mirrors/krata
1
0
Fork 0
mirror of https://github.com/edera-dev/krata.git synced 2025-08-02 12:50:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
583 Commits 10 Branches 21 Tags 9.3 MiB
53052b24a0
Commit Graph

39 Commits

Author SHA1 Message Date
stepsecurity-app[bot]
53052b24a0
[StepSecurity] Apply security best practices (#473) 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
 2025-06-06 18:36:16 +00:00
dependabot[bot]
ea3ac96926
build(deps): bump the actions-updates group across 1 directory with 3 updates (#467) 
Bumps the actions-updates group with 3 updates in the / directory: [step-security/harden-runner](https://github.com/step-security/harden-runner), [actions/create-github-app-token](https://github.com/actions/create-github-app-token) and [MarcoIeni/release-plz-action](https://github.com/marcoieni/release-plz-action).


Updates `step-security/harden-runner` from 2.10.2 to 2.11.0
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](0080882f6c...4d991eb9b9)

Updates `actions/create-github-app-token` from 1.11.0 to 1.11.6
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](5d869da34e...21cfef2b49)

Updates `MarcoIeni/release-plz-action` from 0.5.86 to 0.5.99
- [Release notes](https://github.com/marcoieni/release-plz-action/releases)
- [Commits](db75300cf2...476794ede1)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-updates
- dependency-name: actions/create-github-app-token
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
- dependency-name: MarcoIeni/release-plz-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-05 14:26:50 +00:00
dependabot[bot]
f9d4508149
build(deps): bump the actions-updates group across 1 directory with 3 updates (#427) 
Bumps the actions-updates group with 3 updates in the / directory: [step-security/harden-runner](https://github.com/step-security/harden-runner), [actions/checkout](https://github.com/actions/checkout) and [MarcoIeni/release-plz-action](https://github.com/marcoieni/release-plz-action).


Updates `step-security/harden-runner` from 2.10.1 to 2.10.2
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](91182cccc0...0080882f6c)

Updates `actions/checkout` from 4.2.1 to 4.2.2
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](eef61447b9...11bd71901b)

Updates `MarcoIeni/release-plz-action` from 0.5.76 to 0.5.86
- [Release notes](https://github.com/marcoieni/release-plz-action/releases)
- [Commits](ede2f28fa4...db75300cf2)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
- dependency-name: MarcoIeni/release-plz-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Zenla <alex@edera.dev>
 2024-12-14 18:10:32 -05:00
dependabot[bot]
b1e7a05440
build(deps): bump the actions-updates group across 1 directory with 2 updates (#404) 
Bumps the actions-updates group with 2 updates in the / directory: [actions/checkout](https://github.com/actions/checkout) and [MarcoIeni/release-plz-action](https://github.com/marcoieni/release-plz-action).


Updates `actions/checkout` from 4.2.0 to 4.2.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](d632683dd7...eef61447b9)

Updates `MarcoIeni/release-plz-action` from 0.5.72 to 0.5.76
- [Release notes](https://github.com/marcoieni/release-plz-action/releases)
- [Commits](dbf3db74cd...ede2f28fa4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
- dependency-name: MarcoIeni/release-plz-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-16 16:10:56 +00:00
dependabot[bot]
d12fee305c
build(deps): bump the actions-updates group across 1 directory with 2 updates (#397) 
Bumps the actions-updates group with 2 updates in the / directory: [actions/checkout](https://github.com/actions/checkout) and [MarcoIeni/release-plz-action](https://github.com/marcoieni/release-plz-action).


Updates `actions/checkout` from 4.1.7 to 4.2.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](692973e3d9...d632683dd7)

Updates `MarcoIeni/release-plz-action` from 0.5.65 to 0.5.71
- [Release notes](https://github.com/marcoieni/release-plz-action/releases)
- [Commits](e28810957e...91356927c5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-updates
- dependency-name: MarcoIeni/release-plz-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-02 15:53:34 +00:00
dependabot[bot]
7e34766bdc
build(deps): bump the actions-updates group with 2 updates (#384) 
Bumps the actions-updates group with 2 updates: [step-security/harden-runner](https://github.com/step-security/harden-runner) and [actions/create-github-app-token](https://github.com/actions/create-github-app-token).


Updates `step-security/harden-runner` from 2.9.1 to 2.10.1
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](5c7944e73c...91182cccc0)

Updates `actions/create-github-app-token` from 1.10.3 to 1.11.0
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](31c86eb3b3...5d869da34e)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-updates
- dependency-name: actions/create-github-app-token
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-16 06:27:16 +00:00
Alex Zenla
67652a5e1b
krata xen control-plane 2024-09-16 02:03:43 -04:00
Alex Zenla
151b43eeec
feature(zone): kernel command line control on launch (#351) 2024-08-21 20:51:09 +00:00
dependabot[bot]
680244fc5e
build(deps): bump step-security/harden-runner in the dep-updates group (#308) 
Bumps the dep-updates group with 1 update: [step-security/harden-runner](https://github.com/step-security/harden-runner).


Updates `step-security/harden-runner` from 2.9.0 to 2.9.1
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](0d381219dd...5c7944e73c)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dep-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-06 16:56:49 +00:00
dependabot[bot]
04665ce690
build(deps): bump step-security/harden-runner in the dep-updates group (#269) 
Bumps the dep-updates group with 1 update: [step-security/harden-runner](https://github.com/step-security/harden-runner).


