d5efaf95c3
chore(deps): Bump anchore/scan-action from 3.6.1 to 3.6.4 ( #3877 )
...
Bumps [anchore/scan-action](https://github.com/anchore/scan-action ) from 3.6.1 to 3.6.4.
- [Release notes](https://github.com/anchore/scan-action/releases )
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/anchore/scan-action/compare/v3.6.1...v3.6.4 )
---
updated-dependencies:
- dependency-name: anchore/scan-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2024-02-05 12:35:57 +00:00
9fc7f97950
chore(deps): Bump docker/metadata-action from 5.5.0 to 5.5.1 ( #3878 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 5.5.0 to 5.5.1.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](https://github.com/docker/metadata-action/compare/v5.5.0...v5.5.1 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-06 01:34:20 +13:00
2018be7fdc
chore(deps): Bump anchore/scan-action from 3.6.0 to 3.6.1 ( #3848 )
...
Bumps [anchore/scan-action](https://github.com/anchore/scan-action ) from 3.6.0 to 3.6.1.
- [Release notes](https://github.com/anchore/scan-action/releases )
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/anchore/scan-action/compare/v3.6.0...v3.6.1 )
---
updated-dependencies:
- dependency-name: anchore/scan-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Georg Lauterbach <44545919+georglauterbach@users.noreply.github.com>
2024-01-29 14:08:59 +01:00
204825fa5a
ci(fix): `docs-preview-deploy.yml` - Use the correct setting names ( #3843 )
2024-01-28 20:41:19 +13:00
a8ccd54da5
ci: `docs-preview-deploy.yml` - Switch to official `download-artifact` action ( #3838 )
...
v4 of the official action now supports this use-case.
2024-01-28 01:50:01 +13:00
315f33c9fe
chore(deps): Bump anchore/scan-action from 3.5.0 to 3.6.0 ( #3808 )
...
Bumps [anchore/scan-action](https://github.com/anchore/scan-action ) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/anchore/scan-action/releases )
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/anchore/scan-action/compare/v3.5.0...v3.6.0 )
---
updated-dependencies:
- dependency-name: anchore/scan-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Georg Lauterbach <44545919+georglauterbach@users.noreply.github.com>
2024-01-23 15:36:53 +13:00
37f4c853b2
chore(deps): Bump actions/cache from 3 to 4 ( #3807 )
2024-01-22 21:02:49 +01:00
068ceb1d1a
docs: misc improvements ( #3773 )
...
* correct misc typos
We also seem to be favoring `behavior` over `behaviour`.
* bump MkDocs version
* resolve errors shown when buildg docs
* improve the Rspamd page
* behaviour -> behavior
Streamline the usage of this word. The majority used behavior, so I
opted to go with this way of spelling it.
* Apply suggestions from code review
---------
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2024-01-16 08:38:08 +00:00
2bf5234250
chore(deps): Bump anchore/scan-action from 3.4.0 to 3.5.0 ( #3782 )
...
Bumps [anchore/scan-action](https://github.com/anchore/scan-action ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/anchore/scan-action/releases )
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/anchore/scan-action/compare/v3.4.0...v3.5.0 )
---
updated-dependencies:
- dependency-name: anchore/scan-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-16 10:18:13 +13:00
8d8936dfac
chore(deps): Bump anchore/scan-action from 3.3.8 to 3.4.0 ( #3761 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-08 17:40:50 +00:00
ac25fb495b
chore(deps): Bump docker/metadata-action from 5.4.0 to 5.5.0 ( #3762 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-08 18:39:28 +01:00
03052a65b8
ci: Allow lint workflow to be manually triggered ( #3714 )
...
* ci: Allow lint workflow to be manually triggered
Without this a different event must occur to trigger the workflow, which is inconvenient for automated PRs.
2023-12-19 18:59:59 +13:00
ca2c53dde7
ci: Avoiding linting `CONTRIBUTORS.yml` ( #3705 )
...
