dependabot[bot]
43168a7fe1
Bump actions/checkout from 3.2.0 to 3.4.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...24cb908017
2023-03-21 13:42:46 +00:00
James Strong
0727a3c123
Merge pull request #9769 from kubernetes/dependabot/github_actions/securego/gosec-2.15.0
...
Bump securego/gosec from 2.14.0 to 2.15.0
2023-03-21 09:41:57 -04:00
dependabot[bot]
9e097fb79d
Bump aquasecurity/trivy-action from 0.8.0 to 0.9.2 ( #9767 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.8.0 to 0.9.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](9ab158e859...1f0aa582c8
2023-03-21 06:39:07 -07:00
dependabot[bot]
5c0b707643
Bump actions/dependency-review-action from 3.0.3 to 3.0.4 ( #9766 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](c090f4e553...f46c48ed6d
2023-03-21 06:33:08 -07:00
dependabot[bot]
1936973ea9
Bump actions/add-to-project from 0.4.0 to 0.4.1 ( #9765 )
...
Bumps [actions/add-to-project](https://github.com/actions/add-to-project ) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/actions/add-to-project/releases )
- [Commits](960fbad431...4756e6330f
2023-03-20 09:33:19 -07:00
dependabot[bot]
9a1cfc7181
Bump securego/gosec from 2.14.0 to 2.15.0
...
Bumps [securego/gosec](https://github.com/securego/gosec ) from 2.14.0 to 2.15.0.
- [Release notes](https://github.com/securego/gosec/releases )
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml )
- [Commits](1af1d5bb49...a459eb0ba3
2023-03-20 11:01:37 +00:00
dependabot[bot]
dba7ae04f5
Bump actions/dependency-review-action from 3.0.2 to 3.0.3 ( #9727 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0ff3da6f81...c090f4e553
2023-03-14 07:32:16 -07:00
dependabot[bot]
778577253e
Bump actions/download-artifact from 3.0.1 to 3.0.2 ( #9721 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](9782bd6a98...9bc31d5ccc
2023-03-14 07:26:18 -07:00
dependabot[bot]
7a95a43df6
Bump goreleaser/goreleaser-action from 4.1.0 to 4.2.0 ( #9718 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](8f67e590f2...f82d6c1c34
2023-03-14 07:24:23 -07:00
dependabot[bot]
2d15a9946b
Bump actions/upload-artifact from 3.1.1 to 3.1.2 ( #9717 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](83fd05a356...0b7f8abb15
2023-03-14 07:22:17 -07:00
dependabot[bot]
b87645fe53
Bump docker/setup-buildx-action from 2.2.1 to 2.5.0 ( #9719 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.2.1 to 2.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](8c0edbc76e...4b4e9c3e2d
2023-03-12 05:20:40 -07:00
dependabot[bot]
f93d11b4cf
Bump helm/chart-releaser-action from 1.4.1 to 1.5.0 ( #9720 )
...
Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases )
- [Commits](98bccfd32b...be16258da8
2023-03-12 05:18:40 -07:00
James Strong
66a760794f
update to golang 1.20 ( #9690 )
...
update alpine and golang
remove nano
update go modules
remove need for openssl external cli
fix stale
Signed-off-by: James Strong <james.strong@chainguard.dev>
2023-03-11 20:38:39 -08:00
Jongwoo Han
60d9716b1f
Replace deprecated command with environment file ( #9581 )
...
Signed-off-by: jongwooo <jongwooo.han@gmail.com>
2023-02-05 23:37:00 -08:00
James Strong
254b814985
add lint on chart before release ( #9570 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2023-02-01 13:51:36 -08:00
Carlos Tadeu Panato Junior
f82e29a730
add github actions stale bot ( #9439 )
...
Signed-off-by: cpanato <ctadeu@gmail.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
2023-01-08 14:25:27 -08:00
Ricardo Katz
3916f7b8b7
move tests to gh actions ( #9461 )
2022-12-29 14:09:29 -08:00
James Strong
336f25230b
start release 1.5.2 ( #9445 )
...
