Kotlin-dsl-samples: Committed Gradle wrappers do not validate with the official GitHub Action

Created on 30 Mar 2020  路  4Comments  路  Source: gradle/kotlin-dsl-samples

Expected Behavior

All gradle-wrapper.jar files commit to this repository, e.g. kotlin-dsl-samples/samples/multi-kotlin-project/gradle/wrapper/gradle-wrapper.jar, should validate with the official GitHub Action, see https://blog.gradle.org/gradle-wrapper-checksum-verification-github-action.

Current Behavior

At least kotlin-dsl-samples/samples/multi-kotlin-project/gradle/wrapper/gradle-wrapper.jar does not pass validation.

Context

We are using multi-kotlin-project as a Git submodule in a project that uses the GitHub Action to validate all Gradle wrappers.

I'm not sure whether the fix is to update the wrapper JARs, or to add their SHA-256 hashes as valid, but in any case I'd appreciate if this could be fixed.

picture sschuberth

Most helpful comment

Yes. PR updating the wrappers and adding the wrapper validation action #1399

picture eskatos on 31 Mar 2020
👍2

All 4 comments

or to add their SHA-256 hashes as valid

That probably depends on https://github.com/gradle/wrapper-validation-action/issues/8.

sschuberth picture sschuberth on 30 Mar 2020

I'm guessing that you are probably right. @eskatos @bamboo, can we transition our samples in that repository to always use non-snapshot versions, or is it not a safe assumption that we won't ever use snapshot versions in that repository?

JLLeitschuh picture JLLeitschuh on 30 Mar 2020

Yes. PR updating the wrappers and adding the wrapper validation action #1399

eskatos picture eskatos on 31 Mar 2020
👍2

PR merged, closing

eskatos picture eskatos on 31 Mar 2020
🎉1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

bamboo picture bamboo  路  5Comments
eskatos picture eskatos  路  3Comments
xmlking picture xmlking  路  3Comments
scompt picture scompt  路  4Comments
sic-bre picture sic-bre  路  3Comments