summaryrefslogtreecommitdiff
path: root/.github
Commit message (Collapse)AuthorAgeFilesLines
...
* build(deps): bump actions/dependency-review-action from 1 to 2 (#1404)dependabot[bot]2022-07-091-1/+1
| | | | | | | | | | | | | | | | Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1 to 2. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* build(deps): bump styfle/cancel-workflow-action from 0.9.1 to 0.10.0 (#1412)dependabot[bot]2022-07-091-1/+1
| | | | | | | | | | | | | | | | Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.9.1 to 0.10.0. - [Release notes](https://github.com/styfle/cancel-workflow-action/releases) - [Commits](https://github.com/styfle/cancel-workflow-action/compare/0.9.1...0.10.0) --- updated-dependencies: - dependency-name: styfle/cancel-workflow-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* build(deps): bump actions/setup-python from 3 to 4dependabot[bot]2022-06-095-9/+9
| | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* build: kits should be triggerable programmaticallyNed Batchelder2022-06-021-0/+3
|
* build: use 3.11.0b3 in ciNed Batchelder2022-06-022-2/+2
|
* build: Included dependency review (#1370)Naveen2022-05-201-0/+20
| | | | | | | | | > Dependency Review GitHub Action in your repository to enforce dependency reviews on your pull requests. > The action scans for vulnerable versions of dependencies introduced by package version changes in pull requests, > and warns you about the associated security vulnerabilities. > This gives you better visibility of what's changing in a pull request, > and helps prevent vulnerabilities being added to your repository. https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
* build(deps): bump schneegans/dynamic-badges-action from 1.3.0 to 1.4.0 (#1378)dependabot[bot]2022-05-161-1/+1
| | | | | | | | | | | | | | | | | Bumps [schneegans/dynamic-badges-action](https://github.com/schneegans/dynamic-badges-action) from 1.3.0 to 1.4.0. - [Release notes](https://github.com/schneegans/dynamic-badges-action/releases) - [Changelog](https://github.com/Schneegans/dynamic-badges-action/blob/master/changelog.md) - [Commits](https://github.com/schneegans/dynamic-badges-action/compare/v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: schneegans/dynamic-badges-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* test: show more info when running nightliesNed Batchelder2022-05-141-1/+6
|
* build: prep for 6.3.3Ned Batchelder2022-05-121-1/+1
|
* build: don't make wheels for pre-release PythonsNed Batchelder2022-05-121-58/+3
|
* build: add markdown summary to the actionNed Batchelder2022-05-121-0/+5
|
* fix: fix compilation errors on latest 3.11.0Ned Batchelder2022-05-122-2/+2
|
* build(deps): bump docker/setup-qemu-action from 1 to 2 (#1372)dependabot[bot]2022-05-111-1/+1
| | | | | | | | | | | | | | | | Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1 to 2. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v1...v2) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* build: Set permissions for GitHub actions (#1369)Naveen2022-05-034-0/+14
| | | | | | | | | | | | | Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much. - Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs [Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/) Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
* build: sparse-checkout changed, change with itNed Batchelder2022-05-011-2/+2
| | | | | | | | | | | | I don't understand this command. --skip-check isn't mentioned in the help, and doesn't sound like the right semantics anyway. Without it, the error is: fatal: specify directories rather than patterns (no leading slash) or: fatal: specify directories rather than patterns. If your directory starts with a '!', pass --skip-checks
* build(deps): bump github/codeql-action from 1 to 2dependabot[bot]2022-04-301-3/+3
| | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v1...v2) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump schneegans/dynamic-badges-action from 1.2.0 to 1.3.0dependabot[bot]2022-04-301-1/+1
