dependabot[bot]
1b0c9ffe62
Bump actions/setup-go from 4.1.0 to 5.0.0 ( #198 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 4.1.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](93397bea11...0c52d547c9
2023-12-11 13:41:32 -08:00
dependabot[bot]
0069a9b159
Bump github/codeql-action from 2.22.8 to 2.22.9 ( #199 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.8 to 2.22.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](407ffafae6...c0d1daa7f7
2023-12-11 12:45:35 -08:00
dependabot[bot]
68862bc2ec
Bump docker/metadata-action from 5.2.0 to 5.3.0 ( #197 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 5.2.0 to 5.3.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](e6428a5c4e...31cebacef4
2023-12-11 12:36:29 -08:00
dependabot[bot]
0b7075844b
Bump actions/dependency-review-action from 3.1.3 to 3.1.4 ( #196 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.3 to 3.1.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](7bbfa034e7...01bc87099b
2023-12-04 18:31:18 -08:00
dependabot[bot]
3370a9efdf
Bump docker/metadata-action from 5.0.0 to 5.2.0 ( #195 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 5.0.0 to 5.2.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](96383f4557...e6428a5c4e
2023-12-04 18:30:51 -08:00
dependabot[bot]
11fcb6f83a
Bump github/codeql-action from 2.22.7 to 2.22.8 ( #194 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.7 to 2.22.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](66b90a5db1...407ffafae6
2023-11-28 11:35:51 -08:00
dependabot[bot]
e2bbae7746
Bump docker/build-push-action from 5.0.0 to 5.1.0 ( #192 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](0565240e2d...4a13e500e5
2023-11-21 10:29:34 -08:00
dependabot[bot]
5bef43b713
Bump actions/dependency-review-action from 3.1.2 to 3.1.3 ( #193 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fde92acd08...7bbfa034e7
2023-11-21 10:29:09 -08:00
dependabot[bot]
2ba6d5aea1
Bump github/codeql-action from 2.22.5 to 2.22.7 ( #191 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.5 to 2.22.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](74483a38d3...66b90a5db1
2023-11-21 10:28:39 -08:00
dependabot[bot]
69fa997daf
Bump actions/dependency-review-action from 3.1.0 to 3.1.2 ( #190 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.0 to 3.1.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](6c5ccdad46...fde92acd08
2023-11-14 12:10:03 -08:00
dependabot[bot]
95343710ec
Bump github/codeql-action from 2.22.4 to 2.22.5 ( #187 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.4 to 2.22.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](49abf0ba24...74483a38d3
2023-10-31 18:33:54 -07:00
dependabot[bot]
314d328f7f
Bump ossf/scorecard-action from 2.3.0 to 2.3.1 ( #188 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](483ef80eb9...0864cf1902
2023-10-31 18:33:01 -07:00
dependabot[bot]
46d82eca9c
Bump actions/checkout from 4.1.0 to 4.1.1 ( #186 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8ade135a41...b4ffde65f4
2023-10-25 22:06:29 -07:00
dependabot[bot]
b2e6288a48
Bump github/codeql-action from 2.22.3 to 2.22.4 ( #185 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.3 to 2.22.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0116bc2df5...49abf0ba24
2023-10-25 22:05:51 -07:00
dependabot[bot]
7ce0743a4c
Bump github/codeql-action from 2.21.9 to 2.22.3 ( #183 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.9 to 2.22.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ddccb87388...0116bc2df5
2023-10-18 22:14:15 -07:00
dependabot[bot]
c9aec3f197
Bump ossf/scorecard-action from 2.2.0 to 2.3.0 ( #180 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](08b4669551...483ef80eb9
2023-10-18 22:13:45 -07:00
dependabot[bot]
c6c1549e18
Bump github/codeql-action from 2.21.8 to 2.21.9 ( #178 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.8 to 2.21.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6a28655e3d...ddccb87388
2023-10-03 11:15:13 -07:00
dependabot[bot]
7d7557f27a
Bump actions/checkout from 4.0.0 to 4.1.0 ( #176 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](3df4ab11eb...8ade135a41
2023-09-26 20:56:48 -07:00
dependabot[bot]
10b5ef2259
Bump github/codeql-action from 2.21.7 to 2.21.8 ( #177 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.7 to 2.21.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](04daf014b5...6a28655e3d
2023-09-26 20:56:24 -07:00
Julio Lopez
f7a24bdd34
chore(ci): unify CI workflows ( #172 )
...