* start release 1.5.2
Signed-off-by: James Strong <james.strong@chainguard.dev>
* upgrade kind clusters and add 1.26
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-24 11:23:26 -08:00
Saumya
7206f488ab
avoid builds and tests for non-code changes ( #9392 )
...
* avoid builds and tests for non-code changes
* dummy test for workflow
2022-12-22 10:19:26 -08:00
Carlos Tadeu Panato Junior
bb60e02e96
CI updates ( #9440 )
...
* add labels to dependabot prs
Signed-off-by: cpanato <ctadeu@gmail.com>
* sync hashes and versions dependabot can update the version comment now
Signed-off-by: cpanato <ctadeu@gmail.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
2022-12-22 07:37:26 -08:00
dependabot[bot]
7ef5e1ab8b
Bump github/codeql-action from 2.1.36 to 2.1.37 ( #9423 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a669cc5936...959cbb7472
2022-12-20 11:15:19 -08:00
dependabot[bot]
87146d6d93
Bump actions/checkout from 3.1.0 to 3.2.0 ( #9425 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-20 09:33:43 -08:00
dependabot[bot]
bd283b6609
Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 ( #9426 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.2.0 to 4.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](b508e2e3ef...8f67e590f2
2022-12-20 07:39:44 -08:00
dependabot[bot]
07db4997b3
Bump actions/dependency-review-action from 3.0.1 to 3.0.2 ( #9424 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](11310527b4...0ff3da6f81
2022-12-20 07:37:45 -08:00
dependabot[bot]
6070c8be01
Bump ossf/scorecard-action from 2.0.6 to 2.1.0 ( #9422 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...937ffa90d7
2022-12-20 07:35:45 -08:00
James Strong
e3e0d9c1f4
start upgrade to golang 1.19.4 and alpine 3.17.0 ( #9417 )
...
* start upgrade to 1.19.4
Signed-off-by: James Strong <james.strong@chainguard.dev>
* add matrix to image test-image
Signed-off-by: James Strong <james.strong@chainguard.dev>
* update to alpine 3.17
Signed-off-by: James Strong <james.strong@chainguard.dev>
* remove need for curl
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-18 17:07:43 -08:00
dependabot[bot]
b93b277e5a
Bump github/codeql-action from 2.1.35 to 2.1.36 ( #9400 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.35 to 2.1.36.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b2a92eb56d...a669cc5936
2022-12-12 19:07:33 -08:00
Jintao Zhang
4f528fc70a
ci: remove setup-helm step ( #9404 )
...
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-12-12 08:45:34 -08:00
Jintao Zhang
8736b3b9a7
ci: remove setup-kind step ( #9401 )
...
kind is already installed by default in the current GitHub Action
environment.
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-12-12 06:05:37 -08:00
Ricardo Katz
7e7d0e8699
Add reporter for all tests ( #9395 )
2022-12-11 21:33:19 -03:00
James Strong
2cb3ce5db6
added action for issues to project ( #9386 )
...
