aboutsummaryrefslogtreecommitdiffstats
path: root/.github/workflows/build-extra.yml
Commit message (Collapse)AuthorAge
* build: move syntax files to contrib/syntax/filesLibravatar Kelvin M. Klann2023-01-27
| | | | | | | | | | | | | | | | | | | | | | | | | | Having all of syntax files in the same directory makes it easier to reference all of them at once on a makefile (such as with `contrib/syntax/files/*.in`). Also, this makes the path to the gtksourceview language-spec shorter. Current path/new path: * contrib/gtksourceview-5/language-specs/firejail-profile.lang * contrib/syntax/files/firejail-profile.lang Currently, adding a rule to the root Makefile to generate the language-spec in the same directory as an input file would take at least 95 characters (with only a single dependency): contrib/gtksourceview-5/language-specs/%.lang: contrib/gtksourceview-5/language-specs/%.lang.in With this commit, the above shortened to 59 characters: contrib/syntax/files/%.lang: contrib/syntax/files/%.lang.in Which should make it more readable. Relates to #2679 #5502.
* ci: sort items on paths-ignore listsLibravatar Kelvin M. Klann2023-01-27
| | | | | See commit 9bf5e453c ("ci: sort items on paths-ignore lists", 2022-07-12) / PR #5481.
* build(deps): bump step-security/harden-runner from 2.0.0 to 2.1.0Libravatar dependabot[bot]2023-01-17
| | | | | | | | | | | | | | Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/ebacdc22ef6c2cfb85ee5ded8f2e640f4c776dd5...18bf8ad2ca49c14cbb28b91346d626ccfb00c518) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump actions/checkout from 3.2.0 to 3.3.0Libravatar dependabot[bot]2023-01-09
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.3.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/755da8c3cf115ac066823e79a1e1788f8940201b...ac593985615ec2ede58e132d2e21d2b1cbd6127c) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump actions/checkout from 3.1.0 to 3.2.0Libravatar dependabot[bot]2022-12-19
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.1.0 to 3.2.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8...755da8c3cf115ac066823e79a1e1788f8940201b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Add basic gtksourceview language-spec (#5502)Libravatar rusty-snake2022-12-04
| | | | | | | Tested with org.gnome.TextEditor. The gtksourceview language-spec hasn't changed between gtksourceview 3, 4 and 5 AFAIK so it should also work on older systems if you copy/link the file in the right places.
* ci: ignore profile-checks.yml on other workflowsLibravatar Kelvin M. Klann2022-11-28
| | | | | | | | | | To avoid running CI unnecessarily. Misc: I noticed this on commit a42c1de0b ("profile-checks.yml: sort paths-ignore", 2022-11-27). See also commit 768410cf5 ("Run profile-ckeck on workflow edits", 2022-11-27). Relates to #5481.
* Workflows: Change egress-policy to block (#5485)Libravatar rusty-snake2022-11-27
|
* ci: ignore man/vim paths in build-extra/codeql workflowsLibravatar Kelvin M. Klann2022-11-24
| | | | | | | | | | | | | | | | | | Ignore the following paths: - 'contrib/vim/**' - 'src/man/*.txt' To avoid running CI unnecessarily. Note: build-extra essentially only builds with clang and runs linters on the C code, so changes to the man pages and vim files should not affect the result. Do not ignore them on .github/workflows/build.yml because they are part of DISTFILES (see the root Makefile). Misc: I noticed this on #5296 (man pages).
* ci: ignore codeql workflow file in other workflowsLibravatar Kelvin M. Klann2022-11-24
| | | | | | | | | | | | | | Ensure that the following file is ignored everywhere, except on its own workflow: - .github/workflows/codeql-analysis.yml To avoid running CI unnecessarily. This should also make the CI checks finish faster on most PRs opened by dependabot, as they're often only about bumping the version of codeql-action and are opened about once a week (see .github/dependabot.yml).
* ci: ignore dependabot and gitlab-ci in all workflowsLibravatar Kelvin M. Klann2022-11-24
| | | | | | | | | Ensure that the following files are ignored everywhere: - .github/dependabot.yml - .gitlab-ci.yml To avoid running CI unnecessarily.
* ci: sort items on paths-ignore listsLibravatar Kelvin M. Klann2022-11-24
| | | | | | | | | | | | | Leave quotes only on paths with wildcards so that they are sorted before normal paths, then sort everything. Note that in the current workflow files, ignored directories always use wildcards, so this also ensures that ignored directories (along with all other paths with wildcards) are always listed before ignored files (similarly to `--group-directories-first` in GNU `ls`). This order is similar to the one on .github/workflows/profile-checks.yml.
