go/goreleaser
go/goreleaser
1
0
Fork 0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-01-10 03:47:03 +02:00
Code Issues Releases Activity
e21a99a54b
goreleaser/.github/workflows/build.yml

72 lines
2.2 KiB
YAML
Raw Normal View History

chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
name: build
on:
push:
branches:
chore: fmt Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-06-22 00:09:27 +02:00
- "main"
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
pull_request:
chore: avoid running actions when not needed/possible (#3389) - only run the build action when actual go files changed - only run some actions on the main fork to avoid errors
2022-09-20 04:48:20 +02:00
paths:
chore: fmt Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-06-22 00:09:27 +02:00
- "go.*"
- "**/*.go"
- "Taskfile.yml"
- "Dockerfile"
- ".github/workflows/*.yml"
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
feat: keyless signing (#2716) * feat: keyless signing Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: perms Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: rm old pubkey Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: missing experimental flag Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: true keyless Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improve install Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: simplifying Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improvements Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improvements Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: trying to improve docs Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: config Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: package write Signed-off-by: Carlos A Becker <caarlos0@gmail.com>
2021-12-16 18:43:11 +02:00
permissions:
chore: splitting workflows (#3386) split build & release workflows Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2022-09-19 02:31:33 +02:00
contents: read
feat: keyless signing (#2716) * feat: keyless signing Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: perms Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: rm old pubkey Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: missing experimental flag Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: true keyless Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improve install Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: simplifying Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improvements Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: improvements Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * docs: trying to improve docs Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: config Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: package write Signed-off-by: Carlos A Becker <caarlos0@gmail.com>
2021-12-16 18:43:11 +02:00
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
jobs:
chore(ci): govulncheck (#3362) check for vulnerabilities Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2022-09-09 16:36:15 +02:00
govulncheck:
fix: ruleguard and semgrep scans and fixes (#3364) run semgrep-go ruleguard and semgrep scans https://github.com/dgryski/semgrep-go Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2022-09-11 20:32:23 +02:00
uses: caarlos0/meta/.github/workflows/govulncheck.yml@main
semgrep:
uses: caarlos0/meta/.github/workflows/semgrep.yml@main
ruleguard:
uses: caarlos0/meta/.github/workflows/ruleguard.yml@main
chore: minor workflows improvements
2022-09-22 21:00:05 +02:00
with:
chore: fmt Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-06-22 00:09:27 +02:00
args: "-disable largeloopcopy"
chore: splitting workflows (#3386) split build & release workflows Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2022-09-19 02:31:33 +02:00
test:
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
runs-on: ubuntu-latest
feat: multi-arch docker images (#1923) * feat: multi-arch docker images Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * feat: split files Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * docs: manifest Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * refactor: split files Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * test: added some Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * docs: flags Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: fmt Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * fix: diff Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * ci: enable experimental Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com> * ci: multi-arch goreleaser images Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
2020-11-28 21:26:37 +02:00
env:
DOCKER_CLI_EXPERIMENTAL: "enabled"
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
steps:
