dependabot[bot]
be6fb2a54c
build(deps): bump the github-actions group across 1 directory with 4 updates ( #5650 )
...
Bumps the github-actions group with 4 updates in the / directory: [actions/checkout](https://github.com/actions/checkout ), [lukka/get-cmake](https://github.com/lukka/get-cmake ), [actions/upload-artifact](https://github.com/actions/upload-artifact ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 4.1.2 to 4.1.3
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](9bb56186c3...1d96c772d1
)
Updates `lukka/get-cmake` from 3.29.1 to 3.29.2
- [Release notes](https://github.com/lukka/get-cmake/releases )
- [Commits](b111a57714...4931ab1fc1
)
Updates `actions/upload-artifact` from 4.3.1 to 4.3.2
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](5d5d22a312...1746f4ab65
)
Updates `github/codeql-action` from 3.24.9 to 3.25.1
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b1aada464...c7f9125735
)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: lukka/get-cmake
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-22 13:41:20 -04:00
dependabot[bot]
e39cabca20
build(deps): bump the github-actions group with 2 updates ( #5610 )
...
Bumps the github-actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 4.1.1 to 4.1.2
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](b4ffde65f4...9bb56186c3
)
Updates `github/codeql-action` from 3.24.6 to 3.24.7
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8a470fddaf...3ab4101902
)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-14 18:15:11 -04:00
dependabot[bot]
5084f58e5d
build(deps): bump the github-actions group with 4 updates ( #5445 )
...
Bumps the github-actions group with 4 updates: [actions/checkout](https://github.com/actions/checkout ), [ossf/scorecard-action](https://github.com/ossf/scorecard-action ), [actions/upload-artifact](https://github.com/actions/upload-artifact ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 3.1.0 to 4.1.1
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...b4ffde65f46336ab88eb53be808477a3936bae11 )
Updates `ossf/scorecard-action` from 2.1.2 to 2.3.0
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e38b1902ae...483ef80eb9
)
Updates `actions/upload-artifact` from 3.1.0 to 3.1.3
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...a8a3f3ad30
)
Updates `github/codeql-action` from 2.2.4 to 2.22.3
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](17573ee1cc...0116bc2df5
)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-actions
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-18 14:56:29 -04:00
Joyce
ce995b319e
Hash pin workflows and config dependabot ( #5412 )
...
* Step Security: hash pin and dependabot
Signed-off-by: Joyce Brum <joycebrum@google.com>
* add license to dependabot.yml
Signed-off-by: Joyce <joycebrum@google.com>
---------
Signed-off-by: Joyce Brum <joycebrum@google.com>
Signed-off-by: Joyce <joycebrum@google.com>
2023-10-05 13:18:28 -04:00
Steven Perron
27673a0544
Remove reviewer from autoroller ( #5414 )
...
For some reason the `gh` command to create a pull request with a team as
the reviewer is not working. That command works when I run it locally. I
don't know what the problem is, but I will just stop adding a reviewer.
Then anyone can look at it.
2023-09-26 12:06:29 -04:00
Steven Perron
fc54e178e9
Change autoroll pr review id ( #5404 )
...
The autoroll pr reviews add me as the reviewer. I want to change this so
that it requests a reveiw from a team instead.
2023-09-11 17:24:32 -07:00
Steven Perron
c558886610
Fix failing action when PR is already open. ( #5380 )
2023-08-15 09:53:10 -04:00
Natalie Chouinard
4a9881fe9b
Use absolute path to depot_tools ( #5360 )
...
The autoroll workflow is currently failing due to being unable to find
some depot_tools executables. This is due to a limitation in Go os/exec
which effectively rejects all relative paths in PATH, and is exposed by
a recent update to depot_tools
(https://crrev.com/43083529de5802a83f53f1d53d7f5f9615999996 ).
2023-08-04 18:01:50 -04:00
Nathan Gauër
9c9144b65c
ci: fix dependency updater bot ( #5165 )
...
Thought `content` permission was enough to create (not merge) PRs,
but turns out the `pull-request` permission is also required.
This should unblock the bot.
Signed-off-by: Nathan Gauër <brioche@google.com>
2023-03-20 14:06:58 +01:00
Nathan Gauër
7cefd5f5f8
Change default permissions for workflows ( #5149 )
...
* change default workflow permission to read-all
Fixes #5147
* permission: content read-only
* remove bad changes
2023-03-13 16:18:01 +01:00
Steven Perron
c51e2afe00
Add kokoro:run label to autoroll PRs ( #5077 )
2023-01-19 10:25:25 -05:00
Steven Perron
bebca22e2d
Rename bot in autoroll.yml ( #5072 )
...
The current bot is having trouble with the CLA. I checked with the Khronos
admin, and this was his reply:
> We already safe list *[bot] which should account for all GitHub bots. If you
have manually named the GitHub Actions bot to GitHub Actions bot, it should be
renamed to GitHub Actions[bot]. This should resolve the issue.
Trying that to see if it works.
2023-01-19 00:49:07 +00:00
Steven Perron
4683eab649
Create a github action to update DEPS ( #5061 )
...
Adding a github action to open a PR when the DEPS can be updated.
It will run once a day or it can be manually triggered.
I updated roll_deps.sh so that it will not return an error if there were no new
commits for a repository.
2023-01-18 13:19:39 -05:00