particle-os/debian-forge-composer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7218 commits 1 branch 0 tags 688 MiB
Commit graph

175 commits

Author SHA1 Message Date
Lukas Zapletal
e3255a578d gha: pin shellcheck to 0.10 2025-08-05 18:55:32 +02:00
Lukas Zapletal
b86d3afd8d workflows: use correct token for gobump 
The newly added gobump was using the default token but this one is not
configured with all required permissions for this repo. This was causing
tests not being executed on github.
 2025-07-28 14:01:03 +02:00
Sanne Raymaekers
d7686244cd cmd/osbuild-composer-dbjobqueue-tests: add migration test 
Migration 9 alters the result column in the jobs table is relied on for
compose statuses. Because it has to be kept consistent across
migrations, add a test to verify this.

As a side effect, the test itself handles the migration now, so remove
that part from the tests GHA.
 2025-07-25 13:10:10 +02:00
Tomáš Hozza
b488a2d826 GH: remove the PR template 
The team agreed that the template is not useful, thus removing it.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-07-23 17:28:29 +02:00
Sanne Raymaekers
d62827e97c go.mod: upgrade to 1.23.9 2025-07-10 16:00:45 +02:00
Lukas Zapletal
84e26ab591 fix: update gobump GHA 2025-06-26 18:44:35 +02:00
Lukas Zapletal
f0fb23f1af ci: introduce gobump gha 2025-06-26 13:01:27 +02:00
Tomáš Hozza
11d821863e GHA: enable the stale action to delete its saved state 
It turns out that the stale action is not able to delete its saved
state due to missing permissions. As a result, it was not processing
issues and PRs, that have been processed once, for almost a month.

The error in the job log was:
```
Warning: Error delete _state: [403] Resource not accessible by integration
```

The fix is to add `actions: write` to the action permissions

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-06-18 14:38:12 +02:00
Tomáš Hozza
a1c0edd71d GH Action/create-tag: allow passing the version when run manually 
Modify the action to allow passing the version when run manually. This
will be useful in the future once we branch-off a `rhel-x.y` branch to
backport a fix and will be doing the first "dot" release from such
branch.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-06-05 22:54:33 +02:00
Tom Koscielniak
dee4a5a21b CI: Run RHEL 10 nightly pipeline on PRs 
Add RHEL 10 nightly pipeline to PRs as well to avoid test breaking changes being introduced into main.
 2025-05-28 11:06:28 +02:00
Tomáš Hozza
746151803a GH actions: move from soon to be EOL F40 to F42 
Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-04-30 09:14:48 +02:00
Irina Gulina
686283b990 update packit validate-config command 2025-04-17 16:33:37 +02:00
Tomáš Hozza
5ccac6b007 GH Action: check the SPEC osbuild/images deps minimum version 
Add a check which leverages the osbuild/images@check-spec-deps-action
action to check that the SPEC files requires at least the minimum
versions for dependencies specified by the `osbuild/images`.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-04-02 11:51:27 +02:00
Florian Schüller
e8059fde2f CODEOWNERS: set people for /templates 2025-03-04 17:48:18 +01:00
dependabot[bot]
9a2bc91f99 build(deps): bump stackrox/kube-linter-action from 1.0.5 to 1.0.6 
Bumps [stackrox/kube-linter-action](https://github.com/stackrox/kube-linter-action) from 1.0.5 to 1.0.6.
- [Release notes](https://github.com/stackrox/kube-linter-action/releases)
- [Commits](https://github.com/stackrox/kube-linter-action/compare/v1.0.5...v1.0.6)

---
updated-dependencies:
- dependency-name: stackrox/kube-linter-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-19 14:56:38 +01:00
Brian C. Lane
74638a9733 workflows: Switch utility workflows to using ubuntu-22.04 
We want to use a stable version of ubuntu, not ubuntu-latest which can
change unexpectedly. This switches all the other (non-test) workflows to
use ubuntu-22.04
 2025-02-12 13:42:16 +01:00
Brian C. Lane
53d50e875d workflows: Use ubuntu-22.04 for tests.yml 
github is dropping support for 20.04 on 4/1/2025 so move to the next
stable version.

Also, back in commit e8ae7e7cae we removed
use of ubuntu-latest because it can change unexpectedly. Some other uses
crept back in, so this changes those to use 22.04 as well.
 2025-02-12 13:42:16 +01:00
Tomáš Hozza
bdd2014c44 Add initial CODEOWNERS file 
Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2025-02-06 15:47:53 +01:00
Lukas Zapletal
3a6bea380e build(deps): bump to Go 1.22 2025-01-31 16:57:31 +01:00
Simon Steinbeiss
e90010f153 github/actions: Enable /jira-epic slash commands 
This change allows for using the command to create Jira Tasks under a given
Epic both in a pull request comment or in the pull request description.

To trigger the action, you can simply add a comment to a given pull request with
the following content:
/jira-epic ISSUE-1234

This will trigger the action and a bot will create a Jira Task under the
Epic ISSUE-1234. Once this is successful, it will update the pull request
title and description to contain a link to the newly created Jira ticket,
which also means that the two will be linked.
Alternatively, you can also add the command to the pull request description
(if you e.g. want to create the Task at PR creation time).

Note: This is currently only enabled for the HMS project.
 2024-12-13 11:27:52 +01:00
dependabot[bot]
73f3aa22a2 build(deps): bump codecov/codecov-action from 4 to 5 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4 to 5.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-09 09:46:42 +01:00
Ondřej Budai
3561202acc github: prevent script injections via PR branch names 
Prior this commit, ${{ github.event.workflow_run.head_branch }} got
expanded in the bash script. A malicious actor could inject
an arbitrary shell script. Since this action has access to a token
with write rights the malicious actor can easily steal this token.

