1
0
mirror of https://github.com/bitwarden/server.git synced 2024-11-22 12:15:36 +01:00
Commit Graph

311 Commits

Author SHA1 Message Date
MtnBurrit0
724f2ee5e5
Secure inputs (#4927) 2024-10-22 10:29:57 -06:00
MtnBurrit0
bf976706f7
Manage ephemeral configs (#4926)
* Add ephemeral-environment label and cleanup workflow call

* Update workflow call to main

* switch to process.env
2024-10-22 10:24:25 -06:00
Opeyemi
c809794642
[BRE-372] - Clean up document start (#4915) 2024-10-21 13:11:59 +01:00
AJ
1fb366d42b
Replace github.ref with GITHUB_REF in build.yml scripts (#4857)
Data should be separated from code where possible to avoid injection (CWE-78).

* https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#understanding-the-risk-of-script-injections
* https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/store-information-in-variables#default-environment-variables
2024-10-17 11:50:31 -04:00
renovate[bot]
245e2e4d52
[deps] DevOps: Update gh minor (#4885)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-17 10:42:44 -04:00
renovate[bot]
8e62e9eb38
[deps] DevOps: Update anchore/scan-action action to v5 (#4892)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-17 10:42:26 -04:00
Vince Grassia
7408f3ee02
BRE-344 - Create Repository Management workflow (#4863) 2024-10-15 11:02:53 -04:00
MtnBurrit0
96f58dc309
BRE-349: Call _update_ephemeral_tags workflow (#4850)
* Kick off ephemeral environment updates

* Fix missing ,

* Switch to head_ref

* Update to `main`
2024-10-10 09:49:04 -06:00
Vince Grassia
9cb99298fc
Remove container-registry-purge workflow (#4843) 2024-10-02 15:09:17 +00:00
Alexey Zilber
2915c10bd2
Latest tag doesn't exist anymore, defaulting to 180d (#4841) 2024-10-02 10:16:03 +01:00
renovate[bot]
793ef3aab8
[deps] DevOps: Update gh minor (#4828)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-30 11:36:51 +02:00
renovate[bot]
3381bca608
[deps] DevOps: Update gh minor (#4780)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-24 11:31:57 -04:00
Vince Grassia
c0be813a3b
Update output to use proper variable name (#4788) 2024-09-18 09:12:46 -06:00
Opeyemi
3824f0f821
[BRE-246] - Use GH App for Auto PR (#4762)
* Use GH-App for rc-cut workflow

* Test

* update version
2024-09-16 16:26:15 +01:00
Justin Baur
3f1127489d
Print DB Logs (#4754)
* Print DB Logs

* Fake Fail Test

* Remove Test Stuff

* Prefer Long-Hand Options

* Remove Test Failure

* Print deadlocks
2024-09-10 13:22:37 -04:00
Alex Urbina
d71916aee5
BRE-141 Refactor Release workflow to split deploy/publish steps in a separate publish workflow (#4731)
* BRE-141 REFACTOR: Release workflow to split deploy/publish steps in a separate publish workflow

* BRE-141 ADD: update-deployment job in publish workflow
2024-09-05 08:19:56 -06:00
renovate[bot]
8891540972
[deps] DevOps: Update gh minor (#4723)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-04 09:44:19 -04:00
Justin Baur
35f59daceb
Add Pending Model Checks (#4629)
* Add Pending Model Checks

* Update This File Reference

* Don't Use Title Case

* Include ConnectionString

* Remove --connection arg

* Add Fake Model Change

* Remove Fake Change
2024-08-27 07:32:32 -04:00
renovate[bot]
8ad74ce5b1
[deps] DevOps: Update gh minor (#4652)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:52 -04:00
renovate[bot]
6dec1c6e04
[deps] DevOps: Update GitHub Artifact Actions to v4 (#4664)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:35 -04:00
renovate[bot]
0753cc9172
[deps] DevOps: Update actions/github-script action to v7 (#4666)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:47:10 -04:00
renovate[bot]
ee8716859f
[deps] DevOps: Update actions/setup-dotnet action to v4 (#4667)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:46:30 -04:00
renovate[bot]
e677344d7e
[deps] DevOps: Update actions/setup-node action to v4 (#4668)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 16:46:11 -04:00
renovate[bot]
ac9a93450b
[deps] DevOps: Update actions/stale action to v9 (#4669)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:42:49 -04:00
renovate[bot]
7c50e4f2be
[deps] DevOps: Update docker/build-push-action action to v6 (#4670)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:41:49 -04:00
renovate[bot]
26d17a1e7e
[deps] DevOps: Update peter-evans/close-issue action to v3 (#4672)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-26 11:41:33 -04:00
Daniel García
1a584b4477
[PM-9361] Generate Swagger specs in CI for the SDK (#4428)
Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
2024-08-20 15:34:22 +02:00
Matt Bishop
1944c853e7
Move cancelled check inside braces (#4627) 2024-08-13 14:03:13 -04:00
renovate[bot]
eaa386f3da
[deps] DevOps: Update gh minor (#4585)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-13 13:33:53 -04:00
Matt Bishop
71d5f53be5
Use not cancelled vs always (#4626) 2024-08-13 13:31:27 -04:00
Matt Bishop
0dae02df23
Test for secrets before performing restricted actions (#4625)
* Test for secrets before performing restricted actions

