New data collected at 2025-11-17_00-03-15

Author: actions-user

github-actions/formattable/R-CMD-check-dev.yaml

@@ -118,14 +118,14 @@ jobs:
         with:
           cache-version: rcc-dev-${{ matrix.package }}-1
           needs: build, check
-          extra-packages: "any::rcmdcheck any::remotes ."
+          extra-packages: "any::rcmdcheck r-lib/remotes@f-618-universe ."
           token: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Install dev version of ${{ matrix.package }}
         env:
           GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }}
         run: |
-          remotes::install_dev("${{ matrix.package }}", "https://cloud.r-project.org", upgrade = "always")
+          remotes::install_runiverse("${{ matrix.package }}", linux_distro = "noble")
         shell: Rscript {0}
 
       - name: Session info

github-actions/formattable/R-CMD-check.yaml

@@ -142,12 +142,20 @@ jobs:
         if: github.event_name != 'workflow_dispatch' || inputs.dep-suggests-matrix
         uses: ./.github/workflows/dep-suggests-matrix
 
+      - id: repo-state
+        name: Determine repository state
+        uses: ./.github/workflows/repo-state
+
+      # Styling on foreign PRs works through the format-suggest workflow
+      - uses: ./.github/workflows/style
+        if: steps.repo-state.outputs.foreign != 'true' || steps.repo-state.outputs.is_pr != 'true'
+
+      # Snapshot tests can't work in a way similar to format-suggests
+      # because it requires running code which is a security risk on pull_request_target workflows
       - uses: ./.github/workflows/update-snapshots
         with:
           base: ${{ inputs.ref || github.head_ref }}
 
-      - uses: ./.github/workflows/style
-
       - uses: ./.github/workflows/roxygenize
 
       - name: Remove config files from previous iteration
@@ -175,7 +183,7 @@ jobs:
           echo -n "${{ steps.commit.outputs.sha }}" > rcc-smoke-sha.txt
         shell: bash
 
-      - uses: actions/upload-artifact@v4
+      - uses: actions/upload-artifact@v5
         with:
           name: rcc-smoke-sha
           path: rcc-smoke-sha.txt

github-actions/formattable/commit-suggest.yaml

@@ -0,0 +1,100 @@
+name: commit-suggest.yaml
+
+on:
+  workflow_run:
+    workflows: ["rcc"]
+    types:
+      - completed
+
+permissions:
+  contents: write
+  pull-requests: write
+
+jobs:
+  commit-suggest:
+    runs-on: ubuntu-latest
+    if: github.event.workflow_run.event == 'pull_request'
+
+    steps:
+      - name: Show event payload
+        run: |
+          echo '${{ toJson(github.event) }}' | jq .
+        shell: bash
+
+      - name: Checkout PR
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.workflow_run.head_sha }}
+
+      - name: Download artifact
+        uses: actions/download-artifact@v6
+        with:
+          name: changes-patch
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          run-id: ${{ github.event.workflow_run.id }}
+        continue-on-error: true
+
+      - name: Check if artifact exists
+        id: check-artifact
+        run: |
+          if [ -f changes.patch ]; then
+            echo "has_diff=true" >> $GITHUB_OUTPUT
+          else
+            echo "has_diff=false" >> $GITHUB_OUTPUT
+            echo "No changes-patch artifact found"
+          fi
+        shell: bash
+
+      - name: Find PR number for branch from correct head repository
+        id: find-pr
+        env:
+          GITHUB_TOKEN: ${{ github.token }}
+        run: |
+          PR_NUMBER=$(gh pr list --head ${{ github.event.workflow_run.head_branch }} --state open --json number,headRepositoryOwner --jq '.[] | select(.headRepositoryOwner.login == "${{ github.event.workflow_run.head_repository.owner.login }}") | .number' || echo "")
+          echo "pr_number=$PR_NUMBER" >> $GITHUB_OUTPUT
+        shell: bash
+
+      - name: Generate comment body
+        if: steps.check-artifact.outputs.has_diff == 'true'
+        id: comment-body
+        run: |
+          cat << 'EOF' > comment.md
+          ## Formatting suggestions available
+
+          A patch file with formatting suggestions has been generated. You can apply it using one of these methods:
+
+          ### Method 1: Apply via gh CLI
+
+          ```bash
+          # Download and apply the patch directly
+          gh run download ${{ github.event.workflow_run.id }} --repo ${{ github.repository }} --name changes-patch && patch -p1 < changes.patch && rm changes.patch
+          ```
+
+          ### Method 2: View the patch
+
+          <details>
+          <summary>Click to see the patch contents</summary>
+
+          ```diff
+          EOF
+
+          cat changes.patch >> comment.md
+
+          cat << 'EOF' >> comment.md
+          ```
+
+          </details>
+
+          ---
+          *This comment was automatically generated by the commit-suggester workflow.*
+          EOF
+        shell: bash
+
+      - name: Post or update comment
+        if: steps.check-artifact.outputs.has_diff == 'true'
+        uses: thollander/actions-comment-pull-request@v3
+        with:
+          pr-number: ${{ steps.find-pr.outputs.pr_number }}
+          file-path: comment.md
+          comment-tag: formatting-suggestions
+          mode: recreate

