Patrick Linnane
4d52f24886
workflows: fix mis-pinned codeql-action hashes
...
Signed-off-by: Patrick Linnane <patrick@linnane.io>
2024-12-13 21:00:47 -08:00
dependabot[bot]
fba828b202
build(deps): bump ruby/setup-ruby from 1.203.0 to 1.204.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.203.0 to 1.204.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](2a18b06812...401c19e14f
2024-12-14 04:02:22 +00:00
Patrick Linnane
56e41319f2
workflows: use full version numbers
...
Signed-off-by: Patrick Linnane <patrick@linnane.io>
2024-12-12 21:26:46 -08:00
BrewTestBot
6a23f24724
stale-issues.yml: update to match main configuration
2024-12-13 04:29:11 +00:00
Mike McQuaid
abb330d496
github/workflows: use merge_group instead of push events.
...
We're currently doing both which doubles the number of jobs we end up
running for commits on `master`.
2024-12-10 17:19:20 +00:00
dependabot[bot]
84f0617309
build(deps): bump actions/attest-build-provenance from 2.0.1 to 2.1.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.0.1 to 2.1.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](c4fbc64884...7668571508
2024-12-10 16:39:21 +00:00
dependabot[bot]
52dc5cd0be
build(deps): bump ruby/setup-ruby from 1.202.0 to 1.203.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.202.0 to 1.203.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](a2bbe5b1b2...2a18b06812
2024-12-07 17:16:55 +00:00
Douglas Eichelberger
ba9581f2c2
Merge pull request #18890 from Homebrew/dependabot/github_actions/codecov/codecov-action-5.1.1
...
build(deps): bump codecov/codecov-action from 5.1.0 to 5.1.1
2024-12-06 11:14:48 -08:00
dependabot[bot]
88c52b18fd
build(deps): bump codecov/codecov-action from 5.1.0 to 5.1.1
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.1.0 to 5.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](c2fcb216de...7f8b4b4bde
2024-12-06 18:03:01 +00:00
dependabot[bot]
4a1e0324bc
build(deps): bump actions/attest-build-provenance from 2.0.0 to 2.0.1
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.0.0 to 2.0.1.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](619dbb2e03...c4fbc64884
2024-12-06 18:02:58 +00:00
Mike McQuaid
8bac4412d5
workflows/docs: enable merge queue/group jobs.
...
This should allow us to make use of the GitHub merge queue to ensure
that we're not merging outdated code (or breaking `master`) but avoiding
the need to continually merge into/rebase PR branches.
This should be safe to merge as-is as is essentially a no-op without
the merge queue enabled.
2024-12-06 17:35:38 +00:00
Patrick Linnane
62329ea12e
Merge pull request #18879 from Homebrew/dependabot/github_actions/codecov/codecov-action-5.1.0
...
build(deps): bump codecov/codecov-action from 5.0.7 to 5.1.0
2024-12-05 10:47:39 -08:00
dependabot[bot]
a5e42710f9
build(deps): bump codecov/codecov-action from 5.0.7 to 5.1.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.7 to 5.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](015f24e681...c2fcb216de
2024-12-05 18:37:01 +00:00
dependabot[bot]
b0d7e20ef8
build(deps): bump actions/cache from 4.1.2 to 4.2.0
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](6849a64899...1bd1e32a3b
2024-12-05 18:36:58 +00:00
Mike McQuaid
316bf3656b
Upload test results to CodeCov
...
CodeCov now supports uploading test results which allows e.g. flaky test
detection and may allow us to remove BuildPulse.
