dependabot[bot]
|
c6f9859ac6
|
Bump the actions-minor group with 3 updates (#765)
Check Transpiled JavaScript / Check dist/ (push) Failing after 20s
Continuous Integration / TypeScript Tests (push) Failing after 1s
Continuous Integration / Test attest-provenance action (push) Failing after 1s
CodeQL / Analyze (TypeScript) (push) Failing after 2s
Public-Good Sigstore Prober / prober (push) Failing after 2s
GitHub Sigstore Prober / prober (push) Failing after 2s
Bumps the actions-minor group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node) and [github/codeql-action](https://github.com/github/codeql-action).
Updates `actions/checkout` from 6.0.0 to 6.0.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](1af3b93b68...8e8c483db8)
Updates `actions/setup-node` from 6.0.0 to 6.1.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](2028fbc5c2...395ad32622)
Updates `github/codeql-action` from 4.31.5 to 4.31.7
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](fdbfb4d275...cf1bb45a27)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-minor
- dependency-name: actions/setup-node
dependency-version: 6.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: actions-minor
- dependency-name: github/codeql-action
dependency-version: 4.31.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-12-08 10:18:51 -08:00 |
|
dependabot[bot]
|
b92f224bf5
|
Bump actions/checkout from 5.0.1 to 6.0.0 (#756)
Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.1 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](93cb6efe18...1af3b93b68)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-11-24 08:00:44 -08:00 |
|
dependabot[bot]
|
268464dd14
|
Bump the actions-minor group across 1 directory with 3 updates (#751)
Check Transpiled JavaScript / Check dist/ (push) Failing after 25s
Continuous Integration / TypeScript Tests (push) Failing after 3s
Continuous Integration / Test attest-provenance action (push) Failing after 1s
CodeQL / Analyze (TypeScript) (push) Failing after 2s
Public-Good Sigstore Prober / prober (push) Failing after 2s
GitHub Sigstore Prober / prober (push) Failing after 1s
Bumps the actions-minor group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [github/codeql-action](https://github.com/github/codeql-action) and [masci/datadog](https://github.com/masci/datadog).
Updates `actions/checkout` from 5.0.0 to 5.0.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](08c6903cd8...93cb6efe18)
Updates `github/codeql-action` from 4.30.8 to 4.31.4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f443b600d9...e12f017898)
Updates `masci/datadog` from 1.9.2 to 1.9.3
- [Release notes](https://github.com/masci/datadog/releases)
- [Commits](f0cad7cba5...a3f481d2ed)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 5.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-minor
- dependency-name: github/codeql-action
dependency-version: 4.31.4
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: actions-minor
- dependency-name: masci/datadog
dependency-version: 1.9.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: actions-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-11-18 15:30:35 -08:00 |
|
dependabot[bot]
|
2087a22bcc
|
Bump actions/setup-node from 5.0.0 to 6.0.0 (#719)
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](a0853c2454...2028fbc5c2)
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Tingting Wang <tingx2wang@github.com>
|
2025-11-18 15:23:52 -08:00 |
|
dependabot[bot]
|
bed76f6f80
|
Bump actions/setup-node from 4.4.0 to 5.0.0 (#706)
Check Transpiled JavaScript / Check dist/ (push) Failing after 18s
Continuous Integration / TypeScript Tests (push) Failing after 1s
Continuous Integration / Test attest-provenance action (push) Failing after 1s
CodeQL / Analyze (TypeScript) (push) Failing after 2s
Public-Good Sigstore Prober / prober (push) Failing after 1s
GitHub Sigstore Prober / prober (push) Failing after 2s
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4.4.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](49933ea528...a0853c2454)
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 5.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-10-06 10:05:41 -07:00 |
|
dependabot[bot]
|
91ca1c2567
|
Bump actions/checkout from 4.1.1 to 5.0.0 (#684)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.1 to 5.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4.1.1...08c6903cd8c0fde910a37f88322edcfb5dd907a8)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 5.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-08-26 16:21:27 -07:00 |
|
Brian DeHamer
|
8bd83f1e05
|
pin workflow deps (#683)
Check Transpiled JavaScript / Check dist/ (push) Failing after 18s
Continuous Integration / TypeScript Tests (push) Failing after 2s
Continuous Integration / Test attest-provenance action (push) Failing after 2s
Lint Codebase / Lint Codebase (push) Failing after 1s
CodeQL / Analyze (TypeScript) (push) Failing after 16s
Public-Good Sigstore Prober / prober (push) Failing after 1s
GitHub Sigstore Prober / prober (push) Failing after 2s
Signed-off-by: Brian DeHamer <bdehamer@github.com>
|
2025-08-14 15:13:49 -07:00 |
|
dependabot[bot]
|
3eb3242bd7
|
Bump super-linter/super-linter from 6 to 7 (#205)
* Bump super-linter/super-linter from 6 to 7
Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 6 to 7.
- [Release notes](https://github.com/super-linter/super-linter/releases)
- [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md)
- [Commits](https://github.com/super-linter/super-linter/compare/v6...v7)
---
updated-dependencies:
- dependency-name: super-linter/super-linter
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* disable YAML_PRETTIER in super-linter
Signed-off-by: Brian DeHamer <bdehamer@github.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Brian DeHamer <bdehamer@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Brian DeHamer <bdehamer@github.com>
|
2024-08-20 13:10:51 -05:00 |
|
Phill MV
|
e9e8f489ae
|
Update README.md to use attestations permission (#43)
* Update README.md to use `attestations` permission
* Update ci.yml
* Update ci.yml
* Update README.md
Co-authored-by: Brian DeHamer <bdehamer@github.com>
* Update README.md
Co-authored-by: Brian DeHamer <bdehamer@github.com>
---------
Co-authored-by: Brian DeHamer <bdehamer@github.com>
|
2024-04-22 09:12:55 -07:00 |
|
Eugene
|
9b4b35feaa
|
unit test (#13)
* test
* updated
|
2024-02-29 17:04:03 -08:00 |
|
Brian DeHamer
|
b6400165aa
|
Force signing w/ private sigstore instance (#16)
Signed-off-by: Brian DeHamer <bdehamer@github.com>
|
2024-02-29 16:29:00 -08:00 |
|
Brian DeHamer
|
ee7eb81981
|
readme updates (#12)
Signed-off-by: Brian DeHamer <bdehamer@github.com>
|
2024-02-28 18:11:21 -08:00 |
|
Brian DeHamer
|
d6e451253f
|
reference @actions/attest package (#10)
Signed-off-by: Brian DeHamer <bdehamer@github.com>
|
2024-02-26 14:49:08 -08:00 |
|
Brian DeHamer
|
1c11bf4f81
|
workflow fixup
Signed-off-by: Brian DeHamer <bdehamer@github.com>
|
2024-02-23 17:25:53 -08:00 |
|
ejahnGithub
|
381fca5703
|
init attest build provenance
|
2024-02-22 08:29:05 -08:00 |
|
Brian DeHamer
|
1a4323c55b
|
Initial commit
|
2024-02-20 11:26:39 -08:00 |
|