Kynan Ware
7fa213251c
Fix script path for help-wanted check
2025-06-16 10:14:38 -06:00
William Martin
c7baa7a555
Quote workflow conditional
2025-06-16 17:54:24 +02:00
William Martin
35e95a42c9
Merge pull request #11107 from cli/dependabot/github_actions/actions/attest-build-provenance-2.4.0
...
chore(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
2025-06-16 17:09:33 +02:00
William Martin
928a326cee
Add workflow to check help wanted labelling ( #11105 )
...
Co-authored-by: Kynan Ware <47394200+BagToad@users.noreply.github.com>
Co-authored-by: Babak K. Shandiz <babakks@github.com>
Co-authored-by: Andy Feller <andyfeller@github.com>
2025-06-16 17:09:04 +02:00
dependabot[bot]
f8a3133003
chore(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](db473fddc0...e8998f9491
2025-06-12 14:33:02 +00:00
dependabot[bot]
2266c7a5b5
chore(deps): bump mislav/bump-homebrew-formula-action from 3.2 to 3.4
...
Bumps [mislav/bump-homebrew-formula-action](https://github.com/mislav/bump-homebrew-formula-action ) from 3.2 to 3.4.
- [Release notes](https://github.com/mislav/bump-homebrew-formula-action/releases )
- [Commits](942e550c63...8e2baa47da
2025-06-03 14:57:13 +00:00
Andy Feller
b30101c496
Avoid analyzing 3rd party license content with CodeQL
...
With these changes, `cli/cli` will be redistributing code as-is due to license compliance, which we will not change or address issues around. Without these changes, our pull requests are getting a bunch of false positive annotations we cannot and will not fix directly.
2025-05-30 13:22:42 -04:00
Andy Feller
bd24865076
Adopt license compliance scripts into workflows, docs
...
This commit introduces the use of `go-licenses` within CI/CD and manual processes for generating / updating the license information used by GitHub CLI including the code required by license to be redistributed.
During GitHub CLI pull requests, the `lint` workflow will notify users if this information is not updated.
2025-05-30 12:46:51 -04:00
dependabot[bot]
9bb89de87c
chore(deps): bump actions/attest-build-provenance from 2.2.2 to 2.3.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.2.2 to 2.3.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](bd77c07785...db473fddc0
2025-04-28 15:44:19 +00:00
Kynan Ware
e21243fe9b
ci: pin third party actions to commit sha
2025-04-04 21:45:54 -06:00
Tyler McGoffin
e0533f9f73
Change issueauto and prauto actions to use the cli-automation env
2025-03-07 12:04:59 -08:00
Tyler McGoffin
824acc86dd
Add environment to prauto and issueauto workflows
2025-03-06 11:20:39 -08:00
Tyler McGoffin
09b233746c
Add cli-discuss-automation environment to triage.md
...
Previously, we were getting the token from repository secrets. We have
moved the token to its own environment secret in the
cli-discuss-automation environment. It is in its own environment so that
we don't inject our other secrets into this workflow as we don't need
them here.
2025-03-06 11:13:01 -08:00
Kynan Ware
601c3e448c
Fix(ci): base64 decode GPG passphrase
2025-03-05 12:43:44 -07:00
dependabot[bot]
b83a1a06ef
Bump actions/attest-build-provenance from 2.2.0 to 2.2.2
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.2.0 to 2.2.2.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](520d128f16...bd77c07785
2025-02-28 14:52:41 +00:00
Michael Hoffman
4c1a9215c9
Merge branch 'trunk' into remove-project-automation
2025-01-30 14:45:07 -05:00
Andy Feller
df250a2b53
Update deployment.yml
...
Fix failing tag validate job
2025-01-30 13:07:21 -05:00
Michael Hoffman
d1b5facb48
Remove unused env var, PRID
2025-01-30 12:59:29 -05:00
Michael Hoffman
077f064f4a
Remove v1 project 'add to board' automation from prauto workflow
2025-01-29 10:21:11 -05:00
Tyler McGoffin
7fcb4453ed
Merge pull request #10121 from cli/jtmcg/add-tagname-enforcement-to-deployment-workflow
...
Add job to deployment workflow to validate the tag name for a given release
2025-01-24 14:31:59 -08:00
Andy Feller
c23a2834c7
Merge pull request #10297 from dennisameling/windows-arm64-msi
...
Enable MSI building for Windows arm64
2025-01-24 08:04:35 -05:00
dependabot[bot]
fe3d18c96a
Bump actions/attest-build-provenance from 2.1.0 to 2.2.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](7668571508...520d128f16
2025-01-23 14:53:49 +00:00
Dennis Ameling
d4aebb1cbb
Enable MSI building for Windows arm64
2025-01-22 18:06:40 +01:00
William Martin
0ead3398a7
Bump golang ci lint to work with go 1.24
2025-01-21 17:55:39 +01:00
shauryatiwari1
eed3626521
Remove release discussion posts and clean up related block in deployment yml
2024-12-27 15:15:21 +05:30
Tyler McGoffin
5fc56ded50
Escape '.' in version validation regex in deployment workflow
2024-12-26 10:50:09 -08:00
Tyler McGoffin
1386e3671f
Add job to deployment workflow to validate the tag name for a given release
2024-12-20 14:55:29 -08:00
Meredith Lancaster
64bf37e31c
Merge pull request #10051 from malancas/gh-attestation-download-windows-bug
...
