Stefan Prodan
5356436c94
ci: enable workflows for release/** branches
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2023-07-04 13:27:33 +03:00
dependabot[bot]
f7e5101753
build(deps): bump peter-evans/create-pull-request from 5.0.1 to 5.0.2
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 5.0.1 to 5.0.2.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](284f54f989...153407881e
2023-06-19 10:37:22 +00:00
dependabot[bot]
0d1a68ecb4
build(deps): bump actions/checkout from 3.5.2 to 3.5.3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8e5e7e5ab8...c85c95e3d7
2023-06-12 09:39:54 +00:00
dependabot[bot]
9e422576b8
build(deps): bump actions/setup-go from 4.0.0 to 4.0.1
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](4d34df0c23...fac708d667
2023-05-22 07:06:34 +00:00
dependabot[bot]
38ada0b998
build(deps): bump peter-evans/create-pull-request from 5.0.0 to 5.0.1
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](5b4a9f6a9e...284f54f989
2023-05-08 01:03:23 +00:00
dependabot[bot]
107894eccf
build(deps): bump actions/checkout from 3.5.0 to 3.5.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8f4b7f8486...8e5e7e5ab8
2023-04-17 01:10:39 +00:00
dependabot[bot]
2696a93ee0
build(deps): bump peter-evans/create-pull-request from 4.2.4 to 5.0.0
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.4 to 5.0.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](38e0b6e68b...5b4a9f6a9e
2023-04-10 01:03:48 +00:00
dependabot[bot]
a30f77f8a4
build(deps): bump actions/checkout from 3.4.0 to 3.5.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](24cb908017...8f4b7f8486
2023-03-27 06:12:24 +00:00
Hidde Beydals
ce405b6060
build: update actions/setup-go in workflows
...
- Update `actions/setup-go` to v4.0.0 in workflows.
- Remove separate caching steps in favor of built-in caching feature
in action (since >=v3.0.0).
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
2023-03-20 12:19:42 +01:00
dependabot[bot]
519cf58d27
build(deps): bump peter-evans/create-pull-request from 4.2.3 to 4.2.4
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.3 to 4.2.4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](2b011faafd...38e0b6e68b
2023-03-20 11:29:29 +01:00
dependabot[bot]
1071f04e93
build(deps): bump actions/checkout from 3.3.0 to 3.4.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](ac59398561...24cb908017
2023-03-20 10:13:50 +00:00
Hidde Beydals
940b5c4fb9
build: update update workflow
...
To include a version number behind the actions with a SHA reference, so
Dependabot will continue to update them from now on.
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
2023-03-09 09:41:23 +01:00
Hidde Beydals
18760acaa8
Update Go to 1.20
...
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
2023-03-09 09:26:51 +01:00
Hidde Beydals
a59aaa4dfb
build: further solve issue release workflow
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2023-02-17 14:57:45 +01:00
Hidde Beydals
2e1e4106fd
build: ensure newlines work with $GITHUB_OUTPUT
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2023-02-17 14:21:45 +01:00
Hidde Beydals
bca26ebf0a
build: convert ::set-output to $GITHUB_OUTPUT
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2023-02-17 13:44:27 +01:00
dependabot[bot]
1d80ff2b09
Bump actions/checkout from 3.2.0 to 3.3.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...ac59398561
2023-01-09 00:57:58 +00:00
dependabot[bot]
0014bc4c43
Bump actions/checkout from 3.1.0 to 3.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-19 12:32:31 +00:00
dependabot[bot]
bd284ab28b
Bump actions/setup-go from 3.4.0 to 3.5.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](d0a58c1c4d...6edd4406fa
2022-12-19 12:14:24 +00:00
dependabot[bot]
4eda5a7ccd
Bump peter-evans/create-pull-request from 4.2.2 to 4.2.3
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.2 to 4.2.3.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](331d02c7e2...2b011faafd
2022-12-05 08:08:45 +00:00
dependabot[bot]
2c35880cbf
Bump actions/setup-go from 3.3.1 to 3.4.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](c4a742cab1...d0a58c1c4d
2022-12-05 06:46:50 +00:00
dependabot[bot]
9db661ae63
Bump peter-evans/create-pull-request from 4.2.0 to 4.2.2
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.0 to 4.2.2.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](b4d51739f9...331d02c7e2
2022-11-28 01:15:01 +00:00
Paulo Gomes
d0e6fcad3f
build: Pin GitHub Actions
...
