Infra-Mirrors/PrivateBin
1
0
Fork 0
mirror of https://github.com/PrivateBin/PrivateBin.git synced 2026-01-07 19:15:44 -05:00
Code Issues Projects Releases Packages Wiki Activity
4337 commits 9 branches 40 tags 45 MiB
Commit graph

187 commits

Author SHA1 Message Date
dependabot[bot]
8526816468
Bump actions/upload-artifact from 4 to 5 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-27 12:00:40 +00:00
dependabot[bot]
3b45d8fa79
Bump actions/setup-node from 5 to 6 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5 to 6.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-14 11:05:10 +00:00
El RIDO
8d98b9f1e1
unify workflow code styles 2025-10-10 15:08:35 +02:00
El RIDO
51eff47614
apply explicit permissions as per CodeQL suggestion 
as per rule ID actions/missing-workflow-permissions
 2025-10-10 15:07:44 +02:00
dependabot[bot]
317a0a09af
Bump actions/checkout from 4 to 5 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-09 11:36:44 +00:00
dependabot[bot]
ebc2365171
Bump actions/setup-node from 4 to 5 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-09 11:05:11 +00:00
El RIDO
ac1b16e803
Potential fix for code scanning alert no. 59: Workflow does not contain permissions 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
 2025-10-08 19:09:49 +02:00
rugk
851befb39d
Merge branch 'master' into eslint 2025-10-08 18:31:10 +02:00
El RIDO
a8901e6d6e
disable sarif generation, so we at least get a result 2025-10-08 13:58:40 +02:00
El RIDO
2eb26aced4
disable upload of results due to github code scanning API change 2025-10-08 09:23:49 +02:00
El RIDO
081a469a11
remove folders causing errors in report 2025-10-08 09:14:35 +02:00
El RIDO
d638b2dac4
correct version selector 2025-10-08 08:56:44 +02:00
El RIDO
ee531a0b81
update codeql actions to release 4 (node 24) and enable github action scanning 2025-10-08 08:45:06 +02:00
El RIDO
020818d3fc
move codacy action to workflows to get it to execute 
we seem to have never noticed that it didn't ever run after adding it
 2025-10-08 08:43:52 +02:00
rugk
3b7347d589 chore: also run when dependencies are updated 2025-10-06 17:06:16 +00:00
rugk
38bc1a2590 chore: obviously also run if workflow file is adusted 2025-10-06 17:04:51 +00:00
rugk
6b5908b202 chore: run EsLint on PRs 2025-10-06 17:01:48 +00:00
El RIDO
e775647206
attempting to make the condition list more readable 2025-09-13 07:56:54 +02:00
El RIDO
5cca4be89a
enable running tests on pull requests 2025-09-13 07:21:10 +02:00
El RIDO
86b1a4e9ac
disable running snyk if triggering user doesn't have access to the secret 2025-09-13 07:20:25 +02:00
dependabot[bot]
ba5dfb2a08
Bump actions/setup-node from 4 to 5 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-09-04 13:21:14 +00:00
dependabot[bot]
09bab8744f
Bump actions/checkout from 4 to 5 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-12 17:11:00 +00:00
El RIDO
09ba23ae22
adding a test stage for the configuration combinations 2025-07-26 08:40:48 +02:00
El RIDO
13869e46be
updating jdenticon library to 2.0.0, minimum PHP version 7.4 2025-07-14 22:01:11 +02:00
dependabot[bot]
d544d1281d
Bump dawidd6/action-download-artifact from 10 to 11 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 10 to 11.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](4c1e823582...ac66b43f0e)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-version: '11'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-16 12:22:51 +00:00
dependabot[bot]
3a1eb8d534
Bump dawidd6/action-download-artifact from 9 to 10 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 9 to 10.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](07ab29fd4a...4c1e823582)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-version: '10'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-02 12:46:39 +00:00
El RIDO
37871eac69
node 20 seems to fail with the updated jsdom, locally I had tested with 18 - lets downgrade till we can find a solution 2025-04-09 21:11:10 +02:00
dependabot[bot]
d89bc1b97b
Bump dawidd6/action-download-artifact from 8 to 9 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 8 to 9.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](20319c5641...07ab29fd4a)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-27 11:25:13 +00:00
dependabot[bot]
478b79b7b7
Bump slsa-framework/slsa-github-generator from 2.0.0 to 2.1.0 
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases)
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md)
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v2.0.0...v2.1.0)

