c0a9c55891
Fix image path formation for Cosign ( #5151 )
2024-12-13 10:26:45 -05:00
11bdb93d1e
Sign main branch container builds with cosign ( #5148 )
...
* Sign main branch container builds with cosign
* Properly label
2024-12-13 09:41:17 -05:00
09db6c79cb
chore(codeowners): assign a bunch of workflows to platform ( #5136 )
2024-12-11 06:31:22 -05:00
9ebddd223a
[BRE-470] - Update Renovate Conf for BRE team ( #5123 )
2024-12-06 11:53:52 -05:00
04f9d7dd8e
Remove SM team from CODEOWNERS ( #5117 )
2024-12-05 09:40:55 -05:00
470a12640e
Trigger unified build on rc and hotfix-rc branches ( #5108 )
2024-12-04 13:18:58 +00:00
8b1b07884e
Fix github token generating in repository-management.yml workflow ( #5038 )
2024-11-14 13:47:37 +01:00
eec4a77bda
Check run earlier during setup ( #5022 )
2024-11-11 13:19:20 -05:00
89be2f495a
Fix Hackerone Report ID 2830741 ( #5010 )
2024-11-08 20:41:58 +00:00
a56f3a587c
Update logic to handle pull_request_target ( #5008 )
...
- Removing the grep and create a conditional based on GITHUB_EVENT_NAME
2024-11-08 11:58:07 -07:00
e7cbdaa469
Only build Unified on main branch pushes ( #5006 )
2024-11-08 10:31:18 -05:00
fcb706b9c5
Catch PR targets for certain build operations ( #5003 )
...
* Catch PR targets for certain build operations
* Support EE
2024-11-07 17:11:01 -05:00
f7957f7053
Check run permissions for secrets usage ( #4992 )
2024-11-07 09:56:57 -05:00
b5014ed6d8
Add MariaDB test ( #4989 )
...
* Add MariaDB Test
* Use Correct Syntax
* Use Container Name
* Add Port
* Remove MySQL Thing
* Remove Another Thing
* Different Port Syntax
* Add Back Skipped Checks
* Use Correct Connection String in Test Setup
* Update .github/workflows/test-database.yml
Co-authored-by: Matt Bishop <mbishop@bitwarden.com >
* Update .github/workflows/test-database.yml
Co-authored-by: Matt Bishop <mbishop@bitwarden.com >
* Use MariaDB 10
---------
Co-authored-by: Matt Bishop <mbishop@bitwarden.com >
2024-11-06 21:51:10 +00:00
355ebfa889
Move Packages to Platform Ownership ( #4988 )
2024-11-06 19:36:07 +00:00
e7bd31c009
Check for secrets on Docker builds ( #4985 )
2024-11-06 13:56:12 -05:00
d63e18ec7a
Check for secrets on database test report upload ( #4984 )
2024-11-06 11:38:25 -05:00
fded36c999
Add version bump task ( #4976 )
2024-11-05 11:47:58 -05:00
2abd37d2d7
[deps] DevOps: Update gh minor ( #4945 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-30 11:23:50 -04:00
9a499df0e7
BRE-344 - Add PR logic to Repository Management workflow ( #4938 )
2024-10-24 13:15:16 -06:00
724f2ee5e5
Secure inputs ( #4927 )
2024-10-22 10:29:57 -06:00
bf976706f7
Manage ephemeral configs ( #4926 )
...
* Add ephemeral-environment label and cleanup workflow call
* Update workflow call to main
* switch to process.env
2024-10-22 10:24:25 -06:00
00bfcb5fa5
[BRE-101] Remove dept-devops from CODEOWNERS ( #4176 )
2024-10-22 10:37:43 -04:00
c809794642
[BRE-372] - Clean up document start ( #4915 )
2024-10-21 13:11:59 +01:00
1fb366d42b
Replace github.ref with GITHUB_REF in build.yml scripts ( #4857 )
...
Data should be separated from code where possible to avoid injection (CWE-78).
