1
0
Fork 0
mirror of https://github.com/cisagov/log4j-affected-db.git synced 2024-11-18 14:57:54 +00:00
Commit graph

1837 commits

Author SHA1 Message Date
dependabot[bot]
09f45d94be
Bump lewagon/wait-on-check-action from 1.1.1 to 1.2.0
Bumps [lewagon/wait-on-check-action](https://github.com/lewagon/wait-on-check-action) from 1.1.1 to 1.2.0.
- [Release notes](https://github.com/lewagon/wait-on-check-action/releases)
- [Commits](https://github.com/lewagon/wait-on-check-action/compare/v1.1.1...v1.2.0)

---
updated-dependencies:
- dependency-name: lewagon/wait-on-check-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-11-09 17:06:48 +00:00
Nick
15db7114a8
Merge pull request #529 from cisagov/lineage/skeleton
⚠️ CONFLICT! Lineage pull request for: skeleton
2022-11-09 12:05:48 -05:00
Nicholas McDonnell
eb939db2ba
Merge github.com:cisagov/skeleton-generic into lineage/skeleton 2022-11-09 11:35:10 -05:00
Nick
e803e1ac48
Merge pull request #122 from cisagov/bug/fix_bad_configurations
Update two configuration files
2022-11-09 11:31:47 -05:00
Nicholas McDonnell
8f12635499
Correct spacing in yamllint rules
There was a missing empty line in the `.yamllint` file between two rule
definitions.
2022-11-09 11:24:25 -05:00
Nicholas McDonnell
6cc53dc1f0
Fix GitHub label color values
Update the configuration for repository labels to remove the leading
`#` from color values. With a `#` leading the values they are seen as
invalid by the GitHub API.
2022-11-09 11:23:04 -05:00
Nick
c4fbf2093c
Merge pull request #118 from cisagov/improvement/add_label_sync_workflow
Add workflow to manage repository labels
2022-11-08 15:26:45 -05:00
Jeremy Frasier
5993231c3a
Add a label for issues or PRs that involve test code 2022-11-08 15:22:08 -05:00
Jeremy Frasier
161c4aebba
Remove duplicate label 2022-11-08 15:22:08 -05:00
Nicholas McDonnell
b9792a8d18
Add a workflow to synchronize repository labels
This adds a workflow to ensure that the repository labels are updated
to reflect changes to the label configuration file .github/labels.yml.
2022-11-08 15:22:08 -05:00
Nicholas McDonnell
e5fbd70b20
Add a label configuration file
This configuration file stores information about the labels expected in
this repository.
2022-11-08 15:22:08 -05:00
Nick
bb9c2a0772
Merge pull request #114 from cisagov/maintenance/update_pre-commit_hooks
Update pre-commit hooks
2022-11-08 15:21:29 -05:00
Nicholas McDonnell
fb8d13f5ba
Update pre-commit hooks
Update pre-commit hooks using `pre-commit autoupdate`. The `ansible-lint` hook
is intentionally held back due to issues with upgrading to v6.
2022-11-08 15:17:33 -05:00
Nick
2a98c6abf5
Merge pull request #120 from cisagov/bug/verify_pre-commit_hook_repos
Update the `flake8` pre-commit hook configuration
2022-11-08 15:17:02 -05:00
Nicholas McDonnell
b1ea3d4239
Fix the repo of the flake8 pre-commit hook
Per PyCQA/flake8#1290 this hook moved from GitLab to GitHub. The
version we use is bumped to the latest tag on GitHub as well.
2022-11-08 15:15:14 -05:00
Nick
cfa9ba59e8
Merge pull request #117 from cisagov/improvement/update_yamllint_line-length_rules
Update the `line-length` configuration for `yamllint`
2022-11-08 15:14:24 -05:00
Nicholas McDonnell
3547c4f28d
Increase the maximum line length in the yamllint configuration
Increase the line length maximum from the default of 80 to 88. This 10%
increase mirrors the line length allowed in other linter configurations
such as black.
2022-11-08 15:12:43 -05:00
Nicholas McDonnell
21a68f461c
Enable the allow-non-breakable-inline-mappings rule for yamllint 2022-11-08 15:12:43 -05:00
Nick
0867685d1c
Merge pull request #119 from cisagov/bug/update_github_actions_workflow
Remove usage of `set-output` from our GitHub Actions workflow
2022-11-08 15:12:11 -05:00
Nicholas McDonnell
71a88a5694
Remove usage of set-output from our GitHub Actions workflow
GitHub has deprecated the set-output command per:
https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

