All notable changes to CPython Patch PR Action will be documented here.
The project follows Semantic Versioning and adheres to the
Keep a Changelog format.
- Nothing yet.
- Stop treating Docker image tags with additional dotted build metadata (such as AWS Lambda runtimes) as CPython patch pins, preventing invalid tag rewrites (#8).
- Include a workflow warning in generated pull request bodies when
.github/workflows/**files change.
- Skip runs that would edit
.github/workflows/**unless the provided token is a personal access token with theworkflowscope, preventing GitHub App permission errors.
- Default commit author identity to GitHub Actions metadata so PR creation succeeds without custom Git configuration.
- Push the generated
chore/bump-python-<track>branch before creating the pull request so the GitHub API accepts the head reference. - Apply resolved patch versions to the working tree automatically when not in dry-run mode, preserving the minimal diff behaviour.
- Documented the repository-level workflow permission toggle required for PR creation.
- Detect the default branch correctly even when
GITHUB_BASE_REFis present but empty in scheduled workflows.
- Allow default runs to create pull requests again instead of always behaving like a dry-run.
- Fixed packaging so the published action includes the bundled
dist/index.jsentrypoint again. - Documented the requirement to rerun
npm run bundleand commit the compiled assets when changing runtime code.
- First official, production-ready release of the CPython Patch PR Action.
- Comprehensive repository scanner covering GitHub workflows, Dockerfiles,
.python-version,.tool-versions,runtime.txt,pyproject.toml,Pipfile, Condaenvironment.yml,tox.ini, and more. - Rewrite engine that computes minimal diffs, preserves suffixes (e.g.
-slim), supports dry-run previews, and ensures idempotent reruns. - Version resolution pipeline combining GitHub tag discovery, python.org fallback, runner availability verification, track alignment, and configurable pre-release guard.
- Git automation that creates or reuses
chore/bump-python-<track>branches, commits file updates, and opens or updates pull requests with detailed bodies and rollback instructions. - Security keyword gating that inspects CPython release notes before applying upgrades, with offline snapshot support for air-gapped environments.
- Outputs for downstream automation, including
files_changed,new_version,skipped_reason, and thechange_matrixJSON for CI matrix fan-out. - Cross-platform compatibility through normalized path handling and Windows coverage in the continuous integration workflow.