William Banfield
13bd4b63f8
github: remove forked version of gosec ( #9629 )
2022-10-26 13:36:39 -04:00
dependabot[bot]
bc15531e1d
build(deps): Bump docker/setup-buildx-action from 2.1.0 to 2.2.1 ( #9612 )
2022-10-26 14:01:17 +02:00
dependabot[bot]
716a624d57
build(deps): Bump bufbuild/buf-setup-action from 1.8.0 to 1.9.0 ( #9613 )
2022-10-26 13:48:19 +02:00
dependabot[bot]
6e38fff9ed
build(deps): Bump docker/login-action from 2.0.0 to 2.1.0 ( #9565 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 2.0.0 to 2.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/login-action/releases ">docker/login-action's releases</a>.</em></p>
<blockquote>
<h2>v2.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Ensure AWS temp credentials are redacted in workflow logs by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/275 ">#275</a>)</li>
<li>Bump <code>@actions/core</code> from 1.6.0 to 1.10.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/252 ">#252</a> <a href="https://github-redirect.dependabot.com/docker/login-action/issues/292 ">#292</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr</code> from 3.53.0 to 3.186.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/298 ">#298</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr-public</code> from 3.53.0 to 3.186.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/299 ">#299</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/login-action/compare/v2.0.0...v2.1.0 ">https://github.com/docker/login-action/compare/v2.0.0...v2.1.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="f4ef78c080https://github-redirect.dependabot.com/docker/login-action/issues/299 ">#299</a> from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a href="9ad4ce3929884eadd4f8a266232f5chttps://github-redirect.dependabot.com/docker/login-action/issues/298 ">#298</a> from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a href="f97efcfbf95ae789beac71c23b5b34https://github-redirect.dependabot.com/docker/login-action/issues/292 ">#292</a> from docker/dependabot/npm_and_yarn/actions/core-1.10.0</li>
<li><a href="6401d70aab67e8909cc621f251affchttps://github-redirect.dependabot.com/docker/login-action/issues/275 ">#275</a> from crazy-max/redact-aws-creds</li>
<li>Additional commits viewable in <a href="https://github.com/docker/login-action/compare/v2.0.0...v2.1.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-10-19 21:29:43 +00:00
dependabot[bot]
93ab364abc
build(deps): Bump slackapi/slack-github-action from 1.22.0 to 1.23.0 ( #9564 )
...
Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action ) from 1.22.0 to 1.23.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/slackapi/slack-github-action/releases ">slackapi/slack-github-action's releases</a>.</em></p>
<blockquote>
<h2>Slack Send V1.23.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Bump node from 12 to 16 by <a href="https://github.com/quinnjn "><code>@quinnjn</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/128 ">slackapi/slack-github-action#128</a></li>
<li>Bump eslint from 8.23.0 to 8.24.0 by <a href="https://github.com/dependabot "><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/135 ">slackapi/slack-github-action#135</a></li>
<li>Bump <code>@actions/core</code> from 1.9.1 to 1.10.0 by <a href="https://github.com/dependabot "><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/134 ">slackapi/slack-github-action#134</a></li>
<li>Bump <code>@actions/github</code> from 5.0.3 to 5.1.1 by <a href="https://github.com/dependabot "><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/133 ">slackapi/slack-github-action#133</a></li>
<li>Use https proxy agent by <a href="https://github.com/EHitchcockIAG "><code>@EHitchcockIAG</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/132 ">slackapi/slack-github-action#132</a></li>
<li>Release v1.23.0 by <a href="https://github.com/hello-ashleyintech "><code>@hello-ashleyintech</code></a> in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/139 ">slackapi/slack-github-action#139</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/quinnjn "><code>@quinnjn</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/128 ">slackapi/slack-github-action#128</a></li>
<li><a href="https://github.com/EHitchcockIAG "><code>@EHitchcockIAG</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/132 ">slackapi/slack-github-action#132</a></li>
<li><a href="https://github.com/hello-ashleyintech "><code>@hello-ashleyintech</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/slackapi/slack-github-action/pull/139 ">slackapi/slack-github-action#139</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/slackapi/slack-github-action/compare/v1.22.0...v1.23.0 ">https://github.com/slackapi/slack-github-action/compare/v1.22.0...v1.23.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="007b2c3c7560532b0844https://github-redirect.dependabot.com/slackapi/slack-github-action/issues/139 ">#139</a>)</li>
<li><a href="acb114ffb5https://github-redirect.dependabot.com/slackapi/slack-github-action/issues/132 ">#132</a>)</li>
<li><a href="0ae8044e6f71bf093cd3https://github-redirect.dependabot.com/slackapi/slack-github-action/issues/133 ">#133</a>)</li>
<li><a href="9dba6b6137https://github-redirect.dependabot.com/slackapi/slack-github-action/issues/134 ">#134</a>)</li>
<li><a href="7190fb233ehttps://github-redirect.dependabot.com/slackapi/slack-github-action/issues/135 ">#135</a>)</li>
<li><a href="a764c057f3https://github-redirect.dependabot.com/slackapi/slack-github-action/issues/128 ">#128</a>)</li>
<li><a href="eb1a153fadhttps://github.com/slackapi/slack-github-action/compare/v1.22.0...v1.23.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-10-19 21:28:32 +00:00
dependabot[bot]
1c60efc0bc
build(deps): Bump styfle/cancel-workflow-action from 0.10.1 to 0.11.0 ( #9561 )
...
Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action ) from 0.10.1 to 0.11.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/styfle/cancel-workflow-action/releases ">styfle/cancel-workflow-action's releases</a>.</em></p>
<blockquote>
<h2>0.11.0</h2>
<h3>Minor Changes</h3>
<ul>
<li>Update to Node 16: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/186 ">#186</a></li>
<li>Chore: rebuild: 1e0e690cd3756927cda56ad0033137ff1268c477</li>
<li>Chore(deps-dev): bump typescript from 4.8.3 to 4.8.4: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/181 ">#181</a></li>
<li>Chore(deps): bump <code>@actions/github</code> from 5.1.0 to 5.1.1: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/182 ">#182</a></li>
<li>Chore(deps): bump <code>@actions/core</code> from 1.9.1 to 1.10.0: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/183 ">#183</a></li>
</ul>
<h3>Credits</h3>
<p>Huge thanks to <a href="https://github.com/mattjohnsonpint "><code>@mattjohnsonpint</code></a> for helping!</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="b173b6ec011e0e690cd34e668e5dc3https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/186 ">#186</a>)</li>
<li><a href="f78dcd888ehttps://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/183 ">#183</a>)</li>
<li><a href="6b6782c03dhttps://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/182 ">#182</a>)</li>
<li><a href="1a300fe93chttps://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/181 ">#181</a>)</li>
<li>See full diff in <a href="https://github.com/styfle/cancel-workflow-action/compare/0.10.1...0.11.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-10-19 21:27:11 +00:00
dependabot[bot]
6768b98568
build(deps): Bump docker/setup-buildx-action from 2.0.0 to 2.1.0 ( #9563 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.0.0 to 2.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases ">docker/setup-buildx-action's releases</a>.</em></p>
<blockquote>
<h2>v2.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Auth support for tls endpoint by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/164 ">#164</a>)</li>
<li>Nodes metadata JSON ouput by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/162 ">#162</a>)
<ul>
<li><code>endpoint</code>, <code>status</code> and <code>flags</code> outputs are deprecated. Use <code>nodes</code> output instead.</li>
</ul>
</li>
<li>Skip setting buildkitd flags and config for remote driver by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/161 ">#161</a>)</li>
<li>Move args logic to context module and add tests by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/169 ">#169</a>)</li>
<li>Remove workaround for <code>setOutput</code> by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/170 ">#170</a>)</li>
<li>Fix deprecated <code>fs.rmdir</code> by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/171 ">#171</a>)</li>
<li>Docs: clarify install option by <a href="https://github.com/rodrigc "><code>@rodrigc</code></a> in (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/152 ">#152</a>)</li>
<li>Bump <code>@actions/core</code> from 1.6.0 to 1.10.0 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/151 ">#151</a> <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/157 ">#157</a> <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/167 ">#167</a>)</li>
<li>Bump <code>@actions/tool-cache</code> from 1.7.2 to 2.0.1 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/150 ">#150</a>)</li>
<li>Bump <code>@actions/http-client</code> from 1.0.11 to 2.0.1 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/149 ">#149</a>)</li>
<li>Bump uuid from 8.3.2 to 9.0.0 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/159 ">#159</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0 ">https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="95cb08cb26https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/171 ">#171</a> from crazy-max/rmsync</li>
