Commit graph

84 commits

Author SHA1 Message Date
Andy Scherzinger
3dac8fb9ce
Merge pull request #2653 from nextcloud/dependabot/github_actions/actions/stale-7.0.0
Bump actions/stale from 6.0.1 to 7.0.0
2022-12-27 10:07:57 +01:00
dependabot[bot]
a221500ba3
Bump ossf/scorecard-action from 2.1.1 to 2.1.2
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](15c10fcf1c...e38b1902ae)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-26 23:03:16 +00:00
dependabot[bot]
2158bae4e7
Bump actions/stale from 6.0.1 to 7.0.0
Bumps [actions/stale](https://github.com/actions/stale) from 6.0.1 to 7.0.0.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](5ebf00ea0e...6f05e4244c)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-26 23:03:13 +00:00
Andy Scherzinger
536a9bdf36
Merge pull request #2641 from nextcloud/dependabot/github_actions/cirrus-actions/rebase-1.8
Bump cirrus-actions/rebase from 1.7 to 1.8
2022-12-20 08:48:12 +01:00
dependabot[bot]
6c017f90a9
Bump ossf/scorecard-action from 2.0.6 to 2.1.1
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.6 to 2.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](99c53751e0...15c10fcf1c)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-19 23:04:33 +00:00
dependabot[bot]
384940817d
Bump cirrus-actions/rebase from 1.7 to 1.8
Bumps [cirrus-actions/rebase](https://github.com/cirrus-actions/rebase) from 1.7 to 1.8.
- [Release notes](https://github.com/cirrus-actions/rebase/releases)
- [Commits](6e572f08c2...b87d48154a)

---
updated-dependencies:
- dependency-name: cirrus-actions/rebase
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-19 23:04:27 +00:00
Álvaro Brey
9d341c2c19
Pin remaining vactions
Signed-off-by: Álvaro Brey <alvaro.brey@nextcloud.com>
2022-12-16 15:13:55 +01:00
Andy Scherzinger
0f89f5f477
add hashes to github action versions
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-12-16 15:01:10 +01:00
nextcloud-android-bot
b8bf158e56 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-12-16 09:37:19 +00:00
nextcloud-android-bot
9efb114abd 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-12-14 13:50:00 +00:00
Andy Scherzinger
29ea96c539
Merge pull request #2526 from nextcloud/dependabot/github_actions/ossf/scorecard-action-2.0.6
Bump ossf/scorecard-action from 2.0.4 to 2.0.6
2022-10-25 09:38:02 +02:00
Andy Scherzinger
a1669eebdb
Update scorecards.yml
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-10-25 09:37:46 +02:00
dependabot[bot]
f1e1244871
Bump hmarr/auto-approve-action from 3.0.0 to 3.1.0
Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/v3.0.0...v3.1.0)

---
updated-dependencies:
- dependency-name: hmarr/auto-approve-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-24 23:13:30 +00:00
dependabot[bot]
303e5f8bcf
Bump ossf/scorecard-action from 2.0.4 to 2.0.6
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](e363bfca00...99c53751e0)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-24 23:13:27 +00:00
dependabot[bot]
b7e19b8a82
Bump hmarr/auto-approve-action from 2.4.0 to 3.0.0
Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from 2.4.0 to 3.0.0.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/v2.4.0...v3.0.0)

---
updated-dependencies:
- dependency-name: hmarr/auto-approve-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-17 23:16:12 +00:00
Andy Scherzinger
9fdc1c2a6e
Add new analysis action
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-10-10 17:03:47 +02:00
Andy Scherzinger
957d5f91d4
Merge pull request #2459 from nextcloud/dependabot/github_actions/actions/setup-java-3
Bump actions/setup-java from 2 to 3
2022-10-04 10:27:43 +02:00
Andy Scherzinger
9984b0d7d9
add version number update in comment
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-10-04 10:26:19 +02:00
dependabot[bot]
078261a947
Bump actions/setup-java from 2 to 3
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 2 to 3.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 23:31:02 +00:00
dependabot[bot]
8d26e98155
Bump ossf/scorecard-action from 2.0.3 to 2.0.4
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](865b409285...e363bfca00)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 23:30:58 +00:00
dependabot[bot]
b992fe93ca
Bump actions/stale from 5 to 6
Bumps [actions/stale](https://github.com/actions/stale) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-26 23:23:30 +00:00
Andy Scherzinger
a2881ee4bb
update version comment
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-09-13 09:37:15 +02:00
dependabot[bot]
deea68f060
Bump ossf/scorecard-action from 1.1.2 to 2.0.3
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ce330fde6b...865b409285)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-12 23:17:12 +00:00
dependabot[bot]
00fc7c9fe9
Bump hmarr/auto-approve-action from 2.2.1 to 2.4.0
Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from 2.2.1 to 2.4.0.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/v2.2.1...v2.4.0)

