MokoGitea

Author	SHA1	Message	Date
wxiaoguang	a39af1a829	refactor: use modernc sqlite driver as default (#37562 ) The mattn driver is still kept, can be enabled by TAGS="sqlite_mattn sqlite_unlock_notify" --------- Co-authored-by: TheFox0x7 <thefox0x7@gmail.com>	2026-05-06 18:57:59 +00:00
silverwind	ebc058f682	ci: increase renovate frequency and fix RENOVATE_ALLOWED_POST_UPGRADE_COMMANDS (#37565 ) 1. Sync `RENOVATE_ALLOWED_POST_UPGRADE_COMMANDS` with the recent `renovate.json5` change (#37537) — the npm group now runs `make svg nolyfill`, but the workflow allowlist still only matched `^make (tidy\|svg)$`, so the post-upgrade task was being rejected. 2. Bump the cron from daily at 01:00 UTC to hourly at :23, matching the cadence of Mend's hosted Renovate App. Hourly gives sub-hour responsiveness to dependency-dashboard checkbox interactions and PR-close reactions; the `:23` offset avoids the GHA scheduler congestion at multiples of 15. Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com>	2026-05-06 18:37:09 +02:00
Nicolas	45ffe5aa6a	ci: lint PR titles with commitlint (#37498 ) ## Summary - Enforce Conventional Commits on PR titles (PRs are squash-merged, so the PR title becomes the final commit message). - Add a local `make lint-pr-title` target so contributors can validate titles before pushing. ## Why We squash-merge PRs, which means the final repository history is largely shaped by PR titles. Enforcing a consistent Conventional Commits format makes: - Release notes & changelogs easier to generate (types like `feat` / `fix` can be grouped automatically). - History easier to scan (uniform structure, optional scopes, explicit breaking changes via `!`). - Automation more reliable (future tooling can infer category and scope from the title). ## PR title format ```text type(scope)!: subject type: one of build\|chore\|ci\|docs\|feat\|fix\|perf\|refactor\|revert\|style\|test scope: optional (e.g. web, api, actions, repo, …) !: optional, indicates a breaking change subject: short, imperative, no trailing period ``` ## Examples ```text feat(web): add dark mode toggle fix(api): avoid panic when repo is missing chore(ci): lint PR titles with commitlint refactor(templates): reduce duplication in repo list rendering feat!: remove legacy OAuth endpoint ``` ## Local testing ```text make deps-frontend make lint-pr-title PR_TITLE="feat(web): add dark mode toggle" ``` --------- Signed-off-by: Nicolas <bircni@icloud.com> Co-authored-by: nb <nb@users.noreply.local> Co-authored-by: GPT-5.2 <gpt-5.2@openai.com>	2026-05-05 17:24:09 +00:00
Giteabot	62300eab3b	chore(deps): update action dependencies (#37540 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| Pending \| \|---\|---\|---\|---\|---\| \| [bitnamilegacy/minio](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/minio)) \| service \| minor \| `2021.3.17` → `2021.12.29` \| \| \| [bitnamilegacy/minio](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/minio)) \| service \| minor \| `2023.8.31` → `2023.12.23` \| \| \| [bitnamilegacy/mysql](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/mysql)) \| service \| minor \| `8.0` → `8.4` \| \| \| [renovatebot/github-action](https://redirect.github.com/renovatebot/github-action) \| action \| patch \| `v46.1.10` → `v46.1.12` \| `v46.1.13` \| --- ### Release Notes <details> <summary>renovatebot/github-action (renovatebot/github-action)</summary> ### [`v46.1.12`](https://redirect.github.com/renovatebot/github-action/releases/tag/v46.1.12) [Compare Source](https://redirect.github.com/renovatebot/github-action/compare/v46.1.11...v46.1.12) ##### Bug Fixes - deps: update dependency [@actions/core](https://redirect.github.com/actions/core) to v3.0.1 ([e8a6055](https://redirect.github.com/renovatebot/github-action/commit/e8a6055d6d0dc2ca2280adc33c7b58f3fb124d12)) ##### Documentation - update references to renovatebot/github-action to v46.1.11 ([317011a](https://redirect.github.com/renovatebot/github-action/commit/317011a6efe6b58d6056f58ca8b431233eb718ab)) ##### Miscellaneous Chores - deps: update dependency typescript-eslint to v8.59.0 ([8e3560a](https://redirect.github.com/renovatebot/github-action/commit/8e3560ab95742bc3c7aaec7c2dd1cc3d0d276ae5)) ##### Continuous Integration - deps: update ghcr.io/renovatebot/renovate docker tag to v43.142.0 ([0fee00d](https://redirect.github.com/renovatebot/github-action/commit/0fee00dc59830af7f44ea0636b251550e54f5003)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.142.1 ([c7cfc88](https://redirect.github.com/renovatebot/github-action/commit/c7cfc8825059e6fa4bd036b39a06e0477d58f403)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.144.0 ([39e7d09](https://redirect.github.com/renovatebot/github-action/commit/39e7d09c7b2ce19c8c834ffe556e9965c119c885)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.145.0 ([0bbd415](https://redirect.github.com/renovatebot/github-action/commit/0bbd415a9c49a001a228460b287027d8a3739e8a)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.146.0 ([889c739](https://redirect.github.com/renovatebot/github-action/commit/889c7399cadabbf2657b872978141f03c9376640)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.147.0 ([7addce6](https://redirect.github.com/renovatebot/github-action/commit/7addce6f1e02342b36c2cb1a66db30345a2f109d)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.150.0 ([804ce16](https://redirect.github.com/renovatebot/github-action/commit/804ce1618f0c132478fd9c086d6febd009a723d0)) ### [`v46.1.11`](https://redirect.github.com/renovatebot/github-action/releases/tag/v46.1.11) [Compare Source](https://redirect.github.com/renovatebot/github-action/compare/v46.1.10...v46.1.11) ##### Documentation - update references to renovatebot/github-action to v46.1.10 ([0b264d2](https://redirect.github.com/renovatebot/github-action/commit/0b264d27f89fd1eb163fba418b0dbfe86c041395)) ##### Miscellaneous Chores - deps: update actions/setup-node action to v6.4.0 ([951a814](https://redirect.github.com/renovatebot/github-action/commit/951a81487afda3e08b127fef395e29498fd9d06c)) - deps: update dependency prettier to v3.8.3 ([a763833](https://redirect.github.com/renovatebot/github-action/commit/a763833a7d8da309d202e5fc67bc794efc7dc115)) - deps: update dependency typescript-eslint to v8.58.2 ([119d68e](https://redirect.github.com/renovatebot/github-action/commit/119d68e8f6114a37630c0a3a61aac696d593aa52)) ##### Build System - deps: lock file maintenance ([f82feed](https://redirect.github.com/renovatebot/github-action/commit/f82feedb561edc809d01476b568febf8d256a51a)) ##### Continuous Integration - deps: update ghcr.io/renovatebot/renovate docker tag to v43.132.3 ([99cc805](https://redirect.github.com/renovatebot/github-action/commit/99cc805d7583672991fd1bfe2ce488eac225f8f0)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.133.0 ([a63d39b](https://redirect.github.com/renovatebot/github-action/commit/a63d39be1e95f4aaa26c72acbdf1c65673468261)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.135.0 ([955b000](https://redirect.github.com/renovatebot/github-action/commit/955b0000ba399f944be088f7a4409a4c8fc0b699)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.0 ([65167cd](https://redirect.github.com/renovatebot/github-action/commit/65167cdb3f2b345241ea67249f4b238934933bcc)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.1 ([7b21b86](https://redirect.github.com/renovatebot/github-action/commit/7b21b86cedd4f06966dca17027c7c67625e599cd)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.3 ([28a2dc0](https://redirect.github.com/renovatebot/github-action/commit/28a2dc07b816f5893a6496d35b4b02742445c3c4)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.137.0 ([b0cf2a4](https://redirect.github.com/renovatebot/github-action/commit/b0cf2a4c9132b74c57aae8fcbb45a6aacd414022)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.0 ([3700882](https://redirect.github.com/renovatebot/github-action/commit/3700882c45d6eda087650c0edc72ba408f5b7a2e)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.1 ([f516ce2](https://redirect.github.com/renovatebot/github-action/commit/f516ce2f9261f68e96edd1499111ddb5077033bb)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.3 ([3411548](https://redirect.github.com/renovatebot/github-action/commit/3411548d9c9b822a7473c563535824c03a19df6a)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.0 ([5201886](https://redirect.github.com/renovatebot/github-action/commit/5201886b45291615a4f0b21fd08181cfe8123ba6)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.1 ([5856263](https://redirect.github.com/renovatebot/github-action/commit/5856263af8004562a8d50daf5c18b7a1a71920f8)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.4 ([999691d](https://redirect.github.com/renovatebot/github-action/commit/999691d7f3780b09bcd4e90e081bbce6b452ab25)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.5 ([f703a54](https://redirect.github.com/renovatebot/github-action/commit/f703a541309bb776377323a91735fa747d6efc39)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.6 ([3ba85c2](https://redirect.github.com/renovatebot/github-action/commit/3ba85c2979436007460d9ccf3f87bd0a4ef5e1ea)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.7 ([96f2f09](https://redirect.github.com/renovatebot/github-action/commit/96f2f09b9d7c8e6946b489aab3ca6f713a3bfbdc)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.8 ([5af45e5](https://redirect.github.com/renovatebot/github-action/commit/5af45e5b84b145ee1e14929493f8f054d922b441)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.140.0 ([01e9139](https://redirect.github.com/renovatebot/github-action/commit/01e91393d3c71fe95aec074539d4a0d9dc57068b)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.0 ([814a2a4](https://redirect.github.com/renovatebot/github-action/commit/814a2a47c0d23dad8d1f7302ade33a5bd966a8c7)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.1 ([fb3abdf](https://redirect.github.com/renovatebot/github-action/commit/fb3abdf7fa349ce51fd43364aa917f213f4d476c)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.2 ([e3a9af5](https://redirect.github.com/renovatebot/github-action/commit/e3a9af55ac512810165fe6f630d88fa4b02f0dca)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.5 ([4f14b2f](https://redirect.github.com/renovatebot/github-action/commit/4f14b2f81dd01dfd999aed7088db38a5e8042f08)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.6 ([2357784](https://redirect.github.com/renovatebot/github-action/commit/23577849552717b7ae5cdbb05082e5cc99e25dce)) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Only on Monday (`* * * * 1`) - Automerge - At any time (no schedule defined) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuNSIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS41IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->	2026-05-04 23:06:00 +00:00
silverwind	abcfa53040	Replace `olivere/elastic` with REST API client, add OpenSearch support (#37411 ) Drops `github.com/olivere/elastic/v7` (unmaintained) and replaces it with a small in-house wrapper that speaks the Elasticsearch REST API directly via `net/http`. The subset used by Gitea (`_cluster/health`, `_bulk`, `_doc`, `_delete_by_query`, `_refresh`, `_search`, `HEAD`/`PUT` index) is stable across the targeted servers, so no client library is needed. Targets tested - Elasticsearch 7, 8, 9 - OpenSearch 1, 2, 3 Why not `go-elasticsearch`? The official client enforces an `X-Elastic-Product` server-identity check that OpenSearch deliberately fails, which would force shipping a transport shim to defeat it. Going direct over `net/http` removes that fight along with several MB of transitive deps (`elastic-transport-go`, `go.opentelemetry.io/otel{,/metric,/trace}`, `auto/sdk`, `easyjson`, `intern`, `logr`, `stdr`). Replaces: #30755 Fixes: https://github.com/go-gitea/gitea/issues/30752 --- This PR was written with the help of Claude Opus 4.7 --------- Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	2026-05-02 00:12:54 +02:00
wxiaoguang	1721c235a7	Refactor CI workflows (#37487 ) 1. only trigger docker-dryrun arm64&riscv64 when dockerfile changes 2. de-duplicate "contents: read" permission for most workflows 3. merge various "lint-*" jobs into one job 4. add missing lint targets to the "lint" (all) target	2026-05-01 02:15:01 +08:00
silverwind	d57d06335d	Refactor integration tests infrastructure (#37462 ) Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	2026-04-29 16:37:38 +00:00
silverwind	99cd4f6b22	Integrate renovate bot for all dependency updates (#37050 ) Replaces Dependabot with Renovate. The new setup: - One PR per ecosystem (GitHub Actions, Go modules + Makefile go-tool pins, npm, Python via uv, Nix flake), opened weekly on Mondays with a 5-day release-age cooldown. Vulnerability PRs ship next-day via daily cron + Renovate's `vulnerabilityAlerts` schedule bypass. - All `uses:` action refs SHA-pinned with patch-level version comments (same format as #36971, which this supersedes); `helpers:pinGitHubActionDigests` keeps future bumps in that format. - `renovatebot/github-action` runtime image pinned via the upstream-recommended `RENOVATE_VERSION` env + magic comment + `customManagers:githubActionsVersions` preset, so Renovate keeps the pin updated. - Custom regex manager tracks the `*_PACKAGE ?= <import-path>@<version>` lines in `Makefile` (golangci-lint, swagger, actionlint, etc.) and groups them into the same Go PR via `matchDatasources: ["go"]`. - Post-upgrade tasks regenerate `assets/go-licenses.json` (`make tidy`) and the SVG sprite (`make svg`), gated by an env-level command allowlist. - Replaces the standalone `cron-flake-updater` workflow — Renovate's nix manager tracks `flake.nix` inputs and produces the same `flake.lock` bump PRs on the regular weekly schedule. - npm and gomod-replace pins live in `renovate.json5` only; `updates@17.16.3` reads them from there too, so the standalone `updates.config.ts` is gone and one source of truth covers both tools. Fixes: https://github.com/go-gitea/gitea/issues/33386 Signed-off-by: silverwind <me@silverwind.io> Signed-off-by: TheFox0x7 <thefox0x7@gmail.com> Co-authored-by: Claude (Opus 4.6) <noreply@anthropic.com> Co-authored-by: TheFox0x7 <thefox0x7@gmail.com> Co-authored-by: Nicolas <bircni@icloud.com> Co-authored-by: Giteabot <teabot@gitea.io>	2026-04-26 14:25:22 +00:00
silverwind	ebf30ac4db	Optimize CI caches (#37387 ) Cache includes go, lint and unittests. Integration tests with their standalone binaries are uncacheable with their current architecture. Every Go job uses a new composite action (`.github/actions/go-cache`) that restores and saves the Go module cache, a shared build cache, and the golangci-lint cache. A `cache-seeder` workflow runs on `push: main` to pre-populate those slots; PRs read them via GitHub's default-branch fallback, so the common case is warm from the first commit. Also dropped `-coverprofile` from `test-unit` (it silently disabled Go's test result cache), and `-race` from `test-pgsql` and `test-mysql` (kept on `test-unit` and `test-sqlite`). Signed-off-by: silverwind <me@silverwind.io> Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com> Co-authored-by: Nicolas <bircni@icloud.com>	2026-04-26 10:25:35 +00:00
Sebastian Ertz	8068d608d1	Update GitHub Actions to latest major versions (#37313 ) \| \| from \| to \| \| --- \| --- \| --- \| \| actions/setup-node \| `v5` \| `v6` \| \| astral-sh/setup-uv \| `v8.0.0` \| `v8.1.0` \|	2026-04-20 20:27:12 +00:00
silverwind	b31eef2828	Stabilize issue-project e2e test, increase timeout factor (#37297 ) 1. stabilize flaky e2e test from https://github.com/go-gitea/gitea/commit/2f5b5a9e9c32e6042f1f06f1b112a795267d6955 2. increase ci timeout factor to 4 as 3 was not enough 3. add a `e2e` category to files-changed so e2e-test-only changes trigger ci --- This PR was written with the help of Claude Opus 4.7 --------- Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com>	2026-04-19 17:27:23 +00:00
silverwind	a9108ab6aa	Replace custom Go formatter with `golangci-lint fmt` (#37194 ) Use `golangci-lint fmt` to format code, replacing the previous custom formatter tool. https://github.com/daixiang0/gci is used to order the imports. `make fmt` performs ~13% faster while consuming ~57% less cpu while formatting for me. `GOFUMPT_PACKAGE` is gone because it's using the builtin package from golangci-lint. Co-authored-by: Claude (claude-opus-4-6) <noreply@anthropic.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	2026-04-17 17:45:22 +00:00
silverwind	3c17daf615	Update `setup-uv` to v8.0.0 (#37101 ) Update to https://github.com/astral-sh/setup-uv/releases/tag/v8.0.0. Note that version here must be the immutable `v8.0.0`, a mutable `v8` tag does not exist.	2026-04-04 00:47:15 +02:00
