From 7b4fe1cd988fd8d50a8b38cb7e6c5278eb5b816a Mon Sep 17 00:00:00 2001 From: cpanato Date: Sun, 21 Jan 2024 14:54:02 +0100 Subject: [PATCH 1/3] cleanup Signed-off-by: cpanato --- .github/workflows/docker-image.yaml | 2 +- .github/workflows/release.yaml | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/docker-image.yaml b/.github/workflows/docker-image.yaml index 417ebfd6..27b03bca 100644 --- a/.github/workflows/docker-image.yaml +++ b/.github/workflows/docker-image.yaml @@ -45,7 +45,7 @@ jobs: with: username: ${{ secrets.DOCKERHUB_USER }} password: ${{ secrets.DOCKERHUB_SECRET }} - + - name: Docker Meta id: meta_falcoctl uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index a86644f9..fdf2109d 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -36,7 +36,7 @@ jobs: args: release --clean env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - + - name: Generate subject id: hash env: @@ -46,7 +46,7 @@ jobs: checksum_file=$(echo "$ARTIFACTS" | jq -r '.[] | select (.type=="Checksum") | .path') echo "hashes=$(cat $checksum_file | base64 -w0)" >> "$GITHUB_OUTPUT" - + provenance-for-binaries: needs: [goreleaser] permissions: @@ -57,7 +57,7 @@ jobs: with: base64-subjects: "${{ needs.goreleaser.outputs.hashes }}" upload-assets: true # upload to a new release - + verification: needs: [goreleaser, provenance-for-binaries] runs-on: ubuntu-latest @@ -75,7 +75,7 @@ jobs: gh -R "$GITHUB_REPOSITORY" release download "$GITHUB_REF_NAME" -p "*.tar.gz" gh -R "$GITHUB_REPOSITORY" release download "$GITHUB_REF_NAME" -p "*.zip" gh -R "$GITHUB_REPOSITORY" release download "$GITHUB_REF_NAME" -p "$PROVENANCE" - + - name: Verify assets env: CHECKSUMS: ${{ needs.goreleaser.outputs.hashes }} @@ -105,7 +105,7 @@ jobs: echo "release=$(echo $GITHUB_REF | cut -d / -f 3 | sed 's/^v//')" >> $GITHUB_OUTPUT echo "commit=${{ github.sha }}" >> $GITHUB_OUTPUT echo "build_date=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> $GITHUB_OUTPUT - + docker-image: needs: docker-configure uses: ./.github/workflows/docker-image.yaml From f76ee49517b5a4b7b7e31da5577e7a65eafc4749 Mon Sep 17 00:00:00 2001 From: cpanato Date: Sun, 21 Jan 2024 14:55:22 +0100 Subject: [PATCH 2/3] update golangci-lint Signed-off-by: cpanato --- .github/workflows/lint.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index f6b3638a..10447009 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -25,7 +25,7 @@ jobs: uses: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc # v3.7.0 with: only-new-issues: true - version: v1.54.2 + version: v1.55 args: --timeout=900s gomodtidy: From 4e1da51ea6b06dcc8e6a70c58257508bd70f4111 Mon Sep 17 00:00:00 2001 From: cpanato Date: Sun, 21 Jan 2024 14:55:34 +0100 Subject: [PATCH 3/3] add dependabot config Signed-off-by: cpanato --- .github/dependabot.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..81ef7b0a --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,22 @@ +version: 2 +updates: + - package-ecosystem: gomod + directory: "/" + schedule: + interval: "weekly" + open-pull-requests-limit: 10 + groups: + gomod: + update-types: + - "patch" + + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" + open-pull-requests-limit: 10 + groups: + actions: + update-types: + - "minor" + - "patch"