<li><a href="eb5c2a6eea83612bea36https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/170 ">#170</a> from crazy-max/setOutput</li>
<li><a href="40fefd8a5890a1e4619ehttps://github-redirect.dependabot.com/docker/setup-buildx-action/issues/169 ">#169</a> from crazy-max/context-module</li>
<li><a href="5a9fc405756c48dad5f0https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/159 ">#159</a> from docker/dependabot/npm_and_yarn/uuid-9.0.0</li>
<li><a href="16c2ddbfa70fe8589bf4f3692cbe43https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/167 ">#167</a> from docker/dependabot/npm_and_yarn/actions/core-1.10.0</li>
<li>Additional commits viewable in <a href="https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-10-19 21:25:52 +00:00
dependabot[bot]
3cdfbda2eb
build(deps): Bump docker/build-push-action from 3.1.1 to 3.2.0 ( #9562 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 3.1.1 to 3.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases ">docker/build-push-action's releases</a>.</em></p>
<blockquote>
<h2>v3.2.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Remove workaround for <code>setOutput</code> by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/704 ">#704</a>)</li>
<li>Docs: fix Git context link and add more details about subdir support by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/685 ">#685</a>)</li>
<li>Docs: named context by <a href="https://github.com/baibaratsky "><code>@baibaratsky</code></a> and <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/665 ">#665</a>)</li>
<li>Bump <code>@actions/core</code> from 1.9.0 to 1.10.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/667 ">#667</a> <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/695 ">#695</a>)</li>
<li>Bump <code>@actions/github</code> from 5.0.3 to 5.1.1 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/696 ">#696</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v3.1.1...v3.2.0 ">https://github.com/docker/build-push-action/compare/v3.1.1...v3.2.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="c56af95754https://github-redirect.dependabot.com/docker/build-push-action/issues/704 ">#704</a> from crazy-max/setOutput</li>
<li><a href="75aaa63262f97d6e2850https://github-redirect.dependabot.com/docker/build-push-action/issues/700 ">#700</a> from crazy-max/update-docs</li>
<li><a href="47c00d78bf871b930e7a105bf59b0048888e0b13https://github-redirect.dependabot.com/docker/build-push-action/issues/699 ">#699</a> from crazy-max/docs-outputs</li>
<li><a href="6b820ad47ee1a10350eehttps://github-redirect.dependabot.com/docker/build-push-action/issues/665 ">#665</a> from baibaratsky/patch-1</li>
<li><a href="0f5a7d48d5https://github.com/docker/build-push-action/compare/v3.1.1...v3.2.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-10-19 21:24:16 +00:00
Thane Thomson
6ea968d576
ci: Update Slack nightly failure messages ( #9551 )
...
It's mostly not true that a particular commit _caused_ a failure, so I've changed the wording here.
---
#### PR checklist
- [x] Tests written/updated, or no tests needed
- [x] `CHANGELOG_PENDING.md` updated, or no changelog entry needed
- [x] Updated relevant documentation (`docs/`) and code comments, or no
documentation updates needed
2022-10-17 11:42:08 +00:00
dependabot[bot]
45518db3d0
build(deps): Bump styfle/cancel-workflow-action from 0.10.0 to 0.10.1 ( #9501 )
...
Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action ) from 0.10.0 to 0.10.1.
- [Release notes](https://github.com/styfle/cancel-workflow-action/releases )
- [Commits](https://github.com/styfle/cancel-workflow-action/compare/0.10.0...0.10.1 )
---
updated-dependencies:
- dependency-name: styfle/cancel-workflow-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-03 11:03:48 +02:00
Thane Thomson
f76f6535b4
ci: Only notify on nightly E2E failures ( #9495 )
...
