dependabot[bot]
70f4302913
Bump the github-actions group across 2 directories with 3 updates
...
Bumps the github-actions group with 3 updates in the / directory: [gradle/actions](https://github.com/gradle/actions ), [github/codeql-action](https://github.com/github/codeql-action ) and [actions/setup-java](https://github.com/actions/setup-java ).
Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/setup-java](https://github.com/actions/setup-java ).
Updates `gradle/actions` from 4.2.2 to 4.3.0
- [Release notes](https://github.com/gradle/actions/releases )
- [Commits](0bdd871935...94baf225fehttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](17a820bf2e...dd746615b3https://github.com/actions/setup-java/releases )
- [Commits](7a6d8a8234...3a4f6e1af5https://github.com/actions/setup-java/releases )
- [Commits](7a6d8a8234...3a4f6e1af5
2025-02-04 11:52:48 -07:00
dependabot[bot]
bccddaec22
Bump the github-actions group across 3 directories with 7 updates
...
Bumps the github-actions group with 7 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [gradle/actions](https://github.com/gradle/actions ) | `4.2.1` | `4.2.2` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) | `45.0.5` | `45.0.6` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.27.9` | `3.28.1` |
| [actions/setup-java](https://github.com/actions/setup-java ) | `4.5.0` | `4.6.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.4.3` | `4.6.0` |
| [stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action ) | `5.0.1` | `5.1.0` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `7.0.5` | `7.0.6` |
Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/upload-artifact](https://github.com/actions/upload-artifact ).
Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/setup-java](https://github.com/actions/setup-java ).
Updates `gradle/actions` from 4.2.1 to 4.2.2
- [Release notes](https://github.com/gradle/actions/releases )
- [Commits](cc4fc85e6b...0bdd871935https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](bab30c2299...d6e91a2266https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](df409f7d92...b6a472f63dhttps://github.com/actions/setup-java/releases )
- [Commits](8df1039502...7a6d8a8234https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...65c4c4a1ddhttps://github.com/stefanzweifel/git-auto-commit-action/releases )
- [Changelog](https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md )
- [Commits](8621497c8c...e348103e90https://github.com/peter-evans/create-pull-request/releases )
- [Commits](5e914681df...67ccf781d6https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...65c4c4a1ddhttps://github.com/actions/setup-java/releases )
- [Commits](8df1039502...7a6d8a8234
2025-01-14 13:31:38 -07:00
dependabot[bot]
4ba34e96c5
Bump gradle/actions from 4.2.0 to 4.2.1 in the github-actions group
...
Bumps the github-actions group with 1 update: [gradle/actions](https://github.com/gradle/actions ).
Updates `gradle/actions` from 4.2.0 to 4.2.1
- [Release notes](https://github.com/gradle/actions/releases )
- [Commits](473878a77f...cc4fc85e6b
2024-11-19 09:53:32 -07:00
daz
b6bc8c2f17
Pin gradle/actions versions
2024-11-14 13:05:02 -07:00
daz
e726a12472
Pin actions/setup-java@v4
2024-11-14 12:21:03 -07:00
daz
d30cc9ecf2
Pin actions/checkout@v4
2024-11-14 12:19:48 -07:00
Daz DeBoer
07e0f1c008
Limit token permissions in GitHub workflows ( #440 )
...
See
ea7e27ed41/docs/checks.md (token-permissions)
2024-11-13 19:01:45 -07:00
daz
b1833c4c90
Account for invalid wrapper jar
2024-08-03 16:51:41 -06:00
daz
895252588e
Update docs for v4 release
2024-08-03 16:39:51 -06:00
daz
11eaed9738
Avoid Java 8 since it is not available on MacOS runners
2024-04-25 20:17:16 +01:00
daz
0325d99e52
Workflow fixes
...
- Fix typo in 'paths-ignore'
- Add back 'buildDistribution' to demo job summary
2024-04-12 10:34:50 -06:00
daz
7d97cfadb0
Avoid most workflows when only 'dist' has changed
2024-04-11 22:54:09 -06:00
daz
d37a479015
Use pull_request triggers primarily for workflows
...
Instead of relying on push triggers in general, we now use pull_request
and reserve push triggers for main and release branches.
This makes the behaviour more consistent for users contributing from
repository forks. However, we no longer have a quick-feedback loop
for development.
2024-04-10 16:48:14 -06:00
daz
0ac0f49dd2
Replace 'v3-beta' with 'v3' in docs
2024-01-29 10:46:26 -07:00
daz
f218f2e104
Prefer 'setup-gradle' to 'gradle-build-action'
2024-01-25 12:46:51 -07:00
daz
a628cf9f2e
Replace occurrances of gradle-build-action
...
- Mostly with `setup-gradle`
- Some with `gradle-actions`
2024-01-25 12:36:53 -07:00
daz
22e5c984e7
Update workflows for move to 'sources'
2024-01-25 11:53:44 -07:00
dependabot[bot]
e1ada08a9a
Bump the github-actions group with 1 update ( #1047 )
...
