STACKITGit/cli
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
5905 commits 87 branches 0 tags 160 MiB
Commit graph

213 commits

Author SHA1 Message Date
Sam Coe
0968ac6225
Use secret public key instead of file (#6204) 2022-09-06 17:26:09 +04:00
Sam Coe
39df244d2d
Dont hardcode keygrip (#6202) 2022-09-06 12:59:51 +00:00
Mislav Marohnić
6703677a95
Stop bumping winget manifest as part of release automation (#5699) 2022-05-24 09:57:24 +02:00
dependabot[bot]
edf6f46dad
Bump goreleaser/goreleaser-action from 2 to 3 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-23 14:33:44 +00:00
Sam Coe
06fb78aa26
Re-enable linters now that golangci-lint has been updated (#5615) 2022-05-11 16:57:57 +02:00
Sam Coe
597eb16a83
Upgrade to go 1.18 (#5542) 2022-05-09 18:46:19 +02:00
Sam Coe
477d999281
Document linux distribution updating (#5531) 2022-05-02 15:56:45 +02:00
dependabot[bot]
2ef6d83939
Bump github/codeql-action from 1 to 2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-25 14:24:46 +00:00
dependabot[bot]
3427d17401
Bump actions/setup-go from 2 to 3 (#5425) 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-14 09:39:05 +02:00
Mislav Marohnić
5f4152fbfa Bump winget-create 
[ci skip]
 2022-04-13 15:19:54 +02:00
dependabot[bot]
b090ef0578
Bump actions/cache from 2 to 3 
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-21 14:27:30 +00:00
Mislav Marohnić
d4ead71d06
Merge pull request #5298 from cli/bump-golangci-lint 
Bump golangci-lint version
 2022-03-14 15:27:37 +01:00
neilnaveen
07e0e52edd
Fixed permission for workflow (#5279) 
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

Co-authored-by: Mislav Marohnić <mislav@github.com>
 2022-03-14 14:18:21 +01:00
Mislav Marohnić
9278f51aa8 Bump golangci-lint version 2022-03-11 14:58:15 +01:00
Mislav Marohnić
cb7315c85d Re-initialize modules cache in CI 2022-03-10 18:29:42 +01:00
dependabot[bot]
0cce0e1543
Bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-02 14:29:49 +00:00
Mislav Marohnić
3e0db567e8
Rotate our Windows signing certificates (#5196) 
- The certificate pfx file is now read from WINDOWS_CERT_PFX
- The password to decode the pfx is in WINDOWS_CERT_PASSWORD
- Quit reading from desktop-secrets repo
- Switch osslsigncode to take in pfx instead of individual certs
- 🔥 obsolete setup scripts
 2022-02-15 17:23:39 +01:00
Heath Stewart
bad38fdcfb Remove prerelease metadata from ProductVersion 2022-01-20 15:22:56 -08:00
Heath Stewart
7ecf66a7ea
Use forward slashes for project path 2022-01-20 14:36:41 -08:00
Heath Stewart
9aa81c2c04
Switch parameter prefix for use in bash 2022-01-20 12:24:35 -08:00
Heath Stewart
cc0a650031
Use EXE path for msbuild.exe 2022-01-20 11:34:57 -08:00
nate smith
e32d0ea307 spaces 2022-01-20 13:07:49 -06:00
nate smith
6e56a87eb1 attempt to use an absolute path to msbuild 2022-01-20 12:55:42 -06:00
nate smith
44f9d03a85 Merge remote-tracking branch 'origin/trunk' into issue703 2022-01-20 12:11:26 -06:00
Matthew Preble
45adc4ad76 Migrate to osslsigncode. 2022-01-13 13:37:57 -06:00
nate smith
e56c78a364 Sign Windows .exes in a post-build hook 2022-01-13 13:37:57 -06:00
Mislav Marohnić
171482970f Cache Go modules between CI runs 2022-01-13 13:17:11 +01:00
nate smith
9b1be750d2 oops 2021-11-24 16:45:27 -06:00
nate smith
1ba03938a1 automatically label non-core issues 2021-11-24 16:32:07 -06:00
nate smith
9326824e9e self-assign core team PRs 2021-11-24 16:31:17 -06:00
nate smith
0e52f429c0 label external PRs as such 2021-11-24 16:30:31 -06:00
Mislav Marohnić
1464a8a0f3 Generate release notes using the new API 
https://docs.github.com/en/rest/reference/repos#generate-release-notes-content-for-a-release
 2021-10-14 20:22:38 +02:00
Mislav Marohnić
53479c712c
Merge pull request #4510 from cli/dependabot-patch 
Configure Dependabot to only consider patch version bumps
 2021-10-13 21:01:39 +02:00
Mislav Marohnić
127e2dae99 Configure Dependabot to only consider patch version bumps 
https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates#ignore
 2021-10-13 20:06:19 +02:00
Mislav Marohnić
2819deb15b Avoid applying human-oriented PR automation to PRs from bots 2021-10-11 11:33:44 +02:00
Mislav Marohnić
dabaa5ad7d CodeQL-Dependabot compatibility 
Configure the CodeQL workflow to avoid running for pushes on all pull
requests because that causes problems with Dependabot PRs.

