Commit graph

291 commits

Author SHA1 Message Date
Brett Logan
4b3a1cb628 Update step name
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
fc841f15bd Rename workflow file
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
254b18b743 Fix workflow name
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
02c3084702 Update step name
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
9ccbc940a1 Remove stray git
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
05fcb7564c Remove stray slash
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
672b5ec94e Remove action.yml update debugging
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
16251e9518 Fix action.yml update
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
afcf97b858 Fix action.yml update
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
4483dae869 Fix image-id input
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
5cec0b4239 Fix build args
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
489b843118 Remove old workflows
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
bb2b8ec6f4 Simplify automation workflows
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
2b8f626566 Fix deps and secret injection
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
b4cd05cfe8 Expose GITHUB_TOKEN as Docker secret
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
5224656969 Push scripts into standalone files
Pushes inline scripts in the Dockerfile into standalone
scripts and authenticates requests to GitHub using a
Personal Access Token to reduce build flakiness due
to GitHub's abuse and ratelimiting due to unauthenticated
reuests.

Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
d42bc380ee
Fix release pipeline
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 02:09:47 -05:00
Brett Logan
098b6b8415
Fix release pipeline
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 02:07:14 -05:00
dependabot[bot]
ec6bde51de Bump actions/stale from 6 to 7
Bumps [actions/stale](https://github.com/actions/stale) from 6 to 7.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 17:43:50 -05:00
Brett Logan
6635505723 Bulk update deps
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-22 11:59:09 -05:00
Brett Logan
62d48af065
Temporary suspend notifications
Stopping issue notifications until we can sort out permissions on GHCR.

Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 22:55:54 -05:00
Brett Logan
f965bd7e7c
Use default GHCR token
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:14:59 -05:00
Brett Logan
8267d01125 Add missing actions permissions
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:00:18 -05:00
Brett Logan
07c894f89e Add explicit permissions
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:00:18 -05:00
dependabot[bot]
990f21c0ff Bump akhilerm/tag-push-action from 2.0.0 to 2.1.0
Bumps [akhilerm/tag-push-action](https://github.com/akhilerm/tag-push-action) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/akhilerm/tag-push-action/releases)
- [Commits](https://github.com/akhilerm/tag-push-action/compare/v2.0.0...v2.1.0)

---
updated-dependencies:
- dependency-name: akhilerm/tag-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:46 -05:00
Marco Ferrari
bf67bd6c01 Enable stack linter on push 2022-10-09 19:30:29 -04:00
Marco Ferrari
b4f9dd9ef4
Check the semver pattern after setting the value (#3418) 2022-10-05 08:25:04 -05:00
Marco Ferrari
4b6635f63b
Assign RELEASE_VERSION before using it (#3413) 2022-10-04 20:35:11 +02:00
Marco Ferrari
04c32aa45a
Assign the RELEASE_VERSION variable (#3385) 2022-10-03 02:44:43 +00:00
Marco Ferrari
be49e014f8
Checkout code before tagging (#3382) 2022-09-30 13:47:01 -05:00
Marco Ferrari
ccf58d2678
Use Git to update major version and latest tags (#3376) 2022-09-30 12:55:04 -05:00
Marco Ferrari
23e8ced872
Fix issues in the build workflow (#3357)
* Fix issues in the build workflow

* Don't build the image when running trivy

* Move the alpine glibc package key in the repo

* Move the alpine glibc package key in the repo

* Update labels

* Pull and tag
2022-09-27 14:30:54 +00:00
dependabot[bot]
1cd4955a84
Bump actions/stale from 5 to 6 (#3349)
Bumps [actions/stale](https://github.com/actions/stale) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-26 20:01:01 +02:00
dependabot[bot]
845a5ccdf3
Bump docker/build-push-action from 3.1.0 to 3.1.1 (#3209)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v3.1.0...v3.1.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-15 11:23:56 -05:00
dependabot[bot]
8d4fbd9a7b
Bump docker/build-push-action from 3.0.0 to 3.1.0 (#3169)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v3.0.0...v3.1.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 09:20:01 -05:00
dependabot[bot]
74866d9dc7
Bump bobheadxi/deployments from 1.2.0 to 1.3.0 (#3076)
Bumps [bobheadxi/deployments](https://github.com/bobheadxi/deployments) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/bobheadxi/deployments/releases)
- [Commits](https://github.com/bobheadxi/deployments/compare/v1.2.0...v1.3.0)