Bumps the github-actions group with 1 update:
[gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
Updates `gradle/gradle-build-action` from 2.11.1 to 2.12.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gradle/gradle-build-action/releases ">gradle/gradle-build-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.12.0</h2>
<p>Adds a new option to clear a previously submitted
dependency-graph.</p>
<pre lang="yaml"><code>steps:
- uses: gradle/gradle-build-action@v2
with:
dependency-graph: clear
</code></pre>
<p>This may prove useful when migrating to a workflow using the upcoming
<code>gradle/actions/dependency-submission</code> action.</p>
<p><strong>Full-changelog</strong>: <a
href="https://github.com/gradle/gradle-build-action/compare/v2.11.1...v2.12.0 ">https://github.com/gradle/gradle-build-action/compare/v2.11.1...v2.12.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a8f75513ea9283312acb7c8a278ea0d8ca9b7d2ehttps://github.com/gradle/gradle-build-action/compare/v2.11.1...v2.12.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-25 10:21:22 -07:00
dependabot[bot]
ad80850e98
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) and [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
Updates `actions/dependency-review-action` from 3 to 4
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](https://github.com/actions/dependency-review-action/compare/v3...v4 )
Updates `gradle/gradle-build-action` from 2.11.0 to 2.11.1
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.11.0...v2.11.1 )
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-01-25 09:57:26 -07:00
dependabot[bot]
14b4921945
Bump the github-actions group with 3 updates
...
Bumps the github-actions group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action ), [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ) and [actions/upload-artifact](https://github.com/actions/upload-artifact ).
Updates `github/codeql-action` from 2 to 3
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2...v3 )
Updates `gradle/gradle-build-action` from 2.10.0 to 2.11.0
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.10.0...v2.11.0 )
Updates `actions/upload-artifact` from 3 to 4
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-23 18:25:51 -07:00
dependabot[bot]
76d5a9b475
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [actions/setup-java](https://github.com/actions/setup-java ) and [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
Updates `actions/setup-java` from 3 to 4
- [Release notes](https://github.com/actions/setup-java/releases )
- [Commits](https://github.com/actions/setup-java/compare/v3...v4 )
Updates `gradle/gradle-build-action` from 2.9.0 to 2.10.0
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.9.0...v2.10.0 )
---
updated-dependencies:
- dependency-name: actions/setup-java
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-11 19:23:45 -07:00
dependabot[bot]
a5be560235
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ) and [actions/github-script](https://github.com/actions/github-script ).
Updates `gradle/gradle-build-action` from 2.8.1 to 2.9.0
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.8.1...v2.9.0 )
Updates `actions/github-script` from 6 to 7
- [Release notes](https://github.com/actions/github-script/releases )
- [Commits](https://github.com/actions/github-script/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: actions/github-script
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-27 03:20:09 +01:00
Daz DeBoer
6fcc109efa
Dependency updates ( #904 )
...
### Github Action updates
Updates `gradle/gradle-build-action` from 2.8.0 to 2.8.1
### NPM updates
Updates `@octokit/webhooks-types` from 7.3.0 to 7.3.1
- [Release notes](https://github.com/octokit/webhooks/releases )
- [Commits](https://github.com/octokit/webhooks/compare/v7.3.0...v7.3.1 )
Updates `@typescript-eslint/parser` from 6.7.2 to 6.7.3
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.3/packages/parser )
Updates `eslint` from 8.49.0 to 8.50.0
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.49.0...v8.50.0 )
2023-09-29 13:55:35 -06:00
dependabot[bot]
5e3952da92
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout ) and [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
Updates `actions/checkout` from 3 to 4
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
Updates `gradle/gradle-build-action` from 2.7.1 to 2.8.0
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.7.1...v2.8.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-21 16:35:57 +02:00
dependabot[bot]
c304f927c4
Bump the github-actions group with 1 update
...
Bumps the github-actions group with 1 update: [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.7.0...v2.7.1 )
---
updated-dependencies:
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-21 22:36:46 +00:00
daz
03f0ac2c51
Bump to use the latest release
2023-08-14 19:59:38 -06:00
dependabot[bot]
2dbad1ea2d
Bump the github-actions group with 1 update
...
Bumps the github-actions group with 1 update: [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.6.0...v2.6.1 )
---
updated-dependencies:
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-18 00:08:00 +02:00
dependabot[bot]
29c79cfd95
Bump the github-actions group with 1 update
...
Bumps the github-actions group with 1 update: [gradle/gradle-build-action](https://github.com/gradle/gradle-build-action ).
- [Release notes](https://github.com/gradle/gradle-build-action/releases )
- [Commits](https://github.com/gradle/gradle-build-action/compare/v2.5.1...v2.6.0 )
---
updated-dependencies:
- dependency-name: gradle/gradle-build-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-10 22:37:15 +00:00
daz
00309f16a9
Use gradle-build-action@v2.5.1
2023-07-07 19:56:00 -06:00
Daz DeBoer
7e48093f71
Attempt to resolve security alert
...
Testing if explicitly using `v2.4.2` will cause the alert to be resolved.
2023-05-01 13:36:49 -06:00
Daz DeBoer
c1a6f51e61
Fix paths that trigger init-script-check
2022-08-22 13:44:04 -06:00
Daz DeBoer
c1ed8b1925
Only run ci-init-script-check on relevant file changes
2022-06-11 09:33:39 -06:00
Daz DeBoer
a8d44c9749
Rename 'test/test-init-script' to 'test/init-scripts'
2022-06-11 09:32:50 -06:00
Daz DeBoer
a7f880172e
Use a released version of 'gradle-build-action' for our CI job
2022-06-05 09:06:23 -06:00
Daz DeBoer
754892d4ae
Add workflow to run init-script tests
2022-06-05 00:27:36 -06:00