The main benefit of pinning GitHub actions is the determinism it brings
in terms of what version of a given action will be executed. This is
a step towards having hermetic builds.
Once pinned to a commit, dependabot will automatically issue PRs to update
to newer versions.
Pinned versions is the only security metric from OpenSSF scorecard that
this repository currently have a zero score.
Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
2022-11-17 15:33:59 +00:00
Stefan Prodan
bb1078d610
ci: Refactor GitHub workflows
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-10-21 09:46:10 +03:00
Eddie Knight
2abf932ee4
Updated scan & update permissions
...
Signed-off-by: Eddie Knight <knight@linux.com>
2022-10-20 12:09:34 -05:00
Eddie Knight
939a75115c
Adjusted workflow permissions
...
Signed-off-by: Eddie Knight <knight@linux.com>
2022-10-20 11:04:49 -05:00
dependabot[bot]
4a51b111e6
Bump peter-evans/create-pull-request from 3 to 4
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 3 to 4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-19 13:48:54 +00:00
Stefan Prodan
348408e16e
Build with Go 1.19
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-09-28 22:05:48 +03:00
Stefan Prodan
0b9e3d24ef
Update GitHub actions
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-05-27 13:35:13 +03:00
Stefan Prodan
b795e612f7
Update Go to v1.18
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-05-25 11:43:30 +03:00
Hidde Beydals
775891fc88
build: ensure component update runs with make tidy
...
This to include the `-compat` flag.
Signed-off-by: Hidde Beydals <hello@hidde.co>
2022-03-23 21:32:00 +01:00
Aurel Canciu
f3d143e5ee
Update Go to v1.17
...
Signed-off-by: Aurel Canciu <aurelcanciu@gmail.com>
2022-01-10 16:30:38 +01:00
Hidde Beydals
a56ce1f867
build: tidy after go mod edit
...
To ensure the `go.sum` is always up-to-date when the following `go mod
edit` is executed.
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-04-23 12:36:09 +02:00
Hidde Beydals
1a904e138f
Fix update automation and update CRDs
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-04-22 16:24:36 +02:00
Hidde Beydals
df6a0a3762
build: incl CRD version change in component update
...
This includes updating the version in the `manifests/crds` directory
for the component thas has a newer latest version.
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-04-22 15:21:24 +02:00
Hidde Beydals
077860fff1
Fix updating of go.mod entries for components
...
We noticed that some of our components had not received `go.mod` updates
while they did receive updates for the versions declared in the YAML
manifests.
Was able to trace this back to a behavior change in Go since `1.16.x`,
resulting in it no longer making automated changes to `go.mod` and
`go.sum`[1]. This is an issue for our updater script as it relies
on `go list -m all`, which now after the first `go mod edit` returns:
```console
$ go list -m all
go: github.com/fluxcd/notification-controller/api@v0.10.0: missing
go.sum entry; to add it:
go mod download github.com/fluxcd/notification-controller/api
```
To work around the issue without having to repeatedly call `go mod
tidy`, I have opted to simply `grep` on the contents of `go.mod` as a
workaround.
[1]: https://blog.golang.org/go116-module-changes#TOC_3 .
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-03-16 16:11:29 +01:00
Hidde Beydals
54bb4b2efd
Properly setup Go version in update workflow
...
To prevent false `go.mod` modifications.
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-02-25 10:48:09 +01:00
Hidde Beydals
6db84269af
Update Toolkit component update script
...
To recognize and correctly replace the versions in the components'
Kustomization files.
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-02-24 18:17:04 +01:00
Hidde Beydals
1b5db157b1
Align formatting and extensions workflows
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-02-18 15:41:32 +01:00
