Commit graph

14 commits

Author SHA1 Message Date
Marco Ferrari
12da4973c6
ci: enable dev-dependencies docker build checks (#5871)
- Run Docker build checks when building the dev-dependencies container
  image and when running the test target.
- Run Docker build checks when building the Super-linter container, and
  not just when running the test target.
- Use the correct variable when setting the dev-dependencies container
  user.
2024-07-11 08:08:23 +02:00
dependabot[bot]
62955bfd61
deps(dev-docker): bump node in /dev-dependencies (#5666)
Bumps node from 22.1.0-bookworm to 22.2.0-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-24 14:16:34 +00:00
dependabot[bot]
1f7fc1cd3c
deps(dev-docker): bump node in /dev-dependencies (#5613)
Bumps node from 21.7.3-bookworm to 22.1.0-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-13 13:32:46 +00:00
dependabot[bot]
155f3a6419
deps(dev-docker): bump node in /dev-dependencies (#5512)
Bumps node from 21.7.2-bookworm to 21.7.3-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-17 13:38:11 +00:00
dependabot[bot]
aaf5f3df0f
deps(dev-docker): bump node in /dev-dependencies (#5487)
Bumps node from 21.7.1-bookworm to 21.7.2-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-09 12:22:42 +00:00
dependabot[bot]
4650e8e811
deps(dev-docker): bump node in /dev-dependencies (#5390)
Bumps node from 21.6.2-bookworm to 21.7.1-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-21 09:57:29 +00:00
dependabot[bot]
ae888f2a1b
deps(dev-docker): bump node in /dev-dependencies (#5305)
Bumps node from 21.6.1-bookworm to 21.6.2-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-19 20:36:09 +00:00
Marco Ferrari
7a6ab115a6
ci: take package-lock into account in devcontainer (#5278)
Consider package-lock.json when building the dev-container so we can
enforce a known-working dependency chain. This caused issues in the past
when commitlint and release-please had bugs in new versions  that
impacted our build pipeline.
2024-02-13 11:53:48 +01:00
dependabot[bot]
0b5a56dff8
deps(dev-docker): bump node in /dev-dependencies (#5230)
Bumps node from 21.6.0-bookworm to 21.6.1-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-05 17:28:25 +00:00
dependabot[bot]
effc52b03a
deps(dev-docker): bump node in /dev-dependencies (#5166)
Bumps node from 21.5.0-bookworm to 21.6.0-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-23 13:13:35 +00:00
dependabot[bot]
ebeeae9e85
deps(dev-docker): bump node in /dev-dependencies (#5051)
Bumps node from 21.4.0-bookworm to 21.5.0-bookworm.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-24 14:12:53 +00:00
Marco Ferrari
9d7268fb99
feat: add support for checkov to lint iac files (#4925)
- Add support to run Checkov against infrastructure as code descriptors
  that are in a given (configurable) directory. Defaults to lint the
  whole workspace.
- Establish a baseline for our own codebase so we don't have to fix
  issues right away with this change.
2023-12-22 13:22:15 +01:00
Marco Ferrari
641c65a8c4
ci: configure release-please dry-run and changelog (#5039)
- Implement a job to preview the release notes
- Include build, ci, and dependency updates
- Add emoji to section headings to match the existing release notes
- Add documentation about how to run release-please from the CLI
2023-12-21 15:03:14 +01:00
Marco Ferrari
9db632f0e1
ci: configure commitlint (#5014)
- Check if the PR contains a single commit, and fail otherwise.
- Enable commitlint to check if commits adhere to the
  conventialcommits.org spec.
- Update the the pull request template to point to the conventional
  commit spec.
- Update the dependabot configuration to add the "build(...)" prefix to
  commits.
2023-12-19 19:37:16 +01:00