From 379352515d05afbe034d6a45defc150ae220dffd Mon Sep 17 00:00:00 2001 From: marek-karwacki-rdx <118768577+marek-karwacki-rdx@users.noreply.github.com> Date: Wed, 6 Dec 2023 11:07:19 +0100 Subject: [PATCH 1/4] ci: use forked github actions (#167) --- .github/workflows/build.yml | 2 +- .github/workflows/release.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 6aabe6cd..2c929c49 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -121,4 +121,4 @@ jobs: run: npm run build - name: Dump context - uses: crazy-max/ghaction-dump-context@v2 \ No newline at end of file + uses: RDXWorks-actions/ghaction-dump-context@master \ No newline at end of file diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 803c0893..a63c772a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -49,7 +49,7 @@ jobs: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --format=cyclonedx1.4+json --json-file-output sbom.json command: sbom - name: Upload SBOM - uses: AButler/upload-release-assets@c94805dc72e4b20745f543da0f62eaee7722df7a # v2.0.2 + uses: RDXWorks-actions/upload-release-assets@master with: files: sbom.json repo-token: ${{ secrets.GITHUB_TOKEN }} From 1c00a5a18aa9729376f10fae4b81978be19bc2f2 Mon Sep 17 00:00:00 2001 From: marek-karwacki-rdx <118768577+marek-karwacki-rdx@users.noreply.github.com> Date: Tue, 12 Dec 2023 07:59:19 +0100 Subject: [PATCH 2/4] ci: revert upload-release-assets action (#168) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index a63c772a..1dc6c51a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -49,7 +49,7 @@ jobs: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --format=cyclonedx1.4+json --json-file-output sbom.json command: sbom - name: Upload SBOM - uses: RDXWorks-actions/upload-release-assets@master + uses: RDXWorks-actions/upload-release-assets@c94805dc72e4b20745f543da0f62eaee7722df7a with: files: sbom.json repo-token: ${{ secrets.GITHUB_TOKEN }} From 060d81e88d0ed2357de7b0788d6f1944f1524348 Mon Sep 17 00:00:00 2001 From: marek-karwacki-rdx <118768577+marek-karwacki-rdx@users.noreply.github.com> Date: Tue, 19 Dec 2023 12:41:55 +0100 Subject: [PATCH 3/4] ci: use forked verified github actions (#169) --- .github/workflows/build.yml | 16 ++++++++-------- .github/workflows/release.yml | 6 +++--- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 2c929c49..e7af2a63 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -32,7 +32,7 @@ jobs: contents: read deployments: write steps: - - uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b + - uses: RDXWorks-actions/checkout@main - uses: radixdlt/public-iac-resuable-artifacts/fetch-secrets@main with: role_name: ${{ secrets.AWS_ROLE_NAME_SNYK_SECRET }} @@ -42,7 +42,7 @@ jobs: secret_name: ${{ secrets.AWS_SECRET_NAME_SNYK }} parse_json: true - name: Run Snyk to check for deps vulnerabilities - uses: snyk/actions/node@b98d498629f1c368650224d6d212bf7dfa89e4bf # v0.4.0 + uses: RDXWorks-actions/snyk-actions/node@master with: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --severity-threshold=critical @@ -54,7 +54,7 @@ jobs: contents: read deployments: write steps: - - uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b + - uses: RDXWorks-actions/checkout@main - uses: radixdlt/public-iac-resuable-artifacts/fetch-secrets@main with: role_name: ${{ secrets.AWS_ROLE_NAME_SNYK_SECRET }} @@ -64,7 +64,7 @@ jobs: secret_name: ${{ secrets.AWS_SECRET_NAME_SNYK }} parse_json: true - name: Run Snyk to check for code vulnerabilities - uses: snyk/actions/node@b98d498629f1c368650224d6d212bf7dfa89e4bf # v0.4.0 + uses: RDXWorks-actions/snyk-actions/node@master with: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --severity-threshold=high command: code test @@ -80,7 +80,7 @@ jobs: - snyk-scan-deps-licences - snyk-scan-code steps: - - uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b + - uses: RDXWorks-actions/checkout@main - uses: radixdlt/public-iac-resuable-artifacts/fetch-secrets@main with: role_name: ${{ secrets.AWS_ROLE_NAME_SNYK_SECRET }} @@ -90,7 +90,7 @@ jobs: secret_name: ${{ secrets.AWS_SECRET_NAME_SNYK }} parse_json: true - name: Generate SBOM # check SBOM can be generated but nothing