dependabot[bot]
7d25b31c88
build(deps): bump github/codeql-action from 3.24.6 to 3.24.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.6 to 3.24.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8a470fddaf...3ab4101902
2024-03-18 09:45:58 +00:00
dependabot[bot]
f3d4e0b828
build(deps): bump actions/checkout from 4.1.1 to 4.1.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](b4ffde65f4...9bb56186c3
2024-03-18 09:45:45 +00:00
dependabot[bot]
c677dfe5bb
build(deps): bump github/codeql-action from 3.24.5 to 3.24.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.5 to 3.24.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](47b3d888fe...8a470fddaf
2024-03-04 06:22:40 +00:00
dependabot[bot]
03731075ee
build(deps): bump github/codeql-action from 3.24.3 to 3.24.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.3 to 3.24.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](379614612a...47b3d888fe
2024-02-26 20:18:41 +00:00
dependabot[bot]
092bb0a3d2
build(deps): bump github/codeql-action from 3.24.0 to 3.24.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.0 to 3.24.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e8893c57a1...379614612a
2024-02-19 14:59:12 +00:00
dependabot[bot]
feeaec66fa
build(deps): bump github/codeql-action from 3.23.2 to 3.24.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.23.2 to 3.24.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b7bf0a3ed3...e8893c57a1
2024-02-05 07:42:00 +00:00
dependabot[bot]
fa81522b5c
build(deps): bump step-security/harden-runner from 2.6.1 to 2.7.0
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.6.1 to 2.7.0.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](eb238b55ef...63c24ba6bd
2024-02-05 07:41:53 +00:00
Kelvin M. Klann
180bdee347
ci: add timeout limits ( #6178 )
...
So that they fail early instead of letting them run indefinitely when
there are problems with the CI infrastructure.
Use 5 minutes for the jobs that usually complete in under a minute
(check-profiles and codespell) and 10 minutes for the rest (most jobs
usually take 1-3 minutes).
2024-02-03 20:24:45 +00:00
dependabot[bot]
57c95f89d1
build(deps): bump github/codeql-action from 3.23.1 to 3.23.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.23.1 to 3.23.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0b21cf2492...b7bf0a3ed3
2024-01-29 17:35:12 +00:00
dependabot[bot]
0c2be35caa
build(deps): bump github/codeql-action from 3.23.0 to 3.23.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.23.0 to 3.23.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e5f05b81d5...0b21cf2492
2024-01-22 17:48:32 +00:00
dependabot[bot]
22c728b508
build(deps): bump github/codeql-action from 3.22.12 to 3.23.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.22.12 to 3.23.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](012739e508...e5f05b81d5
2024-01-15 16:42:35 +00:00
dependabot[bot]
f839fb02bb
build(deps): bump github/codeql-action from 3.22.11 to 3.22.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.22.11 to 3.22.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b374143c11...012739e508
2024-01-04 02:52:17 +00:00
dependabot[bot]
90907ac0d2
build(deps): bump github/codeql-action from 2.22.9 to 3.22.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.9 to 3.22.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c0d1daa7f7...b374143c11
2023-12-19 18:53:31 +00:00
dependabot[bot]
2e95bb3bfc
build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.8 to 2.22.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](407ffafae6...c0d1daa7f7
2023-12-11 17:07:19 +00:00
dependabot[bot]
6d3549b912
build(deps): bump github/codeql-action from 2.22.7 to 2.22.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.7 to 2.22.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](66b90a5db1...407ffafae6
2023-11-27 06:58:30 +00:00
dependabot[bot]
f60f4b3072
build(deps): bump step-security/harden-runner from 2.6.0 to 2.6.1
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](1b05615854...eb238b55ef
2023-11-20 18:34:15 +00:00
dependabot[bot]
1395d2f176
build(deps): bump github/codeql-action from 2.22.5 to 2.22.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.5 to 2.22.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](74483a38d3...66b90a5db1
2023-11-20 18:33:56 +00:00
dependabot[bot]
244d18caa4