* https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#understanding-the-risk-of-script-injections
* https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/store-information-in-variables#default-environment-variables
2024-10-17 11:50:31 -04:00
245e2e4d52
[deps] DevOps: Update gh minor ( #4885 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-17 10:42:44 -04:00
8e62e9eb38
[deps] DevOps: Update anchore/scan-action action to v5 ( #4892 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-17 10:42:26 -04:00
c643f8fd31
Add Key Management team to code owners ( #4899 )
2024-10-16 10:08:49 -05:00
7408f3ee02
BRE-344 - Create Repository Management workflow ( #4863 )
2024-10-15 11:02:53 -04:00
96f58dc309
BRE-349: Call _update_ephemeral_tags workflow ( #4850 )
...
* Kick off ephemeral environment updates
* Fix missing ,
* Switch to head_ref
* Update to `main`
2024-10-10 09:49:04 -06:00
9cb99298fc
Remove container-registry-purge workflow ( #4843 )
2024-10-02 15:09:17 +00:00
2915c10bd2
Latest tag doesn't exist anymore, defaulting to 180d ( #4841 )
2024-10-02 10:16:03 +01:00
793ef3aab8
[deps] DevOps: Update gh minor ( #4828 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-30 11:36:51 +02:00
3381bca608
[deps] DevOps: Update gh minor ( #4780 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-24 11:31:57 -04:00
c0be813a3b
Update output to use proper variable name ( #4788 )
2024-09-18 09:12:46 -06:00
3824f0f821
[BRE-246] - Use GH App for Auto PR ( #4762 )
...
* Use GH-App for rc-cut workflow
* Test
* update version
2024-09-16 16:26:15 +01:00
3f1127489d
Print DB Logs ( #4754 )
...
* Print DB Logs
* Fake Fail Test
* Remove Test Stuff
* Prefer Long-Hand Options
* Remove Test Failure
* Print deadlocks
2024-09-10 13:22:37 -04:00
d71916aee5
BRE-141 Refactor Release workflow to split deploy/publish steps in a separate publish workflow ( #4731 )
...
* BRE-141 REFACTOR: Release workflow to split deploy/publish steps in a separate publish workflow
* BRE-141 ADD: update-deployment job in publish workflow
2024-09-05 08:19:56 -06:00
8891540972
[deps] DevOps: Update gh minor ( #4723 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-04 09:44:19 -04:00
0a6c35e56c
Updated bootstrap to 5.3.3 ( #4697 )
...
* Updated bootstrap to 5.3.3
* Removed locking of bootstrap version
2024-08-27 09:24:02 -07:00
35f59daceb
Add Pending Model Checks ( #4629 )
...
* Add Pending Model Checks
* Update This File Reference
* Don't Use Title Case
* Include ConnectionString
* Remove --connection arg
* Add Fake Model Change
* Remove Fake Change
2024-08-27 07:32:32 -04:00
8ad74ce5b1
[deps] DevOps: Update gh minor ( #4652 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:52 -04:00
6dec1c6e04
[deps] DevOps: Update GitHub Artifact Actions to v4 ( #4664 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:35 -04:00
0753cc9172
[deps] DevOps: Update actions/github-script action to v7 ( #4666 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:10 -04:00
ee8716859f
[deps] DevOps: Update actions/setup-dotnet action to v4 ( #4667 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:46:30 -04:00
e677344d7e
[deps] DevOps: Update actions/setup-node action to v4 ( #4668 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:46:11 -04:00
ac9a93450b
[deps] DevOps: Update actions/stale action to v9 ( #4669 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:42:49 -04:00
7c50e4f2be
[deps] DevOps: Update docker/build-push-action action to v6 ( #4670 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:41:49 -04:00
26d17a1e7e
[deps] DevOps: Update peter-evans/close-issue action to v3 ( #4672 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:41:33 -04:00
1a584b4477
[PM-9361] Generate Swagger specs in CI for the SDK ( #4428 )
...
Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com >
2024-08-20 15:34:22 +02:00