Signed-off-by: Thane Thomson <connect@thanethomson.com >
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-09-28 10:07:06 -04:00
dependabot[bot]
20ffe9e101
build(deps): Bump actions/stale from 5 to 6 ( #9493 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 5 to 6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/stale/releases ">actions/stale's releases</a>.</em></p>
<blockquote>
<h2>v6.0.0</h2>
<p>⚠️ Breaking change ⚠️ </p>
<p>Issues/PRs default <code>close-issue-reason</code> is now <code>not_planned</code>(<a href="https://github-redirect.dependabot.com/actions/stale/issues/789 ">#789</a>)</p>
<h2>V5.2.0</h2>
<p>Features:
New option <code>include-only-assigned</code> enables users to process only issues/PRs that are already assigned. If there is no assignees and this option is set, issue will not be processed per: <a href="https://github-redirect.dependabot.com/actions/stale/issues/596 ">issue/596</a></p>
<p>Fixes:
Fix date comparison edge case <a href="https://github-redirect.dependabot.com/actions/stale/pull/816 ">PR/816</a></p>
<p>Dependency Updates:
<a href="https://github-redirect.dependabot.com/actions/stale/pull/812 ">PR/812</a></p>
<h2>Fix issue when days-before-close is more than days-before-stale</h2>
<p>fixes a bug introduced in <a href="https://github-redirect.dependabot.com/actions/stale/issues/717 ">#717</a></p>
<p>fixed in <a href="https://github-redirect.dependabot.com/actions/stale/issues/775 ">#775</a></p>
<h2>v5.1.0</h2>
<h1>[5.1.0]</h1>
<p><a href="https://github-redirect.dependabot.com/actions/stale/issues/696 ">Don't process stale issues right after they're marked stale</a>
Add close-issue-reason option <a href="https://github-redirect.dependabot.com/actions/stale/pull/764 ">#764</a><a href="https://github-redirect.dependabot.com/actions/stale/pull/772 ">#772</a>
Various dependabot/dependency updates</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/actions/stale/blob/main/CHANGELOG.md ">actions/stale's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h1>[6.0.0]</h1>
<p>⚠️ Breaking change ⚠️ </p>
<p>Issues/PRs default <code>close-issue-reason</code> is now <code>not_planned</code>(<a href="https://github-redirect.dependabot.com/actions/stale/issues/789 ">#789</a>)</p>
<h1>[5.1.0]</h1>
<p><a href="https://github-redirect.dependabot.com/actions/stale/issues/696 ">Don't process stale issues right after they're marked stale</a>
[Add close-issue-reason option]<a href="https://github-redirect.dependabot.com/actions/stale/pull/764 ">#764</a><a href="https://github-redirect.dependabot.com/actions/stale/pull/772 ">#772</a>
Various dependabot/dependency updates</p>
<h2><a href="https://github.com/actions/stale/compare/v3.0.19...v4.1.0 ">4.1.0</a> (2021-07-14)</h2>
<h2>Features</h2>
<ul>
<li><a href="9912fa74d1https://github.com/actions/stale/compare/v3.0.19...v4.0.0 ">4.0.0</a> (2021-07-14)</h2>
<h3>Features</h3>
<ul>
<li><strong>options:</strong> simplify config by removing skip stale message options (<a href="https://github-redirect.dependabot.com/actions/stale/issues/457 ">#457</a>) (<a href="6ec637d238https://github-redirect.dependabot.com/actions/stale/issues/405 ">#405</a> <a href="https://github-redirect.dependabot.com/actions/stale/issues/455 ">#455</a></li>
<li><strong>output:</strong> print output parameters (<a href="https://github-redirect.dependabot.com/actions/stale/issues/458 ">#458</a>) (<a href="3e6d35b685https://github-redirect.dependabot.com/actions/stale/issues/500 ">#500</a>) (<a href="f1017f33ddhttps://github-redirect.dependabot.com/actions/stale/issues/499 ">#499</a></li>
<li><strong>logs:</strong> coloured logs (<a href="https://github-redirect.dependabot.com/actions/stale/issues/465 ">#465</a>) (<a href="5fbbfba142https://github-redirect.dependabot.com/actions/stale/issues/474 ">#474</a>) (<a href="5f6f311ca6https://github-redirect.dependabot.com/actions/stale/issues/466 ">#466</a></li>
<li><strong>label comparison</strong>: make label comparison case insensitive <a href="https://github-redirect.dependabot.com/actions/stale/pull/517 ">#517</a>, closes <a href="https://github-redirect.dependabot.com/actions/stale/pull/516 ">#516</a></li>
<li><strong>filtering comments by actor could have strange behavior</strong>: "stale" comments are now detected based on if the message is the stale message not <em>who</em> made the comment(<a href="https://github-redirect.dependabot.com/actions/stale/pull/519 ">#519</a>), fixes <a href="https://github-redirect.dependabot.com/actions/stale/pull/441 ">#441</a>, <a href="https://github-redirect.dependabot.com/actions/stale/pull/509 ">#509</a>, <a href="https://github-redirect.dependabot.com/actions/stale/pull/518 ">#518</a></li>
</ul>
<h3>Breaking Changes</h3>
<ul>
<li>The options <code>skip-stale-issue-message</code> and <code>skip-stale-pr-message</code> were removed. Instead, setting the options <code>stale-issue-message</code> and <code>stale-pr-message</code> will be enough to let the stale workflow add a comment. If the options are unset, a comment will not be added which was the equivalent of setting <code>skip-stale-issue-message</code> to <code>true</code>.</li>
<li>The <code>operations-per-run</code> option will be more effective. After migrating, you could face a failed-fast process workflow if you let the default value (30) or set it to a small number. In that case, you will see a warning at the end of the logs (if enabled) indicating that the workflow was stopped sooner to avoid consuming too much API calls. In most cases, you can just increase this limit to make sure to process everything in a single run.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="3de2653986https://github-redirect.dependabot.com/actions/stale/issues/829 ">#829</a>)</li>
<li><a href="02e44c81cchttps://github-redirect.dependabot.com/actions/stale/issues/807 ">#807</a>)</li>
<li>See full diff in <a href="https://github.com/actions/stale/compare/v5...v6 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-09-27 15:51:22 +00:00
Emmanuel T Odeke
ed68aadd2b
.github/workflows: add cosmos/gosec vulnerability scanner for each Push/PR ( #9464 )
...