github-actions/formattable/format-suggest.yaml

@@ -0,0 +1,45 @@
+# Workflow derived from https://github.com/posit-dev/setup-air/tree/main/examples
+
+on:
+  # Using `pull_request_target` over `pull_request` for elevated `GITHUB_TOKEN`
+  # privileges, otherwise we can't set `pull-requests: write` when the pull
+  # request comes from a fork, which is our main use case (external contributors).
+  #
+  # `pull_request_target` runs in the context of the target branch (`main`, usually),
+  # rather than in the context of the pull request like `pull_request` does. Due
+  # to this, we must explicitly checkout `ref: ${{ github.event.pull_request.head.sha }}`.
+  # This is typically frowned upon by GitHub, as it exposes you to potentially running
+  # untrusted code in a context where you have elevated privileges, but they explicitly
+  # call out the use case of reformatting and committing back / commenting on the PR
+  # as a situation that should be safe (because we aren't actually running the untrusted
+  # code, we are just treating it as passive data).
+  # https://securitylab.github.com/resources/github-actions-preventing-pwn-requests/
+  pull_request_target:
+
+name: format-suggest.yaml
+
+jobs:
+  format-suggest:
+    name: format-suggest
+    runs-on: ubuntu-latest
+    # Only run this job if changes come from a fork.
+    # We commit changes directly on the main repository.
+    if: github.event.pull_request.head.repo.full_name != github.repository
+
+    permissions:
+      # Required to push suggestion comments to the PR
+      pull-requests: write
+
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.pull_request.head.sha }}
+
+      - uses: ./.github/workflows/style
+
+      - name: Suggest
+        uses: reviewdog/action-suggester@v1
+        with:
+          level: error
+          fail_level: error
+          tool_name: air-and-clang-format

github-actions/ggstatsplot/check-random-test-order.yaml

@@ -1,4 +1,3 @@
-# Run tests in random order
 on:
   push:
     branches: [main, master]
@@ -18,61 +17,18 @@ jobs:
 
       - uses: r-lib/actions/setup-r@v2
         with:
-          #r-version: "devel"
           use-public-rspm: true
 
       - uses: r-lib/actions/setup-r-dependencies@v2
         with:
-          pak-version: devel
-          upgrade: "TRUE"
-          extra-packages: |
-            local::.
-          needs: check
+          extra-packages: local::.
 
