dependabot[bot]
17ecc388ec
Bump tfsec/tfsec-sarif-action from 0.1.3 to 0.1.4 ( #10219 )
...
Bumps
[tfsec/tfsec-sarif-action](https://github.com/tfsec/tfsec-sarif-action )
from 0.1.3 to 0.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/tfsec/tfsec-sarif-action/releases ">tfsec/tfsec-sarif-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.1.4</h2>
<h2>What's Changed</h2>
<ul>
<li>Replace deprecated <code>set-output</code> usage with environment
file <code>GITHUB_OUTPUT</code> by <a
href="https://github.com/sivapalan "><code>@sivapalan</code></a> in <a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/35 ">aquasecurity/tfsec-sarif-action#35</a></li>
<li>Fix conditional expression for setting <code>TFSEC_VERSION</code> by
<a href="https://github.com/sivapalan "><code>@sivapalan</code></a> in
<a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/36 ">aquasecurity/tfsec-sarif-action#36</a></li>
<li>Forcing wget to use IPv4 by <a
href="https://github.com/jasonjanderson "><code>@jasonjanderson</code></a>
in <a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/37 ">aquasecurity/tfsec-sarif-action#37</a></li>
<li>add git and hg to docker image by <a
href="https://github.com/bobcallaway "><code>@bobcallaway</code></a> in
<a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/33 ">aquasecurity/tfsec-sarif-action#33</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/jasonjanderson "><code>@jasonjanderson</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/37 ">aquasecurity/tfsec-sarif-action#37</a></li>
<li><a
href="https://github.com/bobcallaway "><code>@bobcallaway</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/aquasecurity/tfsec-sarif-action/pull/33 ">aquasecurity/tfsec-sarif-action#33</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/aquasecurity/tfsec-sarif-action/compare/v0.1.3...v0.1.4 ">https://github.com/aquasecurity/tfsec-sarif-action/compare/v0.1.3...v0.1.4 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="21ded20e8chttps://github-redirect.dependabot.com/tfsec/tfsec-sarif-action/issues/33 ">#33</a>)</li>
<li><a
href="8019886f8dhttps://github-redirect.dependabot.com/tfsec/tfsec-sarif-action/issues/37 ">#37</a>)</li>
<li><a
href="83567846f0https://github-redirect.dependabot.com/tfsec/tfsec-sarif-action/issues/36 ">#36</a>)</li>
<li><a
href="9d5437db455d34a982aa...21ded20e8chttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tfsec/tfsec-sarif-action&package-manager=github_actions&previous-version=0.1.3&new-version=0.1.4 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-01 11:37:49 -08:00
dependabot[bot]
74a86ff0ab
Bump dawidd6/action-download-artifact from 2.23.0 to 2.26.0 ( #10218 )
...
Bumps
[dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact )
from 2.23.0 to 2.26.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5e780fc7bbhttps://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/227 ">#227</a>)</li>
<li><a
href="b59d8c6a6chttps://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/225 ">#225</a>)</li>
<li><a
href="5004d5476ehttps://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/219 ">#219</a>
from dawidd6/dependabot-npm_and_yarn-actions-artifact...</li>
<li><a
href="b1a9c91d1fbd10f381a9https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/218 ">#218</a>
from dawidd6/dependabot-npm_and_yarn-adm-zip-0.5.10</li>
<li><a
href="61a654a8cedcadc4bd45https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/211 ">#211</a>
from koplo199/master</li>
<li><a
href="ceeb280c4f806bb52fe0e6e25ac3a2https://github-redirect.dependabot.com/dawidd6/action-download-artifact/issues/209 ">#209</a>
from dawidd6/v2</li>
<li>Additional commits viewable in <a
href="7847792dd4...5e780fc7bbhttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dawidd6/action-download-artifact&package-manager=github_actions&previous-version=2.23.0&new-version=2.26.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-03-01 11:32:47 -08:00
StepSecurity Bot
2154c13865
Pin actions to commit SHA ( #10204 )
...
## Summary
This pull request is created by [Secure
Repo](https://app.stepsecurity.io/securerepo ) at the request of @zwass.
Please merge the Pull Request to incorporate the requested changes.
Please tag @zwass on your message if you have any questions related to
the PR. You can also engage with the
[StepSecurity](https://github.com/step-security ) team by tagging
@step-security-bot.
