Commit Graph

326 Commits

Author SHA1 Message Date
Roberto Dip
174f894b53
fix migration order check by only checking additions (#8172)
this modifies the migration order CI check to only check for added files
by:

1. Escaping the blob we give to git, so bash doesn't perform expansion,
   this lets git handle the blob matching, which for reasons I don't
   fully understand allows to find file renames.
2. Applying `--diff-filter=A`, which makes git only list file additions.
2022-10-11 16:31:40 -03:00
Roberto Dip
2bb4ec2e6d
add script to check for migration order (#7803)
Related to #6142, this adds a CI check for the order of migrations.

As I noted in a comment on the workflow file, it's important to keep in mind that some migrations might still go unnoticed even with this check, example:

1. PR1 adds a migration, CI check pass
2. PR2 adds a migration, CI pass, gets merged
3. PR1 can still be merged because the CI checks aren't run again

The check will fail in `main` however, so if we find the current script to be reliable, we could setup a Slack ping or something similar, to make sure somebody takes a look
2022-10-11 15:36:15 -03:00
dependabot[bot]
35ae71502f
Bump actions/setup-go from 3.2.1 to 3.3.0 (#7470)
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.2.1 to 3.3.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](84cbf80943...268d8c0ca0)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-10 18:55:13 -03:00
Michal Nicpon
9056b22874
set default shell in workflows (#8108)
* wait for mysql in workflows
2022-10-07 09:43:56 -06:00
Lucas Manuel Rodriguez
c09a30d11e
Add Orbit testing to pull_request_template.md (#7896)
* Add Orbit testing to pull_request_template.md

* Address PR comment
2022-10-06 08:16:18 -03:00
Lucas Manuel Rodriguez
127d18642d
Run TUF CI checks on ubuntu-latest (#8088)
* Run TUF CI checks on ubuntu-latest

* Add itself to path
2022-10-05 19:59:11 -03:00
Martin Angers
ec75fb10b2
Fix CI tests for Go (#8079) 2022-10-04 15:48:14 -04:00
Eric
fba863f1e1
Update test-website.yml (#8076) 2022-10-04 12:52:00 -05:00
Zach Wasserman
44dc5ab175
Add handling for Apple Team ID in Notarization (#7991)
Fleet's Notarization workflows no longer work without this argument, so this is added as an optional argument for Notarization.
2022-10-04 09:48:21 -07:00
Guillaume Ross
e48fbad3ac
Adding the schema path to the fleet website deployment workflow (#8063) 2022-10-03 12:20:30 -04:00
Zachary Winnerman
7e69a34f51
Make the github action fail if used on the main branch (#7967) 2022-09-29 17:30:47 +00:00
Martin Angers
7356378d0f
Update hashicorp/aws provider version for loadtesting and add CI validation (#7937)
* Update hashicorp/aws provider version for loadtesting and add CI validation

* Update name of the new workflow
2022-09-28 09:38:56 -05:00
Zach Wasserman
a106e1af83
Update Fleet Desktop version (#7961) 2022-09-27 19:22:40 -07:00
Zach Wasserman
855cca9368
Update notarization to use notarytool (#7962)
Updating from github.com/mitchellh/gon (old API) to the newer xcrun notarytool.

See https://github.com/fleetdm/fleet/actions/runs/3132173324/jobs/5084249006 for example run.
2022-09-27 08:25:42 -07:00
Marcos Oviedo
381f628be7
Bug 7874: Adding SCM calls to register Orbit as a windows service (#7934)
* Bug 7874: Adding SCM calls to register Orbit as a windows service
2022-09-27 11:52:41 -03:00
Martin Angers
84903deffb
Remove gotestfmt formatting on CI (#7939) 2022-09-26 11:37:21 -04:00
Gabriel Hernandez
fca5ad3158
add edit agent options activity text (#7695) 2022-09-23 12:05:07 -04:00
Luke Heath
a6dd4c3d0c
Add Cypress dashboard to CI (#7899) 2022-09-22 13:52:22 -05:00
Martin Angers
db24cf32fa
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853) 2022-09-21 15:16:31 -04:00
Reed Haynes
8607a5d394
Update smoke-tests.md (#7827)
Add "migration tests" step to QA template.
2022-09-19 14:23:02 -04:00
Lucas Manuel Rodriguez
1a6380d590
Fix deprecated virtual runner and golangci-lint deprecated checkers (#7716) 2022-09-13 10:48:21 -03:00
Luke Heath
32cde29834
Disable dependabot version updates for npm (#7697) 2022-09-13 10:17:40 -03:00
Tomas Touceda
8457e55b53
Bump go to 1.19.1 (#7690)
* Bump go to 1.19.1

