James Strong
c075793ae5
drop k8s 1.23 support ( #9772 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2023-03-21 13:34:12 -07:00
dependabot[bot]
43168a7fe1
Bump actions/checkout from 3.2.0 to 3.4.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...24cb908017
2023-03-21 13:42:46 +00:00
James Strong
0727a3c123
Merge pull request #9769 from kubernetes/dependabot/github_actions/securego/gosec-2.15.0
...
Bump securego/gosec from 2.14.0 to 2.15.0
2023-03-21 09:41:57 -04:00
dependabot[bot]
9e097fb79d
Bump aquasecurity/trivy-action from 0.8.0 to 0.9.2 ( #9767 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.8.0 to 0.9.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](9ab158e859...1f0aa582c8
2023-03-21 06:39:07 -07:00
dependabot[bot]
5c0b707643
Bump actions/dependency-review-action from 3.0.3 to 3.0.4 ( #9766 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](c090f4e553...f46c48ed6d
2023-03-21 06:33:08 -07:00
dependabot[bot]
1936973ea9
Bump actions/add-to-project from 0.4.0 to 0.4.1 ( #9765 )
...
Bumps [actions/add-to-project](https://github.com/actions/add-to-project ) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/actions/add-to-project/releases )
- [Commits](960fbad431...4756e6330f
2023-03-20 09:33:19 -07:00
dependabot[bot]
9a1cfc7181
Bump securego/gosec from 2.14.0 to 2.15.0
...
Bumps [securego/gosec](https://github.com/securego/gosec ) from 2.14.0 to 2.15.0.
- [Release notes](https://github.com/securego/gosec/releases )
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml )
- [Commits](1af1d5bb49...a459eb0ba3
2023-03-20 11:01:37 +00:00
dependabot[bot]
dba7ae04f5
Bump actions/dependency-review-action from 3.0.2 to 3.0.3 ( #9727 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0ff3da6f81...c090f4e553
2023-03-14 07:32:16 -07:00
dependabot[bot]
778577253e
Bump actions/download-artifact from 3.0.1 to 3.0.2 ( #9721 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](9782bd6a98...9bc31d5ccc
2023-03-14 07:26:18 -07:00
dependabot[bot]
7a95a43df6
Bump goreleaser/goreleaser-action from 4.1.0 to 4.2.0 ( #9718 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](8f67e590f2...f82d6c1c34
2023-03-14 07:24:23 -07:00
dependabot[bot]
2d15a9946b
Bump actions/upload-artifact from 3.1.1 to 3.1.2 ( #9717 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](83fd05a356...0b7f8abb15
2023-03-14 07:22:17 -07:00
dependabot[bot]
b87645fe53
Bump docker/setup-buildx-action from 2.2.1 to 2.5.0 ( #9719 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.2.1 to 2.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](8c0edbc76e...4b4e9c3e2d
2023-03-12 05:20:40 -07:00
dependabot[bot]
f93d11b4cf
Bump helm/chart-releaser-action from 1.4.1 to 1.5.0 ( #9720 )
...
Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases )
- [Commits](98bccfd32b...be16258da8
2023-03-12 05:18:40 -07:00
James Strong
66a760794f
update to golang 1.20 ( #9690 )
...
update alpine and golang
remove nano
update go modules
remove need for openssl external cli
fix stale
Signed-off-by: James Strong <james.strong@chainguard.dev>
2023-03-11 20:38:39 -08:00
Jongwoo Han
60d9716b1f
Replace deprecated command with environment file ( #9581 )
...
Signed-off-by: jongwooo <jongwooo.han@gmail.com>
2023-02-05 23:37:00 -08:00
James Strong
254b814985
add lint on chart before release ( #9570 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2023-02-01 13:51:36 -08:00
Carlos Tadeu Panato Junior
f82e29a730
add github actions stale bot ( #9439 )
...
Signed-off-by: cpanato <ctadeu@gmail.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
2023-01-08 14:25:27 -08:00
Ricardo Katz
3916f7b8b7
move tests to gh actions ( #9461 )
2022-12-29 14:09:29 -08:00
James Strong
336f25230b
start release 1.5.2 ( #9445 )
...
* start release 1.5.2
Signed-off-by: James Strong <james.strong@chainguard.dev>
* upgrade kind clusters and add 1.26
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-24 11:23:26 -08:00
Saumya
7206f488ab
avoid builds and tests for non-code changes ( #9392 )
...
* avoid builds and tests for non-code changes
* dummy test for workflow
2022-12-22 10:19:26 -08:00
Carlos Tadeu Panato Junior
bb60e02e96
CI updates ( #9440 )
...
* add labels to dependabot prs
Signed-off-by: cpanato <ctadeu@gmail.com>
* sync hashes and versions dependabot can update the version comment now
Signed-off-by: cpanato <ctadeu@gmail.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
2022-12-22 07:37:26 -08:00
dependabot[bot]
7ef5e1ab8b
Bump github/codeql-action from 2.1.36 to 2.1.37 ( #9423 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a669cc5936...959cbb7472
2022-12-20 11:15:19 -08:00
dependabot[bot]
87146d6d93
Bump actions/checkout from 3.1.0 to 3.2.0 ( #9425 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-20 09:33:43 -08:00
dependabot[bot]
bd283b6609
Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 ( #9426 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.2.0 to 4.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](b508e2e3ef...8f67e590f2
2022-12-20 07:39:44 -08:00
dependabot[bot]
07db4997b3
Bump actions/dependency-review-action from 3.0.1 to 3.0.2 ( #9424 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](11310527b4...0ff3da6f81
2022-12-20 07:37:45 -08:00
dependabot[bot]
6070c8be01
Bump ossf/scorecard-action from 2.0.6 to 2.1.0 ( #9422 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...937ffa90d7
2022-12-20 07:35:45 -08:00
James Strong
e3e0d9c1f4
start upgrade to golang 1.19.4 and alpine 3.17.0 ( #9417 )
...
