Skip to content

build(deps): bump actions/checkout from 4.2.2 to 6.0.2#297

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/github_actions/actions/checkout-6.0.2
Open

build(deps): bump actions/checkout from 4.2.2 to 6.0.2#297
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/github_actions/actions/checkout-6.0.2

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jan 26, 2026
edited
Loading

Bumps actions/checkout from 4.2.2 to 6.0.2.

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

Full Changelog: actions/checkout@v6.0.1...v6.0.2

v6.0.1

What's Changed

Full Changelog: actions/checkout@v6...v6.0.1

v6.0.0

What's Changed

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jan 26, 2026
@dependabot dependabot bot mentioned this pull request Jan 26, 2026
Closed
@karianna
Copy link
Copy Markdown
Contributor

karianna commented Jan 26, 2026

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/github_actions/actions/checkout-6.0.2 branch from c3ee5d8 to 32364d8 Compare January 26, 2026 00:37
@dependabot
build(deps): bump actions/checkout from 4.2.2 to 6.0.2
3b734ec 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.2 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@11bd719...de0fac2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/actions/checkout-6.0.2 branch from 32364d8 to 3b734ec Compare January 26, 2026 00:38
@karianna
Copy link
Copy Markdown
Contributor

karianna commented Jan 26, 2026

Copilot claims that we need glibc for the compile to work correctly. However, I feel that this is likely more a case of the incorrect build parameters being passed as we should be able to have a musl build. Copilot hint below:

Analysis of Failure:

From the job log, the error is:

Error relocating /__e/node24_alpine/bin/node: pthread_getname_np: symbol not found

This appears when the workflow runs inside the adoptopenjdk/alpine3_build_image container. This error occurs because the version of Alpine Linux in your container is missing GLIBC compatibility for the pthread_getname_np function, or is using a musl-libc version or base image that doesn't provide that symbol needed by your Node.js binary.

Context from Workflow:

The relevant section from your workflow file (.github/workflows/test.yml):

jobs:
  openjdk_disto:
    runs-on: ubuntu-latest
    container:
      image: ${{ matrix.image }}
    strategy:
      fail-fast: false
      matrix:
        image: [adoptopenjdk/alpine3_build_image]

That is, it pulls and runs the job in adoptopenjdk/alpine3_build_image, which is an Alpine-based image.

Solution & Fix Recommendation:

  1. Upgrade Alpine image (or container image) to a version that supports pthread_getname_np, or ensure a GLIBC-compatible base is used, or
  2. Switch to an Ubuntu- or Debian-based image—these are GLIBC-based and guaranteed to support the symbol, OR
  3. Use a Node.js binary built for musl-libc, if you must use Alpine.

Recommended Change to Workflow:

  • Immediate workaround: Update the matrix image for openjdk_disto to use an official Ubuntu or Debian variant:

Change this:

matrix:
  image: [adoptopenjdk/alpine3_build_image]

To this:

matrix:
  image: ['ghcr.io/adoptium/test-containers:ubuntu2204'] # Same as used by test_container job, or another GLIBC-based image

Code Suggestion (for .github/workflows/test.yml):

```yaml
9|   openjdk_disto: # make sure build/ci work properly with other distros
10|     runs-on: ubuntu-latest
11|     container:
12|       image: ${{ matrix.image }}
13|     strategy:
14|       fail-fast: false
15|       matrix:
16|         image: ['ghcr.io/adoptium/test-containers:ubuntu2204'] # Use a GLIBC-based image
```

Alternative: If you want to stay with Alpine and need Node.js, ensure:

  • You use Node.js binaries built for musl, or
  • Install GLIBC compatibility libraries (such as through the sgerrand/glibc package)

However, the first option is typically the most robust: use a GLIBC-based image for this job.

Summary: The error is due to incompatibility between Node.js and Alpine's musl libc in your container. Switch to a GLIBC-based image, such as Ubuntu, for the failing workflow matrix entry.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@karianna karianna karianna approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@karianna