fluxcd
/
source-controller
mirror of https://github.com/fluxcd/source-controller.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,161 Commits 26 Branches 282 Tags 18 MiB
Commit Graph

49 Commits

Author SHA1 Message Date
dependabot[bot] ca82c0f0d0
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `docker/setup-buildx-action` from 2.8.0 to 2.9.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](16c0bc4a6e...2a1a44ac4a)

Updates `github/codeql-action` from 2.20.1 to 2.20.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f6e388ebf0...46ed16ded9)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-10 02:51:20 +00:00
Aurel Canciu 680843fd69
Explicitly echo -E in GHA release.yml 
Signed-off-by: Aurel Canciu <aurelcanciu@gmail.com>
 2023-07-06 09:48:47 +02:00
Hidde Beydals f402e2125a
ci: change release workflow dispatch tag 
From "rc" (reserved for tag releases) to "preview".

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-07-03 16:12:20 +02:00
dependabot[bot] 3998db4784
build(deps): bump docker/setup-buildx-action from 2.7.0 to 2.8.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](ecf95283f0...16c0bc4a6e)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-30 12:09:24 +00:00
dependabot[bot] a2717f7106
build(deps): bump sigstore/cosign-installer from 3.1.0 to 3.1.1 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](d13028333d...6e04d228eb)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-30 11:59:00 +00:00
dependabot[bot] 8079cd2f18
build(deps): bump anchore/sbom-action from 0.14.2 to 0.14.3 
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.14.2 to 0.14.3.
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](4d571ad103...78fc58e266)

---
updated-dependencies:
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-26 07:38:39 +00:00
dependabot[bot] 8a2b22a828
build(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.5 to 3.1.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](dd6b2e2b61...d13028333d)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-26 07:25:19 +00:00
Stefan Prodan 91bd086607
Add SLSA3 generators to release workflow 
Generate SLSA level 3 provenance attestations for the controller release assets and for the multi-arch container images.

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-06-23 18:13:14 +03:00
dependabot[bot] 6afd813dc2
build(deps): bump docker/build-push-action from 4.0.0 to 4.1.1 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4.0.0 to 4.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](3b5e8027fc...2eb1c1961a)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-19 11:17:54 +00:00
dependabot[bot] 10b76abf12
build(deps): bump docker/setup-buildx-action from 2.6.0 to 2.7.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](6a58db7e0d...ecf95283f0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-19 11:06:50 +00:00
dependabot[bot] 97a701d0ed
build(deps): bump docker/metadata-action from 4.5.0 to 4.6.0 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](2c0bd771b4...818d4b7b91)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-19 10:35:53 +00:00
dependabot[bot] 535b762fef
build(deps): bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](f82d6c1c34...336e29918d)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-19 03:17:57 +00:00
dependabot[bot] 83378468f8
build(deps): bump docker/metadata-action from 4.4.0 to 4.5.0 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4.4.0 to 4.5.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](c4ee3adeed...2c0bd771b4)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 09:54:02 +00:00
dependabot[bot] 7b9ac95d9f
build(deps): bump docker/setup-buildx-action from 2.5.0 to 2.6.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](4b4e9c3e2d...6a58db7e0d)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 09:39:31 +00:00
dependabot[bot] 36b3073622
build(deps): bump docker/setup-qemu-action from 2.1.0 to 2.2.0 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](e81a89b173...2b82ce82d5)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 09:28:22 +00:00
dependabot[bot] b005657e13
build(deps): bump actions/checkout from 3.5.2 to 3.5.3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8e5e7e5ab8...c85c95e3d7)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 09:11:28 +00:00
dependabot[bot] 0c611d506c
build(deps): bump docker/login-action from 2.1.0 to 2.2.0 
Bumps [docker/login-action](https://github.com/docker/login-action) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](f4ef78c080...465a07811f)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 03:05:58 +00:00
dependabot[bot] 6684f60493
build(deps): bump sigstore/cosign-installer from 3.0.3 to 3.0.5 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.3 to 3.0.5.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](204a51a57a...dd6b2e2b61)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-22 07:05:41 +00:00
dependabot[bot] e1ae3ad52e
build(deps): bump anchore/sbom-action from 0.14.1 to 0.14.2 
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.14.1 to 0.14.2.
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](422cb34a0f...4d571ad103)

