STACKITGit/cli
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7617 commits 87 branches 0 tags 160 MiB
Commit graph

7617 commits

This branch
This branch
All branches
Author SHA1 Message Date
Phill MV
467550a14a
Merge pull request #9243 from cli/remove-attestation-public-beta 
Remove `gh at verify` public beta note
 2024-06-24 14:08:39 -04:00
Phill MV
c9f9fac7dc
Update pkg/cmd/attestation/verify/verify.go 
Co-authored-by: Andy Feller <andyfeller@github.com>
 2024-06-24 13:33:10 -04:00
Phill MV
c25dacc33e
Update pkg/cmd/attestation/verify/verify.go 
Co-authored-by: Andy Feller <andyfeller@github.com>
 2024-06-24 13:32:51 -04:00
William Martin
ba2d32b5f2
Merge pull request #9217 from cli/dependabot/go_modules/github.com/google/go-containerregistry-0.19.2 
build(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2
 2024-06-24 16:08:25 +02:00
Phill MV
06607d3e95 s/originated/caller/ workflow 2024-06-24 10:05:58 -04:00
William Martin
f6032319a8
Merge pull request #9218 from cli/dependabot/go_modules/github.com/spf13/cobra-1.8.1 
build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1
 2024-06-24 15:54:41 +02:00
dependabot[bot]
31b424a1d2
build(deps): bump github.com/google/go-containerregistry 
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) from 0.19.1 to 0.19.2.
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](https://github.com/google/go-containerregistry/compare/v0.19.1...v0.19.2)

---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-24 13:52:48 +00:00
William Martin
cdc8c4d16a
Merge pull request #9211 from cli/dependabot/go_modules/github.com/gorilla/websocket-1.5.3 
build(deps): bump github.com/gorilla/websocket from 1.5.2 to 1.5.3
 2024-06-24 15:51:44 +02:00
William Martin
d7c56bfb13 Remove beta note from attestation top level command 2024-06-24 15:46:00 +02:00
William Martin
846b6ec20b Fix whitespacing 2024-06-24 15:41:22 +02:00
Phill MV
8318e7a1de
Actually, let's keep download in beta for now. 2024-06-24 09:32:32 -04:00
Phill MV
40abc9a785 Removed beta note from gh at download. 2024-06-23 21:54:01 -04:00
Phill MV
152607e0e8 Removed beta note from gh at verify, clarified reusable workflows use case. 2024-06-23 21:53:09 -04:00
Andy Feller
f71d3f75e3
Merge pull request #9222 from cli/dependabot/github_actions/actions/attest-build-provenance-1.3.2 2024-06-21 17:55:48 -04:00
dependabot[bot]
651d7135dc
build(deps): bump actions/attest-build-provenance from 1.2.0 to 1.3.2 
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 1.2.0 to 1.3.2.
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](49df96e17e...bdd51370e0)

---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-18 14:40:06 +00:00
dependabot[bot]
6e77b2d685
build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-17 14:16:51 +00:00
Forrin
c572383bda
Attestation Verification - Buffer Fix (#9198) 
* swap scanner to readline for attestations
* replace readLine with readBytes
 2024-06-14 13:55:58 -04:00
dependabot[bot]
59fae5b4a8
build(deps): bump github.com/gorilla/websocket from 1.5.2 to 1.5.3 
Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.2 to 1.5.3.
- [Release notes](https://github.com/gorilla/websocket/releases)
- [Commits](https://github.com/gorilla/websocket/compare/v1.5.2...v1.5.3)

