El RIDO
73c13af10d
add workflow attaching SLSA provinence to draft release
2023-09-18 20:47:16 +02:00
dependabot[bot]
5bd2eb97e6
Bump actions/checkout from 3 to 4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-05 11:13:01 +00:00
El RIDO
81ae359dfc
Delete shiftleft-analysis.yml
...
Development on this stopped in 2021 and apart from the (false positive) secret scan, dev suggests CodeQL replaces it, feature wise: https://github.com/ShiftLeftSecurity/sast-scan/issues/352
2023-08-17 00:00:30 +02:00
El RIDO
e83f51b547
Merge pull request #1138 from PrivateBin/dependabot/github_actions/github/codeql-action-2
...
Bump github/codeql-action from 1 to 2
2023-08-08 20:19:02 +02:00
dependabot[bot]
cbff1c8488
Bump github/codeql-action from 1 to 2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-08 11:13:15 +00:00
dependabot[bot]
5f71c9de10
Bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-08 11:13:08 +00:00
El RIDO
4796c7ff02
Merge pull request #807 from PrivateBin/siftleft-scan
...
Add Shiftleft scan
2023-08-07 20:46:43 +02:00
El RIDO
ecf100551d
document change, raise minimum PHP version to 7.3, remove branch refresh
2023-07-23 10:04:57 +02:00
El RIDO
34264cb7f5
Merge branch 'master' into php8
2022-10-26 08:24:41 +02:00
El RIDO
ba4878056b
misleading documentation
2022-10-26 05:51:36 +02:00
El RIDO
ae6248e27e
handle github actions deprecation warnings
...
see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2022-10-26 05:48:51 +02:00
El RIDO
7b98d7381f
allow tests to be manually triggered
2022-10-26 05:30:37 +02:00
El RIDO
b890d768d1
enable use of PHP 8.2
2022-10-25 06:53:26 +02:00
El RIDO
8c2cc18b66
Merge branch 'master' into php8
2022-07-31 08:53:52 +02:00
rugk
48bb2fdf0f
Use NodeJs v16 for tests
...
So 14 worked, let's try 16. (Actually noticed fedora uses v16 not 14 which makes sense if you see the support time.)
2022-07-10 00:13:47 +02:00
El RIDO
b46b4300ec
Merge pull request #955 from PrivateBin/node14
...
chore: run tests with NodeJS 14
2022-07-09 17:45:23 +02:00
rugk
e536db9b7e
style: run tests via npm script insread of custom command
...
I.e. not call mocha directly but let the script defined in package.json do it's job.
2022-07-09 17:04:28 +02:00
rugk
9a476ac34d
chore: switch to proper cache file now we have it, i.e. package-lock.json
...
as per https://github.com/actions/setup-node#caching-global-packages-data
2022-07-09 17:00:45 +02:00
rugk
79fd33d21f
chore: run tests with NodeJS 14
...
I expect no stuff to break or so, so let's just try to use the current recommend LTS version. (v14 will also die at some time, but Fedora e.g. still seems to use it for now by default. Likely we may upgrade soon even more.)
Ref https://nodejs.org/en/about/releases/
2022-07-09 16:57:06 +02:00
rugk
08946d1cab
Use npm ci instead of npm install for tests in CI
...
So it uses the package-json.lock file actually.
2022-07-09 16:48:21 +02:00
El RIDO
9b132f4054
Merge pull request #941 from PrivateBin/dependabot/github_actions/actions/checkout-3
...
Bump actions/checkout from 2 to 3
2022-06-10 05:04:21 +02:00
El RIDO
e052dd9d83
Merge pull request #940 from PrivateBin/dependabot/github_actions/actions/cache-3
...
Bump actions/cache from 2 to 3
2022-06-10 05:03:19 +02:00
dependabot[bot]
b6f35fc8ab
Bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-10 03:02:26 +00:00
El RIDO
9291e57ac6
Merge pull request #939 from PrivateBin/dependabot/github_actions/github/codeql-action-2
...
Bump github/codeql-action from 1 to 2
2022-06-10 05:02:04 +02:00
dependabot[bot]
be23ae2874
Bump actions/cache from 2 to 3
...