## Security Fixes
### Pinned Dependencies
GitHub Action tags and Docker tags are mutable. This poses a security
risk. GitHub's Security Hardening guide recommends pinning actions to
full length commit.
- [GitHub Security
Guide](https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions )
- [The Open Source Security Foundation (OpenSSF) Security
Guide](https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies )
## Feedback
For bug reports, feature requests, and general feedback; please create
an issue in
[step-security/secure-repo](https://github.com/step-security/secure-repo ).
To create such PRs, please visit https://app.stepsecurity.io/securerepo .
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2023-02-28 17:55:38 -08:00
Zach Wasserman
64cd97fc83
Remove debug on failure from integration test action ( #10202 )
...
This would cause the job to take much longer to report a failure.
Instead, just add this line if debugging is necessary.
2023-02-28 17:23:52 -08:00
dependabot[bot]
0ef74017ea
Bump docker/login-action from 2.0.0 to 2.1.0 ( #10182 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from
2.0.0 to 2.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases ">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Ensure AWS temp credentials are redacted in workflow logs by <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/275 ">#275</a>)</li>
<li>Bump <code>@actions/core</code> from 1.6.0 to 1.10.0 (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/252 ">#252</a>
<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/292 ">#292</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr</code> from 3.53.0 to 3.186.0 (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/298 ">#298</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr-public</code> from 3.53.0 to 3.186.0
(<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/299 ">#299</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v2.0.0...v2.1.0 ">https://github.com/docker/login-action/compare/v2.0.0...v2.1.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f4ef78c080https://github-redirect.dependabot.com/docker/login-action/issues/299 ">#299</a>
from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a
href="9ad4ce3929884eadd4f8a266232f5chttps://github-redirect.dependabot.com/docker/login-action/issues/298 ">#298</a>
from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a
href="f97efcfbf95ae789beac71c23b5b34https://github-redirect.dependabot.com/docker/login-action/issues/292 ">#292</a>
from docker/dependabot/npm_and_yarn/actions/core-1.10.0</li>
<li><a
href="6401d70aab67e8909cc621f251affchttps://github-redirect.dependabot.com/docker/login-action/issues/275 ">#275</a>
from crazy-max/redact-aws-creds</li>
<li>Additional commits viewable in <a
href="49ed152c8e...f4ef78c080https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=2.0.0&new-version=2.1.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-02-28 17:19:37 -08:00
dependabot[bot]
56b26753a5
Bump ossf/scorecard-action from 1.1.2 to 2.1.2 ( #10180 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action )
from 1.1.2 to 2.1.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ossf/scorecard-action/releases ">ossf/scorecard-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.2</h2>
<h2>What's Changed</h2>
<h3>Fixes</h3>
<ul>
<li>🌱 Bump scorecard dependency to v4.10.2 to remove a CODEOWNERS printf
statement. by <a
href="https://github.com/spencerschrock "><code>@spencerschrock</code></a>
in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/1054 ">ossf/scorecard-action#1054</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.1.1...v2.1.2 ">https://github.com/ossf/scorecard-action/compare/v2.1.1...v2.1.2 </a></p>
<h2>v2.1.1</h2>
<h2>Scorecard version</h2>
<p>This release use <a
href="https://github.com/ossf/scorecard/releases/tag/v4.10.1 ">Scorecard's
v4.10.1</a></p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.1.0...v2.1.1 ">https://github.com/ossf/scorecard-action/compare/v2.1.0...v2.1.1 </a></p>
<h2>v2.1.0</h2>
<h2>What's Changed</h2>
<h3>Scorecard version</h3>
<p>This release uses <a