Signed-off-by: James Strong <james.strong@chainguard.dev>
Signed-off-by: James Strong <james.strong@chainguard.dev>
2022-12-08 07:52:24 -08:00
Long Wu Yuan
ad4655a568
integrated junit-reports with ghactions ( #9361 )
2022-12-06 19:24:37 -08:00
dependabot[bot]
f3f6554405
Bump actions/setup-go from 3.3.1 to 3.4.0 ( #9370 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](c4a742cab1...d0a58c1c4d
2022-12-05 14:35:03 -08:00
dependabot[bot]
acf6f0a202
Bump github/codeql-action from 2.1.31 to 2.1.35 ( #9369 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.31 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c3b6fce4ee...b2a92eb56d
2022-12-05 14:33:03 -08:00
dependabot[bot]
d24c97c63e
Bump actions/dependency-review-action from 3.0.0 to 3.0.1 ( #9319 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](30d5821115...11310527b4
2022-11-21 13:14:12 -08:00
dependabot[bot]
b6c6305523
Bump actions/dependency-review-action from 2.5.1 to 3.0.0 ( #9301 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.1 to 3.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0efb1d1d84...30d5821115
2022-11-15 14:24:47 -08:00
James Strong
3db3c19685
run helm release on main only and when the chart/value changes only ( #9290 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-11 07:00:10 -08:00
James Strong
63dbbdbb3a
udate readme, charts and static deploys for release 1.5.1 ( #9280 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-09 17:08:54 -08:00
dependabot[bot]
644f05dd75
Bump aquasecurity/trivy-action from 0.7.1 to 0.8.0 ( #9264 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.7.1 to 0.8.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d63413b0a4...9ab158e859
2022-11-07 15:52:16 -08:00
dependabot[bot]
6b22d5a744
Bump github/codeql-action from 2.1.29 to 2.1.31 ( #9263 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...c3b6fce4ee
2022-11-07 15:50:16 -08:00
James Strong
4bd7e176d8
update base image of nginx to 1.21.6 ( #9257 )
...
* add workflow dispatch and update nginx base
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* push mod and sum from main
Signed-off-by: James Strong <strong.james.e@gmail.com>
* Update NGINX_BASE
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
2022-11-06 15:36:16 -08:00
dependabot[bot]
3c32413e30
Bump azure/setup-helm from 3.3 to 3.4 ( #9235 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 3.3 to 3.4.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Commits](b5b231a831...f382f75448
2022-11-04 09:58:14 -07:00
dependabot[bot]
cf4fb7d812
Bump actions/upload-artifact from 3.1.0 to 3.1.1 ( #9234 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356
2022-11-04 09:56:14 -07:00
dependabot[bot]
709e984ff6
Bump github/codeql-action from 2.1.28 to 2.1.29 ( #9236 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cc7986c02b...ec3cf9c605
2022-11-04 09:52:15 -07:00
dependabot[bot]
8c698778a3
Bump actions/dependency-review-action from 2.5.0 to 2.5.1 ( #9237 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fd675ced9c...0efb1d1d84
2022-10-31 09:24:45 -07:00
dependabot[bot]
9216b7b099
Bump actions/download-artifact from 3.0.0 to 3.0.1 ( #9207 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fb598a63ae...9782bd6a98
2022-10-24 13:28:35 -07:00
dependabot[bot]
f7c757c90b
Bump github/codeql-action from 2.1.27 to 2.1.28 ( #9206 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](807578363a...cc7986c02b
2022-10-24 13:26:36 -07:00
dependabot[bot]
60dc84476b
Bump actions/setup-go from 3.3.0 to 3.3.1 ( #9205 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](268d8c0ca0...c4a742cab1
2022-10-24 13:24:34 -07:00
dependabot[bot]
951d8196e5
Bump docker/setup-buildx-action from 2.1.0 to 2.2.1 ( #9204 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.1.0 to 2.2.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](95cb08cb26...8c0edbc76e
2022-10-24 13:22:34 -07:00
dependabot[bot]
f4cefedc93
Bump ossf/scorecard-action from 2.0.4 to 2.0.6 ( #9203 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e363bfca00...99c53751e0
2022-10-24 13:20:35 -07:00
dependabot[bot]
68bcb3761c
Bump goreleaser/goreleaser-action from 3.1.0 to 3.2.0 ( #9208 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](ff11ca24a9...b508e2e3ef
2022-10-24 13:08:24 -07:00
dependabot[bot]
5f2a79495a
Bump securego/gosec from 2.13.1 to 2.14.0 ( #9182 )
...
Bumps [securego/gosec](https://github.com/securego/gosec ) from 2.13.1 to 2.14.0.