Move build and linting jobs to a single GH workflow file.
It simplifies managing the settings for these jobs and
keeping them consistent.
Reduce permissions scope for ci workflow
Allow triggering when pushing to the 'main' branch
Run on pull requests on all branches
Build when pushing tags
Run Docker workflow on push to 'main' branch
Run Docker workflow on pull requests on all branches
Cleanups:
- rename workflow
- use consistent indentation for steps
- capitalize job name
2023-09-15 07:30:17 -10:00
Julio Lopez
20a3cdc3d4
chore(deps): upgrade golangci-lint to v1.54.2 ( #175 )
...
Release notes:
- https://github.com/golangci/golangci-lint/releases/tag/v1.54.2
- https://github.com/golangci/golangci-lint/releases
2023-09-14 17:10:36 -07:00
dependabot[bot]
e01c906404
Bump github/codeql-action from 2.21.5 to 2.21.7 ( #173 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.5 to 2.21.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](00e563ead9...04daf014b5
2023-09-14 16:57:14 -07:00
Julio Lopez
10ed04dbe1
chore(ci): minor improvements and cleanups ( #171 )
...
Checkout code before setting up go:
The `setup-go` action caches by default.
This allows GH caches to work properly, and also to use the Go
version from the `go.mod` file.
Use 'with.go-version-file:' in 'actions/setup-go'.
Skip Go pkg cache since setup-go manages it.
Add names for steps.
2023-09-14 16:11:03 -07:00
Julio Lopez
50cd583328
chore(deps) upgrade various GH actions ( #170 )
...
* chore(ci): update comment in dependency review action
* chore(deps): use commit id for action/setup-go version
* deps(gha): upgrade docker/setup-buildx-action to v3.0.0
* deps(gha): upgrade docker/metadata-action to v5.0.0
* deps(gha): upgrade docker/login-action to v3.0.0
* deps(gha): upgrade docker/build-push-action to v5.0.0
* deps(gha): upgrade docker/setup-qemu-action to v3.0.0
Release notes: https://github.com/docker/setup-qemu-action/releases/tag/v3.0.0
* deps(gha): use commit id for dependency-review-action
* deps(gha): upgrade goreleaser-action to v5.0.0
Release notes: https://github.com/goreleaser/goreleaser-action/releases/tag/v5.0.0
* deps(gha): use commit id for golangci-lint-action
Pin to v3.7.0
Release notes: https://github.com/golangci/golangci-lint-action/releases/tag/v3.7.0
2023-09-14 15:33:53 -07:00
dependabot[bot]
2511849a2d
Bump actions/checkout from 3 to 4 ( #168 )
...
* Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* use commit ids when specifying version
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Julio Lopez <1953782+julio-lopez@users.noreply.github.com>
2023-09-14 14:25:29 -07:00
dependabot[bot]
2e34f2d6c2
Bump actions/upload-artifact from 3.1.2 to 3.1.3 ( #169 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b7f8abb15...a8a3f3ad30
2023-09-13 17:25:11 -07:00
dependabot[bot]
ef6d98a396
Bump actions/upload-artifact from 3.1.0 to 3.1.2 ( #167 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...0b7f8abb15
2023-09-05 19:11:47 -07:00
dependabot[bot]
2a59fe83ca
Bump github/codeql-action from 2.2.4 to 2.21.5 ( #166 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.4 to 2.21.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](17573ee1cc...00e563ead9
2023-09-05 19:11:20 -07:00
dependabot[bot]
33231836f8
Bump ossf/scorecard-action from 2.1.2 to 2.2.0 ( #165 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.2 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e38b1902ae...08b4669551
2023-09-05 19:10:39 -07:00
Julio Lopez
444ade97b6
chore(ci): add OSSF Scorecard workflow ( #164 )
...