       - name: Run Tests in Random Order
         run: |
           options(crayon.enabled = TRUE)
           withr::local_envvar(TESTTHAT_PARALLEL = "FALSE")
-          library(cli)
-          library(glue)
-          library(testthat)
-          pkgload::load_all(".", quiet = TRUE)
-          test_script_paths <- testthat::find_test_scripts("tests/testthat")
           seed <- sample.int(1e6, 1L)
-          cli_inform("Chosen seed for the current test run: {seed}")
+          cli::cli_inform("Chosen seed for the current test run: {seed}")
           set.seed(seed)
-          randomized_test_script_paths <- sample(test_script_paths)
-          any_test_failures <- FALSE
-          any_test_errors <- FALSE
-          test_path <- function(path) {
-            report <- as.data.frame(testthat::test_file(path, reporter = "silent"))
-            has_test_failures <- any(report$failed == 1L)
-            has_test_errors <- any(report$error == 1L)
-            if (has_test_failures) {
-              cli_alert_danger(glue("Tests in `{path}` are failing."))
-              any_test_failures <<- TRUE
-            }
-            if (has_test_errors) {
-              cli_alert_danger(glue("There was error while running tests in `{path}`."))
-              any_test_errors <<- TRUE
-            }
-            if (!has_test_failures && !has_test_errors) {
-              cli_alert_success(glue("All tests passing in `{path}`."))
-            }
-          }
-          cli_rule()
-          cli_inform("Running tests in random order:")
-          cli_rule()
-          purrr::walk(randomized_test_script_paths, test_path)
-          cli_rule()
-          if (any_test_failures) {
-            cli_abort("Tests in some files are failing. Check the log.")
-          }
-          if (any_test_errors) {
-            cli_abort("There was error while running tests in some files. Check the log.")
-          }
-          if (!any_test_failures && !any_test_errors) {
-            cli_alert_success("Tests from all files are passing!")
-          }
-          cli_rule()
+          testthat::test_dir("tests", shuffle = TRUE)
         shell: Rscript {0}

github-actions/ggstatsplot/pkgdown.yaml

@@ -48,7 +48,7 @@ jobs:
 
       - name: Deploy to GitHub pages 🚀
         if: github.event_name != 'pull_request'
-        uses: JamesIves/github-pages-deploy-action@v4.7.3
+        uses: JamesIves/github-pages-deploy-action@v4.7.4
         with:
           branch: gh-pages
           folder: docs

github-actions/ggstatsplot/pre-commit.yaml

@@ -25,4 +25,4 @@ jobs:
       - name: Run pre-commit
         uses: pre-commit/action@v3.0.1
 
-      - uses: stefanzweifel/git-auto-commit-action@v6.0.1
+      - uses: stefanzweifel/git-auto-commit-action@v7.0.0

github-actions/ggstatsplot/styler.yaml

@@ -65,4 +65,4 @@ jobs:
           styler::style_pkg()
         shell: Rscript {0}
 
-      - uses: stefanzweifel/git-auto-commit-action@v6.0.1
+      - uses: stefanzweifel/git-auto-commit-action@v7.0.0

github-actions/here/R-CMD-check-dev.yaml

@@ -118,14 +118,14 @@ jobs:
         with:
           cache-version: rcc-dev-${{ matrix.package }}-1
           needs: build, check
-          extra-packages: "any::rcmdcheck any::remotes ."
+          extra-packages: "any::rcmdcheck r-lib/remotes@f-618-universe ."
           token: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Install dev version of ${{ matrix.package }}
         env:
           GITHUB_PAT: ${{ secrets.GITHUB_TOKEN }}
         run: |
-          remotes::install_dev("${{ matrix.package }}", "https://cloud.r-project.org", upgrade = "always")
+          remotes::install_runiverse("${{ matrix.package }}", linux_distro = "noble")
         shell: Rscript {0}
 
       - name: Session info

github-actions/here/R-CMD-check.yaml

@@ -142,12 +142,20 @@ jobs:
         if: github.event_name != 'workflow_dispatch' || inputs.dep-suggests-matrix
         uses: ./.github/workflows/dep-suggests-matrix
 
+      - id: repo-state
+        name: Determine repository state
+        uses: ./.github/workflows/repo-state
+
+      # Styling on foreign PRs works through the format-suggest workflow
+      - uses: ./.github/workflows/style
+        if: steps.repo-state.outputs.foreign != 'true' || steps.repo-state.outputs.is_pr != 'true'
+
+      # Snapshot tests can't work in a way similar to format-suggests
+      # because it requires running code which is a security risk on pull_request_target workflows
       - uses: ./.github/workflows/update-snapshots
         with:
           base: ${{ inputs.ref || github.head_ref }}
 
-      - uses: ./.github/workflows/style
-
       - uses: ./.github/workflows/roxygenize
 
       - name: Remove config files from previous iteration
@@ -175,7 +183,7 @@ jobs:
           echo -n "${{ steps.commit.outputs.sha }}" > rcc-smoke-sha.txt
         shell: bash
 
-      - uses: actions/upload-artifact@v4
+      - uses: actions/upload-artifact@v5
         with:
           name: rcc-smoke-sha
           path: rcc-smoke-sha.txt