silverwind	cf1e4d7c42	Update GitHub Actions to latest major versions (#36964 ) Update all Actions to their latest major versions: - `actions/checkout`: v5 → v6 - `dorny/paths-filter`: v3 → v4 - `pnpm/action-setup`: v4 → v5 - `docker/setup-qemu-action`: v3 → v4 - `docker/setup-buildx-action`: v3 → v4 - `docker/build-push-action`: v6 → v7 - `docker/metadata-action`: v5 → v6 - `docker/login-action`: v3 → v4 - `crazy-max/ghaction-import-gpg`: v6 → v7 - `aws-actions/configure-aws-credentials`: v5 → v6 All updates are Node 24 runtime bumps with no workflow-breaking changes for our usage. Co-authored-by: Claude (Opus 4.6) <noreply@anthropic.com>	2026-03-23 14:42:36 -07:00
silverwind	08254cf126	Enable docker layer caching for `dry-run` and `nightly` container builds (#36738 ) Enable Docker BuildKit layer caching for the dry-run and nightly container build workflows using GHCR registry cache. - Dry-run (`pull-docker-dryrun.yml`): adds `cache-from`, read-only, PRs can't write cache - Nightly (`release-nightly.yml`): adds `cache-from` and `cache-to` to both read and write cach --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-01 21:18:46 +00:00
silverwind	18e0746b7b	Rework e2e tests (#36634 ) - Replace the e2e tests initialization with a simple bash script, removing the previous Go harness. - `make test-e2e` is the single entry point. It always starts a fully isolated ephemeral Gitea instance with its own temp directory, SQLite database, and config — no interference with the developer's running instance. - A separate `gitea-e2e` binary is built via `EXECUTABLE_E2E` using `TEST_TAGS` (auto-includes sqlite with `CGO_ENABLED=1`), keeping the developer's regular `gitea` binary untouched. - No more split into database-specific e2e tests. Test timeouts are strict, can be relaxed later if needed. - Simplified and streamlined the playwright config and test files. - Remove all output generation of playwright and all references to visual testing. - Tests run on Chrome locally, Chrome + Firefox on CI. - Simplified CI workflow — visible separate steps for frontend, backend, and test execution. - All exported env vars use `GITEA_TEST_E2E_*` prefix. - Use `GITEA_TEST_E2E_FLAGS` to pass flags to playwright, e.g. `GITEA_TEST_E2E_FLAGS="--ui" make test-e2e` for UI mode or `GITEA_TEST_E2E_FLAGS="--headed" make test-e2e` for headed mode. - Use `GITEA_TEST_E2E_DEBUG=1 make test-e2e` to show Gitea server output. --------- Signed-off-by: silverwind <me@silverwind.io> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-20 16:26:47 -08:00
silverwind	5e9b9b33d1	Clean up Makefile, tests and legacy code (#36638 ) This simplifies the Makefile by removing the whole-file wrapping that creates a tempdir introduced by https://github.com/go-gitea/gitea/pull/11126. REPO_TEST_DIR is removed as well. Also clean up a lot of legacy code: unnecessary XSS test, incorrect test env init, unused "_old_uid" hack, etc Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	2026-02-19 01:23:32 +00:00
techknowlogick	2cdf86e184	automate updating nix flakes (#35641 )	2026-02-14 19:00:36 +01:00
silverwind	9d96039027	Bump alpine to 3.23, add platforms to `docker-dryrun` (#36379 ) - Bump alpine to 3.23 following https://github.com/go-gitea/gitea/pull/36185 and https://github.com/go-gitea/gitea/pull/36202. - Enable all architectures in `docker-dryrun`. - Tweak actions conditions to be more precise. --------- Signed-off-by: silverwind <me@silverwind.io> Co-authored-by: techknowlogick <techknowlogick@gitea.com> Co-authored-by: Giteabot <teabot@gitea.io>	2026-02-01 09:36:43 +00:00
silverwind	49edbbbc2e	Update JS and PY deps (#36383 ) - Update JS and PY dependencies - Workaround https://github.com/stylelint/stylelint/issues/8893 by moving the stylint config file to JS - Regenerate SVGs - Bump to python 3.14 in devcontainer and actions - Verified `@github/text-expander-element` - Removed obsolete type stub	2026-01-16 11:00:16 +00:00
dependabot[bot]	b1b5897795	Bump appleboy/git-push-action from 1.0.0 to 1.2.0 (#36306 ) Bumps [appleboy/git-push-action](https://github.com/appleboy/git-push-action) from 1.0.0 to 1.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/appleboy/git-push-action/releases">appleboy/git-push-action's releases</a>.</em></p> <blockquote> <h2>v1.2.0</h2> <h2>Changelog</h2> <h3>Features</h3> <ul> <li>2722561d2c158e67f0e4b908bda83937e53bbdd4: feat: add options for insecure SSL and SSH version selection (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Others</h3> <ul> <li>2c87d5bacd46972f72523394e67af39825081037: style: standardize YAML quoting and update input descriptions (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Bug fixes</h3> <ul> <li>66a962f89a56024b2a36de61fe65ba6b9994be15: fix: rename drone-git-push env vars and update default version (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Enhancements</h3> <ul> <li>e37f17de403a8b0b59184d852be6b7a7e017d376: chore: mark all directories as safe in global git configuration (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Refactor</h3> <ul> <li>7bdda76242d8f6b40576a039a2d2233c43b7661e: refactor: refactor GitHub Action to use Bash instead of Docker (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>4873de66e7bed19267cc8cd66959005c42d41cc7: refactor: simplify stdout capturing by removing legacy logic (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Build process updates</h3> <ul> <li>d1c361f2d2e128593b5dfeb3c2d9a5c6a1af7128: ci: run Docker actions as nobody and inject GITHUB_WORKSPACE (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>fdf995de1284df95f38a3d99275eb38537eb05a4: ci: simplify Docker action environment variable configuration (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>8e938ac7df8937d595e4c4fcf345139339a34819: ci: update GITHUB_WORKSPACE to use /github/home path (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Documentation updates</h3> <ul> <li>3b2c8661652360dbf1afe1b319a49dbb739c39f1: docs: migrate to composite GitHub Action and standardize env vars (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h2>v1.1.0</h2> <h2>Changelog</h2> <h3>Features</h3> <ul> <li>28a54bbef16233cbea6f9fe39f318a4f055cd749: feat: add mirror input support to GitHub Action configuration (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Bug fixes</h3> <ul> <li>a63ac675f748ad297929b6d9688f94939fbe3dea: fix: fix spelling of 'force' option in git push actions (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Enhancements</h3> <ul> <li>ee39884535468c8b6f101c0980aec38a61bc6c8b: chore(readme): refactor codebase and update dependencies (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>94fb0c0d87ba52affdcb2daf8505a0e7f086f205: chore: bump drone-git-push base image to version 1.2.0 (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>a939634b19fa88f0d4c853f4b604a4df5549911d: chore: pin Drone Git Push image to a specific version (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Build process updates</h3> <ul> <li>0a16d15bfdca306c84a299db735f248e9d408bb3: ci: improve CI workflow for semantic version releases (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>1807bf9a1b801f99799e4e2a64ca1c6b11301fc3: ci: automate maintenance and enhance repository security (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>f39abba130277d16a141588c1b4c194a8f0b4636: build: run container as non-root user for enhanced security (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>ed86ac596a332db5353062d7cbdf24d61554f5f1: ci: update CI workflows to trigger on main branch (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>cd8de7f6c86b1390f0108011580b6c9845b9f5df: build: eliminate "nobody" user references from Dockerfile (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>7465fee0c6ac1466048408a99c52598be9abf00f: ci: update CI workflow to use newer actions/checkout version (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>b9d4e07212dd711b7e57352e5b6172038ab20f6e: build: simplify Docker build by removing entrypoint.sh chmod step (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>14d3003b72ea485bf8707bfbef4926eca78cc341: build: upgrade CI pipeline to latest drone-git-push base image (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Documentation updates</h3> <ul> <li>378ab1be62cfbae4111d3bbbec417d5b2e97134d: docs: clarify and standardize input and action descriptions (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>4c679526c0d1910c6e058a82fdde978d5cd8c0c2: docs: revamp documentation with expanded features and usage examples (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>61f29e5108e85fa252a0556c08ec87f0c425f1b2: docs: document GitHub Action integration and Claude Code guidelines (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>a7ef8abff3f71345b67dc056ac3d7b2d006efa42: docs: add Trivy security scan badge to documentation (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/appleboy/git-push-action/commit/3b2c8661652360dbf1afe1b319a49dbb739c39f1"><code>3b2c866</code></a> docs: migrate to composite GitHub Action and standardize env vars</li> <li><a href="https://github.com/appleboy/git-push-action/commit/4873de66e7bed19267cc8cd66959005c42d41cc7"><code>4873de6</code></a> refactor: simplify stdout capturing by removing legacy logic</li> <li><a href="https://github.com/appleboy/git-push-action/commit/2c87d5bacd46972f72523394e67af39825081037"><code>2c87d5b</code></a> style: standardize YAML quoting and update input descriptions</li> <li><a href="https://github.com/appleboy/git-push-action/commit/2722561d2c158e67f0e4b908bda83937e53bbdd4"><code>2722561</code></a> feat: add options for insecure SSL and SSH version selection</li> <li><a href="https://github.com/appleboy/git-push-action/commit/66a962f89a56024b2a36de61fe65ba6b9994be15"><code>66a962f</code></a> fix: rename drone-git-push env vars and update default version</li> <li><a href="https://github.com/appleboy/git-push-action/commit/7bdda76242d8f6b40576a039a2d2233c43b7661e"><code>7bdda76</code></a> refactor: refactor GitHub Action to use Bash instead of Docker</li> <li><a href="https://github.com/appleboy/git-push-action/commit/8e938ac7df8937d595e4c4fcf345139339a34819"><code>8e938ac</code></a> ci: update GITHUB_WORKSPACE to use /github/home path</li> <li><a href="https://github.com/appleboy/git-push-action/commit/e37f17de403a8b0b59184d852be6b7a7e017d376"><code>e37f17d</code></a> chore: mark all directories as safe in global git configuration</li> <li><a href="https://github.com/appleboy/git-push-action/commit/fdf995de1284df95f38a3d99275eb38537eb05a4"><code>fdf995d</code></a> ci: simplify Docker action environment variable configuration</li> <li><a href="https://github.com/appleboy/git-push-action/commit/d1c361f2d2e128593b5dfeb3c2d9a5c6a1af7128"><code>d1c361f</code></a> ci: run Docker actions as nobody and inject GITHUB_WORKSPACE</li> <li>Additional commits viewable in <a href="https://github.com/appleboy/git-push-action/compare/v1.0.0...v1.2.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=appleboy/git-push-action&package-manager=github_actions&previous-version=1.0.0&new-version=1.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-01-12 17:47:41 +00:00
Lunny Xiao	ffea9a27c3	Convert locale files from ini to json format (#35489 ) Migrate from the current INI format to JSON for translations. JSON is widely supported, including by platforms such as Crowdin and Weblate.	2025-12-19 09:50:48 -08:00
dependabot[bot]	9764ae87d2	Bump crowdin/github-action from 1 to 2 (#36204 ) Bumps [crowdin/github-action](https://github.com/crowdin/github-action) from 1 to 2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/crowdin/github-action/releases">crowdin/github-action's releases</a>.</em></p> <blockquote> <h2>v2.0.0</h2> <h2>What's Changed</h2> <h3>Features</h3> <ul> <li>Now the Action uses the new <a href="https://crowdin.github.io/crowdin-cli/blog/2024/05/28/cli-v4">CLI v4</a></li> </ul> <h3>Deprecations</h3> <p>Removed deprecated options:</p> <ul> <li><code>add_crowdin_branch</code></li> <li><code>new_branch_title</code></li> <li><code>new_branch_export_pattern</code></li> <li><code>new_branch_priority</code></li> <li><code>delete_crowdin_branch</code></li> </ul> <p>Instead, use the <code>command: branch add <name></code> to create a new branch.</p> <ul> <li><code>identity</code> - this option doesn't make much sense in the context of the GitHub action, where environment variables are a de facto standard for credentials loading.</li> </ul> <hr /> <p><strong>Full Changelog</strong>: <a href="https://github.com/crowdin/github-action/compare/v1.20.4...v2.0.0">https://github.com/crowdin/github-action/compare/v1.20.4...v2.0.0</a></p> <h2>v1.20.4</h2> <h2>What's Changed</h2> <ul> <li>CLI <a href="https://github.com/crowdin/crowdin-cli/releases/tag/3.19.4">3.19.4</a> by <a href="https://github.com/andrii-bodnar"><code>@andrii-bodnar</code></a></li> <li>ci: upgrade actions by <a href="https://github.com/andrii-bodnar"><code>@andrii-bodnar</code></a> in <a href="https://redirect.github.com/crowdin/github-action/pull/226">crowdin/github-action#226</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crowdin/github-action/compare/v1.20.3...v1.20.4">https://github.com/crowdin/github-action/compare/v1.20.3...v1.20.4</a></p> <h2>v1.20.3</h2> <h2>What's Changed</h2> <ul> <li>CLI <a href="https://github.com/crowdin/crowdin-cli/releases/tag/3.19.3">3.19.3</a> by <a href="https://github.com/andrii-bodnar"><code>@andrii-bodnar</code></a></li> <li>chore: deprecate the 'identity' option by <a href="https://github.com/andrii-bodnar"><code>@andrii-bodnar</code></a> in <a href="https://redirect.github.com/crowdin/github-action/pull/224">crowdin/github-action#224</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crowdin/github-action/compare/v1.20.2...v1.20.3">https://github.com/crowdin/github-action/compare/v1.20.2...v1.20.3</a></p> <h2>v1.20.2</h2> <h2>What's Changed</h2> <ul> <li>CLI <a href="https://github.com/crowdin/crowdin-cli/releases/tag/3.19.2">3.19.2</a> by <a href="https://github.com/andrii-bodnar"><code>@andrii-bodnar</code></a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/crowdin/github-action/compare/v1.20.1...v1.20.2">https://github.com/crowdin/github-action/compare/v1.20.1...v1.20.2</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/crowdin/github-action/commit/60debf382ee245b21794321190ad0501db89d8c1"><code>60debf3</code></a> docs: add example for source files caching between workflow runs (<a href="https://redirect.github.com/crowdin/github-action/issues/298">#298</a>)</li> <li><a href="https://github.com/crowdin/github-action/commit/96b44e6697270c9ebc7098e62ad3799326a17a97"><code>96b44e6</code></a> chore: CLI 4.12.0</li> <li><a href="https://github.com/crowdin/github-action/commit/08713f00a50548bfe39b37e8f44afb53e7a802d4"><code>08713f0</code></a> feat: add pull_request_created output to track PR status (<a href="https://redirect.github.com/crowdin/github-action/issues/294">#294</a>)</li> <li><a href="https://github.com/crowdin/github-action/commit/fb221ac1c83fae63a04d1b3149abfd44ac3dd76f"><code>fb221ac</code></a> fix: bundle download with branch param conflict (<a href="https://redirect.github.com/crowdin/github-action/issues/291">#291</a>)</li> <li><a href="https://github.com/crowdin/github-action/commit/0749939f635900a2521aa6aac7a3766642b2dc71"><code>0749939</code></a> chore: CLI 4.11.0</li> <li><a href="https://github.com/crowdin/github-action/commit/9787f4fcb6a8450929673f1e8db841e8a5c35a2f"><code>9787f4f</code></a> chore: CLI 4.10.0</li> <li><a href="https://github.com/crowdin/github-action/commit/590c05e09a29f392b203faf4d6aa8e0cd32c7835"><code>590c05e</code></a> chore: CLI 4.9.1</li> <li><a href="https://github.com/crowdin/github-action/commit/9fd07c1c5b36b15f082d1d860dc399f16f849bd7"><code>9fd07c1</code></a> chore: CLI 4.9.0</li> <li><a href="https://github.com/crowdin/github-action/commit/297234bae049541aa48ed268e5de00dee4efa4b4"><code>297234b</code></a> chore: CLI 4.8.0</li> <li><a href="https://github.com/crowdin/github-action/commit/37201e27eec38a4393c7367e103d4063739eca84"><code>37201e2</code></a> docs: AI Localization improvements (<a href="https://redirect.github.com/crowdin/github-action/issues/283">#283</a>)</li> <li>Additional commits viewable in <a href="https://github.com/crowdin/github-action/compare/v1...v2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=crowdin/github-action&package-manager=github_actions&previous-version=1&new-version=2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: silverwind <me@silverwind.io>	2025-12-19 13:49:30 +00:00