href="https://github.com/ossf/scorecard/releases/tag/v4.10.0 ">scorecard
v4.10.0</a>.</p>
<h3>Improvements</h3>
<ul>
<li>Docker build workflow by <a
href="https://github.com/naveensrinivasan "><code>@naveensrinivasan</code></a>
in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/981 ">ossf/scorecard-action#981</a></li>
<li>Use root user in distroless to support GitHub Actions by <a
href="https://github.com/spencerschrock "><code>@spencerschrock</code></a>
in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/994 ">ossf/scorecard-action#994</a></li>
<li>Disable pull_request_target by <a
href="https://github.com/laurentsimon "><code>@laurentsimon</code></a>
in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/1031 ">ossf/scorecard-action#1031</a></li>
</ul>
<h3>Documentation</h3>
<ul>
<li>Add PAT section explaining risks by <a
href="https://github.com/olivekl "><code>@olivekl</code></a> in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/1024 ">ossf/scorecard-action#1024</a></li>
<li>Make the badge text easier to copy by <a
href="https://github.com/rajbos "><code>@rajbos</code></a> in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/1026 ">ossf/scorecard-action#1026</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/joycebrum "><code>@joycebrum</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/984 ">ossf/scorecard-action#984</a></li>
<li><a href="https://github.com/rajbos "><code>@rajbos</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/1026 ">ossf/scorecard-action#1026</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.0.6...v2.1.0 ">https://github.com/ossf/scorecard-action/compare/v2.0.6...v2.1.0 </a></p>
<h2>v2.0.6</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix - Broken dockerfile by <a
href="https://github.com/naveensrinivasan "><code>@naveensrinivasan</code></a>
in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/979 ">ossf/scorecard-action#979</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.0.5...v2.0.6 ">https://github.com/ossf/scorecard-action/compare/v2.0.5...v2.0.6 </a></p>
<h2>v2.0.5</h2>
<h2>What's Changed</h2>
<ul>
<li>Remove trailing space from example by <a
href="https://github.com/jamacku "><code>@jamacku</code></a> in <a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/pull/955 ">ossf/scorecard-action#955</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e38b1902aehttps://github-redirect.dependabot.com/ossf/scorecard-action/issues/1055 ">#1055</a>)</li>
<li><a
href="7da02bf0d5https://github-redirect.dependabot.com/ossf/scorecard-action/issues/1054 ">#1054</a>)</li>
<li><a
href="013c0f8bd2🌱 Bump actions/dependency-review-action from 3.0.1 to
3.0.2</li>
<li><a
href="f93c094f4a🌱 Bump github/codeql-action from 2.1.36 to 2.1.37</li>
<li><a
href="ce8978e058🌱 Bump actions/upload-artifact from 3.1.0 to 3.1.1</li>
<li><a
href="5ce49db1aa🌱 Bump actions/setup-go from 3.4.0 to 3.5.0</li>
<li><a
href="15c10fcf1chttps://github-redirect.dependabot.com/ossf/scorecard-action/issues/1047 ">#1047</a>)</li>
<li><a
href="f96da1a128🌱 Update scorecard for the panic (<a
href="https://github-redirect.dependabot.com/ossf/scorecard-action/issues/1045 ">#1045</a>)</li>
<li><a
href="813a825152https://github-redirect.dependabot.com/ossf/scorecard-action/issues/1044 ">#1044</a>)</li>
<li><a
href="be62ea89c1https://github-redirect.dependabot.com/ossf/scorecard-action/issues/1042 ">#1042</a>)</li>
<li>Additional commits viewable in <a
href="ce330fde6b...e38b1902aehttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=1.1.2&new-version=2.1.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-28 17:17:15 -08:00
Luke Heath
ac3541659d
Remove e2e tests from github test workflow ( #10176 )
2023-02-28 14:07:03 -06:00
Zach Wasserman
dfba1d2511
Update codecov action ( #10124 )
2023-02-28 09:42:49 -08:00
Zach Wasserman
e971f4510b
Remove contents:write from build-orbit action ( #10156 )
...
This is no longer needed since we use the upload action rather than
draft GitHub release.
2023-02-27 19:51:43 -08:00
dependabot[bot]
c7672db1f9
Bump goreleaser/goreleaser-action from 3.0.0 to 4.2.0 ( #9558 )
...
