Commit graph

599 commits

Author SHA1 Message Date
dependabot[bot]
544297407f Bump zricethezav/gitleaks from v8.15.2 to v8.15.3
Bumps zricethezav/gitleaks from v8.15.2 to v8.15.3.

---
updated-dependencies:
- dependency-name: zricethezav/gitleaks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-26 22:08:15 -05:00
Brett Logan
03a3c29f60 Use Docker to pull kubeconform
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-16 21:14:13 -05:00
Rui Chen
e6445c358f replace kubeval with kubeconform
Signed-off-by: Rui Chen <rui@chenrui.dev>
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-16 21:14:13 -05:00
dependabot[bot]
46bb46783e Bump alpine from 3.17.0 to 3.17.1
Bumps alpine from 3.17.0 to 3.17.1.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-16 08:31:20 -05:00
dependabot[bot]
094f6fd78d Bump cljkondo/clj-kondo from 2022.12.10-alpine to 2023.01.12-alpine
Bumps cljkondo/clj-kondo from 2022.12.10-alpine to 2023.01.12-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-16 08:31:07 -05:00
dependabot[bot]
6d7a7b41c9 Bump hashicorp/terraform from 1.3.6 to 1.3.7
Bumps hashicorp/terraform from 1.3.6 to 1.3.7.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-09 09:42:47 -05:00
Brett Logan
06de195e36 Fix Dockerfile conflict
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
b4635519da Clean up matrix properties
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
f00a0bbe87 Remove dead arg
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
07e66bb8b8 Mount secret
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
59e3086d12 Fix conflict
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
1137155331 Fix arm-ttk path
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
b1386567ad Pin PSSA_VERSION
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
e469609f7c Fix PowerShell installation
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
5224656969 Push scripts into standalone files
Pushes inline scripts in the Dockerfile into standalone
scripts and authenticates requests to GitHub using a
Personal Access Token to reduce build flakiness due
to GitHub's abuse and ratelimiting due to unauthenticated
reuests.

Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
9f398bb021 Update shellcheck
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 01:45:10 -05:00
Brett Logan
24b9c2cbb4 Revert Dart update
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-03 23:54:16 -05:00
Brett Logan
a4a1f0de87 Update alpine images
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-03 23:54:16 -05:00
dependabot[bot]
121744548f Bump rhysd/actionlint from 1.6.21 to 1.6.22
Bumps rhysd/actionlint from 1.6.21 to 1.6.22.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 19:28:05 -05:00
dependabot[bot]
fd988d5b07 Bump dotenvlinter/dotenv-linter from 3.2.0 to 3.3.0
Bumps dotenvlinter/dotenv-linter from 3.2.0 to 3.3.0.

---
updated-dependencies:
- dependency-name: dotenvlinter/dotenv-linter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 17:44:04 -05:00
dependabot[bot]
ce7fa3215c Bump terraform-linters/tflint-bundle from v0.44.0.0 to v0.44.1.0
Bumps terraform-linters/tflint-bundle from v0.44.0.0 to v0.44.1.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 12:01:53 -05:00
dependabot[bot]
7abfaf27d2 Bump yoheimuta/protolint from 0.41.0 to 0.42.2
Bumps yoheimuta/protolint from 0.41.0 to 0.42.2.

---
updated-dependencies:
- dependency-name: yoheimuta/protolint
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-30 18:40:07 -05:00
dependabot[bot]
80c75ea8a2 Bump terraform-linters/tflint-bundle from v0.43.0.3 to v0.44.0.0
Bumps terraform-linters/tflint-bundle from v0.43.0.3 to v0.44.0.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-29 11:51:57 -05:00
dependabot[bot]
154522b380 Bump mvdan/shfmt from v3.5.1 to v3.6.0
Bumps mvdan/shfmt from v3.5.1 to v3.6.0.

---
updated-dependencies:
- dependency-name: mvdan/shfmt
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-26 11:46:14 -05:00
Brett Logan
6635505723 Bulk update deps
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-22 11:59:09 -05:00
dependabot[bot]
37b6ff9a3f Bump tenable/terrascan from 1.15.2 to 1.17.1
Bumps tenable/terrascan from 1.15.2 to 1.17.1.

---
updated-dependencies:
- dependency-name: tenable/terrascan
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:40:14 -05:00
dependabot[bot]
729eece046 Bump zricethezav/gitleaks from v8.13.0 to v8.15.2
Bumps zricethezav/gitleaks from v8.13.0 to v8.15.2.

---
updated-dependencies:
- dependency-name: zricethezav/gitleaks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:38 -05:00
dependabot[bot]
caf5d25ded Bump hashicorp/terraform from 1.3.2 to 1.3.6
Bumps hashicorp/terraform from 1.3.2 to 1.3.6.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:31 -05:00
dependabot[bot]
3947ead7f2 Bump cljkondo/clj-kondo from 2022.10.05-alpine to 2022.12.10-alpine
Bumps cljkondo/clj-kondo from 2022.10.05-alpine to 2022.12.10-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:22 -05:00
dependabot[bot]
491be07bdb Bump terraform-linters/tflint-bundle from v0.41.0.1 to v0.43.0.3
Bumps terraform-linters/tflint-bundle from v0.41.0.1 to v0.43.0.3.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:03:00 -05:00
Brett Logan
c839c0b828
Set pwsh to be executable 2022-12-02 02:37:36 -05:00
dependabot[bot]
6aafc9b874
Bump hashicorp/terraform from 1.3.1 to 1.3.2 (#3428)
Bumps hashicorp/terraform from 1.3.1 to 1.3.2.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 11:14:40 -05:00
dependabot[bot]
2605ba9447
Bump golangci/golangci-lint from v1.49.0 to v1.50.0 (#3429)
Bumps golangci/golangci-lint from v1.49.0 to v1.50.0.

