Apache
/
commons-csv
mirror of https://github.com/apache/commons-csv.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,652 Commits 6 Branches 33 Tags 44 MiB
Commit Graph

271 Commits

Author SHA1 Message Date
dependabot[bot] 77603edb04
Bump actions/setup-java from 4.0.0 to 4.1.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](387ac29b30...9704b39bf2)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-01 12:54:43 +00:00
dependabot[bot] 9a52744733
Bump github/codeql-action from 3.24.5 to 3.24.6 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.5 to 3.24.6.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](47b3d888fe...8a470fddaf)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-01 12:54:39 +00:00
dependabot[bot] 49f8ac1e0f
Bump codecov/codecov-action from 4.0.1 to 4.1.0 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](e0b68c6749...54bcd8715e)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-01 12:54:33 +00:00
dependabot[bot] 55b881728c
Bump actions/cache from 4.0.0 to 4.0.1 
Bumps [actions/cache](https://github.com/actions/cache) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](13aacd865c...ab5e6d0c87)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-01 12:54:29 +00:00
dependabot[bot] d3d3146047
Bump github/codeql-action from 3.24.3 to 3.24.5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.3 to 3.24.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](379614612a...47b3d888fe)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-23 12:33:38 +00:00
dependabot[bot] e4eb5b9d13
Bump github/codeql-action from 3.24.0 to 3.24.3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.0 to 3.24.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](e8893c57a1...379614612a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-16 12:03:15 +00:00
Gary Gregory c620c3f4b3
Merge pull request #393 from apache/dependabot/github_actions/github/codeql-action-3.24.0 
Bump github/codeql-action from 3.23.2 to 3.24.0
 2024-02-09 07:30:52 -05:00
dependabot[bot] 8626e3d60e
Bump github/codeql-action from 3.23.2 to 3.24.0 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.2 to 3.24.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](b7bf0a3ed3...e8893c57a1)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-09 12:27:45 +00:00
dependabot[bot] a67bd38c1e
Bump actions/upload-artifact from 4.3.0 to 4.3.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.0 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](26f96dfa69...5d5d22a312)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-09 12:27:40 +00:00
Gary Gregory a1f3603c7e
Merge pull request #390 from apache/dependabot/github_actions/github/codeql-action-3.23.2 
Bump github/codeql-action from 3.23.1 to 3.23.2
 2024-02-02 08:21:00 -05:00
dependabot[bot] 51fd707295
Bump github/codeql-action from 3.23.1 to 3.23.2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.1 to 3.23.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](0b21cf2492...b7bf0a3ed3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-02 12:53:01 +00:00
dependabot[bot] b04392f6a2
Bump codecov/codecov-action from 3.1.5 to 4.0.1 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.5 to 4.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](4fe8c5f003...e0b68c6749)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-02 12:52:49 +00:00
Gary Gregory 49ed389f3d
Merge pull request #388 from apache/dependabot/github_actions/codecov/codecov-action-3.1.5 
Bump codecov/codecov-action from 3.1.4 to 3.1.5
 2024-01-26 08:16:08 -05:00
dependabot[bot] b2ae1166b7
Bump codecov/codecov-action from 3.1.4 to 3.1.5 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.4 to 3.1.5.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](eaaf4bedf3...4fe8c5f003)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-26 12:42:28 +00:00
dependabot[bot] ff6a839914
Bump actions/upload-artifact from 4.2.0 to 4.3.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](694cdabd8b...26f96dfa69)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-26 12:42:24 +00:00
Gary Gregory 95177a5200
Merge pull request #383 from apache/dependabot/github_actions/github/codeql-action-3.23.1 
Bump github/codeql-action from 3.23.0 to 3.23.1
 2024-01-19 07:50:30 -05:00
Gary Gregory 14ca0ae935
Merge pull request #384 from apache/dependabot/github_actions/actions/upload-artifact-4.2.0 
Bump actions/upload-artifact from 4.0.0 to 4.2.0
 2024-01-19 07:50:20 -05:00
dependabot[bot] cbe08bda1d
Bump actions/upload-artifact from 4.0.0 to 4.2.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.0.0 to 4.2.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](c7d193f32e...694cdabd8b)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-19 12:22:46 +00:00
dependabot[bot] 2592a47150