---
updated-dependencies:
- dependency-name: bobheadxi/deployments
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-11 12:13:52 -05:00
Lukas Gravley
431ee7836e
Release 4.9.3 (#2948)
* Update action.yml

* Update action.yml

* set flag to solve local changes

* spaces
2022-05-24 13:44:12 -05:00
dependabot[bot]
c8ed73eba3
Bump bobheadxi/deployments from 1.1.0 to 1.2.0 (#2896)
Bumps [bobheadxi/deployments](https://github.com/bobheadxi/deployments) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/bobheadxi/deployments/releases)
- [Commits](https://github.com/bobheadxi/deployments/compare/v1.1.0...v1.2.0)

---
updated-dependencies:
- dependency-name: bobheadxi/deployments
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 14:01:07 -05:00
dependabot[bot]
a83ec31a5a
Bump docker/setup-buildx-action from 1.7.0 to 2.0.0 (#2878)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.7.0 to 2.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1.7.0...v2.0.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:46:10 -05:00
dependabot[bot]
41c68e2af0
Bump docker/login-action from 1.14.1 to 2.0.0 (#2880)
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.0.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1.14.1...v2.0.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:45:50 -05:00
dependabot[bot]
9ddc2e8ff2
Bump docker/build-push-action from 2.10.0 to 3.0.0 (#2883)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v2.10.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:45:10 -05:00
dependabot[bot]
83821e7641
Bump docker/setup-buildx-action from 1.6.0 to 1.7.0 (#2855)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1.6.0...v1.7.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-02 10:40:35 -05:00
dependabot[bot]
e2efd920f2
Bump github/codeql-action from 1 to 2 (#2829)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-02 09:56:21 -05:00
dependabot[bot]
6da50e12d5
Bump githubocto/repo-visualizer from 0.8.1 to 0.8.2 (#2791)
Bumps [githubocto/repo-visualizer](https://github.com/githubocto/repo-visualizer) from 0.8.1 to 0.8.2.
- [Release notes](https://github.com/githubocto/repo-visualizer/releases)
- [Commits](https://github.com/githubocto/repo-visualizer/compare/0.8.1...0.8.2)

---
updated-dependencies:
- dependency-name: githubocto/repo-visualizer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-20 10:29:07 -07:00
nathannaveen
4471e9f322
Set permissions for GitHub actions (#2752)
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-04-11 14:52:49 -05:00
dependabot[bot]
e1fbcef13d
Bump actions/stale from 4 to 5 (#2760)
Bumps [actions/stale](https://github.com/actions/stale) from 4 to 5.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-11 12:56:39 -05:00
dependabot[bot]
2feab4440c
Bump githubocto/repo-visualizer from 0.7.1 to 0.8.1 (#2727)
Bumps [githubocto/repo-visualizer](https://github.com/githubocto/repo-visualizer) from 0.7.1 to 0.8.1.
- [Release notes](https://github.com/githubocto/repo-visualizer/releases)
- [Commits](https://github.com/githubocto/repo-visualizer/compare/0.7.1...0.8.1)

---
updated-dependencies:
- dependency-name: githubocto/repo-visualizer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-04 09:02:51 -05:00
Lukas Gravley
60e7787217
manual trigger (#2681) 2022-03-25 10:20:52 -05:00
Lukas Gravley
9bf6767260
Update deploy-release.yml 2022-03-25 10:04:38 -05:00
Lukas Gravley
b70e0b55d0
Update deploy-release.yml 2022-03-25 09:57:00 -05:00