From 57ccc27bfd4c8e38b38f3ce5c029debf03f939cb Mon Sep 17 00:00:00 2001 From: Junjie Gao Date: Mon, 8 Apr 2024 14:03:39 +0800 Subject: [PATCH 1/4] bump(ci): update ci actions (#158) Signed-off-by: Junjie Gao --------- Signed-off-by: Junjie Gao --- .github/workflows/release.yml | 14 ++++++------ .github/workflows/test.yml | 42 ++++++++++++++++++++++------------- 2 files changed, 34 insertions(+), 22 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8acb8ba..bf2c321 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -34,7 +34,7 @@ jobs: runs-on: ${{ matrix.config.os }} steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 0 - name: Setup .NET @@ -58,7 +58,7 @@ jobs: shell: bash run: python3 ./scripts/build.py "${GITHUB_REF_NAME}" ${{ matrix.config.runtime }} ${{ matrix.config.build_args }} - name: Upload ${{ matrix.config.runtime }} artifact - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@v4 with: name: ${{ matrix.config.runtime }} path: ${{ github.workspace }}/bin/artifacts/* @@ -72,18 +72,18 @@ jobs: needs: build steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 0 - name: Download artifacts - uses: actions/download-artifact@v3 + uses: actions/download-artifact@v4 with: name: ${{ matrix.runtime }} path: ${{ github.workspace }}/bin/artifacts - name: Codesign run: bash ./scripts/codesign.sh - name: Upload ${{ matrix.runtime }} artifact - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@v4 with: name: ${{ matrix.runtime }} path: ${{ github.workspace }}/bin/artifacts @@ -94,11 +94,11 @@ jobs: needs: macos_codesign steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 0 - name: Download artifacts - uses: actions/download-artifact@v3 + uses: actions/download-artifact@v4 with: path: ${{ github.workspace }}/bin/artifacts - name: Create release diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 0743ea0..f9c96ea 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -22,7 +22,7 @@ jobs: statuses: write steps: - name: Checkout Code - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 0 - name: Lint Code Base @@ -46,18 +46,22 @@ jobs: with: dotnet-version: '8.0.x' - name: Check out code into the project directory - uses: actions/checkout@v3 + uses: actions/checkout@v4 + with: + fetch-depth: 0 - name: Run unit tests run: make test - name: Upload coverage reports to Codecov - uses: codecov/codecov-action@v3 + uses: codecov/codecov-action@v4 + env: + CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} - name: Build Linux Binary run: | # the binary will be used in E2E test python3 ./scripts/build.py v0.0.1 linux-x64 --enable-aot - name: Upload Linux artifact if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'push' - uses: actions/upload-artifact@v2 + uses: actions/upload-artifact@v4 with: name: linux-amd64-binary path: ./bin/artifacts/notation-azure-kv_0.0.1_linux_amd64.tar.gz @@ -68,7 +72,7 @@ jobs: python3 ./scripts/build.py v0.0.1 osx-x64 - name: Upload macOS artifact if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'push' - uses: actions/upload-artifact@v2 + uses: actions/upload-artifact@v4 with: name: darwin-amd64-binary path: ./bin/artifacts/notation-azure-kv_0.0.1_darwin_amd64.tar.gz @@ -79,8 +83,10 @@ jobs: needs: test steps: - name: Check out code into the project directory - uses: actions/checkout@v3 - - uses: actions/download-artifact@v3 + uses: actions/checkout@v4 + with: + fetch-depth: 0 + - uses: actions/download-artifact@v4 with: name: linux-amd64-binary path: ./bin/artifacts @@ -103,8 +109,10 @@ jobs: if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'push' steps: - name: Check out code into the project directory - uses: actions/checkout@v3 - - uses: actions/download-artifact@v3 + uses: actions/checkout@v4 + with: + fetch-depth: 0 + - uses: actions/download-artifact@v4 with: name: linux-amd64-binary path: ./bin/artifacts @@ -124,7 +132,7 @@ jobs: docker tag hello-world:latest localhost:5000/hello-world:v1 docker push localhost:5000/hello-world:v1 - name: Azure login - uses: azure/login@v1 + uses: azure/login@v2 with: creds: ${{ secrets.AZURE_CREDENTIALS }} - name: E2E testing @@ -139,7 +147,9 @@ jobs: if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'push' steps: - name: Check out code into the project directory - uses: actions/checkout@v3 + uses: actions/checkout@v4 + with: + fetch-depth: 0 - name: Setup .NET uses: actions/setup-dotnet@v4 with: @@ -165,7 +175,7 @@ jobs: docker push localhost:5000/hello-world:v1 shell: pwsh - name: Azure login - uses: azure/login@v1 + uses: azure/login@v2 with: creds: ${{ secrets.AZURE_CREDENTIALS }} - name: E2E testing @@ -180,8 +190,10 @@ jobs: if: github.event.pull_request.head.repo.full_name == github.repository || github.event_name == 'push' steps: - name: Check out code into the project directory - uses: actions/checkout@v3 - - uses: actions/download-artifact@v3 + uses: actions/checkout@v4 + with: + fetch-depth: 0 + - uses: actions/download-artifact@v4 with: name: darwin-amd64-binary path: ./bin/artifacts @@ -206,7 +218,7 @@ jobs: tar -zxf oras.tar.gz ./oras push localhost:5000/hello-world:v1 --artifact-type application/octet-stream ./LICENSE - name: Azure login - uses: azure/login@v1 + uses: azure/login@v2 with: creds: ${{ secrets.AZURE_CREDENTIALS }} - name: E2E testing From c6a7f4c3d29aa686235c2f3c175fbb14ce2f50c2 Mon Sep 17 00:00:00 2001 From: Junjie Gao Date: Mon, 8 Apr 2024 14:30:58 +0800 Subject: [PATCH 2/4] ci: add dependabot (#159) Signed-off-by: Junjie Gao --------- Signed-off-by: Junjie Gao --- .github/dependabot.yml | 15 +++++++++++++++ 1 file changed, 15 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..da6c4b6 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,15 @@ +version: 2 + +updates: + - package-ecosystem: "nuget" + directory: "/Notation.Plugin.AzureKeyVault" #Notation.Plugin.AzureKeyVault.csproj + schedule: + interval: "daily" + - package-ecosystem: "nuget" + directory: "/Notation.Plugin.AzureKeyVault.Tests" #Notation.Plugin.AzureKeyVault.Tests.csproj + schedule: + interval: "daily" + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "daily" \ No newline at end of file From aab1e39671a9c20b800c895383f4a743436267b9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Apr 2024 05:16:33 +0000 Subject: [PATCH 3/4] build(deps): bump super-linter/super-linter from 5 to 6 (#161) --- .github/workflows/test.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index f9c96ea..6775b92 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -26,13 +26,14 @@ jobs: with: fetch-depth: 0 - name: Lint Code Base - uses: super-linter/super-linter@v5 + uses: super-linter/super-linter@v6 env: VALIDATE_ALL_CODEBASE: false DEFAULT_BRANCH: main DEFAULT_WORKSPACE: ./Notation.Plugin.AzureKeyVault GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} FILTER_REGEX_EXCLUDE: '.*Tests/.*|.*.yml|.*/scripts/generate-certs.sh|.*.py' + VALIDATE_CHECKOV: false VALIDATE_MARKDOWN: false test: name: Unit Testing and Build From b838f3d31e36f3692fd3e0f1de4fd28d8c70be00 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Apr 2024 05:42:16 +0000 Subject: [PATCH 4/4] build(deps): bump actions/setup-dotnet from 3 to 4 (#160) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index bf2c321..dd54a92 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -38,7 +38,7 @@ jobs: with: fetch-depth: 0 - name: Setup .NET - uses: actions/setup-dotnet@v3 + uses: actions/setup-dotnet@v4 with: dotnet-version: '8.0.x' - name: Setup ARM64 Emulator