-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
⚠️ CONFLICT! Lineage pull request for: skeleton #6
base: develop
Are you sure you want to change the base?
Commits on May 27, 2022
-
Update actions/setup-go from v2 to v3
Additionally as of v3.1.0 of actions/setup-go there is a go-version output value to retrieve the version of Go installed by the Action. This allows us to remove the step to manually retrieve this information from the Go executable.
Configuration menu - View commit details
-
Copy full SHA for 57b4abe - Browse repository at this point
Copy the full SHA 57b4abeView commit details -
Update the version of Go used from 1.16 to 1.18
Go 1.16 is no longer supported as of the release of 1.18 so it makes sense to update to the latest version available.
Configuration menu - View commit details
-
Copy full SHA for 8f68498 - Browse repository at this point
Copy the full SHA 8f68498View commit details
Commits on Nov 8, 2022
-
Update the version of Go used from 1.18 to 1.19
Go 1.19 was released while this branch was in the wings and it makes sense to bump to the latest Go release.
Configuration menu - View commit details
-
Copy full SHA for fc55e84 - Browse repository at this point
Copy the full SHA fc55e84View commit details -
Merge pull request #113 from cisagov/improvement/update_go_configuration
Update Go installation in the `build.yml` workflow
Configuration menu - View commit details
-
Copy full SHA for ec83308 - Browse repository at this point
Copy the full SHA ec83308View commit details -
Bump hashicorp/setup-terraform from 1 to 2
Bumps [hashicorp/setup-terraform](https://github.com/hashicorp/setup-terraform) from 1 to 2. - [Release notes](https://github.com/hashicorp/setup-terraform/releases) - [Changelog](https://github.com/hashicorp/setup-terraform/blob/main/CHANGELOG.md) - [Commits](hashicorp/setup-terraform@v1...v2) --- updated-dependencies: - dependency-name: hashicorp/setup-terraform dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 2775dfa - Browse repository at this point
Copy the full SHA 2775dfaView commit details -
Merge pull request #111 from cisagov/dependabot/github_actions/hashic…
…orp/setup-terraform-2 Bump hashicorp/setup-terraform from 1 to 2
Configuration menu - View commit details
-
Copy full SHA for 4925eb1 - Browse repository at this point
Copy the full SHA 4925eb1View commit details -
Bump actions/setup-python from 3 to 4
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1f7c62e - Browse repository at this point
Copy the full SHA 1f7c62eView commit details -
Merge pull request #115 from cisagov/dependabot/github_actions/action…
…s/setup-python-4 Bump actions/setup-python from 3 to 4
Configuration menu - View commit details
-
Copy full SHA for f74b4a3 - Browse repository at this point
Copy the full SHA f74b4a3View commit details -
Add an ownership comment to the Dependabot configuration
Add a comment that states that the commented out ignore directives are managed by cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 6a9c630 - Browse repository at this point
Copy the full SHA 6a9c630View commit details -
Add additional Dependabot ignore directives
This adds the other versioned Actions that should be managed by cisagov/skeleton-generic to the list of commented out dependencies to ignore.
Configuration menu - View commit details
-
Copy full SHA for dfd54e9 - Browse repository at this point
Copy the full SHA dfd54e9View commit details -
Merge pull request #112 from cisagov/improvement/update_dependabot_ig…
…nores Update Dependabot ignore directives
Configuration menu - View commit details
-
Copy full SHA for a8bcddd - Browse repository at this point
Copy the full SHA a8bcdddView commit details -
Remove usage of set-output from our GitHub Actions workflow
GitHub has deprecated the set-output command per: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/ This updates the GitHub Actions workflow to use the newly preferred method to set the output for a job's step.
Configuration menu - View commit details
-
Copy full SHA for 71a88a5 - Browse repository at this point
Copy the full SHA 71a88a5View commit details -
Merge pull request #119 from cisagov/bug/update_github_actions_workflow
Remove usage of `set-output` from our GitHub Actions workflow
Configuration menu - View commit details
-
Copy full SHA for 0867685 - Browse repository at this point
Copy the full SHA 0867685View commit details -
Configuration menu - View commit details
-
Copy full SHA for 21a68f4 - Browse repository at this point
Copy the full SHA 21a68f4View commit details -
Increase the maximum line length in the yamllint configuration
Increase the line length maximum from the default of 80 to 88. This 10% increase mirrors the line length allowed in other linter configurations such as black.
Configuration menu - View commit details
-
Copy full SHA for 3547c4f - Browse repository at this point
Copy the full SHA 3547c4fView commit details -
Merge pull request #117 from cisagov/improvement/update_yamllint_line…
…-length_rules Update the `line-length` configuration for `yamllint`
Configuration menu - View commit details
-
Copy full SHA for cfa9ba5 - Browse repository at this point
Copy the full SHA cfa9ba5View commit details -
Fix the repo of the flake8 pre-commit hook
Per PyCQA/flake8#1290 this hook moved from GitLab to GitHub. The version we use is bumped to the latest tag on GitHub as well.
Configuration menu - View commit details
-
Copy full SHA for b1ea3d4 - Browse repository at this point
Copy the full SHA b1ea3d4View commit details -
Merge pull request #120 from cisagov/bug/verify_pre-commit_hook_repos
Update the `flake8` pre-commit hook configuration
Configuration menu - View commit details
-
Copy full SHA for 2a98c6a - Browse repository at this point
Copy the full SHA 2a98c6aView commit details -
Update pre-commit hooks using `pre-commit autoupdate`. The `ansible-lint` hook is intentionally held back due to issues with upgrading to v6.
Configuration menu - View commit details
-
Copy full SHA for fb8d13f - Browse repository at this point
Copy the full SHA fb8d13fView commit details -
Merge pull request #114 from cisagov/maintenance/update_pre-commit_hooks
Update pre-commit hooks
Configuration menu - View commit details
-
Copy full SHA for bb9c2a0 - Browse repository at this point
Copy the full SHA bb9c2a0View commit details -
Add a label configuration file
This configuration file stores information about the labels expected in this repository.
Configuration menu - View commit details
-
Copy full SHA for e5fbd70 - Browse repository at this point
Copy the full SHA e5fbd70View commit details -
Add a workflow to synchronize repository labels
This adds a workflow to ensure that the repository labels are updated to reflect changes to the label configuration file .github/labels.yml.
