Dependabot times out because individual gem updates take too long #11294
Labels
L: dart:pub
Dart packages via pub
L: ruby:bundler
RubyGems via bundler
T: bug 🐞
Something isn't working
Is there an existing issue for this?
Package ecosystem
Bundler
Package manager version
2.4.10
Language version
Ruby 3.3.5
Manifest location and content before the Dependabot update
Below is a redacted version of our gemfile. There are 151
~>
gem definitions (which in my understanding are subject to update by dependabot):dependabot.yml content
Updated dependency
No response
What you expected to see, versus what you actually saw
We are using dependabot in Github with the Github-hosted runners.
We expect dependabot to run and open 3 PRs, as per the configuration files.
Instead, dependabot times out after 55 minutes (that seems to be a hardcoded time limit). In my understanding, this is because the checks for individual gems take too long (> 1 min each, which adds up to > 55 mins). In the logs section, there is an excerpt showing the update for
net-smtp
, but the same happens for all gems where there is an update available.In my understanding, this command took too long:
The command takes 63.11 seconds, whereas a local
bundle update net-smtp
only takes 6 seconds.There is also another thing that looks wrong: Despite the fact that the
FooRegistry
registry is only used in for 2 specific gems, when trying to update thenet-smtp
gem (which lives in the public rubygems.org repo), there is a call to theFooRegistry
registry too. I don't think this is the problem, just pointing it out too. (UPDATE: Possibly #8554)Native package manager behavior
A local
bundle update net-smtp
only takes 6 seconds.Images of the diff or a link to the PR, issue, or logs
Smallest manifest that reproduces the issue
No response
The text was updated successfully, but these errors were encountered: