Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2026-01-05 00:58:49 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
12062 commits 2 branches 846 tags 130 MiB
Commit graph

120 commits

Author SHA1 Message Date
Lauri Ojansivu
b5bc07d2e7
Merge pull request #4535 from wekan/dependabot/github_actions/actions/checkout-3 
Bump actions/checkout from 2 to 3
 2022-05-31 05:15:57 +03:00
dependabot[bot]
d5247daf8a
Bump github/codeql-action from 1 to 2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-31 02:12:27 +00:00
dependabot[bot]
9ff87d189f
Bump actions/cache from 2 to 3 
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-31 02:12:24 +00:00
dependabot[bot]
2d36116823
Bump docker/metadata-action from 3.3.0 to 4.0.1 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.3.0 to 4.0.1.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](98669ae865...69f6fc9d46)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-31 02:12:17 +00:00
dependabot[bot]
9f0b9b29a5
Bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-31 02:12:13 +00:00
neilnaveen
355b358fe2 chore: Set permissions for GitHub actions 
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
 2022-05-30 01:09:08 +00:00
Lauri Ojansivu
62efb67d06 Fix typo in tests. 2022-01-30 01:32:52 +02:00
Lauri Ojansivu
b12312f998
Create release.yml 2021-10-12 23:58:35 +03:00
Lauri Ojansivu
70ba1eca78
Create docker-publish.yml 2021-09-18 20:46:00 +03:00
Lauri Ojansivu
e925877ae4 Delete not working workflow 2021-09-18 20:44:25 +03:00
Lauri Ojansivu
0e7cc1ef87
Create docker-publish.yml 2021-09-18 20:41:43 +03:00
Lauri Ojansivu
78555f57a7 Try to fix tests. 
Thanks to xet7 !
 2021-06-24 22:52:53 +03:00
Jan Küster
6387d32c2f
ci fix script name 2021-06-23 12:25:02 +02:00
Jan Küster
4d9ba8d73b
tests ci added 2021-06-23 11:52:34 +02:00
Lauri Ojansivu
5dd6466c0a Removed not working GitHub workflow. 
Thanks to xet7 !
 2021-05-10 20:26:23 +03:00
Lauri Ojansivu
b9405bfb64
Update owasp-zap-scan.yml 2021-02-22 19:07:15 +02:00
Lauri Ojansivu
5d8856a1c7
Update owasp-zap-scan.yml 2021-02-22 19:04:16 +02:00
Lauri Ojansivu
5073c0e9ad
Create owasp-zap-scan.yml 
https://github.com/marketplace/actions/owasp-zap-baseline-scan
 2021-02-22 18:43:24 +02:00
Lauri Ojansivu
df35683043
Create codeql-analysis.yml 2020-09-03 19:32:02 +03:00
Lauri Ojansivu
8670561f78
Create dockerimage.yml 2019-12-05 10:31:32 +02:00