Configuration menu - View commit details
-
Copy full SHA for b9792a8 - Browse repository at this point
Copy the full SHA b9792a8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 161c4ae - Browse repository at this point
Copy the full SHA 161c4aeView commit details -
Configuration menu - View commit details
-
Copy full SHA for 5993231 - Browse repository at this point
Copy the full SHA 5993231View commit details -
Merge pull request #118 from cisagov/improvement/add_label_sync_workflow
Add workflow to manage repository labels
Configuration menu - View commit details
-
Copy full SHA for c4fbf20 - Browse repository at this point
Copy the full SHA c4fbf20View commit details
Commits on Nov 9, 2022
-
Update the configuration for repository labels to remove the leading `#` from color values. With a `#` leading the values they are seen as invalid by the GitHub API.
Configuration menu - View commit details
-
Copy full SHA for 6cc53dc - Browse repository at this point
Copy the full SHA 6cc53dcView commit details -
Correct spacing in yamllint rules
There was a missing empty line in the `.yamllint` file between two rule definitions.
Configuration menu - View commit details
-
Copy full SHA for 8f12635 - Browse repository at this point
Copy the full SHA 8f12635View commit details -
Merge pull request #122 from cisagov/bug/fix_bad_configurations
Update two configuration files
Configuration menu - View commit details
-
Copy full SHA for e803e1a - Browse repository at this point
Copy the full SHA e803e1aView commit details -
Configuration menu - View commit details
-
Copy full SHA for bade9e2 - Browse repository at this point
Copy the full SHA bade9e2View commit details
Commits on Nov 14, 2022
-
Configuration menu - View commit details
-
Copy full SHA for 663dd87 - Browse repository at this point
Copy the full SHA 663dd87View commit details -
Update Python setup in the test job for GHA
Bump actions/setup-python from v3 to v4 and use Python 3.10 to mirror the `lint` job.
Configuration menu - View commit details
-
Copy full SHA for 3aa675e - Browse repository at this point
Copy the full SHA 3aa675eView commit details
Commits on Nov 15, 2022
-
Remove uses of the
set-output
commandRemove the remaining uses of the `set-output` command since it has been deprecated per: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Configuration menu - View commit details
-
Copy full SHA for 827ff50 - Browse repository at this point
Copy the full SHA 827ff50View commit details
Commits on Nov 21, 2022
-
Merge pull request #136 from cisagov/lineage/skeleton
⚠️ CONFLICT! Lineage pull request for: skeletonConfiguration menu - View commit details
-
Copy full SHA for 8d2691e - Browse repository at this point
Copy the full SHA 8d2691eView commit details -
Update the version of the second bandit hook
The `bandit (everything else)` hook was not updated in sync with the `bandit (tests tree)` hook and is using an older version of bandit.
Configuration menu - View commit details
-
Copy full SHA for a856426 - Browse repository at this point
Copy the full SHA a856426View commit details -
Correct poor English in comments for the bandit pre-commit hooks
Co-authored-by: dav3r <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0ad31cc - Browse repository at this point
Copy the full SHA 0ad31ccView commit details -
Merge pull request #138 from cisagov/bug/update_bandit_in_pre-commit_…
…configuration Update the version of the second `bandit` hook
Configuration menu - View commit details
-
Copy full SHA for 649ad63 - Browse repository at this point
Copy the full SHA 649ad63View commit details -
Update the CodeQL configuration
Pull in the CodeQL workflow from cisagov/skeleton-python-library to update the CodeQL configuration for this repository. We also add github/codeql-action to the dependencies managed by this repository in the dependabot configuration.
Configuration menu - View commit details
-
Copy full SHA for 0d24f9c - Browse repository at this point
Copy the full SHA 0d24f9cView commit details -
Merge pull request #137 from cisagov/improvement/update_codeql_workflow
Update the CodeQL configuration
Configuration menu - View commit details
-
Copy full SHA for 26cfb4e - Browse repository at this point
Copy the full SHA 26cfb4eView commit details -
Remove dangling argument in the pre-commit configuration
This argument references a file that is no longer found in the repository. The configuration also no longer uses any such files so it is safe to remove this as opposed to updating it instead.
Configuration menu - View commit details
-
Copy full SHA for 87d0f97 - Browse repository at this point
Copy the full SHA 87d0f97View commit details -
Update files used for Python requirements by LGTM
Add all requirements*.txt files in the configuration to this file. This ensures that all requirements in use are being used for scanning.
Configuration menu - View commit details
-
Copy full SHA for eacc476 - Browse repository at this point
Copy the full SHA eacc476View commit details -
Restore the alerts badging for LGTM
Until we completely remove LGTM from our repositories we should keep at least the minimum badging. This project does not directly use any Python, JavaScript, etc. so I am enabling the "Total alerts" badge. Other possibilities are commented out to make it easier for downstream repositories to enable what suits their configurations.
Configuration menu - View commit details
-
Copy full SHA for 42f3468 - Browse repository at this point
Copy the full SHA 42f3468View commit details -
Merge pull request #115 from cisagov/improvement/fix_dangling_configu…
…rations Update some outdated items in the project
Configuration menu - View commit details
-
Copy full SHA for c21cacc - Browse repository at this point
Copy the full SHA c21caccView commit details -
Bump actions/github-script from 5 to 6
Bumps [actions/github-script](https://github.com/actions/github-script) from 5 to 6. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v5...v6) --- updated-dependencies: - dependency-name: actions/github-script dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 5589f23 - Browse repository at this point
Copy the full SHA 5589f23View commit details -
Merge pull request #77 from cisagov/dependabot/github_actions/actions…
…/github-script-6 Bump actions/github-script from 5 to 6
Configuration menu - View commit details
-
Copy full SHA for 362fad5 - Browse repository at this point
Copy the full SHA 362fad5View commit details -
Fix overly match-happy sed commands
We saw in cisagov/postfix-docker#47 that the sed commands in the bump_version.sh script could inadvertently match the CC0 version in the README.md file. This change escapes the periods in the version before passing it on to sed so that they only match periods and not just any character.
Configuration menu - View commit details
-
Copy full SHA for 1a8ab89 - Browse repository at this point
Copy the full SHA 1a8ab89View commit details -
Merge pull request #122 from cisagov/bugfix/tighten-regex-in-version-…
…script Fix overly eager sed commands
Configuration menu - View commit details
-
Copy full SHA for 8f09cbf - Browse repository at this point
Copy the full SHA 8f09cbfView commit details -
Configuration menu - View commit details
-
Copy full SHA for ba23619 - Browse repository at this point
Copy the full SHA ba23619View commit details -
Rework creation of unprivileged user and installation of dependencies
Also add a section to update pip and setuptools via pip.
