Varun Sharma
2c71278a23
ci: Add GitHub token permissions for workflows
...
Signed-off-by: Varun Sharma <varunsh@stepsecurity.io>
2022-07-08 10:53:38 -07:00
Robert Hensing
3a27c40463
workflows/nixos-manual: Add command to run to error message
2022-07-06 07:32:17 +02:00
Janne Heß
8befefd1a7
workflows: Remove 21.11 merges
...
Channel is EOL
2022-07-04 20:04:17 +02:00
nathannaveen
5deff9583c
chore: Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-07-04 01:09:50 +00:00
Markus Wamser
2c74606664
.github/PULL_REQUEST_TEMPLATE.md: 21.11 -> 22.05
2022-05-31 19:14:32 +08:00
Janne Heß
cbaacfb8df
Release 22.05
2022-05-30 20:50:07 +02:00
Sandro
7d498dea03
Merge pull request #171041 from ryantm/stalebot
...
.github/stale bot: stop commenting
2022-05-26 22:42:41 +02:00
Ellie Hermaszewska
cef38c9488
Merge pull request #174363 from expipiplus1/ellie-codeowners
...
CODEOWNERS: remove expipiplus1 from haskell
2022-05-25 10:31:20 +08:00
Ellie Hermaszewska
cbf736eb39
CODEOWNERS: remove expipiplus1 from haskell
...
Hopefully temporarily, just too many notifications at the moment
2022-05-25 09:12:42 +08:00
Janne Heß
e728029b30
workflows: Replace 21.05 with 22.05
2022-05-23 19:57:42 +02:00
Rick van Schijndel
caf95ff509
CODEOWNERS: rename Gabriel439 to Gabriella439
...
See https://github.com/Gabriel439 :
Hi, there! 👋🏼
I renamed my GitHub account from @Gabriel439 to @Gabriella439, so if you got here from an old profile link you can visit my new profile here:
@Gabriella439
I created this placeholder account so that:
… people who visit old links to my profile can find my new profile
… other people cannot impersonate my old handle
… GitHub continues to redirect old links to my repositories indefinitely
2022-05-11 21:04:28 +02:00
Artturin
d46665e879
ISSUE_TEMPLATE/build_failure.md: create
2022-05-09 15:43:53 +03:00
Ryan Mulligan
2118173ca4
.github/stale bot: stop commenting
...
Niklas Hambüchen noted in
https://github.com/NixOS/rfcs/pull/124#issuecomment-1113647856
that we can add a label description for the stale label that appears
when you hover over the label, or look on
https://github.com/NixOS/nixpkgs/labels
I set the description to be
> https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md
which is our page explaining the stale bot.
The stale bot comments/emails are a significant burden on our most
prodigious contributors, and the reason for their existence to orient
new contributors.
Since our stale bot's configuration is benign enough to ignore (it
does not close), I believe it is good enough to satisfy the new
contributor orientation with the label description.
Therefore, this commit disables commenting when labeling an issue or
PR stale.
2022-04-30 08:30:08 -07:00
dependabot[bot]
646ed065e5
build(deps): bump peter-evans/create-pull-request from 3 to 4
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 3 to 4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4 )
2022-04-29 17:58:49 +10:00
zowoq
c19e9b776d
.github/workflows/update-terraform-providers.yml: minor fixes
...
- simplify comment
- move `ofborg` command into block for clickable copying
2022-04-28 08:13:24 +10:00
=
83677514e6
.github/CODEOWNERS: add IvarWithoutBones for dotnet
2022-04-25 20:44:39 +02:00
aszlig
eca4a0087f
CODEOWNERS: Add layus for autoPatchelfHook
...
With the re-implementation in Python merged[1], it no longer makes sense
for me to track issues and pull requests. I did this originally because
people were forgetting (rightfully so) to run tests against all that
proprietary stuff we have in nixpkgs that is using autoPatchelfHook.
We still can't test these automatically but with me no longer being the
author of the code, I hereby drop my entry in CODEOWNERS and instead
replace it with layus, who's the author of the rewrite.
[1]: https://github.com/NixOS/nixpkgs/pull/149731
Signed-off-by: aszlig <aszlig@nix.build>
2022-04-14 09:46:00 +02:00
dependabot[bot]
23e9e781e2
build(deps): bump cachix/install-nix-action from 16 to 17
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 16 to 17.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](https://github.com/cachix/install-nix-action/compare/v16...v17 )
---
updated-dependencies:
- dependency-name: cachix/install-nix-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-08 17:59:26 +10:00
zowoq
1b9fa5ade6
.github/CODEOWNERS: update dockerTools paths
2022-04-05 10:17:43 +10:00
Jörg Thalheim
04afcacb6e
Merge pull request #166772 from Artturin/gi-ci-basiceval
...
.github/workflows/basic-eval.yml: only run if manually triggered
2022-04-02 06:10:01 +01:00
Artturin
36c36411b8
.github/workflows/basic-eval.yml: only run if manually triggered
...
ofborg should have obsoleted this with https://github.com/NixOS/ofborg/pull/588#issuecomment-1078451552
https://github.com/NixOS/nixpkgs/pull/166599#issuecomment-1085069938
this is still useful to have around for act usage
2022-04-01 09:48:20 +03:00
zowoq
630732fdd7
.github/CODEOWNERS: remove non-committer users/teams
...
these didn't work anyway and now github warns if they don't have commit access
2022-03-30 07:31:11 +10:00
Sandro
319145c9dc
Merge pull request #165397 from Mic92/create-or-update-comment
2022-03-27 12:12:23 +02:00
dependabot[bot]
1f161a57c2
build(deps): bump peter-evans/commit-comment from 1 to 2
...
