dependabot[bot]
c31b0f7614
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/setup-python](https://github.com/actions/setup-python ).
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-12-06 15:39:57 +00:00
dependabot[bot]
2786d50bd3
github: bump the github-dependencies group with 2 updates
...
Bumps the github-dependencies group with 2 updates: [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action ) and [DeterminateSystems/magic-nix-cache-action](https://github.com/determinatesystems/magic-nix-cache-action ).
Updates `DeterminateSystems/nix-installer-action` from 8 to 9
- [Release notes](https://github.com/determinatesystems/nix-installer-action/releases )
- [Commits](07b8bcba1b...cd46bde16ahttps://github.com/determinatesystems/magic-nix-cache-action/releases )
- [Commits](a04e6275a6...1402a2dd8f
2023-12-05 10:40:23 -08:00
dependabot[bot]
5642b437c5
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action ).
- [Release notes](https://github.com/determinatesystems/nix-installer-action/releases )
- [Commits](5620eb4af6...07b8bcba1b
2023-11-22 16:57:16 +00:00
dependabot[bot]
7d9223d734
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action ).
- [Release notes](https://github.com/determinatesystems/nix-installer-action/releases )
- [Commits](bc7b192574...5620eb4af6
2023-11-07 07:48:20 -08:00
Ilya Grigoriev
043f786fbf
website: Stop mike from always changing sitemaps.xml.gz
...
Originally, my motivation was to try again to get `mike` to not push empty
commits (which this should do). I'm now reconsidering this, since *not* pushing
empty commits will make the output of the CI job a little harder to read. If
this becomes an issue, I might even add `--allow-empty` to the `mike`
invocations later.
A more important motivation is that even for a 400-byte file, changing it for
every PR blows up the size of the repo eventually.
The cause for the changes to this file was that `gzip` stores a timestamp
inside the `.gz` file.
2023-11-06 17:10:27 -08:00
Ilya Grigoriev
61cb38a512
poetry: create a CI with Debian stable's version of poetry.
...
This is mainly for our own information. It doesn't have to be a required check.
2023-11-06 17:10:27 -08:00
Ilya Grigoriev
745f5b7f0e
poetry: Poetry 1.7 issues
...
1. Add --no-root to poetry invocations. Poetry 1.7 displays an error otherwise
(though things still work)
https://github.com/orgs/python-poetry/discussions/8622
https://github.com/python-poetry/poetry/issues/1132
2. Document https://github.com/python-poetry/poetry/issues/8623
2023-11-06 17:10:27 -08:00
Ilya Grigoriev
5fc649cbee
website: upgrade mike to version 2.0
...
https://github.com/jimporter/mike/releases/tag/v2.0.0
The main immediate advantage of this is that `mike` will stop pushing empty
commits.
Also, we can consider switching to using symlinks instead of redirects for
mapping the "latest" version to "v0.11.0". This would make
`https://martinvonz.github.io/jj/latest/ ` have the same content as
`https://martinvonz.github.io/jj/v0.11.0/ ` (until the next version is out), but
the user would see `latest` in the URL.
For now, I set an option to keep using redirects.
I did a bit of non-exhaustive testing; it seems to work.
2023-11-04 12:23:16 -07:00
dependabot[bot]
4f84c6b5d5
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/checkout](https://github.com/actions/checkout ).
- [Release notes](https://github.com/actions/checkout/releases )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-11-03 15:58:00 +00:00
Austin Seipp
c1b6f2c666
github: automatically update flake.lock every week
...
Summary: Keeping the flake.lock up to date and 'fresh' is nice for
all the same reasons that apply to things like Cargo, Poetry, etc.
Unfortunately, dependabot doesn't have support for Nix flakes. There is also
no mechanism to add 'out of band' updates through dependabot, at least not yet.
Instead, we use the `update-flake-lock` action from Determinate Systems, which
can paper over it for us.
This updates once a week on Sunday, which is pretty fine, I think.
A theoretical downside of this approach is that we can't group updates together
like dependabot does; but dependabot only groups 'related' updates together,
i.e. updates to Cargo dependencies. If it also detected updates for e.g. Poetry
or Nix, it would make separate PRs for those.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: I6f447deffc545da77fb320519abcf437
2023-11-03 10:34:16 -05:00
Austin Seipp
37d6e71f76
github: fix codespell skip syntax for directories
...
Summary: Codespell actually matches local files at the root of the repo with the
`./` prefix, so without it the `skip` field won't match. Fix this for `./target`
and `./.jj` directories.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: Ibeafd7e400ff3bca9187d62241296060
2023-11-02 15:37:26 -05:00
dependabot[bot]
0319b1c67f
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [ossf/scorecard-action](https://github.com/ossf/scorecard-action ).
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](483ef80eb9...0864cf1902
2023-10-24 16:13:15 +00:00
dependabot[bot]
ca702e3726
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/checkout](https://github.com/actions/checkout ).
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8ade135a41...b4ffde65f4
2023-10-18 08:53:05 -07:00
dependabot[bot]
ec1015943a
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action ).
