Commit Graph

419 Commits

Author SHA1 Message Date
Varun Sharma
2c71278a23 ci: Add GitHub token permissions for workflows
Signed-off-by: Varun Sharma <varunsh@stepsecurity.io>
2022-07-08 10:53:38 -07:00
Robert Hensing
3a27c40463 workflows/nixos-manual: Add command to run to error message 2022-07-06 07:32:17 +02:00
Janne Heß
8befefd1a7
workflows: Remove 21.11 merges
Channel is EOL
2022-07-04 20:04:17 +02:00
nathannaveen
5deff9583c chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-07-04 01:09:50 +00:00
Markus Wamser
2c74606664
.github/PULL_REQUEST_TEMPLATE.md: 21.11 -> 22.05 2022-05-31 19:14:32 +08:00
Janne Heß
cbaacfb8df
Release 22.05 2022-05-30 20:50:07 +02:00
Sandro
7d498dea03
Merge pull request #171041 from ryantm/stalebot
.github/stale bot: stop commenting
2022-05-26 22:42:41 +02:00
Ellie Hermaszewska
cef38c9488
Merge pull request #174363 from expipiplus1/ellie-codeowners
CODEOWNERS: remove expipiplus1 from haskell
2022-05-25 10:31:20 +08:00
Ellie Hermaszewska
cbf736eb39
CODEOWNERS: remove expipiplus1 from haskell
Hopefully temporarily, just too many notifications at the moment
2022-05-25 09:12:42 +08:00
Janne Heß
e728029b30
workflows: Replace 21.05 with 22.05 2022-05-23 19:57:42 +02:00
Rick van Schijndel
caf95ff509 CODEOWNERS: rename Gabriel439 to Gabriella439
See https://github.com/Gabriel439:

Hi, there! 👋🏼

I renamed my GitHub account from @Gabriel439 to @Gabriella439, so if you got here from an old profile link you can visit my new profile here:

    @Gabriella439

I created this placeholder account so that:

    … people who visit old links to my profile can find my new profile
    … other people cannot impersonate my old handle
    … GitHub continues to redirect old links to my repositories indefinitely
2022-05-11 21:04:28 +02:00
Artturin
d46665e879 ISSUE_TEMPLATE/build_failure.md: create 2022-05-09 15:43:53 +03:00
Ryan Mulligan
2118173ca4 .github/stale bot: stop commenting
Niklas Hambüchen noted in

https://github.com/NixOS/rfcs/pull/124#issuecomment-1113647856

that we can add a label description for the stale label that appears
when you hover over the label, or look on

https://github.com/NixOS/nixpkgs/labels

I set the description to be

> https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md

which is our page explaining the stale bot.

The stale bot comments/emails are a significant burden on our most
prodigious contributors, and the reason for their existence to orient
new contributors.

Since our stale bot's configuration is benign enough to ignore (it
does not close), I believe it is good enough to satisfy the new
contributor orientation with the label description.

Therefore, this commit disables commenting when labeling an issue or
PR stale.
2022-04-30 08:30:08 -07:00
dependabot[bot]
646ed065e5 build(deps): bump peter-evans/create-pull-request from 3 to 4
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3 to 4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4)
2022-04-29 17:58:49 +10:00
zowoq
c19e9b776d .github/workflows/update-terraform-providers.yml: minor fixes
- simplify comment
- move `ofborg` command into block for clickable copying
2022-04-28 08:13:24 +10:00
=
83677514e6 .github/CODEOWNERS: add IvarWithoutBones for dotnet 2022-04-25 20:44:39 +02:00
aszlig
eca4a0087f
CODEOWNERS: Add layus for autoPatchelfHook
With the re-implementation in Python merged[1], it no longer makes sense
for me to track issues and pull requests. I did this originally because
people were forgetting (rightfully so) to run tests against all that
proprietary stuff we have in nixpkgs that is using autoPatchelfHook.

We still can't test these automatically but with me no longer being the
author of the code, I hereby drop my entry in CODEOWNERS and instead
replace it with layus, who's the author of the rewrite.

[1]: https://github.com/NixOS/nixpkgs/pull/149731

Signed-off-by: aszlig <aszlig@nix.build>
2022-04-14 09:46:00 +02:00
dependabot[bot]
23e9e781e2 build(deps): bump cachix/install-nix-action from 16 to 17
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 16 to 17.
- [Release notes](https://github.com/cachix/install-nix-action/releases)
- [Commits](https://github.com/cachix/install-nix-action/compare/v16...v17)

---
updated-dependencies:
- dependency-name: cachix/install-nix-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-08 17:59:26 +10:00
zowoq
1b9fa5ade6 .github/CODEOWNERS: update dockerTools paths 2022-04-05 10:17:43 +10:00
Jörg Thalheim
04afcacb6e
Merge pull request #166772 from Artturin/gi-ci-basiceval
.github/workflows/basic-eval.yml: only run if manually triggered
2022-04-02 06:10:01 +01:00
Artturin
36c36411b8 .github/workflows/basic-eval.yml: only run if manually triggered
ofborg should have obsoleted this with https://github.com/NixOS/ofborg/pull/588#issuecomment-1078451552
https://github.com/NixOS/nixpkgs/pull/166599#issuecomment-1085069938

