starred/act
1
0
Fork 0
mirror of https://github.com/nektos/act.git synced 2026-04-26 01:15:51 +03:00
Code Issues 289 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #2481] upload-artifact@v4 fails in Codespace with ERRO[0009] #1144

New issue
Closed
opened 2026-03-01 21:49:15 +03:00 by kerem · 8 comments
kerem commented 2026-03-01 21:49:15 +03:00
Owner
Copy link

Originally created by @gblikas on GitHub (Oct 8, 2024).
Original GitHub issue: https://github.com/nektos/act/issues/2481

Bug report info

act version:            0.2.68
GOOS:                   linux
GOARCH:                 amd64
NumCPU:                 16
Docker host:            DOCKER_HOST environment variable is not set
Sockets found:
        /var/run/docker.sock
Config files:           
        /home/codespace/.config/act/actrc:
                -P ubuntu-latest=catthehacker/ubuntu:full-latest
                -P ubuntu-22.04=catthehacker/ubuntu:full-22.04
                -P ubuntu-20.04=catthehacker/ubuntu:full-20.04
                -P ubuntu-18.04=catthehacker/ubuntu:full-18.04
Build info:
        Go version:            go1.21.13
        Module path:           github.com/nektos/act
        Main version:          (devel)
        Main path:             github.com/nektos/act
        Main checksum:         
        Build settings:
                -buildmode:           exe
                -compiler:            gc
                -ldflags:             -s -w -X main.version=0.2.68 -X main.commit=03a4480cd024910c88c8946da8d589b9ef0c6660 -X main.date=2024-10-01T02:31:47Z -X main.builtBy=goreleaser
                CGO_ENABLED:          0
                GOARCH:               amd64
                GOOS:                 linux
                GOAMD64:              v1
                vcs:                  git
                vcs.revision:         03a4480cd024910c88c8946da8d589b9ef0c6660
                vcs.time:             2024-10-01T02:31:30Z
                vcs.modified:         false
Docker Engine:
        Engine version:        27.0.3-1
        Engine runtime:        runc
        Cgroup version:        2
        Cgroup driver:         cgroupfs
        Storage driver:        overlay2
        Registry URI:          https://index.docker.io/v1/
        OS:                    Ubuntu 20.04.6 LTS (containerized)
        OS type:               linux
        OS version:            20.04
        OS arch:               x86_64
        OS kernel:             6.5.0-1025-azure
        OS CPU:                16
        OS memory:             64290 MB
        Security options:
                name=apparmor
                name=seccomp,profile=builtin
                name=cgroupns

Command used with act

act -s GITHUB_TOKEN="$(gh auth token)" -W "./.github/workflows/main.yml" --artifact-server-path ./artifacts

Describe issue

When using https://github.com/actions/upload-artifact's v4 step, within my Github Codespace,

      - name: Upload build output
        # if: steps.cache_build.outputs.cache-hit != 'true'
        uses: actions/upload-artifact@v4
        with:
          name: build-output-${{ inputs.build_type }}
          path: ${{ inputs.sub_folder }}/builds

I get the following error:

[build_project/build_jobs]   💬  ::debug::Uploading artifact zip to blob storage with maxConcurrency: 256, bufferSize: 8388608
| Beginning upload of artifact content to blob storage
ERRO[0009] Error unauthorized

I haven't tried it with v3, as that will be quickly depricated, and I've verified that gh auth token is the same as $GITHUB_CODESPACE_TOKEN. -v provides no better output. What's more interesting is the fact that the artifact uploads, however, the step doesn't complete successfully - that is, ./artifacts contains the target output, but the step still fails.

I have verified that the same code runs fine when locally run on my machine using the same act command (below).

Link to GitHub repository

No response

Workflow content

I can share privately in dm.

Relevant log output

[build_project/build_jobs]   💬  ::debug::Uploading artifact zip to blob storage with maxConcurrency: 256, bufferSize: 8388608
| Beginning upload of artifact content to blob storage
ERRO[0010] Error unauthorized                           
[build_project/build_jobs]   ❗  ::error::
[build_project/build_jobs]   ❌  Failure - Main Upload build output

Additional information

Perhaps this has to do with firewall issues, https://docs.github.com/en/actions/hosting-your-own-runners/managing-self-hosted-runners/about-self-hosted-runners#communication-between-self-hosted-runners-and-github, however that doesn't appear to be the case because the actual upload looks like it works fine.