dependabot[bot]	684a541799	Bump appleboy/git-push-action from 0.0.3 to 1.0.0 (#36194 ) Bumps [appleboy/git-push-action](https://github.com/appleboy/git-push-action) from 0.0.3 to 1.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/appleboy/git-push-action/releases">appleboy/git-push-action's releases</a>.</em></p> <blockquote> <h2>v1.0.0</h2> <h2>Changelog</h2> <h3>Enhancements</h3> <ul> <li>50ae8aaf06c6fc08b3d13da3aa03deb50d970125: chore(docker): improve overall system performance and API integration (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Build process updates</h3> <ul> <li>feea2e25baaa5ea24a9689a8af03f229ec1dd1a2: ci: improve testing workflow and API usage (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>5d65d1094eb0415898554ba83c4f3196778f9a85: ci: improve testing workflow and API usage (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>b31dd8d6e7ba1e80a96a4772d8c4290fe7bac0ce: build: update base image in Dockerfile (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>fc585cfea49d10c08f8009f674c05961a0934647: ci(goreleaser): implement automated release process with GoReleaser (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> <li>b1e5e3d76ccb4afd43bc0859672a6f9113fa0458: ci(test): optimize CI workflow and test configurations (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> <h3>Documentation updates</h3> <ul> <li>8f1f45876617e5d74085a38164c421be39f099b3: docs(readme): refactor codebase and improve test coverage (<a href="https://github.com/appleboy"><code>@appleboy</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/appleboy/git-push-action/commit/b1e5e3d76ccb4afd43bc0859672a6f9113fa0458"><code>b1e5e3d</code></a> ci(test): optimize CI workflow and test configurations</li> <li><a href="https://github.com/appleboy/git-push-action/commit/8f1f45876617e5d74085a38164c421be39f099b3"><code>8f1f458</code></a> docs(readme): refactor codebase and improve test coverage</li> <li><a href="https://github.com/appleboy/git-push-action/commit/fc585cfea49d10c08f8009f674c05961a0934647"><code>fc585cf</code></a> ci(goreleaser): implement automated release process with GoReleaser</li> <li><a href="https://github.com/appleboy/git-push-action/commit/50ae8aaf06c6fc08b3d13da3aa03deb50d970125"><code>50ae8aa</code></a> chore(docker): improve overall system performance and API integration</li> <li><a href="https://github.com/appleboy/git-push-action/commit/b31dd8d6e7ba1e80a96a4772d8c4290fe7bac0ce"><code>b31dd8d</code></a> build: update base image in Dockerfile</li> <li><a href="https://github.com/appleboy/git-push-action/commit/5d65d1094eb0415898554ba83c4f3196778f9a85"><code>5d65d10</code></a> ci: improve testing workflow and API usage</li> <li><a href="https://github.com/appleboy/git-push-action/commit/feea2e25baaa5ea24a9689a8af03f229ec1dd1a2"><code>feea2e2</code></a> ci: improve testing workflow and API usage</li> <li>See full diff in <a href="https://github.com/appleboy/git-push-action/compare/v0.0.3...v1.0.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=appleboy/git-push-action&package-manager=github_actions&previous-version=0.0.3&new-version=1.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-19 11:28:11 +00:00
silverwind	b915e6908c	Add JSON linting (#36192 ) Uses https://github.com/eslint/json to lint all JSON and JSONC files in the repo.	2025-12-19 06:27:21 +00:00
silverwind	36aa39fffe	Bump setup-node to v6, re-enable cache (#36207 )	2025-12-19 02:07:34 +00:00
dependabot[bot]	5fa40bacea	Bump astral-sh/setup-uv from 6 to 7 (#36198 ) Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from 6 to 7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/astral-sh/setup-uv/releases">astral-sh/setup-uv's releases</a>.</em></p> <blockquote> <h2>v7.0.0 🌈 node24 and a lot of bugfixes</h2> <h2>Changes</h2> <p>This release comes with a load of bug fixes and a speed up. Because of switching from node20 to node24 it is also a breaking change. If you are running on GitHub hosted runners this will just work, if you are using self-hosted runners make sure, that your runners are up to date. If you followed the normal installation instructions your self-hosted runner will keep itself updated.</p> <p>This release also removes the deprecated input <code>server-url</code> which was used to download uv releases from a different server. The <a href="https://github.com/astral-sh/setup-uv?tab=readme-ov-file#manifest-file">manifest-file</a> input supersedes that functionality by adding a flexible way to define available versions and where they should be downloaded from.</p> <h3>Fixes</h3> <ul> <li>The action now respects when the environment variable <code>UV_CACHE_DIR</code> is already set and does not overwrite it. It now also finds <a href="https://docs.astral.sh/uv/reference/settings/#cache-dir">cache-dir</a> settings in config files if you set them.</li> <li>Some users encountered problems that <a href="https://github.com/astral-sh/setup-uv?tab=readme-ov-file#disable-cache-pruning">cache pruning</a> took forever because they had some <code>uv</code> processes running in the background. Starting with uv version <code>0.8.24</code> this action uses <code>uv cache prune --ci --force</code> to ignore the running processes</li> <li>If you just want to install uv but not have it available in path, this action now respects <code>UV_NO_MODIFY_PATH</code></li> <li>Some other actions also set the env var <code>UV_CACHE_DIR</code>. This action can now deal with that but as this could lead to unwanted behavior in some edgecases a warning is now displayed.</li> </ul> <h3>Improvements</h3> <p>If you are using minimum version specifiers for the version of uv to install for example</p> <pre lang="toml"><code>[tool.uv] required-version = ">=0.8.17" </code></pre> <p>This action now detects that and directly uses the latest version. Previously it would download all available releases from the uv repo to determine the highest matching candidate for the version specifier, which took much more time.</p> <p>If you are using other specifiers like <code>0.8.x</code> this action still needs to download all available releases because the specifier defines an upper bound (not 0.9.0 or later) and "latest" would possibly not satisfy that.</p> <h2>🚨 Breaking changes</h2> <ul> <li>Use node24 instead of node20 <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/608">#608</a>)</li> <li>Remove deprecated input server-url <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/607">#607</a>)</li> </ul> <h2>🐛 Bug fixes</h2> <ul> <li>Respect UV_CACHE_DIR and cache-dir <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/612">#612</a>)</li> <li>Use --force when pruning cache <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/611">#611</a>)</li> <li>Respect UV_NO_MODIFY_PATH <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/603">#603</a>)</li> <li>Warn when <code>UV_CACHE_DIR</code> has changed <a href="https://github.com/jamesbraza"><code>@jamesbraza</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/601">#601</a>)</li> </ul> <h2>🚀 Enhancements</h2> <ul> <li>Shortcut to latest version for minimum version specifier <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/598">#598</a>)</li> </ul> <h2>🧰 Maintenance</h2> <ul> <li>Bump dependencies <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/613">#613</a>)</li> <li>Fix test-uv-no-modify-path <a href="https://github.com/eifinger"><code>@eifinger</code></a> (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/604">#604</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/astral-sh/setup-uv/commit/681c641aba71e4a1c380be3ab5e12ad51f415867"><code>681c641</code></a> Bump actions/checkout from 5.0.0 to 6.0.1 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/712">#712</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/2e85713bb0ad1bd68b79183f00fe093dccd19930"><code>2e85713</code></a> Bump actions/setup-node from 6.0.0 to 6.1.0 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/715">#715</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/58b6d7b303576a48786c1bbb6959b7875a3a84ec"><code>58b6d7b</code></a> fix: add OS version to cache key to prevent binary incompatibility (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/716">#716</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/e8b52af86e46cb518daf4b47877e582bc9e37b8b"><code>e8b52af</code></a> chore: update known checksums for 0.9.17 