this is still useful to have around for act usage
2022-04-01 09:48:20 +03:00
zowoq
630732fdd7 .github/CODEOWNERS: remove non-committer users/teams
these didn't work anyway and now github warns if they don't have commit access
2022-03-30 07:31:11 +10:00
Sandro
319145c9dc
Merge pull request #165397 from Mic92/create-or-update-comment 2022-03-27 12:12:23 +02:00
dependabot[bot]
1f161a57c2 build(deps): bump peter-evans/commit-comment from 1 to 2
Bumps [peter-evans/commit-comment](https://github.com/peter-evans/commit-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/commit-comment/releases)
- [Commits](https://github.com/peter-evans/commit-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/commit-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:24:13 +01:00
dependabot[bot]
180dada3ed build(deps): bump peter-evans/create-or-update-comment from 1 to 2
Bumps [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/create-or-update-comment/releases)
- [Commits](https://github.com/peter-evans/create-or-update-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/create-or-update-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:23:37 +01:00
Florian Klink
66d57184af
Merge pull request #164850 from bobvanderlinden/patch-3
CODEOWNERS: add @NixOS/systemd for systemd files
2022-03-22 20:19:27 +01:00
Bob van der Linden
7c44799cd5
CODEOWNERS: formatting 2022-03-22 19:24:26 +01:00
Bob van der Linden
54041b9b84
CODEOWNERS: remove @Kloenk from systemd files 2022-03-22 19:23:34 +01:00
Bob van der Linden
d220f223ec
CODEOWNERS: use correct paths for systemd
Co-authored-by: zowoq <59103226+zowoq@users.noreply.github.com>
2022-03-22 19:22:41 +01:00
Bob van der Linden
42784b3d20
CODEOWNERS: only include NixOS/systemd and Kloenk 2022-03-21 20:09:53 +01:00
Jörg Thalheim
92a720cbac ci: add warning to actions with writeable GITHUB_TOKEN
Co-authored-by: ckie <25263210+ckiee@users.noreply.github.com>
2022-03-21 08:54:42 +01:00
Bob van der Linden
73e92f61bf
CODEOWNERS: add members of NixOS/systemd as well 2022-03-20 16:05:14 +01:00
Bob van der Linden
72faca439d
CODEOWNERS: add @NixOS/systemd for systemd files 2022-03-19 12:35:41 +01:00
Cole Helbling
5e4d6e627e labeler: don't use path-based labeling for BSD
ofborg labels the bsd and darwin platforms based on the title, which
conflicts with the labeler action's `sync-labels` setting (if no paths
are changed, it'll remove the label).
2022-03-17 16:41:35 -07:00
zowoq
1d41af9bc9 .github/workflows/basic-eval.yml: add cachix cache
Avoids rebuilding nix in every PR if it hasn't been build on hydra yet.
2022-03-14 08:12:25 +10:00
zowoq
65268fe99a .github/workflows: update cachix cache comment 2022-03-14 08:12:24 +10:00
Martin Weinelt
d06e5ddb33
PULL_REQUEST_TEMPLATE: move call-for-review to the end
This improves URL previews like the ones on Discourse, where currently
the boilerplate comment is printed for every PR link instead of parts of
the motivation.
2022-03-07 19:56:13 +01:00
piegames
21831e3ad4
Merge #162790: PULL_REQUEST_TEMPLATE.md: Request PRs describe themselves 2022-03-07 19:54:07 +01:00
Emery Hemingway
d63249ac27 PULL_REQUEST_TEMPLATE.md: Request PRs describe themselves
There are a lot of PRs for updates that don't make it easy to find
out what changes might be breaking and lots of PRs for new packages
that don't describe what the new packages is or does.
2022-03-07 12:29:00 -06:00
Sandro
3b61ae7507
CODEOWNERS: remove deleted user volth 2022-03-07 17:25:48 +01:00
Jörg Thalheim
a385dd1ae3
Merge pull request #162450 from Mic92/actions-labeler
build(deps): bump actions/labeler from 3 to 4
2022-03-02 04:57:15 +00:00
dependabot[bot]
3f2c2d0afa
build(deps): bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)
2022-03-02 05:13:13 +01:00
dependabot[bot]
e07220a5ad
build(deps): bump actions/labeler from 3 to 4
Bumps [actions/labeler](https://github.com/actions/labeler) from 3 to 4.
- [Release notes](https://github.com/actions/labeler/releases)
- [Commits](https://github.com/actions/labeler/compare/v3...v4)
2022-03-02 05:08:31 +01:00
AndersonTorres
b71ebb32ce vim: Update .github/CODEOWNERS and .github/labeler.yml 2022-02-24 20:26:07 -03:00
Anderson Torres
f15188d1b8
Merge pull request #160344 from AndersonTorres/move-vscode-plugins
Move misc/vscode-extensions to applications/editors/vscode/extensions
2022-02-24 14:50:40 -03:00
AndersonTorres
48e6f122ef emacs/elisp-packages: Update .github/CODEOWNERS and .github/labeler.yml 2022-02-18 08:33:05 -03:00
AndersonTorres
3886237421 vscode: Update .github/CODEOWNERS 2022-02-18 08:25:22 -03:00
zowoq
8a5a31ec0b .github/CODEOWNERS: add rust docs 2022-02-14 08:56:04 +10:00
zowoq
215002fb9f terraform-providers: update scripts
- add flag to skip building updated providers
- have the github action skip building providers so we don't need to handle build failures in the script
- remove outdated `vendor` flag, all providers use `buildGoModule`
2022-02-07 12:02:36 +10:00
K0RR
6daff24989
out_of_date_package_report.md: fix typo 2022-02-03 18:15:29 +08:00