* start upgrade to 1.19.4
Signed-off-by: James Strong <james.strong@chainguard.dev>
* add matrix to image test-image
Signed-off-by: James Strong <james.strong@chainguard.dev>
* update to alpine 3.17
Signed-off-by: James Strong <james.strong@chainguard.dev>
* remove need for curl
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-18 17:07:43 -08:00
dependabot[bot]
b93b277e5a
Bump github/codeql-action from 2.1.35 to 2.1.36 ( #9400 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.35 to 2.1.36.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b2a92eb56d...a669cc5936
2022-12-12 19:07:33 -08:00
Jintao Zhang
4f528fc70a
ci: remove setup-helm step ( #9404 )
...
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-12-12 08:45:34 -08:00
Jintao Zhang
8736b3b9a7
ci: remove setup-kind step ( #9401 )
...
kind is already installed by default in the current GitHub Action
environment.
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-12-12 06:05:37 -08:00
Ricardo Katz
7e7d0e8699
Add reporter for all tests ( #9395 )
2022-12-11 21:33:19 -03:00
James Strong
2cb3ce5db6
added action for issues to project ( #9386 )
...
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-08 07:52:24 -08:00
Long Wu Yuan
ad4655a568
integrated junit-reports with ghactions ( #9361 )
2022-12-06 19:24:37 -08:00
dependabot[bot]
f3f6554405
Bump actions/setup-go from 3.3.1 to 3.4.0 ( #9370 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](c4a742cab1...d0a58c1c4d
2022-12-05 14:35:03 -08:00
dependabot[bot]
acf6f0a202
Bump github/codeql-action from 2.1.31 to 2.1.35 ( #9369 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.31 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c3b6fce4ee...b2a92eb56d
2022-12-05 14:33:03 -08:00
dependabot[bot]
d24c97c63e
Bump actions/dependency-review-action from 3.0.0 to 3.0.1 ( #9319 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](30d5821115...11310527b4
2022-11-21 13:14:12 -08:00
dependabot[bot]
b6c6305523
Bump actions/dependency-review-action from 2.5.1 to 3.0.0 ( #9301 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.1 to 3.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0efb1d1d84...30d5821115
2022-11-15 14:24:47 -08:00
James Strong
3db3c19685
run helm release on main only and when the chart/value changes only ( #9290 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-11 07:00:10 -08:00
James Strong
63dbbdbb3a
udate readme, charts and static deploys for release 1.5.1 ( #9280 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-09 17:08:54 -08:00
dependabot[bot]
644f05dd75
Bump aquasecurity/trivy-action from 0.7.1 to 0.8.0 ( #9264 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.7.1 to 0.8.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d63413b0a4...9ab158e859
2022-11-07 15:52:16 -08:00
dependabot[bot]
6b22d5a744
Bump github/codeql-action from 2.1.29 to 2.1.31 ( #9263 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...c3b6fce4ee
2022-11-07 15:50:16 -08:00
James Strong
4bd7e176d8
update base image of nginx to 1.21.6 ( #9257 )
...
* add workflow dispatch and update nginx base
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* push mod and sum from main
Signed-off-by: James Strong <strong.james.e@gmail.com>
* Update NGINX_BASE
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
2022-11-06 15:36:16 -08:00
dependabot[bot]
3c32413e30
Bump azure/setup-helm from 3.3 to 3.4 ( #9235 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 3.3 to 3.4.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Commits](b5b231a831...f382f75448
2022-11-04 09:58:14 -07:00
dependabot[bot]
cf4fb7d812
Bump actions/upload-artifact from 3.1.0 to 3.1.1 ( #9234 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356
2022-11-04 09:56:14 -07:00
dependabot[bot]
709e984ff6
Bump github/codeql-action from 2.1.28 to 2.1.29 ( #9236 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cc7986c02b...ec3cf9c605
2022-11-04 09:52:15 -07:00
dependabot[bot]
8c698778a3
Bump actions/dependency-review-action from 2.5.0 to 2.5.1 ( #9237 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fd675ced9c...0efb1d1d84
2022-10-31 09:24:45 -07:00
dependabot[bot]
9216b7b099
Bump actions/download-artifact from 3.0.0 to 3.0.1 ( #9207 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fb598a63ae...9782bd6a98
2022-10-24 13:28:35 -07:00
dependabot[bot]
f7c757c90b
Bump github/codeql-action from 2.1.27 to 2.1.28 ( #9206 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](807578363a...cc7986c02b
2022-10-24 13:26:36 -07:00
dependabot[bot]
60dc84476b
Bump actions/setup-go from 3.3.0 to 3.3.1 ( #9205 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](268d8c0ca0...c4a742cab1
2022-10-24 13:24:34 -07:00
dependabot[bot]
951d8196e5
Bump docker/setup-buildx-action from 2.1.0 to 2.2.1 ( #9204 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.1.0 to 2.2.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](95cb08cb26...8c0edbc76e
2022-10-24 13:22:34 -07:00