chore(deps): bump actions/checkout from 4.1.2 to 4.1.3 (#4797) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.2 to 4.1.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v4.1.3</h2> <h2>What's Changed</h2> <ul> <li>Update <code>actions/checkout</code> version in <code>update-main-version.yml</code> by <a href="https://github.com/jww3"><code>@​jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1650">actions/checkout#1650</a></li> <li>Check git version before attempting to disable <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@​jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1656">actions/checkout#1656</a></li> <li>Add SSH user parameter by <a href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1685">actions/checkout#1685</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4.1.2...v4.1.3">https://github.com/actions/checkout/compare/v4.1.2...v4.1.3</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/1d96c772d19495a3b5c517cd2bc0cb401ea0529f"><code>1d96c77</code></a> Add SSH user parameter (<a href="https://redirect.github.com/actions/checkout/issues/1685">#1685</a>)</li> <li><a href="https://github.com/actions/checkout/commit/cd7d8d697e10461458bc61a30d094dc601a8b017"><code>cd7d8d6</code></a> Check git version before attempting to disable <code>sparse-checkout</code> (<a href="https://redirect.github.com/actions/checkout/issues/1656">#1656</a>)</li> <li><a href="https://github.com/actions/checkout/commit/8410ad0602e1e429cee44a835ae9f77f654a6694"><code>8410ad0</code></a> Update <code>actions/checkout</code> version in <code>update-main-version.yml</code> (<a href="https://redirect.github.com/actions/checkout/issues/1650">#1650</a>)</li> <li>See full diff in <a href="https://github.com/actions/checkout/compare/9bb56186c3b09b4f86b1c65136769dd318469633...1d96c772d19495a3b5c517cd2bc0cb401ea0529f">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=4.1.2&new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-22 15:16:48 +02:00
- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v3
docs: unshallow action (#1610) Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
2020-06-16 14:37:11 +02:00
with:
fetch-depth: 0
chore(deps): bump arduino/setup-task from 1.0.3 to 2.0.0 (#4607) Bumps [arduino/setup-task](https://github.com/arduino/setup-task) from 1.0.3 to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/arduino/setup-task/releases">arduino/setup-task's releases</a>.</em></p> <blockquote> <h2>2.0.0</h2> <h2>Migration Guide</h2> <p>The version of the <a href="https://nodejs.org/en/about"><strong>Node.js</strong></a> runtime used to execute the action has been updated from 16 to 20. This could be a breaking change for certain GitHub Actions workflows.</p> <p>If a workflow with dependency on the <strong>arduino/setup-task</strong> action uses only <a href="https://docs.github.com/actions/using-github-hosted-runners/about-github-hosted-runners/about-github-hosted-runners">GitHub-hosted GitHub Actions runners</a>, no changes are required.</p> <p>If the workflow uses a <a href="https://docs.github.com/actions/hosting-your-own-runners/managing-self-hosted-runners/about-self-hosted-runners">self-hosted runner</a>, the workflow run might fail after updating <strong>arduino/setup-task</strong>:</p> <pre lang="text"><code>Error: System.ArgumentOutOfRangeException: Specified argument was out of the range of valid values. (Parameter ''using: node20' is not supported, use 'docker', 'node12' or 'node16' instead.') at GitHub.Runner.Worker.ActionManifestManager.ConvertRuns(IExecutionContext executionContext, TemplateContext templateContext, TemplateToken inputsToken, String fileRelativePath, MappingToken outputs) at GitHub.Runner.Worker.ActionManifestManager.Load(IExecutionContext executionContext, String manifestFile) Error: Fail to load arduino/setup-task/v2/action.yml </code></pre> <p>This means an older runner version that does not provide Node.js 20.x is installed on the runner machine and you must update the runner version.</p> <h2>Changelog</h2> <h4>Breaking</h4> <ul> <li>Update Node.js runtime for action from 16 to 20 (<a href="https://redirect.github.com/arduino/setup-task/issues/919">#919</a>)</li> </ul> <h4>Enhancement</h4> <ul> <li><a href="https://github.com/arduino/compile-sketches/pulls?q=merged%3A2023-01-31..2024-02-05+author%3Aapp%2Fdependabot">Various dependency updates</a></li> </ul> <h2>Full Changeset</h2> <p><a href="https://github.com/arduino/setup-task/compare/1.0.3...2.0.0">https://github.com/arduino/setup-task/compare/1.0.3...2.0.0</a></p> <h2>Contributors</h2> <ul> <li><a href="https://github.com/gdraynz"><code>@​gdraynz</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/arduino/setup-task/commit/b91d5d2c96a56797b48ac1e0e89220bf64044611"><code>b91d5d2</code></a> update readme (<a href="https://redirect.github.com/arduino/setup-task/issues/929">#929</a>)</li> <li><a href="https://github.com/arduino/setup-task/commit/f2514b0e1cb3bc5e16726365032ffc1f775fc2ac"><code>f2514b0</code></a> Bump node from 16 to 20 (<a href="https://redirect.github.com/arduino/setup-task/issues/919">#919</a>)</li> <li><a href="https://github.com/arduino/setup-task/commit/2007903d116d0fe80d2de4a8aea716c776192264"><code>2007903</code></a> Merge pull request <a href="https://redirect.github.com/arduino/setup-task/issues/928">#928</a> from arduino/dependabot/npm_and_yarn/prettier-3.2.5</li> <li><a href="https://github.com/arduino/setup-task/commit/3f2ef95f2fc03b8de032ced18c39e44d0571f58a"><code>3f2ef95</code></a> build(deps-dev): bump prettier from 3.2.2 to 3.2.5</li> <li><a href="https://github.com/arduino/setup-task/commit/88d658bbefbf7e5019b2e377870d57462941ff40"><code>88d658b</code></a> Merge pull request <a href="https://redirect.github.com/arduino/setup-task/issues/927">#927</a> from arduino/dependabot/npm_and_yarn/types/node-16.18.79</li> <li><a href="https://github.com/arduino/setup-task/commit/b79a1c3f82f6efdfe71d6e04f582092eca400294"><code>b79a1c3</code></a> build(deps-dev): bump <code>@​types/node</code> from 16.18.78 to 16.18.79</li> <li><a href="https://github.com/arduino/setup-task/commit/5abddba8726f6f7394c6f215178b7598318ba1cc"><code>5abddba</code></a> Merge pull request <a href="https://redirect.github.com/arduino/setup-task/issues/926">#926</a> from arduino/dependabot/npm_and_yarn/types/node-16.18.78</li> <li><a href="https://github.com/arduino/setup-task/commit/b3e99c0fa29764710d42965a406a68565bdde248"><code>b3e99c0</code></a> build(deps-dev): bump <code>@​types/node</code> from 16.18.76 to 16.18.78</li> <li><a href="https://github.com/arduino/setup-task/commit/4145542cd79295a67c9b90da7441007dcad7d8c9"><code>4145542</code></a> Merge pull request <a href="https://redirect.github.com/arduino/setup-task/issues/924">#924</a> from arduino/dependabot/npm_and_yarn/typescript-eslin...</li> <li><a href="https://github.com/arduino/setup-task/commit/10406e6d87eacec1b7458c4f4e4554e0f0eec5be"><code>10406e6</code></a> build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 6.19.1 to 6.20.0</li> <li>Additional commits viewable in <a href="https://github.com/arduino/setup-task/compare/e26d8975574116b0097a1161e0fe16ba75d84c1c...b91d5d2c96a56797b48ac1e0e89220bf64044611">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=arduino/setup-task&package-manager=github_actions&previous-version=1.0.3&new-version=2.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-07 13:53:51 +02:00
- uses: arduino/setup-task@b91d5d2c96a56797b48ac1e0e89220bf64044611 # v1
chore(ci): use repo-token Signed-off-by: Carlos A Becker <caarlos0@gmail.com>
2021-10-13 01:14:15 +02:00
with:
feat: update nfpm to 2.9.2 (#2668) * feat: update nfpm to 2.9.2 * chore(ci): test packages on main
2021-11-14 16:54:31 +02:00
version: 3.x
chore(ci): use repo-token Signed-off-by: Carlos A Becker <caarlos0@gmail.com>
2021-10-13 01:14:15 +02:00
repo-token: ${{ secrets.GITHUB_TOKEN }}
chore(deps): bump docker/setup-qemu-action from 2.2.0 to 3.0.0 (#4288) Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.2.0 to 3.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-qemu-action/releases">docker/setup-qemu-action's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <ul> <li>Node 20 as default runtime (requires <a href="https://github.com/actions/runner/releases/tag/v2.308.0">Actions Runner v2.308.0</a> or later) by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-qemu-action/pull/102">docker/setup-qemu-action#102</a></li> <li>Bump <code>@​actions/core</code> from 1.10.0 to 1.10.1 in <a href="https://redirect.github.com/docker/setup-qemu-action/pull/103">docker/setup-qemu-action#103</a></li> <li>Bump semver from 6.3.0 to 6.3.1 in <a href="https://redirect.github.com/docker/setup-qemu-action/pull/89">docker/setup-qemu-action#89</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-qemu-action/compare/v2.2.0...v3.0.0">https://github.com/docker/setup-qemu-action/compare/v2.2.0...v3.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/setup-qemu-action/commit/68827325e0b33c7199eb31dd4e31fbe9023e06e3"><code>6882732</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-qemu-action/issues/103">#103</a> from docker/dependabot/npm_and_yarn/actions/core-1.10.1</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/183f4af5043c24c5dcd58e6e9868b7df0a201a17"><code>183f4af</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/f17493529ee8f8b9fd58ed31aa1e9816c8345eb8"><code>f174935</code></a> build(deps): bump <code>@​actions/core</code> from 1.10.0 to 1.10.1</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/2e423eb50075d10a6af463e39e267d4057cc07bb"><code>2e423eb</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-qemu-action/issues/89">#89</a> from docker/dependabot/npm_and_yarn/semver-6.3.1</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/ecc406afa7d79acce0ed8a04bb5eb086136fd000"><code>ecc406a</code></a> Bump semver from 6.3.0 to 6.3.1</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/12dec5e201ab2f6dbea47c28f4a138590189069a"><code>12dec5e</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-qemu-action/issues/102">#102</a> from crazy-max/update-node20</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/c29b31213096fed2f8b8b36e66385d52653bf332"><code>c29b312</code></a> chore: node 20 as default runtime</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/34ae628c8f4fb0d5c8921b9a0ffa9dcf66120c07"><code>34ae628</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/1f3d2e1ac09548bbfb7d44b1809ac66e3d551ea4"><code>1f3d2e1</code></a> chore: fix author in package.json</li> <li><a href="https://github.com/docker/setup-qemu-action/commit/277dbe8c9c1990b42dc38cb1f35a593889a31a62"><code>277dbe8</code></a> vendor: bump <code>@​docker/actions-toolkit</code> from 0.3.0 to 0.12.0</li> <li>Additional commits viewable in <a href="https://github.com/docker/setup-qemu-action/compare/2b82ce82d56a2a04d2637cd93a637ae1b359c0a7...68827325e0b33c7199eb31dd4e31fbe9023e06e3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-qemu-action&package-manager=github_actions&previous-version=2.2.0&new-version=3.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will merge this PR once CI passes on it, as requested by @caarlos0. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-12 14:57:30 +02:00
- uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v2