- [Release notes](https://github.com/determinatesystems/nix-installer-action/releases )
- [Commits](07ebb8d274...bc7b192574
2023-10-13 12:00:57 -05:00
dependabot[bot]
24abbc1368
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [ossf/scorecard-action](https://github.com/ossf/scorecard-action ).
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](08b4669551...483ef80eb9
2023-10-09 09:18:35 -07:00
Austin Seipp
71a3045032
nix: merge (now redundant) flake check with normal build
...
Summary: Since 066032b6e6
2023-10-07 22:20:20 -07:00
dependabot[bot]
32a1ae6ec8
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action ).
- [Release notes](https://github.com/determinatesystems/nix-installer-action/releases )
- [Commits](65d7c888b2...07ebb8d274
2023-10-05 09:26:28 -07:00
dependabot[bot]
c0fbe6d238
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/magic-nix-cache-action](https://github.com/determinatesystems/magic-nix-cache-action ).
- [Release notes](https://github.com/determinatesystems/magic-nix-cache-action/releases )
- [Commits](749fc5bbc9...a04e6275a6
2023-10-03 09:01:59 -07:00
Ilya Grigoriev
dbbed2d2a5
docs: restore directory structure of the website
...
The `offline` plugin added to the MkDocs config in commit 772e2b856aec196https://martinvonz.github.io/jj/v0.9.0/revsets >
<https://martinvonz.github.io/jj/v0.9.0/revsets/ >
and <https://martinvonz.github.io/jj/v0.9.0/revsets.html > was invalid.
The situation described above should be restored by this commit.
**After** 772e2b8https://martinvonz.github.io/jj/v0.9.0/revsets >
<https://martinvonz.github.io/jj/v0.9.0/revsets.html > and
<https://martinvonz.github.io/jj/v0.9.0/revsets/ > was invalid.
This commit is likely to break the version switcher between v0.9.0 and newer
versions. The breakage would be minimized if this is merged shortly before a
release (but with enough time to test it out). Alternatively, I could try to
fix up the docs for that version.
We could also consciously decide to leave things as they are now.
The problem was noticed by @hooper, who noticed URLs in their browser history
that were no longer valid.
2023-10-02 20:40:23 -07:00
dependabot[bot]
58ef82b1c0
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action ).
- [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases )
- [Commits](a50c7d5f86...1e59595bed
2023-09-27 16:12:17 +00:00
dependabot[bot]
88129a3b5c
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/checkout](https://github.com/actions/checkout ).
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](3df4ab11eb...8ade135a41
2023-09-25 08:30:38 -07:00
dependabot[bot]
39c0f0d2d5
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ).
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](0e66bd3e6b...1482605bfc
2023-09-18 09:10:59 -07:00
Ilya Grigoriev
f31e66d663
github: rename jj-docs-bot to jj-docs[bot]
...
Perhaps this will stop Github from showing jj-docs-bot as a very active
contributor in https://github.com/martinvonz/jj/pulse . This would
probably fair, even though jj-docs-bot tries its best to be a good and
helpful bot.
Regardless, this seems to be the standard on Github which has
`dependabot[bot]` and `github-actions[bot]`.
2023-09-15 19:31:48 -07:00
dependabot[bot]
8660b39b4c
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/upload-artifact](https://github.com/actions/upload-artifact ).
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b7f8abb15...a8a3f3ad30
2023-09-07 15:48:44 +00:00
dependabot[bot]
d420ca06d0
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/checkout](https://github.com/actions/checkout ).
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...3df4ab11eba7bda6032a0b82a6bb43b11571feac )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: github-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-04 13:39:04 -07:00
Ilya Grigoriev
772e2b8be6
GitHub release action: publish HTML docs in an archive
2023-08-31 20:44:08 -07:00
Ilya Grigoriev
bfe4240b67
GitHub release action: minor cleanup for consistency with next commit
2023-08-31 20:44:08 -07:00
Ilya Grigoriev
95121a09c0
GitHub build action: check whether mkdocs can build docs in PRs
...
For example, this should check for broken links from one `.md`
file to another.
2023-08-30 09:30:14 -07:00
Ilya Grigoriev
c8bb8fbeb2
Github actions to build docs
...
One action publishes the 'prerelease' version on every push
to `main`.
The other publishes a 'latest' version on every releasse.
I tested both of them, but not with branch protection rules.
2023-08-28 10:43:48 -07:00
Ilya Grigoriev
fc49258d2f
docs: Set up mkdocs and poetry
...
I initially was thinking of using `mdbook`, which looks a little better, but I
think versioning the docs is important, and the features I want are pretty much
only supported by the Mkdocs' "Material" theme.
Mkdocs is written in Python. The prerequesites for building docs on your
machine should be to install Python and Poetry, everything else should be
installed automatically by Poetry. See the edits to `contributing.md` for more details.
2023-08-28 10:43:48 -07:00
dependabot[bot]
44d1472c25
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [actions/checkout](https://github.com/actions/checkout ).
