Bump Node

[ejfine]

Why is this change necessary?

Bump NodeJS and associated github actions to v24

How does this change address the issue?

does it, and bumps other misc stuff

What side effects does this change have?

things run on Node 24 now

How is this change tested?

Downstream repos

Summary by CodeRabbit

• New Features
  • Template now exposes a node_version setting and uses it as the dynamic default for Windows CI.
• Chores
  • Upgraded CI workflows to newer GitHub Actions versions for checkout, Python setup, cache, Node setup, and PyPI publish.
  • Updated default versions for toolchains and images (Node.js, Alpine, NGINX, Pulumi, AWS SDKs, GraphQL, etc.) in template context.
  • Bumped testing dependencies (pytest, pytest-cov).
  • Refreshed tag-on-merge workflow to latest checkout action.
  • Minor devcontainer metadata update.

[coderabbitai]

Warning

Rate limit exceeded

@ejfine has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 14 minutes and 9 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between 71cfd33 and 53631be.

📒 Files selected for processing (3)

• .github/workflows/ci.yaml (4 hunks)
• extensions/context.py (2 hunks)
• template/.github/workflows/ci.yaml.jinja-base (1 hunks)

Walkthrough

Version updates across CI workflows, template context, and dependencies. Added node_version to template context and switched a template default to reference it. Updated various package and image versions, GitHub Actions versions, and a devcontainer context hash. No function signatures or control flow changed.

Changes

Cohort / File(s)	Summary
Devcontainer metadata /.devcontainer/devcontainer.json	Updated context-hash comment from b6e19452 to b8c69216.
CI workflows (GitHub Actions) .github/workflows/ci.yaml, .github/workflows/tag-on-merge.yaml	Bumped actions versions: checkout to v5.0.0, setup-python to v5.0.0 (ci.yaml), cache to v4.2.4; no logic changes.
Template context additions /template/extensions/context.py.jinja-base, /template/copier.yml.jinja-base	Added node_version to template context; changed Windows CI node_version default from literal to templated "{{ node_version }}".
Context updater version bumps /extensions/context.py	Updated versions for pytest, pytest-cov, Pulumi libs, boto3, strawberry-graphql; added node_version; bumped GHA-related keys, Alpine, and NGINX image versions.
Project dependency bumps /pyproject.toml	Increased minimum versions: pytest (>=8.4.2) and pytest-cov (>=6.3.0).

Sequence Diagram(s)

sequenceDiagram
  autonumber
  participant Dev as Developer
  participant Copier as Copier Template Engine
  participant Ctx as ContextUpdater
  participant Tmpl as Template Files

  Dev->>Copier: Run template generation
  Copier->>Ctx: Request context
  Ctx-->>Copier: {..., node_version, ...}
  Copier->>Tmpl: Render files with context
  Tmpl-->>Dev: Generated config (Windows CI uses node_version)
  note over Tmpl: node_version drives default in copier.yml.jinja-base

Loading

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• Bump nuxt and other deps #86: Similar context updates and template context additions across extensions/context.py and template files.
• Bump Strawberry GraphQL and other versions #85: Updates to ContextUpdater with Strawberry GraphQL and other version bumps.
• Readme update #72: ContextUpdater version bumps and matching devcontainer context-hash change.

Poem

I thump my paws at version’s tune,
New numbers bloom like springtime moon.
A node now shared from burrow’s core,
Templates nibble, ask for more.
CI hops to v5 with flair—
Carrots cached, all fresh and fair.
Merge, tag, hop—we’re nearly there! 🥕🐇

✨ Finishing Touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch bump-more

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull Request Overview

Updates Node.js and associated dependencies to version 24, along with bumping various GitHub Actions, Python packages, and other dependencies to their latest versions.

