msb-public/helm - helm - 马士兵教育代码仓库

Commit Graph

Author	SHA1	Message	Date
George Jenkins	2cdc77a2ef	Dependabot update `dev-v3` branch go modules Signed-off-by: George Jenkins <gvjenkins@gmail.com>	1 month ago
Matt Farina	d1e9c022c6	Merge pull request #13332 from helm/dependabot/github_actions/actions/upload-artifact-c24449f33cd45d4826c6702db7e49f7cdb9b551d Bump actions/upload-artifact from 97a0fba1372883ab732affbe8f94b823f91727db to c24449f33cd45d4826c6702db7e49f7cdb9b551d	2 months ago
George Jenkins	1baef77c44	Update .github/workflows/scorecards.yml Co-authored-by: Terry Howe <terrylhowe@gmail.com> Signed-off-by: George Jenkins <gvjenkins@gmail.com>	2 months ago
Matt Farina	b5a83ea821	Adding CI for dev-v3 branch When the main branch is for Helm v4, the dev-v3 branch is for Helm v3. Note, the canary release is setup for helm v4 once the v3 branch is created and there is no canary release for v3. Signed-off-by: Matt Farina <matt.farina@suse.com>	2 months ago
Matt Farina	261233caec	Merge pull request #12620 from helm/dependabot/github_actions/actions/stale-9.0.0 chore(deps): bump actions/stale from 3.0.14 to 9.0.0	2 months ago
Matt Farina	029e983241	Increasing the size of the runner used for releases. Note, this runner is provided as part of the CNCF access to GitHub Enterprise runners. Signed-off-by: Matt Farina <matt.farina@suse.com>	2 months ago
dependabot[bot]	f983342597	Bump actions/checkout from 4.2.1 to 4.2.2 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.1 to 4.2.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`eef61447b9...11bd71901b`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
dependabot[bot]	c867af8e11	Bump actions/setup-go from 5.0.2 to 5.1.0 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.0.2 to 5.1.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](`0a12ed9d6a...41dfa10bad`) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
dependabot[bot]	140a376539	chore(deps): bump actions/stale from 3.0.14 to 9.0.0 Bumps [actions/stale](https://github.com/actions/stale) from 3.0.14 to 9.0.0. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/stale/compare/v3.0.14...v9.0.0) --- updated-dependencies: - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
dependabot[bot]	d517450a11	Bump actions/checkout from 4.2.0 to 4.2.1 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`d632683dd7...eef61447b9`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
dependabot[bot]	9e192b28eb	Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 6.1.0 to 6.1.1. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](`aaa42aa062...971e284b60`) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
dependabot[bot]	79257331c2	Bump golang/govulncheck-action from 1.0.3 to 1.0.4 Bumps [golang/govulncheck-action](https://github.com/golang/govulncheck-action) from 1.0.3 to 1.0.4. - [Release notes](https://github.com/golang/govulncheck-action/releases) - [Commits](`dd0578b371...b625fbe08f`) --- updated-dependencies: - dependency-name: golang/govulncheck-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 months ago
Matt Farina	b2286c4caa	Merge pull request #13328 from robertsirc/adjusting-go-setup-check-latest adding check-latest:true	3 months ago
dependabot[bot]	2cd8d54c83	Bump actions/checkout from 4.1.7 to 4.2.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`692973e3d9...d632683dd7`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	4 months ago
Robert Sirchia	a8750f4ce9	adding toplevel permissions to workflows missing them Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	62069eb7b5	removing testing trigger from govulncheck action Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	114db17898	adding top-level permissions Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Matt Farina	3a3e3846ca	Merge pull request #13331 from helm/dependabot/github_actions/ossf/scorecard-action-2.4.0 Bump ossf/scorecard-action from 2.3.1 to 2.4.0	4 months ago
Matt Farina	334f5ed87e	Merge pull request #13330 from helm/dependabot/github_actions/actions/checkout-4.1.7 Bump actions/checkout from 4.1.1 to 4.1.7	4 months ago
Robert Sirchia	8642225be3	Fixing the action trigger Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	5217ea8f18	testing permissing for codeql Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
dependabot[bot]	a1c0318480	Bump actions/upload-artifact Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 97a0fba1372883ab732affbe8f94b823f91727db to c24449f33cd45d4826c6702db7e49f7cdb9b551d. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](`97a0fba137...c24449f33c`) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	4 months ago
dependabot[bot]	9134b9edab	Bump ossf/scorecard-action from 2.3.1 to 2.4.0 Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.4.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](`0864cf1902...62b2cac7ed`) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	4 months ago
dependabot[bot]	144e7b0287	Bump actions/checkout from 4.1.1 to 4.1.7 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.1 to 4.1.7. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4.1.1...692973e3d937129bcbf40652eb9f2f61becf3332) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	4 months ago
Robert Sirchia	611fae3d7d	adding check-latest:true Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Joe Julian	ef2719448b	Merge pull request #13233 from harshitasao/issue-13131 Added the scorecard github action and its badge	4 months ago
Joe Julian	1a55457375	Merge pull request #13259 from harshitasao/scorecard-checks-fix fix: fixed the token-permission and pinned-dependencies issue	4 months ago
Robert Sirchia	e7b25bab6f	bumping version to 1.22.7 Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	5326d79d3e	refectoring to ONE GH action Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	d91188159e	adding new lines at the end of each files Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	1aa640fe1d	changing the trigger file Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	3ef6dd4036	changing trigger file from go.sum to go.mod Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	5f15f53e2e	removing govulncheck from build-test Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	4df7d5628b	adding new workflows for govulncheck Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	88fa81ecb6	adding a new line at the end of the file as per the request of the maintainers Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	76b9d962f0	restoring the original triggers that were removed for testing Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	38dd4a7fea	moving govulncheck to a seperate job Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	1ad6af9287	removing specific go version for govulncheck Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	e46e0ddb98	updating go version for govulncheck Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	6757f8a81b	fixing directory for go-packages Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	031b34458e	changing the triggers to test this GH actions Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	7e3df4baaf	Adding in workflow_call to test GH Actions Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	4 months ago
Robert Sirchia	eba0f78a47	Merge branch 'helm:main' into adding-goland-govulncheck-action	4 months ago
dependabot[bot]	e448aae04e	Bump github/codeql-action from 3.26.3 to 3.26.6 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.3 to 3.26.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`883d8588e5...4dd16135b6`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	5 months ago
Robert Sirchia	b351fdce99	adding workflow_dispatch to test Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	5 months ago
Robert Sirchia	67617290d4	adding govulncheck Signed-off-by: Robert Sirchia <rsirchia@outlook.com>	5 months ago
dependabot[bot]	c58cb9a529	Bump github/codeql-action from 3.26.2 to 3.26.3 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.2 to 3.26.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`429e197704...883d8588e5`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	5 months ago
harshitasao	b4caed94cd	fix: fixed the token-permission and pinned-dependencies issue Signed-off-by: harshitasao <harshitasao@gmail.com>	5 months ago
dependabot[bot]	83874d9edd	Bump github/codeql-action from 3.26.1 to 3.26.2 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.1 to 3.26.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`29d86d22a3...429e197704`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	5 months ago
dependabot[bot]	990dbf671c	Bump github/codeql-action from 3.26.0 to 3.26.1 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.0 to 3.26.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`eb055d739a...29d86d22a3`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	5 months ago

1 2 3 4

172 Commits (e3e84343d256ef29b7aff5f6b6e6b4f41d101a64)