chore(deps): bump docker/setup-buildx-action from 3.2.0 to 3.3.0 (#4770) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.2.0 to 3.3.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's releases</a>.</em></p> <blockquote> <h2>v3.3.0</h2> <ul> <li>Bump <code>@​docker/actions-toolkit</code> from 0.19.0 to 0.20.0 by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/307">docker/setup-buildx-action#307</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v3.2.0...v3.3.0">https://github.com/docker/setup-buildx-action/compare/v3.2.0...v3.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/setup-buildx-action/commit/d70bba72b1f3fd22344832f00baa16ece964efeb"><code>d70bba7</code></a> Merge pull request <a href="https://redirect.github.com/docker/setup-buildx-action/issues/307">#307</a> from crazy-max/bump-toolkit</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/7638634cb70c02d327dde3b558f22b0db32054a3"><code>7638634</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/c68420fe0b4de2444121eec8f08bc2500c8d9216"><code>c68420f</code></a> bump <code>@​docker/actions-toolkit</code> from 0.19.0 to 0.20.0</li> <li>See full diff in <a href="https://github.com/docker/setup-buildx-action/compare/2b51285047da1547ffb1b2203d8be4c0af6b1f20...d70bba72b1f3fd22344832f00baa16ece964efeb">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-buildx-action&package-manager=github_actions&previous-version=3.2.0&new-version=3.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-08 15:12:02 +02:00
- uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3
feat: update nfpm to 2.9.2 (#2668) * feat: update nfpm to 2.9.2 * chore(ci): test packages on main
2021-11-14 16:54:31 +02:00
- name: setup-snapcraft
fix(ci): snap tests (#2117) Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
2021-03-19 13:48:37 +02:00
# FIXME: the mkdirs are a hack for https://github.com/goreleaser/goreleaser/issues/1715
chore(ci): Release workflow (#1499) * chore(ci): WIP release workflow * Set up Snapcraft * Cache go modules * Check of tagged * Add codecov, snapcraft login and also always clear sensitive data Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 23:52:25 +02:00
run: |
chore(ci): debug Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
2021-01-04 18:02:44 +02:00
sudo apt-get update
chore(ci): Release workflow (#1499) * chore(ci): WIP release workflow * Set up Snapcraft * Cache go modules * Check of tagged * Add codecov, snapcraft login and also always clear sensitive data Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 23:52:25 +02:00
sudo apt-get -yq --no-install-suggests --no-install-recommends install snapcraft
fix(ci): snap tests (#2117) Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
2021-03-19 13:48:37 +02:00
mkdir -p $HOME/.cache/snapcraft/download
mkdir -p $HOME/.cache/snapcraft/stage-packages
chore(deps): bump crazy-max/ghaction-upx from 2 to 3 (#4284) Bumps [crazy-max/ghaction-upx](https://github.com/crazy-max/ghaction-upx) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/crazy-max/ghaction-upx/releases">crazy-max/ghaction-upx's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <ul> <li>Node 20 as default runtime (requires <a href="https://github.com/actions/runner/releases/tag/v2.308.0">Actions Runner v2.308.0</a> or later) by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/215">crazy-max/ghaction-upx#215</a></li> <li>Update yarn to 3.6.3 by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/214">crazy-max/ghaction-upx#214</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crazy-max/ghaction-upx/compare/v2.4.0...v3.0.0">https://github.com/crazy-max/ghaction-upx/compare/v2.4.0...v3.0.0</a></p> <h2>v2.4.0</h2> <ul> <li>Bump <code>@​actions/http-client</code> from 2.1.0 to 2.1.1 in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/206">crazy-max/ghaction-upx#206</a></li> <li>Bump semver from 5.7.1 to 5.7.2 in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/204">crazy-max/ghaction-upx#204</a></li> <li>Bump tough-cookie from 4.0.0 to 4.1.3 in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/203">crazy-max/ghaction-upx#203</a></li> <li>Bump word-wrap from 1.2.3 to 1.2.5 in <a href="https://redirect.github.com/crazy-max/ghaction-upx/pull/209">crazy-max/ghaction-upx#209</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crazy-max/ghaction-upx/compare/v2.3.0...v2.4.0">https://github.com/crazy-max/ghaction-upx/compare/v2.3.0...v2.4.0</a></p> <h2>v2.3.0</h2> <ul> <li>Add <code>install-only</code> input (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/201">#201</a>)</li> <li>Bump <code>@​actions/http-client</code> from 2.0.1 to 2.1.0 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/195">#195</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crazy-max/ghaction-upx/compare/v2.2.0...v2.3.0">https://github.com/crazy-max/ghaction-upx/compare/v2.2.0...v2.3.0</a></p> <h2>v2.2.0</h2> <ul> <li>Check latest and tagged releases using releases-json (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/192">#192</a>)</li> <li>ci: generate upx-releases.json (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/186">#186</a>)</li> <li>Bump json5 from 2.1.3 to 2.2.3 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/184">#184</a>)</li> <li>Bump minimatch from 3.0.4 to 3.1.2 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/185">#185</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crazy-max/ghaction-upx/compare/v2.1.0...v2.2.0">https://github.com/crazy-max/ghaction-upx/compare/v2.1.0...v2.2.0</a></p> <h2>v2.1.0</h2> <ul> <li>Bump <code>@​actions/core</code> from 1.6.0 to 1.10.0 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/181">#181</a> <a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/182">#182</a>)</li> <li>Bump <code>@​actions/http-client</code> from 1.0.11 to 2.0.1 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/179">#179</a>)</li> <li>Bump <code>@​actions/tool-cache</code> from 1.7.2 to 2.0.1 (<a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/178">#178</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crazy-max/ghaction-upx/compare/v2.0.0...v2.1.0">https://github.com/crazy-max/ghaction-upx/compare/v2.0.0...v2.