Commit graph

227 commits

Author SHA1 Message Date
Chris Lu c349f81195
Update binaries_dev.yml 2022-07-03 16:16:44 -07:00
yulai.li 93dd33319f Update github workflow configuration files 2022-06-27 11:06:35 +08:00
chrislu 1d0c53ea56 remote storage: stop supporting hdfs as a remote storage 2022-06-20 14:15:59 -07:00
dependabot[bot] 2d75dda243
Bump actions/dependency-review-action from 1.0.2 to 2.0.2
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1.0.2 to 2.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](a9c83d3af6...1c59cdf2a9)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-20 15:23:33 +00:00
Chris Lu cc5d771088
Update container_dev.yml 2022-06-14 01:37:28 -07:00
Konstantin Lebedev 2b159c331d fix build container 2022-06-14 13:16:09 +05:00
Chris Lu 4225e577fa
Merge pull request #3116 from chrislusf/dependabot/github_actions/actions/dependency-review-action-1.0.2 2022-05-30 08:45:33 -07:00
dependabot[bot] 37f48717f7
Bump actions/setup-go from 3.1.0 to 3.2.0
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](fcdc43634a...b22fbbc292)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-30 15:19:36 +00:00
dependabot[bot] ec38ff1a39
Bump actions/dependency-review-action from 1.0.1 to 1.0.2
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1.0.1 to 1.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](39e692fa32...a9c83d3af6)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-30 15:19:27 +00:00
Konstantin Lebedev d68a37d3e6 build release containers for all tags and large volume 2022-05-17 14:56:14 +05:00
Chris Lu 36309e824d
Merge pull request #3063 from chrislusf/dependabot/github_actions/actions/dependency-review-action-39e692fa323107ef86d8fdac0067ce647f239bd7
Bump actions/dependency-review-action from 3f943b86c9a289f4e632c632695e2e0898d9d67d to 1
2022-05-16 09:35:06 -07:00
dependabot[bot] 99ffbcea7f
Bump actions/dependency-review-action
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3f943b86c9a289f4e632c632695e2e0898d9d67d to 1. This release includes the previously tagged commit.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](3f943b86c9...39e692fa32)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-16 15:28:53 +00:00
dependabot[bot] 70779df038
Bump actions/setup-go from 3.0.0 to 3.1.0
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](f6164bd8c8...fcdc43634a)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-16 15:28:49 +00:00
chrislu ca85b66511 fix build 2022-05-16 00:58:11 -07:00
Chris Lu 05f16ba4d2
Merge pull request #3050 from turrisxyz/CodeQL-GitHub
chore: Enable codeql action
2022-05-14 22:33:38 -07:00
Konstantin Lebedev 5ee51f7cbd build binaries for linux with all tags 2022-05-14 23:36:04 +05:00
Konstantin Lebedev 8f762a1a06 build release containers for all tags 2022-05-14 18:40:32 +05:00
Naveen 21c95d9b29
Update codeql.yml 2022-05-13 16:30:38 -05:00
naveen 417d0a441d chore: Enable codeql action
This action runs GitHub's industry-leading semantic code analysis engine,
CodeQL, against a repository's source code to find security vulnerabilities.

https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/about-code-scanning-with-codeql