The file is managed by the `contributors.yml` workflow, no need for linting to be triggered on PRs for that change.
This should ideally skip the required check status for the lint workflow which cannot trigger implicitly for automated PRs. If this doesn't work the change should be reverted.
2023-12-19 14:41:07 +13:00
ee87291225
chore(deps): Bump dawidd6/action-download-artifact from 2 to 3 ( #3707 )
2023-12-19 01:29:15 +01:00
5015dc80b1
chore(deps): Bump actions/upload-artifact from 3 to 4 ( #3708 )
2023-12-19 00:16:38 +01:00
b9f7ff86de
chore(deps): Bump docker/metadata-action from 5.3.0 to 5.4.0 ( #3710 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](https://github.com/docker/metadata-action/compare/v5.3.0...v5.4.0 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 15:50:56 +01:00
083e464084
chore(deps): Bump github/codeql-action from 2 to 3 ( #3709 )
2023-12-18 14:05:37 +01:00
bbed3f6608
chore(deps): Bump actions/stale from 8 to 9 ( #3696 )
2023-12-11 21:36:30 +01:00
1ff8d57ea1
chore(deps): Bump anchore/scan-action from 3.3.7 to 3.3.8 ( #3682 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-04 20:34:20 +00:00
7ce745a82d
chore(deps): Bump docker/metadata-action from 5.0.0 to 5.3.0 ( #3683 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-04 21:32:49 +01:00
19e96b5131
fix: `update-check.sh` should query GH Releases ( #3666 )
...
* fix: Source `VERSION` from image ENV
Now CI builds triggered from tagged releases will always have the correct version. No need for manually updating a separate file.
* fix: Query latest GH release tag
Compare to the remote GH release tag published, rather than contents of a `VERSION` file.
`VERSION` file remains in source for now as prior releases still rely on it for an update notification.
* chore: Switch from `yq` to `jaq`
- Can more easily express a string subslice.
- Lighter weight: 9.3M vs 1.7M.
- Drawback, no YAML input/output support.
If `yq` is preferred, the `v` prefix could be removed via BASH easily enough.
* chore: Add entry to `CHANGELOG.md`
* ci: `VERSION` has no relevance to `:edge`
* docs: Update build guide + simplify `make build`
---------
Co-authored-by: Georg Lauterbach <44545919+georglauterbach@users.noreply.github.com>
2023-11-30 10:21:26 +13:00
b037288e5a
chore(deps): Bump anchore/scan-action from 3.3.6 to 3.3.7 ( #3667 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-27 14:22:17 +01:00
68a43eb497
ci: push `:edge` when `VERSION` is updated ( #3662 )
...
Previously, we did not run the workflow on push on `master` when a
release happened because the push on master is guarded by a check on
which files were changed.
With this change, I added `VERSION` to the list of files to consider
when updating `:edge`.
2023-11-26 21:44:47 +01:00
042bd872bf
chore(deps): Bump docker/build-push-action from 5.0.0 to 5.1.0 ( #3645 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-20 14:03:32 +01:00
f5a7e9d119
contributors: fix spelling & remove dedicated AllContributors section ( #3638 )
...
With the latest `contributors.yml` workflow, everyone is included in the
list of contributors. Hence, we do not need the extra section anymore.
2023-11-14 16:15:39 +01:00
eb7b1882e1
update `contributors.yml` action
2023-10-22 17:42:01 +02:00
539a7bc3bb
chore(deps): Bump docker/login-action from 2 to 3 ( #3543 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 2 to 3.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-19 03:01:59 +00:00
285266a6aa
chore(deps): Bump docker/metadata-action from 4.6.0 to 5.0.0 ( #3544 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 4.6.0 to 5.0.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md )
- [Commits](https://github.com/docker/metadata-action/compare/v4.6.0...v5.0.0 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-19 02:59:39 +00:00
af65189a82
chore(deps): Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 ( #3542 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](https://github.com/docker/setup-qemu-action/compare/v2.2.0...v3.0.0 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-19 02:57:36 +00:00
c425cdddc5
chore(deps): Bump docker/build-push-action from 4.2.1 to 5.0.0 ( #3541 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 4.2.1 to 5.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v4.2.1...v5.0.0 )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2023-09-19 02:55:20 +00:00
62f4544dd2
chore(deps): Bump docker/setup-buildx-action from 2.10.0 to 3.0.0 ( #3540 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.10.0...v3.0.0 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-19 14:53:39 +12:00
8329fa19cc
chore(deps): Bump myrotvorets/set-commit-status-action ( #3534 )
...