Adds a code vulnerability scanner that'll flag issues and issue advisories from cosmos/gosec https://github.com/cosmos/gosec
2022-09-23 20:26:55 +00:00
dependabot[bot]
0f857047c5
build(deps): Bump bufbuild/buf-setup-action from 1.7.0 to 1.8.0 ( #9450 )
...
Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action ) from 1.7.0 to 1.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/bufbuild/buf-setup-action/releases ">bufbuild/buf-setup-action's releases</a>.</em></p>
<blockquote>
<h2>v1.8.0</h2>
<ul>
<li>Set the default buf version to v1.8.0</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="ebfad693a19da1a4b683https://github-redirect.dependabot.com/bufbuild/buf-setup-action/issues/58 ">#58</a>)</li>
<li>See full diff in <a href="https://github.com/bufbuild/buf-setup-action/compare/v1.7.0...v1.8.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-09-20 13:05:28 +00:00
dependabot[bot]
d67be51ef4
build(deps): Bump slackapi/slack-github-action from 1.21.0 to 1.22.0 ( #9431 )
...
Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action ) from 1.21.0 to 1.22.0.
- [Release notes](https://github.com/slackapi/slack-github-action/releases )
- [Commits](https://github.com/slackapi/slack-github-action/compare/v1.21.0...v1.22.0 )
---
updated-dependencies:
- dependency-name: slackapi/slack-github-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-13 16:53:17 -04:00
Thane Thomson
10f3626e6f
ci: Only allow automated security-related updates until v0.37.0 release ( #9430 )
...
As per discussion with @sergio-mena, this should disable all automated
dependency updates that are not security-related. We should make this
part of our standard practice when cutting new major releases, given
that our QA process for major releases is expensive at present and we
cannot re-run it for every dependency update.
Once we have cut a final major release, we can consider re-enabling
automated dependency updates here that can be rolled out in minor
releases.
Signed-off-by: Thane Thomson <connect@thanethomson.com >
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-09-13 16:46:34 -04:00
Julien Robert
101bf50e71
refactor: migrate to cosmos/gogoproto ( #9356 )
...
* refactor: migrate to `cosmos/gogoproto`
* add changelog
* Update Makefile
Co-authored-by: Thane Thomson <connect@thanethomson.com >
* update link
Co-authored-by: Thane Thomson <connect@thanethomson.com >
2022-09-06 07:28:37 -04:00
Thane Thomson
6bdc970377
ci: Pre-release workflows ( #9366 )
...
In preparation for the v0.37 release, this PR updates:
1. The [release guidelines](https://github.com/tendermint/tendermint/blob/thane/pre-release-workflows/RELEASES.md#pre-releases ) regarding alpha and beta versions, as well as release candidates.
2. The GitHub workflows to build all 3 kinds of pre-releases for:
1. Docker images
2. Binaries (I'm still not 100% sure whether this is necessary, but it does act as a clear signal to users that a pre-release is available, and pre-built binaries could be useful for people running testnets who don't use Docker)
3. The Goreleaser config to auto-detect whether a tag is a pre-release and mark it as such as the release is created on GitHub.
---
#### PR checklist
- [x] Tests written/updated, or no tests needed
- [x] `CHANGELOG_PENDING.md` updated, or no changelog entry needed
- [x] Updated relevant documentation (`docs/`) and code comments, or no
documentation updates needed
2022-09-02 23:16:28 +00:00
Thane Thomson
bdf0217bd8
ci: Prepare for v0.37 release branch ( #9338 )
...