| | | | | | | | | | | | | | | Bumps [schneegans/dynamic-badges-action](https://github.com/schneegans/dynamic-badges-action) from 1.2.0 to 1.3.0. - [Release notes](https://github.com/schneegans/dynamic-badges-action/releases) - [Changelog](https://github.com/Schneegans/dynamic-badges-action/blob/master/changelog.md) - [Commits](https://github.com/schneegans/dynamic-badges-action/compare/v1.2.0...v1.3.0) --- updated-dependencies: - dependency-name: schneegans/dynamic-badges-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump actions/upload-artifact from 2 to 3dependabot[bot]2022-04-122-7/+7
| | | | | | | | | | | | | | Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump actions/download-artifact from 2 to 3dependabot[bot]2022-04-121-3/+3
| | | | | | | | | | | | | | Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump schneegans/dynamic-badges-action from 1.1.0 to 1.2.0dependabot[bot]2022-03-281-1/+1
| | | | | | | | | | | | | | | Bumps [schneegans/dynamic-badges-action](https://github.com/schneegans/dynamic-badges-action) from 1.1.0 to 1.2.0. - [Release notes](https://github.com/schneegans/dynamic-badges-action/releases) - [Changelog](https://github.com/Schneegans/dynamic-badges-action/blob/master/changelog.md) - [Commits](https://github.com/schneegans/dynamic-badges-action/compare/v1.1.0...v1.2.0) --- updated-dependencies: - dependency-name: schneegans/dynamic-badges-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* build: remove cpp from CodeQL, and use a more familiar yaml syntaxNed Batchelder2022-03-171-3/+7
|
* build(deps): bump actions/checkout from 2 to 3dependabot[bot]2022-03-171-1/+1
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* build: use codeql analysisNed Batchelder2022-03-151-0/+70
|
* build(deps): bump actions/checkout from 2 to 3 (#1336)dependabot[bot]2022-03-025-10/+10
| | | | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* build(deps): bump actions/setup-python from 2 to 3 (#1335)dependabot[bot]2022-03-015-10/+10
| | | | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* build: pip cache works againNed Batchelder2022-02-062-6/+7
|
* build: another pip-cache failureNed Batchelder2022-02-061-2/+2
|
* build: also test PyPy nightliesNed Batchelder2022-02-061-3/+17
|
* build: 3.11.0-alpha.5 is availableNed Batchelder2022-02-043-3/+3
|
* build: don't provide pre-release wheels. #1316Ned Batchelder2022-02-011-1/+3
|
* build: windows 3.11.0a4 started failing to save the pip cacheNed Batchelder2022-02-012-4/+4
|
* build: show more information about the build of Python, if neededNed Batchelder2022-01-271-0/+2
|
* build: GitHub Actions now has 3.11.0a4Ned Batchelder2022-01-273-3/+3
|
* build: 'pypy' is pypy-3.6, which we don't support anymore6.3Ned Batchelder2022-01-251-1/+2
|
* build: stop deleting 3.9 muslinux wheels, because they are ok now. #1268Ned Batchelder2022-01-251-7/+0
|
* build: correct the cron time of the Python nightly testsNed Batchelder2022-01-221-2/+3
|
* build(deps): bump styfle/cancel-workflow-action from 0.6.0 to 0.9.1dependabot[bot]2022-01-171-1/+1
| | | | | | | | | | | | | | Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.6.0 to 0.9.1. - [Release notes](https://github.com/styfle/cancel-workflow-action/releases) - [Commits](https://github.com/styfle/cancel-workflow-action/compare/0.6.0...0.9.1) --- updated-dependencies: - dependency-name: styfle/cancel-workflow-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* build: use dependabot to keep actions currentNed Batchelder2022-01-171-0/+11
|
* build: a cron action to test Python nightly once a weekNed Batchelder2022-01-171-0/+56
|
* build: provide hints about how to fix cog-check quality failures.Ned Batchelder2022-01-151-0/+3
|
* build: better docs about Python versions in actionsNed Batchelder2022-01-153-1/+14
|
* docs: small tweaks to the bug report templateNed Batchelder2022-01-121-2/+2
|
* build: drop Python 3.6 supportNed Batchelder2021-12-314-17/+9
|
* build: a make target to cog the workflowsNed Batchelder2021-12-311-0/+4
|
* build: use a sparse checkout for the reports repoNed Batchelder2021-12-301-10/+13
|
* build: publish metacov differentlyNed Batchelder2021-12-281-52/+59
|
* build: generate a metacov badgeNed Batchelder2021-12-281-1/+17
|
* build: no more codecovNed Batchelder2021-12-282-20/+0
|
* build: need to use pypy-3.7 instead of pypy3 on GHAnedbat/pypy37Ned Batchelder2021-12-141-2/+2
|
* build: also build macos arm64 kits #1288Ned Batchelder2021-12-011-18/+27
|
View Lorry Controller Status