Bumps [myrotvorets/set-commit-status-action](https://github.com/myrotvorets/set-commit-status-action ) from 1.1.7 to 2.0.0.
- [Release notes](https://github.com/myrotvorets/set-commit-status-action/releases )
- [Commits](https://github.com/myrotvorets/set-commit-status-action/compare/v1.1.7...v2.0.0 )
---
updated-dependencies:
- dependency-name: myrotvorets/set-commit-status-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-12 10:50:55 +12:00
fc3229f8d2
chore(deps): Bump docker/build-push-action from 4.1.1 to 4.2.1 ( #3533 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-11 18:58:36 +02:00
c5420530b7
chore(deps): Bump actions/checkout from 3 to 4 ( #3525 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-04 17:07:38 +02:00
19b72aead3
docs: Update docs builder image ( #3516 )
...
- Bump to release `9.2.x`
- Image now has `MAJOR.MINOR` tag support to pull latest `PATCH` versions.
2023-08-29 23:33:39 +12:00
855d9acb53
chore(deps): Bump docker/setup-buildx-action from 2.9.1 to 2.10.0 ( #3511 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-28 19:33:05 +02:00
0dc862156f
chore(deps): Bump nwtgck/actions-netlify from 2.0 to 2.1 ( #3495 )
...
Bumps [nwtgck/actions-netlify](https://github.com/nwtgck/actions-netlify ) from 2.0 to 2.1.
- [Release notes](https://github.com/nwtgck/actions-netlify/releases )
- [Changelog](https://github.com/nwtgck/actions-netlify/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/nwtgck/actions-netlify/compare/v2.0...v2.1 )
---
updated-dependencies:
- dependency-name: nwtgck/actions-netlify
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-22 10:30:10 +12:00
7d5c2736ce
chore(deps): Bump docker/setup-buildx-action from 2.9.0 to 2.9.1 ( #3430 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-17 21:48:19 +02:00
18f8d2573b
chore(deps): Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 ( #3421 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-10 19:25:14 +02:00
ee7c4b1ede
chore(deps): Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 ( #3414 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.7.0...v2.8.0 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-03 14:54:14 +02:00
32c3ecd00e
chore(deps): Bump anchore/scan-action from 3.3.5 to 3.3.6 ( #3406 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-26 20:01:26 +02:00
4dae83b256
chore(deps): Bump peter-evans/create-pull-request from 5.0.1 to 5.0.2 ( #3399 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 5.0.1 to 5.0.2.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v5.0.1...v5.0.2 )
---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-20 09:43:57 +02:00
e380cc3065
chore(deps): Bump docker/setup-buildx-action from 2.6.0 to 2.7.0 ( #3398 )
2023-06-19 23:21:13 +02:00
59bcab6127
chore(deps): Bump docker/build-push-action from 4.1.0 to 4.1.1 ( #3400 )
2023-06-19 23:14:09 +02:00
7a5dfb71c2
chore(deps): Bump docker/metadata-action from 4.5.0 to 4.6.0 ( #3401 )
2023-06-19 23:03:45 +02:00
8fbc58cf5d
chore(deps): Bump docker/setup-qemu-action from 2.1.0 to 2.2.0 ( #3389 )
2023-06-12 19:19:35 +02:00
7b1a712c91
chore(deps): Bump docker/metadata-action from 4.4.0 to 4.5.0 ( #3387 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-12 17:13:51 +00:00
8e87a4d845
chore(deps): Bump docker/setup-buildx-action from 2.5.0 to 2.6.0 ( #3388 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-12 17:12:00 +00:00
7bf772e2d6
chore(deps): Bump docker/build-push-action from 4.0.0 to 4.1.0 ( #3390 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-12 19:10:10 +02:00