Configuration menu - View commit details
-
Copy full SHA for 343c0cb - Browse repository at this point
Copy the full SHA 343c0cbView commit details -
Configuration menu - View commit details
-
Copy full SHA for 717334c - Browse repository at this point
Copy the full SHA 717334cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 2a72bf6 - Browse repository at this point
Copy the full SHA 2a72bf6View commit details -
Merge pull request #135 from cisagov/improvement/dockerfile
Improve Dockerfile
Configuration menu - View commit details
-
Copy full SHA for 6f639fe - Browse repository at this point
Copy the full SHA 6f639feView commit details
Commits on Nov 22, 2022
-
Remove LGTM from the repository
LGTM.com is shutting down 2022-12-16 so we should remove all LGTM-related items to prepare for disabling the LGTM.com integration in the organization.
Configuration menu - View commit details
-
Copy full SHA for 8cf8d23 - Browse repository at this point
Copy the full SHA 8cf8d23View commit details -
Merge pull request #139 from cisagov/maintenance/remove_lgtm
Remove LGTM from the repository
Configuration menu - View commit details
-
Copy full SHA for 81f6c71 - Browse repository at this point
Copy the full SHA 81f6c71View commit details -
Restore Dockerfile changes from review
I accidentally clobbered these changes when I was updating cisagov/skeleton-docker#135 for merge. This restores the changes made during review as well as fixing a missed reference to the CISA_USER argument. Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 8c73bf4 - Browse repository at this point
Copy the full SHA 8c73bf4View commit details -
Merge pull request #140 from cisagov/bug/fix_clobbered_dockerfile
Restore Dockerfile changes from review
Configuration menu - View commit details
-
Copy full SHA for 8de42e4 - Browse repository at this point
Copy the full SHA 8de42e4View commit details
Commits on Jan 31, 2023
-
Update pre-commit hooks using `pre-commit autoupdate`. The `ansible-lint` hook is intentionally held back to be updated independently to v6.
Configuration menu - View commit details
-
Copy full SHA for 0bb91c5 - Browse repository at this point
Copy the full SHA 0bb91c5View commit details
Commits on Feb 2, 2023
-
Merge pull request #124 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
Configuration menu - View commit details
-
Copy full SHA for 0eda781 - Browse repository at this point
Copy the full SHA 0eda781View commit details -
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
mcdonnnj committedFeb 2, 2023 Configuration menu - View commit details
-
Copy full SHA for 88f46b4 - Browse repository at this point
Copy the full SHA 88f46b4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 313e792 - Browse repository at this point
Copy the full SHA 313e792View commit details -
Merge pull request #125 from cisagov/improvement/add-security-label
Add a security label
Configuration menu - View commit details
-
Copy full SHA for b7c0a75 - Browse repository at this point
Copy the full SHA b7c0a75View commit details -
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
mcdonnnj committedFeb 2, 2023 Configuration menu - View commit details
-
Copy full SHA for c4793c9 - Browse repository at this point
Copy the full SHA c4793c9View commit details
Commits on Feb 10, 2023
-
Merge pull request #149 from cisagov/lineage/skeleton
Lineage pull request for: skeleton
Configuration menu - View commit details
-
Copy full SHA for 2ae1d5b - Browse repository at this point
Copy the full SHA 2ae1d5bView commit details -
Add package write permission to workflow
When Dependabot creates a PR it requires this permission in order to push Docker images to ghcr.io.
Configuration menu - View commit details
-
Copy full SHA for da15398 - Browse repository at this point
Copy the full SHA da15398View commit details -
Merge pull request #144 from cisagov/bugfix/add-package-permission
Add package write permission to workflow
Configuration menu - View commit details
-
Copy full SHA for 3c9fc65 - Browse repository at this point
Copy the full SHA 3c9fc65View commit details -
Update wheel along with pip and setuptools
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 4e5287f - Browse repository at this point
Copy the full SHA 4e5287fView commit details -
Merge pull request #143 from cisagov/improvement/update-wheel
Update wheel along with pip and setuptools
Configuration menu - View commit details
-
Copy full SHA for d4f2e48 - Browse repository at this point
Copy the full SHA d4f2e48View commit details -
In this case it doesn't matter because we are starting from a Python3-specific base container, but other projects that use this skeleton may not be. Specifying pip3 ensures that the Python 2 version of pip is not called by mistake.
Configuration menu - View commit details
-
Copy full SHA for 83beae5 - Browse repository at this point
Copy the full SHA 83beae5View commit details -
Configuration menu - View commit details
-
Copy full SHA for c43af0b - Browse repository at this point
Copy the full SHA c43af0bView commit details -
Configuration menu - View commit details
-
Copy full SHA for d6bf3c0 - Browse repository at this point
Copy the full SHA d6bf3c0View commit details -
Merge pull request #141 from cisagov/improvement/specify-group
Specify the default group to run under in the Dockerfile
Configuration menu - View commit details
-
Copy full SHA for 83baee5 - Browse repository at this point
Copy the full SHA 83baee5View commit details -
Bump docker/build-push-action from 3 to 4
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3 to 4. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v3...v4) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 73a526f - Browse repository at this point
Copy the full SHA 73a526fView commit details
Commits on Feb 11, 2023
-
Merge pull request #151 from cisagov/dependabot/github_actions/docker…
…/build-push-action-4 Bump docker/build-push-action from 3 to 4
Configuration menu - View commit details
-
Copy full SHA for 75482de - Browse repository at this point
Copy the full SHA 75482deView commit details -
Configuration menu - View commit details
-
Copy full SHA for 7aab074 - Browse repository at this point
Copy the full SHA 7aab074View commit details -
Merge pull request #154 from cisagov/improvement/update_pip3
Specify pip3 in the file where it got blown away by a rebase
Configuration menu - View commit details
-
Copy full SHA for 1f63a52 - Browse repository at this point
Copy the full SHA 1f63a52View commit details
Commits on Mar 2, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 654f005 - Browse repository at this point
Copy the full SHA 654f005View commit details
Commits on Mar 24, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 744f07e - Browse repository at this point
Copy the full SHA 744f07eView commit details
Commits on Mar 26, 2023
-
Merge pull request #128 from cisagov/add-odoom-to-default-codeowners
Add @jasonodoom as a default codeowner
Configuration menu - View commit details
-
Copy full SHA for 3eed760 - Browse repository at this point
Copy the full SHA 3eed760View commit details
Commits on Apr 19, 2023
-
Use Python 3.11 for the
lint
job in thebuild
workflowThis is the latest minor release of Python so it makes sense to use it as the default for this job.