* Bump remaining go-version to the 1.19.1

* Add extra paths for test-go

* Oops, putting the right path in the right place

* gofmt file

* gofmt ALL THE THINGS

* Moar changes

* Actually, go.mod doesn't like minor versions
2022-09-12 20:32:43 -03:00
Roberto Dip
2397d744a2
fix conditional clauses to run workflows (#7580)
In https://github.com/fleetdm/fleet/pull/7399 we accidentally:

1. added a condition to `.github/workflows/fleet-and-orbit.yml`  that always evaluates to `false` making this workflow always fail
2. modified the condition of `.github/workflows/fleetctl-preview-latest.yml` 

This reverts those changes.
2022-09-06 10:20:45 -03:00
Luke Heath
b1c46b4063
Set dependabot to check npm production dependencies only (#7566) 2022-09-02 14:16:26 -05:00
Luke Heath
6cdd053ead
Set go and npm reviewers to DRI only (#7542)
Co-authored-by: Guillaume Ross <guillaume@fleetdm.com>
2022-09-02 13:06:22 -05:00
Guillaume Ross
fbb88b18b3
Tentative dependabot config with assignees (#7488)
I am not 100% sure the npm thing for / and /website separately will work as intended but this should already make things more precise
2022-08-31 14:59:36 -05:00
Roberto Dip
43785428fb
add workflow to test for uncommited schema changes (#7467)
This adds a new workflow to CI in order to test that the PR doesn't contain uncommited schema changes, which are the source of many merge conflicts and developer frustration.
2022-08-31 10:47:58 -03:00
dependabot[bot]
74839bc134
Bump dawidd6/action-download-artifact from 2.22.0 to 2.23.0 (#7471)
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 2.22.0 to 2.23.0.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](ea71f332a9...7847792dd4)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-31 07:49:57 -03:00
dependabot[bot]
200ddfaaff
Bump actions/checkout from 2 to 3.0.2 (#7301)
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.0.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...2541b1294d2704b0964813337f33b291d3f8596b)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-31 07:44:22 -03:00
dependabot[bot]
fda99bf3ca
Bump github/codeql-action from 2.1.17 to 2.1.21 (#7400)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.17 to 2.1.21.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](0c670bbf04...c7f292ea4f)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-31 07:42:53 -03:00
dependabot[bot]
9e18a33eff
Bump actions/cache (#7344)
Bumps [actions/cache](https://github.com/actions/cache) from 661fd3eb7f2f20d8c7c84bc2b0509efd7a826628 to 3.0.8. This release includes the previously tagged commit.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](661fd3eb7f...fd5de65bc8)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-31 07:41:09 -03:00
Roberto Dip
715f320be1
reduce scope in which packaging and preview actions are run (#7429) 2022-08-29 15:38:30 -03:00
Roberto Dip
3d75ddcdc2
increase the CI timeout to install Docker on macOS (#7430)
in #7399 we reduced the timeout to 10 minutes, however there are multiple timing out and failing on main on the install docker step.
2022-08-29 12:50:16 -03:00
Michal Nicpon
f7b394b1a3
fix brew install warning (#7399) 2022-08-25 15:26:02 -06:00
Noah Talerman
b0e37accc9
Update "Learn how to use Fleet" for Fleet Sandbox (#7142)
- Update "Learn how to use Fleet" docs page to walk a Fleet Sandbox user through adding their device and running a query
- Add a "Get operating system information" query to standard query library for the "Learn how to use Fleet" walkthrough
- Update Fleet's top level README to point users who want to try Fleet to Fleet Sandbox
- Update "How to install osquery..." (macOS, Windows, Linux) blog posts to point users who want to try Fleet to Fleet Sandbox
- Move `fleetctl preview` questions to "Contributing" FAQ section in docs. This is because `fleetctl preview` is now a testing tool for Fleet contributors
- Update "Deploying" docs to point users who want to try Fleet to Fleet Sandbox
2022-08-19 14:13:15 -04:00
Zach Wasserman
ecb428a904
Prepare for Orbit 1.1.0 (#7315) 2022-08-19 08:27:50 -07:00
Zach Wasserman
abe76968f7
Generate targets for osquery 5.5.1 (#7290) 2022-08-19 08:15:24 -07:00
Zach Wasserman
c3ab51bea5
Generate targets for osquery 5.5.0 (#7265) 2022-08-18 15:00:58 +00:00
Roberto Dip
05ddeade90
add back-end implementation for SSO JIT provisioning (#7182)
Related to #7053, this uses the SSO config added in #7140 to enable JIT provisioning for premium instances.
2022-08-15 14:42:33 -03:00
dependabot[bot]
6f0e0873ca
Bump golang from 1.18.4-bullseye to 1.19.0-bullseye (#7039)
* Bump golang from 1.18.4-bullseye to 1.19.0-bullseye