d1fb8f5958
chore(deps): Bump myrotvorets/set-commit-status-action from 1.1.6 to 1.1.7 ( #3377 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 16:52:34 +02:00
da8d3654b8
add dispatch to scheduled build workflow
2023-05-15 20:36:08 +02:00
e82f0f2527
ci: fix scheduled build permissions ( #3345 )
2023-05-15 20:35:00 +02:00
9577ab5033
chore(deps): Bump peter-evans/create-pull-request from 5.0.0 to 5.0.1 ( #3314 )
2023-05-08 15:07:40 +02:00
869caf35ec
ci: fix contributors workflow (again) ( #3304 )
2023-05-02 20:52:54 +02:00
cd7d9b1977
update `contributors.yml` ( #2227 )
2023-04-29 09:03:18 +02:00
223c766320
chore(deps): Bump docker/metadata-action from 4.3.0 to 4.4.0 ( #3287 )
...
Bumps [docker/metadata-action](https://github.com/docker/metadata-action ) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/docker/metadata-action/releases )
- [Commits](https://github.com/docker/metadata-action/compare/v4.3.0...v4.4.0 )
---
updated-dependencies:
- dependency-name: docker/metadata-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-24 15:02:26 +02:00
ff087837bd
fix: GH docs update workflow ( #3241 )
2023-04-10 11:54:52 +02:00
cf8e555212
docs: miscellaneous improvements ( #3219 )
...
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2023-04-08 11:54:16 +02:00
637d27efc7
chore(deps): Bump peaceiris/actions-gh-pages from 3.9.2 to 3.9.3 ( #3216 )
2023-04-03 15:22:52 +02:00
69031b969d
chore(deps): Bump anchore/scan-action from 3.3.4 to 3.3.5 ( #3217 )
2023-04-03 15:00:45 +02:00
1c231053d0
chore(deps): Bump actions/stale from 7 to 8 ( #3205 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-28 01:28:18 +02:00
e12b032f77
docs: Change `edge` version links to `latest` + fix links intended as relative not absolute ( #3190 )
...
* docs: change some absolute links to relative links
* docs: change most hard-coded links to `edge` to point to `latest`
* Apply suggestions from code review
* docs: revert 404 page to edge and change canonical link to `latest
---------
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
Co-authored-by: Georg Lauterbach <44545919+georglauterbach@users.noreply.github.com>
2023-03-22 23:43:10 +13:00
d770c67a2d
ci(docs): Update `latest` symlink via docs-production-deploy workflow ( #3183 )
2023-03-20 11:37:24 +13:00
e890ba46a3
chore(deps): Bump docker/setup-buildx-action from 2.4.1 to 2.5.0 ( #3176 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.4.1 to 2.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.4.1...v2.5.0 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-14 11:45:27 +13:00
aa4d4fe315
ci(fix): Only apply permissions at the job level ( #3142 )
...
If permissions are specified at the workflow level, any that are not explicitly set became `none` and jobs cannot request that to change.
Permissions are therefore scoped to the job itself.
2023-03-03 15:32:00 +01:00
4e82d4de54
ci/docs: add vulnerability scanning workflow & security policy ( #3106 )
2023-02-23 08:53:12 +01:00
16f46c1e14
chore(deps): Bump docker/setup-buildx-action from 2.4.0 to 2.4.1 ( #3087 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.4.0...v2.4.1 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-15 11:52:40 +13:00
646e010cb7
ci(fix): Temporarily avoid specifying `provenance` ( #3072 )
...
* ci(fix): Temporarily avoid specifying `provenance`
As the test workflow does not use the `docker-container` buildx driver, it uses the Docker Engine bundled BuildKit version which until v23 release does not support attestations.
