Commit graph

276 commits

Author SHA1 Message Date
Brett Logan
5224656969 Push scripts into standalone files
Pushes inline scripts in the Dockerfile into standalone
scripts and authenticates requests to GitHub using a
Personal Access Token to reduce build flakiness due
to GitHub's abuse and ratelimiting due to unauthenticated
reuests.

Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
d42bc380ee
Fix release pipeline
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 02:09:47 -05:00
Brett Logan
098b6b8415
Fix release pipeline
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 02:07:14 -05:00
dependabot[bot]
ec6bde51de Bump actions/stale from 6 to 7
Bumps [actions/stale](https://github.com/actions/stale) from 6 to 7.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 17:43:50 -05:00
Brett Logan
6635505723 Bulk update deps
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-22 11:59:09 -05:00
Brett Logan
62d48af065
Temporary suspend notifications
Stopping issue notifications until we can sort out permissions on GHCR.

Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 22:55:54 -05:00
Brett Logan
f965bd7e7c
Use default GHCR token
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:14:59 -05:00
Brett Logan
8267d01125 Add missing actions permissions
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:00:18 -05:00
Brett Logan
07c894f89e Add explicit permissions
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-20 18:00:18 -05:00
dependabot[bot]
990f21c0ff Bump akhilerm/tag-push-action from 2.0.0 to 2.1.0
Bumps [akhilerm/tag-push-action](https://github.com/akhilerm/tag-push-action) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/akhilerm/tag-push-action/releases)
- [Commits](https://github.com/akhilerm/tag-push-action/compare/v2.0.0...v2.1.0)

---
updated-dependencies:
- dependency-name: akhilerm/tag-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:46 -05:00
Marco Ferrari
bf67bd6c01 Enable stack linter on push 2022-10-09 19:30:29 -04:00
Marco Ferrari
b4f9dd9ef4
Check the semver pattern after setting the value (#3418) 2022-10-05 08:25:04 -05:00
Marco Ferrari
4b6635f63b
Assign RELEASE_VERSION before using it (#3413) 2022-10-04 20:35:11 +02:00
Marco Ferrari
04c32aa45a
Assign the RELEASE_VERSION variable (#3385) 2022-10-03 02:44:43 +00:00
Marco Ferrari
be49e014f8
Checkout code before tagging (#3382) 2022-09-30 13:47:01 -05:00
Marco Ferrari
ccf58d2678
Use Git to update major version and latest tags (#3376) 2022-09-30 12:55:04 -05:00
Marco Ferrari
23e8ced872
Fix issues in the build workflow (#3357)
* Fix issues in the build workflow

* Don't build the image when running trivy

* Move the alpine glibc package key in the repo

* Move the alpine glibc package key in the repo

* Update labels

* Pull and tag
2022-09-27 14:30:54 +00:00
dependabot[bot]
1cd4955a84
Bump actions/stale from 5 to 6 (#3349)
Bumps [actions/stale](https://github.com/actions/stale) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-26 20:01:01 +02:00
dependabot[bot]
845a5ccdf3
Bump docker/build-push-action from 3.1.0 to 3.1.1 (#3209)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v3.1.0...v3.1.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-15 11:23:56 -05:00
dependabot[bot]
8d4fbd9a7b
Bump docker/build-push-action from 3.0.0 to 3.1.0 (#3169)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v3.0.0...v3.1.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 09:20:01 -05:00
dependabot[bot]
74866d9dc7
Bump bobheadxi/deployments from 1.2.0 to 1.3.0 (#3076)
Bumps [bobheadxi/deployments](https://github.com/bobheadxi/deployments) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/bobheadxi/deployments/releases)
- [Commits](https://github.com/bobheadxi/deployments/compare/v1.2.0...v1.3.0)

---
updated-dependencies:
- dependency-name: bobheadxi/deployments
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-11 12:13:52 -05:00
Lukas Gravley
431ee7836e
Release 4.9.3 (#2948)
* Update action.yml

* Update action.yml

* set flag to solve local changes

* spaces
2022-05-24 13:44:12 -05:00
dependabot[bot]
c8ed73eba3
Bump bobheadxi/deployments from 1.1.0 to 1.2.0 (#2896)
Bumps [bobheadxi/deployments](https://github.com/bobheadxi/deployments) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/bobheadxi/deployments/releases)
- [Commits](https://github.com/bobheadxi/deployments/compare/v1.1.0...v1.2.0)

