dependabot[bot]
4968090ff1
chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 ( #3272 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](b4ffde65f4...9bb56186c3
2024-03-19 08:44:22 +09:00
dependabot[bot]
ca3deb43c0
chore(deps): bump github/codeql-action from 3.24.6 to 3.24.7 ( #3271 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.6 to 3.24.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8a470fddaf...3ab4101902
2024-03-19 08:43:52 +09:00
dependabot[bot]
c4eb9aab2e
chore(deps): bump softprops/action-gh-release from 2.0.2 to 2.0.4 ( #3270 )
...
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release ) from 2.0.2 to 2.0.4.
- [Release notes](https://github.com/softprops/action-gh-release/releases )
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md )
- [Commits](d99959edae...9d7c94cfd0
2024-03-19 08:40:43 +09:00
dependabot[bot]
6b500c88c3
chore(deps): bump docker/setup-buildx-action from 3.1.0 to 3.2.0 ( #3269 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](0d103c3126...2b51285047
2024-03-19 08:40:19 +09:00
dependabot[bot]
11d7bea4fe
chore(deps): bump docker/login-action from 3.0.0 to 3.1.0 ( #3273 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](343f7c4344...e92390c5fb
2024-03-19 08:35:44 +09:00
dependabot[bot]
1dbdbc7d94
chore(deps): bump softprops/action-gh-release from 1 to 2 ( #3253 )
...
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release ) from 1 to 2.
- [Release notes](https://github.com/softprops/action-gh-release/releases )
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md )
- [Commits](de2c0eb89a...d99959edae
2024-03-12 13:40:30 +01:00
dependabot[bot]
dc78a2f0d4
chore(deps): bump github/codeql-action from 3.24.5 to 3.24.6 ( #3222 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.5 to 3.24.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](47b3d888fe...8a470fddaf
2024-03-04 09:52:37 +01:00
dependabot[bot]
857ccebaa7
chore(deps): bump docker/setup-buildx-action from 3.0.0 to 3.1.0 ( #3223 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](f95db51fdd...0d103c3126
2024-03-04 09:52:24 +01:00
dependabot[bot]
116adaf4b0
chore(deps): bump actions/cache from 4.0.0 to 4.0.1 ( #3225 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](13aacd865c...ab5e6d0c87
2024-03-04 09:52:09 +01:00
dependabot[bot]
22d9aa9fd1
chore(deps): bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 ( #3224 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.17.0 to 0.18.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](84384bd6e7...062f259268
2024-03-04 09:51:56 +01:00
dependabot[bot]
605e271580
chore(deps): bump codecov/codecov-action from 4.0.1 to 4.1.0 ( #3203 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e0b68c6749...54bcd8715e
2024-02-27 14:12:43 +01:00
dependabot[bot]
d20ddb8c42
chore(deps): bump github/codeql-action from 3.24.3 to 3.24.5 ( #3193 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.3 to 3.24.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](379614612a...47b3d888fe
2024-02-27 14:11:14 +01:00
dependabot[bot]
756bcdfe89
chore(deps): bump fossas/fossa-action ( #3170 )
...
Bumps [fossas/fossa-action](https://github.com/fossas/fossa-action ) from 45d0cd825dcbe195c58a83662b0abb684ca739d8 to 47ef11b1e1e3812e88dae436ccbd2d0cbd1adab0.
- [Release notes](https://github.com/fossas/fossa-action/releases )
- [Commits](45d0cd825d...47ef11b1e1
2024-02-26 07:50:09 +01:00
Shuhei Kitagawa
be02a25101
Set CODECOV_TOKEN to upload results from the upstream branches ( #3165 )
...
https://kubernetes.slack.com/archives/C047LA9MUPJ/p1708300085013439
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2024-02-20 08:04:46 +09:00
dependabot[bot]
bb14f697d3
chore(deps): bump github/codeql-action from 3.24.0 to 3.24.3 ( #3171 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.0 to 3.24.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e8893c57a1...379614612a
2024-02-20 07:58:07 +09:00
Shuhei Kitagawa
6c46b29e2f
Run unit tests on the main branch ( #3126 )
...
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2024-02-17 06:49:56 -03:00
Shuhei Kitagawa
2ca08fbfb6
Start the helm workflow when files in deploy/crds change ( #3098 )
...
https://github.com/external-secrets/external-secrets/issues/3059
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2024-02-17 06:49:21 -03:00
dependabot[bot]
a26df1f29e
chore(deps): bump helm/kind-action from 1.8.0 to 1.9.0 ( #3141 )
...