Bumps
[goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action )
from 3.0.0 to 4.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/goreleaser-action/releases ">goreleaser/goreleaser-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: don't depend on the GitHub API to check release by <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/391 ">goreleaser/goreleaser-action#391</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/goreleaser-action/compare/v4.1.1...v4.2.0 ">https://github.com/goreleaser/goreleaser-action/compare/v4.1.1...v4.2.0 </a></p>
<h2>v4.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update Readme to reference
<code>goreleaser/goreleaser-action@v4</code> by <a
href="https://github.com/felladrin "><code>@felladrin</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/384 ">goreleaser/goreleaser-action#384</a></li>
<li>docs: fix README badge by <a
href="https://github.com/dirien "><code>@dirien</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/386 ">goreleaser/goreleaser-action#386</a></li>
<li>chore(deps): bump json5 from 2.2.0 to 2.2.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/388 ">goreleaser/goreleaser-action#388</a></li>
<li>fix: use <code>@action/github</code> by <a
href="https://github.com/caarlos0 "><code>@caarlos0</code></a> and <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/390 ">goreleaser/goreleaser-action#390</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/felladrin "><code>@felladrin</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/384 ">goreleaser/goreleaser-action#384</a></li>
<li><a href="https://github.com/dirien "><code>@dirien</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/386 ">goreleaser/goreleaser-action#386</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/goreleaser-action/compare/v4.1.0...v4.1.1 ">https://github.com/goreleaser/goreleaser-action/compare/v4.1.0...v4.1.1 </a></p>
<h2>v4.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>feat!: remove auto-snapshot on dirty tag by <a
href="https://github.com/caarlos0 "><code>@caarlos0</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/382 ">goreleaser/goreleaser-action#382</a></li>
<li>docs: add example when using workdir along with upload-artifact by
<a href="https://github.com/zdtsw "><code>@zdtsw</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/366 ">goreleaser/goreleaser-action#366</a></li>
<li>Fix Self-Hosted Windows Error: Expand-Archive by <a
href="https://github.com/flarco "><code>@flarco</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/379 ">goreleaser/goreleaser-action#379</a></li>
<li>chore(deps): bump minimatch from 3.0.4 to 3.1.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/383 ">goreleaser/goreleaser-action#383</a></li>
</ul>
<h2>Migrating from v3</h2>
<p>If you need the auto-snapshot feature, take a look at <a
href="https://github.com/caarlos0/goreleaser-action-v4-auto-snapshot-example ">this
example repository</a>: it's a minimal working example with all you
need.</p>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/zdtsw "><code>@zdtsw</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/366 ">goreleaser/goreleaser-action#366</a></li>
<li><a href="https://github.com/flarco "><code>@flarco</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/379 ">goreleaser/goreleaser-action#379</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/goreleaser-action/compare/v4...v4.1.0 ">https://github.com/goreleaser/goreleaser-action/compare/v4...v4.1.0 </a></p>
<h2>v4.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: do not override GORELEASER_CURRENT_TAG by <a
href="https://github.com/caarlos0 "><code>@caarlos0</code></a> in <a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/pull/370 ">goreleaser/goreleaser-action#370</a></li>
</ul>
<h2>Migrating from v3</h2>
<p>If you need the auto-snapshot feature, take a look at <a
href="https://github.com/caarlos0/goreleaser-action-v4-auto-snapshot-example ">this
example repository</a>: it's a minimal working example with all you
need.</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/goreleaser-action/compare/v3...v4.0.0 ">https://github.com/goreleaser/goreleaser-action/compare/v3...v4.0.0 </a></p>
<h2>v3.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore: remove workaround for <code>setOutput</code> by <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/374 ">#374</a>)</li>
<li>chore(deps): bump <code>@actions/core</code> from 1.9.1 to 1.10.0
(<a
href="https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/372 ">#372</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f82d6c1c34https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/391 ">#391</a>)</li>
<li><a
href="9754a253a8https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/390 ">#390</a>)</li>
<li><a
href="b1a238106bb1ffc5d990https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/388 ">#388</a>)</li>
<li><a
href="256e4b8b28a7c543ca7ahttps://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/386 ">#386</a>)</li>
<li><a
href="13f1e21a50https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/384 ">#384</a>)</li>
<li><a
href="8f67e590f278df308971https://github-redirect.dependabot.com/goreleaser/goreleaser-action/issues/383 ">#383</a>)</li>
<li><a
href="66134d94a768acf3b1ad...f82d6c1c34https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=goreleaser/goreleaser-action&package-manager=github_actions&previous-version=3.0.0&new-version=4.2.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-27 18:22:01 -08:00
dependabot[bot]
673a4465cc
Bump stefanprodan/helm-gh-pages from 1.5.0 to 1.7.0 ( #8804 )
...