https://github.com/cli/cli/pull/4475/checks?check_run_id=3857074760
 2021-10-11 11:27:54 +02:00
flying-cow
706dede7ac Enable dependabot to get security updates and if needed version updates on dependencies 
https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically

Having knowledge about vulnerabilities of the dependencies helps the project owners decide on their dependencies security posture to make decisions.

If the project decides to get updates only on security updates and not on any version updates then setting these options would not open any PR 's open-pull-requests-limit: 0
 2021-10-10 19:41:30 -05:00
Mislav Marohnić
2f45173370 Publish docs site using a deploy key instead of PAT 
I'd like to decommission SITE_GITHUB_TOKEN as it's a PAT that has write
access to all my `github/*` repositories. Instead, I've created a deploy
key that only has access to `github/cli.github.com`.

    ssh-keygen -t ed25519 -C "gh docs push" -N "" -f ~/.ssh/gh-docs-publish
    gh repo -R github/cli.github.com deploy-key add ~/.ssh/gh-docs-publish.pub

    # testing:
    GIT_SSH_COMMAND='ssh -i $HOME/.ssh/gh-docs-publish' git push ...
 2021-09-13 16:30:40 +02:00
Heath Stewart
2fa3de9ba4 Resolve PR feedback 2021-09-07 23:02:59 -07:00
Heath Stewart
cb599af1a3 Make sure correct step output is set 
Also simplifies directories for an always-release binary.
 2021-09-05 09:15:36 -07:00
Heath Stewart
5fad092b9e Refactor Windows Installer setup 
Resolves #703 along with several other issues:

* Build an x64 MSI for an x64 executable. This means the binary is installed to C:\Program Files, by default, rather than C:\Program Files (x86) without the ability to redirect it to 64-bit locations.
* Environment change to PATH is not system-wide, which for a per-machine install it should be so all users who can access the executable have it in their PATH.
* Environment change to PATH is not cleaned up when uninstalled.
* RTF conversion of LICENSE was difficult to read. A simple conversion script is checked in to facilitate regenerating RTF from root LICENSE.
 2021-09-05 01:01:58 -07:00
Mislav Marohnić
eb78ac0dcb Require Go 1.16+ 2021-08-23 18:08:09 +02:00
Robin Neatherway
6ebafb55ae
Extend query suite with quality queries 2021-08-19 15:05:28 +01:00
Mislav Marohnić
5a46c1cab6
Merge pull request #4043 from cli/upgrade-goreleaser 
This reverts commit 85d0447.
 2021-07-28 21:07:29 +02:00
Mislav Marohnić
85d0447a6e
Revert "Update GoReleaser to v0.172.1" 2021-07-20 21:39:50 +02:00
chemotaxis
ab675a33f3 Upgrade GoReleaser 
Now that the config file is updated, upgrade from v0.169.0 to v0.172.1.
 2021-07-01 18:41:13 -04:00
vilmibm
3cc4c40dcb pin goreleaser version 2021-06-29 13:52:10 -05:00
Vishesh Gupta
4d20aa7873
Merge pull request #3801 from Vishesh-Gupta/automate-winget-release 
Automate packaging for Winget
 2021-06-18 15:56:58 +02:00
Param Patidar
c34d017a04
fix project layout link 2021-06-02 12:33:40 +05:30
vilmibm
2d704ba591 bonus: support sid 2021-05-19 16:51:58 -05:00