Bump github/codeql-action from 3.23.0 to 3.23.1 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.0 to 3.23.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](e5f05b81d5...0b21cf2492)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-19 12:22:39 +00:00
dependabot[bot] 726b125ac2
Bump actions/cache from 3.3.3 to 4.0.0 
Bumps [actions/cache](https://github.com/actions/cache) from 3.3.3 to 4.0.0.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](e12d46a63a...13aacd865c)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-19 12:22:25 +00:00
Gary Gregory 7b02f262f5
Merge pull request #381 from apache/dependabot/github_actions/github/codeql-action-3.23.0 
Bump github/codeql-action from 3.22.12 to 3.23.0
 2024-01-12 09:10:50 -05:00
dependabot[bot] e447886028
Bump github/codeql-action from 3.22.12 to 3.23.0 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.22.12 to 3.23.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](012739e508...e5f05b81d5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-12 12:58:38 +00:00
dependabot[bot] 3d7adb330a
Bump actions/cache from 3.3.2 to 3.3.3 
Bumps [actions/cache](https://github.com/actions/cache) from 3.3.2 to 3.3.3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](704facf57e...e12d46a63a)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-12 12:58:28 +00:00
Sebb 1411729240 Add version comment [skip ci] 2023-12-23 01:24:44 +00:00
Sebb c1a8ef6d0c Fix version comment [skip ci] 2023-12-23 00:49:37 +00:00
dependabot[bot] 9bf85a3cba
Bump github/codeql-action from 3.22.11 to 3.22.12 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.22.11 to 3.22.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](b374143c11...012739e508)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-22 12:56:12 +00:00
Gary Gregory 33e325ea11
Merge pull request #378 from apache/dependabot/github_actions/github/codeql-action-3.22.11 
Bump github/codeql-action from 2.22.10 to 3.22.11
 2023-12-15 09:11:12 -05:00
dependabot[bot] 24276b4d1f
Bump github/codeql-action from 2.22.10 to 3.22.11 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.10 to 3.22.11.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](305f654631...b374143c11)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-15 12:29:43 +00:00
dependabot[bot] 04c7664166
Bump actions/upload-artifact from 3.1.3 to 4.0.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.3 to 4.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](a8a3f3ad30...c7d193f32e)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-15 12:29:35 +00:00
Gary Gregory 4e23edcb8e Bump github/codeql-action from 2.22.9 to 2.22.10 2023-12-13 07:48:51 -05:00
Gary Gregory fb19605281 Bump github/codeql-action from 2.22.9 to 2.22.10 2023-12-13 07:41:23 -05:00
dependabot[bot] 08ee60bc72
Bump github/codeql-action from 2.22.8 to 2.22.9 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.8 to 2.22.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](407ffafae6...c0d1daa7f7)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-08 12:53:59 +00:00
Gary Gregory 0a672fcff8 Bump actions/setup-java from 3.13.0 to 4.0.0 2023-11-30 09:49:31 -05:00
Gary Gregory 1a612cbff8 Bump actions/setup-java from 3.13.0 to 4.0.0 2023-11-30 09:45:01 -05:00
Gary Gregory cdf8e2b630 Bump actions/setup-java from 3.13.0 to 4.0.0 2023-11-30 08:30:54 -05:00
dependabot[bot] 70d9f7dd58
Bump github/codeql-action from 2.22.7 to 2.22.8 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.7 to 2.22.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](66b90a5db1...407ffafae6)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-24 12:20:28 +00:00
dependabot[bot] 3de773f5ab
Bump github/codeql-action from 2.22.5 to 2.22.7 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.5 to 2.22.7.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](74483a38d3...66b90a5db1)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-17 12:10:56 +00:00
Gary Gregory 345d72e8e5
Merge pull request #369 from apache/dependabot/github_actions/ossf/scorecard-action-2.3.1 
Bump ossf/scorecard-action from 2.3.0 to 2.3.1
 2023-10-27 08:21:05 -04:00
dependabot[bot] 1522c18338
Bump ossf/scorecard-action from 2.3.0 to 2.3.1 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](483ef80eb9...0864cf1902)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-27 12:14:28 +00:00
dependabot[bot] 100d9b9701
Bump github/codeql-action from 2.22.3 to 2.22.5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.3 to 2.22.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](0116bc2df5...74483a38d3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-27 12:14:24 +00:00
Gary Gregory e9774d3d5d
Merge pull request #367 from apache/dependabot/github_actions/actions/checkout-4.1.1 
Bump actions/checkout from 4.1.0 to 4.1.1
 2023-10-20 08:36:24 -04:00
dependabot[bot] 6a899297bb
Bump actions/checkout from 4.1.0 to 4.1.1 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8ade135a41...b4ffde65f4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-20 12:02:36 +00:00
