Skip to content

v1.0.0
Compare
Choose a tag to compare
@felddy felddy released this 19 Jan 18:40
· 174 commits to develop since this release
v1.0.0
e4342e4
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Releasing the repository in its current form as I am about to merge a PR that has breaking changes.

What's Changed

  • First commits by @felddy in #1
  • Bump peter-evans/dockerhub-description from 3.1.1 to 3.1.2 by @dependabot in #4
  • Bump step-security/harden-runner from 1.5.0 to 2.0.0 by @dependabot in #3
  • Bump actions/setup-go from 3.3.1 to 3.4.0 by @dependabot in #2
  • Bump github/codeql-action from 2.1.35 to 2.1.37 by @dependabot in #10
  • Bump ossf/scorecard-action from 2.0.6 to 2.1.0 by @dependabot in #9
  • Bump actions/setup-go from 3.4.0 to 3.5.0 by @dependabot in #8
  • Bump actions/checkout from 3.1.0 to 3.2.0 by @dependabot in #7
  • Bump actions/setup-python from 4.3.0 to 4.3.1 by @dependabot in #6
  • Bump ossf/scorecard-action from 2.1.0 to 2.1.1 by @dependabot in #12
  • Bump actions/dependency-review-action from 3.0.1 to 3.0.2 by @dependabot in #11
  • Bump actions/stale from 6.0.1 to 7.0.0 by @dependabot in #13
  • Bump actions/cache from 3.0.11 to 3.2.0 by @dependabot in #15
  • Bump ossf/scorecard-action from 2.1.1 to 2.1.2 by @dependabot in #14
  • Bump actions/setup-python from 4.3.1 to 4.4.0 by @dependabot in #16
  • Bump actions/checkout from 3.2.0 to 3.3.0 by @dependabot in #20
  • Bump actions/download-artifact from 3.0.1 to 3.0.2 by @dependabot in #19
  • Bump actions/cache from 3.2.0 to 3.2.2 by @dependabot in #18
  • Bump actions/upload-artifact from 3.1.1 to 3.1.2 by @dependabot in #21
  • Bump docker/metadata-action from 4.1.1 to 4.3.0 by @dependabot in #27
  • Bump actions/setup-python from 4.4.0 to 4.5.0 by @dependabot in #26
  • Bump github/codeql-action from 2.1.37 to 2.1.38 by @dependabot in #25
  • Bump actions/dependency-review-action from 3.0.2 to 3.0.3 by @dependabot in #23
  • Bump actions/cache from 3.2.2 to 3.2.3 by @dependabot in #22
  • Bump docker/build-push-action from 3.2.0 to 4.0.0 by @dependabot in #36
  • Bump docker/setup-buildx-action from 2.2.1 to 2.4.0 by @dependabot in #35
  • Bump actions/cache from 3.2.3 to 3.2.4 by @dependabot in #34
  • Bump github/codeql-action from 2.1.38 to 2.2.1 by @dependabot in #32
  • Bump step-security/harden-runner from 2.0.0 to 2.1.0 by @dependabot in #28
  • Bump github/codeql-action from 2.2.1 to 2.2.3 by @dependabot in #39
  • Bump docker/setup-buildx-action from 2.4.0 to 2.4.1 by @dependabot in #37
  • Bump github/codeql-action from 2.2.3 to 2.2.4 by @dependabot in #42
  • Autoupdate pre-commit hooks by @felddy in #44
  • Modify hardened runner config to allow additional endpoints by @felddy in #43
  • Bump actions/cache from 3.2.4 to 3.2.5 by @dependabot in #41
  • Bump crazy-max/ghaction-dump-context from 1.2.1 to 2.0.0 by @dependabot in #40
  • Bump step-security/harden-runner from 2.1.0 to 2.2.0 by @dependabot in #45
  • Bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in #47
  • Bump actions/cache from 3.2.5 to 3.2.6 by @dependabot in #46
  • Bump peter-evans/dockerhub-description from 3.1.2 to 3.2.0 by @dependabot in #48
  • Bump peter-evans/dockerhub-description from 3.2.0 to 3.3.0 by @dependabot in #49
  • Bump actions/cache from 3.2.6 to 3.3.0 by @dependabot in #50
  • Bump github/codeql-action from 2.2.5 to 2.2.6 by @dependabot in #53
  • Bump docker/setup-buildx-action from 2.4.1 to 2.5.0 by @dependabot in #51
  • Bump step-security/harden-runner from 2.2.0 to 2.2.1 by @dependabot in #52
  • Bump actions/cache from 3.3.0 to 3.3.1 by @dependabot in #54