Likewise the current buildx version in CI is `0.10.0` which does not respect `--provenance false`, the presence of the option appears to trigger a BuildKit version compatibility check and fail early before it considers the value of the option.
* chore: Use buildx `docker-container` driver instead
An alternative solution to omitting `provenance: false` (_not supported by buildx 0.10.0 with default `docker` driver when Docker Engine bundles BuildKit less than 0.10.0, which is the case prior to the Docker Engine v23 release_).
This approach provides more consistency with the build and publish workflows by using the same buildx `docker-container` driver (_and thus newer BuildKit, enabling support for `provenance: false`_).
* chore: Revise test workflow inline docs
Buildx `docker-container` driver is not needed here, but it does seem like it improves cache-hit ratio when building from the retrieved build cache (from the earlier build workflow). Possibly due to building with the same BuildKit version.
2023-02-09 22:33:50 +13:00
9e9f8026d9
chore(deps): Bump docker/build-push-action from 3.3.0 to 4.0.0 ( #3066 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: casperklein <casperklein@users.noreply.github.com>
2023-02-08 00:07:56 +01:00
4efbbbe571
remove CI ENV & disable fail-fast ( #3065 )
2023-02-06 23:49:21 +01:00
6a5bc44b73
chore(deps): Bump docker/setup-buildx-action from 2.2.1 to 2.4.0 ( #3042 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-30 21:12:16 +01:00
bb758ea34d
update & streamline GH Actions runner images ( #3025 )
2023-01-28 13:53:17 +01:00
d7dee5d8a4
chore(deps): Bump peaceiris/actions-gh-pages from 3.9.1 to 3.9.2 ( #3021 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-23 23:21:42 +01:00
e64827e4b2
chore(deps): Bump docker/build-push-action from 3.2.0 to 3.3.0 ( #3008 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-16 17:33:09 +00:00
dbe0d8c14f
chore(deps): Bump docker/metadata-action from 4.1.1 to 4.3.0 ( #3009 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-16 18:31:40 +01:00
1650cdf76f
chore: Remove the Makefile `backup` target ( #3000 )
...
* chore: Remove `backup` target from Makefile
- The `backup` target is no longer serving any value to us. It was made redundant with changes added in Oct 2020.
- `clean` target inline docs revised.
- `.gitignore` remove test lines that are no longer valid.
* chore: Parallel test target split to multi-line
* tests(fix): Test `setup.sh` with temporary config dir
The `no_containers.bats` test has many redundant test cases already covered by `setup-cli`. They're basically identical. Removed all but one.
This removes some config dirs that were being explicitly created instead of using the test helper to generate a directory that can be used to test the `-p` option instead.
* ci: Ensure tests are run when `Makefile` is modified
2023-01-13 10:13:42 +13:00
7a6c2d375a
chore(deps): Bump peaceiris/actions-gh-pages from 3.9.0 to 3.9.1 ( #2992 )
2023-01-09 13:32:05 +01:00
a430116e63
chore(deps): Bump actions/stale from 6 to 7 ( #2960 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-26 23:01:08 +01:00
edaeb89c9b
ci: Drop support for ARM v7 platform ( #2943 )
...
This platform has had a deprecation notice for 6 months. It is not worth continuing to maintain support for.
2022-12-23 14:56:36 +13:00
a4dee343d6
chore(deps): Bump myrotvorets/set-commit-status-action ( #2931 )
...
Bumps [myrotvorets/set-commit-status-action](https://github.com/myrotvorets/set-commit-status-action ) from 1.1.5 to 1.1.6.
- [Release notes](https://github.com/myrotvorets/set-commit-status-action/releases )
- [Commits](https://github.com/myrotvorets/set-commit-status-action/compare/1.1.5...1.1.6 )
---
updated-dependencies:
- dependency-name: myrotvorets/set-commit-status-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2022-12-13 08:18:35 +13:00
7772e8ec3e
chore(deps): Bump nwtgck/actions-netlify from 1.2 to 2.0 ( #2930 )
...