---
updated-dependencies:
- dependency-name: golangci/golangci-lint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 16:09:33 +00:00
dependabot[bot]
aa3b7bdf84
Bump rhysd/actionlint from 1.6.20 to 1.6.21 (#3431)
Bumps rhysd/actionlint from 1.6.20 to 1.6.21.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 13:41:04 +00:00
dependabot[bot]
48178ef80d
Bump alpine/terragrunt from 1.3.1 to 1.3.2 (#3432)
Bumps alpine/terragrunt from 1.3.1 to 1.3.2.

---
updated-dependencies:
- dependency-name: alpine/terragrunt
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2022-10-11 13:29:22 +00:00
dependabot[bot]
79f3689a4f
Bump cljkondo/clj-kondo from 2022.09.08-alpine to 2022.10.05-alpine (#3430)
Bumps cljkondo/clj-kondo from 2022.09.08-alpine to 2022.10.05-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-10 13:52:30 -05:00
dependabot[bot]
5f638492f1
Bump alpine/terragrunt from 1.3.0 to 1.3.1 (#3393)
Bumps alpine/terragrunt from 1.3.0 to 1.3.1.

---
updated-dependencies:
- dependency-name: alpine/terragrunt
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-04 15:15:50 +00:00
dependabot[bot]
d5e5798d04
Bump terraform-linters/tflint-bundle from v0.41.0.0 to v0.41.0.1 (#3392)
Bumps terraform-linters/tflint-bundle from v0.41.0.0 to v0.41.0.1.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-04 11:27:29 +02:00
dependabot[bot]
54fa9ed856
Bump hashicorp/terraform from 1.3.0 to 1.3.1 (#3395)
Bumps hashicorp/terraform from 1.3.0 to 1.3.1.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-03 21:20:39 +02:00
dependabot[bot]
e51114a0f4
Bump rhysd/actionlint from 1.6.19 to 1.6.20 (#3396)
Bumps rhysd/actionlint from 1.6.19 to 1.6.20.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-03 12:18:48 -05:00
dependabot[bot]
718f2d6dfd
Bump cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine (#3305)
* Bump cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine

Bumps cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Disable name mismatch to avoid refactoring our test logic

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-29 11:57:36 +02:00
dependabot[bot]
7b7f581d58
Bump zricethezav/gitleaks from v8.8.12 to v8.13.0 (#3337)
* Bump zricethezav/gitleaks from v8.8.12 to v8.13.0

Bumps zricethezav/gitleaks from v8.8.12 to v8.13.0.

---
updated-dependencies:
- dependency-name: zricethezav/gitleaks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Extend the default gitleaks configuration

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-28 15:31:46 +00:00
dependabot[bot]
9d092df26d
Bump hashicorp/terraform from 1.2.7 to 1.3.0 (#3338)
Bumps hashicorp/terraform from 1.2.7 to 1.3.0.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 13:48:19 +00:00
Marco Ferrari
808436342f
Build process improvements (#3367)
* Fix issues with the container image build

* Fix asl-validator version check

* Disable filename rule when running ktlint tests

* Bump asl-validator from 2.2.1 to 3.0.8 in /dependencies

Bumps [asl-validator](https://github.com/ChristopheBougere/asl-validator) from 2.2.1 to 3.0.8.
- [Release notes](https://github.com/ChristopheBougere/asl-validator/releases)
- [Commits](https://github.com/ChristopheBougere/asl-validator/compare/2.2.1...3.0.8)

---
updated-dependencies:
- dependency-name: asl-validator
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Show errors when using curl to call the status API

* Make the build more reproducible

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 08:45:01 -05:00
dependabot[bot]
a5bd007889
Bump terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0 (#3339)
* Bump terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0

Bumps terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Add version constraints

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-28 14:52:41 +02:00
dependabot[bot]
2c83444f14
Bump yoheimuta/protolint from 0.39.0 to 0.41.0 (#3336)
Bumps yoheimuta/protolint from 0.39.0 to 0.41.0.

---
updated-dependencies:
- dependency-name: yoheimuta/protolint
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 10:38:42 +02:00
dependabot[bot]
89379ee33c
Bump golangci/golangci-lint from v1.48.0 to v1.49.0 (#3279)
Bumps golangci/golangci-lint from v1.48.0 to v1.49.0.

---
updated-dependencies:
- dependency-name: golangci/golangci-lint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-27 23:35:56 +02:00
Marco Ferrari
23e8ced872
Fix issues in the build workflow (#3357)
* Fix issues in the build workflow

* Don't build the image when running trivy

* Move the alpine glibc package key in the repo

* Move the alpine glibc package key in the repo

* Update labels

* Pull and tag
2022-09-27 14:30:54 +00:00
dependabot[bot]
e397961bcb
Bump scalameta/scalafmt from v3.5.8 to v3.5.9 (#3235)
* Bump scalameta/scalafmt from v3.5.8 to v3.5.9

Bumps scalameta/scalafmt from v3.5.8 to v3.5.9.

---
updated-dependencies:
- dependency-name: scalameta/scalafmt
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update scala version in configuration

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-27 11:19:52 +02:00
dependabot[bot]
b289105df2
Bump rhysd/actionlint from 1.6.15 to 1.6.19 (#3341)
Bumps rhysd/actionlint from 1.6.15 to 1.6.19.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2022-09-27 08:22:40 +00:00