  • Bump actions/setup-go from 3.5.0 to 4.0.0 by @dependabot in #57
  • Bump github/codeql-action from 2.2.6 to 2.2.7 by @dependabot in #55
  • Bump actions/checkout from 3.3.0 to 3.4.0 by @dependabot in #56
  • Bump actions/dependency-review-action from 3.0.3 to 3.0.4 by @dependabot in #58
  • Bump actions/stale from 7.0.0 to 8.0.0 by @dependabot in #59
  • Bump github/codeql-action from 2.2.7 to 2.2.8 by @dependabot in #60
  • Bump github/codeql-action from 2.2.8 to 2.2.9 by @dependabot in #62
  • Bump actions/checkout from 3.4.0 to 3.5.0 by @dependabot in #61
  • Bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #63
  • Add SBOM generation workflow by @felddy in #64
  • Bump step-security/harden-runner from 2.2.1 to 2.3.0 by @dependabot in #65
  • Bump peter-evans/dockerhub-description from 3.3.0 to 3.4.0 by @dependabot in #67
  • Bump github/codeql-action from 2.2.9 to 2.2.11 by @dependabot in #68
  • Bump peter-evans/dockerhub-description from 3.4.0 to 3.4.1 by @dependabot in #69
  • Bump github/codeql-action from 2.2.11 to 2.3.2 by @dependabot in #78
  • Bump step-security/harden-runner from 2.3.0 to 2.3.1 by @dependabot in #74
  • Bump actions/setup-python from 4.5.0 to 4.6.0 by @dependabot in #75
  • Bump docker/metadata-action from 4.3.0 to 4.4.0 by @dependabot in #73
  • Bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in #72
  • Bump crazy-max/ghaction-github-status from 3.1.0 to 3.2.0 by @dependabot in #81
  • Bump actions/setup-go from 4.0.0 to 4.0.1 by @dependabot in #82
  • Bump step-security/harden-runner from 2.3.1 to 2.4.0 by @dependabot in #80
  • Bump github/codeql-action from 2.3.2 to 2.3.3 by @dependabot in #79
  • Bump actions/setup-python from 4.6.0 to 4.6.1 by @dependabot in #84
  • Bump github/codeql-action from 2.3.3 to 2.3.4 by @dependabot in #83
  • Bump github/codeql-action from 2.3.4 to 2.3.5 by @dependabot in #85
  • Bump actions/dependency-review-action from 3.0.4 to 3.0.6 by @dependabot in #86
  • Bump docker/login-action from 2.1.0 to 2.2.0 by @dependabot in #91
  • Bump docker/setup-buildx-action from 2.5.0 to 2.6.0 by @dependabot in #88
  • Bump docker/metadata-action from 4.4.0 to 4.5.0 by @dependabot in #90
  • Bump docker/setup-qemu-action from 2.1.0 to 2.2.0 by @dependabot in #89
  • Bump github/codeql-action from 2.3.5 to 2.13.4 by @dependabot in #92
  • Bump docker/build-push-action from 4.0.0 to 4.1.0 by @dependabot in #93
  • Bump actions/checkout from 3.5.2 to 3.5.3 by @dependabot in #94
  • Convert build args to input/secret pairs by @felddy in #95
  • Add workflow to manage automerge PRs by @felddy in #99
  • Bump docker/metadata-action from 4.5.0 to 4.6.0 by @dependabot in #98
  • Bump docker/build-push-action from 4.1.0 to 4.1.1 by @dependabot in #96
  • Bump docker/setup-buildx-action from 2.6.0 to 2.7.0 by @dependabot in #97
  • Bump ossf/scorecard-action from 2.1.3 to 2.2.0 by @dependabot in #102
  • Bump peter-evans/dockerhub-description from 3.4.1 to 3.4.2 by @dependabot in #101
  • Bump step-security/harden-runner from 2.4.0 to 2.4.1 by @dependabot in #100
  • Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 by @dependabot in #103
  • Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 by @dependabot in #104
  • Bump docker/setup-buildx-action from 2.9.0 to 2.9.1 by @dependabot in #105
  • Bump actions/setup-python from 4.6.1 to 4.7.0 by @dependabot in #106
  • Bump step-security/harden-runner from 2.4.1 to 2.5.0 by @dependabot in #107
  • Bump crazy-max/ghaction-dump-context from 2.0.0 to 2.1.0 by @dependabot in #108
  • Bump step-security/harden-runner from 2.5.0 to 2.5.1 by @dependabot in #110