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/714">#714</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/ed21f2f24f8dd64503750218de024bcf64c7250a"><code>ed21f2f</code></a> Bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/695">#695</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/93202d8fbe8ed7d8099f4773a9684b037e0b6205"><code>93202d8</code></a> bump dependencies (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/709">#709</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/5ce090076db3f5a2ed5bbd4a75c9123c727ff2af"><code>5ce0900</code></a> set biome files.maxSize to 2MiB (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/708">#708</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/4180991cd97ec5ff7a3147ba70d3cc188015b467"><code>4180991</code></a> allow cache-local-path w/o enable-cache (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/707">#707</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/0439606c8e2f1191835c4446afb6e4ac29363801"><code>0439606</code></a> Bump github/codeql-action from 4.30.9 to 4.31.6 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/698">#698</a>)</li> <li><a href="https://github.com/astral-sh/setup-uv/commit/7dd56c18e98cbf9546ad0ca8108ab326f681708a"><code>7dd56c1</code></a> chore: update known checksums for 0.9.16 (<a href="https://redirect.github.com/astral-sh/setup-uv/issues/706">#706</a>)</li> <li>Additional commits viewable in <a href="https://github.com/astral-sh/setup-uv/compare/v6...v7">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=astral-sh/setup-uv&package-manager=github_actions&previous-version=6&new-version=7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	2025-12-18 22:41:25 +00:00
dependabot[bot]	dcad5d8879	Bump dev-hanz-ops/install-gh-cli-action from 0.1.0 to 0.2.1 (#36195 ) Bumps [dev-hanz-ops/install-gh-cli-action](https://github.com/dev-hanz-ops/install-gh-cli-action) from 0.1.0 to 0.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dev-hanz-ops/install-gh-cli-action/releases">dev-hanz-ops/install-gh-cli-action's releases</a>.</em></p> <blockquote> <h2>v0.2.1 - arm64 support</h2> <ul> <li>support arm64 architecture - <a href="https://redirect.github.com/dev-hanz-ops/install-gh-cli-action/pull/10">dev-hanz-ops/install-gh-cli-action#10</a> (by <a href="https://github.com/whatthefinemanual"><code>@whatthefinemanual</code></a>)</li> </ul> <h2>v0.2.0 - update to node20</h2> <ul> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/8fff9050dae2d81b38f94500d8b74ad1d1d47410">https://github.com/dev-hanz-ops/install-gh-cli-action/commit/8fff9050dae2d81b38f94500d8b74ad1d1d47410</a> (update to node20)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/af38ce09b1ec248aeb08eea2b16bbecea9e059f8"><code>af38ce0</code></a> run build</li> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/eef2976cedc1da9b4b4eafcdf96655455d55ac73"><code>eef2976</code></a> feature: Add multi architecture support (<a href="https://redirect.github.com/dev-hanz-ops/install-gh-cli-action/issues/10">#10</a>)</li> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/2d19dc38f3a568abbd2a42dae05be5b83202f332"><code>2d19dc3</code></a> docs: update recomended action version (<a href="https://redirect.github.com/dev-hanz-ops/install-gh-cli-action/issues/8">#8</a>)</li> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/8fff9050dae2d81b38f94500d8b74ad1d1d47410"><code>8fff905</code></a> update to node 20</li> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/67bfd0539397d168c77ba70eac2647fef7f1f020"><code>67bfd05</code></a> README: only linux amd64</li> <li><a href="https://github.com/dev-hanz-ops/install-gh-cli-action/commit/44745680363a7ba976f907c6d1b697a9fc311cf7"><code>4474568</code></a> Update readme with working example (<a href="https://redirect.github.com/dev-hanz-ops/install-gh-cli-action/issues/3">#3</a>)</li> <li>See full diff in <a href="https://github.com/dev-hanz-ops/install-gh-cli-action/compare/v0.1.0...v0.2.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dev-hanz-ops/install-gh-cli-action&package-manager=github_actions&previous-version=0.1.0&new-version=0.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-18 21:37:06 +00:00
dependabot[bot]	5f5a87f015	Bump aws-actions/configure-aws-credentials from 4 to 5 (#36196 ) [//]: # (dependabot-start) ⚠️ Dependabot is rebasing this PR ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 4 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/releases">aws-actions/configure-aws-credentials's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.1...v5.0.0">5.0.0</a> (2025-09-03)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>Cleanup input handling. Changes invalid boolean input behavior (see <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1445">#1445</a>)</li> </ul> <h3>Features</h3> <ul> <li>add skip OIDC option (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1458">#1458</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/8c45f6b08196feb86cfdbe431541d5571d9ab2c2">8c45f6b</a>)</li> <li>Cleanup input handling. Changes invalid boolean input behavior (see <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1445">#1445</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/74b3e27aa80db064b5bb8c04b22fc607e817acf7">74b3e27</a>)</li> <li>support account id allowlist (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1456">#1456</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/c4be498953fc1da2707a50ce4b761a53af3d02af">c4be498</a>)</li> </ul> <h2>v4.3.1</h2> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.0...v4.3.1">4.3.1</a> (2025-08-04)</h2> <h3>Bug Fixes</h3> <ul> <li>update readme to 4.3.1 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1424">#1424</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/be2e7ad815e27b890489a89ce2717b0f9e26b56e">be2e7ad</a>)</li> </ul> <h2>v4.3.0</h2> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.0...v4.3.0">4.3.0</a> (2025-08-04)</h2> <p>NOTE: This release tag originally pointed to 59b441846ad109fa4a1549b73ef4e149c4bfb53b, but a critical bug was discovered shortly after publishing. We updated this tag to d0834ad3a60a024346910e522a81b0002bd37fea to prevent anyone using the 4.3.0 tag from encountering the bug, and we published 4.3.1 to allow workflows to auto update correctly.</p> <h3>Features</h3> <ul> <li>dependency update and feature cleanup (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1414">#1414</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/59489ba544930000b7b67412c167f5fe816568cf">59489ba</a>), closes <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1062">#1062</a> <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1191">#1191</a></li> <li>Optional environment variable output (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/c3b3ce61b02510937ff02916a4eb153874bc5085">c3b3ce6</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li><strong>docs:</strong> readme samples versioning (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/5b3c89504689ea1ea2b6000b23a6a2aac463662a">5b3c895</a>)</li> <li>the wrong example region for China partition in README (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/37fe9a740bcb30ee8cccd96feb90666c937311f2">37fe9a7</a>)</li> <li>properly set proxy environment variable (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/cbea70821e4ab985ad3be0e5a93390523e257cde">cbea708</a>)</li> </ul> <h3>Miscellaneous Chores</h3> <ul> <li>release 4.3.0 (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/3f7c2187213bafaa1ea60a850b27082cbf55dda0">3f7c218</a>)</li> </ul> <h2>v4.2.1</h2> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.2.0...v4.2.1">4.2.1</a> (2025-05-14)</h2> <h3>Bug Fixes</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md">aws-actions/configure-aws-credentials's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v5.1.0...v5.1.1">5.1.1</a> (2025-11-24)</h2> <h3>Miscellaneous Chores</h3> <ul> <li>release 5.1.1 (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/56d6a583f00f6bad6d19d91d53a7bc3b8143d0e9">56d6a58</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v5.0.0...v5.1.0">5.1.0</a> (2025-10-06)</h2> <h3>Features</h3> <ul> <li>Add global timeout support (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1487">#1487</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/1584b8b0e2062557287c28fbe9b8920df434e866">1584b8b</a>)</li> <li>add no-proxy support (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482">#1482</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/dde9b22a8e889a0821997a21a2c5a38020ee8de3">dde9b22</a>)</li> <li>Improve debug logging in retry logic (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1485">#1485</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/97ef425d73aa532439f54f90d0e83101a186c5a6">97ef425</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>properly expose getProxyForUrl (introduced in <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482">#1482</a>) (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1486">#1486</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/cea42985ac88b42678fbc84c18066a7f07f05176">cea4298</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.1...v5.0.0">5.0.0</a> (2025-09-03)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>Cleanup input handling. Changes invalid boolean input behavior (see <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1445">#1445</a>)</li> </ul> <h3>Features</h3> <ul> <li>add skip OIDC option (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1458">#1458</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/8c45f6b08196feb86cfdbe431541d5571d9ab2c2">8c45f6b</a>)</li> <li>Cleanup input handling. Changes invalid boolean input behavior (see <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1445">#1445</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/74b3e27aa80db064b5bb8c04b22fc607e817acf7">74b3e27</a>)</li> <li>support account id allowlist (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1456">#1456</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/c4be498953fc1da2707a50ce4b761a53af3d02af">c4be498</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.0...v4.3.1">4.3.1</a> (2025-08-04)</h2> <h3>Bug Fixes</h3> <ul> <li>update readme to 4.3.1 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1424">#1424</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/be2e7ad815e27b890489a89ce2717b0f9e26b56e">be2e7ad</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.2.1...v4.3.0">4.3.0</a> (2025-08-04)</h2> <h3>Features</h3> <ul> <li>depenency update and feature cleanup (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1414">#1414</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/59489ba544930000b7b67412c167f5fe816568cf">59489ba</a>), closes <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1062">#1062</a> <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1191">#1191</a></li> <li>Optional environment variable output (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/c3b3ce61b02510937ff02916a4eb153874bc5085">c3b3ce6</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/61815dcd50bd041e203e49132bacad1fd04d2708"><code>61815dc</code></a> chore(main): release 5.1.1 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1564">#1564</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/56d6a583f00f6bad6d19d91d53a7bc3b8143d0e9"><code>56d6a58</code></a> chore: release 5.1.1</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/4a54c24244cf4f82abd7d44e7b2024258a8aa041"><code>4a54c24</code></a> chore(deps-dev): bump glob from 10.4.5 to 10.5.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1563">#1563</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/b2793c943d45120be0c78ffc4b01aa0d2bf23e4b"><code>b2793c9</code></a> chore(deps-dev): bump <code>@types/node</code> from 24.10.0 to 24.10.1 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1559">#1559</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/8c230bf21db64d397027b569a312fd242776d171"><code>8c230bf</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/f7a5b07d5348b1ac9f4d78d7547c96dfdd088440"><code>f7a5b07</code></a> chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.928.0 to 3.933.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1558">#1558</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/730fc043828321961a659b198613a80b17bf755c"><code>730fc04</code></a> chore(deps-dev): bump <code>@biomejs/biome</code> from 2.3.4 to 2.3.6 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1555">#1555</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/bc0dd36aec59e4fbdcedc61cb65d225ee2fa3bb6"><code>bc0dd36</code></a> chore(deps-dev): bump memfs from 4.50.0 to 4.51.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1556">#1556</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/f2964c7281262753f549b15ae39f1cbbb033b9e4"><code>f2964c7</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/cf464951bec7e2a7af23fa7107563810acd70a4f"><code>cf46495</code></a> chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.922.0 to 3.928.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1548">#1548</a>)</li> <li>Additional commits viewable in <a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4...v5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=aws-actions/configure-aws-credentials&package-manager=github_actions&previous-version=4&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-18 20:59:23 +00:00
dependabot[bot]	aca6726607	Bump docker/build-push-action from 5 to 6 (#36197 ) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <ul> <li>Export build record and generate <a href="https://docs.docker.com/build/ci/github-actions/build-summary/">build summary</a> by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1120">docker/build-push-action#1120</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.24.0 to 0.26.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1132">docker/build-push-action#1132</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1136">docker/build-push-action#1136</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1138">docker/build-push-action#1138</a></li> <li>Bump braces from 3.0.2 to 3.0.3 in <a href="https://redirect.github.com/docker/build-push-action/pull/1137">docker/build-push-action#1137</a></li> </ul> <blockquote> <p>[!NOTE] This major release adds support for generating <a href="https://docs.docker.com/build/ci/github-actions/build-summary/">Build summary</a> and exporting build record for your build. You can disable this feature by setting <a href="https://docs.docker.com/build/ci/github-actions/build-summary/#disable-job-summary"> <code>DOCKER_BUILD_SUMMARY: false</code> environment variable in your workflow</a>.</p> </blockquote> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v5.4.0...v6.0.0">https://github.com/docker/build-push-action/compare/v5.4.0...v6.0.0</a></p> <h2>v5.4.0</h2> <ul> <li>Show builder information before building by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1128">docker/build-push-action#1128</a></li> <li>Handle attestations correctly with provenance and sbom inputs by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1086">docker/build-push-action#1086</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.19.0 to 0.24.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1088">docker/build-push-action#1088</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1105">docker/build-push-action#1105</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1121">docker/build-push-action#1121</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1127">docker/build-push-action#1127</a></li> <li>Bump undici from 5.28.3 to 5.28.4 in <a href="https://redirect.github.com/docker/build-push-action/pull/1090">docker/build-push-action#1090</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0">https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0</a></p> <h2>v5.3.0</h2> <ul> <li>Bump <code>@docker/actions-toolkit</code> from 0.18.0 to 0.19.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1080">docker/build-push-action#1080</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v5.2.0...v5.3.0">https://github.com/docker/build-push-action/compare/v5.2.0...v5.3.0</a></p> <h2>v5.2.0</h2> <ul> <li>Disable quotes detection for <code>outputs</code> input by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1074">docker/build-push-action#1074</a></li> <li>Warn about ignored inputs by <a href="https://github.com/favonia"><code>@favonia</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1019">docker/build-push-action#1019</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.14.0 to 0.18.