == 'issue_comment' &&
        github.event.issue.pull_request &&
@@ -75,18 +71,10 @@ jobs:
               throw new Error(`User not allowed to trigger workflow: ${comment.user.login} (association: ${authorAssociation})`);
             }
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-        with:
-          ref: refs/pull/${{ github.event.pull_request.number || github.event.issue.number }}/merge
       - uses: astral-sh/setup-uv@f0ec1fc3b38f5e7cd731bb6ce540c5af426746bb # v6.1.0
       - name: Install Claude CLI
         run: |
-          npm install -g @anthropic-ai/claude-code@2.0.24
-
-      - name: Set up MCP servers
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        run: |
-          claude mcp add review --env "GITHUB_TOKEN=${{ secrets.GITHUB_TOKEN }}" -- uv run --no-project dev/mcps/review.py
+          npm install -g @anthropic-ai/claude-code@2.1.3
 
       - name: Extract optional prompt from comment
         if: github.event_name == 'issue_comment'
diff --git a/github-actions/pak/nightly.yaml b/github-actions/pak/nightly.yaml
@@ -380,7 +380,7 @@ jobs:
     - uses: r-hub/actions/setup-r-netbsd@main
       if: ${{ matrix.config.os == 'netbsd' }}
 
-    - uses: r-hub/actions/setup-r-dragonflybsd@v1
+    - uses: r-hub/actions/setup-r-dragonflybsd@main
       if: ${{ matrix.config.os == 'dragonflybsd' }}
 
     - name: Build pak binary
diff --git a/github-actions/xgboost/freebsd.yml b/github-actions/xgboost/freebsd.yml
@@ -15,12 +15,12 @@ jobs:
     timeout-minutes: 20
     name: A job to run test in FreeBSD
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6.0.1
         with:
           submodules: 'true'
       - name: Test in FreeBSD
         id: test
-        uses: vmactions/freebsd-vm@v1
+        uses: vmactions/freebsd-vm@v1.3.6
         with:
           usesh: true
           prepare: |
diff --git a/github-actions/xtensor/osx.yml b/github-actions/xtensor/osx.yml
@@ -18,7 +18,6 @@ jobs:
       fail-fast: false
       matrix:
         os:
-        - 13
         - 14
         - 15
 
diff --git a/gitignore/mlflow.gitignore b/gitignore/mlflow.gitignore
@@ -2,7 +2,7 @@
 mlruns/
 mlartifacts/
 outputs/
-mlruns.db
+mlruns*.db
 mlflow.db
 **/basic_auth.db
 
@@ -132,8 +132,8 @@ gunicorn.conf.py
 
 # ignore everything in .claude
 .claude/*
-# except commands and skills
 !.claude/commands/
 !.claude/skills/
 !.claude/hooks/
+!.claude/rules/
 !.claude/settings.json
diff --git a/pkgdown/forecast_pkgdown.yml b/pkgdown/forecast_pkgdown.yml
@@ -2,6 +2,7 @@ url: https://pkg.robjhyndman.com/forecast/
 
 template:
   bootstrap: 5
+  light-switch: true
   bootswatch: flatly
   bslib:
     base_font: {google: "Fira Sans"}
@@ -18,7 +19,7 @@ navbar:
   type: light
   structure:
     left: [reference, jsspaper, changelog]
-    right: [search, github]
+    right: [search, github, lightswitch]
   components:
     jsspaper:
       text: "JSS paper"
diff --git a/rbuildignore/skimr.Rbuildignore b/rbuildignore/skimr.Rbuildignore
@@ -17,3 +17,4 @@
 ^Meta$
 ^pkgdown$
 ^cran-comments.md
+^CRAN-SUBMISSION$

-Original file line number
+Diff line change
       fail-fast: false
       matrix:
         os:
 -        - 13
         - 14
         - 15