dependabot[bot]
217149cb01
build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.1 to 2.4.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](https://github.com/ossf/scorecard-action/compare/v2.4.1...v2.4.2 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-version: 2.4.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-06-03 09:48:12 +02:00
dependabot[bot]
dcc9d91b94
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from c6634ca281a9fc05b03bee224ba00910cb78ab6e to 115870536a85eaf050e369291c7895748ff12aea.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](c6634ca281...115870536a
2025-06-03 09:48:01 +02:00
dependabot[bot]
5d21ca9b79
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 480f49412651059a414a6a5c96887abb1877de8a to c6634ca281a9fc05b03bee224ba00910cb78ab6e.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](480f494126...c6634ca281
2025-05-27 15:37:52 +02:00
dependabot[bot]
0f304fc14e
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 4168bb487d5b82227665ab4ec90b67ce02691741 to 480f49412651059a414a6a5c96887abb1877de8a.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](4168bb487d...480f494126
2025-05-13 08:15:31 +02:00
Igor Pecovnik
719bae4246
Improve welcoming text for 1st time PR and issues contributors
2025-05-12 16:53:17 +02:00
Igor Pecovnik
6e3ad9bca3
Updating maintainers: switch to new location of JSON file
2025-05-11 23:34:10 +02:00
dependabot[bot]
29a6a7351d
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 5426ecc3f5c2b10effaefbd374f0abdc6a571b2f to 4168bb487d5b82227665ab4ec90b67ce02691741.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](5426ecc3f5...4168bb487d
2025-05-06 00:36:39 +02:00
dependabot[bot]
3a64aa1883
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from c34c1c13a740b06851baff92ab9a653d93ad6ce7 to 5426ecc3f5c2b10effaefbd374f0abdc6a571b2f.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](c34c1c13a7...5426ecc3f5
2025-04-29 00:24:54 +02:00
dependabot[bot]
c75632b05e
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from be393a90381e27c9fec2c8c2e02b00f005710145 to c34c1c13a740b06851baff92ab9a653d93ad6ce7.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](be393a9038...c34c1c13a7
2025-04-22 00:07:54 +02:00
dependabot[bot]
faf34f006b
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 6abeaa506a419f85fa9e681260b443adbeebb3d4 to be393a90381e27c9fec2c8c2e02b00f005710145.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](6abeaa506a...be393a9038
2025-04-14 21:02:37 +02:00
Igor Pecovnik
6a86fd7def
Fix permissions for label Ready to Merge on approved pull requests
2025-04-12 20:04:11 +02:00
Igor
1684d06eb1
GH Actions label adjustment, fix permissions and enable auto quarter labels ( #8078 )
...
* GH Actions: adjust permissions in order to change labels on PR
* Add label by date, check if "Read to merge is present", fix bugs
2025-04-12 19:42:10 +02:00
dependabot[bot]
8d08098c2e
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from b74df86ccb65173a8e33ba5492ac1a2ca6b216fd to 6abeaa506a419f85fa9e681260b443adbeebb3d4.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](b74df86ccb...6abeaa506a
2025-04-08 17:12:03 +02:00
dependabot[bot]
0ca157ac0a
build(deps): bump tj-actions/changed-files
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 27ae6b33eaed7bf87272fdeb9f1c54f9facc9d99 to b74df86ccb65173a8e33ba5492ac1a2ca6b216fd.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](27ae6b33ea...b74df86ccb
2025-04-05 14:40:44 +02:00
Igor
1ebec53080
Revert "Change to different method of getting changed files" ( #8019 )
...
* Revert "Change to different method of getting changed files"
This reverts commit d4022fbbbb
2025-03-28 12:37:41 +01:00
dependabot[bot]
12f6e7c2d1
build(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65
2025-03-26 10:07:09 +01:00
Igor Pecovnik
d4022fbbbb
Change to different method of getting changed files
...