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/0fc45e912669ba9e8fa2b430e97c8da2a632e29b"><code>0fc45e9</code></a> Merge pull request <a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/213">#213</a> from crazy-max/dependabot/github_actions/actions/chec...</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/9465f624dd4700eb61e8f9be9b53c8ee029e2e24"><code>9465f62</code></a> Merge pull request <a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/215">#215</a> from crazy-max/update-node20</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/9eba60dcc910ef09f7cfb5874cf7d1b83b897e42"><code>9eba60d</code></a> ci: split test and validate workflow</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/4fd68cb0825b56d5b949b464216b7ceb91512856"><code>4fd68cb</code></a> chore: node 20 as default runtime</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/81a846ee133d662c19364154811f5826924891fc"><code>81a846e</code></a> chore: update generated content</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/6abbb7ec37210e5dedf6fbd01b4b794a6a07bc61"><code>6abbb7e</code></a> test: fix after jest update</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/54c2561f69cc419b6f111858a775c0dac4212c84"><code>54c2561</code></a> chore: update dev dependencies</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/d280f9562f408938c5df4abdd73fbdda32490219"><code>d280f95</code></a> chore: update to node 20</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/4d946a7137989189239fb4d60c5f5cfccdd8666d"><code>4d946a7</code></a> Merge pull request <a href="https://redirect.github.com/crazy-max/ghaction-upx/issues/214">#214</a> from crazy-max/update-yarn</li> <li><a href="https://github.com/crazy-max/ghaction-upx/commit/fbfc4f37fe04ecf70d591a043647907c8ace8b24"><code>fbfc4f3</code></a> chore: update generated content</li> <li>Additional commits viewable in <a href="https://github.com/crazy-max/ghaction-upx/compare/v2...v3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=crazy-max/ghaction-upx&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-11 15:51:57 +02:00
- uses: crazy-max/ghaction-upx@v3
build: use ghaction-upx thanks @crazy-max! Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-05-03 19:06:40 +02:00
with:
install-only: true
chore(deps): bump cachix/install-nix-action from 25 to 26 (#4676) Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 25 to 26. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>v26</h2> <p>Bump to Nix 2.20.5 to address CVE-2024-27297 / GHSA-2ffj-w4mj-pg37.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cachix/install-nix-action/commit/8887e596b4ee1134dae06b98d573bd674693f47c"><code>8887e59</code></a> Nix: 2.20.5</li> <li><a href="https://github.com/cachix/install-nix-action/commit/39a075cc21e415568870fbcfee53551b3764501d"><code>39a075c</code></a> bump</li> <li>See full diff in <a href="https://github.com/cachix/install-nix-action/compare/v25...v26">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cachix/install-nix-action&package-manager=github_actions&previous-version=25&new-version=26)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-08 18:18:30 +02:00
- uses: cachix/install-nix-action@v26
feat: nix support (#4012) very, very, very WIP implementation of nixpkgs for GoReleaser. **Decisions made for this first version:** - only linux and darwin, arm64, 386 and amd64 - only support pkgs from goreleaser-generated archives - no support to push into default nixpkgs repository - no support to automatically add the _maybe_ new pkg to the root `default.nix` - the generated nixpkg will be rather verbose, which shouldn't be too much of an issue as it is autogenerated anyway **TODOs**: - [x] macos universal binary support - [x] custom pkg path (e.g. pkgs/misc/foo/bar/default.nix) - [x] handle archives with a folder in them - [x] add more options: postInstall, ?? **Will be handled in future versions**: - [ ] archives.format=binary support - [ ] compile from source - [ ] PR-ing into nixpkgs - [ ] armv6l-linux & armv7l-linux support closes #3537 --------- Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-05-26 04:07:10 +02:00
with:
github_access_token: ${{ secrets.GITHUB_TOKEN }}