Originally created by @gblikas on GitHub (Oct 8, 2024). Original GitHub issue: https://github.com/nektos/act/issues/2481 ### Bug report info ```plain text act version: 0.2.68 GOOS: linux GOARCH: amd64 NumCPU: 16 Docker host: DOCKER_HOST environment variable is not set Sockets found: /var/run/docker.sock Config files: /home/codespace/.config/act/actrc: -P ubuntu-latest=catthehacker/ubuntu:full-latest -P ubuntu-22.04=catthehacker/ubuntu:full-22.04 -P ubuntu-20.04=catthehacker/ubuntu:full-20.04 -P ubuntu-18.04=catthehacker/ubuntu:full-18.04 Build info: Go version: go1.21.13 Module path: github.com/nektos/act Main version: (devel) Main path: github.com/nektos/act Main checksum: Build settings: -buildmode: exe -compiler: gc -ldflags: -s -w -X main.version=0.2.68 -X main.commit=03a4480cd024910c88c8946da8d589b9ef0c6660 -X main.date=2024-10-01T02:31:47Z -X main.builtBy=goreleaser CGO_ENABLED: 0 GOARCH: amd64 GOOS: linux GOAMD64: v1 vcs: git vcs.revision: 03a4480cd024910c88c8946da8d589b9ef0c6660 vcs.time: 2024-10-01T02:31:30Z vcs.modified: false Docker Engine: Engine version: 27.0.3-1 Engine runtime: runc Cgroup version: 2 Cgroup driver: cgroupfs Storage driver: overlay2 Registry URI: https://index.docker.io/v1/ OS: Ubuntu 20.04.6 LTS (containerized) OS type: linux OS version: 20.04 OS arch: x86_64 OS kernel: 6.5.0-1025-azure OS CPU: 16 OS memory: 64290 MB Security options: name=apparmor name=seccomp,profile=builtin name=cgroupns ``` ### Command used with act ```sh act -s GITHUB_TOKEN="$(gh auth token)" -W "./.github/workflows/main.yml" --artifact-server-path ./artifacts ``` ### Describe issue When using https://github.com/actions/upload-artifact's v4 step, within my Github Codespace, ```yml - name: Upload build output # if: steps.cache_build.outputs.cache-hit != 'true' uses: actions/upload-artifact@v4 with: name: build-output-${{ inputs.build_type }} path: ${{ inputs.sub_folder }}/builds ``` I get the following error: ``` [build_project/build_jobs] 💬 ::debug::Uploading artifact zip to blob storage with maxConcurrency: 256, bufferSize: 8388608 | Beginning upload of artifact content to blob storage ERRO[0009] Error unauthorized ``` I haven't tried it with v3, as that will be quickly depricated, and I've verified that `gh auth token` is the same as `$GITHUB_CODESPACE_TOKEN`. `-v` provides no better output. ~~What's more interesting is the fact that the artifact uploads, however, the step doesn't complete successfully - that is, `./artifacts` contains the target output, but the step still fails.~~ I have verified that the same code runs fine when locally run on my machine using the same `act` command (below). ### Link to GitHub repository _No response_ ### Workflow content ```yml I can share privately in dm. ``` ### Relevant log output ```sh [build_project/build_jobs] 💬 ::debug::Uploading artifact zip to blob storage with maxConcurrency: 256, bufferSize: 8388608 | Beginning upload of artifact content to blob storage ERRO[0010] Error unauthorized [build_project/build_jobs] ❗ ::error:: [build_project/build_jobs] ❌ Failure - Main Upload build output ``` ### Additional information Perhaps this has to do with firewall issues, https://docs.github.com/en/actions/hosting-your-own-runners/managing-self-hosted-runners/about-self-hosted-runners#communication-between-self-hosted-runners-and-github, however that doesn't appear to be the case because the actual upload looks like it works fine.
kerem 2026-03-01 21:49:15 +03:00
  • closed this issue
  • added the
    kind/bug
         label
kerem commented 2026-03-01 21:49:16 +03:00
Author
Owner
Copy link

@gblikas commented on GitHub (Oct 9, 2024):

edit the artifact that is uploaded is broken, i.e. doesn't unzip due to some file formatting error or corruption.

<!-- gh-comment-id:2403327839 --> @gblikas commented on GitHub (Oct 9, 2024): **edit** the artifact that is uploaded is broken, i.e. doesn't unzip due to some file formatting error or corruption.
kerem commented 2026-03-01 21:49:16 +03:00
Author
Owner
Copy link

@gblikas commented on GitHub (Oct 14, 2024):

@ChristopherHX any links to related issues or comments on this?

<!-- gh-comment-id:2411941991 --> @gblikas commented on GitHub (Oct 14, 2024): @ChristopherHX any links to related issues or comments on this?
kerem commented 2026-03-01 21:49:16 +03:00
Author
Owner
Copy link

@ChristopherHX commented on GitHub (Oct 15, 2024):

No this ticket is the first one of this kind of error

The "Uploading artifact zip to blob storage" signed url has been altered or expired.

artifact v4 go > verifySignature failed.

