You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This is an automated pull request to update pinned browsers and drivers
Merge after verify the new browser versions properly passing the tests and no bugs need to be filed
PR Type
Enhancement
Description
Update Chrome and ChromeDriver versions from 142.0.7444.175 to 143.0.7499.40
Update Linux Chrome binary and corresponding SHA256 hash
Update macOS Chrome binary and corresponding SHA256 hash
Update Linux and macOS ChromeDriver binaries with new hashes
Diagram Walkthrough
flowchart LR
A["Chrome/ChromeDriver v142.0.7444.175"] -- "Update to v143.0.7499.40" --> B["Linux Chrome"]
A -- "Update to v143.0.7499.40" --> C["macOS Chrome"]
A -- "Update to v143.0.7499.40" --> D["Linux ChromeDriver"]
A -- "Update to v143.0.7499.40" --> E["macOS ChromeDriver"]
B --> F["New SHA256 hashes"]
C --> F
D --> F
E --> F
Loading
File Walkthrough
Relevant files
Configuration changes
repositories.bzl
Update Chrome and ChromeDriver pinned versions
common/repositories.bzl
Updated Chrome version from 142.0.7444.175 to 143.0.7499.40 for Linux and macOS
Updated ChromeDriver version from 142.0.7444.175 to 143.0.7499.40 for Linux and macOS
Updated all corresponding SHA256 checksums for binary verification
Modified four http_archive entries: linux_chrome, mac_chrome, linux_chromedriver, and mac_chromedriver
Objective: To create a detailed and reliable record of critical system actions for security analysis and compliance.
Status: No audit scope: The changes only update external binary URLs and hashes without introducing or modifying any application logic where audit trails would apply, so compliance cannot be determined from this diff alone.
Referred Code
url="https://storage.googleapis.com/chrome-for-testing-public/143.0.7499.40/linux64/chrome-linux64.zip",
sha256="149b71620aaf96d94f7500995aa58baabb7702e29c0a7cbef62d14a75f865068",
build_file_content="""load("@aspect_rules_js//js:defs.bzl", "js_library")package(default_visibility = ["//visibility:public"])filegroup( name = "files", srcs = glob(["**/*"]),)exports_files(["chrome-linux64/chrome"])js_library( name = "chrome-js", data = [":files"],)""",
)
http_archive(
name="mac_chrome",
... (clipped42lines)
Generic: Robust Error Handling and Edge Case Management
Objective: Ensure comprehensive error handling that provides meaningful context and graceful degradation
Status: No error paths: The diff only updates Bazel http_archive URLs and sha256 values without adding code paths where runtime errors are handled, so robustness cannot be assessed from these changes alone.
Referred Code
http_archive(
name="linux_chrome",
url="https://storage.googleapis.com/chrome-for-testing-public/143.0.7499.40/linux64/chrome-linux64.zip",
sha256="149b71620aaf96d94f7500995aa58baabb7702e29c0a7cbef62d14a75f865068",
build_file_content="""load("@aspect_rules_js//js:defs.bzl", "js_library")package(default_visibility = ["//visibility:public"])filegroup( name = "files", srcs = glob(["**/*"]),)exports_files(["chrome-linux64/chrome"])js_library( name = "chrome-js", data = [":files"],)""",
)
... (clipped46lines)
Objective: To prevent the leakage of sensitive system information through error messages while providing sufficient detail for internal debugging.
Status: No user errors: The change only updates dependency archives and does not introduce user-facing error messages, so secure error handling cannot be evaluated from this diff.
Referred Code
http_archive(
name="linux_chrome",
url="https://storage.googleapis.com/chrome-for-testing-public/143.0.7499.40/linux64/chrome-linux64.zip",
sha256="149b71620aaf96d94f7500995aa58baabb7702e29c0a7cbef62d14a75f865068",
build_file_content="""load("@aspect_rules_js//js:defs.bzl", "js_library")package(default_visibility = ["//visibility:public"])filegroup( name = "files", srcs = glob(["**/*"]),)exports_files(["chrome-linux64/chrome"])js_library( name = "chrome-js", data = [":files"],)""",
)
... (clipped46lines)
Generic: Security-First Input Validation and Data Handling
Objective: Ensure all data inputs are validated, sanitized, and handled securely to prevent vulnerabilities
Status: External binaries: The PR updates external binary URLs and checksums which affects supply-chain inputs, but validation and trust model beyond sha256 verification are not visible in this diff and require broader review.
Referred Code
http_archive(
name="linux_chrome",
url="https://storage.googleapis.com/chrome-for-testing-public/143.0.7499.40/linux64/chrome-linux64.zip",
sha256="149b71620aaf96d94f7500995aa58baabb7702e29c0a7cbef62d14a75f865068",
build_file_content="""load("@aspect_rules_js//js:defs.bzl", "js_library")package(default_visibility = ["//visibility:public"])filegroup( name = "files", srcs = glob(["**/*"]),)exports_files(["chrome-linux64/chrome"])js_library( name = "chrome-js", data = [":files"],)""",
)
... (clipped44lines)
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
User description
This is an automated pull request to update pinned browsers and drivers
Merge after verify the new browser versions properly passing the tests and no bugs need to be filed
PR Type
Enhancement
Description
Update Chrome and ChromeDriver versions from 142.0.7444.175 to 143.0.7499.40
Update Linux Chrome binary and corresponding SHA256 hash
Update macOS Chrome binary and corresponding SHA256 hash
Update Linux and macOS ChromeDriver binaries with new hashes
Diagram Walkthrough
File Walkthrough
repositories.bzl
Update Chrome and ChromeDriver pinned versionscommon/repositories.bzl
and macOS
Linux and macOS
http_archiveentries:linux_chrome,mac_chrome,linux_chromedriver, andmac_chromedriver