• Updates Node.js version from 22.14.0 to 24.7.0
• Bumps GitHub Actions including checkout, setup-python, cache, and setup-node to newer versions
• Updates Python dependencies like pytest, pytest-cov, and various Pulumi packages

Reviewed Changes

Copilot reviewed 7 out of 8 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
template/extensions/context.py.jinja-base	Adds node_version context variable for template rendering
template/copier.yml.jinja-base	Updates default node version to use template variable
pyproject.toml	Bumps pytest and pytest-cov versions
extensions/context.py	Updates multiple dependency versions including Node.js, GitHub Actions, and Python packages
.github/workflows/tag-on-merge.yaml	Updates checkout action to v5.0.0
.github/workflows/ci.yaml	Updates multiple GitHub Actions to newer versions
.devcontainer/devcontainer.json	Updates devcontainer context hash

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (5)

.github/workflows/tag-on-merge.yaml (1)

16-16: Upgrade to actions/checkout@v5 — LGTM

Optionally pin to a commit SHA for supply-chain hardening.

.github/workflows/ci.yaml (2)

82-88: Repeat: align setup-python version in lint-matrix step

Same note as above; keep it consistent with the chosen version.

-      - name: Setup Python
-        uses: actions/setup-python@v5.0.0
+      - name: Setup Python
+        uses: actions/setup-python@v6.0.0

---

27-31: Align setup-python action version in CI workflow
To match gha_setup_python = v6.0.0 in extensions/context.py, update both occurrences of actions/setup-python@v5.0.0 in .github/workflows/ci.yaml (lines 30 and 85) to actions/setup-python@v6.0.0.

extensions/context.py (2)

28-35: Pulumi/boto3/strawberry bumps — verify downstream compatibility

pulumi_okta jumped a major (4.x → 5.x). If templates pin providers/plugins, ensure generated stacks and plugins resolve cleanly.

Would you like a follow-up PR to run a template instantiation smoke check across these versions?

---

69-72: Context lists gha_setup_python=v6.0.0, workflows use v5.0.0

Either drop this to v5.0.0 here or bump workflows to v6.0.0.

-        context["gha_setup_python"] = "v6.0.0"
+        context["gha_setup_python"] = "v5.0.0"

Or keep v6 here and apply the ci.yaml diffs suggested.

Also applies to: 82-82, 85-85

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between daeb5a0 and 71cfd33.

⛔ Files ignored due to path filters (1)

• uv.lock is excluded by !**/*.lock

📒 Files selected for processing (7)

• .devcontainer/devcontainer.json (1 hunks)
• .github/workflows/ci.yaml (4 hunks)
• .github/workflows/tag-on-merge.yaml (1 hunks)
• extensions/context.py (3 hunks)
• pyproject.toml (1 hunks)
• template/copier.yml.jinja-base (1 hunks)
• template/extensions/context.py.jinja-base (1 hunks)

🔇 Additional comments (8)

.devcontainer/devcontainer.json (1)

62-62: Hash bump only — LGTM

No action needed.

pyproject.toml (1)

8-9: pytest/pytest-cov bumps — LGTM

Matches extensions/context.py.

template/extensions/context.py.jinja-base (1)

40-40: Expose node_version in template context — LGTM

Confirmed consumed in template/copier.yml.jinja-base.

.github/workflows/ci.yaml (1)

49-51: actions/cache -> v4.2.4 — LGTM

Consistent with context.

Also applies to: 131-131

extensions/context.py (3)

23-25: Test tooling bumps — LGTM

Keeps pyproject and context in sync.

---

90-91: alpine/nginx image bumps — LGTM

If any Dockerfiles reference these via templating, expect cache misses on first CI run.

---

45-46: Approve Node version bump (24.7.0) — verify CI setup: I didn’t find any actions/setup-node usage in your .github/workflows; please confirm your CI pipeline installs Node 24.7.0 (e.g., via actions/setup-node@v3 with node-version: "24.7.0").

template/copier.yml.jinja-base (1)

33-33: Default node_version now sourced from context — LGTM

Reduces hard-coded drift across templates.