This commit moves the expansion into an env block where such an
injection cannot happen. This is the preferred way according to the
github docs:
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
 2024-12-05 18:13:17 +01:00
Florian Schüller
f478f802f2 github/workflows/tests: add dependency for tests 
libbtrfs-dev seems to be required, otherwise the tests fail
 2024-11-19 13:55:38 +01:00
Florian Schüller
00d3f07d08 Makefile: implement make db-tests 
enables the option to run the DB tests locally
that are executed in the github actions
 2024-11-06 15:16:42 +01:00
Achilleas Koutsou
2a6fe9122f github: disable caching for golangci-lint-action 
There seems to be a caching issue with the linter.  It's reporting go
dependency replacements when there are none.
 2024-09-17 23:33:44 +02:00
Florian Schüller
11f707d277 workflows: include splunk_logger sub module in tests 2024-08-28 16:41:07 +02:00
Florian Schüller
0a68fe3005 Makefile: implement helper to process OpenShift templates 
just for manual checks if the template syntax is fine
and align with the github action to use the same code
 2024-08-02 04:01:02 +02:00
Achilleas Koutsou
1cc90c6a0b go.mod: update to go v1.21 
Go 1.21 is included in all currently supported distro versions.
It is required by new updates to some of our dependencies, including
osbuild/images.
 2024-07-04 19:01:07 +02:00
Florian Schüller
c36367d4cc makefile: implement make lint 2024-07-04 17:52:44 +02:00
dependabot[bot]
7ce03144da build(deps): bump golangci/golangci-lint-action from 5 to 6 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5 to 6.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-13 15:44:16 +02:00
Tomáš Hozza
fa416e4545 Test: re-enable snapshot URL check (COMPOSER-2263) 
Enumerating snapshots now works after the cleanup of EOL releases.

Fixes https://issues.redhat.com/browse/COMPOSER-2263

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2024-06-04 17:17:19 +02:00
Tomáš Hozza
4267c28ffb Tests: temporarily disable checking of valid snapshot URLs 
rpmrepo snapshot enumeration is timing out, which is effectively
blocking GitLab CI from running. Disable the check for now to unblock
CI.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2024-06-04 13:03:37 +02:00
Tomáš Hozza
8f36b6f26e Explicitly pass rpmlint config when calling it 
New version of rpmlint stopped picking the config automatically.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2024-05-30 19:58:34 +02:00
Tomáš Hozza
666baff944 Update F37 to F40 
Fedora 37 has been EOL for some time.

Signed-off-by: Tomáš Hozza <thozza@redhat.com>
 2024-05-30 19:58:34 +02:00
Alexander Todorov
8dece19342 Submit data to CodeCov only if actor has access to token secrets 2024-05-10 22:08:27 +03:00
Alexander Todorov
966685607b Re-enable codecov but use a GHA to submit the results 
because the bash upload has been deprecated
 2024-05-10 22:08:27 +03:00
dependabot[bot]
90dd99471c build(deps): bump golangci/golangci-lint-action from 4 to 5 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 5.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-02 08:46:48 +02:00
Sanne Raymaekers
37233b7b62 .github/workflows/tests: disable codecov until further notice 
The script hangs while pinging codecov for a url to upload the results
to.
 2024-04-30 12:59:58 +02:00
Sanne Raymaekers
a87e3069a1 templates/openshift: make the maintenance template generic 
We could deploy this job for both composer and each tenant's workers
that's present in app-intf. Then we can remove the maintenance bits from
the composer template.
 2024-04-29 15:04:52 +02:00
Sanne Raymaekers
5a776c5b79 templates/openshift: split worker from composer maintenance 2024-04-25 17:32:21 +02:00
Alexander Todorov
c534689d57 Add CI step to detect possible problematic usage of trap 
see for example this change:
https://github.com/osbuild/osbuild-composer/pull/3681/commits/13a3ca24ceef05164a77db1c71b929e262098f41
 2024-04-19 13:16:11 +03:00
Achilleas Koutsou
f98169c29a go.mod: update to go v1.20 
Go 1.20 is included in all currently supported distro versions.

Signed-off-by: Achilleas Koutsou <achilleas@koutsou.net>
 2024-04-11 16:39:21 +02:00
Achilleas Koutsou
de54fc541e github: remove linting of dnf-json 
Signed-off-by: Achilleas Koutsou <achilleas@koutsou.net>
 2024-04-11 16:31:50 +02:00
Simon de Vlieger
b89293ea94 ci: add a PR best practices check 2024-03-07 19:46:11 +01:00
dependabot[bot]
ef07f2b81f build(deps): bump golangci/golangci-lint-action from 3 to 4 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3 to 4.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-04 15:01:41 +01:00
dependabot[bot]
1bd19ab75b build(deps): bump stackrox/kube-linter-action from 1.0.4 to 1.0.5 
Bumps [stackrox/kube-linter-action](https://github.com/stackrox/kube-linter-action) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/stackrox/kube-linter-action/releases)
- [Commits](https://github.com/stackrox/kube-linter-action/compare/v1.0.4...v1.0.5)

---
updated-dependencies:
- dependency-name: stackrox/kube-linter-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-04 15:00:30 +01:00
Brian C. Lane
4e504f7905 README: Fix reference to developer guide 2024-02-29 10:56:03 +01:00
Diaa Sami
76e686df10 switch to images/pkg/dnfjson and remove internal copy 
COMPOSER-2068
 2024-02-20 15:55:47 +01:00
dependabot[bot]
232bce95b5 build(deps): bump actions/upload-artifact from 3 to 4 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-06 12:28:59 +01:00
dependabot[bot]
7b5c4eb526 build(deps): bump actions/setup-go from 4 to 5 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-06 12:26:58 +01:00