2d5e27cbaa
Update Go to v1.19.5
2023-01-11 10:56:25 +02:00
dc8d6b4895
Bump actions/checkout from 3.2.0 to 3.3.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...ac59398561
2023-01-08 06:01:10 +00:00
eadd181d65
Merge pull request #14801 from kubernetes/dependabot/github_actions/actions/dependency-review-action-3.0.2
...
Bump actions/dependency-review-action from 3.0.1 to 3.0.2
2022-12-18 00:35:42 -08:00
8bc9a002ce
Bump actions/dependency-review-action from 3.0.1 to 3.0.2
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](11310527b4...0ff3da6f81
2022-12-18 06:48:25 +00:00
ec39ec9647
Bump actions/setup-go from 3.4.0 to 3.5.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](d0a58c1c4d...6edd4406fa
2022-12-18 06:48:25 +00:00
cbd67cddb6
Bump actions/checkout from 3.1.0 to 3.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-18 06:03:52 +00:00
f8464e24a7
Update Go to v1.19.4
2022-12-13 06:07:32 +02:00
05f7a9e9ec
Merge pull request #14717 from kubernetes/dependabot/github_actions/peter-evans/create-pull-request-4.2.3
...
Bump peter-evans/create-pull-request from 4.2.2 to 4.2.3
2022-12-03 23:39:54 -08:00
4d182acbf1
Bump peter-evans/create-pull-request from 4.2.2 to 4.2.3
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.2 to 4.2.3.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](331d02c7e2...2b011faafd
2022-12-04 06:01:20 +00:00
52c689a29d
Bump actions/setup-go from 3.3.1 to 3.4.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](c4a742cab1...d0a58c1c4d
2022-12-04 06:01:14 +00:00
40093e6479
Bump peter-evans/create-pull-request from 4.2.0 to 4.2.2
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.2.0 to 4.2.2.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](b4d51739f9...331d02c7e2
2022-11-27 06:08:53 +00:00
e6c2359e94
build(deps): bump actions/dependency-review-action from 3.0.0 to 3.0.1
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](30d5821115...11310527b4
2022-11-20 06:25:27 +00:00
01ecd15a05
Update Go to v1.19.3
2022-11-15 05:05:01 +02:00
8c8e38a153
build(deps): bump actions/dependency-review-action from 2.5.1 to 3.0.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.1 to 3.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0efb1d1d84...30d5821115
2022-11-13 06:01:35 +00:00
b0cfb1356f
Bump actions/dependency-review-action from 2.5.0 to 2.5.1
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fd675ced9c...0efb1d1d84
2022-10-30 06:38:51 +00:00
64790dcad4
Merge pull request #14448 from kubernetes/dependabot/github_actions/actions/setup-go-3.3.1
...
Bump actions/setup-go from 3.3.0 to 3.3.1
2022-10-23 08:52:24 -07:00
f4b766db50
Bump actions/setup-go from 3.3.0 to 3.3.1
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](268d8c0ca0...c4a742cab1
2022-10-23 06:16:25 +00:00
300be6978a
Bump peter-evans/create-pull-request from 4.1.3 to 4.2.0
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.1.3 to 4.2.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](671dc9c9e0...b4d51739f9
2022-10-23 06:16:20 +00:00
629190ee03
Bump actions/dependency-review-action from 2.4.0 to 2.5.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](375c537008...fd675ced9c
2022-10-16 07:20:42 +00:00
c98f96e412
Bump actions/checkout from 3.0.2 to 3.1.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
2022-10-09 07:08:30 +00:00
f550864a0f
Bump peter-evans/create-pull-request from 4.1.2 to 4.1.3
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.1.2 to 4.1.3.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](171dd555b9...671dc9c9e0
2022-10-02 06:18:24 +00:00
c81097c17d
Merge pull request #14331 from kubernetes/dependabot/github_actions/actions/dependency-review-action-2.4.0
...
Bump actions/dependency-review-action from 2.1.0 to 2.4.0
2022-09-25 10:00:04 -07:00
2eeb7cedcd
Bump actions/dependency-review-action from 2.1.0 to 2.4.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.1.0 to 2.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](23d1ffffb6...375c537008
2022-09-25 06:14:56 +00:00
eb3ca5e53c
Bump peter-evans/create-pull-request from 4.1.1 to 4.1.2
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](18f90432be...171dd555b9
2022-09-25 06:14:52 +00:00
b84cece1a7
Bump actions/setup-go from 3.2.1 to 3.3.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.2.1 to 3.3.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](84cbf80943...268d8c0ca0
2022-08-28 06:19:36 +00:00
a92cb0eec1
Merge pull request #14157 from kubernetes/dependabot/github_actions/peter-evans/create-pull-request-4.1.1
...