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](c85c95e3d7...f43a0e5ff2
2023-08-24 15:35:04 +00:00
Alexander Potashev
7837ec1f62
docs: Fix missed paths from src->cli/src move
2023-08-18 14:35:19 +02:00
Martin von Zweigbergk
b29ab46fe4
github: mention Google CLA requirement in PR template
...
As requested in PR #1942 .
2023-08-03 22:24:07 +00:00
Martin von Zweigbergk
5bd3dca21b
github: run only with MSRV, not stable
...
We run a separate build on CI with the MSRV so we notice if we
accidentally break the MSRV. However, as we talked about on Discord,
the opposite is very unlikely - that we accidentally break the build
with the stable release without breaking the MSRV build. Also, we
explicitly run Clippy with the stable release, and formatting with the
nightly release. So, let's just do the regular build and tests with
the MSRV.
2023-07-31 18:41:06 +00:00
dependabot[bot]
77108d28c7
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action ).
- [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases )
- [Commits](e0a440755b...a50c7d5f86
2023-07-31 15:56:35 +00:00
dependabot[bot]
179cff7a71
github: bump the github-dependencies group with 1 update
...
Bumps the github-dependencies group with 1 update: [DeterminateSystems/magic-nix-cache-action](https://github.com/determinatesystems/magic-nix-cache-action ).
- [Release notes](https://github.com/determinatesystems/magic-nix-cache-action/releases )
- [Commits](5cc3a5e24b...749fc5bbc9
2023-07-24 15:26:44 +00:00
Austin Seipp
4a64b10384
github: bump CI runner to macos-13
...
Summary: Here's a fun fact — macos-latest doesn't actually refer to the latest
macOS version used in your GHA runner! It apparently means, tautologically,
"latest macos version that we have chosen as the default." OK?
But why bother? Because word on the street is that the new macos-13 builders
from GitHub are on new hardware, and much faster than previous ones. Let's test
that rumor.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: Ifdbab62e085adbda41a7edb9fc7038f0
2023-07-18 16:51:48 +01:00
Austin Seipp
8cb429d065
chore(rust): bump MSRV to 1.71.0
...
Summary: Let's be more aggressive about tracking the latest stable Rust release.
There's little benefit to being conservative so early on, especially when no
users seem to have faced any issue with upgrading, or strictly required an old
Rust version.
Right now, just lagging Rust by 1 major release probably seems fine. We're
targeting 1.71.0 to get ahead of the curve, since 1.72.0 will likely release
sometime before the next `jj` release.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: I4e691b6ba63b5b9023a75ae0a6917672
2023-07-17 18:38:26 -05:00
Martin von Zweigbergk
152a0683e2
github: enable the watchman feature in pre-built binaries
2023-07-12 17:51:38 +01:00
Austin Seipp
c780e6bc1f
chore(github): migrate nix workflow to use nix-installer & magic-nix-cache
...
Summary: The Determinate Systems Nix installer is fast and importantly includes
Flake support by default on new installs.
Magic Nix Cache will help ease the build time a little by making sure things
like downloads from crates.io remain cached between builds; in the future if we
ever need to add any custom builds to the Nix expression it will come really in
handy. But in my experience I don't think it should slow down much, and might
speed some things up a whole lot.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: I56e1592cbaa6c7a43b5bd57972b98ada
2023-07-12 17:07:38 +01:00
Austin Seipp
3e23155b10
fix(github): run 'nix build' as part of CI, too
...
Summary: While I was developing #1846 , I found a case where `nix flake check`
succeeded but `nix build` on the jujutsu expression failed, which was confusing
to me. If it had been merged, it would have broke the ability to use Nix to
install things.
Let's try to attack this, and punch a parallel job into the build matrix;
hopefully running the two jobs concurrently can help catch this without
making build time much worse.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: If2520d69492fa6abe499c1cb1d51d6e1
2023-07-12 17:07:38 +01:00
Austin Seipp
f1e09e3f3f
chore(github): reduce compile time in build, nix, and release workflows
...
Summary: When building in CI, we just build everything from scratch in the `dev`
profile, so just turn off debuginfo and incremental compilation data. These
aren't reused, but more importantly take up more space and CPU time to generate;
that's more expensive on slower machines and when using The Cloud(TM) to build.
Together, these take a fresh build (`rm -rf target/` ahead of time) from about
40s to 30s on my machine.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
Change-Id: Id6e706634dbaf88f6ccd7f457409ad7c
2023-07-10 06:18:38 -05:00
Martin von Zweigbergk
e28ce91d41
dependabot: also group cargo updates
...
It looks like I accidentally applied the grouping only to GitHub
actions updates.
2023-07-07 17:36:45 +02:00
Martin von Zweigbergk
fa25c3bd40
github: tell Dependabot to group all deps when possible
...
This should reduce the number of PRs to review, and the number of
uninteresting commits in the repo history.