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1070">docker/build-push-action#1070</a></li> <li>Bump undici from 5.26.3 to 5.28.3 in <a href="https://redirect.github.com/docker/build-push-action/pull/1057">docker/build-push-action#1057</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v5.1.0...v5.2.0">https://github.com/docker/build-push-action/compare/v5.1.0...v5.2.0</a></p> <h2>v5.1.0</h2> <ul> <li>Add <code>annotations</code> input by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/992">docker/build-push-action#992</a></li> <li>Add <code>secret-envs</code> input by <a href="https://github.com/elias-lundgren"><code>@elias-lundgren</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/980">docker/build-push-action#980</a></li> <li>Bump <code>@babel/traverse</code> from 7.17.3 to 7.23.2 in <a href="https://redirect.github.com/docker/build-push-action/pull/991">docker/build-push-action#991</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.13.0-rc.1 to 0.14.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/990">docker/build-push-action#990</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1006">docker/build-push-action#1006</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v5.0.0...v5.1.0">https://github.com/docker/build-push-action/compare/v5.0.0...v5.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/263435318d21b8e681c14492fe198d362a7d2c83"><code>2634353</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1381">#1381</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/c0432d2e016ab17a336cee48256683e74d5c4c9e"><code>c0432d2</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/0bb1f27d6b9fc90993f41febd9b53ee89397d3f8"><code>0bb1f27</code></a> set builder driver and endpoint attributes for dbc summary support</li> <li><a href="https://github.com/docker/build-push-action/commit/5f9dbf956c8481ecf630d0e53941d9d3afaa53bb"><code>5f9dbf9</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.61.0 to 0.62.1</li> <li><a href="https://github.com/docker/build-push-action/commit/0788c444d8b4d67580213712e34a148cae3a6c4e"><code>0788c44</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1375">#1375</a> from crazy-max/remove-gcr</li> <li><a href="https://github.com/docker/build-push-action/commit/aa179ca4f405fed7a76dad90a23bd02d6f2a8d2d"><code>aa179ca</code></a> e2e: remove GCR</li> <li><a href="https://github.com/docker/build-push-action/commit/1dc73863535b631f98b2378be8619f83b136f4a0"><code>1dc7386</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1364">#1364</a> from crazy-max/history-export-cmd</li> <li><a href="https://github.com/docker/build-push-action/commit/9c9803f36437c54a2bf7b2c9a4a9011c2a812d71"><code>9c9803f</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/db1f6c46e8d64f89ec10010e409681bcf7951c05"><code>db1f6c4</code></a> DOCKER_BUILD_EXPORT_LEGACY env var to opt-in for legacy export</li> <li><a href="https://github.com/docker/build-push-action/commit/721e8c79de660781840d3a69a11e39e1e836ef8e"><code>721e8c7</code></a> Bump <code>@docker/actions-toolkit</code> from 0.59.0 to 0.61.0</li> <li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/v5...v6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/build-push-action&package-manager=github_actions&previous-version=5&new-version=6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-18 20:09:24 +00:00
silverwind	3e57ba5b36	Add permissions to`files-changed` jobs (#36142 ) Followup to https://github.com/go-gitea/gitea/pull/36140. `files-changed` is a job that imports another workflow via `uses` statement but CodeQL still complains about lack of permissions on these jobs, so add it. This will fix the remaining [3 CodeQL issues](https://github.com/go-gitea/gitea/security/code-scanning?query=is%3Aopen+branch%3Amain+permissions).	2025-12-12 18:38:59 +01:00
silverwind	4c06c98dda	Add explicit permissions to all actions workflows (#36140 ) Explicitely specify all workflow [`permissions`](https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#permissions). This will fix [26 CodeQL alerts](https://github.com/go-gitea/gitea/security/code-scanning?query=permissions+is%3Aopen+branch%3Amain+).	2025-12-12 16:48:29 +00:00
silverwind	87b855bd15	Bump `actions/checkout` to v6 (#36136 ) https://github.com/actions/checkout#checkout-v6 Result of `perl -p -i -e 's#actions\/checkout\@v5#actions/checkout\@v6#g' .github/workflows/*`	2025-12-12 16:44:53 +01:00
silverwind	66707bc3ea	Fix actions lint (#36029 ) actionlint since https://github.com/rhysd/actionlint/releases/tag/v1.7.9 detects constant conditions and this workflow was being disabled in https://github.com/go-gitea/gitea/commit/58d2a87c6c4431873340cb7c00fa43670d4418aa by such a condition which made the lint fail: https://github.com/go-gitea/gitea/actions/runs/19673752806/job/56349128912?pr=36028 Instead, remove the whole workflow file. I'm sure we can re-create it if the need arises. Also, I locked the actionlint dependency to prevent similar surprises in the future.	2025-11-26 10:13:37 -08:00
TheFox0x7	685c8c314f	Add cache to container build (#35697 ) add mount cache directives to container builds, which speeds up local builds bypassing node and go package download entirely on second build and caching go compilation. drop job level split on regular/rootless, which allows to reuse the previously made stage for rootless, skipping duplicate builds in CI. --------- Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	2025-11-02 09:42:25 +00:00
silverwind	5bf7cf788d	Bump `actions/labeler` to v6 (#35681 ) https://github.com/actions/labeler/releases/tag/v6.0.0	2025-10-16 19:00:41 +02:00
silverwind	96102c69e7	Bump setup-go to v6 (#35660 )	2025-10-14 14:28:05 -04:00
silverwind	912515e63a	Bump actions/checkout to v5 (#35644 )	2025-10-12 18:01:42 +00:00
junoberryferry	151ef80e28	use experimental go json v2 library (#35392 ) details: https://pkg.go.dev/encoding/json/v2 --------- Co-authored-by: techknowlogick <matti@mdranta.net> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>	2025-09-28 08:03:36 +00:00
silverwind	4d43d85941	Bump setup-node to v5 (#35448 ) See https://github.com/actions/setup-node/releases/tag/v5.0.0 Caching is now enabled by default when `packageManager` is present in package.json, and we have that. `cache-dependency-path` is unneccesary because the action will automatically detect it.	2025-09-10 16:11:14 +00:00
techknowlogick	361e59fd53	Switch to pnpm (#35274 ) Co-authored-by: 6543 <6543@obermui.de> Co-authored-by: silverwind <me@silverwind.io>	2025-09-04 01:17:14 +00:00
silverwind	ca6c0dee2e	Switch `bitnami` images to `bitnamilegacy` on CI (#35402 ) As per https://github.com/bitnami/containers/issues/83267, my understanding is that the `docker.io/bitnami` images will be deleted on September 29. To prevent this failure mode, use the images on the `bitnamilegacy` org instead which are snapshots from when they stopped updating them. Long-term, we should replace these images with official ones.	2025-09-03 14:17:16 +00:00
techknowlogick	ed8d4dc37a	rename nightly docker tag for main branch (#35344 ) fixes https://github.com/go-gitea/gitea/issues/35338	2025-08-24 13:40:50 +08:00
silverwind	3531e9dbfd	Replace `setup-python` with `setup-uv` (#35116 )	2025-07-18 14:02:57 +00:00
silverwind	7413e8583d	Replace `poetry` with `uv` (#35084 )	2025-07-15 21:19:39 +00:00
silverwind	dcc9206a59	Raise minimum Node.js version to 20, test on 24 (#34713 ) - Node.js 18 is now EOL, so raise minimum version to current LTS v20 - Test on 24 - Change devcontainers to use LTS version (currently 22), [ref](https://github.com/devcontainers/features/tree/main/src/node)	2025-06-13 13:40:39 -04:00
silverwind	8365365c9c	Run integration tests against postgres 14 (#34514 ) postgres 12 is end of life since 6 months. 13 and above are still supported but I think it's overall better if we test a more recent version of postgres because that's what new users will be running on. Ref: https://endoflife.date/postgresql	2025-05-23 04:40:21 +00:00
wxiaoguang	58d2a87c6c	update go&js dependencies (#34262 )	2025-04-23 21:22:40 +00:00
Meng Zhuo	921d3a394d	feat: add riscv64 support (#34199 )	2025-04-14 16:32:54 +00:00
Allen Conlon	4a3ab5a2cd	fix(#33711 ): cross-publish docker images to ghcr.io (#34148 ) This PR will cross-publish the release, rc, and nightly images from `docker.io` to `ghcr.io` as docker hub has imposed rate-limiting Signed-off-by: Allen Conlon <software@conlon.dev>	2025-04-10 19:39:37 +00:00

1 2 3 4

152 Commits