dependabot[bot]
b52aa9ac76
Bump nwtgck/actions-netlify from 1.2.3 to 1.2.4 ( #920 )
...
Bumps [nwtgck/actions-netlify](https://github.com/nwtgck/actions-netlify ) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/nwtgck/actions-netlify/releases )
- [Changelog](https://github.com/nwtgck/actions-netlify/blob/develop/CHANGELOG.md )
- [Commits](b7c1504e00...ac1cb16858
2022-10-15 15:16:01 +05:30
dependabot[bot]
10a399f7e6
Bump actions/setup-node from 3.5.0 to 3.5.1 ( #918 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v3.5.0...v3.5.1 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-15 15:13:55 +05:30
dependabot[bot]
c3396780d7
Bump actions/checkout from 3.0.2 to 3.1.0 ( #904 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.0.2...v3.1.0 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-11 08:57:58 +05:30
renovate[bot]
7db4146c8d
Update actions/setup-node action to v3.5.0 ( #878 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-09-28 22:13:06 +05:30
Krishan
831bb83f4e
Update and simplify actions ( #831 )
...
* Replace action with one we use already
* Simplify PR actions
* fix name
2022-09-07 13:46:44 +05:30
dependabot[bot]
1979646b4b
Bump actions/setup-node from 3.3.0 to 3.4.1 ( #687 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 3.3.0 to 3.4.1.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v3.3.0...v3.4.1 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-16 17:11:48 +05:30
dependabot[bot]
2d3634d6bf
Bump jsmrcaga/action-netlify-deploy from 1.7.2 to 1.8.0 ( #618 )
...
Bumps [jsmrcaga/action-netlify-deploy](https://github.com/jsmrcaga/action-netlify-deploy ) from 1.7.2 to 1.8.0.
- [Release notes](https://github.com/jsmrcaga/action-netlify-deploy/releases )
- [Commits](fb6a5f936a...53de32e559
2022-06-14 20:19:46 +05:30
Ajay Bura
8b96e0ab98
Fix nodejs version in actions ( #627 )
...
* Update prod-deploy.yml
* Update netlify-dev.yml
* Update build-pull-request.yml
* Update build-pull-request.yml
* Update netlify-dev.yml
* Update prod-deploy.yml
Co-authored-by: Krishan <33421343+kfiven@users.noreply.github.com>
2022-06-14 19:55:48 +05:30
Matt Corallo
95b814b751
Reduce third-party build script dependencies and reduce GITHUB_TOKEN perms in CI ( #541 )
...
* Reduce dependence on third-party build scripts in release pipeline
This removes one third-party build script from the release
pipeline for the release tar.gz, though one is still used in the
now-separate netlify deploy.
* Reduce GITHUB_TOKEN perms in actions when using 3rd party scripts
This avoids allowing third parties to arbitrarily overwrite the
repository.
* Replace PGP signing action with the bash script from the same
The PGP signing action ultimately just calls gpg with arguments
set in
https://github.com/actionhippie/gpgsign/blob/v1/overlay/usr/local/bin/entrypoint
so its rather trivial to simply take the required arguments and
put them directly in CI.
This is substantially safer than the PGP signing action used as the
action currently downloads, unverified and un-pinned, a docker
image in order to access PGP.
2022-05-26 20:17:41 +05:30
Ajay Bura
e5bb386dd2
Use SHA instead of tag for 3rd party actions ( #498 )
2022-05-01 13:23:42 +05:30
dependabot[bot]
416fd02069
Bump actions/checkout from 3.0.1 to 3.0.2 ( #508 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.0.1...v3.0.2 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-26 17:23:22 +05:30
dependabot[bot]
bf264d5add
Bump actions/checkout from 3.0.0 to 3.0.1 ( #491 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.0.0...v3.0.1 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-19 09:34:33 +05:30
Krishan
3a3a830706
Reverting .yaml as some things doesn't work ( #451 )
2022-03-30 15:01:41 +05:30
