Commit graph

593 commits

Author SHA1 Message Date
Brett Logan
06de195e36 Fix Dockerfile conflict
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
b4635519da Clean up matrix properties
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-05 09:46:51 -05:00
Brett Logan
f00a0bbe87 Remove dead arg
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
07e66bb8b8 Mount secret
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
59e3086d12 Fix conflict
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
1137155331 Fix arm-ttk path
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
b1386567ad Pin PSSA_VERSION
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
e469609f7c Fix PowerShell installation
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
5224656969 Push scripts into standalone files
Pushes inline scripts in the Dockerfile into standalone
scripts and authenticates requests to GitHub using a
Personal Access Token to reduce build flakiness due
to GitHub's abuse and ratelimiting due to unauthenticated
reuests.

Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 20:17:46 -05:00
Brett Logan
9f398bb021 Update shellcheck
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-04 01:45:10 -05:00
Brett Logan
24b9c2cbb4 Revert Dart update
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-03 23:54:16 -05:00
Brett Logan
a4a1f0de87 Update alpine images
Signed-off-by: Brett Logan <lindluni@github.com>
2023-01-03 23:54:16 -05:00
dependabot[bot]
121744548f Bump rhysd/actionlint from 1.6.21 to 1.6.22
Bumps rhysd/actionlint from 1.6.21 to 1.6.22.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 19:28:05 -05:00
dependabot[bot]
fd988d5b07 Bump dotenvlinter/dotenv-linter from 3.2.0 to 3.3.0
Bumps dotenvlinter/dotenv-linter from 3.2.0 to 3.3.0.

---
updated-dependencies:
- dependency-name: dotenvlinter/dotenv-linter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 17:44:04 -05:00
dependabot[bot]
ce7fa3215c Bump terraform-linters/tflint-bundle from v0.44.0.0 to v0.44.1.0
Bumps terraform-linters/tflint-bundle from v0.44.0.0 to v0.44.1.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-03 12:01:53 -05:00
dependabot[bot]
7abfaf27d2 Bump yoheimuta/protolint from 0.41.0 to 0.42.2
Bumps yoheimuta/protolint from 0.41.0 to 0.42.2.

---
updated-dependencies:
- dependency-name: yoheimuta/protolint
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-30 18:40:07 -05:00
dependabot[bot]
80c75ea8a2 Bump terraform-linters/tflint-bundle from v0.43.0.3 to v0.44.0.0
Bumps terraform-linters/tflint-bundle from v0.43.0.3 to v0.44.0.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-29 11:51:57 -05:00
dependabot[bot]
154522b380 Bump mvdan/shfmt from v3.5.1 to v3.6.0
Bumps mvdan/shfmt from v3.5.1 to v3.6.0.

---
updated-dependencies:
- dependency-name: mvdan/shfmt
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-26 11:46:14 -05:00
Brett Logan
6635505723 Bulk update deps
Signed-off-by: Brett Logan <lindluni@github.com>
2022-12-22 11:59:09 -05:00
dependabot[bot]
37b6ff9a3f Bump tenable/terrascan from 1.15.2 to 1.17.1
Bumps tenable/terrascan from 1.15.2 to 1.17.1.

---
updated-dependencies:
- dependency-name: tenable/terrascan
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:40:14 -05:00
dependabot[bot]
729eece046 Bump zricethezav/gitleaks from v8.13.0 to v8.15.2
Bumps zricethezav/gitleaks from v8.13.0 to v8.15.2.