Make a breakpoint there to see why it fails, this code has been written by me for Gitea Actions in first place and therefore doesn't provide any hint why the signature became invalid.

Ofcouse you can make verifySignature never return an error and see if it works in codespaces.

Artifacts in act are low priority items for me they usually still land on my backlog after some months/weeks, github-act-runner that uses act for my purposes uses official GitHub Actions Artifact Services

<!-- gh-comment-id:2413495223 --> @ChristopherHX commented on GitHub (Oct 15, 2024): No this ticket is the first one of this kind of error The "Uploading artifact zip to blob storage" signed url has been altered or expired. artifact v4 go > verifySignature failed. Make a breakpoint there to see why it fails, this code has been written by me for Gitea Actions in first place and therefore doesn't provide any hint why the signature became invalid. Ofcouse you can make verifySignature never return an error and see if it works in codespaces. _Artifacts in act are low priority items for me they usually still land on my backlog after some months/weeks, github-act-runner that uses act for my purposes uses official GitHub Actions Artifact Services_
kerem commented 2026-03-01 21:49:16 +03:00
Author
Owner
Copy link

@gblikas commented on GitHub (Oct 15, 2024):

The "Uploading artifact zip to blob storage" signed url has been altered or expired.

artifact v4 go > verifySignature failed.

Make a breakpoint there to see why it fails, this code has been written by me for Gitea Actions in first place and therefore doesn't provide any hint why the signature became invalid.

Ofcouse you can make verifySignature never return an error and see if it works in codespaces.

@ChristopherHX I have no idea what this means in the context of using the act cli tool. I'm unsure how I would setup a breakpoint. Do you have links on how to do so?

<!-- gh-comment-id:2414845929 --> @gblikas commented on GitHub (Oct 15, 2024): > The "Uploading artifact zip to blob storage" signed url has been altered or expired. > > artifact v4 go > verifySignature failed. > > Make a breakpoint there to see why it fails, this code has been written by me for Gitea Actions in first place and therefore doesn't provide any hint why the signature became invalid. > > Ofcouse you can make verifySignature never return an error and see if it works in codespaces. @ChristopherHX I have no idea what this means in the context of using the `act` cli tool. I'm unsure how I would setup a breakpoint. Do you have links on how to do so?
kerem commented 2026-03-01 21:49:17 +03:00
Author
Owner
Copy link

@ChristopherHX commented on GitHub (Oct 15, 2024):

No, this goes into making breakpoints in golang development of .go source code.

I have written another tool with an artifact v4 server implementation as well, it's called Runner.Server and a similar cli tool. However I don't remember to have tried artifacts v4 in codespaces

I'm putting more resources into my projects where I'm an owner, here with less rights and no sponsoring. I'm practically working almost alone as well with more stones in my way.

<!-- gh-comment-id:2415086785 --> @ChristopherHX commented on GitHub (Oct 15, 2024): No, this goes into making breakpoints in golang development of .go source code. I have written another tool with an artifact v4 server implementation as well, it's called `Runner.Server` and a similar cli tool. However I don't remember to have tried artifacts v4 in codespaces I'm putting more resources into my projects where I'm an owner, here with less rights and no sponsoring. I'm practically working almost alone as well with more stones in my way.
kerem commented 2026-03-01 21:49:17 +03:00
Author
Owner
Copy link

@gblikas commented on GitHub (Oct 15, 2024):

I'm putting more resources into my projects where I'm an owner, here with less rights and no sponsoring. I'm practically working almost alone as well with more stones in my way.

@ChristopherHX Sorry to hear that :(

I'll noodle with this and see where I get. Can we keep this issue open for longer-term? I'm using codespaces almost exclusively and that produces its own weirdness with github action, haha.

<!-- gh-comment-id:2415118300 --> @gblikas commented on GitHub (Oct 15, 2024): > I'm putting more resources into my projects where I'm an owner, here with less rights and no sponsoring. I'm practically working almost alone as well with more stones in my way. @ChristopherHX Sorry to hear that :( --- I'll noodle with this and see where I get. Can we keep this issue open for longer-term? I'm using codespaces almost exclusively and that produces its own weirdness with github action, haha.
kerem commented 2026-03-01 21:49:17 +03:00
Author
Owner
Copy link

@ChristopherHX commented on GitHub (Oct 15, 2024):

Can we keep this issue open for longer-term?

