empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 08:55:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0ef74017ea
fleet/.github/workflows
History
dependabot[bot] 0ef74017ea
Bump docker/login-action from 2.0.0 to 2.1.0 (#10182) 
Bumps [docker/login-action](https://github.com/docker/login-action) from
2.0.0 to 2.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Ensure AWS temp credentials are redacted in workflow logs by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/275">#275</a>)</li>
<li>Bump <code>@​actions/core</code> from 1.6.0 to 1.10.0 (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/252">#252</a>
<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/292">#292</a>)</li>
<li>Bump <code>@​aws-sdk/client-ecr</code> from 3.53.0 to 3.186.0 (<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/298">#298</a>)</li>
<li>Bump <code>@​aws-sdk/client-ecr-public</code> from 3.53.0 to 3.186.0
(<a
href="https://github-redirect.dependabot.com/docker/login-action/issues/299">#299</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v2.0.0...v2.1.0">https://github.com/docker/login-action/compare/v2.0.0...v2.1.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f4ef78c080"><code>f4ef78c</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/login-action/issues/299">#299</a>
from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a
href="9ad4ce3929"><code>9ad4ce3</code></a>
Update generated content</li>
<li><a
href="884eadd4f8"><code>884eadd</code></a>
Bump <code>@​aws-sdk/client-ecr-public</code> from 3.53.0 to
3.186.0</li>
<li><a
href="a266232f5c"><code>a266232</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/login-action/issues/298">#298</a>
from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a
href="f97efcfbf9"><code>f97efcf</code></a>
Update generated content</li>
<li><a
href="5ae789beac"><code>5ae789b</code></a>
Bump <code>@​aws-sdk/client-ecr</code> from 3.53.0 to 3.186.0</li>
<li><a
href="71c23b5b34"><code>71c23b5</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/login-action/issues/292">#292</a>
from docker/dependabot/npm_and_yarn/actions/core-1.10.0</li>
<li><a
href="6401d70aab"><code>6401d70</code></a>
Update generated content</li>
<li><a
href="67e8909cc6"><code>67e8909</code></a>
Bump <code>@​actions/core</code> from 1.9.1 to 1.10.0</li>
<li><a
href="21f251affc"><code>21f251a</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/login-action/issues/275">#275</a>
from crazy-max/redact-aws-creds</li>
<li>Additional commits viewable in <a
href="49ed152c8e...f4ef78c080">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=2.0.0&new-version=2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-02-28 17:19:37 -08:00
..
config set default shell in workflows (#8108) 2022-10-07 09:43:56 -06:00
build-and-push-fleetctl-docker.yml Bump docker/login-action from 2.0.0 to 2.1.0 (#10182) 2023-02-28 17:19:37 -08:00
build-binaries.yaml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
build-orbit.yaml Remove contents:write from build-orbit action (#10156) 2023-02-27 19:51:43 -08:00
codeql-analysis.yml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
deploy-fleet-website.yml Website: Add API to send signed CSR emails (#8408) 2023-01-19 14:43:14 -06:00
docs.yml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
dogfood-deploy.yml Prepare for 4.28.0 (#10103) 2023-02-27 15:19:15 -08:00
fleet-and-orbit.yml Windows installer now ensures that legacy osquery installations gets removed during clean install (#9048) 2022-12-19 16:06:44 -08:00
fleetctl-preview-latest.yml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
fleetctl-preview.yml disable fleetctl preview tests on macos (#8911) 2022-12-02 11:29:38 -03:00
generate-desktop-targets.yml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
generate-nudge-targets.yml Generate Nudge targets in CI (#9845) 2023-02-20 09:23:56 -08:00
generate-osqueryd-targets.yml Generate Nudge targets in CI (#9845) 2023-02-20 09:23:56 -08:00
golangci-lint.yml Fix golangci-lint issue and run Github action on all OSs (#9944) 2023-02-21 14:30:45 -03:00
goreleaser-fleet.yaml Bump docker/login-action from 2.0.0 to 2.1.0 (#10182) 2023-02-28 17:19:37 -08:00
goreleaser-orbit.yaml Update Orbit to use CGO on Linux (#9846) 2023-02-21 18:49:13 -08:00
goreleaser-snapshot-fleet.yaml Bump docker/login-action from 2.0.0 to 2.1.0 (#10182) 2023-02-28 17:19:37 -08:00
integration.yml fix integration.yml CI workflow by setting a Go version (#8516) 2022-11-01 09:34:52 -03:00
pr-helm.yaml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
push-osquery-perf-to-ecr.yml Bump aws-actions/amazon-ecr-login from 1.5.0 to 1.5.3 (#8507) 2023-02-27 18:15:16 -08:00
README.md add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
release-helm.yaml Bump stefanprodan/helm-gh-pages from 1.5.0 to 1.7.0 (#8804) 2023-02-27 18:17:32 -08:00
scorecards-analysis.yml Bump ossf/scorecard-action from 1.1.2 to 2.1.2 (#10180) 2023-02-28 17:17:15 -08:00
test-db-changes.yml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
test-go.yaml Update codecov action (#10124) 2023-02-28 09:42:49 -08:00
test-native-tooling-packaging.yml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
test-packaging.yml Update go to 1.19.4 (#8945) 2022-12-09 11:47:17 -03:00
test-website.yml Website: fix failing GitHub workflows (#9285) 2023-01-11 13:31:20 -06:00
test.yml Remove e2e tests from github test workflow (#10176) 2023-02-28 14:07:03 -06:00
tfsec.yml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
tfvalidate.yml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00
trivy_scan.yml 8241 trivy ignore file action (#8345) 2022-10-31 10:50:29 -04:00
update-certs.yml add concurrency to ci (#8271) 2022-10-24 14:01:00 -06:00

README.md

Github Actions

Fleet uses Github Actions for continuous integration (CI). This document describes best practices and at patterns for writing and maintaining Fleet's Github Actions workflows.

Bash

By default, Github Actions sets the shell to bash -e for linux and MacOS runners. To help write safer bash scripts in run jobs and avoid common issues, override the default by adding the following to the workflow file

defaults:
  run:
    # fail-fast using bash -eo pipefail. See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference
    shell: bash

By specifying the default shell to bash, some extra flags are set. The option pipefail changes the behaviour when using the pipe | operator such that if any command in a pipeline fails, that commands return code will be used a the return code for the whole pipeline. Consider the following example in test-go.yaml

    - name: Run Go Tests
      run: |
        # omitted ...
          make test-go 2>&1 | tee /tmp/gotest.log

If the pipefail option was not set, this job would always succeed because tee would always return success. This is not the intended behavior. Instead, we want the job to fail if make test-go fails.

Concurrency

Github Action runners are limited. If a lot of workflows are queued, they will wait in pending until a runner becomes available. This has caused issue in the past where workflows take an excessively long time to start. To help with this issue, use the following in workflows

# This allows a subsequently queued workflow run to interrupt previous runs
concurrency:
  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id}}
  cancel-in-progress: true

When a workflow is triggered via a pull request, it will cancel previous running workflows for that pull request. This is especially useful when changes are pushed to a pull request frequently. Manually triggered workflows, workflows that run on a schedule, and workflows triggered by pushes to main are unaffected.