Configuration menu - View commit details
-
Copy full SHA for 8d39c8b - Browse repository at this point
Copy the full SHA 8d39c8bView commit details
Commits on Apr 20, 2023
-
Merge pull request #130 from cisagov/improvement/update_python_versio…
…n_for_lint_job Use Python 3.11 for the `lint` job in the `build` workflow
Configuration menu - View commit details
-
Copy full SHA for 5f4b768 - Browse repository at this point
Copy the full SHA 5f4b768View commit details -
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command. However the `ansible-lint` hook is manually kept back as we have not tested functionality to confirm that our roles will generally pass with the new version.
Configuration menu - View commit details
-
Copy full SHA for db5e7ff - Browse repository at this point
Copy the full SHA db5e7ffView commit details -
Merge pull request #129 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
Configuration menu - View commit details
-
Copy full SHA for c9028cf - Browse repository at this point
Copy the full SHA c9028cfView commit details -
Bump actions/setup-go from 3 to 4
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 4c595e6 - Browse repository at this point
Copy the full SHA 4c595e6View commit details -
Merge pull request #127 from cisagov/dependabot/github_actions/action…
…s/setup-go-4 Bump actions/setup-go from 3 to 4
Configuration menu - View commit details
-
Copy full SHA for 847cd13 - Browse repository at this point
Copy the full SHA 847cd13View commit details -
Install/upgrade setuptools and wheel when upgrading pip
When wheel gets installed alongside other packages, it may not get used when those other packages are installed. When that happens I see warnings like this: DEPRECATION: ansible-core is being installed using the legacy 'setup.py install' method, because it does not have a 'pyproject.toml' and the 'wheel' package is not installed. pip 23.1 will enforce this behaviour change. A possible replacement is to enable the '--use-pep517' option. Discussion can be found at pypa/pip#8559 This change should get rid of these warnings. Nota bene: This is the practice we follow in the Dockerfile in cisagov/skeleton-docker, but for some reason we never started using it in our workflows.
Configuration menu - View commit details
-
Copy full SHA for 9984792 - Browse repository at this point
Copy the full SHA 9984792View commit details -
Merge pull request #126 from cisagov/improvement/install-setuptools-a…
…nd-wheel-with-pip Install/upgrade setuptools and wheel when upgrading pip
Configuration menu - View commit details
-
Copy full SHA for 7250368 - Browse repository at this point
Copy the full SHA 7250368View commit details
Commits on May 5, 2023
-
Configuration menu - View commit details
-
Copy full SHA for a0bc20b - Browse repository at this point
Copy the full SHA a0bc20bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3628e5f - Browse repository at this point
Copy the full SHA 3628e5fView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 668724f - Browse repository at this point
Copy the full SHA 668724fView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 3d422b8 - Browse repository at this point
Copy the full SHA 3d422b8View commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 5571f47 - Browse repository at this point
Copy the full SHA 5571f47View commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 4fd9501 - Browse repository at this point
Copy the full SHA 4fd9501View commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 412101a - Browse repository at this point
Copy the full SHA 412101aView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a346fb5 - Browse repository at this point
Copy the full SHA a346fb5View commit details -
Configuration menu - View commit details
-
Copy full SHA for c47038b - Browse repository at this point
Copy the full SHA c47038bView commit details -
Configuration menu - View commit details
-
Copy full SHA for eb52678 - Browse repository at this point
Copy the full SHA eb52678View commit details -
Configuration menu - View commit details
-
Copy full SHA for f8179f1 - Browse repository at this point
Copy the full SHA f8179f1View commit details
Commits on May 8, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 42820e2 - Browse repository at this point
Copy the full SHA 42820e2View commit details
Commits on Jun 7, 2023
-
Remove the go-lint hook from the pre-commit configuration
The golang/lint tool was archived on May 9th, 2021 and based on golang/go#38968 no future work is planned. Coupled with the fact that it is not available from brew we are removing this hook as local development may be hindered by trying to satisfy running this hook. Co-authored-by: Shane Frasier <[email protected]> Co-authored-by: dav3r <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 7f372e6 - Browse repository at this point
Copy the full SHA 7f372e6View commit details -
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command.
Configuration menu - View commit details
-
Copy full SHA for b823111 - Browse repository at this point
Copy the full SHA b823111View commit details -
Configuration menu - View commit details
-
Copy full SHA for b770fc6 - Browse repository at this point
Copy the full SHA b770fc6View commit details -
Configuration menu - View commit details
-
Copy full SHA for 24a0008 - Browse repository at this point
Copy the full SHA 24a0008View commit details -
Configuration menu - View commit details
-
Copy full SHA for f01965a - Browse repository at this point
Copy the full SHA f01965aView commit details -
Resolves cisagov/skeleton-generic#131.
Configuration menu - View commit details
-
Copy full SHA for 43d588f - Browse repository at this point
Copy the full SHA 43d588fView commit details -
Disable caching for the setup-go Action
The cache key used relies on the existence of a go.sum file. Since we have no expectation for Go source code, including that file, and since we already include the Go cache in our job caching, we can safely disable caching in the Action.
Configuration menu - View commit details
-
Copy full SHA for e098255 - Browse repository at this point
Copy the full SHA e098255View commit details -
Bump the version of Go used in our GitHub Actions configuration to the latest stable Go release.
