STACKITGit/cli
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
6316 commits 87 branches 0 tags 160 MiB
Commit graph

223 commits

Author SHA1 Message Date
Mislav Marohnić
ea4b410df5
downgrade ubuntu to fix osslsigncode 2022-12-22 21:56:11 +01:00
dependabot[bot]
bc9ea4b941
Bump goreleaser/goreleaser-action from 3 to 4 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 3 to 4.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-13 14:03:54 +00:00
Mislav Marohnić
684a4c5c8c
bump golangci-lint 2022-12-12 16:49:19 +01:00
Mislav Marohnić
c9c39a66ba
Bump goreleaser 2022-12-12 16:02:54 +01:00
Mislav Marohnić
ba4d50452d
Update to Go 1.19 
With this upgrade our codebase adopts the stricter handling of `os/exec` command lookup in it that it doesn't allow shelling out to a command in the current directory.
 2022-12-12 15:50:13 +01:00
dependabot[bot]
14c2b801ef
Bump mislav/bump-homebrew-formula-action from 1 to 2 
Bumps [mislav/bump-homebrew-formula-action](https://github.com/mislav/bump-homebrew-formula-action) from 1 to 2.
- [Release notes](https://github.com/mislav/bump-homebrew-formula-action/releases)
- [Commits](https://github.com/mislav/bump-homebrew-formula-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: mislav/bump-homebrew-formula-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-17 14:09:07 +00:00
Sam Coe
44e6483717
Set fetch depth for goreleaser to work properly 2022-11-15 09:37:24 +02:00
Sam Coe
45be3509bb
Update goreleaser so we can release ARM64 binaries for windows (#6605) 2022-11-14 13:54:16 +02:00
Mislav Marohnić
30ad3f0fd1
Fix SECURITY.md 2022-11-09 20:07:56 +01:00
dependabot[bot]
a55c166084
Bump microsoft/setup-msbuild from 1.0.3 to 1.1.3 
Bumps [microsoft/setup-msbuild](https://github.com/microsoft/setup-msbuild) from 1.0.3 to 1.1.3.
- [Release notes](https://github.com/microsoft/setup-msbuild/releases)
- [Changelog](https://github.com/microsoft/setup-msbuild/blob/master/building-release.md)
- [Commits](https://github.com/microsoft/setup-msbuild/compare/v1.0.3...v1.1.3)

---
updated-dependencies:
- dependency-name: microsoft/setup-msbuild
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-21 14:27:07 +00:00
Sam Coe
0968ac6225
Use secret public key instead of file (#6204) 2022-09-06 17:26:09 +04:00
Sam Coe
39df244d2d
Dont hardcode keygrip (#6202) 2022-09-06 12:59:51 +00:00
Mislav Marohnić
6703677a95
Stop bumping winget manifest as part of release automation (#5699) 2022-05-24 09:57:24 +02:00
dependabot[bot]
edf6f46dad
Bump goreleaser/goreleaser-action from 2 to 3 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-23 14:33:44 +00:00
Sam Coe
06fb78aa26
Re-enable linters now that golangci-lint has been updated (#5615) 2022-05-11 16:57:57 +02:00
Sam Coe
597eb16a83
Upgrade to go 1.18 (#5542) 2022-05-09 18:46:19 +02:00
Sam Coe
477d999281
Document linux distribution updating (#5531) 2022-05-02 15:56:45 +02:00
dependabot[bot]
2ef6d83939
Bump github/codeql-action from 1 to 2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-25 14:24:46 +00:00
dependabot[bot]
3427d17401
Bump actions/setup-go from 2 to 3 (#5425) 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 09:39:05 +02:00
Mislav Marohnić
5f4152fbfa Bump winget-create 
[ci skip]
 2022-04-13 15:19:54 +02:00
dependabot[bot]
b090ef0578
Bump actions/cache from 2 to 3 
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-21 14:27:30 +00:00
Mislav Marohnić
d4ead71d06
Merge pull request #5298 from cli/bump-golangci-lint 
Bump golangci-lint version
 2022-03-14 15:27:37 +01:00
neilnaveen
07e0e52edd
Fixed permission for workflow (#5279) 
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