Yes, but I promise nothing. The wild stale bot might try to close this

There is an other artifact v4 defect fix planned soon per my backlog, however not this one

<!-- gh-comment-id:2415212521 --> @ChristopherHX commented on GitHub (Oct 15, 2024): > Can we keep this issue open for longer-term? Yes, but I promise nothing. The wild stale bot might try to close this There is an other artifact v4 defect fix planned soon per my backlog, however not this one
kerem commented 2026-03-01 21:49:17 +03:00
Author
Owner
Copy link

@gblikas commented on GitHub (Oct 30, 2024):

So, somehow this has resolved itself... Not sure what happened but now I don't receive this error... I'm still using ubuntu-latest...

@ChristopherHX Closing until this appears again - I wont try regression testing until the problem appears or someone comments.

<!-- gh-comment-id:2448448813 --> @gblikas commented on GitHub (Oct 30, 2024): So, somehow this has resolved itself... Not sure what happened but now I don't receive this error... I'm still using `ubuntu-latest`... @ChristopherHX Closing until this appears again - I wont try regression testing until the problem appears or someone comments.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
dependabot/go_modules/github.com/go-git/go-git/v5-5.18.0
dependabot/go_modules/dependencies-08815e2262
mergify/configuration-deprecated-update
dependabot/github_actions/dependencies-a3a104477f
chore/simplify-ci-and-makefile
dependabot/go_modules/golang.org/x/crypto-0.45.0
dependabot/go_modules/github.com/go-viper/mapstructure/v2-2.4.0
panekj/ci/improve-jobs
fix-skip-non-yaml-files-in-dir
normalize-pull-rebuild-flags
fix-no-recurse-by-default
2517-poor-error-for-incomplete-action-step
2472-make-use-new-action-cache-the-new-default-for-downloading-actions
act-tart
act-lxc
act-oidc
act-dind
avoid-slash-in-actor
dependabot/go_modules/github.com/docker/docker-26.1.4incompatible
meta-keep-filetime
local-repository-action-cache
pr-merger
update-docker-deps
follow_local_action_symlink
boltdb-lock-in-handler
use-socket-path
no-pull-no-rebuild
path-issues
fix/env
feat/podman
refactor/testdata
v0.2.87
v0.2.86
v0.2.85
v0.2.84
v0.2.83
v0.2.82
v0.2.81
v0.2.80
v0.2.79
v0.2.78
v0.2.77
v0.2.76
v0.2.75
v0.2.74
v0.2.73
v0.2.72
v0.2.71
v0.2.70
v0.2.69
v0.2.68
v0.2.67
v0.2.66
v0.2.65
v0.2.64
v0.2.63
v0.2.62
v0.2.61
v0.2.60
v0.2.59
v0.2.58
v0.2.57
v0.2.56
v0.2.55
v0.2.54
v0.2.53
v0.2.52
v0.2.51
v0.2.50
v0.2.49
v0.2.48
v0.2.47
v0.2.46
v0.2.45
v0.2.44
v0.2.43
v0.2.42
v0.2.41
v0.2.40
v0.2.39
v0.2.38
v0.2.37
v0.2.36
v0.2.35
v0.2.34
v0.2.33
v0.2.32
v0.2.31
v0.2.30
v0.2.29
v0.2.28
v0.2.27
v0.2.26
v0.2.25
v0.2.24
v0.2.23
v0.2.22
v0.2.21
v0.2.20
v0.2.19
v0.2.18
v0.2.17
v0.2.16
v0.2.15
v0.2.14
v0.2.13
v0.2.12
v0.2.11
v0.2.10
v0.2.9
v0.2.8
v0.2.7
v0.2.6
v0.2.5
v0.2.4
v0.2.3
v0.2.2
v0.2.1
v0.2.0
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.5
v0.0.4
v0.0.3
v0.0.2
v0.0.1
Labels
Clear labels   
area/action

   
area/cli

   
area/docs

   
area/image

   
area/runner

   
area/workflow

   
backlog

   
confirmed/not-planned

   
kind/bug

   
kind/discussion

   
kind/external

   
kind/feature-request

   
kind/question

   
meta/duplicate

   
meta/invalid

   
meta/need-more-info

   
meta/resolved

   
meta/wontfix

   
meta/workaround

   
needs-work

   
pull-request

Mirrored from GitHub Pull Request

  
review/not-planned

   
size/M

   
size/XL

   
size/XXL

   
stale

   
stale-exempt
No labels
area/action
area/cli
area/docs
area/image
area/runner
area/workflow
backlog
confirmed/not-planned
kind/bug
kind/discussion
kind/external
kind/feature-request
kind/question
meta/duplicate
meta/invalid
meta/need-more-info
meta/resolved
meta/wontfix
meta/workaround
needs-work
pull-request
review/not-planned
size/M
size/XL
size/XXL
stale
stale-exempt
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/act#1144
No description provided.