Configuration menu - View commit details
-
Copy full SHA for edf1338 - Browse repository at this point
Copy the full SHA edf1338View commit details
Commits on Jun 8, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 42f481c - Browse repository at this point
Copy the full SHA 42f481cView commit details -
Configuration menu - View commit details
-
Copy full SHA for bd762fe - Browse repository at this point
Copy the full SHA bd762feView commit details
Commits on Jul 10, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 4cb9a4b - Browse repository at this point
Copy the full SHA 4cb9a4bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 53f56b0 - Browse repository at this point
Copy the full SHA 53f56b0View commit details -
Configuration menu - View commit details
-
Copy full SHA for f261099 - Browse repository at this point
Copy the full SHA f261099View commit details -
Configuration menu - View commit details
-
Copy full SHA for 097b573 - Browse repository at this point
Copy the full SHA 097b573View commit details
Commits on Jul 11, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 254282a - Browse repository at this point
Copy the full SHA 254282aView commit details -
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for ecf3299 - Browse repository at this point
Copy the full SHA ecf3299View commit details -
Update tool names to match author stylization
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1eaedf5 - Browse repository at this point
Copy the full SHA 1eaedf5View commit details -
Update statcicheck stylization
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for fd04757 - Browse repository at this point
Copy the full SHA fd04757View commit details
Commits on Jul 12, 2023
-
Temporarily use a different branch of cisagov/setup-env-github-action
This is being done for testing purposes, and this commit can be reverted (or removed) once cisagov/setup-env-github-action#65 is merged.
Configuration menu - View commit details
-
Copy full SHA for ddbf6f7 - Browse repository at this point
Copy the full SHA ddbf6f7View commit details -
Configuration menu - View commit details
-
Copy full SHA for a8af336 - Browse repository at this point
Copy the full SHA a8af336View commit details -
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1675b12 - Browse repository at this point
Copy the full SHA 1675b12View commit details -
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for c6ab22e - Browse repository at this point
Copy the full SHA c6ab22eView commit details
Commits on Jul 13, 2023
-
Use the correct repo name for the ansible-lint pre-commit hook
The repo name we were using redirects to the correct place, but we may as well cut out the middle man.
Configuration menu - View commit details
-
Copy full SHA for 29de034 - Browse repository at this point
Copy the full SHA 29de034View commit details -
Correct staticcheck reference to setup-env, sort alphabetically and c…
…orrect staticcheck package URL Co-Authored By: @mcdonnnj <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1e7cb4f - Browse repository at this point
Copy the full SHA 1e7cb4fView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 5f3bc13 - Browse repository at this point
Copy the full SHA 5f3bc13View commit details
Commits on Jul 14, 2023
-
Remove unnecessary quotes in the dependabot configuration
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value.
Configuration menu - View commit details
-
Copy full SHA for d311825 - Browse repository at this point
Copy the full SHA d311825View commit details -
Sort the keys in the Dependabot configuration
Our standard practice for YAML files is to sort keys alphabetically.
Configuration menu - View commit details
-
Copy full SHA for 2294d49 - Browse repository at this point
Copy the full SHA 2294d49View commit details -
Configuration menu - View commit details
-
Copy full SHA for af90040 - Browse repository at this point
Copy the full SHA af90040View commit details -
Use Python 3.11 for the
lint
job in thebuild
workflowThis is the latest minor release of Python so it makes sense to use it as the default for this job.
Configuration menu - View commit details
-
Copy full SHA for f037c16 - Browse repository at this point
Copy the full SHA f037c16View commit details -
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command. However the `ansible-lint` hook is manually kept back as we have not tested functionality to confirm that our roles will generally pass with the new version.
Configuration menu - View commit details
-
Copy full SHA for 92d7a39 - Browse repository at this point
Copy the full SHA 92d7a39View commit details -
Bump actions/setup-go from 3 to 4
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for e30ba2e - Browse repository at this point
Copy the full SHA e30ba2eView commit details -
Install/upgrade setuptools and wheel when upgrading pip
When wheel gets installed alongside other packages, it may not get used when those other packages are installed. When that happens I see warnings like this: DEPRECATION: ansible-core is being installed using the legacy 'setup.py install' method, because it does not have a 'pyproject.toml' and the 'wheel' package is not installed. pip 23.1 will enforce this behaviour change. A possible replacement is to enable the '--use-pep517' option. Discussion can be found at pypa/pip#8559 This change should get rid of these warnings. Nota bene: This is the practice we follow in the Dockerfile in cisagov/skeleton-docker, but for some reason we never started using it in our workflows.
Configuration menu - View commit details
-
Copy full SHA for f3da594 - Browse repository at this point
Copy the full SHA f3da594View commit details -
Configuration menu - View commit details
-
Copy full SHA for 46896a8 - Browse repository at this point
Copy the full SHA 46896a8View commit details -
Configuration menu - View commit details
-
Copy full SHA for ff0ebdf - Browse repository at this point
Copy the full SHA ff0ebdfView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for f953e8e - Browse repository at this point
Copy the full SHA f953e8eView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 932b62e - Browse repository at this point
Copy the full SHA 932b62eView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 2eca0cd - Browse repository at this point
Copy the full SHA 2eca0cdView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for fab2344 - Browse repository at this point
Copy the full SHA fab2344View commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 892673b - Browse repository at this point
Copy the full SHA 892673bView commit details -
Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0d77207 - Browse repository at this point
Copy the full SHA 0d77207View commit details -
Configuration menu - View commit details
-
Copy full SHA for b661316 - Browse repository at this point
Copy the full SHA b661316View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6a40279 - Browse repository at this point
Copy the full SHA 6a40279View commit details -
Configuration menu - View commit details
-
Copy full SHA for b0f2bf3 - Browse repository at this point
Copy the full SHA b0f2bf3View commit details -
Configuration menu - View commit details
-
Copy full SHA for a93f6d4 - Browse repository at this point
Copy the full SHA a93f6d4View commit details -
Remove the go-lint hook from the pre-commit configuration
The golang/lint tool was archived on May 9th, 2021 and based on golang/go#38968 no future work is planned. Coupled with the fact that it is not available from brew we are removing this hook as local development may be hindered by trying to satisfy running this hook. Co-authored-by: Shane Frasier <[email protected]> Co-authored-by: dav3r <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for ec058ef - Browse repository at this point
Copy the full SHA ec058efView commit details -
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command.
Configuration menu - View commit details
-
Copy full SHA for 033e194 - Browse repository at this point
Copy the full SHA 033e194View commit details -
Configuration menu - View commit details
-
Copy full SHA for 43a4bd1 - Browse repository at this point
Copy the full SHA 43a4bd1View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7bfd06c - Browse repository at this point
Copy the full SHA 7bfd06cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 6030c9a - Browse repository at this point
Copy the full SHA 6030c9aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 2122a39 - Browse repository at this point
Copy the full SHA 2122a39View commit details -
Disable caching for the setup-go Action
The cache key used relies on the existence of a go.sum file. Since we have no expectation for Go source code, including that file, and since we already include the Go cache in our job caching, we can safely disable caching in the Action.