Bumps golang from 1.18.4-bullseye to 1.19.0-bullseye.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update other golang deps as well

* Update missing go mods

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Tomas Touceda <chiiph@gmail.com>
2022-08-10 17:00:01 -03:00
Lucas Manuel Rodriguez
0d255d2252
Amend dependabot branch format (#7148) 2022-08-10 16:14:28 -03:00
dependabot[bot]
56ea9ee1b3
Bump dawidd6/action-download-artifact from 2.21.1 to 2.22.0 (#7132)
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 2.21.1 to 2.22.0.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](6765a42d86...ea71f332a9)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-09 16:02:11 -03:00
Roberto Dip
bfd98557f9
update golangci-lint version (#7115) 2022-08-09 15:42:35 -03:00
Roberto Dip
e40c5b02c1
lock Docker version to 4.10.0 on macOS runners (#7082)
The macOS runners installing Docker are having problems initializing the new Docker version (4.11.0) which effectively blocks PRs with Go code.

This locks the Docker version we install to 4.10.0, which works until we figure out a solution or a new Docker version goes out.
2022-08-05 14:21:54 -03:00
dependabot[bot]
a8a41fce31
Bump github/codeql-action from 2.1.16 to 2.1.17 (#6952)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.16 to 2.1.17.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](3e7e3b32d0...0c670bbf04)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-02 09:18:44 -03:00
Zach Wasserman
b3a575b023
Remove semgrep from Actions (#6847)
Sadly, this never saw the love it needed to bring value. No opposition
to bringing it back later, but removing it for now.
2022-07-25 10:53:06 -07:00
dependabot[bot]
90e3838134
Bump returntocorp/semgrep-action (#6828)
Bumps [returntocorp/semgrep-action](https://github.com/returntocorp/semgrep-action) from 1c1ab0c45ee0495c4ce90cee74ee548e177e054b to 1. This release includes the previously tagged commit.
- [Release notes](https://github.com/returntocorp/semgrep-action/releases)
- [Changelog](https://github.com/returntocorp/semgrep-action/blob/develop/CHANGELOG.md)
- [Commits](1c1ab0c45e...ec5cff3867)

---
updated-dependencies:
- dependency-name: returntocorp/semgrep-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 08:45:15 -07:00
dependabot[bot]
ff2afa8be0
Bump returntocorp/semgrep-action (#6483)
Bumps [returntocorp/semgrep-action](https://github.com/returntocorp/semgrep-action) from 177d02a2d1c3f89e977083f7d979dc946b12323d to 1. This release includes the previously tagged commit.
- [Release notes](https://github.com/returntocorp/semgrep-action/releases)
- [Changelog](https://github.com/returntocorp/semgrep-action/blob/develop/CHANGELOG.md)
- [Commits](177d02a2d1...1c1ab0c45e)

---
updated-dependencies:
- dependency-name: returntocorp/semgrep-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-21 18:47:13 -07:00
Eric
47a80ad483
Update deploy fleet website to run when an article has been updated (#6545) 2022-07-21 19:01:43 -05:00