* Add nightly E2E tests on v0.37.x branch
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Add mergify config to backport to v0.37.x
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update dependabot config for v0.37.x
Signed-off-by: Thane Thomson <connect@thanethomson.com >
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-08-30 22:53:12 -04:00
Thane Thomson
daaf5d6441
docs: Update all docs to prepare for v0.37 ( #9243 )
...
* Update docs references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update DOCS_README to reflect current reality
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update vuepress config with current versions and updated discussions link
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update generated docs versions
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update docs build to use temp folder instead of home
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Document build-docs Makefile target
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Add serve-docs Makefile target to serve local build of docs
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Ensure 404 page is copied during docs build
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Redirect /master/ to /main/
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Attempt to resolve #7908
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update OpenAPI references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update CHANGELOG references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update Docker readme references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update UPGRADING references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update package-specific documentation references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update spec references from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update all code comment references to docs site from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Build v0.34.x as "latest"
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Explicitly mark v0.34 docs as latest in version selector
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update all links from docs.tendermint.com/main to docs.tendermint.com/latest
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* ci: Redeploy docs on pushes to v0.34.x
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Temporarily copy spec directory into docs while building
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Add nav link to main and clearly mark as unstable
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Revert to only publishing docs in nav for v0.34 and v0.33 with no latest
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Link to docs.tendermint.com/v0.34 from RFCs
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Rather just use main for all docs.tendermint.com references on main branch
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Rename GitHub tree links from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update link for ABCI Rust client
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update github links from master to main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update badges in root readme
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove codecov badge since we do not use it any more
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove Java and Kotlin tutorials
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove specs from docs build
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Migrate spec links to GitHub repo from docs site
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove references to non-existent PEX reactor spec
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Fix linting badge in README
Signed-off-by: Thane Thomson <connect@thanethomson.com >
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-08-19 13:18:33 -04:00
William Banfield
0bea0647fe
tools: remove mockery from tools.go ( #9196 )
...
The `mockery` project recommends against using a binary of `mockery` that has been created using `go install`. https://github.com/vektra/mockery/pull/456 . Developers of Tendermint wishing to generate mocks should avoid having a version of `mockery` on their path that does not match the version listed in [mockery_generate.sh](10e1ac8fea/scripts/mockery_generate.sh (L11)
2022-08-09 15:12:31 +00:00
Sam Kleinman
d5ec276052
e2e: fix out of sync configuration ( #9199 )
...
The v0.34.x tests have been failing (or reporting failures, I don't
believe that this is a real failure,) because the CI configuration has
been out of sync with itself, likely due to a mistake during
backporting configs from the `master` branch.
The entire 0.34.x e2e test suite takes 26 minutes to run, plus about 7
minutes to build the docker image. Each split has to build the same
docker image, (and is therefore a cap on the amount of parallelism we
can get at the moment.) Having more groups, just seems like we'll be
burning money building the docker image with no really meaningful
difference in throughput. For a nightly test that people don't really
wait on, the current latency (time-to-completion) of roughly 19
minutes, isn't causing in friction.
2022-08-09 12:02:14 +00:00
dependabot[bot]
74dd21eb89
build(deps): Bump docker/build-push-action from 3.1.0 to 3.1.1 ( #9189 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 3.1.0 to 3.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases ">docker/build-push-action's releases</a>.</em></p>
<blockquote>
<h2>v3.1.1</h2>
<ul>
<li>Fix GitHub token not passed with Git context if subdir defined by <a href="https://github.com/crazy-max "><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/663 ">#663</a>)</li>
<li>Replace deprecated <code>fs.rmdir</code> with <code>fs.rm</code> by <a href="https://github.com/bendrucker "><code>@bendrucker</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/657 ">#657</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v3.1.0...v3.1.1 ">https://github.com/docker/build-push-action/compare/v3.1.0...v3.1.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="c84f382811https://github-redirect.dependabot.com/docker/build-push-action/issues/663 ">#663</a> from crazy-max/fix-git-token-cond</li>
<li><a href="cd5d0b79eahttps://github-redirect.dependabot.com/docker/build-push-action/issues/661 ">#661</a> from dud225/subdir_context</li>
<li><a href="30a32246ba1f19633b9267af6dc1d3https://github-redirect.dependabot.com/docker/build-push-action/issues/657 ">#657</a> from bendrucker/deprecated-fs-rmdir</li>
<li><a href="988cb093f2https://github.com/docker/build-push-action/compare/v3.1.0...v3.1.1 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2022-08-08 13:35:59 +00:00
Thane Thomson
ef4e37b532
ci: Restore ToC check for ADRs/RFCs ( #9180 )
...