Configuration menu - View commit details
-
Copy full SHA for 92e0e6a - Browse repository at this point
Copy the full SHA 92e0e6aView commit details -
Bump the version of Go used in our GitHub Actions configuration to the latest stable Go release.
Configuration menu - View commit details
-
Copy full SHA for 2e746e2 - Browse repository at this point
Copy the full SHA 2e746e2View commit details -
Update the version of Python used in the GHA
test
jobThe version of Python used in the `lint` job of the build workflow for GitHub Actions was updated to 3.11 so we should update the `test` job to match.
Configuration menu - View commit details
-
Copy full SHA for c07be40 - Browse repository at this point
Copy the full SHA c07be40View commit details -
Install two additional Python packages in the GHA
test
jobThe `setuptools` and `wheel` packages were added to the `lint` job in GitHub Actions and it should be duplicated for the `test` job.
Configuration menu - View commit details
-
Copy full SHA for 2a16326 - Browse repository at this point
Copy the full SHA 2a16326View commit details -
Bump python from 3.10.1-alpine to 3.11.4-alpine
Bumps python from 3.10.1-alpine to 3.11.4-alpine. --- updated-dependencies: - dependency-name: python dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 8237d27 - Browse repository at this point
Copy the full SHA 8237d27View commit details -
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
mcdonnnj committedJul 14, 2023 Configuration menu - View commit details
-
Copy full SHA for 7aeeb5e - Browse repository at this point
Copy the full SHA 7aeeb5eView commit details -
Merge https://github.com/cisagov/skeleton-docker into lineage/skeleton
mcdonnnj committedJul 14, 2023 Configuration menu - View commit details
-
Copy full SHA for 9359e55 - Browse repository at this point
Copy the full SHA 9359e55View commit details -
Configuration menu - View commit details
-
Copy full SHA for cf24b08 - Browse repository at this point
Copy the full SHA cf24b08View commit details -
Merge pull request #166 from cisagov/lineage/skeleton
Lineage pull request for: skeleton
Configuration menu - View commit details
-
Copy full SHA for 8c26a61 - Browse repository at this point
Copy the full SHA 8c26a61View commit details -
Merge https://github.com/cisagov/skeleton-docker into lineage/skeleton
mcdonnnj committedJul 14, 2023 Configuration menu - View commit details
-
Copy full SHA for 4933c30 - Browse repository at this point
Copy the full SHA 4933c30View commit details
Commits on Jul 18, 2023
-
Co-authored-by: David Harris <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for e678502 - Browse repository at this point
Copy the full SHA e678502View commit details
Commits on Jul 20, 2023
-
Migrate testing from pytest-dockerc to using python-on-whales
The pytest-dockerc plug is unmaintained and there is now a dependency issues with PyYAML because of the release of Cython v3 (which is itself a build dependency for PyYAML). After some research this seemed like the most similar package in terms of functionality to the package we are replacing. Although it is not a pytest plugin it still provides similar access and uses the Docker composition defined in the repository.
Configuration menu - View commit details
-
Copy full SHA for c02e483 - Browse repository at this point
Copy the full SHA c02e483View commit details
Commits on Jul 28, 2023
-
Merge pull request #167 from cisagov/improvement/update_testing_method
Switch packages used to test the configuration
Configuration menu - View commit details
-
Copy full SHA for a9d6c92 - Browse repository at this point
Copy the full SHA a9d6c92View commit details -
Merge https://github.com/cisagov/skeleton-docker into lineage/skeleton
mcdonnnj committedJul 28, 2023 Configuration menu - View commit details
-
Copy full SHA for 1047936 - Browse repository at this point
Copy the full SHA 1047936View commit details -
Reference correct parameter name in comment
The "stopped" parameter is no longer present now that we are using python-on-whales. Co-authored-by: dav3r <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a518cfb - Browse repository at this point
Copy the full SHA a518cfbView commit details
Commits on Aug 9, 2023
-
Add the ability to specify a token in bump_version.sh
The token is optionally used for the build and prerelease actions to override the default values used by the semver Python package.
Configuration menu - View commit details
-
Copy full SHA for 0db97d1 - Browse repository at this point
Copy the full SHA 0db97d1View commit details -
DRY out logic to update version information
Since the replacement and commit of version change information is almost identical across the different logic flows it makes sense to DRY out the code.
Configuration menu - View commit details
-
Copy full SHA for f646a73 - Browse repository at this point
Copy the full SHA f646a73View commit details -
Change when existing version information is retrieved
Only retrieve the existing version information if the input to the bump_version.sh script isn't immediately invalid (if the script does not get 1-2 arguments).
Configuration menu - View commit details
-
Copy full SHA for cf5c0d7 - Browse repository at this point
Copy the full SHA cf5c0d7View commit details
Commits on Aug 15, 2023
-
Remove git push from
bump_version.sh
scriptThe team has come to the consensus that the `git push` should be at the discretion of the user. This both prevents needless GitHub Actions runs and ensures that the repository is updated when the user feels it is in an appropriate state. Co-authored-by: Shane Frasier <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for d6715e7 - Browse repository at this point
Copy the full SHA d6715e7View commit details
Commits on Aug 16, 2023
-
Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 948ebde - Browse repository at this point
Copy the full SHA 948ebdeView commit details
Commits on Aug 22, 2023
-
Revert "Temporarily use a different branch of cisagov/setup-env-githu…
…b-action" This reverts commit ddbf6f7. This can be done now that cisagov/setup-env-github-action#65 has been merged.
Configuration menu - View commit details
-
Copy full SHA for 98d3d3f - Browse repository at this point
Copy the full SHA 98d3d3fView commit details
Commits on Aug 28, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 82db36a - Browse repository at this point
Copy the full SHA 82db36aView commit details
Commits on Sep 4, 2023
-
Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for c0b5d5b - Browse repository at this point
Copy the full SHA c0b5d5bView commit details
Commits on Sep 11, 2023
-
Configuration menu - View commit details
-
Copy full SHA for b04654e - Browse repository at this point
Copy the full SHA b04654eView commit details -
Update the dependabot ignore configuration
Add crazy-max/ghaction-github-labeler as a commented out dependency to ignore in the dependabot configuration file. This should be enabled in downstream projects to consolidate updating this Action to the cisagov/skeleton-generic repository.