* Go back to always
2024-08-13 12:56:47 -04:00
Matt Bishop
5084ccc328
Check for secrets for a couple remaining workflows using them (#4621) 2024-08-13 08:24:15 -04:00
renovate[bot]
31412db1a9
[deps] DevOps: Update anchore/scan-action action to v4 (#4606)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-08-08 16:12:22 -04:00
Vince Grassia
19dc7c339b
Remove reference to missing job (#4595) 2024-08-08 14:42:58 +01:00
renovate[bot]
45b99336da
[deps] DevOps: Update gh minor (#4539)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-07-22 17:10:28 -04:00
Vince Grassia
81477303e3
Clean up App Services references (#4518) 2024-07-19 10:48:55 +02:00
Matt Bishop
ad9f48b7be
Remove Sonar source and test path declarations (#4517) 2024-07-16 13:24:25 -04:00
Matt Bishop
4d210170bb
Explicitly specify Sonar source paths (#4516) 2024-07-16 12:01:12 -04:00
Matt Bishop
9960874d2d
Configure Sonar tests and sources (#4505) 2024-07-16 09:15:01 -04:00
Matt Bishop
3540c2bf87
Remove ineffective Sonar cache (#4496) 2024-07-11 09:41:00 -04:00
renovate[bot]
fa5da784e3
[deps] DevOps: Update launchdarkly/find-code-references-in-pull-request action to v2 (#4486)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-07-10 19:54:06 +00:00
renovate[bot]
2b38c49ff6
[deps] DevOps: Update gh minor (#3368)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-07-10 15:47:20 -04:00
Matt Bishop
53ca95d20e
Optimize Sonar scans (#4488)
* Optimize Sonar scans

* Cache
2024-07-10 13:08:28 -04:00
Vince Grassia
4f9c80e317
BRE-194 - Remove old App Services from workflows (#4482) 2024-07-09 15:24:25 +02:00
Alex Urbina
999245a28f
BRE-87 Add enable feature for upcoming release version Slack notifications (#4122)
* BRE-87 ADD: enable_slack_notification input to version-bump workflow

* BRE-87 TEST: Update version-bump workflow to use bitwarden/gh-actions/report-upcoming-release-version@task/BRE-87

* BRE-87 TEST: disable merge

* BRE-87 DEBUG: enable_slack_notification input to version-bump workflow

* BRE-87 TEST: Disable version PR creation and approval

* BRE-87 FIX: conditional statement in version-bump workflow

* Revert "BRE-87 TEST: Disable version PR creation and approval"

This reverts commit 59025ab5f6.

* Revert "BRE-87 TEST: disable merge"

This reverts commit 040bdb17bf.

* Revert "BRE-87 TEST: Update version-bump workflow to use bitwarden/gh-actions/report-upcoming-release-version@task/BRE-87"

This reverts commit 9e61d114c8.
2024-05-27 15:33:02 -06:00
Alex Urbina
b863454a4e
BRE-40 Add step to report upcoming release version to Slack (#4090)
* BRE-40 ADD: step to report upcoming release version to Slack

* BRE-40 ADD: AZURE_KV_CI_SERVICE_PRINCIPAL secret to version-bump.yml workflow
2024-05-21 16:54:07 +00:00
Alex Urbina
1ede40d5e1
DEVOPS-1901 Fix error: az login again to refresh permissions (#4050)
* DEVOPS-1901 REFACTOR: Remove the Docker image per registry

* DEVOPS-1901 REFACTOR: Docker image removal process in cleanup-after-pr.yml
2024-05-07 19:20:50 +00:00
Matt Bishop
6242c25393
Keep scan parameters as piped 2024-04-03 14:13:49 -04:00
Matt Bishop
a8ddb3af8e
Remove scan state filter entirely 2024-04-03 13:20:58 -04:00
Matt Bishop
9b24dfc160
Attempt without scan parameter piping 2024-04-03 10:46:03 -04:00