Commit Graph

116 Commits

Author SHA1 Message Date
Akhil Mohan
bcbfad632a
add new workflow for nightly image scan (#17818)
add trivy nightly scan for harbor images

- upload results to github security tab
- scan all dev images

Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
2022-11-25 11:54:16 +08:00
Yang Jiao
68d498f98d
Fix setup gcloud error (#17847)
ubuntu-latest was upgraded from ubuntu-20.04 to ubuntu-22.04, the python version of ubuntu-22.04 is 3.10, but gcloud does not support python 3.10, so ubuntu is fixed to version 20.04

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-11-24 15:46:58 +08:00
Orlix
ac338a2531
Add auto-assignee for new PRs (#17753)
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-11-16 10:38:54 +02:00
Wang Yan
dbd434e7bd
revise the gomod path (#17784)
revise the go mod path for dependency bot and remove the monitoring on tests.

Signed-off-by: Wang Yan <wangyan@vmware.com>

Signed-off-by: Wang Yan <wangyan@vmware.com>
2022-11-14 16:51:49 +08:00
MinerYang
f20a2e433f
bump up golang to 1.19.3 (#17751)
Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-11-04 16:17:11 +08:00
Orlix
2eac7c1bea
Fix wording in harbor issue template (#17749)
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-11-04 08:22:17 +08:00
dependabot[bot]
f359d49ebd
Bump mheap/github-action-required-labels from 1 to 2 (#17682)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-01 12:02:12 +02:00
MinerYang
6b8cdc03c1
bump up golang to 1.19.2 (#17694)
Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-10-26 20:28:19 +08:00
dependabot[bot]
2295c0ac60
Bump github/codeql-action from 1 to 2 (#17639)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 21:12:45 +08:00
dependabot[bot]
b1c1c16fa5
Bump actions/setup-node from 1 to 3 (#17641)
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 1 to 3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...v3)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 21:12:03 +08:00
dependabot[bot]
0696d7c6e7
Bump docker-practice/actions-setup-docker from 0.0.1 to 1.0.11 (#17661)
Bumps [docker-practice/actions-setup-docker](https://github.com/docker-practice/actions-setup-docker) from 0.0.1 to 1.0.11.
- [Release notes](https://github.com/docker-practice/actions-setup-docker/releases)
- [Changelog](https://github.com/docker-practice/actions-setup-docker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/docker-practice/actions-setup-docker/compare/0.0.1...1.0.11)

---
updated-dependencies:
- dependency-name: docker-practice/actions-setup-docker
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 16:36:02 +08:00
dependabot[bot]
321c19b40f
Bump actions/checkout from 2 to 3 (#17660)
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 16:35:32 +08:00
Orlix
180bcd1bf1
Add labeling for dependa bot PRs (#17662)
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-10-20 09:16:24 +03:00
dependabot[bot]
65a8649d49
Bump codecov/codecov-action from 1 to 3 (#17640)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-18 15:32:15 +03:00
dependabot[bot]
9663bf9f03
Bump actions/stale from 5.0.0 to 6.0.1 (#17638)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-18 15:31:11 +03:00
Orlix
159169227b
Add dependabot.yaml to enable PRs (#17620)
We need dependabot enabled to get higher score on the OSSF scorecard
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
and here https://clomonitor.io/projects/cncf/harbor

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-10-10 16:52:07 +08:00
MinerYang
83bc24f6c1
Bump up golang version to v1.19 (#17588)
Signed-off-by: yminer <yminer@vmware.com>

update
2022-09-22 17:38:26 +08:00
MinerYang
0fbff49eb0
bumpup golang to v1.18.5 (#17307)
Signed-off-by: yminer <yminer@vmware.com>
2022-08-03 17:44:03 +08:00
MinerYang
bd1d441b01
bumpup golang version to v1.18.4 (#17257)
Signed-off-by: yminer <yminer@vmware.com>
2022-07-29 09:43:01 +08:00
Orlix
ba0637f562
Tune stale action (#17146)
Tube stale action

- 60 days grace period for stale
- exclude issues and PR with labels : never-stale, kind/requirement

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-07-08 23:11:42 +02:00
Orlix
d88630848a
Making stale bot a bit more active (#17115)
- reducing the stale ime to 30 days
- adding operations-per-run to 1000 so we can clean a bit more

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-07-05 09:31:57 +08:00
Yang Jiao
1ac2c10f63
Modify Build Package Workflow trigger condition (#17106)
No need to build package when push tag

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-07-01 01:59:56 +08:00
Yang Jiao
7256e0bc8a
Update publish release workflow dockerhub account (#17066)
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-06-24 14:30:59 +08:00
MinerYang
b8a71ac348
bump up golang version to v1.18.3 (#16957)
Signed-off-by: yminer <yminer@vmware.com>

update ci/ut_install.sh

Signed-off-by: yminer <yminer@vmware.com>
2022-06-08 17:56:14 +08:00
Yang Jiao
853e3d5fff
Add Publish Release workflow (#16956)
When release, this workflow will be triggered to complete subsequent work.
1 Push harbor images to dockerhub.
2 Upload asset to release.
3 Generate release notes using the .github/release.yml template.