Addressing security issue: https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/
2025-03-15 16:25:27 +01:00
dependabot[bot]
ddc137de23
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](https://github.com/ossf/scorecard-action/compare/v2.4.0...v2.4.1 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-02-24 20:40:40 +01:00
dependabot[bot]
a872d94778
build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0
2025-02-24 20:40:28 +01:00
Koichi Murase
1fdd801908
actions(update-tools): avoid notifying our outdated deps everywhere
...
In the current main branch, workflow update-tools includes the content
of the upstream release notes in the created GitHub Issue. This
triggers a notification to every upstream contributor mentioned in the
release note. This also creates a cross-reference link to our GitHub
Issue (reporting that our dependency is not up-to-date) in every
upstream issue and pull request. The information that we need to
update our dependency is not relavant to the upstream contributors,
issues, and pull requests at all. We should avoid this situation.
In the first place, we do not need to include a copy of the upstream
release note. We can just put a link to the upstream release note.
Currently, we anyway hide the content in the <details> tag and require
the reader to press the button. The user experience is not so
different from pressing a link and visiting the upstream release note.
2025-01-21 13:26:44 +01:00
dependabot[bot]
3edb905b71
build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6f51ac03b9...65c4c4a1dd
2025-01-19 20:23:06 +01:00
dependabot[bot]
48ad33ed22
build(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9
2024-12-24 14:29:11 +01:00
Igor Pecovnik
52548e408a
GitHub Actions: add log cleaner, adjust names, fix labelling on approve
2024-11-03 21:39:25 +01:00
Igor Pecovnik
6954f12531
GHA conditions syntay fix
2024-11-01 09:01:28 +01:00
Igor Pecovnik
d355c17dc3
Change pull request trigger in order to get permissions back in order
2024-11-01 08:27:49 +01:00
dependabot[bot]
7e2bc69479
build(deps): bump pascalgn/size-label-action from 0.5.4 to 0.5.5
...
Bumps [pascalgn/size-label-action](https://github.com/pascalgn/size-label-action ) from 0.5.4 to 0.5.5.
- [Release notes](https://github.com/pascalgn/size-label-action/releases )
- [Commits](https://github.com/pascalgn/size-label-action/compare/v0.5.4...v0.5.5 )
---
updated-dependencies:
- dependency-name: pascalgn/size-label-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-10-28 20:15:37 +01:00
dependabot[bot]
27129cfce6
build(deps): bump peter-evans/create-pull-request from 6 to 7
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 6 to 7.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-10-28 20:15:25 +01:00
Igor Pecovnik
bede7c121e
Limit default labelling to opened, reopened and synchronize PR
...
Also remove "Ready to merge" in case PR is changed / fresh
2024-10-25 23:39:50 +02:00
Igor Pecovnik
01c83b4639
Label approved pull requests with "Ready to merge"
2024-10-25 22:37:15 +02:00
Igor Pecovnik
466a0cd346
Move maintainers update function from https://github.com/armbian/scripts
...
- we don't need to use PAT anymore as its within same repository
- cosmetic fixes
2024-10-25 21:48:58 +02:00
dependabot[bot]
749aea39e4
build(deps): bump actions/upload-artifact from 4.4.1 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.1 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](604373da63...b4b15b8c7c
2024-10-15 15:55:59 +02:00
dependabot[bot]
692a282716
build(deps): bump actions/upload-artifact from 4.4.0 to 4.4.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...604373da63
2024-10-09 19:52:29 +02:00
dependabot[bot]
cabed2ad7d
build(deps): bump peter-evans/create-pull-request from 6 to 7
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 6 to 7.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-09-10 21:58:13 +02:00
dependabot[bot]
7fd33a404f
build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.6 to 4.4.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](834a144ee9...50769540e7
2024-09-03 15:02:31 +02:00
dependabot[bot]
dc4301c390
build(deps): bump tj-actions/changed-files from 44 to 45
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 44 to 45.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v44...v45 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-08-27 21:32:47 +02:00
dependabot[bot]
741418e238
build(deps): bump pascalgn/size-label-action from 0.5.2 to 0.5.4
...