---
updated-dependencies:
- dependency-name: hmarr/auto-approve-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-22 23:36:23 +00:00
nextcloud-android-bot
5e8388f636 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-07-21 11:57:15 +00:00
Andy Scherzinger
b958a735fd
correct version comment
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2022-07-05 08:56:01 +02:00
dependabot[bot]
de8a2c6189
Bump ossf/scorecard-action from 1.1.1 to 1.1.2
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](3e15ea8318...ce330fde6b)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-07-04 23:21:05 +00:00
nextcloud-android-bot
67f1411b13 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-07-01 07:06:42 +00:00
nextcloud-android-bot
c4adbf25f9 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-06-30 07:42:56 +00:00
nextcloud-android-bot
c4e29366ff 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-06-28 08:19:33 +00:00
nextcloud-android-bot
12e6862ccd 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-06-17 10:53:15 +00:00
nextcloud-android-bot
99a0002da8 🔄 Synced local '.github/workflows/' with remote 'config/workflows/'
Signed-off-by: nextcloud-android-bot <android@nextcloud.com>
2022-06-13 11:42:51 +00:00
Nextcloud bot
cd68ddb0ed Updating command-rebase.yml workflow from template
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-06-11 15:42:34 +00:00
Tobias Kaminsky
3c402cd381
Update .github/workflows/codeql.yml
Co-authored-by: Álvaro Brey <alvaro.brey@nextcloud.com>
Signed-off-by: tobiasKaminsky <tobias@kaminsky.me>
2022-06-09 13:23:31 +02:00
Tobias Kaminsky
b7a464713f
Create codeql.yml 2022-06-09 10:47:55 +02:00
Andy Scherzinger
52b157d454
Merge pull request #2130 from nextcloud/dependabot/github_actions/github/codeql-action-2.1.12
Bump github/codeql-action from 2.1.11 to 2.1.12
2022-06-07 10:00:39 +02:00
dependabot[bot]
e4d691312d
Bump github/codeql-action from 2.1.11 to 2.1.12
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.11 to 2.1.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](a3a6c128d7...27ea8f8fe5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-06 23:18:28 +00:00
dependabot[bot]
778ed017ec
Bump ossf/scorecard-action from 1.1.0 to 1.1.1
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](5c8bc69dc8...3e15ea8318)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-06 23:18:23 +00:00
dependabot[bot]
947c9d357f
Bump ossf/scorecard-action from 1.0.4 to 1.1.0
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.0.4 to 1.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](c1aec4ac82...5c8bc69dc8)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-30 23:28:30 +00:00
dependabot[bot]
fa142ba4e9
Bump github/codeql-action from 2.1.10 to 2.1.11
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.10 to 2.1.11.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2f58583a1b...a3a6c128d7)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-23 23:23:58 +00:00
Álvaro Brey
ba4f47309a
workflows: use java 11
Signed-off-by: Álvaro Brey <alvaro.brey@nextcloud.com>
2022-05-18 17:20:36 +02:00
Andy Scherzinger
8aa0a105b4
Merge pull request #2057 from nextcloud/dependabot/github_actions/github/codeql-action-2.1.10
Bump github/codeql-action from 2.1.9 to 2.1.10
2022-05-17 09:47:43 +02:00
dependabot[bot]
4a6ef05502
Bump github/codeql-action from 2.1.9 to 2.1.10
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.9 to 2.1.10.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](7502d6e991...2f58583a1b)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-16 23:19:46 +00:00
dependabot[bot]
858c26ed69
Bump cirrus-actions/rebase from 1.6 to 1.7
Bumps [cirrus-actions/rebase](https://github.com/cirrus-actions/rebase) from 1.6 to 1.7.
- [Release notes](https://github.com/cirrus-actions/rebase/releases)
- [Commits](https://github.com/cirrus-actions/rebase/compare/1.6...1.7)

---
updated-dependencies:
- dependency-name: cirrus-actions/rebase
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-16 23:19:41 +00:00
Nextcloud bot
5b84d9eacd Updating command-rebase.yml workflow from template
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-05-13 18:49:21 +00:00
Andy Scherzinger
eb57411bbd
Merge pull request #1962 from nextcloud/dependabot/github_actions/cirrus-actions/rebase-1.6
Bump cirrus-actions/rebase from 1.5 to 1.6
2022-05-03 09:30:03 +02:00
dependabot[bot]
14e391bd34
Bump cirrus-actions/rebase from 1.5 to 1.6
Bumps [cirrus-actions/rebase](https://github.com/cirrus-actions/rebase) from 1.5 to 1.6.
- [Release notes](https://github.com/cirrus-actions/rebase/releases)
- [Commits](https://github.com/cirrus-actions/rebase/compare/1.5...1.6)

---
updated-dependencies:
- dependency-name: cirrus-actions/rebase
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-02 23:12:59 +00:00
dependabot[bot]
60a63f68da
Bump github/codeql-action from 2.1.8 to 2.1.9
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.8 to 2.1.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](1ed1437484...7502d6e991)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-02 23:12:56 +00:00
Nextcloud bot
cee28c6f43 Updating command-rebase.yml workflow from template
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-04-26 16:08:30 +00:00
dependabot[bot]
f6af743db5
Bump github/codeql-action from 1.0.26 to 2.1.8
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.26 to 2.1.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5f53256358...1ed1437484)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-24 20:06:28 +00:00