  • Bump actions/dependency-review-action from 3.0.6 to 3.0.7 by @dependabot in #111
  • Bump actions/setup-go from 4.0.1 to 4.1.0 by @dependabot in #109
  • Bump docker/setup-buildx-action from 2.9.1 to 2.10.0 by @dependabot in #114
  • Bump actions/checkout from 3.5.3 to 3.6.0 by @dependabot in #113
  • Update scorecard blocklist by @felddy in #115
  • Bump actions/dependency-review-action from 3.0.7 to 3.0.8 by @dependabot in #112
  • Add version comments to SHA-pinned GitHub Actions by @felddy in #116
  • Fix sha-pin comments that were wrong or missing by @felddy in #117
  • Bump crazy-max/ghaction-github-labeler from 4.1.0 to 4.2.0 by @dependabot in #118
  • Bump actions/checkout from 3.6.0 to 4.0.0 by @dependabot in #119
  • Prepare scorecard workflow for updated block list by @felddy in #121
  • Update allowed endpoints and reenable blocking by @felddy in #122
  • Bump actions/upload-artifact from 3.1.2 to 3.1.3 by @dependabot in #123
  • Bump actions/dependency-review-action from 3.0.8 to 3.1.0 by @dependabot in #125
  • Bump actions/cache from 3.3.1 to 3.3.2 by @dependabot in #124
  • Bump crazy-max/ghaction-github-status from 3.2.0 to 4.0.0 by @dependabot in #127
  • Bump crazy-max/ghaction-github-labeler from 4.2.0 to 5.0.0 by @dependabot in #126
  • Bump docker/setup-buildx-action from 2.10.0 to 3.0.0 by @dependabot in #133
  • Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 by @dependabot in #131
  • Bump docker/login-action from 2.2.0 to 3.0.0 by @dependabot in #129
  • Bump docker/build-push-action from 4.1.1 to 5.0.0 by @dependabot in #130
  • Bump docker/metadata-action from 4.6.0 to 5.0.0 by @dependabot in #132
  • Bump actions/checkout from 4.0.0 to 4.1.0 by @dependabot in #134
  • Bump step-security/harden-runner from 2.5.1 to 2.6.0 by @dependabot in #137
  • Bump actions/setup-python from 4.7.0 to 4.7.1 by @dependabot in #136
  • Bump ossf/scorecard-action from 2.2.0 to 2.3.0 by @dependabot in #138
  • Bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in #139
  • Bump actions/dependency-review-action from 3.1.0 to 3.1.1 by @dependabot in #141
  • Bump ossf/scorecard-action from 2.3.0 to 2.3.1 by @dependabot in #140
  • Bump actions/dependency-review-action from 3.1.1 to 3.1.2 by @dependabot in #142
  • Bump docker/build-push-action from 5.0.0 to 5.1.0 by @dependabot in #145
  • Bump step-security/harden-runner from 2.6.0 to 2.6.1 by @dependabot in #144
  • Bump actions/dependency-review-action from 3.1.2 to 3.1.3 by @dependabot in #143
  • Bump actions/dependency-review-action from 3.1.3 to 3.1.4 by @dependabot in #146
  • Bump actions/stale from 8.0.0 to 9.0.0 by @dependabot in #152
  • Bump actions/setup-python from 4.7.1 to 5.0.0 by @dependabot in #150
  • Bump docker/metadata-action from 5.0.0 to 5.3.0 by @dependabot in #148
  • Bump actions/setup-go from 4.1.0 to 5.0.0 by @dependabot in #151
  • Bump actions/upload-artifact from 3.1.3 to 4.0.0 by @dependabot in #154
  • Bump actions/download-artifact from 3.0.2 to 4.0.0 by @dependabot in #153
  • Revert dependabot changes to actions/{upload, download}-artifact by @felddy in #158
  • Bump actions/cache from 3.3.2 to 4.0.0 by @dependabot in #164
  • Bump actions/dependency-review-action from 3.1.4 to 3.1.5 by @dependabot in #157
  • Bump docker/metadata-action from 5.3.0 to 5.5.0 by @dependabot in #159
  • Refactor and add local use and tests of workflows by @felddy in #165
  • Bump actions/dependency-review-action from 3.1.5 to 4.0.0 by @dependabot in #168

New Contributors

Full Changelog: https://github.com/felddy/reusable-workflows/commits/v1.0.0

Contributors

felddy and dependabot
Assets 8
Loading