Bumps [pascalgn/size-label-action](https://github.com/pascalgn/size-label-action ) from 0.5.2 to 0.5.4.
- [Release notes](https://github.com/pascalgn/size-label-action/releases )
- [Commits](https://github.com/pascalgn/size-label-action/compare/v0.5.2...v0.5.4 )
---
updated-dependencies:
- dependency-name: pascalgn/size-label-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-08-27 21:32:35 +02:00
Igor
e4d75f29ba
Discord announcement: push only when label "Needs review" is set ( #7075 )
...
* Discord annoucement: push only when label "Needs review" is set
* Change to label triggering
* actions: Add run-name to `pr-announce` workflow
---------
Co-authored-by: ColorfulRhino <131405023+ColorfulRhino@users.noreply.github.com>
2024-08-20 12:04:51 +02:00
ColorfulRhino
7678009f60
actions: forked-helper: Run only if secret is set
...
The workflow ran regardless whether `ARMBIAN_SELF_DISPATCH_TOKEN` was set or not, generating errors if the secret could not be found.
In addition, simplify and beautify the workflow.
2024-08-18 10:40:09 +02:00
Werner
da899b2c93
attempt to fix pr announce for all contributors ( #7081 )
...
The earlier attempt seem to limit announces to repository members for some reason.
This attempt limits to the repo only, therefore forks should not be affected.
Not sure if it works, but there is only one way to find out.
2024-08-13 17:41:10 +02:00
dependabot[bot]
a9e2c0b322
build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.5 to 4.3.6.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](89ef406dd8...834a144ee9
2024-08-13 12:20:02 +02:00
Igor
869a6615c4
Prevent running announce script in forks ( #7073 )
...
* Prevent running announce script in forks
* Add description
* fix typo
---------
Co-authored-by: Werner <EvilOlaf@users.noreply.github.com>
2024-08-13 09:21:40 +02:00
Werner
ac01365708
fix pr being announce multiple times ( #7070 )
...
by limiting action to pr opening.
2024-08-12 19:04:25 +02:00
Werner
80873d368e
fix link for pr
2024-08-12 17:44:12 +02:00
Werner
77e6c9c8ef
Send summaries of PR and merges to main chat ( #7060 )
...
* Create pr-announce.yml
* Rename pr-announce.yml to pr-announce.yml
* Create merge-announce.yml
2024-08-11 09:29:12 +02:00
dependabot[bot]
48128c869f
build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...89ef406dd8
2024-08-05 20:38:00 +02:00
dependabot[bot]
8ec78921e1
build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](https://github.com/ossf/scorecard-action/compare/v2.3.3...v2.4.0 )
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-08-02 17:22:58 +02:00
ColorfulRhino
b6b8a89f10
actions: Create workflow to update shell tools via auto-PR
...
Some of our scripts download tools from a repo. These can't be bumped by dependabot, so this workflow is a self-created dependabot to bump versions of those tools to stay up-to-date.
This workflow only creates a PR if the version was actually updated.
Tools currently supported:
- Shellcheck (in 2 different files)
- Shellfmt
- oci-oras
- Bat
2024-07-18 11:54:02 +02:00
ColorfulRhino
28e859f7ce
actions: forked-helper: Don't escape multiline strings
...
Not needed anymore with GITHUB_OUTPUT.
See https://github.com/orgs/community/discussions/26288#discussioncomment-3876281
Instead, use the `toJSON` function that Actions offers to convert the `event` object to JSON.
2024-07-18 11:43:38 +02:00
Igor Pecovnik
10be812ae6
actions: Remove deprecated action script command rebase
...
Not needed as it was integrated by GitHub
2024-07-11 18:02:32 +02:00
ColorfulRhino
6f664c92fd
actions: Run YAML formatter over all workflow files
2024-07-11 18:02:32 +02:00