- [Release notes](https://github.com/securego/gosec/releases )
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml )
- [Commits](19fa856bad...1af1d5bb49
2022-10-19 10:47:02 -07:00
dependabot[bot]
8a83748d0f
Bump docker/setup-qemu-action from 2.0.0 to 2.1.0 ( #9181 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](8b122486ce...e81a89b173
2022-10-19 10:45:02 -07:00
dependabot[bot]
98505a2c19
Bump actions/dependency-review-action from 2.4.0 to 2.5.0 ( #9179 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](375c537008...fd675ced9c
2022-10-19 10:43:02 -07:00
dependabot[bot]
2ebb6b9c73
Bump geekyeggo/delete-artifact from 1.0.0 to 2.0.0 ( #9178 )
...
Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact ) from 1.0.0 to 2.0.0.
- [Release notes](https://github.com/geekyeggo/delete-artifact/releases )
- [Commits](b73cb98674...54ab544f12
2022-10-19 10:41:01 -07:00
dependabot[bot]
92d75201af
Bump dorny/paths-filter from 2.10.2 to 2.11.1 ( #9183 )
...
Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter ) from 2.10.2 to 2.11.1.
- [Release notes](https://github.com/dorny/paths-filter/releases )
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md )
- [Commits](b2feaf19c2...4512585405
2022-10-18 07:21:19 -07:00
dependabot[bot]
82e454318c
Bump docker/setup-buildx-action from 2.0.0 to 2.1.0 ( #9180 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](dc7b9719a9...95cb08cb26
2022-10-18 07:19:20 -07:00
James Strong
93df796767
upgrade to golang 1.19.2 ( #9124 )
...
* upgrade to golang 1.19.2
Signed-off-by: James Strong <strong.james.e@gmail.com>
* update e2e testing to 1.25 kind
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-10-12 12:39:00 -07:00
dependabot[bot]
ea254fbcb1
Bump actions/checkout from 3.0.2 to 3.1.0 ( #9135 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
2022-10-12 12:35:02 -07:00
dependabot[bot]
3f40eb02cd
Bump ossf/scorecard-action from 2.0.3 to 2.0.4 ( #9138 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](865b409285...e363bfca00
2022-10-10 06:31:21 -07:00
dependabot[bot]
aaa336f207
Bump github/codeql-action from 2.1.25 to 2.1.27 ( #9137 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.25 to 2.1.27.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](86f3159a69...807578363a
2022-10-10 06:25:23 -07:00
dependabot[bot]
796cdf734e
Bump helm/chart-releaser-action from 1.4.0 to 1.4.1 ( #9136 )
...
Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action ) from 1.4.0 to 1.4.1.
- [Release notes](https://github.com/helm/chart-releaser-action/releases )
- [Commits](https://github.com/helm/chart-releaser-action/compare/v1.4.0...v1.4.1 )
---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-10 06:23:22 -07:00
James Strong
00f86f7f34
update x/net to remove vul CVE-2022-27664 ( #9109 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-10-04 11:08:17 -07:00
James Strong
c4a50ebaa6
update for 1.4.0 release
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-10-02 18:40:46 -04:00
Wilmar den Ouden
0b04270517
expand CI testing for all stable versions of Kubernetes ( #9078 )
...
* ci: setup version matrix for the helm chart e2e
Signed-off-by: wilmarguida <w.denouden@guida.nl>
* ci: sync all k8s version on CI steps
Signed-off-by: wilmarguida <w.denouden@guida.nl>
* ci: bump all k8s version to latest stable
Signed-off-by: wilmarguida <w.denouden@guida.nl>
Signed-off-by: wilmarguida <w.denouden@guida.nl>
2022-09-29 10:40:39 -07:00
dependabot[bot]
cd151e3db8
Bump actions/checkout from 1 to 3 ( #9084 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 1 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v1...2541b1294d2704b0964813337f33b291d3f8596b )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-24 17:48:04 -07:00
dependabot[bot]
f192ffe302
Bump actions/dependency-review-action from 2.1.0 to 2.4.0 ( #9085 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.1.0 to 2.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](23d1ffffb6...375c537008
2022-09-24 08:04:03 -07:00
dependabot[bot]
2af4fec055
Bump github/codeql-action from 2.1.24 to 2.1.25 ( #9083 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.24 to 2.1.25.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](904260d7d9...86f3159a69
2022-09-24 08:02:04 -07:00
Wilmar den Ouden
67f7d3da63
fix: do not apply job-patch psp on Kubernetes 1.25 and newer ( #9074 )
...