Co-authored-by: Mislav Marohnić <mislav@github.com>
 2022-03-14 14:18:21 +01:00
Mislav Marohnić
9278f51aa8 Bump golangci-lint version 2022-03-11 14:58:15 +01:00
Mislav Marohnić
cb7315c85d Re-initialize modules cache in CI 2022-03-10 18:29:42 +01:00
dependabot[bot]
0cce0e1543
Bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-02 14:29:49 +00:00
Mislav Marohnić
3e0db567e8
Rotate our Windows signing certificates (#5196) 
- The certificate pfx file is now read from WINDOWS_CERT_PFX
- The password to decode the pfx is in WINDOWS_CERT_PASSWORD
- Quit reading from desktop-secrets repo
- Switch osslsigncode to take in pfx instead of individual certs
- 🔥 obsolete setup scripts
 2022-02-15 17:23:39 +01:00
Heath Stewart
bad38fdcfb Remove prerelease metadata from ProductVersion 2022-01-20 15:22:56 -08:00
Heath Stewart
7ecf66a7ea
Use forward slashes for project path 2022-01-20 14:36:41 -08:00
Heath Stewart
9aa81c2c04
Switch parameter prefix for use in bash 2022-01-20 12:24:35 -08:00
Heath Stewart
cc0a650031
Use EXE path for msbuild.exe 2022-01-20 11:34:57 -08:00
nate smith
e32d0ea307 spaces 2022-01-20 13:07:49 -06:00
nate smith
6e56a87eb1 attempt to use an absolute path to msbuild 2022-01-20 12:55:42 -06:00
nate smith
44f9d03a85 Merge remote-tracking branch 'origin/trunk' into issue703 2022-01-20 12:11:26 -06:00
Matthew Preble
45adc4ad76 Migrate to osslsigncode. 2022-01-13 13:37:57 -06:00
nate smith
e56c78a364 Sign Windows .exes in a post-build hook 2022-01-13 13:37:57 -06:00
Mislav Marohnić
171482970f Cache Go modules between CI runs 2022-01-13 13:17:11 +01:00
nate smith
9b1be750d2 oops 2021-11-24 16:45:27 -06:00
nate smith
1ba03938a1 automatically label non-core issues 2021-11-24 16:32:07 -06:00
nate smith
9326824e9e self-assign core team PRs 2021-11-24 16:31:17 -06:00
nate smith
0e52f429c0 label external PRs as such 2021-11-24 16:30:31 -06:00
Mislav Marohnić
1464a8a0f3 Generate release notes using the new API 
https://docs.github.com/en/rest/reference/repos#generate-release-notes-content-for-a-release
 2021-10-14 20:22:38 +02:00
Mislav Marohnić
53479c712c
Merge pull request #4510 from cli/dependabot-patch 
Configure Dependabot to only consider patch version bumps
 2021-10-13 21:01:39 +02:00
Mislav Marohnić
127e2dae99 Configure Dependabot to only consider patch version bumps 
https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates#ignore
 2021-10-13 20:06:19 +02:00
Mislav Marohnić
2819deb15b Avoid applying human-oriented PR automation to PRs from bots 2021-10-11 11:33:44 +02:00
Mislav Marohnić
dabaa5ad7d CodeQL-Dependabot compatibility 
Configure the CodeQL workflow to avoid running for pushes on all pull
requests because that causes problems with Dependabot PRs.

https://github.com/cli/cli/pull/4475/checks?check_run_id=3857074760
 2021-10-11 11:27:54 +02:00
flying-cow
706dede7ac Enable dependabot to get security updates and if needed version updates on dependencies 
https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically

Having knowledge about vulnerabilities of the dependencies helps the project owners decide on their dependencies security posture to make decisions.

If the project decides to get updates only on security updates and not on any version updates then setting these options would not open any PR 's open-pull-requests-limit: 0
 2021-10-10 19:41:30 -05:00
Mislav Marohnić
2f45173370 Publish docs site using a deploy key instead of PAT 
I'd like to decommission SITE_GITHUB_TOKEN as it's a PAT that has write
access to all my `github/*` repositories. Instead, I've created a deploy
key that only has access to `github/cli.github.com`.

    ssh-keygen -t ed25519 -C "gh docs push" -N "" -f ~/.ssh/gh-docs-publish
    gh repo -R github/cli.github.com deploy-key add ~/.ssh/gh-docs-publish.pub

    # testing:
    GIT_SSH_COMMAND='ssh -i $HOME/.ssh/gh-docs-publish' git push ...
 2021-09-13 16:30:40 +02:00
Heath Stewart
2fa3de9ba4 Resolve PR feedback 2021-09-07 23:02:59 -07:00
Heath Stewart
cb599af1a3 Make sure correct step output is set 
Also simplifies directories for an always-release binary.
 2021-09-05 09:15:36 -07:00