---
updated-dependencies:
- dependency-name: github.com/gorilla/websocket
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-14 14:33:37 +00:00
Andy Feller
5e7ba54b56
Merge pull request #9162 from joshuajtward/chore/GH-9038 
feat: add `-a` flag to `gh run list`
 2024-06-13 11:40:08 -04:00
Andy Feller
6190e269a0 Add gh run list tests for workflow selector 
This commit adds tests to ensure disabled workflows are outputted as expected when called by name and the appropriate flags.
 2024-06-13 11:30:38 -04:00
Wing
f647131e1d
Gracefully degrade when fetching annotations fails due to 403 (#9113) 
Co-authored-by: William Martin <williammartin@github.com>
 2024-06-13 14:33:06 +02:00
Josh Ward
c2f2753051 add comment to call out potentially brittle use of workflowShared 2024-06-13 09:24:18 +01:00
Andy Feller
04d0ec0e8c
Merge pull request #9197 from cli/dependabot/go_modules/google.golang.org/protobuf-1.34.2 
build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2
 2024-06-12 11:18:23 -04:00
Andy Feller
7d36c2d51f
Merge pull request #9192 from cli/dependabot/go_modules/github.com/gorilla/websocket-1.5.2 
build(deps): bump github.com/gorilla/websocket from 1.5.1 to 1.5.2
 2024-06-12 11:01:33 -04:00
Andy Feller
7cd4a15e7c
Merge pull request #9175 from cli/dependabot/github_actions/goreleaser/goreleaser-action-6 
build(deps): bump goreleaser/goreleaser-action from 5 to 6
 2024-06-12 10:55:12 -04:00
dependabot[bot]
945b6682c8
build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2 
Bumps google.golang.org/protobuf from 1.34.1 to 1.34.2.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-11 14:22:24 +00:00
dependabot[bot]
1a470b3df8
build(deps): bump github.com/gorilla/websocket from 1.5.1 to 1.5.2 
Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/gorilla/websocket/releases)
- [Commits](https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.2)

---
updated-dependencies:
- dependency-name: github.com/gorilla/websocket
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-10 14:55:11 +00:00
William Martin
e36d8f103d
Merge pull request #9169 from cli/dependabot/github_actions/actions/attest-build-provenance-1.2.0 
build(deps): bump actions/attest-build-provenance from 1.1.2 to 1.2.0
 2024-06-10 15:20:15 +02:00
William Martin
6f558c9e0a
Merge pull request #9179 from AlanD20/bump-go-keyring 
Bump go-keyring to fix keepassxc prompt confirmation
 2024-06-07 10:35:15 +02:00
AlanD20
e91860d3e9
Bump go-keyring to fix keepassxc prompt confirmation 2024-06-07 09:07:53 +02:00
dependabot[bot]
d666248104
build(deps): bump goreleaser/goreleaser-action from 5 to 6 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 5 to 6.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-05 14:34:35 +00:00
Phill MV
58b459fda5
Merge pull request #9172 from cli/phillmv/fix-small-verify-flag-bug 
Replace `--json-result` flag with `--format=json` in the attestation cmd
 2024-06-04 16:37:41 -04:00
Phill MV
e8a13cfed3 replaced deprecated --json-result flag with --format=json in the gh at docstring. 2024-06-04 15:52:54 -04:00
dependabot[bot]
215456e8ae
build(deps): bump actions/attest-build-provenance from 1.1.2 to 1.2.0 
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 1.1.2 to 1.2.0.
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](173725a120...49df96e17e)

---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-04 14:47:16 +00:00
Josh Ward
a10e532898 feat: add -a flag to gh run list 2024-06-03 09:53:34 +01:00
Andy Feller
31a9d083bd
Merge pull request #9151 from hbenali/fix-fedora 
Docs: Specify rpm repository to avoid conflicts with community repositories
 2024-05-30 12:29:36 -04:00
Houssem Ben Ali
fc8b86b4c8
Specify rpm repository to avoid conflicts with community repositories 2024-05-30 17:31:09 +02:00
Meredith Lancaster
cd5562f5ac
Add signer-repo and signer-workflow flags to gh attestation verify (#9137) 
* add signer-repo and signer-workflow flags

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add check for SignerRepo option

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add helper function and comment for clarity