Bumps
[stefanprodan/helm-gh-pages](https://github.com/stefanprodan/helm-gh-pages )
from 1.5.0 to 1.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/stefanprodan/helm-gh-pages/releases ">stefanprodan/helm-gh-pages's
releases</a>.</em></p>
<blockquote>
<h2>v1.7.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Allow private helm repo auth in dependencies by <a
href="https://github.com/zzorica "><code>@zzorica</code></a> in <a
href="https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/pull/35 ">stefanprodan/helm-gh-pages#35</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/zzorica "><code>@zzorica</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/pull/35 ">stefanprodan/helm-gh-pages#35</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/stefanprodan/helm-gh-pages/compare/v1.6.0...v1.7.0 ">https://github.com/stefanprodan/helm-gh-pages/compare/v1.6.0...v1.7.0 </a></p>
<h2>v1.6.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add support for alias:<!-- raw HTML omitted --> in dependencies
check by <a
href="https://github.com/paulcarlton-ww "><code>@paulcarlton-ww</code></a>
in <a
href="https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/pull/32 ">stefanprodan/helm-gh-pages#32</a></li>
<li>Update Helm to v3.10.0 by <a
href="https://github.com/stefanprodan "><code>@stefanprodan</code></a>
in <a
href="https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/pull/33 ">stefanprodan/helm-gh-pages#33</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/stefanprodan/helm-gh-pages/compare/v1.5.0...v1.6.0 ">https://github.com/stefanprodan/helm-gh-pages/compare/v1.5.0...v1.6.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0ad2bb3773https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/issues/35 ">#35</a>
from zzorica/allow-private-helm-repo-auth-in-dependencies</li>
<li><a
href="86e9903900a5c9252781https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/issues/33 ">#33</a>
from stefanprodan/helm-3.10.0</li>
<li><a
href="844812954cb97c7e37c5https://github-redirect.dependabot.com/stefanprodan/helm-gh-pages/issues/32 ">#32</a>
from paulcarlton-ww/debug</li>
<li><a
href="84568715a3aa53926042a77eeb9630ce5cd1646e13eb32b03bb43a8719cc...0ad2bb3773https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=stefanprodan/helm-gh-pages&package-manager=github_actions&previous-version=1.5.0&new-version=1.7.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-27 18:17:32 -08:00
dependabot[bot]
527cb0a622
Bump aws-actions/amazon-ecr-login from 1.5.0 to 1.5.3 ( #8507 )
...
Bumps
[aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login )
from 1.5.0 to 1.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws-actions/amazon-ecr-login/releases ">aws-actions/amazon-ecr-login's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.3</h2>
<p>See the <a
href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md ">changelog</a>
for details about the changes included in this release.</p>
<h2>v1.5.2</h2>
<p>See the <a
href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md ">changelog</a>
for details about the changes included in this release.</p>
<h2>v1.5.1</h2>
<p>See the <a
href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md ">changelog</a>
for details about the changes included in this release.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aws-actions/amazon-ecr-login/blob/main/CHANGELOG.md ">aws-actions/amazon-ecr-login's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to this project will be documented in this file.
See <a
href="https://github.com/conventional-changelog/standard-version ">standard-version</a>
for commit guidelines.</p>
<h3><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.5.2...v1.5.3 ">1.5.3</a>
(2022-10-29)</h3>
<h3><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.5.1...v1.5.2 ">1.5.2</a>
(2022-10-18)</h3>
<h3><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.5.0...v1.5.1 ">1.5.1</a>
(2022-08-04)</h3>
<h3>Bug Fixes</h3>
<ul>
<li>reverted change that masked Docker credentials (<a
href="7d073b66cchttps://github.com/aws-actions/amazon-ecr-login/compare/v1.4.0...v1.5.0 ">1.5.0</a>
(2022-06-27)</h2>
<h3>Features</h3>
<ul>
<li>added ECR Public Registry support (<a
href="b4f084e928https://github.com/aws-actions/amazon-ecr-login/compare/v1.3.3...v1.4.0 ">1.4.0</a>
(2022-05-20)</h2>