chore(deps): bump actions/setup-go from 4.1.0 to 5.0.0 (#4464) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.1.0 to 5.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-go/releases">actions/setup-go's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2>What's Changed</h2> <p>In scope of this release, we change Nodejs runtime from node16 to node20 (<a href="https://redirect.github.com/actions/setup-go/pull/421">actions/setup-go#421</a>). Moreover, we update some dependencies to the latest versions (<a href="https://redirect.github.com/actions/setup-go/pull/445">actions/setup-go#445</a>).</p> <p>Besides, this release contains such changes as:</p> <ul> <li>Fix hosted tool cache usage on windows by <a href="https://github.com/galargh"><code>@​galargh</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/411">actions/setup-go#411</a></li> <li>Improve documentation regarding dependencies caching by <a href="https://github.com/artemgavrilov"><code>@​artemgavrilov</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/417">actions/setup-go#417</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/galargh"><code>@​galargh</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/411">actions/setup-go#411</a></li> <li><a href="https://github.com/artemgavrilov"><code>@​artemgavrilov</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/417">actions/setup-go#417</a></li> <li><a href="https://github.com/chenrui333"><code>@​chenrui333</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/421">actions/setup-go#421</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-go/compare/v4...v5.0.0">https://github.com/actions/setup-go/compare/v4...v5.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/setup-go/commit/0c52d547c9bc32b1aa3301fd7a9cb496313a4491"><code>0c52d54</code></a> Update dependencies for node20 (<a href="https://redirect.github.com/actions/setup-go/issues/445">#445</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/bfd2fb341f32be7281829126376a12a780ca79fc"><code>bfd2fb3</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/421">#421</a> from chenrui333/node20-runtime</li> <li><a href="https://github.com/actions/setup-go/commit/3d65fa57fcbfe4a359b6b71a6c65e6eec12984eb"><code>3d65fa5</code></a> feat: bump to use actions/checkout@v4</li> <li><a href="https://github.com/actions/setup-go/commit/8a505c9cf2e2726eda7f3268d6992e386a12da52"><code>8a505c9</code></a> feat: bump to use node20 runtime</li> <li><a href="https://github.com/actions/setup-go/commit/883490dfd06f396ebe0b738bc313a53cf9d851e5"><code>883490d</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/417">#417</a> from artemgavrilov/main</li> <li><a href="https://github.com/actions/setup-go/commit/d45ebba0ce181dc5604aaf69ce5a0bdcbd3b1807"><code>d45ebba</code></a> Rephrase sentence</li> <li><a href="https://github.com/actions/setup-go/commit/317c6617fa9e4e67f1e5e20ad8bc98bf298a0f8f"><code>317c661</code></a> Replace <code>wildcards</code> term with <code>globs</code>.</li> <li><a href="https://github.com/actions/setup-go/commit/f90673ad641a19d0689fba58b5c79adc54be5d81"><code>f90673a</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/1">#1</a> from artemgavrilov/caching-docs-improvement</li> <li><a href="https://github.com/actions/setup-go/commit/801823434715e45aa48743a38182d33b33675d02"><code>8018234</code></a> Improve documentation regarding dependencies cachin</li> <li><a href="https://github.com/actions/setup-go/commit/d085b4fe57b6e17262cbebc67b4d2d341d8938c2"><code>d085b4f</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/411">#411</a> from galargh/fix/windows-hostedtoolcache</li> <li>Additional commits viewable in <a href="https://github.com/actions/setup-go/compare/93397bea11091df50f3d7e59dc26a7711a8bcfbe...0c52d547c9bc32b1aa3301fd7a9cb496313a4491">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-go&package-manager=github_actions&previous-version=4.1.0&new-version=5.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-07 14:06:14 +02:00
- uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v4
chore(ci): new Release workflow (#1498) Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 22:08:36 +02:00
with:
chore(deps): bump actions/setup-go from 3.5.0 to 4.0.0 (#3871) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.5.0 to 4.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-go/releases">actions/setup-go's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <p>In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying <code>cache: false</code>.</p> <pre lang="yaml"><code>steps: - uses: actions/checkout@v3 - uses: actions/setup-go@v4 with: go-version: ‘1.19’ - run: go run hello.go </code></pre> <p>Besides, we introduce such changes as</p> <ul> <li><a href="https://redirect.github.com/actions/setup-go/pull/305">Allow to use only GOCACHE for cache</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/315">Bump json5 from 2.2.1 to 2.2.3</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/323">Use proper version for primary key in cache</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/351">Always add Go bin to the PATH</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/350">Add step warning if go-version input is empty</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/setup-go/commit/4d34df0c2316fe8122ab82dc22947d607c0c91f9"><code>4d34df0</code></a> Update configuration files (<a href="https://redirect.github.com/actions/setup-go/issues/348">#348</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/fdc0d672a12b8fc05ef4c549c3fd5b0f03ebeb4c"><code>fdc0d67</code></a> Add Go bin if go-version input is empty (<a href="https://redirect.github.com/actions/setup-go/issues/351">#351</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/ebfdf6ac95bce0e7e743a60aba7adf59b400885b"><code>ebfdf6a</code></a> add warning