Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-24 09:28:54 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 30
fleet/.github/workflows
History
Claude 111bb4692e
Bump MySQL test version from 8.0.39 to 8.0.42 (#42122) 
Updates MySQL version references from 8.0.39 to 8.0.42 in GitHub Actions
workflow test matrices to match current Aurora version as of #42120.

---------

Co-authored-by: anthropic-code-agent[bot] <242468646+Claude@users.noreply.github.com>
Co-authored-by: iansltx <472804+iansltx@users.noreply.github.com>
Co-authored-by: Ian Littman <iansltx@gmail.com>
2026-03-20 14:24:29 -05:00
..
config Bump supported MySQL versions (#40892) 2026-03-04 12:25:20 -06:00
auto-tag-unreleased-bugs.yml Add orbit/fleetd version detection and support both singular/plural version fields in bug tagging workflow (#41268) 2026-03-17 17:32:01 -05:00
build-binaries.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
build-fleetd-base-msi.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
build-fleetd-base-pkg.yml Update Apple's identity to sign pkgs (#41776) 2026-03-16 14:49:40 -05:00
build-fleetd_tables.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
build-fleetdm-fleetctl-check-vulnerabilities.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
build-orbit.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
check-automated-doc.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
check-bomutils-vulnerabilities.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
check-ms-protocol-feeds.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
check-script-diff.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
check-tuf-timestamps.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
check-updates-timestamps.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
check-vulnerabilities-in-released-docker-images.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
check-wix-vulnerabilities.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
close-stale-eng-initiated-issues.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
code-sign-windows.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
codeql-analysis.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
collect-eng-metrics-test.yml Update fleet-eng vulnerable dependency. (#41339) 2026-03-10 11:01:50 -05:00
collect-eng-metrics.yml Update fleet-eng vulnerable dependency. (#41339) 2026-03-10 11:01:50 -05:00
db-upgrade-test.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
dependency-review.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
deploy-fleet-website.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
deploy-vulnerability-dashboard.yml 🤖 Bump to the current version of the Heroku deploy GitHub action (#38468) 2026-01-20 17:45:55 -06:00
docs.yml Vendor goval-dictionary (#39430) 2026-02-11 11:11:05 -07:00
dogfood-automated-policy-updates.yml Add automated Safari policy update and remediation (#35890) 2026-01-08 11:00:31 -06:00
dogfood-deploy.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
dogfood-gitops.yml Add Okta management hints to GitOps workflow (#39759) 2026-03-19 11:01:59 -05:00
dogfood-signoz-deploy.yml Signoz action fixes (#38656) 2026-01-22 19:10:44 -06:00
dogfood-update-testing-qa-apps.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
fleet-and-orbit.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
fleetctl-preview-latest.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
fleetctl-preview.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
fleetd-tuf.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
generate-desktop-targets.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
generate-nudge-targets.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
generate-osqueryd-targets.yml Release osqueryd 5.22.1 (#40596) 2026-02-26 15:43:22 -03:00
generate-swift-dialog-targets.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
golangci-lint.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
goreleaser-fleet.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
goreleaser-orbit.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
goreleaser-snapshot-fleet.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
ingest-maintained-apps.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
integration.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
loadtest-infra.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
loadtest-osquery-perf.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
loadtest-shared.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
pr-helm.yaml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
publish-go-module.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
randokiller-go.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
README.md add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
release-fleetctl-docker-deps.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
release-fleetd-base.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
release-fleetd-chrome-beta.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
release-fleetd-chrome.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
release-helm.yaml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
render-deploy.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
scorecards-analysis.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
secrets-to-confidential.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
tag-aging-bugs.yml Add automated workflow for tagging aging bugs (#39284) 2026-02-03 18:00:58 -06:00
test-android.yml Improving Android CI (Slack notification, coverage) (#36518) 2025-12-01 16:48:32 -06:00
test-db-changes.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-fleetd-chrome.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
test-fma-darwin-pr-only.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-fma-darwin.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-fma-windows-pr-only.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-fma-windows.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-go-activity.yaml Bump MySQL test version from 8.0.39 to 8.0.42 (#42122) 2026-03-20 14:24:29 -05:00
test-go-suite.yaml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-go.yaml Bump MySQL test version from 8.0.39 to 8.0.42 (#42122) 2026-03-20 14:24:29 -05:00
test-js.yml Upgrade JS deps (#39639) 2026-02-12 09:49:20 -06:00
test-mock-changes.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-native-tooling-packaging.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-packaging-build-docker-deps.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-packaging.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
test-puppet.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
test-vulnerability-dashboard-changes.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
test-website.yml Fix template and while we're at it, typos (#39956) 2026-02-17 15:45:59 -06:00
test-yml-specs.yml Update actions/setup-go to v6.3.0 (#42152) 2026-03-20 09:56:51 -05:00
tfvalidate.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
trivy-scan.yml Bump trivy action version (#41579) 2026-03-12 16:17:45 -03:00
update-certs.yml Fix update certs CI check (#38566) 2026-01-21 13:08:22 -03:00
update-old-tuf-timestamp-signature.yaml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
update-osquery-versions.yml [StepSecurity] ci: Harden GitHub Actions (#25985) 2025-02-03 12:25:18 -06:00
validate-maintained-apps-inputs.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00
verify-fleetd-base.yml Add missing step-security hardening action, bump to current version (#38470) 2026-01-19 15:10:48 -06:00

README.md

Github Actions

Fleet uses Github Actions for continuous integration (CI). This document describes best practices and at patterns for writing and maintaining Fleet's Github Actions workflows.

Bash

By default, Github Actions sets the shell to bash -e for linux and MacOS runners. To help write safer bash scripts in run jobs and avoid common issues, override the default by adding the following to the workflow file

defaults:
  run:
    # fail-fast using bash -eo pipefail. See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference
    shell: bash

By specifying the default shell to bash, some extra flags are set. The option pipefail changes the behaviour when using the pipe | operator such that if any command in a pipeline fails, that commands return code will be used a the return code for the whole pipeline. Consider the following example in test-go.yaml

    - name: Run Go Tests
      run: |
        # omitted ...
          make test-go 2>&1 | tee /tmp/gotest.log

If the pipefail option was not set, this job would always succeed because tee would always return success. This is not the intended behavior. Instead, we want the job to fail if make test-go fails.

Concurrency

Github Action runners are limited. If a lot of workflows are queued, they will wait in pending until a runner becomes available. This has caused issue in the past where workflows take an excessively long time to start. To help with this issue, use the following in workflows

# This allows a subsequently queued workflow run to interrupt previous runs
concurrency:
  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id}}
  cancel-in-progress: true

When a workflow is triggered via a pull request, it will cancel previous running workflows for that pull request. This is especially useful when changes are pushed to a pull request frequently. Manually triggered workflows, workflows that run on a schedule, and workflows triggered by pushes to main are unaffected.