Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update mattermost support dependencies #135

Merged
merged 33 commits into from
Oct 8, 2024
Merged
Show file tree
Hide file tree
Changes from 29 commits
Commits
Show all changes
33 commits
Select commit Hold shift + click to select a range
0282bc9
chore(deps): update mattermost support dependencies
renovate[bot] Oct 7, 2024
7fd470f
add callable lint
zachariahmiller Oct 7, 2024
ed346f2
add task import
zachariahmiller Oct 7, 2024
a3d19f2
resolve shellcheck issue
zachariahmiller Oct 7, 2024
05cbd15
shellcheck
zachariahmiller Oct 7, 2024
828581f
shellcheck
zachariahmiller Oct 7, 2024
8cf787b
update test workflow to callable
zachariahmiller Oct 7, 2024
a0a93b2
remove typo
zachariahmiller Oct 7, 2024
ada6eaf
remote action call
zachariahmiller Oct 7, 2024
5c2836c
add badge import
zachariahmiller Oct 7, 2024
7c7522d
update commitlint and doc shim
zachariahmiller Oct 7, 2024
dcf0013
callable release, fix lint
zachariahmiller Oct 8, 2024
3bf4b85
add reports-path input
zachariahmiller Oct 8, 2024
1761ffe
remove name override on commitlint
zachariahmiller Oct 8, 2024
efca53d
refactor tasks and add publish root task
zachariahmiller Oct 8, 2024
3170ae2
lint fix extra newline
zachariahmiller Oct 8, 2024
6ede4fc
omit test on fake arm published for dev (upstream)
zachariahmiller Oct 8, 2024
a72969f
fix conditional
zachariahmiller Oct 8, 2024
995ed21
add task to determine arch
zachariahmiller Oct 8, 2024
c853a65
update uds-common digests
zachariahmiller Oct 8, 2024
dbe44d3
add missing task import
zachariahmiller Oct 8, 2024
4e7704f
update digests
zachariahmiller Oct 8, 2024
57331b0
add upgrade deps cmd
zachariahmiller Oct 8, 2024
ad8c3f0
fix plugin package on upgrade
zachariahmiller Oct 8, 2024
849525e
lint add new line
zachariahmiller Oct 8, 2024
cd7e3a7
add missing package create on upgrade add publish task import
zachariahmiller Oct 8, 2024
3804e62
remove codeql and dependencyreview workflows
zachariahmiller Oct 8, 2024
9b92cb9
remove workflow_call from lint
zachariahmiller Oct 8, 2024
bfbfaa5
remove comment
zachariahmiller Oct 8, 2024
ef87195
make scorecard callable
zachariahmiller Oct 8, 2024
8ac276d
Update .github/workflows/test.yaml
zachariahmiller Oct 8, 2024
7447393
remove precommit yaml
zachariahmiller Oct 8, 2024
c70b997
Apply suggestions from code review
zachariahmiller Oct 8, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 7 additions & 9 deletions .github/workflows/ci-docs-shim.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -6,15 +6,13 @@ on:
types: [milestoned, opened, synchronize]

jobs:
run-test:
name: ${{ matrix.type }} ${{ matrix.flavor }}
runs-on: "ubuntu-latest"
timeout-minutes: 20
validate:
strategy:
matrix:
flavor: [upstream, registry1]
type: [install, upgrade]
steps:
- name: Shim for ${{ matrix.type }} ${{ matrix.flavor }}
run: |
echo "Documentation-only change detected; marking ${{ matrix.type }} ${{ matrix.flavor }} as successful."
flavor: [upstream, registry1, unicorn]
uses: defenseunicorns/uds-common/.github/workflows/callable-ci-docs-shim.yaml@86886015d1edc43036b3dd000fbd972a384beb8f # v1.0.0
with:
flavor: ${{ matrix.flavor }}
type: ${{ matrix.type }}
secrets: inherit # Inherits all secrets from the parent workflow.
45 changes: 0 additions & 45 deletions .github/workflows/codeql.yaml

This file was deleted.