<h3>Features</h3>
<ul>
<li>output docker credentials after login (<a
href="57206dc28cd121236bfd45a78e2dabhttps://github.com/aws-actions/amazon-ecr-login/compare/v1.3.2...v1.3.3 ">1.3.3</a>
(2021-02-15)</h3>
<h3><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.3.1...v1.3.2 ">1.3.2</a>
(2021-02-01)</h3>
<h3><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.3.0...v1.3.1 ">1.3.1</a>
(2020-11-24)</h3>
<h2><a
href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.2.2...v1.3.0 ">1.3.0</a>
(2020-10-29)</h2>
<h3>Features</h3>
<ul>
<li>optional skipping of docker registries logout in post step (<a
href="https://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/78 ">#78</a>)
(<a
href="dd3fdeeb95https://github.com/aws-actions/amazon-ecr-login/compare/v1.2.1...v1.2.2 ">1.2.2</a>
(2020-10-05)</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="261a7de32b3e4df454b5https://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/330 ">#330</a>
from aws-actions/docs</li>
<li><a
href="c77259b767383620b24dhttps://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/352 ">#352</a>
from aws-actions/dependabot/npm_and_yarn/actions/core...</li>
<li><a
href="8ccaf47755eb9a709a70ba4f9ee500https://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/355 ">#355</a>
from aws-actions/dependabot/npm_and_yarn/eslint-8.25.0</li>
<li><a
href="a1ac76b296c21dbea0d3https://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/356 ">#356</a>
from aws-actions/dependabot/npm_and_yarn/aws-sdk-2.12...</li>
<li><a
href="e70c985d14https://github-redirect.dependabot.com/aws-actions/amazon-ecr-login/issues/354 ">#354</a>
from gotoeveryone/chore/update-runtime-to-node16</li>
<li>Additional commits viewable in <a
href="b874a33292...261a7de32bhttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aws-actions/amazon-ecr-login&package-manager=github_actions&previous-version=1.5.0&new-version=1.5.3 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-27 18:15:16 -08:00
Luke Heath
71f2a62b4c
Prepare for 4.28.0 ( #10103 )
2023-02-27 15:19:15 -08:00
Zach Wasserman
2a7b7100dd
Update Orbit to use CGO on Linux ( #9846 )
2023-02-21 18:49:13 -08:00
Lucas Manuel Rodriguez
2e199dcdab
Fix golangci-lint issue and run Github action on all OSs ( #9944 )
...
We have code that builds conditionally depending on the platform (mostly
Orbit code) so we should run `golangci-lint` checks on all OSs.
This adds it to run on macOS, for Windows see:
https://github.com/fleetdm/fleet/issues/9943
2023-02-21 14:30:45 -03:00
Luke Heath
bc2c6e59f5
Update node-sass frontend dependency ( #9954 )
...
Due to the update in https://github.com/fleetdm/fleet/pull/9950 we need
to update our version of `node-sass` to support Node 19.
2023-02-20 14:23:19 -06:00
Zach Wasserman
4669d8c474
Generate Nudge targets in CI ( #9845 )
...
Tooling to generate targets in CI for #9798 .
---------
Co-authored-by: Roberto Dip <me@roperzh.com>
2023-02-20 09:23:56 -08:00
Luke Heath
13e821d059
Prepare for 4.27.1 ( #9885 )
2023-02-17 19:19:02 -08:00
Zach Wasserman
991858d6d5
Pull go version from GitHub variables for Fleet release builds ( #9883 )
2023-02-16 11:52:09 -06:00
Lucas Manuel Rodriguez
d4a1b4d218
Add CIS checks for 2.9.X and add pmset table to fleetd ( #9470 )
...
#9253
- ~[ ] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files )
for more information.~
- ~[ ] Documented any API changes (docs/Using-Fleet/REST-API.md or
docs/Contributing/API-for-contributors.md)~
- ~[ ] Documented any permissions changes~
- ~[ ] Input data is properly validated, `SELECT *` is avoided, SQL
injection is prevented (using placeholders for values in statements)~
- ~[ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for
new osquery data ingestion features.~
- [X] Added/updated tests
- [X] Manual QA for all new/changed functionality
- For Orbit and Fleet Desktop changes:
- [X] Manual QA must be performed in the three main OSs, macOS, Windows
and Linux.
- ~[ ] Auto-update manual QA, from released version of component to new
version (see [tools/tuf/test](../tools/tuf/test/README.md)).~
---------
Co-authored-by: Sharon Katz <121527325+sharon-fdm@users.noreply.github.com>
2023-02-08 13:08:17 -03:00
Luke Heath
b3daf3d715
Prepare for 4.27.0 ( #9683 )
2023-02-03 17:03:06 -08:00
Zach Wasserman
7299879365
Generate targets for osqueryd 5.7.0 ( #9115 )
...