---
updated-dependencies:
- dependency-name: zricethezav/gitleaks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:38 -05:00
dependabot[bot]
caf5d25ded Bump hashicorp/terraform from 1.3.2 to 1.3.6
Bumps hashicorp/terraform from 1.3.2 to 1.3.6.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:31 -05:00
dependabot[bot]
3947ead7f2 Bump cljkondo/clj-kondo from 2022.10.05-alpine to 2022.12.10-alpine
Bumps cljkondo/clj-kondo from 2022.10.05-alpine to 2022.12.10-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:39:22 -05:00
dependabot[bot]
491be07bdb Bump terraform-linters/tflint-bundle from v0.41.0.1 to v0.43.0.3
Bumps terraform-linters/tflint-bundle from v0.41.0.1 to v0.43.0.3.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-20 11:03:00 -05:00
Brett Logan
c839c0b828
Set pwsh to be executable 2022-12-02 02:37:36 -05:00
dependabot[bot]
6aafc9b874
Bump hashicorp/terraform from 1.3.1 to 1.3.2 (#3428)
Bumps hashicorp/terraform from 1.3.1 to 1.3.2.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 11:14:40 -05:00
dependabot[bot]
2605ba9447
Bump golangci/golangci-lint from v1.49.0 to v1.50.0 (#3429)
Bumps golangci/golangci-lint from v1.49.0 to v1.50.0.

---
updated-dependencies:
- dependency-name: golangci/golangci-lint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 16:09:33 +00:00
dependabot[bot]
aa3b7bdf84
Bump rhysd/actionlint from 1.6.20 to 1.6.21 (#3431)
Bumps rhysd/actionlint from 1.6.20 to 1.6.21.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 13:41:04 +00:00
dependabot[bot]
48178ef80d
Bump alpine/terragrunt from 1.3.1 to 1.3.2 (#3432)
Bumps alpine/terragrunt from 1.3.1 to 1.3.2.

---
updated-dependencies:
- dependency-name: alpine/terragrunt
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2022-10-11 13:29:22 +00:00
dependabot[bot]
79f3689a4f
Bump cljkondo/clj-kondo from 2022.09.08-alpine to 2022.10.05-alpine (#3430)
Bumps cljkondo/clj-kondo from 2022.09.08-alpine to 2022.10.05-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-10 13:52:30 -05:00
dependabot[bot]
5f638492f1
Bump alpine/terragrunt from 1.3.0 to 1.3.1 (#3393)
Bumps alpine/terragrunt from 1.3.0 to 1.3.1.

---
updated-dependencies:
- dependency-name: alpine/terragrunt
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-04 15:15:50 +00:00
dependabot[bot]
d5e5798d04
Bump terraform-linters/tflint-bundle from v0.41.0.0 to v0.41.0.1 (#3392)
Bumps terraform-linters/tflint-bundle from v0.41.0.0 to v0.41.0.1.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-04 11:27:29 +02:00
dependabot[bot]
54fa9ed856
Bump hashicorp/terraform from 1.3.0 to 1.3.1 (#3395)
Bumps hashicorp/terraform from 1.3.0 to 1.3.1.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-03 21:20:39 +02:00
dependabot[bot]
e51114a0f4
Bump rhysd/actionlint from 1.6.19 to 1.6.20 (#3396)
Bumps rhysd/actionlint from 1.6.19 to 1.6.20.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-03 12:18:48 -05:00
dependabot[bot]
718f2d6dfd
Bump cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine (#3305)
* Bump cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine

Bumps cljkondo/clj-kondo from 2022.03.09-alpine to 2022.09.08-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Disable name mismatch to avoid refactoring our test logic

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-29 11:57:36 +02:00
dependabot[bot]
7b7f581d58
Bump zricethezav/gitleaks from v8.8.12 to v8.13.0 (#3337)
* Bump zricethezav/gitleaks from v8.8.12 to v8.13.0

Bumps zricethezav/gitleaks from v8.8.12 to v8.13.0.

---
updated-dependencies:
- dependency-name: zricethezav/gitleaks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Extend the default gitleaks configuration

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-28 15:31:46 +00:00
dependabot[bot]
9d092df26d
Bump hashicorp/terraform from 1.2.7 to 1.3.0 (#3338)
Bumps hashicorp/terraform from 1.2.7 to 1.3.0.

