File tree Expand file tree Collapse file tree 8 files changed +61
-49
lines changed
Expand file tree Collapse file tree 8 files changed +61
-49
lines changed Original file line number Diff line number Diff line change @@ -4,13 +4,21 @@ updates:
44 directory : " /"
55 schedule :
66 interval : " daily"
7+ cooldown :
8+ default-days : 2
9+ groups :
10+ crazy-max-dot-github :
11+ patterns :
12+ - " crazy-max/.github/*"
713 labels :
814 - " dependencies"
915 - " bot"
1016 - package-ecosystem : " npm"
1117 directory : " /"
1218 schedule :
1319 interval : " daily"
20+ cooldown :
21+ default-days : 2
1422 versioning-strategy : " increase"
1523 allow :
1624 - dependency-type : " production"
Original file line number Diff line number Diff line change 11name : ci
22
3+ permissions :
4+ contents : read
5+
36concurrency :
47 group : ${{ github.workflow }}-${{ github.ref }}
58 cancel-in-progress : true
3134 steps :
3235 -
3336 name : Checkout
34- uses : actions/checkout@v6
37+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
3538 -
3639 name : Set up Docker Compose
3740 uses : ./
4346 steps :
4447 -
4548 name : Checkout
46- uses : actions/checkout@v6
49+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4750 -
4851 name : Set up Docker Compose 1
4952 uses : ./
5659 steps :
5760 -
5861 name : Checkout
59- uses : actions/checkout@v6
62+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
6063 -
6164 name : Uninstall docker cli
6265 run : |
8083 steps :
8184 -
8285 name : Checkout
83- uses : actions/checkout@v6
86+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
8487 -
8588 name : Set up Docker Compose
8689 uses : ./
Original file line number Diff line number Diff line change 11name : codeql
22
3+ permissions :
4+ contents : read
5+
36on :
47 push :
58 branches :
6- - ' master '
9+ - ' main '
710 - ' releases/v*'
811 pull_request :
912
10- permissions :
11- actions : read
12- contents : read
13- security-events : write
14-
1513env :
1614 NODE_VERSION : " 24"
1715
1816jobs :
1917 analyze :
2018 runs-on : ubuntu-latest
19+ permissions :
20+ contents : read
21+ security-events : write
2122 steps :
2223 -
2324 name : Checkout
24- uses : actions/checkout@v6
25+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2526 -
2627 name : Enable corepack
2728 run : |
2829 corepack enable
2930 yarn --version
3031
3132 name : Set up Node
32- uses : actions/setup-node@v6
33+ uses : actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
3334 with :
3435 node-version : ${{ env.NODE_VERSION }}
3536 -
3637 name : Initialize CodeQL
37- uses : github/codeql-action/init@v4
38+ uses : github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
3839 with :
3940 languages : javascript-typescript
4041 build-mode : none
4142 -
4243 name : Perform CodeQL Analysis
43- uses : github/codeql-action/analyze@v4
44+ uses : github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
4445 with :
4546 category : " /language:javascript-typescript"
Original file line number Diff line number Diff line change @@ -4,14 +4,14 @@ permissions:
44 contents : read
55
66on :
7- pull_request_target :
7+ pull_request_target : # zizmor: ignore[dangerous-triggers] safe to use without checkout
88 types :
99 - opened
1010 - reopened
1111
1212jobs :
1313 run :
14- uses : crazy-max/.github/.github/workflows/pr-assign-author.yml@20ef82212dc54bab5749f5e05576ca6d3c8a5773 # v1.1 .0
14+ uses : crazy-max/.github/.github/workflows/pr-assign-author.yml@bb328ea508cd6a89d0865555ddbeb148e5724aed # v1.3 .0
1515 permissions :
1616 contents : read
1717 pull-requests : write
Original file line number Diff line number Diff line change 11name : publish
22
3+ permissions :
4+ contents : read
5+
6+ concurrency :
7+ group : ${{ github.workflow }}-${{ github.ref }}
8+ cancel-in-progress : true
9+
310on :
411 release :
512 types :
1522 steps :
1623 -
1724 name : Checkout
18- uses : actions/checkout@v6
25+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
1926 -
2027 name : Publish
21- uses : actions/publish-immutable-action@v0.0.4
28+ uses : actions/publish-immutable-action@4bc8754ffc40f27910afb20287dbbbb675a4e978 # v0.0.4
Original file line number Diff line number Diff line change 11name : test
22
3+ permissions :
4+ contents : read
5+
36concurrency :
47 group : ${{ github.workflow }}-${{ github.ref }}
58 cancel-in-progress : true
69
710on :
8- workflow_dispatch :
911 push :
1012 branches :
1113 - ' main'
1214 - ' releases/v*'
1315 pull_request :
1416
15- env :
16- SETUP_BUILDX_VERSION : " edge"
17-
1817jobs :
1918 test :
2019 runs-on : ubuntu-latest
2120 steps :
2221 -
2322 name : Checkout
24- uses : actions/checkout@v6
25- -
26- name : Set up Docker Buildx
27- uses : docker/setup-buildx-action@v4
28- with :
29- version : ${{ env.SETUP_BUILDX_VERSION }}
30- driver : docker
23+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
3124 -
3225 name : Test
33- uses : docker/bake-action@v7
26+ uses : docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
3427 with :
3528 source : .
