diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index 20703037..00000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,22 +0,0 @@ -version: 2 -updates: - - package-ecosystem: "github-actions" - directory: "/" - schedule: - interval: "daily" - labels: - - "kind/dependencies" - commit-message: - include: scope - prefix: bump - - - package-ecosystem: 'npm' - directory: '/docs' - schedule: - interval: 'daily' - labels: - - 'kind/dependencies' - versioning-strategy: 'increase' - commit-message: - include: scope - prefix: bump diff --git a/.github/renovate.json b/.github/renovate.json new file mode 100644 index 00000000..82924b69 --- /dev/null +++ b/.github/renovate.json @@ -0,0 +1,28 @@ +{ + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "extends": ["config:base", "helpers:pinGitHubActionDigests", ":semanticCommitTypeAll(bump)"], + "dependencyDashboard": true, + "dependencyDashboardAutoclose": false, + "major": { + "dependencyDashboardApproval": true + }, + "rangeStrategy": "bump", + "packageRules": [ + { + "matchPackagePatterns": ["eslint"], + "groupName": "eslint" + }, + { + "matchPackagePatterns": ["jest"], + "groupName": "jest" + }, + { + "matchPackagePatterns": ["^@birthdayresearch/contented"], + "groupName": "@birthdayresearch/contented" + }, + { + "matchPackagePatterns": ["^@birthdayresearch/sticky", "^@birthdayresearch/eslint-config"], + "groupName": "@birthdayresearch/sticky" + } + ] +} diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 2945aeb7..4fb5e601 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -19,10 +19,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - name: Cache - uses: actions/cache@fd5de65bc895cf536527842281bea11763fefd77 + uses: actions/cache@fd5de65bc895cf536527842281bea11763fefd77 # tag=v3.0.8 with: path: | ~/.cargo/bin/ @@ -33,7 +33,7 @@ jobs: key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }} - name: Set up rust toolchain - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af + uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # tag=v1.0.6 with: profile: minimal toolchain: nightly @@ -42,7 +42,7 @@ jobs: override: true - name: Cargo build - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 + uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # tag=v1.0.3 with: command: build args: --release --all @@ -53,20 +53,20 @@ jobs: cp target/release/meta-node build/ - name: Set up QEMU - uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 + uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 # tag=v2.0.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6 + uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6 # tag=v2.0.0 - name: Login to GitHub Container Registry - uses: docker/login-action@49ed152c8eca782a232dede0303416e8f356c37b + uses: docker/login-action@49ed152c8eca782a232dede0303416e8f356c37b # tag=v2.0.0 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Tags - uses: actions/github-script@c713e510dbd7d213d92d41b7a7805a986f4c5c66 + uses: actions/github-script@c713e510dbd7d213d92d41b7a7805a986f4c5c66 # tag=v6.2.0 id: tags with: script: | @@ -94,7 +94,7 @@ jobs: sed -i 's/FROM /FROM --platform=$BUILDPLATFORM /g' ./Dockerfile - name: Build & Publish - uses: docker/build-push-action@c84f38281176d4c9cdb1626ffafcd6b3911b5d94 + uses: docker/build-push-action@c84f38281176d4c9cdb1626ffafcd6b3911b5d94 # tag=v3.1.1 with: context: . file: ./Dockerfile @@ -108,7 +108,7 @@ jobs: - name: Post Report if: github.event_name == 'pull_request' - uses: marocchino/sticky-pull-request-comment@39c5b5dc7717447d0cba270cd115037d32d28443 + uses: marocchino/sticky-pull-request-comment@39c5b5dc7717447d0cba270cd115037d32d28443 # tag=v2.2.0 with: header: release message: | diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index c9f7a000..4edb25aa 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -14,9 +14,9 @@ jobs: Build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - - uses: actions/cache@fd5de65bc895cf536527842281bea11763fefd77 + - uses: actions/cache@fd5de65bc895cf536527842281bea11763fefd77 # tag=v3.0.8 with: path: | ~/.cargo/bin/ @@ -26,7 +26,7 @@ jobs: target/ key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }} - - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af + - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # tag=v1.0.6 with: profile: minimal toolchain: nightly @@ -34,7 +34,7 @@ jobs: default: true override: true - - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 + - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # tag=v1.0.3 with: command: build args: --release --all @@ -43,9 +43,9 @@ jobs: name: Lint (cargo fmt) runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af + - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # tag=v1.0.6 with: profile: minimal toolchain: nightly @@ -54,7 +54,7 @@ jobs: override: true components: rustfmt - - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 + - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # tag=v1.0.3 with: command: fmt args: --all -- --check @@ -63,9 +63,9 @@ jobs: name: Lint (cargo clippy) runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af + - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # tag=v1.0.6 with: profile: minimal toolchain: nightly @@ -74,7 +74,7 @@ jobs: override: true components: clippy - - uses: actions-rs/clippy-check@b5b5f21f4797c02da247df37026fcd0a5024aa4d + - uses: actions-rs/clippy-check@b5b5f21f4797c02da247df37026fcd0a5024aa4d # tag=v1.0.7 with: token: ${{ secrets.GITHUB_TOKEN }} args: --all-features @@ -82,9 +82,9 @@ jobs: Test: runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af + - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # tag=v1.0.6 with: profile: minimal toolchain: nightly @@ -92,7 +92,7 @@ jobs: default: true override: true - - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 + - uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # tag=v1.0.3 with: command: test args: --all-features --no-fail-fast @@ -102,9 +102,9 @@ jobs: RUSTDOCFLAGS: '-Zprofile -Ccodegen-units=1 -Cinline-threshold=0 -Clink-dead-code -Coverflow-checks=off -Cpanic=abort -Zpanic_abort_tests' - id: coverage - uses: actions-rs/grcov@770fa904bcbfc50da498080d1511da7388e6ddc6 + uses: actions-rs/grcov@770fa904bcbfc50da498080d1511da7388e6ddc6 # tag=v0.1.6 - - uses: codecov/codecov-action@81cd2dc8148241f03f5839d295e000b8f761e378 + - uses: codecov/codecov-action@81cd2dc8148241f03f5839d295e000b8f761e378 # tag=v3.1.0 with: files: ${{ steps.coverage.outputs.report }} fail_ci_if_error: true @@ -112,8 +112,9 @@ jobs: e2e: runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b - - uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 + + - uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 # tag=v3.4.1 with: node-version: '16' cache: 'npm' diff --git a/.github/workflows/docs-release.yml b/.github/workflows/docs-release.yml index 1cfe0d12..b469a595 100644 --- a/.github/workflows/docs-release.yml +++ b/.github/workflows/docs-release.yml @@ -15,7 +15,7 @@ jobs: result: ${{ steps.version.outputs.result }} steps: - id: version - uses: actions/github-script@c713e510dbd7d213d92d41b7a7805a986f4c5c66 + uses: actions/github-script@c713e510dbd7d213d92d41b7a7805a986f4c5c66 # tag=v6.2.0 with: script: | const semver = context.ref.replace('refs/tags/v', '') @@ -30,8 +30,9 @@ jobs: needs: Version environment: NPM Release steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b - - uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 + + - uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 # tag=v3.4.1 with: node-version: '16' diff --git a/.github/workflows/oss-governance-bot.yml b/.github/workflows/oss-governance-bot.yml index 7cc5580f..6d6d2669 100644 --- a/.github/workflows/oss-governance-bot.yml +++ b/.github/workflows/oss-governance-bot.yml @@ -19,6 +19,6 @@ jobs: Bot: runs-on: ubuntu-latest steps: - - uses: BirthdayResearch/oss-governance-bot@52367df5cdbc6ede6126a1db7a663f22cffe739c + - uses: BirthdayResearch/oss-governance-bot@52367df5cdbc6ede6126a1db7a663f22cffe739c # tag=v2.0.11 with: github-token: ${{ secrets.DEFICHAIN_BOT_GITHUB_TOKEN }} diff --git a/.github/workflows/oss-governance-labeler.yml b/.github/workflows/oss-governance-labeler.yml index 03bf7938..67427a5b 100644 --- a/.github/workflows/oss-governance-labeler.yml +++ b/.github/workflows/oss-governance-labeler.yml @@ -15,7 +15,7 @@ jobs: Labeler: runs-on: ubuntu-latest steps: - - uses: fuxingloh/multi-labeler@fb9bc28b2d65e406ffd208384c5095793c3fd59a + - uses: fuxingloh/multi-labeler@fb9bc28b2d65e406ffd208384c5095793c3fd59a # tag=v1.8.0 with: github-token: ${{ secrets.DEFICHAIN_BOT_GITHUB_TOKEN }} config-path: .github/labeler.yml diff --git a/.github/workflows/oss-governance-labels.yml b/.github/workflows/oss-governance-labels.yml index 464f4a47..d7333d83 100644 --- a/.github/workflows/oss-governance-labels.yml +++ b/.github/workflows/oss-governance-labels.yml @@ -13,9 +13,9 @@ jobs: Labels: runs-on: ubuntu-latest steps: - - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b + - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2 - - uses: micnncim/action-label-syncer@3abd5ab72fda571e69fffd97bd4e0033dd5f495c + - uses: micnncim/action-label-syncer@3abd5ab72fda571e69fffd97bd4e0033dd5f495c # tag=v1.3.0 with: prune: true env: diff --git a/.github/workflows/release-drafter.yml b/.github/workflows/release-drafter.yml index 6f1dfe85..5d365797 100644 --- a/.github/workflows/release-drafter.yml +++ b/.github/workflows/release-drafter.yml @@ -16,6 +16,6 @@ jobs: main: runs-on: ubuntu-latest steps: - - uses: release-drafter/release-drafter@06a49bf28488e030d35ca2ac6dbf7f408a481779 + - uses: release-drafter/release-drafter@06a49bf28488e030d35ca2ac6dbf7f408a481779 # tag=v5.20.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}