* Import presubmit TOC check script from master and fix warning
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Fix misspelled ADR link discovered by presubmit script
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Restore docs-toc workflow
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Create makefile target for docs ToC check
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Use makefile target in CI workflow for docs ToC check
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-08-06 13:19:05 -04:00
Thane Thomson
03c79b666d
ci: Fix nightly E2E notifications ( #9179 )
...
Update the nightly E2E workflows to fix the notifications for the
v0.34.x branch while also simplifying the messages and making them more
readable.
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-08-06 10:17:21 -04:00
Thane Thomson
1148759a94
ci: Update nightly E2E notifications ( #9177 )
2022-08-05 21:38:14 -04:00
Callum Waters
1e9d81fb8a
chore: bump go to 1.18 ( #9147 )
2022-08-01 16:45:25 +02:00
dependabot[bot]
476f8fa7a8
build(deps): Bump bufbuild/buf-setup-action from 1.6.0 to 1.7.0 ( #9131 )
2022-08-01 10:15:33 +02:00
Thane Thomson
85636f6a00
Prepare main to become new default branch ( #9095 )
...
* Update Makefile with changes from #7372
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Sync main GitHub config with master and update
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove unnecesary dot folders
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Sync dotfiles
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove unused Jepsen tests for now
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* tools: remove k8s (#6625 )
Remove mintnet as discussed on team call.
closes #1941
* Restore nightly fuzz testing of P2P addrbook and pex
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Fix YAML lints
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Fix YAML formatting nits
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* More YAML nits
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* github: fix linter configuration errors and occluded errors (#6400 )
* Minor fixes to OpenAPI spec to sync with structs on main
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove .github/auto-comment.yml - does not appear to be used
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Add issue config with link to discussions
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Adjust issue/PR templates to suit current process
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Remove unused RC branch config from release workflow
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Fix wildcard matching in build jobs config
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Document markdownlint config
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Restore manual E2E test group config
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Document linter workflow with local execution instructions
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Document and fix minor nit in Super-Linter markdownlint config
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Update .github/ISSUE_TEMPLATE/bug-report.md
Co-authored-by: William Banfield <4561443+williambanfield@users.noreply.github.com >
* Apply suggestions from code review
Co-authored-by: William Banfield <4561443+williambanfield@users.noreply.github.com >
* Update pull request template to add language around discussions/issues
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* .golangci.yml: Deleted commented-out lines
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* ci: Drop "-2" from e2e-nightly-fail workflow
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Address triviality concern in PR template
Signed-off-by: Thane Thomson <connect@thanethomson.com >
Co-authored-by: Marko <marbar3778@yahoo.com >
Co-authored-by: Sam Kleinman <garen@tychoish.com >
Co-authored-by: William Banfield <4561443+williambanfield@users.noreply.github.com >
2022-07-29 15:20:03 -04:00
Thane Thomson
8834a0dbae
Update CODEOWNERS to use teams ( #9129 )
...
* Update CODEOWNERS to use teams
Update the `CODEOWNERS` file to use the
@tendermint/tendermint-engineering and @tendermint/tendermint-research
teams as opposed to adding people one by one. This makes repository
administration somewhat easier to manage, especially when
onboarding/offboarding people.
Signed-off-by: Thane Thomson <connect@thanethomson.com >
* Add Ethan as superuser
Signed-off-by: Thane Thomson <connect@thanethomson.com >
2022-07-29 15:12:28 -04:00
Callum Waters
0323bd5365
Merge branch 'main' into cal/spec-migrations
2022-07-27 00:05:03 +02:00
Callum Waters
a11b7743d4
fix mockery generation script ( #9094 )
2022-07-26 22:53:15 +02:00
Callum Waters
1ad0683189
Merge tag 'v0.7.1' of github.com:tendermint/spec into cal/spec-migrations
...
Tendermint specification version 0.7.1
2022-07-26 15:01:36 +02:00
dependabot[bot]
9e14e954f9
build(deps): Bump bufbuild/buf-setup-action from 1.5.0 to 1.6.0 ( #8880 )
...
Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases )
- [Commits](https://github.com/bufbuild/buf-setup-action/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: bufbuild/buf-setup-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sam Kleinman <garen@tychoish.com >
2022-06-27 10:20:25 -04:00
Jasmina Malicevic
b83cc0aeda
makefile: buf setup backport v0.34 ( #8863 )
2022-06-24 13:58:25 -04:00
dependabot[bot]
ac2e7fab3d
build(deps): Bump goreleaser/goreleaser-action from 2 to 3 ( #8588 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 2 to 3.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-23 08:31:32 -04:00
dependabot[bot]
ad72896ca5
build(deps): Update rtCamp/action-slack-notify requirement to f565a63638bd3615e76249bffab00fcb9dab90f7 ( #8553 )
...
Updates the requirements on [rtCamp/action-slack-notify](https://github.com/rtCamp/action-slack-notify ) to permit the latest version.
- [Release notes](https://github.com/rtCamp/action-slack-notify/releases )
- [Commits](f565a63638support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-16 08:14:55 -07:00
dependabot[bot]
9afdac6b52
build(deps): Bump actions/checkout from 2 to 3 ( #8555 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-16 08:12:15 -07:00
dependabot[bot]
9d1556a5bc
build(deps): Bump actions/stale from 3 to 5 ( #8554 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 3 to 5.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v3...v5 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-16 07:26:22 -07:00
dependabot[bot]
7ae73be891
build(deps): Bump gaurav-nelson/github-action-markdown-link-check from 1.0.7 to 1.0.14 ( #8552 )
...
* build(deps): Bump gaurav-nelson/github-action-markdown-link-check
Bumps [gaurav-nelson/github-action-markdown-link-check](https://github.com/gaurav-nelson/github-action-markdown-link-check ) from 1.0.7 to 1.0.14.
- [Release notes](https://github.com/gaurav-nelson/github-action-markdown-link-check/releases )
- [Commits](https://github.com/gaurav-nelson/github-action-markdown-link-check/compare/1.0.7...1.0.14 )
---
updated-dependencies:
- dependency-name: gaurav-nelson/github-action-markdown-link-check
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-16 07:00:02 -07:00
dependabot[bot]
bbb1506f5e
build(deps): Bump docker/login-action from 1 to 2 ( #8551 )
2022-05-16 09:45:49 -04:00
dependabot[bot]
7cb014cf27
build(deps): Bump docker/build-push-action from 2 to 3 ( #8539 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 2 to 3.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:24:41 -07:00
dependabot[bot]
004967f962
build(deps): Bump technote-space/get-diff-action from 4 to 6 ( #8538 )
...
Bumps [technote-space/get-diff-action](https://github.com/technote-space/get-diff-action ) from 4 to 6.
- [Release notes](https://github.com/technote-space/get-diff-action/releases )
- [Changelog](https://github.com/technote-space/get-diff-action/blob/main/.releasegarc )
- [Commits](https://github.com/technote-space/get-diff-action/compare/v4...v6 )
---
updated-dependencies:
- dependency-name: technote-space/get-diff-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:21:29 -07:00
dependabot[bot]
6670c24e5f
build(deps): Bump actions/upload-artifact from 2 to 3 ( #8537 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:19:41 -07:00
dependabot[bot]
b685ec7f2d
build(deps): Bump actions/setup-go from 2 to 3 ( #8532 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:17:59 -07:00
dependabot[bot]
34f23ab88a
build(deps): Bump actions/cache from 2.1.4 to 3.0.2 ( #8531 )
...
* build(deps): Bump actions/cache from 2.1.4 to 3.0.2
Bumps [actions/cache](https://github.com/actions/cache ) from 2.1.4 to 3.0.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v2.1.4...v3.0.2 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:05:58 -07:00
dependabot[bot]
aef0bd874d
build(deps): Bump actions/download-artifact from 2 to 3 ( #8528 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 2 to 3.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 13:02:48 -07:00
dependabot[bot]
d2bd4471bc
build(deps): Bump codecov/codecov-action from 1.0.13 to 3.1.0 ( #8527 )
...
* build(deps): Bump codecov/codecov-action from 1.0.13 to 3.1.0
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 1.0.13 to 3.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v1.0.13...v3.1.0 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 12:59:18 -07:00
dependabot[bot]
c7006af6fd
build(deps): Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 ( #8524 )
...
* build(deps): Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3.1.0...v3.2.0 )
---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-13 12:56:52 -07:00
dependabot[bot]
972eee6ebc
build(deps): Bump docker/setup-buildx-action from 1 to 2 ( #8522 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 1 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: M. J. Fromberger <fromberger@interchain.io >
2022-05-13 12:49:28 -07:00