https://github.com/ossf/scorecard/blob/main/docs/checks.md#sast
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-05-13 20:59:19 +00:00
Chris Lu 07b1d10f26
Merge pull request #3028 from chrislusf/dependabot/github_actions/docker/build-push-action-3 2022-05-09 08:33:26 -07:00
Chris Lu 89688d9147
Merge pull request #3027 from chrislusf/dependabot/github_actions/docker/login-action-2 2022-05-09 08:33:16 -07:00
Chris Lu ddc61a0af9
Merge pull request #3026 from chrislusf/dependabot/github_actions/docker/metadata-action-4.0.1 2022-05-09 08:33:05 -07:00
Chris Lu 108b7faef4
Merge pull request #3025 from chrislusf/dependabot/github_actions/docker/setup-qemu-action-2 2022-05-09 08:32:52 -07:00
dependabot[bot] 82fb8f9333
Bump docker/build-push-action from 2.10.0 to 3
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](ac9327eae2...e551b19e49)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-09 15:22:43 +00:00
dependabot[bot] 3a21196fc3
Bump docker/login-action from 1.14.1 to 2
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](dd4fa0671b...49ed152c8e)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-09 15:22:39 +00:00
dependabot[bot] 607ba90f62
Bump docker/metadata-action from 3.8.0 to 4.0.1
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.8.0 to 4.0.1.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](b2391d37b4...69f6fc9d46)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-09 15:22:35 +00:00
dependabot[bot] 4093459630
Bump docker/setup-qemu-action from 1.2.0 to 2
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1.2.0 to 2.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](27d0a4f181...8b122486ce)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-09 15:22:29 +00:00
dependabot[bot] a50828d8f8
Bump docker/setup-buildx-action from 1.7.0 to 2
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.7.0 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](f211e3e9de...dc7b9719a9)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-09 15:22:26 +00:00
Konstantin Lebedev f58adaab25 build tag ydb since the growth of the binary is 5 mb 2022-05-03 23:20:09 +05:00
chrislu e82233efa7 add back arm64 darwin 2022-05-02 13:35:06 -07:00
Chris Lu 80752afff3
Merge pull request #3002 from chrislusf/dependabot/github_actions/docker/setup-buildx-action-1.7.0
Bump docker/setup-buildx-action from 1.6.0 to 1.7.0
2022-05-02 10:49:28 -07:00
dependabot[bot] 94f302fb34
Bump docker/setup-buildx-action from 1.6.0 to 1.7.0
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](94ab11c41e...f211e3e9de)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-02 15:24:27 +00:00
dependabot[bot] c772bbb704
Bump docker/metadata-action from 3.7.0 to 3.8.0
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.7.0 to 3.8.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](f2a13332ac...b2391d37b4)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-02 15:24:21 +00:00
Chris Lu 15c7d6e7bc
temporarily skip arm64 for mac 2022-04-26 22:05:31 -07:00
Chris Lu 42cc8d8aa3
Update binaries_release2.yml 2022-04-24 23:51:29 -07:00
chrislu 2988e69b1e update go build 2022-04-21 01:43:15 -07:00
naveensrinivasan 3d5fc72d55
chore(deps): Included dependency review
> Dependency Review GitHub Action in your repository to enforce dependency reviews on your pull requests.
> The action scans for vulnerable versions of dependencies introduced by package version changes in pull requests,
> and warns you about the associated security vulnerabilities.
> This gives you better visibility of what's changing in a pull request,
> and helps prevent vulnerabilities being added to your repository.

https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-19 20:04:54 -05:00
dependabot[bot] 9f9e0deafb
Bump docker/metadata-action from 3.6.2 to 3.7.0
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.6.2 to 3.7.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](e5622373a3...f2a13332ac)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-06 15:44:28 +00:00
naveensrinivasan 5b352ec1d2 Set permissions for GitHub actions
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-05 01:37:14 +00:00
dependabot[bot] c0475cc267
Bump actions/setup-go from 2.2.0 to 3
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2.2.0 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](bfdd3570ce...f6164bd8c8)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-18 21:12:05 +00:00
naveensrinivasan dd737bd755 Pin actions to a full length commit SHA
- Pinned actions by SHA https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

>Pin actions to a full length commit SHA

>Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload.