2023-07-05 21:37:22 +02:00
dependabot[bot]
23351c32ea
github: bump ossf/scorecard-action from 2.1.3 to 2.2.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](80e868c13c...08b4669551
2023-06-27 07:58:14 +02:00
dependabot[bot]
d7544f86c0
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 1f5cdb56c8779e3efa22473ce181ff83143b172c to 0e66bd3e6b38ec0ad5312288c83e47c143e6b09e.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](1f5cdb56c8...0e66bd3e6b
2023-06-27 07:46:45 +02:00
dependabot[bot]
e1b4fde5b3
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 52e69531e6f69a396bc9d1226284493a5db969ff to 1f5cdb56c8779e3efa22473ce181ff83143b172c.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](52e69531e6...1f5cdb56c8
2023-06-21 06:19:10 +02:00
dependabot[bot]
cb7d96d236
github: bump cachix/install-nix-action from 21 to 22
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 21 to 22.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](4b933aa7eb...6ed004b9cc
2023-06-19 22:42:52 +02:00
dependabot[bot]
04115e8079
github: bump github/codeql-action from 2.3.6 to 2.13.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.6 to 2.13.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](83f0fe6c49...cdcdbb5797
2023-06-09 23:24:18 +02:00
dependabot[bot]
8a7ef3e245
github: bump actions/checkout from 3.5.2 to 3.5.3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8e5e7e5ab8...c85c95e3d7
2023-06-09 14:21:58 -07:00
dependabot[bot]
633236701d
github: bump github/codeql-action from 2.3.5 to 2.3.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.5 to 2.3.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0225834cc5...83f0fe6c49
2023-06-01 09:20:29 -07:00
dependabot[bot]
1fa88dbad0
github: bump github/codeql-action from 2.3.4 to 2.3.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.4 to 2.3.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f0e3dfb303...0225834cc5
2023-05-26 17:09:56 +00:00
dependabot[bot]
b2ecabe89a
github: bump github/codeql-action from 2.3.3 to 2.3.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.3 to 2.3.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](29b1f65c5e...f0e3dfb303
2023-05-25 16:12:55 +00:00
dependabot[bot]
69a7df1715
github: bump cachix/install-nix-action from 20 to 21
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 20 to 21.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](29bd9290ef...4b933aa7eb
2023-05-24 16:13:59 +00:00
dependabot[bot]
ecb6352d39
github: bump codespell-project/actions-codespell from 1.0 to 2.0
...
Bumps [codespell-project/actions-codespell](https://github.com/codespell-project/actions-codespell ) from 1.0 to 2.0.
- [Release notes](https://github.com/codespell-project/actions-codespell/releases )
- [Commits](22ff5a2e4b...94259cd8be
2023-05-11 17:26:25 +00:00
dependabot[bot]
b6b9136c1d
github: bump github/codeql-action from 2.3.2 to 2.3.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.2 to 2.3.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f3feb00acb...29b1f65c5e
2023-05-05 09:19:34 -07:00
dependabot[bot]
3f1a454ba6
github: bump github/codeql-action from 2.3.1 to 2.3.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8662eabe0e...f3feb00acb
2023-04-28 09:13:05 -07:00
dependabot[bot]
6e8d0a0860
github: bump github/codeql-action from 2.3.0 to 2.3.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b2c19fb9a2...8662eabe0e
2023-04-27 10:04:14 -07:00
dependabot[bot]
2c9d0577cf
github: bump github/codeql-action from 2.2.12 to 2.3.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.12 to 2.3.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](7df0ce3489...b2c19fb9a2
2023-04-24 09:17:56 -07:00
dependabot[bot]
0fc2651935
github: bump github/codeql-action from 2.2.11 to 2.2.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.11 to 2.2.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](d186a2a36c...7df0ce3489
2023-04-13 09:51:14 -07:00
dependabot[bot]
1a490cc170
github: bump actions/checkout from 3.5.1 to 3.5.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.1 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](83b7061638...8e5e7e5ab8
2023-04-13 16:11:24 +00:00
dependabot[bot]
d31f5c79ce
github: bump EmbarkStudios/cargo-deny-action from 1.5.1 to 1.5.2
...
Bumps [EmbarkStudios/cargo-deny-action](https://github.com/EmbarkStudios/cargo-deny-action ) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/EmbarkStudios/cargo-deny-action/releases )
- [Commits](3d26fd4e2a...e0a440755b
2023-04-12 16:26:32 +00:00
dependabot[bot]
db61db6de8
github: bump actions/checkout from 3.5.0 to 3.5.1
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8f4b7f8486...83b7061638
2023-04-12 16:10:44 +00:00
dependabot[bot]
cfdfc452dc
github: bump github/codeql-action from 2.2.10 to 2.2.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.10 to 2.2.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8c8d71dde4...d186a2a36c
2023-04-07 10:02:55 -07:00
dependabot[bot]
f0cc4c3ae2
github: bump github/codeql-action from 2.2.9 to 2.2.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.9 to 2.2.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](04df1262e6...8c8d71dde4
2023-04-06 16:27:50 -07:00
dependabot[bot]
dc9658159b
github: bump EmbarkStudios/cargo-deny-action from 1.5.0 to 1.5.1
...