Bumps [helm/kind-action](https://github.com/helm/kind-action ) from 1.8.0 to 1.9.0.
- [Release notes](https://github.com/helm/kind-action/releases )
- [Commits](dda0770415...99576bfa6d
2024-02-14 22:59:31 +01:00
dependabot[bot]
605ad76423
chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 ( #3140 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](3a91952989...3cfe3a4abb
2024-02-14 20:56:57 +01:00
dependabot[bot]
d927f8696b
chore(deps): bump aquasecurity/trivy-action ( #3142 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from f3d98514b056d8c71a3552e8328c225bc7f6f353 to 84384bd6e777ef152729993b8145ea352e9dd3ef.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](f3d98514b0...84384bd6e7
2024-02-12 12:41:10 +01:00
Gustavo Fernandes de Carvalho
23f4cf6c48
temporarily removing ossf checks for helm release ( #3128 )
...
Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>
2024-02-09 04:56:47 -03:00
dependabot[bot]
2f6b90dfa3
chore(deps): bump peter-evans/slash-command-dispatch from 3.0.2 to 4.0.0 ( #3102 )
...
Bumps [peter-evans/slash-command-dispatch](https://github.com/peter-evans/slash-command-dispatch ) from 3.0.2 to 4.0.0.
- [Release notes](https://github.com/peter-evans/slash-command-dispatch/releases )
- [Commits](f996d7b7aa...13bc09769d
2024-02-06 09:25:24 +09:00
dependabot[bot]
20c991a56f
chore(deps): bump github/codeql-action from 3.23.2 to 3.24.0 ( #3103 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.23.2 to 3.24.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b7bf0a3ed3...e8893c57a1
2024-02-06 09:20:38 +09:00
dependabot[bot]
bbc922a632
chore(deps): bump codecov/codecov-action from 3.1.5 to 4.0.1 ( #3104 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.1.5 to 4.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](4fe8c5f003...e0b68c6749
2024-02-06 09:20:04 +09:00
dependabot[bot]
3db7d24d34
chore(deps): bump github/codeql-action from 3.23.1 to 3.23.2 ( #3089 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.23.1 to 3.23.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0b21cf2492...b7bf0a3ed3
2024-01-31 18:30:07 +01:00
dependabot[bot]
0b5059d03a
chore(deps): bump codecov/codecov-action from 3.1.4 to 3.1.5 ( #3090 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3.1.4 to 3.1.5.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](eaaf4bedf3...4fe8c5f003
2024-01-31 15:12:26 +01:00
dependabot[bot]
0bdb53c99f
chore(deps): bump ossf/scorecard-action from 2.1.2 to 2.3.1 ( #3045 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.2 to 2.3.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e38b1902ae...0864cf1902
2024-01-19 11:57:29 +01:00
dependabot[bot]
d655f385b1
chore(deps): bump actions/checkout from 3.1.0 to 4.1.1 ( #3044 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...b4ffde65f46336ab88eb53be808477a3936bae11 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-19 09:07:44 +01:00
dependabot[bot]
2de573ec66
chore(deps): bump github/codeql-action from 2.2.4 to 3.23.1 ( #3048 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.4 to 3.23.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](17573ee1cc...0b21cf2492
2024-01-19 09:04:09 +01:00
dependabot[bot]
a0d4814f51
chore(deps): bump actions/cache from 3.3.3 to 4.0.0 ( #3049 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.3.3 to 4.0.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](e12d46a63a...13aacd865c
2024-01-19 09:03:59 +01:00
Moritz Johner
43b6c5eaad
fix: hack/api-docs/requirements.txt to reduce vulnerabilities ( #3036 )
...
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717
- https://snyk.io/vuln/SNYK-PYTHON-PYYAML-590151
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5537286
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5840803
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-6041512
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: snyk-bot <snyk-bot@snyk.io>
2024-01-19 08:04:25 +01:00
Moritz Johner
00249f1d43
Create OSSF scorecard job ( #3032 )
...
* Create scorecard.yml
Adds a scorecard workflow to regularly check the repo.
See docs: https://github.com/marketplace/actions/ossf-scorecard-action#scorecard-badge
Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>
2024-01-18 21:03:07 +01:00
Shuhei Kitagawa
f32ea9f91d
Configure codecov ( #2995 )
...
* Configure codevov
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
* Disable annotations
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
* Set ignore
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
---------
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2024-01-05 23:26:39 +01:00
Moritz Johner
e9cd99148f
fix: do not error if helm chart version already exists ( #2974 )
...
