Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-04 13:59:01 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 70
21643 commits 3178 branches 569 tags 2.4 GiB
Commit graph

4 commits

Author SHA1 Message Date
Ian Littman
18256bdf0e
Add missing step-security hardening action, bump to current version (#38470) 
<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

* **Chores**
* Upgraded security protections across build and deployment workflows
for enhanced runner environment hardening.
* Strengthened CI/CD infrastructure security measures throughout
automated processes.
  * No direct user-facing changes.

<sub>✏️ Tip: You can customize this high-level summary in your review
settings.</sub>

<!-- end of auto-generated comment: release notes by coderabbit.ai -->
 2026-01-19 15:10:48 -06:00
Lucas Manuel Rodriguez
ef2f2e8daa
Move security notifications to orchestration channel (#37549) 2025-12-19 14:50:52 -06:00
Ian Littman
62755cbd82
Bump Go to 1.25.5, Alpine to 3.23.0 where relevant, bump Trivy to current version (#36848) 
Fixes vulns reported in
https://github.com/fleetdm/fleet/actions/runs/19999992703. We'll
definitely want to at least cherry-pick this.
 2025-12-07 20:04:14 -06:00
Ian Littman
2330b45bc9
Check the latest published version of bomutils/wix for vulnerabilities, not main, with the option to point back to CI build (#36200) 
We *don't* want to build these off of main because we only update
published versions when security issues come up, so testing against
`main` would cause false negatives.

Related to #35347.
 2025-11-24 10:29:35 -06:00
Renamed from .github/workflows/build-fleetdm-bomutils-check-vulnerabilities.yml (Browse further)