Bump peter-evans/create-pull-request from 4.0.4 to 4.1.1
2022-08-21 01:25:35 -07:00
a8e0c781bf
Bump peter-evans/create-pull-request from 4.0.4 to 4.1.1
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 4.0.4 to 4.1.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](923ad837f1...18f90432be
2022-08-21 06:14:33 +00:00
ada8d1b904
Bump actions/dependency-review-action from 2.0.4 to 2.1.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.0.4 to 2.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](94145f3150...23d1ffffb6
2022-08-21 06:14:31 +00:00
6b8b45355d
Update Go to v1.19.0
2022-08-17 06:56:48 +03:00
d686975489
Switch to latest MacOS version for CI
2022-07-21 20:22:11 +03:00
8555fbdc9e
Bump actions/setup-go from 3.2.0 to 3.2.1
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](b22fbbc292...84cbf80943
2022-07-19 03:20:46 +00:00
cb6bd4d9e7
Merge pull request #13995 from hakman/update_github_workflows
...
Update GitHub workflows
2022-07-18 20:20:06 -07:00
982f584ed3
Run dependency related workflows only for the official kOps repo
2022-07-18 08:12:15 +03:00
451256f966
Use hashes for actions versions
2022-07-18 08:09:54 +03:00
42078c2b4f
Re-add Dependabot for action updates
2022-07-18 08:05:50 +03:00
1ed829e0cf
Update workflow names and quoting style
2022-07-18 08:01:40 +03:00
50ca8b3f4d
Run dependency review only on go.mod changes
2022-07-18 07:58:10 +03:00
40096b6684
Remove unused Dependabot related workflow
2022-07-18 07:56:33 +03:00
7d69bb0976
Update Go to v1.18.4
2022-07-18 07:53:50 +03:00
f76a945541
Merge pull request #13894 from hakman/regular_update-deps
...
Replace Dependabot with regular `update-deps` run
2022-06-28 03:41:57 -07:00
6301b1ef6e
Run update-deps workflow evert Friday morning
2022-06-28 09:37:49 +03:00
181af09bee
Disable Dependabot
2022-06-28 09:35:06 +03:00
b173541ae5
Fix unexpected symbol error in update-deps workflow
2022-06-27 10:45:13 +03:00
7a8650342d
Print all modified files in update-deps generated PRs
2022-06-27 08:27:14 +03:00
5bd08db213
Add manual job for updating dependencies
2022-06-19 16:45:00 +03:00
dcc71211d4
Bump actions/dependency-review-action from 1 to 2
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 1 to 2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-19 06:12:29 +00:00
4ce5c35a00
Merge pull request #13651 from turrisxyz/Dependency-GitHub
...
chore(deps): Included dependency review
2022-06-17 10:06:32 -07:00
59aab80b7a
Add GHA workflow for updating dependabot PRs
...
This ensures that our other go modules (tests/e2e/, hack/) are also updated whenever dependabot updates the primary go module's dependencies.
2022-06-05 15:00:01 -05:00
742b74417a
Use dependabot for Go deps
2022-05-29 19:19:46 +03:00
b50bd8b59d
Bump actions/setup-go from 3.1.0 to 3.2.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](fcdc43634a...b22fbbc292
2022-05-29 06:13:12 +00:00
f682cea494
Bump actions/setup-go from 3.0.0 to 3.1.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](f6164bd8c8...fcdc43634a
2022-05-15 06:12:41 +00:00
33b5787ed8
chore(deps): Included dependency review
...
> Dependency Review GitHub Action in your repository to enforce dependency
> reviews on your pull requests.
> The action scans for vulnerable versions of dependencies introduced by package version
> changes in pull requests,
> and warns you about the associated security vulnerabilities.
> This gives you better visibility of what's changing in a pull request,
> and helps prevent vulnerabilities being added to your repository.
https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-05-14 13:12:38 -05:00
03cb37aed2
Update Go to v1.18.1
2022-04-22 21:20:06 +03:00
2ca4a9bee3
Use golang 1.18.0 explicitly
...
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
2022-03-29 07:22:16 +03:00
59631a1fff
Use golang 1.18 for building
2022-03-28 20:24:09 +02:00
641ef62230
Apply suggestions from code review
2022-03-28 17:05:02 +03:00
a90c265a6f
Bump actions/setup-go from 2.2.0 to 3
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 2.2.0 to 3.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](bfdd3570ce...f6164bd8c8
2022-03-28 13:29:58 +00:00
e2acdce433
Merge pull request #13423 from naveensrinivasan/naveen/feat/dependabot-githubactions
...
Included githubactions in dependabot config
2022-03-28 06:29:23 -07:00
0990ea2338
Update .github/dependabot.yml
...
Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
2022-03-27 20:57:40 -05:00
712bf7fcfb
Included githubactions in dependabot config
...
- Included githubactions in the dependabot config
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-03-27 18:09:23 +00:00
b832368bf7
Pin actions to a full length commit SHA
...
- Pinned actions by SHA https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
>Pin actions to a full length commit SHA
>Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload.
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions
Also, dependabot supports upgrading based on SHA.
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-03-27 18:05:05 +00:00
f48e39c2a1
Pinned action by SHA and included the URL for verification
2022-03-27 18:02:41 +00:00
7603f4ca46
Remove temporary restrictions on automatically tagging releases
2022-01-01 13:48:57 -08:00
8feb75f8e5
Add action for automatically tagging releases
2021-12-23 13:39:20 -08:00
dfe088eb3e
Update Go to v1.17.5
2021-12-13 12:48:11 +02:00
8cd0633e70
Update Go to v1.17.4
2021-12-06 05:38:25 +02:00
197f1cb689
Update Go to v1.17.3
2021-11-16 06:54:29 +02:00
b5f582a93c
Update Go to v1.17.2
2021-10-08 11:47:50 +03:00
5399c8d627
Update Go to v1.17.1
2021-09-20 06:47:49 +03:00
866804b72f
Update Go to v1.16.8
2021-09-11 11:17:36 +03:00
b7cd8a5e0a
Update Go to v1.16.7
...
https://golang.org/doc/devel/release#go1.16.minor
2021-08-14 07:09:31 +03:00
c7d131f00c
Update Go to v1.16.5
2021-06-04 10:48:56 +03:00
8c9a5bb0d1
Label issue types in issue templates
2021-05-30 15:05:13 -07:00
80ee477727
Update Go to v1.16.4
2021-05-29 11:31:22 +03:00
747199e787
Update Go to v1.16.3
2021-04-04 14:50:24 +01:00
0999651132
Update Go to v1.16.2
2021-03-13 07:23:30 +02:00
1a6ff4efbf
Update Go to v1.16
2021-03-04 18:41:48 +00:00
6df69cf71a
Update Go to v1.15.8
2021-02-17 07:32:38 +02:00
f2461ca34e
Update Go to v1.15.7
2021-01-20 06:52:05 +02:00
f2ecb5c153
Upgrade Go v1.15.6 / Bazel v3.4.1
2021-01-10 18:13:12 +00:00
bfbd4123e7
Rename duplicate ci target to quick-ci
2020-12-07 13:03:52 +02:00
894ebedc5c
Remove dependency on TravisCI
2020-12-04 20:28:23 +02:00
8eb99e30fb
Update Go to v1.15.5
2020-11-15 12:32:24 +02:00
6228c79b88
Update Go to v1.15.4
2020-11-10 21:20:22 +02:00
7d4f2cc2be
Update Go to v1.15.2
2020-09-15 17:54:05 +03:00
224e19179e
Update Go to v1.15.1
2020-09-07 05:56:46 +03:00
3afb390c5c
Upgrade CI jobs to go 1.15.0
...
These were failing, apparently the RC is no longer available once the stable release lands.
We can bump bazel rules_go once it is released.
2020-08-11 16:42:41 -05:00
9995940677
Add Windows job to GH workflows
2020-08-11 14:28:36 +03:00
e5d851373e
Merge pull request #9709 from hakman/go1.15rc2
...
Update Go to v1.15rc2
2020-08-08 00:56:19 -07:00
ba66477a26
Update Go to v1.15rc2
2020-08-08 10:12:45 +03:00
3971708a4c
Add markdown code block to bug report GH issue template
2020-08-06 10:05:11 -05:00
2401106ebb
Upgrade Go to version 1.15rc1
2020-07-29 06:42:44 +03:00
653165daff
Rename workflow to CI
2020-07-12 20:43:31 +03:00
48f50c7f6b
Build all instead of nodeup for linux
2020-07-12 20:37:14 +03:00
46a59fc637
Build kops instead of nodeup for macOS
2020-07-12 20:36:36 +03:00
b7491a176d
Use actions/setup-go@v2
2020-07-12 04:45:12 +03:00
bf42e32622
Use stable names for GH workflow jobs
2020-07-12 04:27:55 +03:00
6b6692494f
Revert "try github actions failures to see if PRs can't be merged"
...
This reverts commit b85c0a47e5
2020-06-17 23:18:58 -05:00
b85c0a47e5
try github actions failures to see if PRs can't be merged
2020-06-17 22:42:33 -05:00
2e79240df1
Add comment on blocking jobs to actions
2020-06-08 15:17:39 -04:00
Ciprian Hacman