Configuration menu - View commit details
-
Copy full SHA for 49ac8c5 - Browse repository at this point
Copy the full SHA 49ac8c5View commit details
Commits on Sep 13, 2023
-
Merge pull request #138 from cisagov/add-go-packages
Add go packages for pre-commit
Configuration menu - View commit details
-
Copy full SHA for 4ec50ab - Browse repository at this point
Copy the full SHA 4ec50abView commit details -
Merge pull request #139 from cisagov/improvement/use-correct-repo-name
Use the correct repo name for the ansible-lint pre-commit hook
Configuration menu - View commit details
-
Copy full SHA for 8145a93 - Browse repository at this point
Copy the full SHA 8145a93View commit details -
Merge pull request #140 from cisagov/improvement/update_dependabot_co…
…nfiguration Update the Dependabot configuration
Configuration menu - View commit details
-
Copy full SHA for ce74358 - Browse repository at this point
Copy the full SHA ce74358View commit details -
Merge pull request #141 from cisagov/documentation/grammar
Delete duplicate word "are"
Configuration menu - View commit details
-
Copy full SHA for 338e3e1 - Browse repository at this point
Copy the full SHA 338e3e1View commit details -
Merge pull request #143 from cisagov/add-nixfmt
Add nixfmt pre-commit hook
Configuration menu - View commit details
-
Copy full SHA for 8432f1e - Browse repository at this point
Copy the full SHA 8432f1eView commit details -
Merge pull request #145 from cisagov/dependabot/github_actions/action…
…s/checkout-4 Bump actions/checkout from 3 to 4
Configuration menu - View commit details
-
Copy full SHA for 8cdbc7b - Browse repository at this point
Copy the full SHA 8cdbc7bView commit details -
Merge pull request #146 from cisagov/improvement/update_labeler_action
Update the version of the `crazy-max/ghaction-github-labeler` Action and add a dependabot ignore directive
Configuration menu - View commit details
-
Copy full SHA for ca49bea - Browse repository at this point
Copy the full SHA ca49beaView commit details -
Update pre-commit hook versions
This is done automatically with the `pre-commit autoupdate` command.
Configuration menu - View commit details
-
Copy full SHA for 94d753d - Browse repository at this point
Copy the full SHA 94d753dView commit details -
Switch to the pre-commit mirror for black
This mirror was created to leverage performance optimizations from mypyc wheels that are available if black is installed from PyPI. These wheels are not available if black is installed from source as it would be using the old URL. Please see psf/black#3828 and psf/black#3405 for more information.
Configuration menu - View commit details
-
Copy full SHA for 1bc2056 - Browse repository at this point
Copy the full SHA 1bc2056View commit details -
Add the crazy-max/ghaction-github-status GitHub action
This action is added in a separate "diagnostics" job. As configured it will never fail, but it will print out the status of the various GitHub components. This information will sometimes be useful when determining why builds fail after the fact. Co-authored-by: Mark Feldhousen <[email protected]> Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a62ebe7 - Browse repository at this point
Copy the full SHA a62ebe7View commit details -
Make the lint job depend on the diagnostics job
Even though the diagnostics job is not currently configured to fail due to the GitHub status, it is still true that if the job is unable to run that does not bode well for the lint job's successful execution. Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 3619c45 - Browse repository at this point
Copy the full SHA 3619c45View commit details -
Add a GH Action to dump the context
This can be useful when debugging why a GH Action failed. Co-authored-by: felddy <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for f437066 - Browse repository at this point
Copy the full SHA f437066View commit details -
Configuration menu - View commit details
-
Copy full SHA for c5e56a2 - Browse repository at this point
Copy the full SHA c5e56a2View commit details -
Add the step-security/harden-runner GH Action
This GH Action is being configured to run in audit mode. It should warn us if an Action is reaching out to an unexpected web address, overwriting source code, etc. Co-authored-by: felddy <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 9afb516 - Browse repository at this point
Copy the full SHA 9afb516View commit details -
Add a harden-runner task to the lint job as well
This task can only provide coverage for the job that contains it.
Configuration menu - View commit details
-
Copy full SHA for 9dc773c - Browse repository at this point
Copy the full SHA 9dc773cView commit details -
We need a reminder add the step-security/harden-runner action at the top of every job. Co-authored-by: Nick <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for bb81ec3 - Browse repository at this point
Copy the full SHA bb81ec3View commit details -
Merge pull request #142 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
Configuration menu - View commit details
-
Copy full SHA for 94903ae - Browse repository at this point
Copy the full SHA 94903aeView commit details -
Merge pull request #148 from cisagov/improvement/change_black_repository
Change the source repository for the `black` hook
Configuration menu - View commit details
-
Copy full SHA for 8d8577c - Browse repository at this point
Copy the full SHA 8d8577cView commit details -
Merge pull request #144 from cisagov/improvement/add-github-status-jazz
Add a job that runs diagnostics
Configuration menu - View commit details
-
Copy full SHA for c0eed09 - Browse repository at this point
Copy the full SHA c0eed09View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3407aad - Browse repository at this point
Copy the full SHA 3407aadView commit details -
Enable dependabot ignore directives
Enable the new dependabot ignore directives that were added in cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 7304857 - Browse repository at this point
Copy the full SHA 7304857View commit details -
Remove unnecessary quotes in the dependabot configuration
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for d86ac5b - Browse repository at this point
Copy the full SHA d86ac5bView commit details -
Sort the keys in the Dependabot configuration
Our standard practice for YAML files is to sort keys alphabetically. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 4186c1a - Browse repository at this point
Copy the full SHA 4186c1aView commit details -
Bump actions/checkout from 3 to 4
This updates the remaining declarations to match what was pulled down from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 95cb005 - Browse repository at this point
Copy the full SHA 95cb005View commit details -
Update job dependencies for the build.yml workflow
Add the `diagnostics` job as a dependency for the other jobs. Reformat the dependencies for those jobs to match the formatting of the `lint` job. This aligns with what was pulled down from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for c9f43e4 - Browse repository at this point
Copy the full SHA c9f43e4View commit details -
Adjust key ordering for jobs in the build.yml workflow
Ensure that top-level keys except for `steps` are alphabetically sorted.