if go-version is empty (<a href="https://redirect.github.com/actions/setup-go/issues/350">#350</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/b27d76912e7cb72b7262b5be2ec903b6cfaf358a"><code>b27d769</code></a> fix lockfileVersion (<a href="https://redirect.github.com/actions/setup-go/issues/349">#349</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/c51a7207680f1bee06f4a751214aab70667f9e25"><code>c51a720</code></a> Enable caching by default with default input (<a href="https://redirect.github.com/actions/setup-go/issues/332">#332</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/6b848af622919e18822928df24a57044dc6ea9ab"><code>6b848af</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/343">#343</a> from akv-platform/reusable-workflow</li> <li><a href="https://github.com/actions/setup-go/commit/12741cc20952a981105f1dc8366d69f1d24ed472"><code>12741cc</code></a> Format update-config-files.yml</li> <li><a href="https://github.com/actions/setup-go/commit/7a77a6aab66a15178e313f5908f5ed9b8500894c"><code>7a77a6a</code></a> Merge branch 'main' into reusable-workflow</li> <li><a href="https://github.com/actions/setup-go/commit/42a0cc8e1491c14a0e9486c3a895d2124f51af1a"><code>42a0cc8</code></a> Add update-config-files.yml</li> <li><a href="https://github.com/actions/setup-go/commit/7406d654ad8f517886f6c77135494c2b99355381"><code>7406d65</code></a> Add and configure ESLint and update configuration for Prettier (<a href="https://redirect.github.com/actions/setup-go/issues/341">#341</a>)</li> <li>Additional commits viewable in <a href="https://github.com/actions/setup-go/compare/6edd4406fa81c3da01a34fa6f6343087c207a568...4d34df0c2316fe8122ab82dc22947d607c0c91f9">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-go&package-manager=github_actions&previous-version=3.5.0&new-version=4.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2023-03-17 05:40:25 +02:00
go-version: stable
chore(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 (#4776)
2024-04-12 15:17:35 +02:00
- uses: sigstore/cosign-installer@v3.5.0
chore(deps): bump anchore/sbom-action from 0.15.9 to 0.15.10 (#4727) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.15.9 to 0.15.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's releases</a>.</em></p> <blockquote> <h2>v0.15.10</h2> <h2>Changes in v0.15.10</h2> <ul> <li>Update Syft to v1.1.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/454">#454</a>)</li> <li>Bump Node to v20 on download-syft/publish-sbom actions (<a href="https://redirect.github.com/anchore/sbom-action/issues/448">#448</a>) [<a href="https://github.com/ViacheslavKudinov">ViacheslavKudinov</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/anchore/sbom-action/commit/ab5d7b5f48981941c4c5d6bf33aeb98fe3bae38c"><code>ab5d7b5</code></a> chore(deps): update Syft to v1.1.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/454">#454</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/6e7f9d716af0dcc2e38037ca9cc15d86d1d3511d"><code>6e7f9d7</code></a> chore(deps): bump release-drafter/release-drafter from 5.25.0 to 6.0.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/450">#450</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/2d906a3175a9da17113fc992592cc72e1961fc44"><code>2d906a3</code></a> chore(deps): bump peter-evans/create-or-update-comment (<a href="https://redirect.github.com/anchore/sbom-action/issues/452">#452</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/691c76237aa2d59688371d1b4351faa9dbcd1341"><code>691c762</code></a> chore(deps): bump peter-evans/create-pull-request from 5.0.2 to 6.0.2 (<a href="https://redirect.github.com/anchore/sbom-action/issues/453">#453</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/f0dafeffd3adbef62a40375bc6dfeb2131493b6f"><code>f0dafef</code></a> chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (<a href="https://redirect.github.com/anchore/sbom-action/issues/451">#451</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/c6d7b2a66ca6313b671fb0fc66c3e8e4f30bd79e"><code>c6d7b2a</code></a> chore: add dependabot configuration for actions (<a href="https://redirect.github.com/anchore/sbom-action/issues/449">#449</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/31e2bb2432047011c4748387781336e002ec2b72"><code>31e2bb2</code></a> chore(deps): update <code>@types/node</code> to Node 20 (<a href="https://redirect.github.com/anchore/sbom-action/issues/443">#443</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/670514f26a76a5710d4f3579ba5d33bca9fe4bbe"><code>670514f</code></a> chore: Bump Node to v20 on download-syft/publish-sbom actions (<a href="https://redirect.github.com/anchore/sbom-action/issues/448">#448</a>)</li> <li><a href="https://github.com/anchore/sbom-action/commit/a5afbb185c4d9799c758f05e496032af75ae9128"><code>a5afbb1</code></a> chore(deps): update Syft to v1.0.1 (<a href="https://redirect.github.com/anchore/sbom-action/issues/444">#444</a>)</li> <li>See full diff in <a href="https://github.com/anchore/sbom-action/compare/v0.15.9...v0.15.10">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.15.9&new-version=0.15.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-27 15:33:47 +02:00
- uses: anchore/sbom-action/download-syft@v0.15.10
feat: update nfpm to 2.9.2 (#2668) * feat: update nfpm to 2.9.2 * chore(ci): test packages on main
2021-11-14 16:54:31 +02:00
- name: setup-validate-krew-manifest