Co-authored-by: Bo Anderson <mail@boanderson.me>
2024-12-05 17:21:00 +00:00
dependabot[bot]
88b6a8266b
build(deps): bump actions/attest-build-provenance from 1.4.4 to 2.0.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.4 to 2.0.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](ef244123eb...619dbb2e03
2024-12-04 16:38:51 +00:00
dependabot[bot]
692c170054
build(deps): bump docker/build-push-action from 6.9.0 to 6.10.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.9.0 to 6.10.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](4f58ea7922...48aba3b46d
2024-11-26 18:41:31 +00:00
dependabot[bot]
14afece550
build(deps): bump codecov/codecov-action from 5.0.5 to 5.0.7
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.5 to 5.0.7.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](288befbd10...015f24e681
2024-11-21 16:08:43 +00:00
dependabot[bot]
988e3ac098
build(deps): bump codecov/codecov-action from 5.0.2 to 5.0.5
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.2 to 5.0.5.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](5c47607acb...288befbd10
2024-11-20 18:40:13 +00:00
Mike McQuaid
41be66fc2a
Merge pull request #18775 from Homebrew/docker_registry_cache
...
workflows/docker: use GitHub Packages for caching.
2024-11-15 21:30:38 +00:00
dependabot[bot]
202b6e931c
build(deps): bump codecov/codecov-action from 5.0.0 to 5.0.2
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.0 to 5.0.2.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](968872560f...5c47607acb
2024-11-15 18:25:49 +00:00
Mike McQuaid
10525781b3
workflows/docker: remove unneeded packages permission.
2024-11-15 18:24:29 +00:00
Mike McQuaid
e98fae8512
workflows/docker: improve step names.
...
Co-authored-by: Markus Reiter <me@reitermark.us>
2024-11-15 17:15:04 +00:00
Mike McQuaid
fb03a29ec6
workflows/docker: use GitHub Packages for caching.
...
The GitHub Actions caching seems to not be very performant and is
exploding our cache storage usage.
2024-11-15 16:14:48 +00:00
dependabot[bot]
c902795ec5
build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.6.0 to 5.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](b9fd7d16f6...968872560f
2024-11-14 18:19:26 +00:00
William Woodruff
981d980991
actionlint: suppress zizmor's exit code
...
Signed-off-by: William Woodruff <william@yossarian.net>
2024-11-11 22:09:25 -07:00
dependabot[bot]
810760ff69
build(deps): bump ruby/setup-ruby from 1.201.0 to 1.202.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.201.0 to 1.202.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](46ca53beb3...a2bbe5b1b2
2024-11-09 19:04:07 +00:00
dependabot[bot]
1b4db24c41
build(deps): bump ruby/setup-ruby from 1.200.0 to 1.201.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.200.0 to 1.201.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](217c988b8c...46ca53beb3
2024-11-07 15:53:18 +00:00
dependabot[bot]
9864f1b521
build(deps): bump actions/attest-build-provenance from 1.4.3 to 1.4.4
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.3 to 1.4.4.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](1c608d11d6...ef244123eb
2024-11-06 14:47:48 +00:00
dependabot[bot]
6053cf73a2
build(deps): bump ruby/setup-ruby from 1.199.0 to 1.200.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.199.0 to 1.200.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](7d3497fd78...217c988b8c
2024-11-05 16:05:39 +00:00
Mike McQuaid
5bf31cbe65
workflows/tests: tweak update-test name.
2024-11-04 09:13:49 +00:00
Michka Popoff
2f73ca19b6
ci: move to ubuntu latest
...
Add coverage test using ubuntu 24.04
Not changing the default build CI version for core yet.
2024-11-03 22:55:30 +01:00
dependabot[bot]
9f90e25d9d
build(deps): bump ruby/setup-ruby from 1.198.0 to 1.199.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.198.0 to 1.199.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](98aefb3c83...7d3497fd78
2024-11-01 12:40:52 +00:00
dependabot[bot]
850a84d319
build(deps): bump ruby/setup-ruby from 1.197.0 to 1.198.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.197.0 to 1.198.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](7bae1d00b5...98aefb3c83
2024-10-31 18:53:27 +00:00
Bo Anderson
03c422ddb7
Merge pull request #18666 from Homebrew/vendor-version-template-injections
...
workflows/vendor-version: fix `template-injection` warnings
2024-10-30 17:19:16 +00:00
Bo Anderson
44608084a7
Merge pull request #18667 from Homebrew/pkg-installer-template-injection
...
