Naveen
bd1434fcb2
Set permissions for GitHub actions ( #6820 )
...
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-08-11 10:05:58 +02:00
ImVector
4a549b9f10
build: changed name of 'main.yml' workflow to 'checkurls.yml' ( #6984 )
2022-08-07 22:20:34 +02:00
CleanMachine1
cd695d7a34
PULL_REQUEST_TEMPLATE: add clause for informative pr names ( #6974 )
2022-07-29 12:49:11 +02:00
Eric Hellman
b6c93f1923
add link to search when we ask submitters to search ( #6889 )
2022-06-27 19:04:18 -04:00
dependabot[bot]
1c016ad461
chore(deps): bump actions/upload-artifact from 2 to 3 ( #6821 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-11 09:32:25 -04:00
dependabot[bot]
7a7904cc9d
chore(deps): bump actions/setup-node from 2 to 3 ( #6754 )
2022-03-07 22:36:30 +00:00
dependabot[bot]
34508771cf
chore(deps): bump actions/checkout from 2 to 3 ( #6753 )
2022-03-07 22:33:24 +00:00
David Ordás
1cfd2b3a7f
ci(deps): configure dependabot for github-actions ( #5521 )
...
* chore: configure dependabot for github-actions
Needs add this labels to github repo/org:
- dependencies
- github-actions
* Follow conventional-commits message
Also labels are now more adecuated, based on I can se in other repos
* Update .github/dependabot.yml
Co-authored-by: CleanMachine1 <78213164+CleanMachine1@users.noreply.github.com>
* sync and emojify labels
* Add the arrays of assignees and reviewers
Co-authored-by: CleanMachine1 <78213164+CleanMachine1@users.noreply.github.com>
2022-03-07 10:10:49 -05:00
ImVector
c4d9b4db81
Update workflows version ( #6682 )
2022-02-15 10:38:57 -05:00
David Ordás
ee4b9ee1f9
chore: Rename `master` to `main` #blacklivesmatter ( #6627 )
...
* chore: Rename `master` to `main` #blacklivesmatter
Resolves EbookFoundation/free-programming-books#5803
* docs(contributing): fix broken ref link to `programming-playgrounds`
Fix over EbookFoundation/free-programming-books#5449 and commit 3c42c3629e
(cherry picked from commit 59ebfe3f97e318fa43d58877cbc5bfdd8b0c7426)
* fix: Complete #6614 upstream/main merge
Over commit: 4d3c9fe11c
Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>
Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>
2021-11-23 09:25:57 -05:00
Debajyoti Ghosh
09bbc1c2d9
use current node-version 16 ( #5587 )
2021-09-30 13:40:06 -04:00
Seth Falco
ba8ce09c25
Remove Travis CI and Update Docs ( #5591 )
...
* chore: remove travis-ci
* chore: replace travis-ci docs with github actions
2021-09-30 13:24:55 -04:00
Teba Rojo
d91140bc9b
Remove redundant whitespace ( #5386 )
2021-05-19 17:16:30 -04:00
Seth
bd6023f34c
Removed Redundant Whitespace Characters ( #5276 )
2021-01-23 16:41:02 -05:00
Eric Hellman
5538fb1c21
add linter action to pullrequest ( #5251 )
2021-01-12 15:44:08 -05:00
victor felder
8530b47797
fix: CI linter config ( #5239 )
...
* fix: CI linter config
* chore: lint all files
2020-12-28 12:19:50 -05:00
Siddharth Kumar
27dae9266e
Fix Contributing.md broken link ( #5226 )
2020-12-16 12:57:16 -05:00
borgified
ac6fea31bd
Update main.yml ( #5203 )
2020-12-03 16:59:43 -05:00
borgified
532d3eeafd
Fix file-changes-action error ( #5201 )
...
* test
* apparently 1.2.4 is broken
https://github.com/trilom/file-changes-action/issues/102
* remove noop
2020-12-03 12:40:06 -05:00
borgified
37dc474fbd
migrate fpb-lint from travisci to gh actions ( #5186 )
2020-11-29 18:39:35 -05:00
Eric Hellman
a63dcb9fe7
hacktoberfest is over ( #5037 )
2020-11-02 10:50:02 -05:00
Eric Hellman
1279a5acb2
hacktoberfest notes ( #3972 )
2020-10-11 21:21:50 -04:00
borgified
3daf3a8d26
Improve url checker ( #3702 )
...
* improvements to check_urls
make check have a more descriptive name
produce output file instead
* upload artifacts
* a
* change file to trigger test
* put things back
2020-09-05 12:28:15 -04:00
borgified
724c2b277c
fix broken urls ( #3680 )
...
* fix broken urls
* trigger on pull request creation too
* allow certificate verify failed
some sites have misconfigured/expired certs
* adding back two links that were manually verified good
2020-08-25 22:50:12 -04:00
borgified
e59e9e0717
try github actions ( #3679 )
...
fixes #3583
2020-08-23 13:02:31 -04:00
eric
bd57fb0127
add pull request template
2018-07-10 13:36:40 -04:00