Renovate does not extract docker actions from GitHub workflow steps when `-` precedes `uses: docker://`.

[RahulGautamSingh]

Discussed in #39915

^{Originally posted by mestriga December 11, 2025}

How are you running Renovate?

A Mend.io-hosted app

Which platform you running Renovate on?

GitHub.com

Which version of Renovate are you using?

42.42.2

Please tell us more about your question or problem

Renovate extracts the docker action from the first step in the fragment below, but silently ignores the second:

steps:
      - name: This is extracted by renovate
        uses: docker://ghcr.io/renovatebot/renovate:42.32.0
      - uses: docker://ghcr.io/renovatebot/renovate:42.32.0
        name: This is NOT extracted by renovate

This is controlled by https://github.com/renovatebot/renovate/blob/42.42.2/lib/modules/manager/github-actions/extract.ts#L23, that only matches when there are only space characters between the start of the line and the uses token:

const dockerActionRe = regEx(/^\s+uses\s*: ['"]?docker:\/\/([^'"]+)\s*$/);

A simple change to the dockerActionRe regex should fix this bug.

Minimal reproduction repo: https://github.com/mestriga/renovate-reproduction
Change proposed by renovate, ignoring the second step: https://github.com/mestriga/renovate-reproduction/pull/1/files

Logs (if relevant)

No response

[mestriga]

This can be closed, since it was resolved by #40216.

Extraction of the previously ignored form is correct as of v42.85.4:

-        uses: docker://ghcr.io/renovatebot/renovate:42.32.0
-      - uses: docker://ghcr.io/renovatebot/renovate:42.32.0
+        uses: docker://ghcr.io/renovatebot/renovate:42.85.4
+      - uses: docker://ghcr.io/renovatebot/renovate:42.85.4