Bumps [peter-evans/commit-comment](https://github.com/peter-evans/commit-comment ) from 1 to 2.
- [Release notes](https://github.com/peter-evans/commit-comment/releases )
- [Commits](https://github.com/peter-evans/commit-comment/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: peter-evans/commit-comment
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:24:13 +01:00
dependabot[bot]
180dada3ed
build(deps): bump peter-evans/create-or-update-comment from 1 to 2
...
Bumps [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment ) from 1 to 2.
- [Release notes](https://github.com/peter-evans/create-or-update-comment/releases )
- [Commits](https://github.com/peter-evans/create-or-update-comment/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: peter-evans/create-or-update-comment
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:23:37 +01:00
Florian Klink
66d57184af
Merge pull request #164850 from bobvanderlinden/patch-3
...
CODEOWNERS: add @NixOS/systemd for systemd files
2022-03-22 20:19:27 +01:00
Bob van der Linden
7c44799cd5
CODEOWNERS: formatting
2022-03-22 19:24:26 +01:00
Bob van der Linden
54041b9b84
CODEOWNERS: remove @Kloenk from systemd files
2022-03-22 19:23:34 +01:00
Bob van der Linden
d220f223ec
CODEOWNERS: use correct paths for systemd
...
Co-authored-by: zowoq <59103226+zowoq@users.noreply.github.com>
2022-03-22 19:22:41 +01:00
Bob van der Linden
42784b3d20
CODEOWNERS: only include NixOS/systemd and Kloenk
2022-03-21 20:09:53 +01:00
Jörg Thalheim
92a720cbac
ci: add warning to actions with writeable GITHUB_TOKEN
...
Co-authored-by: ckie <25263210+ckiee@users.noreply.github.com>
2022-03-21 08:54:42 +01:00
Bob van der Linden
73e92f61bf
CODEOWNERS: add members of NixOS/systemd as well
2022-03-20 16:05:14 +01:00
Bob van der Linden
72faca439d
CODEOWNERS: add @NixOS/systemd for systemd files
2022-03-19 12:35:41 +01:00
Cole Helbling
5e4d6e627e
labeler: don't use path-based labeling for BSD
...
ofborg labels the bsd and darwin platforms based on the title, which
conflicts with the labeler action's `sync-labels` setting (if no paths
are changed, it'll remove the label).
2022-03-17 16:41:35 -07:00
zowoq
1d41af9bc9
.github/workflows/basic-eval.yml: add cachix cache
...
Avoids rebuilding nix in every PR if it hasn't been build on hydra yet.
2022-03-14 08:12:25 +10:00
zowoq
65268fe99a
.github/workflows: update cachix cache comment
2022-03-14 08:12:24 +10:00
Martin Weinelt
d06e5ddb33
PULL_REQUEST_TEMPLATE: move call-for-review to the end
...
This improves URL previews like the ones on Discourse, where currently
the boilerplate comment is printed for every PR link instead of parts of
the motivation.
2022-03-07 19:56:13 +01:00
piegames
21831e3ad4
Merge #162790 : PULL_REQUEST_TEMPLATE.md: Request PRs describe themselves
2022-03-07 19:54:07 +01:00
Emery Hemingway
d63249ac27
PULL_REQUEST_TEMPLATE.md: Request PRs describe themselves
...
There are a lot of PRs for updates that don't make it easy to find
out what changes might be breaking and lots of PRs for new packages
that don't describe what the new packages is or does.
2022-03-07 12:29:00 -06:00
Sandro
3b61ae7507
CODEOWNERS: remove deleted user volth
2022-03-07 17:25:48 +01:00
Jörg Thalheim
a385dd1ae3
Merge pull request #162450 from Mic92/actions-labeler
...
build(deps): bump actions/labeler from 3 to 4
2022-03-02 04:57:15 +00:00
dependabot[bot]
3f2c2d0afa
build(deps): bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
2022-03-02 05:13:13 +01:00
dependabot[bot]
e07220a5ad
build(deps): bump actions/labeler from 3 to 4
...
Bumps [actions/labeler](https://github.com/actions/labeler ) from 3 to 4.
- [Release notes](https://github.com/actions/labeler/releases )
- [Commits](https://github.com/actions/labeler/compare/v3...v4 )
2022-03-02 05:08:31 +01:00
AndersonTorres
b71ebb32ce
vim: Update .github/CODEOWNERS and .github/labeler.yml
2022-02-24 20:26:07 -03:00
Anderson Torres
f15188d1b8
Merge pull request #160344 from AndersonTorres/move-vscode-plugins
...
Move misc/vscode-extensions to applications/editors/vscode/extensions
2022-02-24 14:50:40 -03:00
AndersonTorres
48e6f122ef
emacs/elisp-packages: Update .github/CODEOWNERS and .github/labeler.yml
2022-02-18 08:33:05 -03:00
AndersonTorres
3886237421
vscode: Update .github/CODEOWNERS
2022-02-18 08:25:22 -03:00
zowoq
8a5a31ec0b
.github/CODEOWNERS: add rust docs
2022-02-14 08:56:04 +10:00
zowoq
215002fb9f
terraform-providers: update scripts
...
- add flag to skip building updated providers
- have the github action skip building providers so we don't need to handle build failures in the script
- remove outdated `vendor` flag, all providers use `buildGoModule`
2022-02-07 12:02:36 +10:00
K0RR
6daff24989
out_of_date_package_report.md: fix typo
2022-02-03 18:15:29 +08:00