---
updated-dependencies:
- dependency-name: hashicorp/terraform
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 13:48:19 +00:00
Marco Ferrari
808436342f
Build process improvements (#3367)
* Fix issues with the container image build

* Fix asl-validator version check

* Disable filename rule when running ktlint tests

* Bump asl-validator from 2.2.1 to 3.0.8 in /dependencies

Bumps [asl-validator](https://github.com/ChristopheBougere/asl-validator) from 2.2.1 to 3.0.8.
- [Release notes](https://github.com/ChristopheBougere/asl-validator/releases)
- [Commits](https://github.com/ChristopheBougere/asl-validator/compare/2.2.1...3.0.8)

---
updated-dependencies:
- dependency-name: asl-validator
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Show errors when using curl to call the status API

* Make the build more reproducible

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 08:45:01 -05:00
dependabot[bot]
a5bd007889
Bump terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0 (#3339)
* Bump terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0

Bumps terraform-linters/tflint-bundle from v0.39.3.1 to v0.41.0.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Add version constraints

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-28 14:52:41 +02:00
dependabot[bot]
2c83444f14
Bump yoheimuta/protolint from 0.39.0 to 0.41.0 (#3336)
Bumps yoheimuta/protolint from 0.39.0 to 0.41.0.

---
updated-dependencies:
- dependency-name: yoheimuta/protolint
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-28 10:38:42 +02:00
dependabot[bot]
89379ee33c
Bump golangci/golangci-lint from v1.48.0 to v1.49.0 (#3279)
Bumps golangci/golangci-lint from v1.48.0 to v1.49.0.

---
updated-dependencies:
- dependency-name: golangci/golangci-lint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-27 23:35:56 +02:00
Marco Ferrari
23e8ced872
Fix issues in the build workflow (#3357)
* Fix issues in the build workflow

* Don't build the image when running trivy

* Move the alpine glibc package key in the repo

* Move the alpine glibc package key in the repo

* Update labels

* Pull and tag
2022-09-27 14:30:54 +00:00
dependabot[bot]
e397961bcb
Bump scalameta/scalafmt from v3.5.8 to v3.5.9 (#3235)
* Bump scalameta/scalafmt from v3.5.8 to v3.5.9

Bumps scalameta/scalafmt from v3.5.8 to v3.5.9.

---
updated-dependencies:
- dependency-name: scalameta/scalafmt
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update scala version in configuration

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ferrari <ferrari.marco@gmail.com>
2022-09-27 11:19:52 +02:00
dependabot[bot]
b289105df2
Bump rhysd/actionlint from 1.6.15 to 1.6.19 (#3341)
Bumps rhysd/actionlint from 1.6.15 to 1.6.19.

---
updated-dependencies:
- dependency-name: rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2022-09-27 08:22:40 +00:00
dependabot[bot]
1debe463c8
Bump python from 3.10.6-alpine to 3.10.7-alpine (#3356)
Bumps python from 3.10.6-alpine to 3.10.7-alpine.

---
updated-dependencies:
- dependency-name: python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-27 08:12:48 +00:00
dependabot[bot]
66a08db2b3
Bump alpine/terragrunt from 1.2.7 to 1.3.0 (#3340)
Bumps alpine/terragrunt from 1.2.7 to 1.3.0.

---
updated-dependencies:
- dependency-name: alpine/terragrunt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2022-09-26 19:54:07 +00:00
dependabot[bot]
f7dba5115a
Bump python from 3.10.5-alpine to 3.10.6-alpine (#3210)
Bumps python from 3.10.5-alpine to 3.10.6-alpine.

---
updated-dependencies:
- dependency-name: python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-15 12:24:10 -05:00
dependabot[bot]
11a181b46a
Bump terraform-linters/tflint-bundle from v0.39.1.1 to v0.39.3.1 (#3230)
Bumps terraform-linters/tflint-bundle from v0.39.1.1 to v0.39.3.1.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint-bundle
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-15 12:24:01 -05:00
dependabot[bot]
01ee22c822
Bump golangci/golangci-lint from v1.47.3 to v1.48.0 (#3214)
Bumps golangci/golangci-lint from v1.47.3 to v1.48.0.

---
updated-dependencies:
- dependency-name: golangci/golangci-lint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-15 11:23:45 -05:00
maharshi
e7738fabe1
Updated Kubeval version (#3206)
* Update Dockerfile

* Update Dockerfile

* Update Dockerfile

* download binary vs install from container

* no need for sudo...

Co-authored-by: Admiral Awkbar <admiralawkbar@github.com>
2022-08-15 11:23:32 -05:00