Configuration menu - View commit details
-
Copy full SHA for 138fc0f - Browse repository at this point
Copy the full SHA 138fc0fView commit details -
Remove unnecessary quotes in the build.yml workflow
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 7eefae0 - Browse repository at this point
Copy the full SHA 7eefae0View commit details -
Add runner hardening to all jobs in our workflows
This aligns with what was done to the `lint` job of the build.yml workflow that was inherited from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for 4380bec - Browse repository at this point
Copy the full SHA 4380becView commit details -
Remove unnecessary quotes in the codeql-analysis.yml workflow
We generally only use quotes when they are strictly necessary to ensure data is interpreted as a string value. This mirrors what was done to the configurations inherited from cisagov/skeleton-generic.
Configuration menu - View commit details
-
Copy full SHA for f0f3e11 - Browse repository at this point
Copy the full SHA f0f3e11View commit details
Commits on Sep 18, 2023
-
Bump docker/login-action from 2 to 3
Bumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@v2...v3) --- updated-dependencies: - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 6ee9882 - Browse repository at this point
Copy the full SHA 6ee9882View commit details -
Bump docker/setup-buildx-action from 2 to 3
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2 to 3. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@v2...v3) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 05bb592 - Browse repository at this point
Copy the full SHA 05bb592View commit details -
Bump docker/setup-qemu-action from 2 to 3
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2 to 3. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](docker/setup-qemu-action@v2...v3) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for f05a983 - Browse repository at this point
Copy the full SHA f05a983View commit details
Commits on Oct 9, 2023
-
Bump python from 3.11.4-alpine to 3.12.0-alpine
Bumps python from 3.11.4-alpine to 3.12.0-alpine. --- updated-dependencies: - dependency-name: python dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 768b6cb - Browse repository at this point
Copy the full SHA 768b6cbView commit details
Commits on Oct 11, 2023
-
Add a diagnostics job to the CodeQL workflow
It's good to agree everywhere with the changes we made to the build.yml workflow in cisagov/skeleton-generic#144.
Configuration menu - View commit details
-
Copy full SHA for 8c6b096 - Browse repository at this point
Copy the full SHA 8c6b096View commit details
Commits on Dec 6, 2023
-
Merge pull request #172 from cisagov/lineage/skeleton
⚠️ CONFLICT! Lineage pull request for: skeletonConfiguration menu - View commit details
-
Copy full SHA for 6bc69ce - Browse repository at this point
Copy the full SHA 6bc69ceView commit details -
Merge pull request #177 from cisagov/dependabot/docker/python-3.12.0-…
…alpine Bump python from 3.11.4-alpine to 3.12.0-alpine
Configuration menu - View commit details
-
Copy full SHA for dde0921 - Browse repository at this point
Copy the full SHA dde0921View commit details -
Merge pull request #178 from cisagov/improvement/add-diagnostics-job-…
…for-codeql-workflow Add a diagnostics job to the CodeQL workflow
Configuration menu - View commit details
-
Copy full SHA for 0af9c06 - Browse repository at this point
Copy the full SHA 0af9c06View commit details -
Merge pull request #168 from cisagov/documentation/fix-comment
Modify comment referencing "stopped" parameter
Configuration menu - View commit details
-
Copy full SHA for c70e91e - Browse repository at this point
Copy the full SHA c70e91eView commit details -
Merge pull request #169 from cisagov/improvement/enhance_bump_version…
…_script Enhance the functionality of the `bump_version.sh` script
Configuration menu - View commit details
-
Copy full SHA for bf95545 - Browse repository at this point
Copy the full SHA bf95545View commit details -
Merge pull request #173 from cisagov/dependabot/github_actions/docker…
…/login-action-3 Bump docker/login-action from 2 to 3
Configuration menu - View commit details
-
Copy full SHA for 6d49cfa - Browse repository at this point
Copy the full SHA 6d49cfaView commit details -
Merge pull request #175 from cisagov/dependabot/github_actions/docker…
…/setup-buildx-action-3 Bump docker/setup-buildx-action from 2 to 3
Configuration menu - View commit details
-
Copy full SHA for 8dde580 - Browse repository at this point
Copy the full SHA 8dde580View commit details -
Merge pull request #176 from cisagov/dependabot/github_actions/docker…
…/setup-qemu-action-3 Bump docker/setup-qemu-action from 2 to 3
Configuration menu - View commit details
-
Copy full SHA for 1ea8a3f - Browse repository at this point
Copy the full SHA 1ea8a3fView commit details -
Merge https://github.com/cisagov/skeleton-docker into lineage/skeleton
# Conflicts: # .github/dependabot.yml
mcdonnnj committedDec 6, 2023 Configuration menu - View commit details
-
Copy full SHA for e0f6eec - Browse repository at this point
Copy the full SHA e0f6eecView commit details -
Bump actions/github-script from 6 to 7
Bumps [actions/github-script](https://github.com/actions/github-script) from 6 to 7. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v6...v7) --- updated-dependencies: - dependency-name: actions/github-script dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for b92cc51 - Browse repository at this point
Copy the full SHA b92cc51View commit details -
Bump docker/build-push-action from 4 to 5
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4 to 5. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v4...v5) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0196a0d - Browse repository at this point
Copy the full SHA 0196a0dView commit details -
Add commented out option to docker/build-push-action
There is currently a potential incompatibility with the default behavior of the version of buildx being used. A default image generated is built with provenance, which is something we would like to have, but these default images can run on neither Google Cloud Run nor AWS Lambda. Please see docker/buildx#1533 for mroe information. Since we want to retain support for creating AWS Lambda images we add a commented out disabling of this functionality that can be enabled in a downstream repository if needed.
Configuration menu - View commit details
-
Copy full SHA for ef3438f - Browse repository at this point
Copy the full SHA ef3438fView commit details
Commits on Dec 7, 2023
-
Merge pull request #181 from cisagov/dependabot/github_actions/action…
…s/github-script-7 Bump actions/github-script from 6 to 7
Configuration menu - View commit details
-
Copy full SHA for 6ff485e - Browse repository at this point
Copy the full SHA 6ff485eView commit details -
Merge pull request #174 from cisagov/dependabot/github_actions/docker…
…/build-push-action-5 Bump docker/build-push-action from 4 to 5
Configuration menu - View commit details
-
Copy full SHA for 7e820ba - Browse repository at this point
Copy the full SHA 7e820baView commit details -
Merge https://github.com/cisagov/skeleton-docker into lineage/skeleton
mcdonnnj committedDec 7, 2023 Configuration menu - View commit details
-
Copy full SHA for d0d7a8e - Browse repository at this point
Copy the full SHA d0d7a8eView commit details