build(deps): bump github/codeql-action from 2.22.4 to 2.22.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.4 to 2.22.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](49abf0ba24...74483a38d3
2023-10-30 09:08:31 +00:00
dependabot[bot]
62773e758a
build(deps): bump github/codeql-action from 2.22.3 to 2.22.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.3 to 2.22.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0116bc2df5...49abf0ba24
2023-10-23 16:47:44 +00:00
dependabot[bot]
c4b0d88fad
build(deps): bump actions/checkout from 4.1.0 to 4.1.1
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8ade135a41...b4ffde65f4
2023-10-23 16:46:42 +00:00
dependabot[bot]
3f641c04a1
build(deps): bump github/codeql-action from 2.22.0 to 2.22.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.22.0 to 2.22.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](2cb752a87e...0116bc2df5
2023-10-16 12:56:08 +00:00
dependabot[bot]
16edbd8268
build(deps): bump github/codeql-action from 2.21.9 to 2.22.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.9 to 2.22.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ddccb87388...2cb752a87e
2023-10-09 08:08:13 +00:00
dependabot[bot]
202a079115
build(deps): bump step-security/harden-runner from 2.5.1 to 2.6.0
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](8ca2b8b2ec...1b05615854
2023-10-09 08:07:54 +00:00
netblue30
0617a70f4d
Merge pull request #6026 from kmk3/ci-allow-manual-run
...
ci: allow running workflows manually
2023-10-05 09:05:10 -04:00
dependabot[bot]
f3fc98499f
build(deps): bump github/codeql-action from 2.21.8 to 2.21.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.8 to 2.21.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6a28655e3d...ddccb87388
2023-10-02 16:22:06 +00:00
Kelvin M. Klann
e796ba1349
ci: allow running workflows manually
...
Add `on.workflow_dispatch`.
See:
* https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#onworkflow_dispatch
* https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#workflow_dispatch
2023-09-26 12:24:14 -03:00
dependabot[bot]
91533c4394
build(deps): bump github/codeql-action from 2.21.7 to 2.21.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.7 to 2.21.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](04daf014b5...6a28655e3d
2023-09-25 17:22:34 +00:00
dependabot[bot]
bfacd86527
build(deps): bump actions/checkout from 4.0.0 to 4.1.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](3df4ab11eb...8ade135a41
2023-09-25 17:22:23 +00:00
dependabot[bot]
8a82e400e8
build(deps): bump github/codeql-action from 2.21.5 to 2.21.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.5 to 2.21.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](00e563ead9...04daf014b5
2023-09-18 13:29:44 +00:00
dependabot[bot]
8caf747ab8
build(deps): bump actions/checkout from 3.6.0 to 4.0.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](f43a0e5ff2...3df4ab11eb
2023-09-11 17:48:10 +00:00
Kelvin M. Klann
0cc56a71a5
ci: fix dependabot duplicated workflow runs
...
Every workflow is being executed twice for dependabot: Once when its
branch is pushed to this repository and again when a PR is opened for
it.
For example, see the checks in #5979 ("29 checks passed").
This happens because both `on.push` and `on.pull_request` are specified
in the workflow files.
There does not seem to be a simple and generic way to avoid such
duplicated runs directly in GitHub Actions (such as preventing the same
check from running for the same exact commit)[1], so just ignore the
dependabot branches on push for now.
See also and commit 5871b08a4#5815 .
[1] https://github.com/orgs/community/discussions/26276
2023-08-28 20:47:35 -03:00
dependabot[bot]
f235c8f6c7
build(deps): bump actions/checkout from 3.5.3 to 3.6.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](c85c95e3d7...f43a0e5ff2
2023-08-28 22:22:25 +00:00
dependabot[bot]
e4e215340e
build(deps): bump github/codeql-action from 2.21.2 to 2.21.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.2 to 2.21.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2.21.2...00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-28 22:16:21 +00:00
Kelvin M. Klann
b4346f0f19
ci: document the intended purpose of each workflow
2023-08-22 04:58:21 -03:00
Kelvin M. Klann
8d53acbbb2
ci: move codeql python job into its own workflow
...
Only run the CodeQL Python analysis if a .py file is changed.
2023-08-20 12:31:14 -03:00