3629 targets : test
3730 -
3831 name : Upload coverage
39- uses : codecov/codecov-action@v5
32+ uses : codecov/codecov-action@75cd11691c0faa626561e295848008c8a7dddffe # v5.5.4
4033 with :
4134 files : ./coverage/clover.xml
4235 token : ${{ secrets.CODECOV_TOKEN }}
Original file line number Diff line number Diff line change 11name : update-dist
22
3+ permissions :
4+ contents : read
5+
6+ concurrency :
7+ group : ${{ github.workflow }}-${{ github.ref }}
8+ cancel-in-progress : true
9+
310on :
411 pull_request :
512 types :
815
916jobs :
1017 update-dist :
11- if : github.actor == 'dependabot[bot]'
18+ if : github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == github.event.pull_request.head.repo.full_name
1219 runs-on : ubuntu-latest
1320 steps :
1421 -
1522 name : GitHub auth token from GitHub App
1623 id : docker-read-app
17- uses : actions/create-github-app-token@v3
24+ uses : actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0
1825 with :
1926 app-id : ${{ secrets.GHACTIONS_REPO_WRITE_APP_ID }}
2027 private-key : ${{ secrets.GHACTIONS_REPO_WRITE_APP_PRIVATE_KEY }}
2128 owner : docker
2229 -
2330 name : Checkout
24- uses : actions/checkout@v6
31+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2532 with :
2633 ref : ${{ github.event.pull_request.head.ref }}
2734 fetch-depth : 0
28- token : ${{ steps.docker-read-app.outputs.token || github.token }}
35+ token : ${{ steps.docker-read-app.outputs.token }}
2936 -
3037 name : Build
31- uses : docker/bake-action@v7
38+ uses : docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
3239 with :
3340 source : .
3441 targets : build
Original file line number Diff line number Diff line change 11name : validate
22
3+ permissions :
4+ contents : read
5+
36concurrency :
47 group : ${{ github.workflow }}-${{ github.ref }}
58 cancel-in-progress : true
69
710on :
8- workflow_dispatch :
911 push :
1012 branches :
1113 - ' main'
1214 - ' releases/v*'
1315 pull_request :
1416
15- env :
16- SETUP_BUILDX_VERSION : " edge"
17-
1817jobs :
1918 prepare :
2019 runs-on : ubuntu-latest
@@ -23,11 +22,11 @@ jobs:
2322 steps :
2423 -
2524 name : Checkout
26- uses : actions/checkout@v6
25+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2726 -
2827 name : Generate matrix
2928 id : generate
30- uses : docker/bake-action/subaction/matrix@v7
29+ uses : docker/bake-action/subaction/matrix@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
3130 with :
3231 target : validate
3332
4039 matrix :
4140 include : ${{ fromJson(needs.prepare.outputs.matrix) }}
4241 steps :
43- -
44- name : Set up Docker Buildx
45- uses : docker/setup-buildx-action@v4
46- with :
47- version : ${{ env.SETUP_BUILDX_VERSION }}
48- driver : docker
4942 -
5043 name : Validate
51- uses : docker/bake-action@v7
44+ uses : docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
5245 with :
5346 targets : ${{ matrix.target }}
You can’t perform that action at this time.
0 commit comments