is done with it - uses: snyk/actions/node@b98d498629f1c368650224d6d212bf7dfa89e4bf # v0.4.0 + uses: RDXWorks-actions/snyk-actions/node@master with: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --format=cyclonedx1.4+json --json-file-output sbom.json command: sbom @@ -101,10 +101,10 @@ jobs: - snyk-scan-deps-licences - snyk-scan-code steps: - - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c + - uses: RDXWorks-actions/checkout@main - name: Use Node.js - uses: actions/setup-node@7c29869aec4da703a571b27bcd84d4f15af0b56e + uses: RDXWorks-actions/setup-node@main with: node-version: '18.x' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1dc6c51a..271fdec6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -13,11 +13,11 @@ jobs: permissions: write-all steps: - name: Checkout - uses: actions/checkout@v2 + uses: RDXWorks-actions/checkout@main with: fetch-depth: 0 - name: Setup Node.js - uses: actions/setup-node@v2 + uses: RDXWorks-actions/setup-node@main with: node-version: '18.x' - name: Authenticate with private NPM package @@ -44,7 +44,7 @@ jobs: secret_name: ${{ secrets.AWS_SECRET_NAME_SNYK }} parse_json: true - name: Generate SBOM - uses: snyk/actions/node@b98d498629f1c368650224d6d212bf7dfa89e4bf # v0.4.0 + uses: RDXWorks-actions/snyk-actions/node@master with: args: --all-projects --org=${{ env.SNYK_PROJECTS_ORG_ID }} --format=cyclonedx1.4+json --json-file-output sbom.json command: sbom From ae87098df5b5c2caf59364171944be26747b5d6e Mon Sep 17 00:00:00 2001 From: Dawid Sowa Date: Thu, 28 Dec 2023 11:56:38 +0100 Subject: [PATCH 4/4] fix: bump @radixdlt/connect-button@1.0.3 --- package-lock.json | 19 ++++++++++--------- package.json | 2 +- 2 files changed, 11 insertions(+), 10 deletions(-) diff --git a/package-lock.json b/package-lock.json index 45e36ed9..f40bb0e5 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,7 +10,7 @@ "license": "SEE LICENSE IN RADIX-SOFTWARE-EULA", "dependencies": { "@radixdlt/babylon-gateway-api-sdk": "^1.2.0", - "@radixdlt/connect-button": "^1.0.1", + "@radixdlt/connect-button": "^1.0.3", "@radixdlt/wallet-sdk": "1.0.1", "immer": "^10.0.2", "lodash.isequal": "^4.5.0", @@ -2768,9 +2768,9 @@ "integrity": "sha512-9pMSwNkbVN+0+y3+zcuUTOO9PGrTB7/tv0TFtRildg29YW94nR6jC9A+SLEy7ovUzPYOrjJfAv72oJOHXyfS9g==" }, "node_modules/@radixdlt/connect-button": { - "version": "1.0.1", - "resolved": "https://registry.npmjs.org/@radixdlt/connect-button/-/connect-button-1.0.1.tgz", - "integrity": "sha512-zKwQkIWW59iajQGhOBXB+x8H0iV/fx7+6/befmUwy+SpsKZ9dgQJz0q2wibaJkk1GES7+4IeziK32a7FB/RgUw==", + "version": "1.0.3", + "resolved": "https://registry.npmjs.org/@radixdlt/connect-button/-/connect-button-1.0.3.tgz", + "integrity": "sha512-cQbl7wtxpc1yshgdpN3p4937iJ8SFkKp6vbktNeqjzO6IML8G6QwkeaU5gPTx58EvVh7ePnqFhfuYOlpZTlAtg==", "dependencies": { "lit": "^2.7.5" }, @@ -7029,9 +7029,9 @@ "integrity": "sha512-7At1WUettjcSRHXCyYtTselblcHl9PJFFVKiCAy/bY97+BPZXSQ2wbq0P9s8tK2G7dFQfNnlJnPAiArVBVBsfA==" }, "node_modules/tslog": { - "version": "4.8.2", - "resolved": "https://registry.npmjs.org/tslog/-/tslog-4.8.2.tgz", - "integrity": "sha512-eAKIRjxfSKYLs06r1wT7oou6Uv9VN6NW9g0JPidBlqQwPBBl5+84dm7r8zSOPVq1kyfEw1P6B3/FLSpZCorAgA==", + "version": "4.9.2", + "resolved": "https://registry.npmjs.org/tslog/-/tslog-4.9.2.tgz", + "integrity": "sha512-wBM+LRJoNl34Bdu8mYEFxpvmOUedpNUwMNQB/NcuPIZKwdDde6xLHUev3bBjXQU7gdurX++X/YE7gLH8eXYsiQ==", "engines": { "node": ">=16" }, @@ -7483,8 +7483,9 @@ } }, "node_modules/zod": { - "version": "3.21.4", - "license": "MIT", + "version": "3.22.4", + "resolved": "https://registry.npmjs.org/zod/-/zod-3.22.4.tgz", + "integrity": "sha512-iC+8Io04lddc+mVqQ9AZ7OQ2MrUKGN+oIQyq1vemgt46jwCwLfhq7/pwnBnNXXXZb8VTVLKwp9EDkx+ryxIWmg==", "funding": { "url": "https://github.com/sponsors/colinhacks" } diff --git a/package.json b/package.json index caf3fa90..003d789a 100644 --- a/package.json +++ b/package.json @@ -50,7 +50,7 @@ }, "dependencies": { "@radixdlt/babylon-gateway-api-sdk": "^1.2.0", - "@radixdlt/connect-button": "^1.0.1", + "@radixdlt/connect-button": "^1.0.3", "@radixdlt/wallet-sdk": "1.0.1", "immer": "^10.0.2", "lodash.isequal": "^4.5.0",