https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions
2022-03-18 20:47:20 +00:00
Chris Lu 5f3784ee05
Update binaries_dev.yml 2022-01-19 22:24:57 -08:00
Chris Lu 1dced26304
Update binaries_dev.yml 2022-01-19 22:21:17 -08:00
Chris Lu da1c755f6a fix build issue
fix https://github.com/wangyoucao577/go-release-action/issues/66
2021-11-23 07:39:43 -08:00
Chris Lu 791aa3cb44 update to wangyoucao577/go-release-action@v1.21 2021-11-15 08:33:46 -08:00
Chris Lu 320a08f250 adjust go release action version 2021-11-14 23:45:34 -08:00
Chris Lu 177129013c releases in github actions disable http2client 2021-11-11 21:28:06 -08:00
Chris Lu 4d388b9782
Update binaries_dev.yml 2021-11-11 18:37:38 -08:00
Chris Lu 5eb905a5d1
Update binaries_dev.yml 2021-11-11 12:05:23 -08:00
Chris Lu 79a1903021
Update binaries_dev.yml 2021-11-11 11:53:47 -08:00
Chris Lu b0b2a03ea7
Update binaries_dev.yml 2021-11-10 12:27:45 -08:00
Chris Lu 641ce36f6f
Update binaries_dev.yml 2021-11-10 09:58:54 -08:00
Chris Lu 12e6692dac
trying wangyoucao577/go-release-action@bugfix/upload-fail
following https://github.com/wangyoucao577/go-release-action/issues/63#issuecomment-962417798
2021-11-06 05:34:34 -07:00
Chris Lu 5296c397f4 build latest container 2021-10-24 18:45:51 -07:00
Chris Lu 0a7e532fb2 Update binaries_dev.yml 2021-10-15 00:04:18 -07:00
Chris Lu 94700d65ba serialize building dev binaries 2021-10-14 16:08:30 -07:00
Chris Lu 84d2e1bdd0 fix container building, make it same as rocksdb image 2021-10-11 01:29:05 -07:00
Chris Lu 4800d0ce26 separate into multiple actions 2021-10-11 00:56:35 -07:00
Chris Lu bde2fc65b0 separate into multiple jobs for better execution 2021-10-11 00:35:22 -07:00
Chris Lu 0c12a7d12a github action build rocksdb image 2021-09-30 21:43:34 -07:00
Chris Lu adfd79e243 skip arm platform 2021-09-29 10:52:53 -07:00
Chris Lu eab7cf4bd3 restore dev binaries building 2021-09-19 00:41:45 -07:00
Chris Lu a0a6aa36fa adjust name 2021-09-07 02:34:49 -07:00
Chris Lu 85a2046411 move out latest container building 2021-09-07 02:12:07 -07:00
Chris Lu 9ca7c322b4 reduce resource usage 2021-09-07 01:44:52 -07:00
Chris Lu 2954bd71f8 testing different binary name 2021-09-06 23:44:08 -07:00
Chris Lu ce9e606eb2 fix waiting, binary name. 2021-09-06 23:11:59 -07:00
Chris Lu ee143f9ae0 github action adds dependencies 2021-09-06 22:54:29 -07:00
Chris Lu 5035b0a109 build binaries on release 2021-09-06 21:48:24 -07:00
Chris Lu a443e39def add back delays 2021-09-06 20:29:48 -07:00
Chris Lu 64971b0d7e merge into one action 2021-09-06 18:39:29 -07:00
Chris Lu 68b23114b9 adjust actions 2021-09-06 18:37:57 -07:00
Chris Lu 0c47437ece Revert "action: delete previous assets"
This reverts commit 9ec151fa0d.
2021-09-06 18:37:20 -07:00
Chris Lu 9ec151fa0d action: delete previous assets 2021-09-06 18:35:19 -07:00
Chris Lu d5c7dbac4a docker: build dev containers 2021-09-05 23:09:13 -07:00
Chris Lu d869a07cd2 clean up 2021-09-05 23:08:34 -07:00
Chris Lu 705285ec60 rename file 2021-09-05 17:02:50 -07:00
Chris Lu f2de7910fc move latest image build to after binary released 2021-09-05 17:02:22 -07:00
Chris Lu ae98a085d3 automated latest image build 2021-09-05 16:56:12 -07:00
Chris Lu cd838b1197
Merge pull request #2292 from logband/master
fix(ci): update latest to only run once
2021-08-28 20:33:16 -07:00
Alexander aeda4be42c fix(ci): use cleaner naming for jobs 2021-08-29 12:12:30 +09:00
Alexander 7cfaa1a365 fix(ci): further testing of CI logic 2021-08-29 12:06:10 +09:00
Alexander bfb66b88b1 fix(ci): do not run on mainline branch 2021-08-29 12:02:58 +09:00
Alexander 16f0cdc1bf fix(ci): never try to push on test pull request 2021-08-29 11:57:08 +09:00
Alexander b686e8c45b fix(ci): update latest to only run once 2021-08-29 11:54:49 +09:00
Alexander ab0ebe1d3b
Merge branch 'chrislusf:master' into master 2021-08-29 11:47:35 +09:00
Alexander 4128c1126a fix(ci): upload all arches to Docker Hub once 2021-08-29 11:47:19 +09:00
Chris Lu ff70ba51ac build with latest go version 2021-08-28 00:41:34 -07:00
Alexander 7b56a6400d fix(ci): use matrix for all container runs 2021-08-28 11:36:32 +09:00
Alexander b1331ba3fe feature(ci): use matrix for container build 2021-08-28 11:33:08 +09:00
Alexander 6850252e7c revert(ci): remove continue-on-error 2021-08-28 11:23:49 +09:00
Alexander 5a10f27c8d fix(ci): remove ppc64le and s390x support 2021-08-28 11:23:20 +09:00
Alexander 46e78e9b3e fix(ci): allow test job to continue on error 2021-08-28 11:19:33 +09:00
Alexander b4de7c09e7 feature(ci): simplify go binary test build 2021-08-28 11:17:03 +09:00
Alexander b68e76bbac fix(ci): only cancel previous in-progress workflow of the same group 2021-08-28 11:10:15 +09:00
Alexander 7107ded3cd fix(ci): only cancel previous in-progress workflow of the same group 2021-08-28 11:01:09 +09:00
Alexander e73044f1f0 feature(ci): cancel previous runs if in-progress 2021-08-28 10:57:13 +09:00
Alexander 9ac962888c fix(ci): use distinct test job name 2021-08-28 10:54:44 +09:00
Alexander ee52f29c33 feature(ci): recognise more arches and add build tests 2021-08-28 10:53:24 +09:00
Alexander ba45852ca5 revert(ci): re-add platforms since builds were added 2021-08-28 10:35:02 +09:00