5.7.0 is now released.
2023-01-30 17:29:19 -08:00
Eric
4fd1efe98a
Website: Add API to send signed CSR emails ( #8408 )
...
This pull request relies on the `mdm-gen-cert` command from
https://github.com/fleetdm/fleet/pull/8884 .
Closes: https://github.com/fleetdm/fleet/issues/8223
Changes:
- Updated the deploy Fleet website workflow to:
- Add Go as a dependency
- Build the mdm-gen-cert binary in `/website/.tools/`
- add the `/.tools/` folder to the Heroku app
- Added `deliver-apple-csr.js` - an API that:
- can be called by making a `POST` request to
`/api/v1/deliver-apple-csr`
- accepts `csr` as an input
- runs the `mdm-gen-cert` command with the `csr` set as an environment
variable
- returns an `invalidEmailDomain` response if the user's email domain is
in the array of banned email domains.
- saves the users organization and email address to the website's
database
- Sends an email to the requesting user's email address with the signed
CSR attached as a text file named `apple-apns-request.txt`
- Posts a message to a channel in the Fleet Slack.
- Added a new model: `CertificateSigningRequests` that contains two
required attributes: `emailAddress` and `organization`
- Added a new email template `email-signed-csr-for-apns`
- Updated routes, policies, eslintrc, and rebuilt cloud-sdk
Before this can be merged, we will need to:
- [x] Add new config variables in Heroku
- [x] `sails.config.custom.mdmVendorCertPem`
- [x] `sails.config.custom.mdmVendorKeyPem`
- [x] `sails.config.custom.mdmVendorKeyPassphrase`
- [x] `sails.config.custom.slackWebhookUrlForMDMSignups`
- [x] Add the `CertificateSigningRequests` model to the website's
database
2023-01-19 14:43:14 -06:00
Luke Heath
b6a6ac454f
Prepare for 4.26.0 ( #9326 )
2023-01-13 16:26:22 -08:00
Eric
47d43d5307
Website: fix failing GitHub workflows ( #9285 )
...
Changes:
- Updated the `build-static-content` script to use a GitHub API token
for requests if one is provided e.g., `sails run build-static-content
--githubAccessToken="foo"`
- Updated the `build-for-prod` npm script to run the
`build-static-content` script with a variable named `BUILD_SCRIPT_ARGS`.
- Updated the "Deploy Fleet website" and "Test Fleet website" workflows
to run the `build-for-prod` script with a GitHub API token
. .
Co-authored-by: Mike McNeil <mikermcneil@users.noreply.github.com>
2023-01-11 13:31:20 -06:00
Lucas Manuel Rodriguez
ac22aadc13
Fleet server and tooling to use NETWORK_TEST_GITHUB_TOKEN when environment variable is set. ( #9143 )
...
* WIP
* Add more logging
* Check rate limit at end of action
* Add github client in more places
* Add new published firefox 93 vulnerabilities to tests
* Remove fmt printfs
* Restore CI check settings
* Readd newline
2023-01-03 14:56:11 -03:00
Zach Wasserman
33c0cb990d
Test larger runner for E2E test action ( #9066 )
2022-12-23 09:37:03 -08:00
Luke Heath
54e8b3e250
Prepare for 4.25.0 ( #9113 )
2022-12-22 15:13:24 -08:00
Zach Wasserman
e941adfaaa
Use ubuntu-20.04 runner for Fleet build ( #9114 )
...
A customer had a seccomp profile that seemed to be incompatible with the
changes in glibc in ubuntu-22.04. Setting the builder back to 20.04
explicitly to resolve this issue.
2022-12-22 14:48:41 -08:00
Eric
98c2ef98f7
Update test-website.yml ( #9042 )
2022-12-21 10:29:56 -06:00
Marcos Oviedo
605ae861c9
Windows installer now ensures that legacy osquery installations gets removed during clean install ( #9048 )
...
This relates to #8891 .
This PR introduces Wix custom actions usage.
2022-12-19 16:06:44 -08:00
Tomas Touceda
45e0a14700
Add quay push ( #8967 )
...