3 changes: 1 addition & 2 deletions .github/workflows/commitlint.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -7,5 +7,4 @@ on:

jobs:
validate:
name: Validate
uses: defenseunicorns/uds-common/.github/workflows/commitlint.yaml@76287d41ec5f06ecbdd0a6453877a78675aceffe # v0.11.2
uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@86886015d1edc43036b3dd000fbd972a384beb8f # v1.0.0
27 changes: 0 additions & 27 deletions .github/workflows/dependencyreview.yaml

This file was deleted.

35 changes: 5 additions & 30 deletions .github/workflows/lint.yaml
Original file line number Diff line number Diff line change
@@ -1,37 +1,12 @@
name: Scan
name: Lint

on:
# This workflow is triggered on pull requests to the main branch.
pull_request:
branches: [main]
types: [milestoned, opened, synchronize]
# milestoned is added here as a workaround for release-please not triggering PR workflows (PRs should be added to a milestone to trigger the workflow).
types: [milestoned, opened, reopened, synchronize]

jobs:
validate:
runs-on: ubuntu-latest
name: Lint
permissions:
contents: read # Allows reading the repo contents
id-token: write

steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
fetch-depth: 0

- name: Environment setup
uses: defenseunicorns/uds-common/.github/actions/setup@76287d41ec5f06ecbdd0a6453877a78675aceffe # v0.11.2
with:
registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
ghToken: ${{ secrets.GITHUB_TOKEN }}
chainguardIdentity: ${{ secrets.CHAINGUARD_IDENTITY }}

- name: Install lint deps
run: |
uds run lint:deps

- name: Lint the repository
run: |
uds run lint:yaml
uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@86886015d1edc43036b3dd000fbd972a384beb8f # v1.0.0
secrets: inherit
46 changes: 46 additions & 0 deletions .github/workflows/release.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
name: Release

on:
push:
branches:
- main

# Permissions for the GITHUB_TOKEN used by the workflow.
permissions:
contents: read # Allows reading the content of the repository.
packages: read # Allows reading the content of the repository's packages.
id-token: write

jobs:
tag-new-version:
permissions: write-all
runs-on: ubuntu-latest
outputs:
release_created: ${{ steps.release-flag.outputs.release_created }}
steps:
- name: Create Release Tag
id: tag
uses: googleapis/release-please-action@7987652d64b4581673a76e33ad5e98e3dd56832f # v4.1.3
- id: release-flag
run: echo "release_created=${{ steps.tag.outputs.release_created || false }}" >> "$GITHUB_OUTPUT"

publish:
permissions:
contents: read # Allows reading the content of the repository.
packages: write # Allows reading the content of the repository's packages.
id-token: write
needs: tag-new-version
if: ${{ needs.tag-new-version.outputs.release_created == 'true' }}
strategy:
matrix:
flavor: [upstream, registry1, unicorn]
architecture: [amd64, arm64]
exclude:
- flavor: registry1
architecture: arm64
uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@86886015d1edc43036b3dd000fbd972a384beb8f # v1.0.0
with:
flavor: ${{ matrix.flavor }}
runsOn: ${{ matrix.architecture == 'arm64' && 'uds-swf-ubuntu-arm64-4-core' || 'uds-swf-ubuntu-big-boy-4-core' }}
reports-path: "tests/.playwright/reports/"
secrets: inherit # Inherits all secrets from the parent workflow.
6 changes: 3 additions & 3 deletions .github/workflows/scorecard.yaml
zachariahmiller marked this conversation as resolved.
Show resolved Hide resolved
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ jobs:

steps:
- name: "Checkout code"
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with:
persist-credentials: false

Expand All @@ -37,14 +37,14 @@ jobs:
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
with:
name: SARIF file
path: results.sarif
retention-days: 5

# Upload the results to GitHub's code scanning dashboard.
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
with:
sarif_file: results.sarif
79 changes: 0 additions & 79 deletions .github/workflows/tag-and-release.yaml

This file was deleted.

Loading
Loading