* fix: do not apply job-patch psp on Kubernetes 1.25 and newer
Signed-off-by: wilmarguida <w.denouden@guida.nl>
* fix: bump kubernetes version for helm chart CI to 1.25.0
Signed-off-by: wilmarguida <w.denouden@guida.nl>
Signed-off-by: wilmarguida <w.denouden@guida.nl>
2022-09-24 04:38:05 -07:00
dependabot[bot]
b088ee2d7e
Bump github/codeql-action from 2.1.23 to 2.1.24 ( #9066 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.23 to 2.1.24.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6a38b7d4a1...904260d7d9
2022-09-19 06:11:23 -07:00
Long Wu Yuan
d32f8c3439
bump go to v1.19.1 ( #9057 )
2022-09-16 06:15:18 -07:00
dependabot[bot]
ca1e8b6d9e
Bump ossf/scorecard-action from 2.0.2 to 2.0.3 ( #9053 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](68bf5b3327...865b409285
2022-09-15 21:47:16 -07:00
dependabot[bot]
e68ab4f395
Bump github/codeql-action from 2.1.22 to 2.1.23 ( #9052 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.22 to 2.1.23.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b398f525a5...6a38b7d4a1
2022-09-15 21:45:17 -07:00
dependabot[bot]
0b8dc59eaf
Bump actions/upload-artifact from 3.0.0 to 3.1.0 ( #9045 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3...3cea5372237819ed00197afe530f5a7ea3e805c8 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-15 06:43:24 -07:00
dependabot[bot]
ec4c53f0f3
Bump ossf/scorecard-action from 1.1.2 to 2.0.2 ( #9044 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.2 to 2.0.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](ce330fde6b...68bf5b3327
2022-09-15 06:41:28 -07:00
James Strong
db3cdc04e4
release 1.3.1 ( #9014 )
...
* release 1.3.1
Signed-off-by: James Strong <strong.james.e@gmail.com>
* fix readme
Signed-off-by: James Strong <strong.james.e@gmail.com>
* fix readme
Signed-off-by: James Strong <strong.james.e@gmail.com>
* fix readme
Signed-off-by: James Strong <strong.james.e@gmail.com>
* Fix chart linter
* Fix helm docs
* Fix helm docs
* fix helm docs
* Add warning about lease change
* Disable PSP in v1.25
* rollback cluster in helmchart to psp tests
Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
2022-09-05 04:28:36 -07:00
Ricardo Katz
bfd44ab83e
Add v1.25 test and reduce amount of e2e tests ( #9018 )
2022-09-04 16:22:36 -07:00
dependabot[bot]
9f4c44398a
Bump github/codeql-action from 2.1.21 to 2.1.22
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.21 to 2.1.22.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c7f292ea4f...b398f525a5
2022-09-01 13:33:45 +00:00
Alex
542cfb764b
Update plugin.yaml ( #9001 )
...
Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
2022-09-01 06:33:06 -07:00
dependabot[bot]
b490eb9a4c
Bump github/codeql-action from 2.1.20 to 2.1.21 ( #8982 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.20 to 2.1.21.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](7fee4ca032...c7f292ea4f
2022-08-30 06:07:01 -07:00
dependabot[bot]
75cf26e15c
Bump goreleaser/goreleaser-action from 3.0.0 to 3.1.0 ( #8986 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](68acf3b1ad...ff11ca24a9
2022-08-29 08:36:37 -07:00
dependabot[bot]
629cc1439c
Bump actions/setup-go from 3.2.1 to 3.3.0 ( #8981 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.2.1 to 3.3.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v3.2.1...268d8c0ca0432bb2cf416faae41297df9d262d7f )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-28 07:24:36 -07:00
Ismayil Mirzali
26bc6e4e50
bump Golang to 1.19 #8932 ( #8970 )
...