fix(ci): dont use krew fork (#3040) * fix(ci): use setup-krew action instead of go install also switch back to main krew as my PR was recently released. Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: use go install Signed-off-by: Carlos A Becker <caarlos0@gmail.com> * fix: use go install Signed-off-by: Carlos A Becker <caarlos0@gmail.com>
2022-04-14 04:00:29 +02:00
run: go install sigs.k8s.io/krew/cmd/validate-krew-manifest@latest
chore(ci): tparse (#3131) * chore(ci): tparse Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com> * fix: always set json Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com> * fix: nocolor Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com> * fix: do not need tparse locally Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com> * fix: build Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2022-06-12 04:25:04 +02:00
- name: setup
run: |
task setup
task build
- name: test
build: simplify (#4748) simplify test scripts a bit - remove tparse - don't verbose test Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-04-03 19:16:25 +02:00
run: task test
chore(deps): bump codecov/codecov-action from 4.2.0 to 4.3.0 (#4773) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.2.0 to 4.3.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.3.0</h2> <h2>What's Changed</h2> <ul> <li>fix: automatically detect if using GitHub enterprise by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1356">codecov/codecov-action#1356</a></li> <li>build(deps-dev): bump typescript from 5.4.3 to 5.4.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1355">codecov/codecov-action#1355</a></li> <li>build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1360">codecov/codecov-action#1360</a></li> <li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code> from 7.5.0 to 7.6.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1364">codecov/codecov-action#1364</a></li> <li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 7.5.0 to 7.6.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1363">codecov/codecov-action#1363</a></li> <li>feat: add network params by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1365">codecov/codecov-action#1365</a></li> <li>build(deps): bump undici from 5.28.3 to 5.28.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1361">codecov/codecov-action#1361</a></li> <li>chore(release): v4.3.0 by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1366">codecov/codecov-action#1366</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v4.2.0...v4.3.0">https://github.com/codecov/codecov-action/compare/v4.2.0...v4.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codecov/codecov-action/commit/84508663e988701840491b86de86b666e8a86bed"><code>8450866</code></a> chore(release): v4.3.0 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1366">#1366</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/e8419092e9de1e2493563107cf52bfa83d9ae62f"><code>e841909</code></a> build(deps): bump undici from 5.28.3 to 5.28.4 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1361">#1361</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/363a65ad481c04303701b094b4d2c113a65f5d3e"><code>363a65a</code></a> feat: add network params (<a href="https://redirect.github.com/codecov/codecov-action/issues/1365">#1365</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/640b86a455d2fd2f6e7acbb9eb863bc9f4a51954"><code>640b86a</code></a> build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 7.5.0 to 7.6.0 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1363">#1363</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/375c033fbe86348a044b3884012d849d84b90769"><code>375c033</code></a> build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code> from 7.5.0 to 7.6.0 (#...</li> <li><a href="https://github.com/codecov/codecov-action/commit/d701256d7a115528200188787cd91ce87889775f"><code>d701256</code></a> build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1360">#1360</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/0bb547ab4974725a7d01e2ac18c843a6924c39f3"><code>0bb547a</code></a> build(deps-dev): bump typescript from 5.4.3 to 5.4.4 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1355">#1355</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/55e8381a3e12db78da75715d4d60379adb17c4e6"><code>55e8381</code></a> fix: automatically detect if using GitHub enterprise (<a href="https://redirect.github.com/codecov/codecov-action/issues/1356">#1356</a>)</li> <li>See full diff in <a href="https://github.com/codecov/codecov-action/compare/7afa10ed9b269c561c2336fd862446844e0cbf71...84508663e988701840491b86de86b666e8a86bed">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.2.0&new-version=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-10 13:55:51 +02:00
- uses: codecov/codecov-action@84508663e988701840491b86de86b666e8a86bed # v4
chore(ci): Release workflow (#1499) * chore(ci): WIP release workflow * Set up Snapcraft * Cache go modules * Check of tagged * Add codecov, snapcraft login and also always clear sensitive data Co-authored-by: CrazyMax <crazy-max@users.noreply.github.com>
2020-05-10 23:52:25 +02:00
with:
file: ./coverage.txt
feat: update nfpm to 2.9.2 (#2668) * feat: update nfpm to 2.9.2 * chore(ci): test packages on main
2021-11-14 16:54:31 +02:00
- run: ./goreleaser check
- run: git diff
Reference in New Issue Copy Permalink