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-06-07 16:04:13 +08:00
Wang Yan
98c52e4478
enable default to build bin (#16763)
Change the default behavrior of building binaries for all the third parties to true.

Signed-off-by: Wang Yan <wangyan@vmware.com>
2022-04-28 17:13:41 +08:00
Orlix
030c61059e
Merge pull request #16634 from OrlinVasilev/auto-release-notes
Add release.yml to automate release notes #16633
2022-04-27 13:21:41 +03:00
OrlinVasilev
27463f4ef4 Add release.yml to automate release notes #16633
Use github autogeneration release notes and add action to check if the PR has labels

Complete and more readable relase notes
https://docs.github.com/en/repositories/releasing-projects-on-github/automatically-generated-release-notes
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
2022-04-27 10:48:31 +03:00
OrlinVasilev
4f34ef5bed Replace stale.yaml with stale GH Actions
stale.yaml not supported anymore!
https://github.com/marketplace/actions/close-stale-issues

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
2022-04-13 15:32:54 +03:00
OrlinVasilev
01cc046459 Add new template file for PRs
Current file is not correct and it's not applied

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
2022-04-12 22:56:10 +03:00
Yang Jiao
c3e912cb80 Modify setup-gcloud from master to v0
Adjust it because upstream made it, For more information, please see: https://github.com/google-github-actions/setup-gcloud/issues/539

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-23 06:20:23 +00:00
Yang Jiao
c947128849
Merge pull request #16148 from YangJiao0817/add-onlinepackage2gcs
Add online latest installer package
2022-03-10 14:36:58 +08:00
Shengwen Yu
4def5b9dd6 fix: conformance test
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2022-03-08 15:24:04 +08:00
MinerYang
74d2670616
bump up Go version to 1.17.7 (#16415)
Signed-off-by: yminer <yminer@vmmware.com>

update CONTRIBUTING.md 2.4 golang version to 1.17.7

Signed-off-by: yminer <yminer@vmmware.com>

Co-authored-by: yminer <yminer@vmmware.com>
2022-02-25 17:23:18 +08:00
yminer
9acf3d21ce bump up go version to v1.17.6
Signed-off-by: yminer <yminer@vmmware.com>
2022-01-17 17:45:22 +00:00
Yang Jiao
ecdf6b8a4e Add online latest installer package
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2021-12-24 11:19:48 +08:00
Yang Jiao
eff2ff03aa modify build-package branch master to main
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2021-12-07 14:59:48 +08:00
Wang Yan
a956758302
bump up go version to v1.17 (#15865)
* bump up go version to v1.17

Signed-off-by: Wang Yan <wangyan@vmware.com>

* gofmt fail

Signed-off-by: Wang Yan <wangyan@vmware.com>
2021-10-25 17:28:29 +08:00
Wang Yan
dbcbc8bad0
bump up go to v1.16.7 (#15564)
Signed-off-by: Wang Yan <wangyan@vmware.com>
2021-09-09 17:58:00 +08:00
danfengliu
4789c65e15 Modify GCP repo in build package workflow
Signed-off-by: danfengliu <danfengl@vmware.com>
2021-07-26 21:24:05 +08:00
danfengliu
a60bc14178
Merge pull request #15260 from danfengliu/add-dummy-file-as-controller-for-build-base
Add trigger file for building base
2021-07-16 09:40:22 +08:00
danfengliu
14ff3b2ca4 Add trigger file for building base
If build base images is needed in a unexpected situation, build base images action will be triggered by making a modification of .buildbaselog.

Signed-off-by: danfengliu <danfengl@vmware.com>
2021-07-15 17:22:37 +08:00
Wang Yan
494d74d32d
bump up go version to 1.16 (#15286)
Signed-off-by: Wang Yan <wangyan@vmware.com>
2021-07-08 16:25:15 +08:00
孙世军
0464305bcc
Bump up UI version to v2.4.0 (#15174)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2021-06-23 16:27:40 +08:00
Will Sun
410c5bcd78
Undate Angular to the latest version (#15129)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2021-06-16 16:39:10 +08:00
danfengliu
d66ea07c2f Refind build base process in Makefile
Remove build base executable in Makefile by replacing it as an input parameter.
Add add more input parameters for controlling docker pull/push to make
build base process flexible for users.

Signed-off-by: danfengliu <danfengl@vmware.com>
2021-06-03 14:48:34 +08:00
danfengliu
344e51d2c6 Fix build base workflow issues
Signed-off-by: danfengliu <danfengl@vmware.com>
2021-05-25 18:13:15 +08:00
danfengliu
3ef4dc17fc Fix notary trust directory issue and add login for each base image in makefile
1. Use root instead of ~ in notary parameter;
2. Fix tag immutability issue caused by GUI change;
3. Replace email domain name to harbor test;
4. Add login for each base image in makefile;
5. Add customize look test in nightly.

Signed-off-by: danfengliu <danfengl@vmware.com>
2021-05-20 18:23:13 +08:00
Daniel Jiang
6ebcc95582 Fix docker version in CI.yml
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2021-05-18 15:29:44 +08:00
Wang Yan
0fb520a33b bump up go to v1.15.12
Signed-off-by: Wang Yan <wangyan@vmware.com>
2021-05-14 15:36:23 +08:00