Bumps [EmbarkStudios/cargo-deny-action](https://github.com/EmbarkStudios/cargo-deny-action ) from 1.5.0 to 1.5.1.
- [Release notes](https://github.com/EmbarkStudios/cargo-deny-action/releases )
- [Commits](8af37f5d0c...3d26fd4e2a
2023-04-06 16:27:29 -07:00
Martin von Zweigbergk
b707a29f41
github: fix name of workflow for Dependabot auto-merge
...
I apparently forgot to update the name when I copied `build.yml`.
2023-03-30 19:29:18 -07:00
Waleed Khan
d9a5869bcd
github: add feature request issue template
...
I just added the default feature request template.
2023-03-30 11:49:04 -07:00
dependabot[bot]
8dea96e1ae
github: bump ossf/scorecard-action from 2.1.2 to 2.1.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.2 to 2.1.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e38b1902ae...80e868c13c
2023-03-30 16:42:02 +00:00
Martin von Zweigbergk
9d83c40b8d
github: add a build target with all features
...
This should catch build errors in the `bench` feature (and in any
future non-default features).
2023-03-30 09:20:29 -07:00
Martin von Zweigbergk
0e29cfca5c
github: simplify build matrix definition
...
See https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#expanding-or-adding-matrix-configurations
2023-03-30 09:20:29 -07:00
dependabot[bot]
c379c9740d
github: bump github/codeql-action from 2.2.8 to 2.2.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.8 to 2.2.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](67a35a0858...04df1262e6
2023-03-27 16:16:55 +00:00
dependabot[bot]
4a0193ccec
github: bump EmbarkStudios/cargo-deny-action from 1.4.0 to 1.5.0
...
Bumps [EmbarkStudios/cargo-deny-action](https://github.com/EmbarkStudios/cargo-deny-action ) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/EmbarkStudios/cargo-deny-action/releases )
- [Commits](8a8607bd8e...8af37f5d0c
2023-03-27 16:13:21 +00:00
dependabot[bot]
5b2e1cbe07
github: bump actions/checkout from 3.4.0 to 3.5.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](24cb908017...8f4b7f8486
2023-03-24 10:08:02 -07:00
dependabot[bot]
97a076f2da
github: bump github/codeql-action from 2.2.7 to 2.2.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.7 to 2.2.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](168b99b3c2...67a35a0858
2023-03-23 09:35:34 -07:00
Martin von Zweigbergk
2495c8f27e
cargo: update MSRV to 1.64
...
We need 1.64 to bump `clap` to `4.1`. We don't really need to upgrade
to that, but being on an older version causes minor confusions like
#1393 . Rust 1.64 is very close to 6 months old at this point.
2023-03-17 22:44:29 -07:00
dependabot[bot]
e4bed6418d
github: bump actions/checkout from 3.3.0 to 3.4.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](ac59398561...24cb908017
2023-03-16 22:02:06 -07:00
dependabot[bot]
08d0a33554
github: bump github/codeql-action from 2.2.6 to 2.2.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.6 to 2.2.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](16964e90ba...168b99b3c2
2023-03-15 10:01:04 -07:00
dependabot[bot]
a99622763f
github: bump github/codeql-action from 2.2.5 to 2.2.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.5 to 2.2.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](32dc499307...16964e90ba
2023-03-13 17:43:41 +00:00
Martin von Zweigbergk
9ff422396a
github: pin version of codespell action by hash
...
The security scanner complained about this. It is what we do with all
other actions.
2023-03-10 13:00:03 -08:00
dependabot[bot]
5321201a8a
github: bump cachix/install-nix-action from 19 to 20
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 19 to 20.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](5c11eae19d...29bd9290ef
2023-03-02 00:02:57 +01:00
dependabot[bot]
f633534fc7
github: bump github/codeql-action from 2.2.4 to 2.2.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.4 to 2.2.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](17573ee1cc...32dc499307
2023-02-27 11:08:02 -08:00
Martin von Zweigbergk
9fc879747f
release: build Linux (musl) release using vendored OpenSSL
...
The 0.7.0 release build failed because it didn't find OpenSSL. I don't
know much about musl, but I think we added it in order to get a single
binary without dependencies, so I think vendoring is what we want.