Bumps [nwtgck/actions-netlify](https://github.com/nwtgck/actions-netlify ) from 1.2 to 2.0.
- [Release notes](https://github.com/nwtgck/actions-netlify/releases )
- [Changelog](https://github.com/nwtgck/actions-netlify/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/nwtgck/actions-netlify/compare/v1.2...v2.0 )
---
updated-dependencies:
- dependency-name: nwtgck/actions-netlify
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-13 08:16:57 +13:00
7527e3db8c
chore(deps): Bump peterjgrainger/action-create-branch from 2.3.0 to 2.4.0 ( #2924 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-05 19:59:50 +01:00
f166036fe4
chore(deps): Bump peterjgrainger/action-create-branch from 2.2.0 to 2.3.0 ( #2911 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Casper <casperklein@users.noreply.github.com>
2022-12-03 22:18:08 +00:00
2cd534a1ab
tests(CI): Adjust Makefile & GHA workflow to support new test layout
...
These updates support running tests that have been relocated into `serial` and `parallel/set*` directories.
- `make tests` now calls the two make targets beneath it. The only difference is that `serial` continues the "1 test at a time" approach used prior to this PR, while the `parallel` target increases the `--jobs` arg to run multiple tests concurrently (_configured by `PARALLEL_JOBS`_).
- The `test/%` target leverages Bash syntax magic to ease running single tests without providing the exact path.
- This syntax also supports providing multiple test names (eg: `make test/clamav,template`) to run.
- `**` (globstar) allows for future improvements that can group multiple test files into sub-directories by their scope (eg: anti-spam, ssl, etc).
---
chore: Add `shopt -s globstar` to other targets
I realized that other targets should have this as well in case it is not set.
It is better to be more explicit here than to have weird errors due to `**` not expanding properly.
---
fix(Makefile): Add back `.PHONY` targets
I encountered `make` telling me the target was already up-to-date, which of course is nonsense.
I therefore added back the `.PHONY` targets to ensure tests are always run.
---
docs: Added instructions for running a single test
See https://github.com/docker-mailserver/docker-mailserver/pull/2857/files#r1008582760
2022-11-26 14:52:42 +13:00
2bc4078e35
ci: update to new output format on GH actions ( #2892 )
2022-11-07 09:31:29 +01:00
776b8c1192
chore(deps): Bump docker/setup-qemu-action from 2.0.0 to 2.1.0 ( #2880 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Casper <casperklein@users.noreply.github.com>
2022-10-31 18:23:24 +01:00
cfb87d4c86
chore(deps): Bump docker/setup-buildx-action from 2.0.0 to 2.2.1 ( #2879 )
2022-10-31 15:58:17 +01:00
d8f4b74715
chore(deps): Bump docker/metadata-action from 4.1.0 to 4.1.1 ( #2860 )
2022-10-24 19:44:39 +02:00
907fd8b09e
chore(deps): Bump peaceiris/actions-gh-pages from 3.8.0 to 3.9.0 ( #2861 )
2022-10-24 19:42:28 +02:00
b60b4015ab
chore(deps): Bump docker/build-push-action from 3.1.1 to 3.2.0 ( #2835 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Casper <casperklein@users.noreply.github.com>
2022-10-17 17:54:27 +00:00
70493092ff
chore(deps): Bump docker/metadata-action from 4.0.1 to 4.1.0 ( #2836 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-17 19:52:35 +02:00
488b256e95
ci: misc test enhancements ( #2815 )
...
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2022-10-14 09:48:28 +02:00
2da80bd5be
chore(deps): Bump actions/stale from 5 to 6 ( #2800 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v5...v6 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-26 21:39:07 +02:00
d6c7c2b3bc
adjusting semver tag of a step in publish workflow ( #2785 )
...