---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-02-25 11:57:15 +00:00
dependabot[bot]
6dbd9bd157
Bump dawidd6/action-download-artifact from 7 to 8 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 7 to 8.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](80620a5d27...20319c5641)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-22 11:07:30 +00:00
El RIDO
8b7ccb0fd4
PHP 8.4 is no longer a development release 2024-12-22 12:14:25 +01:00
dependabot[bot]
7ee6bcafc4
Bump dawidd6/action-download-artifact from 6 to 7 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 6 to 7.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](bf251b5aa9...80620a5d27)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-29 11:11:25 +00:00
El RIDO
d097631469
possibly not necessary? 2024-07-07 14:28:29 +02:00
El RIDO
84d4d31c73
composer is not part of the matrix, don't try and process event.json 2024-07-07 14:22:48 +02:00
El RIDO
17f924118e
address warnings and errors in github actions 2024-07-07 14:13:59 +02:00
dependabot[bot]
4d912b082b
Bump dawidd6/action-download-artifact from 5 to 6 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 5 to 6.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](deb3bb8325...bf251b5aa9)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-12 11:12:15 +00:00
dependabot[bot]
48b4c6ce5b
Bump dawidd6/action-download-artifact from 3.1.4 to 5 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 3.1.4 to 5.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](09f2f74827...deb3bb8325)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-04 11:09:50 +00:00
El RIDO
b32efe0187 disable snyk scan on forks, they won't have the necessary secret 2024-05-30 07:54:19 +02:00
dependabot[bot]
2aeec14a52
Bump dawidd6/action-download-artifact from 3.0.0 to 3.1.4 
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 3.0.0 to 3.1.4.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases)
- [Commits](e7466d1a75...09f2f74827)

---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-13 12:00:22 +00:00
El RIDO
74cc2c3c92
Merge pull request #1326 from PrivateBin/unset-platform-matrix 
in PHP matrix tests, we don't want to constrain the platform
 2024-05-13 06:58:53 +02:00
El RIDO
df377d9652
in PHP matrix tests, we don't want to constrain the platform 
setting the platform allow composer to prevent upgrades to versions that would exceed the configured version, for the matrix tests we want to use the latest ones for that release
 2024-05-09 19:33:50 +02:00
rugk
9df90ece78
Merge branch 'experimental-8.4' into test-improvments 2024-05-05 18:27:08 +02:00
rugk
4ff9dea9cf
ci: try fixing intendation 2024-05-05 15:10:00 +02:00
rugk
6144caae85
ci: fix test results publishing being a totally separate action 2024-05-05 15:01:47 +02:00
rugk
33df5fbd2f
Actually make tests continue on experimental builds 2024-05-04 16:02:31 +02:00
rugk
1d6a14ba14
Switch to better artifact download action 2024-05-04 13:29:58 +02:00
rugk
93f59d6456
Upload and use event file, too, for test runs 
To support forked repos: https://github.com/marketplace/actions/publish-test-results#support-fork-repositories-and-dependabot-branches

**NOTE:** Do _not_ use with `pull_request_target` as that causes issues!
 2024-05-04 13:21:57 +02:00
rugk
00fca44986
Fix npm syntax 2024-05-04 13:14:25 +02:00
rugk
f92edf0026
Run mocha tests properly 2024-05-04 13:13:22 +02:00
rugk
91957838be
Add upload test results job 
As per https://github.com/marketplace/actions/publish-test-results#use-with-matrix-strategy only one job should upload all results.
 2024-05-04 13:07:53 +02:00