Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bash script checksums do not match published values. Please contact [email protected] immediately. #322

Closed
ruohola opened this issue May 27, 2021 · 4 comments
Closed

Bash script checksums do not match published values. Please contact [email protected] immediately. #322

ruohola opened this issue May 27, 2021 · 4 comments

Comments

@ruohola
Copy link

ruohola commented May 27, 2021
edited
Loading

I'm using codecov/codecov-action@967e2b38a85a62bd61be5529ada27ebc109948c2 (pinned with 967e2b3 hash for security and consistency), and got the following error:

2021-05-26T18:19:23.4564809Z ##[group]Run codecov/codecov-action@967e2b38a85a62bd61be5529ada27ebc109948c2
2021-05-26T18:19:23.4565629Z with:
2021-05-26T18:19:23.4566533Z   token: ***
2021-05-26T18:19:23.4566983Z   files: ./clover.xml
2021-05-26T18:19:23.4567455Z   fail_ci_if_error: true
2021-05-26T18:19:23.4567924Z ##[endgroup]
2021-05-26T18:19:23.9405524Z ##[warning]Codecov 1.0.3 checksums for SHA1 failed to match.
Public checksum:   nullUploader checksum: 3b699a4d1c42fe4331196730f561df0a653bcc60
2021-05-26T18:19:23.9424019Z ##[error]Codecov failure: Bash script checksums do not match published values. Please contact [email protected] immediately.
2021-05-26T18:19:23.9427345Z ##[error]Codecov failed with the following error: Codecov failure: Bash script checksums do not match published values. Please contact [email protected] immediately.
2021-05-26T18:19:23.9551136Z Post job cleanup.

Should I be worried?

I already emailed [email protected] about this as well.
@ruohola
Copy link
Author

ruohola commented May 27, 2021
edited
Loading

The issue seems to be that https://codecov.io/bash has this version line:

VERSION="1.0.3"

but the checksum validation in 967e2b3 only has checksums for 1.0.1 and 1.0.2:

codecov-action/src/validate.ts

Lines 29 to 40 in 967e2b3

'1.0.1': {
'1': '0ddc61a9408418c73b19a1375f63bb460dc947a8',
'256': '89c658e261d5f25533598a222fd96cf17a5fa0eb3772f2defac754d9970b2ec8',
'512': 'd075b412a362a9a2b7aedfec3b8b9a9a927b3b99e98c7c15a2b76ef09862ae' +
'b005e91d76a5fd71b511141496d0fd23d1b42095f722ebcd509d768fba030f159e',
},
'1.0.2': {
'1': '537069158a6f72b145cfe5f782dceb608d9ef594',
'256': 'd6aa3207c4908d123bd8af62ec0538e3f2b9f257c3de62fad4e29cd3b59b41d9',
'512': 'b6492196dd844cd81a688536bb42463d28bd666448335c4a8fc7f8f9b9b9af' +
'c346a467e3401e3fc49e6047442a30d93a4adfaa1590101224a186013c6179c48d',
},

Why on earth is the URL for the bash uploaded at https://codecov.io/bash not versioned at all?
(And yes, I saw that in a1ed4b3 the uploader is used straight from the repo now.)

ruohola added a commit to skoleapp/skole-frontend that referenced this issue May 27, 2021
@ruohola
Fix codecov 'Bash script checksums do not match published values' error
102ef70 
`v1.5.0` fixes: codecov/codecov-action#322
ruohola added a commit to skoleapp/skole-backend that referenced this issue May 27, 2021
@ruohola
Fix codecov 'Bash script checksums do not match published values' error
a6eae62 
`v1.5.0` fixes: codecov/codecov-action#322
@ruohola ruohola mentioned this issue May 27, 2021
Merged
ruohola added a commit to skoleapp/skole-frontend that referenced this issue May 27, 2021
@ruohola
Fix codecov 'Bash script checksums do not match published values' error
ef98e53 
codecov/codecov-action#322 is fixed in
`v1.5.0`.
ruohola added a commit to skoleapp/skole-backend that referenced this issue May 27, 2021
@ruohola
Fix codecov 'Bash script checksums do not match published values' error
04701ce 
codecov/codecov-action#322 is fixed in
`v1.5.0`.
@thomasrockhu
Copy link
Contributor

@ruohola this has been resolved in version 1.5.0 of the action

Sneezry added a commit to Authenticator-Extension/Authenticator that referenced this issue Jun 14, 2021
@Sneezry
Update codecov to 1.5.0
245f1b7 
see codecov/codecov-action#322 (comment)
@3sevensixyoungtlez
Copy link

#239

@ruohola
Copy link
Author

ruohola commented Jul 7, 2021

#239

?

mmcloughlin added a commit to mmcloughlin/addchain that referenced this issue Aug 21, 2021
@mmcloughlin
ci: upgrade codecov action (#112)
6ed9dad 
Fixes CI failures due to codecov/codecov-action#322
mmcloughlin added a commit to mmcloughlin/avo that referenced this issue Aug 21, 2021
@mmcloughlin
ci: upgrade codecov action (#196)
b935256 
Upgrades codecov-action in order to fix codecov errors CI, for example:

https://github.com/mmcloughlin/avo/runs/3389170262?check_suite_focus=true#step:10:11

See codecov/codecov-action#322.
@john-dupuy john-dupuy mentioned this issue Sep 1, 2021
Merged
LovelySpace1001 added a commit to LovelySpace1001/Authenticator that referenced this issue Nov 20, 2024
@LovelySpace1001
Update codecov to 1.5.0
aeb3776 
see codecov/codecov-action#322 (comment)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@thomasrockhu @ruohola @3sevensixyoungtlez