This is a critical fix for https://github.com/docker-mailserver/docker-mailserver/actions/runs/3095956307/jobs/5011369215 so we can properly publish images again.
2022-09-21 20:07:10 +02:00
7fe6748637
add `outputs` to `workflow_call` on `generic_build` ( #2780 )
...
Looking at
https://docs.github.com/en/actions/using-workflows/reusing-workflows#using-outputs-from-a-reusable-workflow ,
we can see that we need to manually set the outputs for a whole generic
workflow. This commit fixes an issue where the cache key was not set
properly as the input was empty (because the output of the previous job
was not actually set).
2022-09-21 10:18:18 +02:00
32c508aa2a
ci: enhance build process ( #2755 )
...
This new script is a clean way of handling the installation of packages.
I think the huge `RUN` command in `Dockerfile` was hard to read and
maintain.
Using a script is a non-issue, as the image is rebuilt whenever the
script is touched.
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2022-09-21 09:31:28 +02:00
6113b99881
ci: adjust build arguments ( #2772 )
...
The build arguments `VCS_REF` and `VCS_VER` were renamed and given
proper values according to their names.
1. `VCS_REVISION` holds the current SHA sum of the (git) HEAD pointer
2. `VCS_VERSION` now holds the contents of the `VERSION` file, i.e. a
semver version tag (one can now inspect the image and find a proper
version tag in the `org.opencontainers.image.version` label)
The build arguments were given defaults in order to allow the
`generic_build` and `generic_test` workflows to omit them (as they are
not need there anyways). When publishing images, this is fina as the
cache will rebuild almost all of the image except the last few layers
which are `LABEL`s anyways.
2022-09-16 19:23:33 +02:00
f8e1bb0f42
ci: improve GitHub Action CI with re-usable workflows ( #2753 )
...
Mew re-usable workflows are introduced to handle building, testing and publishing the container
image in a uniform and easy way. Now, the `scheduled_builds`, `default_on_push`
and a part of the `test_merge_requests` workflow can use the same code
for building, testing and publishing the container images. This is DRY.
Co-authored-by: Brennan Kinney <5098581+polarathene@users.noreply.github.com>
2022-09-09 11:12:17 +02:00
21fbbfabe1
ci: Better build caching for CI ( #2742 )
...
* ci: Cache builds by splitting into two jobs
For the cache to work properly, we need to derive a cache key from the build context (files that affect the Dockerfile build) instead of the cache key changing by commit SHA.
We also need to avoid a test suite failure from preventing the caching of a build, thus splitting into separate jobs.
This first attempt used `upload-artifact` and `download-artifact` to transfer the built image, but it has quite a bit of overhead and prevented multi-platform build (without complicating the workflow further).
* ci: Transfer to dependent job via cache only
While `download-artifact` + `docker load` is a little faster than rebuilding the image from cached layers, `upload-artifact` takes about 2 minutes to upload the AMD64 (330MB) tar image export (likely due to compression during upload?).
The `actions/cache` approach however does not incur that hit and is very quick (<10 secs) to complete it's post upload work. The dependent job still gets a cache-hit, and the build job is able to properly support multi-platform builds.
Added additional notes about timing and size of including ARM builds.
* ci: Move Dockerfile ARG to end of build
When the ARG changes due to commit SHA, it invalidates all cache due to the LABEL layers at the start. Then any RUN layers implicitly invalidate, even when the ARG is not used.
Introduced basic multi-stage build, and relocated the container config / metadata to the end of the build. This avoids invalidating expensive caching layers (size and build time) needlessly.
2022-08-28 11:42:42 +12:00
8a4329ae9f
scripts: revised linting script ( #2737 )
...
The new version uses our `log.sh` helper to simplify logging
significantly. Moreover, the script was adjusted to the current style
and the GitHub workflow was streamlined. The workflow is ot providing
the version anymore (which was useless anyway), and has been compacted.
2022-08-22 16:22:46 +02:00
dependabot[bot]
Brennan Kinney
Georg Lauterbach
Jack Pearson