---
updated-dependencies:
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-08 03:05:32 +00:00
dependabot[bot] 5672cdd0e3
build(deps): bump actions/checkout from 3.5.0 to 3.5.2 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8f4b7f8486...8e5e7e5ab8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-01 08:10:36 +00:00
dependabot[bot] 153f571d6d
build(deps): bump docker/metadata-action from 4.3.0 to 4.4.0 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](507c2f2dc5...c4ee3adeed)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-01 07:49:22 +00:00
dependabot[bot] e99c01a264
build(deps): bump sigstore/cosign-installer from 3.0.2 to 3.0.3 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](9e9de2292d...204a51a57a)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-01 03:12:11 +00:00
dependabot[bot] 2692bcdca1
build(deps): bump sigstore/cosign-installer from 3.0.1 to 3.0.2 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](c3667d9942...9e9de2292d)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-10 07:49:17 +00:00
dependabot[bot] 0d79f4b775
build(deps): bump anchore/sbom-action from 0.13.4 to 0.14.1 
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.13.4 to 0.14.1.
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](448520c4f1...422cb34a0f)

---
updated-dependencies:
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-03 03:05:32 +00:00
Hidde Beydals bc1615cdcc
build: update workflow dependencies 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-03-29 16:46:26 +02:00
Hidde Beydals 4286a7a254
build: update release workflow 
- Update actions to their latest versions.
- Use SHA to (potentially) allow enabling Dependabot.

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-03-21 14:12:14 +01:00
Hidde Beydals 782b5fbcf1
build: update release workflow 
- docker/build-push-action to v4
- sigstore/cosign-installer to v3
- goreleaser/goreleaser-action to v4

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-03-07 17:36:04 +01:00
Stefan Prodan 7814754bb7
CI: Replace engineerd/setup-kind with helm/kind-action 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-01-30 18:25:09 +02:00
Stefan Prodan 59e061c8ef
build: Enable SBOM and SLSA Provenance 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-01-27 16:45:41 +02:00
Stefan Prodan 87b8efa02f
CI: Revert Public ECR push 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-09-09 11:23:39 +03:00
Stefan Prodan 8216175daa
CI: Set Public ECR region to us-east-1 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-09-07 18:46:49 +03:00
Stefan Prodan 3da8bf27b0
Publish container images to AWS Public ECR 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-09-07 10:41:23 +03:00
Paulo Gomes e35eb7398d
Update GH Actions 
Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
 2022-05-26 14:57:34 +01:00
Stefan Prodan b992afd2c7
Publish SBOM and sign release artifacts 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-01-20 13:49:36 +02:00
Stefan Prodan 203263fcfd
Add nightly builds workflow 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-06-08 19:42:46 +03:00
Stefan Prodan 2ef7904c9d
Normalise release workflow 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-03-12 12:41:57 +02:00
Stefan Prodan 2dce2174a2
Fix release workflow 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-02-23 15:55:56 +02:00
Stefan Prodan 280bbaa69d
Refactor release workflow 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-02-23 14:38:11 +02:00
Hidde Beydals 74363f3d5e Publish as single multi-arch Docker image 
This commit bundles the `source-controller:$VER-arm64` ARM image tag
range that was previously released separately with the
`source-controller:$VER` image, as GitHub now provides us insights into
image layer statistics.

Signed-off-by: Hidde Beydals <hello@hidde.co>
 2021-01-11 12:59:14 +01:00
Hidde Beydals 335a091f60 Use GitHub actions from fluxcd/pkg@main 
As `master` was replaced with `main`.
 2020-10-06 10:37:15 +02:00
stefanprodan f81b479382 Set default branch to main 
Signed-off-by: stefanprodan <stefan.prodan@gmail.com>
 2020-10-05 15:42:37 +03:00
stefanprodan d55417b9b2 Publish ARM v7/v8 multi-arch image to GHCR 2020-09-21 09:50:23 +03:00
Hidde Beydals 2576c739f4 ci: add sanity check for container images 
Fail build if container images have been pushed with corrupted layers
and enable buildx debug logs.
 2020-09-18 13:41:59 +02:00
Hidde Beydals f08febdffa Bump build-push-action version 2020-09-10 14:21:16 +02:00
stefanprodan d927a1e4aa Publish amd64/arm64 images to GHCR 2020-09-04 13:41:50 +03:00
stefanprodan 34dd00d5d8 Fix release GH action 2020-07-31 10:01:02 +03:00
Hidde Beydals c58bd7931f Use Docker organization secrets in build 2020-07-13 23:21:30 +02:00
stefanprodan 379729cb8b ci: Extract tag from GITHUB_REF 2020-04-16 14:55:55 +03:00
stefanprodan caedca3598 ci: Add release workflow 
- create GitHub release and link to changelog
- build and push container image to Docker Hub
- build kustomization and upload asset to GitHub release
 2020-04-13 18:28:22 +03:00