Commit Graph

25 Commits (92e72506b95da51f7fab45f748003895b9315c8e)

Author SHA1 Message Date
dependabot[bot] 84870c699b
chore(deps): bump tj-actions/changed-files from 29.0.7 to 30.0.0 (#7107) 2022-09-24 13:03:04 +00:00
dependabot[bot] 04a2f3b468
chore(deps): bump actions/stale from 5 to 6 (#7108) 2022-09-24 12:22:40 +00:00
David Ordás e301da9838
fix: refine concurrency policy of `check-urls.yml` workflow (#7096)
* fix: refine `check-urls.yml` workflow concurrency policy

This parametrization makes don't fail with a cancellation

25a05812f7 (comments)

* typo: concurrency code comment
2022-09-21 09:25:54 -04:00
dependabot[bot] fc4b0c5c13
chore(deps): bump tj-actions/changed-files from 29.0.4 to 29.0.7 (#7087) 2022-09-17 10:58:12 +00:00
David Ordás d16c9672e5
ci(pinner): Create `issues-pinner.yml` workflow (#7056)
* ci(pinner): Create `issues-pinner.yml` workflow

To monitor pin/unpin issue events and add/remove state labels accordingly

* format: remove the superfluous newlines

Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>

* fix: missing multiline token in remove input

* chore: use emoji text instead its icon

* all in one job + cleanup

* docs: add comment as workflow heading explaining what it does

Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>
2022-09-14 13:54:10 -04:00
David Ordás 88454860d6
ci(stale): create `stale.yml` workflow (#7053)
* ci(stale): create `stale.yml` workflow

- Treat issues and PRs separately
- At the end, generate a cross-linked summary with all processed issues/PRs

* chore: apply suggested interval ratio 60/30

* chore: cron every 6 hours o'clock...

at 0:00am 6:00am 12:00pm 18:00pm

* chore: multiline string for messages posted by bot

* fix: concurrency and job atomicity

* format: remove the superfluous newlines

Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>

* security: limit access to contents

* feat: `blocked,must,should,keep` exempt labels

* fix: report not work since job outputs aren't exported from their respective jobs

* chore: cron every 1 hour o'clock

* fix: filter outputs to exempt share secrets between jobs

* chore: use emoji text instead its icon

* chore: cron back again every 6 hours o'clock...

Reverts commit dc44e45b27

* chore: refactor workflow to have only one job but one step for issues and other for PRs

New features:
- run on push over this workflow
- run manually have debug option to make a dry-run execution
- run scheduled is every 6 hours at o'clock
- Summary report is in table format instead of list items

* chore: cron back again once a day at 00:00 UTC

Co-authored-by: ImVector <59611597+LuigiImVector@users.noreply.github.com>
2022-09-13 12:11:21 -04:00
dependabot[bot] 384d0f0a9d
chore(deps): bump tj-actions/changed-files from 29.0.3 to 29.0.4 (#7066) 2022-09-10 13:01:42 +00:00
dependabot[bot] 0d6b26fd79
chore(deps): bump tj-actions/changed-files from 29.0.1 to 29.0.3 (#7057) 2022-09-03 11:44:43 +00:00
David Ordás 57cc3173da
ci(check-urls): fix push crash on new branch creation + render awesome_bot report (#7046)
* format: expand events

* format: add blank lines between steps of check job

* format: to run steps using multiline format

* feat: group for each output

* fix: solve crash on first push (trilom 2 tj action)

* chore: upload ab-results as `awesomebot-results.zip` artifact

* feat: changed files as workflow output

* feat: Generate GitHub Summary using `ab-results-*.json`s

* security: limit access rights with `contents: read`

Seen at PR #7043
Cherry picked from 50300ca119

Co-authored-by: Alex <93376818+sashashura@users.noreply.github.com>

* chore: setup concurrency policy

* chore: modularize using composite actions

Co-authored-by: Alex <93376818+sashashura@users.noreply.github.com>
2022-08-31 11:53:22 -04:00
Alex 5dd0b1c5db
Update check-urls.yml (#7043) 2022-08-29 09:15:25 +02:00
Naveen bd1434fcb2
Set permissions for GitHub actions (#6820)
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-08-11 10:05:58 +02:00
ImVector 4a549b9f10
build: changed name of 'main.yml' workflow to 'checkurls.yml' (#6984) 2022-08-07 22:20:34 +02:00
dependabot[bot] 1c016ad461
chore(deps): bump actions/upload-artifact from 2 to 3 (#6821)
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-11 09:32:25 -04:00
dependabot[bot] 7a7904cc9d
chore(deps): bump actions/setup-node from 2 to 3 (#6754) 2022-03-07 22:36:30 +00:00
dependabot[bot] 34508771cf
chore(deps): bump actions/checkout from 2 to 3 (#6753) 2022-03-07 22:33:24 +00:00
ImVector c4d9b4db81
Update workflows version (#6682) 2022-02-15 10:38:57 -05:00
Debajyoti Ghosh 09bbc1c2d9
use current node-version 16 (#5587) 2021-09-30 13:40:06 -04:00
Eric Hellman 5538fb1c21
add linter action to pullrequest (#5251) 2021-01-12 15:44:08 -05:00
victor felder 8530b47797
fix: CI linter config (#5239)
* fix: CI linter config

* chore: lint all files
2020-12-28 12:19:50 -05:00
borgified ac6fea31bd
Update main.yml (#5203) 2020-12-03 16:59:43 -05:00
borgified 532d3eeafd
Fix file-changes-action error (#5201)
* test

* apparently 1.2.4 is broken

https://github.com/trilom/file-changes-action/issues/102

* remove noop
2020-12-03 12:40:06 -05:00
borgified 37dc474fbd
migrate fpb-lint from travisci to gh actions (#5186) 2020-11-29 18:39:35 -05:00
borgified 3daf3a8d26
Improve url checker (#3702)
* improvements to check_urls

make check have a more descriptive name
produce output file instead

* upload artifacts

* a

* change file to trigger test

* put things back
2020-09-05 12:28:15 -04:00
borgified 724c2b277c
fix broken urls (#3680)
* fix broken urls

* trigger on pull request creation too

* allow certificate verify failed

some sites have misconfigured/expired certs

* adding back two links that were manually verified good
2020-08-25 22:50:12 -04:00
borgified e59e9e0717
try github actions (#3679)
fixes #3583
2020-08-23 13:02:31 -04:00