This updates the GitHub Actions workflow to use the newly preferred
method to set the output for a job's step.
2022-11-08 15:10:45 -05:00
Nick
a8bcddd6c5
Merge pull request #112 from cisagov/improvement/update_dependabot_ignores
Update Dependabot ignore directives
2022-11-08 15:09:28 -05:00
Nicholas McDonnell
dfd54e9ad2
Add additional Dependabot ignore directives
This adds the other versioned Actions that should be managed by
cisagov/skeleton-generic to the list of commented out dependencies to
ignore.
2022-11-08 15:08:12 -05:00
Nicholas McDonnell
6a9c630f86
Add an ownership comment to the Dependabot configuration
Add a comment that states that the commented out ignore directives are
managed by cisagov/skeleton-generic.
2022-11-08 15:08:12 -05:00
Nick
f74b4a32d7
Merge pull request #115 from cisagov/dependabot/github_actions/actions/setup-python-4
Bump actions/setup-python from 3 to 4
2022-11-08 15:07:52 -05:00
dependabot[bot]
1f7c62e5f2
Bump actions/setup-python from 3 to 4
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-11-08 20:06:28 +00:00
Nick
4925eb194a
Merge pull request #111 from cisagov/dependabot/github_actions/hashicorp/setup-terraform-2
Bump hashicorp/setup-terraform from 1 to 2
2022-11-08 15:05:10 -05:00
dependabot[bot]
2775dfa470
Bump hashicorp/setup-terraform from 1 to 2
Bumps [hashicorp/setup-terraform](https://github.com/hashicorp/setup-terraform) from 1 to 2.
- [Release notes](https://github.com/hashicorp/setup-terraform/releases)
- [Changelog](https://github.com/hashicorp/setup-terraform/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/setup-terraform/compare/v1...v2)

---
updated-dependencies:
- dependency-name: hashicorp/setup-terraform
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-11-08 20:00:23 +00:00
Nick
ec83308c16
Merge pull request #113 from cisagov/improvement/update_go_configuration
Update Go installation in the `build.yml` workflow
2022-11-08 14:58:34 -05:00
Nicholas McDonnell
fc55e84feb
Update the version of Go used from 1.18 to 1.19
Go 1.19 was released while this branch was in the wings and it makes
sense to bump to the latest Go release.
2022-11-08 13:27:47 -05:00
cisagovbot
2fe01a0abd Normalize YAML files and update the software lists 2022-10-12 18:43:37 +00:00
Nick
b80d47be13
Merge pull request #527 from cisagov/bugfix/fix_keyerror_entries
Fix missing product entry items
2022-10-12 14:41:00 -04:00
Nicholas McDonnell
b658481853
Fix erroring entries in data/cisagov_W.yml
Fix entries to resolve errors when processing this file with the yml2md
tool.
2022-09-01 14:06:30 -04:00
Nicholas McDonnell
906f5a0a10
Fix erroring entries in data/cisagov_C.yml
Fix entries to resolve errors when processing this file with the yml2md
tool.
2022-09-01 13:35:32 -04:00
Nicholas McDonnell
8f6849857b
Update the version of Go used from 1.16 to 1.18
Go 1.16 is no longer supported as of the release of 1.18 so it makes
sense to update to the latest version available.
2022-05-27 18:07:10 -04:00
Nicholas McDonnell
57b4abe8fd
Update actions/setup-go from v2 to v3
Additionally as of v3.1.0 of actions/setup-go there is a go-version
output value to retrieve the version of Go installed by the Action.
This allows us to remove the step to manually retrieve this information
from the Go executable.
2022-05-27 18:04:15 -04:00
cisagovbot
2b8772e6f0 Normalize YAML files and update the software lists 2022-04-14 15:45:36 +00:00
justmurphy
25b9106f7a
Merge pull request #520 from inl-ics/develop
Added Mitsubishi Electric
2022-04-14 11:42:38 -04:00
justmurphy
4945399551
Split fixed and affected 2022-04-14 11:38:58 -04:00
justmurphy
cd4f252c92
Merge branch 'develop' into develop 2022-04-14 11:32:19 -04:00
Nick
83183b8b13
Merge pull request #521 from cisagov/lineage/skeleton
Lineage pull request for: skeleton
2022-04-11 12:06:38 -04:00
Nicholas McDonnell
6d39743372
Enable Dependabot ignore directives
This enables the Dependabot ignore directives for GitHub Actions.
2022-04-08 16:45:44 -04:00
Nicholas McDonnell
6767ea9d93
Merge github.com:cisagov/skeleton-generic into lineage/skeleton 2022-04-08 16:44:54 -04:00
Nick
4215ba378e
Merge pull request #109 from cisagov/improvement/add_github_actions_pre-commit_hooks
Add `pre-commit` hooks to validate GitHub Actions content
2022-04-06 14:08:46 -04:00
Nicholas McDonnell
49d87d40e4
Add pre-commit hooks to validate GitHub Actions content
Add hooks to validate GitHub Actions and GitHub Action workflows. These
are validated using JSON Schemas.
2022-04-01 16:46:16 -04:00
Nick
da532a590f
Merge pull request #105 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
2022-04-01 13:24:57 -04:00
Nick
57d6ac04b0
Merge branch 'develop' into maintenance/update_pre-commit_hooks 2022-04-01 13:19:34 -04:00
Nick
504ed9ed45
Merge pull request #106 from cisagov/improvement/use_python_3.10_for_gha
Use Python 3.10 for the `lint` job in GitHub Actions
2022-04-01 13:19:24 -04:00
Nick
14aff9cadc
Merge branch 'develop' into improvement/use_python_3.10_for_gha 2022-04-01 13:13:47 -04:00
Nick
d168151a3c
Merge pull request #104 from cisagov/dependabot/github_actions/actions/cache-3
Bump actions/cache from 2 to 3
2022-04-01 13:13:36 -04:00
Nick
a9c93d0ff9
Merge pull request #107 from cisagov/improvement/add_dependabot_ignores_for_github_actions
Add Dependabot ignore directives
2022-04-01 13:10:46 -04:00