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-12-23 22:30:03 +01:00
Jongwoo Han
fa591d7674
chore: replace deprecated command with environment file ( #2970 )
...
Signed-off-by: Jongwoo Han <jongwooo.han@gmail.com>
2023-12-21 22:30:54 +01:00
dependabot[bot]
9b41c931df
chore(deps): bump actions/setup-python from 4.7.1 to 5.0.0 ( #2941 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.7.1 to 5.0.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v4.7.1...v5.0.0 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:41:47 +01:00
dependabot[bot]
d53cfbad06
chore(deps): bump actions/stale from 8 to 9 ( #2942 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 8 to 9.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v8...v9 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:41:00 +01:00
dependabot[bot]
0fe7bba692
chore(deps): bump actions/setup-go from 4 to 5 ( #2943 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 09:40:29 +01:00
dependabot[bot]
ae258f0dcd
chore(deps): bump actions/github-script from 6 to 7 ( #2889 )
...
Bumps [actions/github-script](https://github.com/actions/github-script ) from 6 to 7.
- [Release notes](https://github.com/actions/github-script/releases )
- [Commits](https://github.com/actions/github-script/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: actions/github-script
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-20 10:08:26 +01:00
Lucas Severo Alves
beabdb2f28
Update PAUL.yaml to include roger ( #2873 )
2023-11-13 19:38:38 +01:00
dependabot[bot]
2bf34ecaae
chore(deps): bump helm/chart-testing-action from 2.3.1 to 2.6.1 ( #2849 )
...
* chore(deps): bump helm/chart-testing-action from 2.3.1 to 2.6.1
Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action ) from 2.3.1 to 2.6.1.
- [Release notes](https://github.com/helm/chart-testing-action/releases )
- [Commits](https://github.com/helm/chart-testing-action/compare/v2.3.1...v2.6.1 )
---
updated-dependencies:
- dependency-name: helm/chart-testing-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* chore: remove comment regarding upstream issue
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
2023-11-06 20:40:56 +01:00
dependabot[bot]
a9d70527b3
chore(deps): bump helm/chart-releaser-action from 1.5.0 to 1.6.0 ( #2848 )
...
Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases )
- [Commits](https://github.com/helm/chart-releaser-action/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-06 15:15:29 +01:00
Shuhei Kitagawa
c90c53b031
Let setup-go handle go module cache ( #2828 )
...
Signed-off-by: shuheiktgw <s-kitagawa@mercari.com>
2023-11-01 16:54:27 +01:00
Moritz Johner
22bb26cfa1
chore: release 0.9.8 ( #2826 )
...
also downgrade `chart-testing-action`: CI pipeline [1] fails with "Unable to validate cosign version v2.0.0".
That is because the v2.0.0 bootstrap version [2] is not accessible any more, it
either got deleted or permissions got changed.
[1] https://github.com/external-secrets/external-secrets/actions/runs/6705828636/job/18221053949?pr=2826
[2] https://storage.googleapis.com/cosign-releases/v2.0.0/cosign-linux-amd64
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-10-31 13:42:55 +01:00
Moritz Johner
c5d647bae1
feat: give @Skarlso maintainer permissions ( #2823 )
...
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-10-30 13:49:34 +01:00
Moritz Johner
868c8ad2f1
chore: test e2e-managed & fixup docs ( #2818 )
...
* fix: remove dead job
* chore: mention azure managed tests
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-10-29 22:38:20 +01:00
Moritz Johner
51532ca8a1
feat: add AKS e2e managed ( #2811 )
...
Migrate azure e2e tests to use the new TFC_* secrets which are
provisioned through external-secrets/infrastructure.
Also enable the use of `/ok-to-test-managed provider=azure` command
to run e2e managed tests that verify integration with AKS and
Azure Workload Identity (AZWI).
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-10-29 21:51:39 +01:00
Gergely Brautigam
762f6dc4fc
fix: also fix the ci jobs linter version ( #2807 )
...
Signed-off-by: Gergely Brautigam <182850+Skarlso@users.noreply.github.com>
2023-10-24 22:18:13 +02:00
dependabot[bot]
8649f907ee
chore(deps): bump fkirc/skip-duplicate-actions from 5.3.0 to 5.3.1 ( #2797 )
...
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions ) from 5.3.0 to 5.3.1.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases )
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v5.3.0...v5.3.1 )
---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23 22:22:57 +02:00
Moritz Johner
9e6a69fd51
feat: bump go + deps ( #2794 )
...
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
2023-10-20 09:28:14 +09:00