2023-02-16 15:52:00 -08:00
dependabot[bot]
034dd3528d
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 0a1713a447f74360b294fd86bc56dc23af3a9d3e to 52e69531e6f69a396bc9d1226284493a5db969ff.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](0a1713a447...52e69531e6
2023-02-16 08:39:18 -08:00
dependabot[bot]
2217a78df3
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 25dc93b901a87e864900a8aec6c12e9aa794c0c3 to 0a1713a447f74360b294fd86bc56dc23af3a9d3e.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](25dc93b901...0a1713a447
2023-02-15 08:49:33 -08:00
dependabot[bot]
ebd9a94d4b
github: bump github/codeql-action from 2.2.3 to 2.2.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.3 to 2.2.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8775e86802...17573ee1cc
2023-02-13 22:52:07 +00:00
dependabot[bot]
e21ae8b9d0
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from c758e63728211bd4acda6501cfa2a16c5c751fc4 to 25dc93b901a87e864900a8aec6c12e9aa794c0c3.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](c758e63728...25dc93b901
2023-02-13 23:39:24 +01:00
dependabot[bot]
123d677aed
github: bump github/codeql-action from 2.2.2 to 2.2.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.2 to 2.2.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](39d8d7e78f...8775e86802
2023-02-09 16:32:36 +01:00
dependabot[bot]
e7c9493506
github: bump github/codeql-action from 2.2.1 to 2.2.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.2.1 to 2.2.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3ebbd71c74...39d8d7e78f
2023-02-07 08:24:19 -08:00
dependabot[bot]
52ff0ae9e6
github: bump cachix/install-nix-action from 18 to 19
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 18 to 19.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](daddc62a2e...5c11eae19d
2023-02-06 15:26:46 +00:00
Yuya Nishihara
a7e2c06068
config: move src/commands/config-schema.json back to src/
...
I think this is an oversight of moving things into commands/ module.
2023-02-05 19:02:54 +09:00
Martin von Zweigbergk
1e48914c42
github: add reminder to update config schema in PRs
...
We have forgotten this many times already.
2023-02-02 16:03:53 -08:00
dependabot[bot]
bd5cbbdbaa
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from ce8f65846d7180d2ce63b1e74483d981800b9e22 to c758e63728211bd4acda6501cfa2a16c5c751fc4.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](ce8f65846d...c758e63728
2023-02-01 15:19:38 +00:00
Samuel Tardieu
615862dde8
ci: add codespell to the workflow
2023-01-28 07:23:45 -08:00
dependabot[bot]
9336a4518a
github: bump github/codeql-action from 2.1.39 to 2.2.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.39 to 2.2.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a34ca99b46...3ebbd71c74
2023-01-27 08:08:43 -08:00
dependabot[bot]
efe72f714a
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 22cb70465de2ebc761c76f91046abd5a6986040f to ce8f65846d7180d2ce63b1e74483d981800b9e22.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](22cb70465d...ce8f65846d
2023-01-23 08:32:50 -08:00
dependabot[bot]
a29b19fa9d
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from e645b0cf01249a964ec099494d38d2da0f0b349f to 22cb70465de2ebc761c76f91046abd5a6986040f.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](e645b0cf01...22cb70465d
2023-01-20 15:18:40 +00:00
dependabot[bot]
24e03e2ff5
github: bump github/codeql-action from 2.1.38 to 2.1.39
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.38 to 2.1.39.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](515828d974...a34ca99b46
2023-01-19 08:10:30 -08:00
Michael Forster
27228ce292
Update MSRV to 1.61
...
This is needed for compatibility with the sapling dag crate.
2023-01-19 10:29:39 +01:00
Martin von Zweigbergk
ff3edb642f
github: build and test all targets
...
It seems that at least examples are not included in the default set of
targets, and we clearly want to check that the examples compile, as
that's an important reason we have them. We don't have any tests for
the examples yet, but let's add the flag now so we don't forget it
later.
2023-01-18 23:03:30 -08:00
dependabot[bot]
7c1b796f3e
github: bump github/codeql-action from 2.1.37 to 2.1.38
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.37 to 2.1.38.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](959cbb7472...515828d974
2023-01-12 09:26:31 -08:00
dependabot[bot]
f2cba66029
github: bump actions/upload-artifact from 3.1.1 to 3.1.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](83fd05a356...0b7f8abb15
2023-01-06 07:52:03 -08:00
dependabot[bot]
6a6724fd87
github: bump actions/checkout from 3.2.0 to 3.3.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...ac59398561
2023-01-05 15:33:10 +00:00
Martin von Zweigbergk
635f5a5cb8
build: don't use vendored OpenSSL by default
...
I added support for using a vendored OpenSSL in dbadbd68c0
2023-01-03 18:57:38 -08:00
dependabot[bot]
bb0cb7f8d1
github: bump ossf/scorecard-action from 2.1.1 to 2.1.2
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](15c10fcf1c...e38b1902ae
2022-12-22 15:15:44 +00:00
Benjamin Saunders
aaa175eca7
lib: replace protobuf crate with prost
2022-12-22 07:04:35 -08:00
dependabot[bot]
1a11679539
github: bump ossf/scorecard-action from 2.1.0 to 2.1.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](937ffa90d7...15c10fcf1c
2022-12-20 08:43:48 -08:00
dependabot[bot]
af32f0d3c3
github: bump ossf/scorecard-action from 2.0.6 to 2.1.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...937ffa90d7
2022-12-15 07:40:37 -08:00
dependabot[bot]
1f3cfcec9d
github: bump github/codeql-action from 2.1.36 to 2.1.37
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](a669cc5936...959cbb7472
2022-12-14 07:35:59 -08:00
dependabot[bot]
ae981ff33a
github: bump actions/checkout from 3.1.0 to 3.2.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-13 11:35:27 -08:00
Martin von Zweigbergk
b87c1cb514
github: new attempt at Dependabot auto-merge
...