Signed-off-by: Meredith Lancaster <malancas@github.com>

* update flag comment

Signed-off-by: Meredith Lancaster <malancas@github.com>

* reference correct field

Signed-off-by: Meredith Lancaster <malancas@github.com>

* move function to more relevant file

Signed-off-by: Meredith Lancaster <malancas@github.com>

* Update pkg/cmd/attestation/verify/verify.go

Co-authored-by: Zach Steindler <steiza@github.com>

* Update pkg/cmd/attestation/verify/verify.go

Co-authored-by: Zach Steindler <steiza@github.com>

* make all reusable workflow flags mutually exclusive

Signed-off-by: Meredith Lancaster <malancas@github.com>

* accept signer workflow without host

Signed-off-by: Meredith Lancaster <malancas@github.com>

* support client optionally providing host with signer workflow flag

Signed-off-by: Meredith Lancaster <malancas@github.com>

* comment

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add tests for parsing signer workflow

Signed-off-by: Meredith Lancaster <malancas@github.com>

---------

Signed-off-by: Meredith Lancaster <malancas@github.com>
Co-authored-by: Zach Steindler <steiza@github.com>
 2024-05-30 07:40:55 -06:00
William Martin
22991ab6be
Merge pull request #9143 from cli/andyfeller-patch-1 
Ensure signed RPMs have attestations
 2024-05-30 10:53:18 +02:00
Andy Feller
fe880a3015
Ensure signed RPMs have attestations 
Thanks to @malancas for highlighting issue ordering of RPM signing and attestations!  Now, all artifacts should have attestations appropriately generated
 2024-05-29 16:18:18 -04:00
Andy Feller
faef2ddd81
Merge pull request #9140 from cli/andyfeller/cli-9139-sign-pkg-predocs 
Clarify Mac OS Installer packages are unsigned
 2024-05-29 10:43:36 -04:00
Andy Feller
2bb99001cd Clarify Mac OS Installer packages are unsigned 
Relates #9139

This commit clarifies Mac OS Installer packages are unsigned due to additional work to obtain an Apple Developer ID Installer-signing identity.
 2024-05-29 10:31:39 -04:00
William Martin
3620e791dc
Merge pull request #9136 from cli/wm/fix-pkgmacos-completions 
Build completions during release on macos
 2024-05-29 10:55:51 +02:00
William Martin
f3f93c6f74 Build completions during release on macos 2024-05-28 19:08:05 +02:00
William Martin
f1dedc9abb
Merge pull request #9124 from cli/dependabot/go_modules/github.com/gabriel-vasile/mimetype-1.4.4 
build(deps): bump github.com/gabriel-vasile/mimetype from 1.4.3 to 1.4.4
 2024-05-28 18:11:55 +02:00
Meredith Lancaster
e55093347c
Add build provenance for gh CLI releases (#9087) 
Signed-off-by: Meredith Lancaster <malancas@github.com>
 2024-05-28 18:10:50 +02:00
Meredith Lancaster
8d0518645f
Add integration tests for gh attestation verify shared workflow use case (#9107) 
* add initial shared workflow use case tests and test data

Signed-off-by: Meredith Lancaster <malancas@github.com>

* add more shared workflow tests

Signed-off-by: Meredith Lancaster <malancas@github.com>

* cleanup tests

Signed-off-by: Meredith Lancaster <malancas@github.com>

* pr feedback, replace shared with reusable

Signed-off-by: Meredith Lancaster <malancas@github.com>

* use demo repository with reusable workflow tests

Signed-off-by: Meredith Lancaster <malancas@github.com>

---------

Signed-off-by: Meredith Lancaster <malancas@github.com>
 2024-05-28 07:13:34 -06:00
Andy Feller
1bc3cfa460
Merge pull request #7555 from paulober/feature-macos-pkg-installer 
Add macOS pkg installer to deployment (#7554)
 2024-05-24 15:35:52 -04:00
Andy Feller
bdc40a00d4 Update readme about MacOS pkg 2024-05-24 15:26:37 -04:00
Andy Feller
279d53af98 Remove v prefix when pkgmacos is called 
Existing Mac OS release artifacts use the tag name / version in the file name but drop the `v` prefix.  This does the same for the Mac OS installer.
 2024-05-24 15:09:40 -04:00