Bumps [actions/cache](https://github.com/actions/cache ) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-10 02:59:25 +00:00
dependabot[bot]
86794be1c4
Bump github/codeql-action from 1 to 2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-10 02:59:19 +00:00
dependabot[bot]
48a6bf4416
Bump actions/setup-node from 2 to 3
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 2 to 3.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-10 02:59:15 +00:00
El RIDO
2ad79ebf71
add php 8.1 unit tests
2022-06-01 20:50:38 +02:00
github-actions[bot]
b73f4be25e
Merge remote-tracking branch 'origin/master' into php8
2022-04-30 07:23:22 +00:00
El RIDO
2c01892ee1
bump github/codeql-action from 1 to 2
2022-04-28 19:47:28 +02:00
github-actions[bot]
abd722d0e4
Merge remote-tracking branch 'origin/master' into php8
2022-04-14 04:20:29 +00:00
El RIDO
a15b395eaf
fix php8 refresh workflow
...
requires updating the commit action due to
https://github.com/github-actions-x/commit/issues/30
2022-04-14 06:19:19 +02:00
El RIDO
15a9b8d826
fix php8 refresh workflow
...
requires updating the commit action due to
https://github.com/github-actions-x/commit/issues/30
2022-04-14 06:17:10 +02:00
El RIDO
d2126d6dd6
fix php8 refresh workflow
...
requires updating the commit action due to
https://github.com/github-actions-x/commit/issues/30
2022-04-14 06:08:48 +02:00
github-actions[bot]
3a801bc238
Merge remote-tracking branch 'origin/master' into php8
2021-10-30 15:26:05 +00:00
El RIDO
b80b318e38
spaces
2021-10-30 17:23:09 +02:00
rugk
1fff4bf4d7
Also set author for merge commit
...
Follow-up of 41898282+github-actions[bot]@users.noreply.github.com again
In contrast to your suggestion, @elrido, I did use GitHubs bot account again. The mails won't spam anyone, and it's actually intended for such stuff.
Also, we get a proper avatar on GitHub's commit messages etc., and of course we know it is actually GitHubs (servers) that do this change.
2021-10-30 16:53:42 +02:00
rugk
aa6e2f7631
Set GitHub Bot as author for PHP8 merge commits
2021-10-23 15:04:54 +02:00
rugk
af852927a9
Fix PHP refresh pipeline merge
...
See https://github.com/PrivateBin/PrivateBin/pull/847#issuecomment-942580850
Now merging the origin as master is not yet pulled.
2021-10-13 20:07:45 +02:00
rugk
f6421c9c7c
Fix PHP8 pipeline
...
As per https://github.com/PrivateBin/PrivateBin/pull/843#issuecomment-939526915
Co-Authored-By: El RIDO <elrido@gmx.net>
2021-10-11 17:45:42 +02:00
El RIDO
3f469f715f
Merge branch 'master' into php8
2021-10-07 22:17:11 +02:00
rugk
c7cd450f9b
Remove useless boilerplate comments
2021-10-06 20:19:03 +02:00
rugk
a988be7431
Add CI for automatic PHP8 updates
...
Adds a simple CI for pushing the master branches changes to the php8 branch.
Useful/discussed for https://github.com/PrivateBin/PrivateBin/issues/707
2021-10-06 20:13:09 +02:00
El RIDO
51a590c3c7
Merge pull request #841 from PrivateBin/ci-problem-matchers
...
Setup CI problem matchers for PHP
2021-10-02 20:15:22 +02:00
rugk
f4e68fcc04
style: better YAML comments
2021-10-02 01:12:08 +02:00
rugk
f43a41c117
Update tests.yml
2021-10-02 01:07:57 +02:00
rugk
ab11fbeb47
Fix syntax error
...
Apparently in envs the OS etc. syntax is not supported, so we need to use it like this.
2021-10-02 01:01:24 +02:00
rugk
5f4fe52eab
Use package-json instead of package-lock.json
...
for cache
2021-10-02 00:56:44 +02:00
rugk
b80732f8e2
Add caching for NodeJS
2021-10-02 00:55:08 +02:00
rugk
a372ee92e9
Fix wrong cache key
2021-10-02 00:43:54 +02:00