dependabot[bot]
|
bf28558a83
|
chore(deps): bump actions/checkout in the actions-updates group (#49)
Bumps the actions-updates group with 1 update: [actions/checkout](https://github.com/actions/checkout).
Updates `actions/checkout` from 5.0.0 to 6.0.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](08c6903cd8...8e8c483db8)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.1
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: actions-updates
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-12-18 11:39:56 -08:00 |
|
|
|
d4fcba18c0
|
Merge pull request #39 from edera-dev/dependabot/github_actions/actions-updates-c5043b94ad
chore(deps): bump step-security/harden-runner from 2.13.1 to 2.13.2 in the actions-updates group
|
2025-11-25 21:35:22 -08:00 |
|
|
|
57e90a4623
|
fix(workflows): disable artifact publish attestation for pull requests
|
2025-11-25 20:38:49 -08:00 |
|
dependabot[bot]
|
136b899844
|
chore(deps): bump step-security/harden-runner
Bumps the actions-updates group with 1 update: [step-security/harden-runner](https://github.com/step-security/harden-runner).
Updates `step-security/harden-runner` from 2.13.1 to 2.13.2
- [Release notes](https://github.com/step-security/harden-runner/releases)
- [Commits](f4a75cfd61...95d9a5deda)
---
updated-dependencies:
- dependency-name: step-security/harden-runner
dependency-version: 2.13.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-updates
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2025-11-24 11:01:47 +00:00 |
|
dependabot[bot]
|
da5e0daa51
|
chore(deps): bump the actions-updates group with 2 updates
Bumps the actions-updates group with 2 updates: [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) and [github/codeql-action](https://github.com/github/codeql-action).
Updates `astral-sh/setup-uv` from 7.1.1 to 7.1.2
- [Release notes](https://github.com/astral-sh/setup-uv/releases)
- [Commits](2ddd2b9cb3...85856786d1)
Updates `github/codeql-action` from 4.31.0 to 4.31.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](4e94bd11f7...0499de31b9)
---
updated-dependencies:
- dependency-name: astral-sh/setup-uv
dependency-version: 7.1.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-updates
- dependency-name: github/codeql-action
dependency-version: 4.31.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-updates
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2025-11-10 12:27:22 +00:00 |
|
|
|
0b7b5066e4
|
chore(workflows): align on push/pull_request events across workflows
|
2025-11-03 03:01:57 -05:00 |
|
|
|
1f322ff4bf
|
chore(workflows): publish should upload and attest all artifacts in a single zip
|
2025-11-03 00:32:54 -05:00 |
|
|
|
74b6a8deb3
|
chore(workflows): release workflow should attest all artifacts together
|
2025-11-03 00:06:53 -05:00 |
|
|
|
b616e75e96
|
chore(workflows): release workflow should attest the efi artifacts
|
2025-11-02 23:57:58 -05:00 |
|
|
|
069f858e95
|
chore(workflows): publish workload should provide build provenance
|
2025-11-02 23:52:15 -05:00 |
|
|
|
1a2b103675
|
chore(github): make all workflows (except release) concurrent by sha
|
2025-10-28 16:49:26 -04:00 |
|
|
|
5e1bc4659b
|
chore(github): rename all files from yaml => yml
|
2025-10-28 16:47:25 -04:00 |
|
|
|
68220d0de1
|
chore(workflows): repin all actions
|
2025-10-24 18:09:24 -07:00 |
|
|
|
e9b842a81f
|
chore(workflows): separate release workflow
|
2025-10-24 18:04:55 -07:00 |
|
|
|
efb357d62b
|
chore(workflows): add concurrency limiter
|
2025-10-24 18:01:50 -07:00 |
|
|
|
398be12ac4
|
fix release tag
|
2025-10-20 09:26:03 -07:00 |
|
|
|
7407150bff
|
attempt new release mechanism using draft releases and manual job
|
2025-10-20 09:24:27 -07:00 |
|
|
|
c23b11469d
|
attempt at codeql config for the right target
|
2025-10-20 09:08:29 -07:00 |
|
|
|
29529ddacd
|
remove broken codeql configs, will figure this out later
|
2025-10-20 01:51:20 -07:00 |
|
|
|
d2f47dcad6
|
attempt to configure rust extractor for the right target
|
2025-10-20 01:44:27 -07:00 |
|
|
|
f3b7007432
|
codeql advanced support
|
2025-10-20 01:29:03 -07:00 |
|
|
|
4f30d51bb2
|
make sure rust toolchain is from rust-toolchain.toml in github workflows
|
2025-10-20 01:18:28 -07:00 |
|
|
|
48e3644977
|
fix pull request actions
|
2025-10-20 01:14:08 -07:00 |
|
|
|
ac918ee0ef
|
disable release-plz due to patched dependencies
|
2025-10-19 20:59:16 -07:00 |
|
|
|
4359508fd7
|
release-plz support
|
2025-10-19 20:50:42 -07:00 |
|
|
|
eef4f134b5
|
make the publish workflow's job be artifacts and not assets
|
2025-10-19 20:43:37 -07:00 |
|
|
|
ac5c83fe46
|
implement new publish workflow that uploads both release assets and pull requests
|
2025-10-19 20:39:47 -07:00 |
|
|
|
5bf17796d4
|
fix more zizmor warnings
|
2025-10-19 01:30:32 -07:00 |
|
|
|
a750b0f6d1
|
repair github actions warnings and errors
|
2025-10-19 01:26:35 -07:00 |
|
|
|
7a488ad91b
|
give permissions to release-assets to upload artifacts
|
2025-10-19 01:19:13 -07:00 |
|
|
|
232efc2859
|
add release assets workflow
|
2025-10-19 01:08:03 -07:00 |
|
|
|
927ee1aa73
|
add basic github workflows
|
2025-10-14 23:20:49 -07:00 |
|