This is an updated version of the workflow deleted in f5fc3c35f5https://github.com/cli/cli/issues/6695#issuecomment-1348430969 .
2022-12-13 10:39:58 -08:00
Martin von Zweigbergk
bf5a00a3e5
github: add reminder about adding tests
...
Thanks, GitHub Copilot, for adding this item to the checklist :)
2022-12-12 21:43:42 -08:00
Martin von Zweigbergk
7de8ac0744
github: don't ask PR authors to add themselves to the changelog
...
Most people seem to have forgotten to add themselves despite the
reminder in the PR tempalte. I (or whoever does the release) will fill
it out just before each release instead, like I did for 0.6.0. I
didn't remove the people already on the list for this release, but
I'll regenerate it for next release anyway.
2022-12-12 21:43:42 -08:00
dependabot[bot]
15d40ffa54
github: bump github/codeql-action from 2.1.35 to 2.1.36
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.35 to 2.1.36.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b2a92eb56d...a669cc5936
2022-12-09 11:09:59 -08:00
Martin von Zweigbergk
79d6779995
github: make Scorecard security scanner not use access token
...
Google's security team asked us to remove this use of a PAT. It's
apparently supposed to work without it, it's just that it won't be
able to check that we have bronch protection set up.
2022-12-08 14:54:28 -08:00
Martin von Zweigbergk
f5fc3c35f5
github: disable broken attempt to auto-merge Dependabot PRs again
...
Sigh, I thought it was fixed now, but it seems it's only `gh pr ready`
that works with `GITHUB_TOKEN`. This rolls back commit ee7e7e1b62
2022-12-05 14:23:43 -08:00
dependabot[bot]
9a36f1d6e3
github: bump github/codeql-action from 2.1.32 to 2.1.35
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.32 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4238421316...b2a92eb56d
2022-12-05 10:07:43 -08:00
Martin von Zweigbergk
69f85dfd27
docs: describe how we do code reviews
2022-12-02 13:05:32 -08:00
Martin von Zweigbergk
ee7e7e1b62
github: new attempt at auto-enabling merge of Dependabot PRs
...
cli/cli#1314 is now marked fixed, so let's see if this works. This
rolls back commit 184280f8f801.
2022-12-01 19:28:39 -08:00
Martin von Zweigbergk
e6d21ed442
changelog: thank people who contributed to a release
...
Thanks, everyone! :) I'm happy to rephrase the text. I included people
in order of their first contribution in the release. I included their
full name and the GitHub username.
2022-11-28 10:17:21 -10:00
dependabot[bot]
d90a08676c
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from 55c7845fad90d0ae8b2e83715cb900e5e861e8cb to e645b0cf01249a964ec099494d38d2da0f0b349f.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](55c7845fad...e645b0cf01
2022-11-28 05:22:27 -10:00
dependabot[bot]
f9f4f8b520
github: bump EmbarkStudios/cargo-deny-action from 1.3.2 to 1.4.0
...
Bumps [EmbarkStudios/cargo-deny-action](https://github.com/EmbarkStudios/cargo-deny-action ) from 1.3.2 to 1.4.0.
- [Release notes](https://github.com/EmbarkStudios/cargo-deny-action/releases )
- [Commits](7257a18a9c...8a8607bd8e
2022-11-17 07:57:43 -08:00
dependabot[bot]
1c76ea198f
github: bump github/codeql-action from 2.1.31 to 2.1.32
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.31 to 2.1.32.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c3b6fce4ee...4238421316
2022-11-14 09:33:48 -08:00
dependabot[bot]
3e77fcdafa
github: bump dtolnay/rust-toolchain
...
Bumps [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain ) from ba37adf8f94a7d9affce79bd3baff1b9e3189c33 to 55c7845fad90d0ae8b2e83715cb900e5e861e8cb.
- [Release notes](https://github.com/dtolnay/rust-toolchain/releases )
- [Commits](ba37adf8f9...55c7845fad
2022-11-11 07:30:54 -08:00
dependabot[bot]
571952dac6
github: bump github/codeql-action from 2.1.30 to 2.1.31
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.30 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](18fe527fa8...c3b6fce4ee
2022-11-08 07:40:08 -08:00
dependabot[bot]
e4e4fe4461
github: bump github/codeql-action from 2.1.29 to 2.1.30
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.30.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...18fe527fa8
2022-11-02 09:33:52 -07:00
dependabot[bot]
9548b6ad49
github: bump github/codeql-action from 2.1.28 to 2.1.29
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cc7986c02b...ec3cf9c605
2022-10-26 20:44:10 -07:00
dependabot[bot]
27937e6787
github: bump actions/upload-artifact from 3.1.0 to 3.1.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356
2022-10-24 10:55:50 -07:00
dependabot[bot]
dc2237b592
github: bump ossf/scorecard-action from 2.0.4 to 2.0.6
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e363bfca00...99c53751e0
2022-10-19 16:09:53 -07:00
Martin von Zweigbergk
9f01456f84
github: move off of unmaintained actions-rs actions
2022-10-18 19:00:23 -07:00
dependabot[bot]
8789fde73f
github: bump github/codeql-action from 2.1.27 to 2.1.28
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](807578363a...cc7986c02b
2022-10-18 09:41:19 -07:00
Martin von Zweigbergk
5db47b7ae8
github: make release build create staging directory
...
