⚠️ CONFLICT! Lineage pull request for: skeleton #44
Commits on Jun 23, 2023
Commits on Jun 28, 2023
-
Add an empty meta/requirements.yml file
Also add comments explaining when dependencies should be listed in meta/main.yml versus meta/requirements.yml.
-
This is done to be consistent with the language used in the Ansible project. Co-authored-by: Nick <[email protected]>
Commits on Jun 29, 2023
Commits on Jul 11, 2023
-
-
Co-authored-by: Nick <[email protected]>
-
Update tool names to match author stylization
Co-authored-by: Nick <[email protected]>
-
Update statcicheck stylization
Co-authored-by: Nick <[email protected]>
Commits on Jul 12, 2023
-
Temporarily use a different branch of cisagov/setup-env-github-action
This is being done for testing purposes, and this commit can be reverted (or removed) once cisagov/setup-env-github-action#65 is merged.
-
-
Co-authored-by: Nick <[email protected]>
-
Co-authored-by: Nick <[email protected]>
Commits on Jul 13, 2023
-
Use the correct repo name for the ansible-lint pre-commit hook
The repo name we were using redirects to the correct place, but we may as well cut out the middle man.
-
Correct staticcheck reference to setup-env, sort alphabetically and c…
…orrect staticcheck package URL Co-Authored By: @mcdonnnj <[email protected]>
-
Co-authored-by: Shane Frasier <[email protected]>
Commits on Jul 14, 2023
-
Remove unnecessary quotes in the dependabot configuration
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value.
-
Sort the keys in the Dependabot configuration
Our standard practice for YAML files is to sort keys alphabetically.
Commits on Jul 18, 2023
-
Co-authored-by: David Harris <[email protected]>
Commits on Jul 25, 2023
Commits on Aug 16, 2023
-
Co-authored-by: Nick <[email protected]>
Commits on Aug 22, 2023
-
Revert "Temporarily use a different branch of cisagov/setup-env-githu…
…b-action" This reverts commit ddbf6f7. This can be done now that cisagov/setup-env-github-action#65 has been merged.
Commits on Aug 28, 2023
Commits on Sep 4, 2023
-
Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Commits on Sep 11, 2023
-
-
Update the dependabot ignore configuration
Add crazy-max/ghaction-github-labeler as a commented out dependency to ignore in the dependabot configuration file. This should be enabled in downstream projects to consolidate updating this Action to the cisagov/skeleton-generic repository.
Commits on Sep 13, 2023
-
Merge pull request #138 from cisagov/add-go-packages
Add go packages for pre-commit
-
Merge pull request #139 from cisagov/improvement/use-correct-repo-name
Use the correct repo name for the ansible-lint pre-commit hook
-
Merge pull request #140 from cisagov/improvement/update_dependabot_co…
…nfiguration Update the Dependabot configuration
-
Merge pull request #141 from cisagov/documentation/grammar
Delete duplicate word "are"
-
Merge pull request #143 from cisagov/add-nixfmt
Add nixfmt pre-commit hook
-
Merge pull request #145 from cisagov/dependabot/github_actions/action…
…s/checkout-4 Bump actions/checkout from 3 to 4
-
Merge pull request #146 from cisagov/improvement/update_labeler_action
Update the version of the `crazy-max/ghaction-github-labeler` Action and add a dependabot ignore directive
-
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command.
-
Switch to the pre-commit mirror for black
This mirror was created to leverage performance optimizations from mypyc wheels that are available if black is installed from PyPI. These wheels are not available if black is installed from source as it would be using the old URL. Please see psf/black#3828 and psf/black#3405 for more information.
-
Add the crazy-max/ghaction-github-status GitHub action
This action is added in a separate "diagnostics" job. As configured it will never fail, but it will print out the status of the various GitHub components. This information will sometimes be useful when determining why builds fail after the fact. Co-authored-by: Mark Feldhousen <[email protected]> Co-authored-by: Nick <[email protected]>
3 people committedSep 13, 2023 -
Make the lint job depend on the diagnostics job
Even though the diagnostics job is not currently configured to fail due to the GitHub status, it is still true that if the job is unable to run that does not bode well for the lint job's successful execution. Co-authored-by: Nick <[email protected]>
-
Add a GH Action to dump the context
This can be useful when debugging why a GH Action failed. Co-authored-by: felddy <[email protected]>
-
-
Add the step-security/harden-runner GH Action
This GH Action is being configured to run in audit mode. It should warn us if an Action is reaching out to an unexpected web address, overwriting source code, etc. Co-authored-by: felddy <[email protected]>
-
Add a harden-runner task to the lint job as well
This task can only provide coverage for the job that contains it.
-
We need a reminder add the step-security/harden-runner action at the top of every job. Co-authored-by: Nick <[email protected]>
-
Merge pull request #142 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
-
Merge pull request #148 from cisagov/improvement/change_black_repository
Change the source repository for the `black` hook
-
Merge pull request #144 from cisagov/improvement/add-github-status-jazz
Add a job that runs diagnostics
-
Enable dependabot ignore directives
Enable the new dependabot ignore directives that were added in cisagov/skeleton-generic.
Commits on Sep 18, 2023
-
Remove unnecessary quotes in the dependabot configuration
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic. Co-authored-by: Shane Frasier <[email protected]>
-
Bump actions/checkout from 3 to 4
This updates the `test` job to match what was pulled down from cisagov/skeleton-generic.
-
Update job dependencies for the build.yml workflow
Add the `diagnostics` job as a dependency for the `test` job.
-
Add runner hardening to all jobs in our workflows
This aligns with what was done to the `lint` job of the build.yml workflow that was inherited from cisagov/skeleton-generic.
-
Adjust key ordering for the
testjobEnsure that top-level keys except for `steps` are alphabetically sorted.
-
Remove unnecessary quotes in the codeql-analysis.yml workflow
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic.
Commits on Sep 19, 2023
-
Merge pull request #160 from cisagov/lineage/skeleton
⚠️ CONFLICT! Lineage pull request for: skeleton -
Merge pull request #157 from cisagov/improvement/prefer-true-and-fals…
…e-to-yes-and-no-in-yaml Prefer true/false to yes/no in YAML files
-
Merge pull request #155 from cisagov/improvement/alphabetize-yaml-att…
…ributes Alphabetize YAML attributes
-
Merge pull request #154 from cisagov/improvement/add-requirements-file
Add an empty meta/requirements.yml file
-
Merge pull request #152 from cisagov/improvement/add-standalone-to-ro…
…le-metadata Add a standalone attribute to the role metadata
-
-
-
-
-
-
-
Merge pull request #158 from cisagov/improvement/systemd-enabled
Add SystemD-enabled molecule scenario