* Add quay push to the snapshot pusher to start
* Tags need to be just the tag part in this one
* Put the tag in a variable
* Fix typos
* Switch up how we define registry to see if it finds the image like this
* Add quay push everywhere else
2022-12-12 14:15:06 -03:00
Tomas Touceda
71dbb71df4
Update go to 1.19.4 ( #8945 )
...
* Update go to 1.19.4
* Comment out failing package test
* Comment out ALL the packaging tests for windows for the moment
* Update go to 1.19.4
* Comment out failing package test
* Comment out ALL the packaging tests for windows for the moment
* Update changelog
* Bump versions
* Update changelog to reflect this being a security release
2022-12-09 11:47:17 -03:00
Robert Fairburn
41feacad4d
Fix confusion with tags on dogfood deploy workflow ( #8964 )
...
* Fix confusion with tags on dogfood deploy workflow
* Update .github/workflows/dogfood-deploy.yml
Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com>
Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com>
2022-12-08 12:11:33 -06:00
Michal Nicpon
10b3179b63
Add fleetctl generate mdm-apple ( #8812 )
2022-12-07 18:24:42 +01:00
Roberto Dip
743ac46a09
disable fleetctl preview tests on macos ( #8911 )
2022-12-02 11:29:38 -03:00
Marcos Oviedo
ff9206655a
Fixing UninstallString to properly include msiexec /x call ( #8857 )
...
* Fixing UninstallString to properly include msiexec /x call
2022-11-28 20:18:28 -03:00
Zach Wasserman
efbe4c0777
Update Go to 1.19.3 ( #8525 ) ( #8614 )
...
Co-authored-by: Tomas Touceda <chiiph@gmail.com>
2022-11-08 13:03:23 -03:00
Zach Wasserman
875df496b1
Generate targets for osqueryd 5.6.0 ( #8355 )
2022-11-07 15:15:52 -08:00
Zach Wasserman
1920e64b93
Update Desktop version to 1.3.1 ( #8397 )
2022-11-07 15:15:21 -08:00
Luke Heath
8fb57d365b
Remove cypress dashboard ( #8518 )
2022-11-01 10:32:30 -05:00
Roberto Dip
e5f38f0015
fix integration.yml CI workflow by setting a Go version ( #8516 )
...
We don't have a `matrix.go-version` defined, so the task was using
`go1.17.13` as the default.
This explicitly sets the version to `go1.19.1`, I didn't use a `matrix`
definition because at least for now, we only want to run this test using a
single Go version.
Since I was there, I also updated test-native-tooling-packaging.yml to
use `go1.19.1` too.
2022-11-01 09:34:52 -03:00
Eric
a5ba469e41
update build-storybook step ( #8503 )
2022-10-31 14:02:29 -05:00
Guillaume Ross
75a9419412
8241 trivy ignore file action ( #8345 )
...
* Create .trivyignore
Adding original trivy ignore file. Working to resolve/document more of the findings, especially around go.mod. Will add a github action as well.
* Adding default trivy scan for testing
* Update trivy_scan.yml
Making it manual + daily for now
* Update trivy_scan.yml
updating name
* Renamed + configured Trivy scan
2022-10-31 10:50:29 -04:00
Eric
149a908b82
move build-storybook step ( #8492 )
2022-10-31 09:19:20 -05:00
Roberto Dip
96014148a8
run apt update before installing packages in golangci-lint ( #8487 )
2022-10-31 09:43:26 -03:00
Eric
c6698e242f
Website: Add storybook to Fleet website ( #8203 )
...
* Add build storybook to deploy website workflow
* add assets/storybook folder to .gitignore & .eslintIgnore
* Revert changes to website/.gitignore
* revert whitespace change
* Update deploy-fleet-website.yml
2022-10-28 19:48:14 -05:00
Marcos Oviedo
131cc7eeec
Orbit MSI installer now includes the necessary manifest file to use windows_event_log as a logger_plugin. ( #8343 )
...
* Orbit MSI installer now includes the necessary manifest file to use windows_event_log as a logger_plugin
2022-10-27 10:19:30 -03:00
Marcos Oviedo
8b77939494
Fixed an Orbit MSI installer bug that caused Orbit files not to be removed during uninstallation ( #8333 )
2022-10-25 09:00:37 -03:00
Michal Nicpon
56f3cb62ef
add concurrency to ci ( #8271 )
...
* add concurrency to ci
* add readme for workflows
2022-10-24 14:01:00 -06:00
