Juan Fernandez
656869acf2
SLSA attestation updates ( #31833 )
...
For #26382
- Attested the signed Windows Orbit binary instead of the unsigned one.
- For both Fleet desktop and Osquery for macOS and Windows artifacts,
attested the binaries inside archives.
2025-08-14 14:52:16 -04:00
Lucas Manuel Rodriguez
1382365f8c
Release osqueryd 5.19.0 ( #31912 )
2025-08-14 14:47:22 -03:00
Lucas Manuel Rodriguez
b81c6b7940
Release osqueryd 5.18.1 ( #30348 )
2025-06-26 18:35:50 -03:00
Lucas Manuel Rodriguez
68ee136e3b
Release osqueryd 5.17.0 ( #28294 )
2025-04-16 15:25:26 -03:00
Dante Catalfamo
94f6127edc
Orbit for Windows ARM64 ( #27882 )
...
#27275 and #27274
- [x] Changes file added for user-visible changes in `changes/`,
`orbit/changes/` or `ee/fleetd-chrome/changes`.
See [Changes
files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files )
for more information.
- [x] Added/updated automated tests
- [x] Manual QA for all new/changed functionality
- For Orbit and Fleet Desktop changes:
- [x] Make sure fleetd is compatible with the latest released version of
Fleet (see [Must
rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/fleetd-development-and-release-strategy.md )).
- [x] Orbit runs on macOS, Linux and Windows. Check if the orbit
feature/bugfix should only apply to one platform (`runtime.GOOS`).
- [x] Auto-update manual QA, from released version of component to new
version (see [tools/tuf/test](../tools/tuf/test/README.md)).
---------
Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2025-04-11 10:18:28 -04:00
Scott Gress
c45e0df72b
Update permissions in workflows to be more restrictive ( #27959 )
2025-04-07 16:16:16 -05:00
Lucas Manuel Rodriguez
e5fd094c68
Release osqueryd 5.16.0 ( #26394 )
...
For #26324 .
2025-02-18 16:59:09 -03:00
Victor Lyuboslavsky
b1891b8838
Update deprecated actions/upload-artifact to v4.5.0 ( #25295 )
2025-01-09 12:08:02 -06:00
Lucas Manuel Rodriguez
b73876878a
Release osqueryd 5.15.0 ( #25087 )
2025-01-02 11:41:03 -03:00
Scott Gress
0e5541979a
Update attestation implementation ( #24837 )
...
for #23825
This PR fixes the previous implementation for attesting
fleet/fleetctl/orbit binaries, and adds attestation to the fleet desktop
and osqueryd artifacts.
* correct permissions are added to all jobs
* tag removed from `subject-name` when attesting docker image
* using `artifacts.json` rather than the `artifacts` step output from
goreleaser to determine image digest
I'd like to add a separate job verifying the attestations, working on
that now but since all attestation steps are marked as
`continue-on-error` it can be a follow-on if we don't get it in with
this PR.
2024-12-17 15:26:59 -06:00
Lucas Manuel Rodriguez
2c891447d4
Release osqueryd 5.14.1 ( #23045 )
2024-10-22 12:27:00 -05:00
Lucas Manuel Rodriguez
cdfa31ada5
Release osqueryd 5.13.1 ( #21329 )
2024-08-19 13:52:30 -03:00
Lucas Manuel Rodriguez
2f479b3ba9
Release osqueryd 5.13.0 ( #20949 )
2024-08-02 14:57:50 -03:00
Dante Catalfamo
ecf2346ace
Add support for Linux ARM64 ( #19931 )
...
#1845
Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
Co-authored-by: Roberto Dip <rroperzh@gmail.com>
2024-07-17 16:07:59 -04:00
Lucas Manuel Rodriguez
b9d38c4b66
Bump osqueryd version to 5.12.2 ( #18893 )
2024-05-09 19:00:27 -03:00
Lucas Manuel Rodriguez
3d260fa9ab
Bump osqueryd version to 5.12.1 ( #18028 )
...
Bumping version of osqueryd for releasing 5.12.1 to the `edge` channel.
2024-04-03 10:57:28 -03:00
Luke Heath
6ebc308eb4
[StepSecurity] ci: Harden GitHub Actions ( #17780 )
2024-03-22 15:32:23 -05:00
Zach Wasserman
549c66cb32
Generate osqueryd targets for 5.12.0 ( #17403 )
2024-03-06 10:46:27 -08:00
Zach Wasserman
3244610ed2
Build osquery targets for 5.11.0 ( #15892 )
2024-01-03 15:03:59 -08:00
Zach Wasserman
4dff885b16
Generate targets for osquery 5.10.2 ( #14828 )
2023-11-07 14:32:41 -03:00
Zach Wasserman
dbd84cc366
Generate targets for osquery 5.10.1 ( #14413 )
2023-10-31 10:20:20 -07:00
Luke Heath
204f082fe5
Pin all workflow actions versions by commit ( #13462 )
2023-08-31 12:09:21 -05:00
Zach Wasserman
1080406266
Generate targets for osquery 5.9.1 ( #12410 )
2023-06-21 23:14:52 -07:00
dependabot[bot]
672c0d9239
Bump actions/upload-artifact from 3.1.0 to 3.1.2 ( #10183 )
...
Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact )
from 3.1.0 to 3.1.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.2</h2>
<ul>
<li>Update all <code>@actions/*</code> NPM packages to their latest
versions- <a
href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/374 ">#374</a></li>
<li>Update all dev dependencies to their most recent versions - <a
href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/375 ">#375</a></li>
</ul>
<h2>v3.1.1</h2>
<ul>
<li>Update actions/core package to latest version to remove
<code>set-output</code> deprecation warning <a
href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/351 ">#351</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0b7f8abb15https://github-redirect.dependabot.com/actions/upload-artifact/issues/312 ">#312</a>)</li>
<li><a
href="013d2b89bahttps://github-redirect.dependabot.com/actions/upload-artifact/issues/375 ">#375</a>)</li>
<li><a
href="055b8b3f04https://github-redirect.dependabot.com/actions/upload-artifact/issues/374 ">#374</a>)</li>
<li><a
href="7a5d4831f7https://github-redirect.dependabot.com/actions/upload-artifact/issues/315 ">#315</a>)</li>
<li><a
href="e0057a5b76https://github-redirect.dependabot.com/actions/upload-artifact/issues/352 ">#352</a>)</li>
<li><a
href="7fe6c13ac8https://github-redirect.dependabot.com/actions/upload-artifact/issues/363 ">#363</a>)</li>
<li><a
href="83fd05a356https://github-redirect.dependabot.com/actions/upload-artifact/issues/356 ">#356</a>)</li>
<li>See full diff in <a
href="3cea537223...0b7f8abb15https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 11:27:56 -07:00
Zach Wasserman
477bb53f90
Generate targets for osquery 5.8.2 ( #10802 )
2023-03-28 10:50:07 -07:00
Zach Wasserman
2ed2940683
Generate targets for osqueryd 5.8.1 ( #10245 )
2023-03-01 17:51:15 -08:00
Zach Wasserman
4669d8c474
Generate Nudge targets in CI ( #9845 )
...
Tooling to generate targets in CI for #9798 .
---------
Co-authored-by: Roberto Dip <me@roperzh.com>
2023-02-20 09:23:56 -08:00
Zach Wasserman
7299879365
Generate targets for osqueryd 5.7.0 ( #9115 )
...
5.7.0 is now released.
2023-01-30 17:29:19 -08:00
Zach Wasserman
875df496b1
Generate targets for osqueryd 5.6.0 ( #8355 )
2022-11-07 15:15:52 -08:00
Michal Nicpon
56f3cb62ef
add concurrency to ci ( #8271 )
...
* add concurrency to ci
* add readme for workflows
2022-10-24 14:01:00 -06:00
Michal Nicpon
9056b22874
set default shell in workflows ( #8108 )
...
* wait for mysql in workflows
2022-10-07 09:43:56 -06:00
dependabot[bot]
200ddfaaff
Bump actions/checkout from 2 to 3.0.2 ( #7301 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...2541b1294d2704b0964813337f33b291d3f8596b )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-31 07:44:22 -03:00
Zach Wasserman
abe76968f7
Generate targets for osquery 5.5.1 ( #7290 )
2022-08-19 08:15:24 -07:00
Zach Wasserman
c3ab51bea5
Generate targets for osquery 5.5.0 ( #7265 )
2022-08-18 15:00:58 +00:00
Zach Wasserman
c9d173e974
Make targets for osquery 5.4.0 ( #6536 )
2022-07-18 14:25:55 -03:00
dependabot[bot]
3b86836c3f
Bump actions/upload-artifact from 3.0.0 to 3.1.0 ( #5835 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6673cd052c...3cea537223
2022-06-22 16:07:08 -03:00
Zach Wasserman
7cede96089
Generate osqueryd target from DEB package ( #6258 )
...
The DEB packages have a stripped (smaller) binary rather than the
unstripped binary in the tarball.
2022-06-20 11:13:01 -07:00
Zach Wasserman
ca1c8ffd58
Generate targets for osquery 5.3.0 ( #6188 )
2022-06-13 08:04:21 -07:00
Lucas Manuel Rodriguez
74dfdcb882
Kickoff documentation for Orbit Release Process ( #5544 )
...
* Kickoff documentation for Orbit releasing
* Fixes to the github action
* Missing follow redirect on curl
* Run osqueryd --version to verify before uploading artifacts
* Use cmd as shell for windows-latest runner
* Final set of changes to the guide
2022-05-13 07:15:29 -03:00