Updates `step-security/harden-runner` from 2.8.1 to 2.9.0
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](17d0e2bd7d...0d381219dd)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dep-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-19 05:38:46 +00:00
Alex Zenla
481a5884d9
fix(workflows): use full platform name in all names (#267) 2024-07-19 04:46:21 +00:00
Alex Zenla
5ee1035896
feature(krata): rename guest to zone (#266) 2024-07-19 03:47:18 +00:00
Alex Zenla
6e051f52b9
chore(workflows): rework and simplify github actions workflows (#260) 2024-07-18 03:48:54 +00:00
Alex Zenla
b26469be28
chore(workflows): use rustup directly to not depend on external actions (#258) 2024-07-17 02:39:16 +00:00
Alex Zenla
9e91ffe065
chore(security): pin docker images and improve actions permissions (#253) 2024-07-16 22:25:29 +00:00
Alex Zenla
deeaa20a4a
fix(workflow): format check should print output but not error (#225) 2024-07-01 20:11:25 +00:00
Khionu Sybiern
dc4b14b5d1
chore: temporarily disable format checks (#207) 
As per https://github.com/edera-dev/krata/issues/206, we are disabling
format checks until we have migrated to the new formatting rules, which
are commited in a later change.
 2024-06-28 17:01:03 +00:00
dependabot[bot]
7bef74fadf
build(deps): bump actions/checkout from 4.1.6 to 4.1.7 (#190) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](a5ac7e51b4...692973e3d9)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-23 12:15:15 +00:00
dependabot[bot]
b730b08d6e
build(deps): bump step-security/harden-runner from 2.8.0 to 2.8.1 (#185) 
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](f086349bfa...17d0e2bd7d)

---
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-23 12:15:02 +00:00
dependabot[bot]
11235b6837
--- (#168) 
updated-dependencies:
- dependency-name: step-security/harden-runner
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-22 06:29:06 +00:00
dependabot[bot]
54486b119b
build(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#161) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](44c2b7a8a4...a5ac7e51b4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-17 17:48:51 +00:00
Alex Zenla
d46aa878af
feat(build): fetch kernels from image registry instead of building the kernel (#156) 
Now that we have the kernel build infrastructure at https://github.com/edera-dev/kernels
it makes sense to drop building the kernel and download the kernel images directly.

This change introduces a ./hack/kernel/fetch.sh script which is backed by crates/build
We utilize the OCI infrastructure itself to download the kernel image. The DEV guide
has been updated to include calling the fetch script, and the OS builder now uses this
method instead. Due to the lack of need for the kernel build infra to exist here now,
it has also been removed. This should significantly speed up full builds.

This change will also enable us to turn on os build workflows for all PRs. We should
likely make the OS status checks required once this is merged.
 2024-05-16 08:40:58 +00:00
dependabot[bot]
f6721d5e2c
build(deps): bump actions/checkout from 4.1.4 to 4.1.5 (#149) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.4 to 4.1.5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](0ad4b8fada...44c2b7a8a4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-13 19:23:24 +00:00
Jed Salazar
0193921053
Pin actions to digests and introduce Step Security Harden Runners (#137) 
Signed-off-by: Jed Salazar <jedsalazar@gmail.com>
 2024-05-11 00:00:56 +00:00
Alex Zenla
8f7e47a218
chore: release workflow fixes to improve utilization and fix checks (#23) 
* chore: use edera-cultivation bot to push release changes

* chore: workflows now largely only run on pull requests or merge queues
 2024-04-04 23:05:59 -07:00
Alex Zenla
7c55e63f24
chore: implement automatic releases 2024-04-02 23:50:45 +00:00
Alex Zenla
8be75a722e
workflows: use submodules checkout everywhere 2024-03-31 16:21:25 -07:00
Alex Zenla
58c6413ca2
workflows: checkout submodules 2024-03-31 16:07:57 -07:00
Alex Zenla
aaf8e50c0e
workflows: rework names and split checks 2024-03-21 20:21:42 -07:00
Alex Zenla
597a1433b3
krata: build kratactl for darwin 2024-03-21 18:16:04 -07:00
Alex Zenla
0191e5b2c1
krata: rework cross-compilation 2024-03-21 21:31:10 +00:00
Alex Zenla
56dd3ea032
workflows: add shellcheck job 2024-03-07 17:14:22 +00:00
Alex Zenla
e3a70e5595
hack: rename scripts to hack 2024-03-07 16:40:41 +00:00
Alex Zenla
670e140682
krata: rewrite all repo infrastructure 2024-03-07 09:04:05 +00:00
Alex Zenla
baefe0dceb
workflows: initrd and kernel checks 2024-03-07 05:43:49 +00:00
Alex Zenla
e300fd924f
workflows: fix dependencies 2024-03-06 12:13:01 +00:00
Alex Zenla
0e27b8f228
krata: compile for aarch64 (aarch64 guests are not yet supported) 2024-03-05 16:37:36 -08:00
Alex Zenla
5edbff02a7
actions: add cargo test 2024-02-06 09:28:51 +00:00
Alex Zenla
4b31d95e43
introduce workflow for checks 2024-01-09 11:18:53 -08:00