Commit Graph

146 Commits

Author SHA1 Message Date
James Cole
1964afe876
Update qodana.yml
Signed-off-by: James Cole <james@firefly-iii.org>
2023-02-08 19:21:21 +01:00
James Cole
12ca0811e6
Update qodana.yml
Signed-off-by: James Cole <james@firefly-iii.org>
2023-02-08 19:16:04 +01:00
James Cole
cce856c0e2
Update qodana.yml
Signed-off-by: James Cole <james@firefly-iii.org>
2023-02-08 19:09:27 +01:00
James Cole
e4b4234fbb
Update qodana.yml
Signed-off-by: James Cole <james@firefly-iii.org>
2023-02-08 16:47:55 +01:00
James Cole
08f9da8a15
Rename and cleanup file. 2023-02-08 16:46:07 +01:00
James Cole
38bff09c1d
Add actual step. 2023-02-08 16:42:53 +01:00
James Cole
bcb1fce7ed
Add new jpbs 2023-02-08 16:37:38 +01:00
James Cole
5e89bde05b
Add qodana. 2023-02-08 16:35:05 +01:00
James Cole
91e961a876
Fix mergify 2023-02-04 10:52:04 +01:00
James Cole
9adccb345a
Better mergify rules. 2023-02-04 10:18:22 +01:00
James Cole
cc436605d0
no message 2023-01-21 07:07:03 +01:00
James Cole
973c175213
Update files for 6.0.0-alpha.1 2023-01-15 15:47:25 +01:00
James Cole
ed4d2ee6ad
Update build.yml 2022-12-30 20:30:52 +01:00
James Cole
86243131cd
Merge branch 'main' into develop 2022-12-11 07:30:17 +01:00
James Cole
a60c3165f1
Update stale.yml 2022-12-07 20:26:14 +01:00
James Cole
363c849c50
Update stale.yml 2022-12-07 20:25:27 +01:00
James Cole
704c6055b3
Update link and policy. 2022-11-09 06:35:42 +01:00
James Cole
3cc0e0f20f
Update stale.yml 2022-08-23 03:41:05 +00:00
James Cole
79c4fad922
Update stale.yml 2022-08-07 10:45:39 +00:00
James Cole
4c0934bae8
Update closed-issues.yml
Small changes in yaml
2022-08-06 15:39:22 +00:00
James Cole
bba362fb58
Create closed-issues.yml
Add a new workflow for closed issues.
2022-08-06 15:30:45 +00:00
James Cole
359a5656e8
Update cleanup.yml 2022-06-16 20:19:13 +02:00
James Cole
8e3b5f9cbc
Create cleanup.yml 2022-06-15 03:28:52 +00:00
James Cole
83c6887ed0
Merge pull request #6085 from turrisxyz/Dependency-GitHub 2022-05-19 05:37:55 +02:00
naveen
9d1e20192d chore(deps): Included dependency review
> Dependency Review GitHub Action in your repository to enforce dependency
> reviews on your pull requests.
> The action scans for vulnerable versions of dependencies introduced by package version
> changes in pull requests,
> and warns you about the associated security vulnerabilities.
> This gives you better visibility of what's changing in a pull request,
> and helps prevent vulnerabilities being added to your repository.

https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-05-19 00:12:46 +00:00
James Cole
27dd30785f
Merge pull request #6032 from turrisxyz/neil/dependabot 2022-04-28 03:44:10 +00:00
neilnaveen
093794f7a5 chore: Included githubactions in the dependabot config
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
2022-04-27 21:24:04 +00:00
naveensrinivasan
a963e1bc03 Set permissions for GitHub actions
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-07 22:58:30 +00:00
James Cole
8c2455e8dd
Update its_you_not_me.md 2022-03-31 04:21:50 +00:00
James Cole
55c82b2a0f
Update support.md 2022-03-31 04:16:47 +00:00
James Cole
efb7d4275d
Update meta files for new release. 2022-02-28 06:40:34 +01:00
James Cole
b4cd0d6bbc
Update dependabot.yml 2022-01-25 06:03:12 +01:00
James Cole
212e9b833b
Update its_you_not_me.md 2022-01-19 09:57:59 +01:00
James Cole
ff5b872fa3 ci(Mergify): configuration update
Signed-off-by: James Cole <james@firefly-iii.org>
2022-01-13 13:58:08 +01:00
James Cole
5c4a482f64
Update bug.yml 2021-12-28 08:54:04 +01:00
James Cole
01f84ea11d
Update its_you_not_me.md 2021-12-27 11:29:03 +01:00
James Cole
c7e9d62712
It's you, not me. 2021-12-26 11:01:40 +01:00
James Cole
5918095f11
Update its_you_not_me.md 2021-12-26 11:01:03 +01:00
James Cole
24612eb634
Create its_you_not_me.md 2021-12-26 10:52:05 +01:00
James Cole
19461020ef
Various layout fixes. 2021-12-19 06:56:11 +01:00
James Cole
775492b391 Minor fixes. 2021-12-03 18:39:45 +01:00
James Cole
b1e453438e Update meta files for new release. 2021-11-26 06:28:04 +01:00
James Cole
284c6033d3 Update meta files for new release. 2021-11-26 06:24:10 +01:00
James Cole
35bc92bb49 Update meta files for new release. 2021-11-25 07:16:05 +01:00
James Cole
c273f309d4
Add mergify 2021-11-22 06:34:03 +01:00
James Cole
ba7ae19533
Update meta data for new release. 2021-11-12 20:07:09 +01:00
James Cole
4de2512b34
Remove old files. 2021-10-31 17:50:25 +01:00
James Cole
4352f4a095
Update templates. 2021-09-11 06:54:57 +02:00
James Cole
b96a7bcbbd
Update bug.yml 2021-09-04 07:25:46 +02:00
James Cole
ec1764ba8c
Update fr.yml 2021-08-23 06:24:47 +02:00