workflows/pkg-installer: fix `template-injection` warnings
2024-10-30 17:18:53 +00:00
Bo Anderson
37aab1f5d5
Merge pull request #18668 from Homebrew/fix-artipacked
...
workflows: fix `artipacked` warning
2024-10-30 17:18:37 +00:00
BrewTestBot
cce778ed82
stale-issues.yml: update to match main configuration
2024-10-30 14:36:05 +00:00
Carlo Cabrera
2ec174ffb7
workflows: fix artipacked warning
...
Fixes https://github.com/Homebrew/brew/security/code-scanning/32
Fixes https://github.com/Homebrew/brew/security/code-scanning/33
Fixes https://github.com/Homebrew/brew/security/code-scanning/42
2024-10-30 22:29:01 +08:00
Carlo Cabrera
fbfbc8df29
workflows/pkg-installer: fix template-injection warnings
...
Fixes https://github.com/Homebrew/brew/security/code-scanning/34
Fixes https://github.com/Homebrew/brew/security/code-scanning/35
Fixes https://github.com/Homebrew/brew/security/code-scanning/36
Fixes https://github.com/Homebrew/brew/security/code-scanning/37
Fixes https://github.com/Homebrew/brew/security/code-scanning/38
Fixes https://github.com/Homebrew/brew/security/code-scanning/39
2024-10-30 22:25:23 +08:00
Carlo Cabrera
6bddbb5cf3
workflows/vendor-version: fix template-injection warnings
...
Fixes https://github.com/Homebrew/brew/security/code-scanning/40
Fixes https://github.com/Homebrew/brew/security/code-scanning/41
2024-10-30 22:20:14 +08:00
Carlo Cabrera
dbe271a597
workflows/actionlint: run zizmor
...
Port of Homebrew/homebrew-core#195961 .
See https://github.com/woodruffw/zizmor .
2024-10-30 11:32:23 +08:00
dependabot[bot]
9ccd3e1de1
build(deps): bump actions/checkout from 4.2.1 to 4.2.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](eef61447b9...11bd71901b
2024-10-23 18:19:06 +00:00
Patrick Linnane
8ee026bebb
Merge pull request #18607 from Homebrew/dependabot/github_actions/github/codeql-action-3.27.0
2024-10-22 10:20:25 -07:00
dependabot[bot]
5e94280d87
build(deps): bump github/codeql-action from 3.26.13 to 3.27.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.13 to 3.27.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f779452ac5...662472033e
2024-10-22 17:08:33 +00:00
dependabot[bot]
97533abb6a
build(deps): bump actions/cache from 4.1.1 to 4.1.2
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](3624ceb22c...6849a64899
2024-10-22 17:08:27 +00:00
dependabot[bot]
1e6ef71c2a
build(deps): bump ruby/setup-ruby from 1.196.0 to 1.197.0
...
Bumps [ruby/setup-ruby](https://github.com/ruby/setup-ruby ) from 1.196.0 to 1.197.0.
- [Release notes](https://github.com/ruby/setup-ruby/releases )
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb )
- [Commits](f269373437...7bae1d00b5
2024-10-18 17:16:54 +00:00
Ruoyu Zhong
d6591d4fd6
Merge pull request #18563 from Homebrew/dependabot/github_actions/github/codeql-action-3.26.13
...
build(deps): bump github/codeql-action from 3.26.12 to 3.26.13
2024-10-15 03:30:31 +08:00
dependabot[bot]
832356bafa
build(deps): bump github/codeql-action from 3.26.12 to 3.26.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.12 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c36620d31a...f779452ac5
2024-10-14 19:19:37 +00:00
dependabot[bot]
0361188c1a
build(deps): bump actions/attest-build-provenance from 1.3.3 to 1.4.3
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.3.3 to 1.4.3.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](5e9cb68e95...1c608d11d6
2024-10-14 19:19:34 +00:00