Workflow results at https://github.com/kastenhq/kubestr/security/code-scanning?query=pr%3A164+is%3Aopen
2023-09-01 15:55:26 -07:00
Sirish Bathina
502bac1c38
Update release.yaml ( #161 )
2023-07-25 08:13:14 -10:00
carlbraganza
e81a775a81
Updated Kanister version to get rid of deprecated snapshot API warnings. ( #158 )
...
Updated go version to 1.19
2023-07-13 12:37:38 -07:00
dependabot[bot]
633ae76bb1
Bump actions/setup-go from 3 to 4 ( #156 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-20 19:47:54 -07:00
dependabot[bot]
25f6bd64bd
Bump docker/build-push-action from 3 to 4 ( #150 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 3 to 4.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-14 12:04:42 -08:00
dependabot[bot]
0fe925a933
Bump goreleaser/goreleaser-action from 3 to 4 ( #147 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3 to 4.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-21 22:51:17 -08:00
dependabot[bot]
187c53d8ef
Bump actions/dependency-review-action from 2 to 3 ( #141 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2 to 3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](https://github.com/actions/dependency-review-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-15 17:48:29 -08:00
dependabot[bot]
8d3652bc7e
Bump actions/checkout from 2 to 3 ( #128 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-21 15:57:02 -07:00
Ivan Sim
725f8f001f
Update goreleaser CI job with 'write' permission ( #127 )
...
See https://github.com/goreleaser/goreleaser/issues/2642
Signed-off-by: Ivan Sim <ivan.sim@kasten.io>
2022-08-24 15:10:45 -07:00
Ivan Sim
89f3d7b02c
Upgrade golangci-lint to latest version ( #123 )
...
Signed-off-by: Ivan Sim <ivan.sim@kasten.io>
2022-08-10 11:46:52 -07:00
dependabot[bot]
c2da03fe69
Bump goreleaser/goreleaser-action from 2 to 3 ( #121 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-19 22:02:49 -07:00
dependabot[bot]
31616ce99f
Bump docker/metadata-action from 3 to 4 ( #117 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 3 to 4.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md )
- [Commits](https://github.com/docker/metadata-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-19 21:38:15 -07:00
dependabot[bot]
adb1ac8747
Bump actions/setup-go from 2 to 3 ( #116 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-19 21:37:41 -07:00
dependabot[bot]
bc1bbed8c4
Bump docker/login-action from 1 to 2 ( #115 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 1 to 2.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-19 21:37:29 -07:00
Julio Lopez
2a1505a42f
chore(deps): Enable dependabot updates ( #114 )
...
Enables dependabot updates
Add automatic dependency review to avoid vulnerability regressions
2022-07-19 21:31:51 -07:00
Pavan Navarathna
7446f8cc47
Update Kanister to remove vulnerable dependencies ( #110 )
...
* Update go to 1.17
* Update Kanister to remove vulnerable dependencies
* Resolve conflicts
* Update actions to use go 1.17
* Update Alpine image
* 1st attempt to fix docker build action
* 2nd attempt to fix Docker build
* Remove patch version
2022-07-13 09:14:49 -10:00
Ivan Sim
81fa242cd1
Update golangci-lint config to download deps ( #107 )
...
Signed-off-by: Ivan Sim <ivan.sim@kasten.io>
2022-06-28 10:42:12 -10:00
Julio Lopez
1d2ef025d6
Add package:write permissions for the GH token ( #96 )
...
* Add package:write permissions for the GH token
* Run 'push' job PR submission: Do not skip the entire job.
* Log into registry before build-push: Just relocates the step.
* Use build-push-action@v2
2021-10-21 21:09:41 -07:00
Sirish Bathina
95bf14e588
Update Docker_Publish action to use official images ( #94 )
...
* upadting to use new token
* remove comment
* Updating docker publish action to use official images
2021-10-21 16:49:10 -10:00
Sirish Bathina
a92d89f012
Use GITHUB_TOKEN to access packages and image registry ( #93 )
...
* upadting to use new token
* remove comment
2021-10-21 15:53:08 -10:00
Sirish Bathina
90ae50761f
Update release.yaml
2021-10-20 14:52:27 -10:00