Use Windows compatible file name for downloaded attestations when running `gh attestation download`
2024-12-16 08:01:36 -07:00
Meredith Lancaster
5ebfa26487
use bash shell with integration tests
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-11 08:03:42 -07:00
Meredith Lancaster
2ced59fba3
update integration test scripts
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-11 07:42:05 -07:00
Meredith Lancaster
050f295b37
run all tests in a single script
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-10 11:41:15 -07:00
Meredith Lancaster
0e15557000
windows for loop syntax
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-10 10:18:15 -07:00
Meredith Lancaster
9f6d18c70e
run integration tests with windows specific syntax
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-10 08:37:32 -07:00
Meredith Lancaster
351592d90f
run all attestation cmd integration tests automatically
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-12-10 08:24:01 -07:00
dependabot[bot]
4c5a92aa11
Bump actions/attest-build-provenance from 1.4.4 to 2.1.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.4 to 2.1.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](ef244123eb...7668571508
2024-12-10 14:57:58 +00:00
Andy Feller
d4262f8183
Mention GitHub CLI team on discussion issues
2024-11-14 10:31:36 -05:00
dependabot[bot]
2318fde15f
Bump actions/attest-build-provenance from 1.4.3 to 1.4.4
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.3 to 1.4.4.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](1c608d11d6...ef244123eb
2024-11-06 14:14:48 +00:00
dependabot[bot]
a21e78bf0d
build(deps): bump actions/attest-build-provenance from 1.4.2 to 1.4.3
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.2 to 1.4.3.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](6149ea5740...1c608d11d6
2024-09-06 14:31:25 +00:00
dependabot[bot]
b8db372d71
build(deps): bump actions/attest-build-provenance from 1.4.1 to 1.4.2 ( #9518 )
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.1 to 1.4.2.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](310b0a4a3b...6149ea5740
2024-08-26 10:26:42 -07:00
dependabot[bot]
da43f6e476
build(deps): bump actions/attest-build-provenance from 1.4.0 to 1.4.1
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.4.0 to 1.4.1.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](210c191353...310b0a4a3b
2024-08-12 15:00:14 +00:00
dependabot[bot]
ad96ad3580
build(deps): bump actions/attest-build-provenance from 1.3.3 to 1.4.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.3.3 to 1.4.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](5e9cb68e95...210c191353
2024-07-31 14:55:39 +00:00
Zach Steindler
658f125ab3
Update sigstore-go in gh CLI to v0.5.1 ( #9366 )
...
Signed-off-by: Zach Steindler <steiza@github.com>
2024-07-25 20:59:39 +02:00
dependabot[bot]
4511a8b4c4
build(deps): bump actions/attest-build-provenance from 1.3.2 to 1.3.3
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.3.2 to 1.3.3.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](bdd51370e0...5e9cb68e95
2024-07-10 14:21:15 +00:00
dependabot[bot]
651d7135dc
build(deps): bump actions/attest-build-provenance from 1.2.0 to 1.3.2
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.2.0 to 1.3.2.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](49df96e17e...bdd51370e0
2024-06-18 14:40:06 +00:00
Andy Feller
7cd4a15e7c
Merge pull request #9175 from cli/dependabot/github_actions/goreleaser/goreleaser-action-6
...
build(deps): bump goreleaser/goreleaser-action from 5 to 6
2024-06-12 10:55:12 -04:00
dependabot[bot]
d666248104
build(deps): bump goreleaser/goreleaser-action from 5 to 6
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 5 to 6.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-06-05 14:34:35 +00:00
dependabot[bot]
215456e8ae
build(deps): bump actions/attest-build-provenance from 1.1.2 to 1.2.0
...
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) from 1.1.2 to 1.2.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](173725a120...49df96e17e
2024-06-04 14:47:16 +00:00
Andy Feller
fe880a3015
Ensure signed RPMs have attestations
...
Thanks to @malancas for highlighting issue ordering of RPM signing and attestations! Now, all artifacts should have attestations appropriately generated
2024-05-29 16:18:18 -04:00
Meredith Lancaster
e55093347c
Add build provenance for gh CLI releases ( #9087 )
...
Signed-off-by: Meredith Lancaster <malancas@github.com>
2024-05-28 18:10:50 +02:00
Paul
630ab13461
Merge branch 'trunk' into feature-macos-pkg-installer
2024-05-20 17:05:23 +02:00