---
updated-dependencies:
- dependency-name: bobheadxi/deployments
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 14:01:07 -05:00
dependabot[bot]
a83ec31a5a
Bump docker/setup-buildx-action from 1.7.0 to 2.0.0 (#2878)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.7.0 to 2.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1.7.0...v2.0.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:46:10 -05:00
dependabot[bot]
41c68e2af0
Bump docker/login-action from 1.14.1 to 2.0.0 (#2880)
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.0.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1.14.1...v2.0.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:45:50 -05:00
dependabot[bot]
9ddc2e8ff2
Bump docker/build-push-action from 2.10.0 to 3.0.0 (#2883)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v2.10.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-09 09:45:10 -05:00
dependabot[bot]
83821e7641
Bump docker/setup-buildx-action from 1.6.0 to 1.7.0 (#2855)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1.6.0...v1.7.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-02 10:40:35 -05:00
dependabot[bot]
e2efd920f2
Bump github/codeql-action from 1 to 2 (#2829)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-02 09:56:21 -05:00
dependabot[bot]
6da50e12d5
Bump githubocto/repo-visualizer from 0.8.1 to 0.8.2 (#2791)
Bumps [githubocto/repo-visualizer](https://github.com/githubocto/repo-visualizer) from 0.8.1 to 0.8.2.
- [Release notes](https://github.com/githubocto/repo-visualizer/releases)
- [Commits](https://github.com/githubocto/repo-visualizer/compare/0.8.1...0.8.2)

---
updated-dependencies:
- dependency-name: githubocto/repo-visualizer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-20 10:29:07 -07:00
nathannaveen
4471e9f322
Set permissions for GitHub actions (#2752)
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-04-11 14:52:49 -05:00
dependabot[bot]
e1fbcef13d
Bump actions/stale from 4 to 5 (#2760)
Bumps [actions/stale](https://github.com/actions/stale) from 4 to 5.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-11 12:56:39 -05:00
dependabot[bot]
2feab4440c
Bump githubocto/repo-visualizer from 0.7.1 to 0.8.1 (#2727)
Bumps [githubocto/repo-visualizer](https://github.com/githubocto/repo-visualizer) from 0.7.1 to 0.8.1.
- [Release notes](https://github.com/githubocto/repo-visualizer/releases)
- [Commits](https://github.com/githubocto/repo-visualizer/compare/0.7.1...0.8.1)

---
updated-dependencies:
- dependency-name: githubocto/repo-visualizer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-04 09:02:51 -05:00
Lukas Gravley
60e7787217
manual trigger (#2681) 2022-03-25 10:20:52 -05:00
Lukas Gravley
9bf6767260
Update deploy-release.yml 2022-03-25 10:04:38 -05:00
Lukas Gravley
b70e0b55d0
Update deploy-release.yml 2022-03-25 09:57:00 -05:00
Lukas Gravley
33dfb2b624
weekly (#2679) 2022-03-25 08:56:31 -05:00
dependabot[bot]
053b37bbf5
Bump docker/build-push-action from 2.9.0 to 2.10.0 (#2646)
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.9.0 to 2.10.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v2.9.0...v2.10.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-24 16:20:58 -05:00
Lukas Gravley
aee503c133
trying to create diagram (#2674)
* trying to create diagram

* typo

* typo

* typo

* typo

* typo

* typo

* dope code
2022-03-24 13:46:42 -05:00
Masaya Suzuki
ed275dd57d
Add parameter env to step Update deployment status (#2639) 2022-03-15 09:54:31 +01:00
dependabot[bot]
5d5ae35998 Bump actions/checkout from 2.4.0 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.4.0...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-07 12:53:35 -05:00
dependabot[bot]
d90e4a4b72 Bump bobheadxi/deployments from 0.6.2 to 1.1.0
Bumps [bobheadxi/deployments](https://github.com/bobheadxi/deployments) from 0.6.2 to 1.1.0.
- [Release notes](https://github.com/bobheadxi/deployments/releases)
- [Commits](https://github.com/bobheadxi/deployments/compare/v0.6.2...v1.1.0)

---
updated-dependencies:
- dependency-name: bobheadxi/deployments
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-07 12:53:26 -05:00
dependabot[bot]
6fcca170d2 Bump docker/login-action from 1.14.0 to 1.14.1
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.0 to 1.14.1.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1.14.0...v1.14.1)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-07 12:53:12 -05:00
dependabot[bot]
98b3da2de8 Bump docker/login-action from 1.13.0 to 1.14.0
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.13.0 to 1.14.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1.13.0...v1.14.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-02-28 09:30:14 -05:00
Brett Logan
9e853793eb
Add timeout 2022-02-22 10:51:12 -05:00
Brett Logan
90427e7ed6
Add job name 2022-02-22 10:40:43 -05:00
Brett Logan
6b23c0aab1
Pass token into script 2022-02-22 10:33:03 -05:00
Brett Logan
f71367133f
Change venv path 2022-02-22 10:24:08 -05:00
Brett Logan
4a938c367e Add workflow for Python updates 2022-02-22 10:21:01 -05:00
Brett Logan
366889a844 Update Docker 2022-02-21 13:49:41 -05:00
Brett Logan
6e6d1348a6
Add Actions names 2022-02-21 10:17:34 -05:00