I think 672f9e85cb
2022-10-17 21:43:05 -07:00
dependabot[bot]
c292cd8cff
github: bump cachix/install-nix-action from 17 to 18
...
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action ) from 17 to 18.
- [Release notes](https://github.com/cachix/install-nix-action/releases )
- [Commits](d64e055310...daddc62a2e
2022-10-12 08:55:40 -07:00
dependabot[bot]
c1d5a90156
github: bump github/codeql-action from 2.1.26 to 2.1.27
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.26 to 2.1.27.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e0e5ded33c...807578363a
2022-10-07 09:30:19 -07:00
dependabot[bot]
02ccbaa86e
github: bump actions/checkout from 3.0.2 to 3.1.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
2022-10-04 22:49:04 -07:00
dependabot[bot]
750878a3fd
github: bump github/codeql-action from 2.1.25 to 2.1.26
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.25 to 2.1.26.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](86f3159a69...e0e5ded33c
2022-09-30 09:09:30 -07:00
dependabot[bot]
62103baa99
github: bump ossf/scorecard-action from 2.0.3 to 2.0.4
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](865b409285...e363bfca00
2022-09-28 09:01:07 -07:00
dependabot[bot]
f425e1bd4b
github: bump github/codeql-action from 2.1.24 to 2.1.25
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.24 to 2.1.25.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](904260d7d9...86f3159a69
2022-09-23 10:10:14 -07:00
Martin von Zweigbergk
86f216541a
github: remove publish_results field in wrong place
...
When I read
https://github.com/ossf/scorecard-action#breaking-changes-in-v2 for
6d7ce74a9a
2022-09-18 00:14:39 -07:00
Martin von Zweigbergk
3c22ce11a4
github: remove stale comments indicating action versions
...
Dependabot doesn't update the comments, so they go stale very quickly.
2022-09-16 21:58:47 -07:00
dependabot[bot]
17765d08cd
github: bump github/codeql-action from 2.1.23 to 2.1.24
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.23 to 2.1.24.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6a38b7d4a1...904260d7d9
2022-09-16 16:25:37 -05:00
Martin von Zweigbergk
6d7ce74a9a
github: add new required permissions for ossf/scorecard
2022-09-16 08:53:11 -05:00
dependabot[bot]
53ccb8d59b
github: bump github/codeql-action from 2.1.22 to 2.1.23
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.22 to 2.1.23.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b398f525a5...6a38b7d4a1
2022-09-15 21:52:07 -05:00
Martin von Zweigbergk
10d24ef267
github: remove broken workflow to enable auto-merge for Dependabot
...
The workflow that was supposed to enable auto-merge for PRs from
Dependabot is failing like this:
```
Message: Resource not accessible by integration, Locations: [{Line:1 Column:72}]
```
I can't figure out why it's failing (maybe
https://github.com/cli/cli/issues/1314 ?), so let's just remove it.
2022-09-12 10:23:58 -07:00
dependabot[bot]
210528e8ae
github: bump ossf/scorecard-action from 1.1.2 to 2.0.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](ce330fde6b...865b409285
2022-09-12 09:00:26 -07:00
Martin von Zweigbergk
c7a782b0a1
github: give dependabot auto-merge action permission to update PR
...
Hopefully this is the last bit I was missing to get this to work :)
2022-09-09 12:43:56 -07:00
Martin von Zweigbergk
a33417fa35
github: pass --rebase to gh pr merge since it requires it
...
It seems that there's no way to just enable auto-merge without
specifying a merge strategy (presumably because some projects allow
several GitHub merge strategies), so I guess we'll have to live with
the strategy being duplicated between here and the project settings.
2022-09-06 16:08:24 -07:00
Martin von Zweigbergk
2ff710a131
github: enable auto-merge on Dependabot PRs
...
To merge a Dependabot PR, I have to enable auto-merge (two clicks,
including one to confim) and then review and approve it. Since our
branch protections require the PR to be approved, it seems that that
should be enough. This patch adds a GitHub action that calls runs the
GitHub CLI to do that. It is based on
https://dev.to/slashgear_/how-to-automatically-merge-dependabot-pull-requests-with-github-actions--30pe
2022-09-02 11:49:26 -07:00
dependabot[bot]
f0d7381fa6
github: bump github/codeql-action from 2.1.19 to 2.1.22
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.19 to 2.1.22.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f5d217be74...b398f525a5
2022-09-01 10:49:04 -07:00
Martin von Zweigbergk
8b049cebd1
github: remove incorrect "v" prefix in a cargo-deny-action hash
2022-08-22 20:29:35 -07:00