* build(deps): bump step-security/harden-runner from 1.5.0 to 2.0.0dependabot/github_actions/step-security/harden-runner-2.0.0Libravatar dependabot[bot]2022-11-14
| | | | | | | | | | | | | | Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 1.5.0 to 2.0.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/2e205a28d0e1da00c5f53b161f4067b052c61f34...ebacdc22ef6c2cfb85ee5ded8f2e640f4c776dd5) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* [StepSecurity] ci: Harden GitHub ActionsLibravatar StepSecurity Bot2022-10-31
| | | Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
* build(deps): bump actions/checkout from 3.0.2 to 3.1.0Libravatar dependabot[bot]2022-10-10
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.2 to 3.1.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/2541b1294d2704b0964813337f33b291d3f8596b...93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Merge pull request #5249 from kmk3/ci-ignore-git-pathsLibravatar smitsohu2022-07-31
|\ | | | | ci: ignore git-related paths and the project license
| * ci: ignore git-related paths and the project licenseLibravatar Kelvin M. Klann2022-07-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add the following paths to the ignore lists: - .git-blame-ignore-revs - .gitignore - COPYING To avoid running CI unnecessarily. Commands used to show only the root files: $ git ls-files | grep -v / Misc: I noticed the missing paths on #5248.
* | CI: keep old cppcheck job and ignore two files in new job that take too long ↵Libravatar Reiner Herrmann2022-07-30
| | | | | | | | to check
* | CI: bump ubuntu to 22.04 and use newer compilers / analyzersLibravatar Reiner Herrmann2022-07-30
| |
* | CI: build all jobs with apparmor / selinux to cover more codeLibravatar Reiner Herrmann2022-07-30
|/
* ci: run firejail --version after build/installLibravatar Kelvin M. Klann2022-05-17
| | | | | To ensure that the resulting program actually runs and also to show which compile-time features it supports.
* build(deps): bump actions/checkout from 3.0.1 to 3.0.2Libravatar dependabot[bot]2022-04-25
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/dcd71f646680f2efd8db4afa5ad64fdcba30e748...2541b1294d2704b0964813337f33b291d3f8596b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* build(deps): bump actions/checkout from 3.0.0 to 3.0.1Libravatar dependabot[bot]2022-04-18
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/a12a3943b4bdde767164f792f33f40b04645d846...dcd71f646680f2efd8db4afa5ad64fdcba30e748) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump actions/checkout from 2.4.0 to 3Libravatar dependabot[bot]2022-03-08
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/ec3a7ce113134d7a93b817d10a8272cb61118579...a12a3943b4bdde767164f792f33f40b04645d846) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
* CI: pin GitHub actions to SHAsLibravatar Topi Miettinen2021-12-26
| | | | | | Pinning actions to SHAs instead of versions improves the supply chain security: https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
* CI: build with clang 11 (#4277)Libravatar Reiner Herrmann2021-05-14
|
* Add some more paths-ignore to build-extra.ymlLibravatar rusty-snake2021-04-24
|
* Remove skip ci if conndition from workflowsLibravatar rusty-snake2021-02-09
| | | | | GitHub added native support for it, no need for this anymore. https://github.blog/changelog/2021-02-08-github-actions-skip-pull-request-and-push-workflows-with-skip-ci/
* Housekeeping: strip extra whitespaceLibravatar Fred Barclay2021-02-08
| | | | | Just `find . -not \( -name .git -prune -o -name *.AppImage -prune \) -type f -print0 | xargs -0 perl -pi -e 's/ +$//'` and filter to avoid unwanted changes (especially .md files)
* Update build.yml (#3779)Libravatar rusty-snake2020-11-29
* Update build.yml Currently we run all actions for all commits. This is not resource friendly. Let's tweak this a bit. This commit adds support for "skip ci" tags (i.e. if the head commit contains [s k i p c i] (w/o the extra spaces used to escape here), no jobs are executed. In addition are all commits which modify non-code files (e.g. README) only excluded. Furthermore we should not run cppcheck and scan-build if only profiles are changed and sort.py need only to be execute if profiles are changed. * Create sort.yml * Update build.yml profile-sort is now in sort.yml * Update sort.yml fix syntax * Update codeql-analysis.yml paths-ignore: - CONTRIBUTING.md - README - README.md - RELNOTES - SECURITY.md - 'etc/**' * Create build-extra.yml * Update build.yml * Update build-extra.yml
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-02 21:20:11 +0000