* fix: convert to LF line endings
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
* Pin exact Go bugfix versions for CI jobs
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
* Bump go.mod and Dockerfiles to Go 1.19.0
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
2022-08-26 09:22:25 -07:00
dependabot[bot]
363a7f7fb2
Bump github/codeql-action from 2.1.19 to 2.1.20 ( #8957 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.19 to 2.1.20.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f5d217be74...7fee4ca032
2022-08-22 15:32:09 -07:00
dependabot[bot]
c1b3a5065b
Bump azure/setup-helm from 2.1 to 3.3 ( #8956 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 2.1 to 3.3.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Commits](217bf70cbd...b5b231a831
2022-08-22 15:30:09 -07:00
dependabot[bot]
d7373c9140
Bump actions/dependency-review-action from 2.0.4 to 2.1.0 ( #8954 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.0.4 to 2.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](94145f3150...23d1ffffb6
2022-08-22 15:28:08 -07:00
dependabot[bot]
c3fb817985
Bump aquasecurity/trivy-action from 0.5.1 to 0.7.1 ( #8953 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.5.1 to 0.7.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](0105373003...d63413b0a4
2022-08-22 15:26:09 -07:00
dependabot[bot]
21fab45e9d
Bump securego/gosec ( #8952 )
...
Bumps [securego/gosec](https://github.com/securego/gosec ) from b99b5f7838e43a4104354ad92a6a1774302ee1f9 to 2.13.1. This release includes the previously tagged commit.
- [Release notes](https://github.com/securego/gosec/releases )
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml )
- [Commits](b99b5f7838...19fa856bad
2022-08-22 15:24:09 -07:00
dependabot[bot]
2e3eb675a8
Bump geekyeggo/delete-artifact ( #8951 )
...
Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact ) from a6ab43859c960a8b74cbc6291f362c7fb51829ba to 1. This release includes the previously tagged commit.
- [Release notes](https://github.com/geekyeggo/delete-artifact/releases )
- [Commits](a6ab43859c...b73cb98674
2022-08-22 15:22:09 -07:00
dependabot[bot]
cecd085ef7
Bump github/codeql-action from 2.1.18 to 2.1.19 ( #8950 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.18 to 2.1.19.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2.1.18...f5d217be74900c6ac8fbbe53f3c10376ba4e64da )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-22 15:20:10 -07:00
Ismayil Mirzali
1dc9d98833
Reimplement kubectl plugin release workflow ( #8812 )
...
* Feat: reimplement kubectl plugin release system
This commit does the following changes:
- Add GitHub Actions pipeline for releasing the plugin
- Removes the build/build-plugin.sh and replaces this with GoReleaser
- Adds the use of krew-release-bot for automatically updating the krew
release
- Removes the make target for build/build-plugin.sh
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
* Fix: pin github actions stages with commit sha
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
2022-08-11 21:22:43 -07:00
James Strong
ead3c2bc95
remove on pushes
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 17:14:13 -07:00
James Strong
0c343c8a77
stesting pathing
2022-08-08 17:08:21 -07:00
James Strong
1d2fa93856
sarif upload issues
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 17:04:59 -07:00
James Strong
e55a84e8a0
testing output of sarif file
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 16:40:30 -07:00
James Strong
9162fe0aa8
fix permissions
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 16:39:32 -07:00
James Strong
ebb8308654
it seems sarif upload needs git information
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 16:17:24 -07:00
James Strong
932320cf44
need short tags
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 16:01:27 -07:00
James Strong
069ac3a0d6
remove var
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 15:40:06 -07:00
James Strong
13639b5ad7
add scanning to CI
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-08-08 15:36:49 -07:00
