python-tuf

mirror of https://github.com/theupdateframework/python-tuf synced 2026-05-24 10:08:28 +00:00

Author	SHA1	Message	Date
dependabot[bot]	68fd8a1cc6	build(deps): bump actions/checkout from 3.0.0 to 3.0.2 Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.0 to 3.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...2541b1294d2704b0964813337f33b291d3f8596b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-04-22 10:19:38 +00:00
dependabot[bot]	4d54629293	build(deps): bump actions/setup-python from 3.1.1 to 3.1.2 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.1 to 3.1.2. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](`21c0493ecf...98f2ad02fd`) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-04-20 06:58:22 +00:00
dependabot[bot]	65d1b87a2f	build(deps): bump actions/checkout from 3.0.0 to 3.0.1 Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`a12a3943b4...dcd71f6466`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-04-15 10:16:40 +00:00
dependabot[bot]	156e535dcf	build(deps): bump actions/setup-python from 3.1.0 to 3.1.1 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.0 to 3.1.1. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](`9c644ca2ab...21c0493ecf`) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2022-04-07 10:19:18 +00:00
dependabot[bot]	b0a73e41c6	build(deps): bump actions/setup-python from 3.0.0 to 3.1.0 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](`0ebf233433...9c644ca2ab`) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2022-04-04 10:21:57 +00:00
dependabot[bot]	38b5e07f62	build(deps): bump actions/checkout from 2.4.0 to 3 Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`ec3a7ce113...a12a3943b4`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-02 10:21:30 +00:00
dependabot[bot]	311120a192	build(deps): bump actions/setup-python from 2.3.2 to 3 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.3.2 to 3. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](`7f80679172...0ebf233433`) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-03-01 10:21:10 +00:00
Jussi Kukkonen	d806b62e03	github: Update github-script to 6.0.0 The big change is runtime update from nodejs 12 to nodejs 16: does not seem to affect us. Dependabot got confused so this update is done manually to v6.0.0 release commit: https://github.com/actions/github-script/releases/tag/v6.0.0 Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>	2022-02-16 10:13:41 +02:00
Jussi Kukkonen	92e49ad2a1	github: Pin actions hashes This allows us to control when our workflows change. Dependabot should now open PRs when the actions update. This still leaves the actual OS image as a variable but Github does not support pinning that: we'd have to start using our own containers (and installing our own pythons, etc) to do that -- not worth the trouble. Fixes #1826 Signed-off-by: Jussi Kukkonen <jkukkonen@vmware.com>	2022-02-07 15:32:23 +02:00
Kairo de Araujo	2f93e9d0a2	Add workflows permissions read the contents and write (open) issues Signed-off-by: Kairo de Araujo <kdearaujo@vmware.com>	2022-01-11 10:11:56 +01:00
Kairo de Araujo	852bd02bbe	Improve the logs output Minor changes to the console logs add versioning and simplify when they are logged. Signed-off-by: Kairo de Araujo <kdearaujo@vmware.com>	2022-01-11 09:35:49 +01:00
Kairo de Araujo	93f7dc0a76	Fix query syntax Fix query syntax that was missing the repository parameter Signed-off-by: Kairo de Araujo <kdearaujo@vmware.com>	2022-01-11 08:51:40 +01:00
Kairo de Araujo	2f4565e100	Add to CI check for specification version. This commit adds to the CI an automatic check for the TUF specification version and compares it with the python-tuf metadata API version. If the version does not match and there is not a issue already open, a new issue is opened. Closes #1598 Signed-off-by: Kairo de Araujo <kdearaujo@vmware.com>	2022-01-11 08:51:40 +01:00

13 commits