dependabot[bot] 239a860791
Bump github/codeql-action from 2.22.2 to 2.22.3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.2 to 2.22.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](d90b8d79de...0116bc2df5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-20 12:02:31 +00:00
Gary Gregory 9e690e46e5 Update comment 2023-10-15 10:13:52 -04:00
Gary Gregory 969ece9162 Add Java 21 build to GitHub 2023-10-14 12:32:08 -04:00
Gary Gregory 63bcf6b6b9
Merge pull request #363 from apache/dependabot/github_actions/github/codeql-action-2.22.2 
Bump github/codeql-action from 2.22.0 to 2.22.2
 2023-10-13 09:04:03 -04:00
dependabot[bot] 234a3a6d11
Bump ossf/scorecard-action from 2.2.0 to 2.3.0 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](08b4669551...483ef80eb9)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-13 12:35:59 +00:00
dependabot[bot] 31eb6b3141
Bump github/codeql-action from 2.22.0 to 2.22.2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.0 to 2.22.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2cb752a87e...d90b8d79de)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-13 12:35:55 +00:00
Gary Gregory 78c0bf08d9 Normalize mvn invocation on GitHub 2023-10-11 07:31:35 -04:00
dependabot[bot] a19c89e5e9
Bump github/codeql-action from 2.21.9 to 2.22.0 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.9 to 2.22.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](ddccb87388...2cb752a87e)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-06 12:56:37 +00:00
Gary Gregory e4ce1ff28d
Merge pull request #361 from apache/dependabot/github_actions/github/codeql-action-2.21.9 
Bump github/codeql-action from 2.21.8 to 2.21.9
 2023-09-29 09:45:34 -04:00
dependabot[bot] 7b953b5371
Bump github/codeql-action from 2.21.8 to 2.21.9 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.8 to 2.21.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](6a28655e3d...ddccb87388)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-29 12:57:54 +00:00
dependabot[bot] 4c00062d6b
Bump actions/checkout from 4.0.0 to 4.1.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](3df4ab11eb...8ade135a41)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-29 12:57:49 +00:00
Gary Gregory b8690ea34d
Merge pull request #357 from apache/dependabot/github_actions/github/codeql-action-2.21.8 
Bump github/codeql-action from 2.21.7 to 2.21.8
 2023-09-22 08:16:22 -04:00
dependabot[bot] 9eaed4a9bc
Bump actions/setup-java from 3.12.0 to 3.13.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.12.0 to 3.13.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](cd89f46ac9...0ab4596768)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-22 12:05:49 +00:00
dependabot[bot] d4bee3ab4c
Bump github/codeql-action from 2.21.7 to 2.21.8 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.7 to 2.21.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](04daf014b5...6a28655e3d)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-22 12:05:43 +00:00
dependabot[bot] a2cafeb472
Bump github/codeql-action from 2.21.5 to 2.21.7 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.5 to 2.21.7.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](00e563ead9...04daf014b5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-15 12:45:34 +00:00
Gary Gregory f42982469b
Merge pull request #354 from apache/dependabot/github_actions/actions/upload-artifact-3.1.3 
Bump actions/upload-artifact from 3.1.2 to 3.1.3
 2023-09-08 09:20:45 -04:00
Gary Gregory 76c631af69
Merge pull request #355 from apache/dependabot/github_actions/actions/checkout-4.0.0 
Bump actions/checkout from 3.6.0 to 4.0.0
 2023-09-08 09:20:33 -04:00
dependabot[bot] 35c186f2f8
Bump actions/checkout from 3.6.0 to 4.0.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](f43a0e5ff2...3df4ab11eb)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 12:24:11 +00:00
dependabot[bot] 698ea9bf2c
Bump actions/upload-artifact from 3.1.2 to 3.1.3 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](0b7f8abb15...a8a3f3ad30)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 12:24:05 +00:00
dependabot[bot] 26f9d9e89e
Bump actions/cache from 3.3.1 to 3.3.2 
Bumps [actions/cache](https://github.com/actions/cache) from 3.3.1 to 3.3.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](88522ab9f3...704facf57e)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 12:24:01 +00:00
dependabot[bot] 3f4fea3b87
Bump github/codeql-action from 2.21.4 to 2.21.5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.4 to 2.21.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](a09933a12a...00e563ead9)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-01 12:31:15 +00:00
dependabot[bot] cd8905a32e
Bump actions/checkout from 3.5.3 to 3.6.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](c85c95e3d7...f43a0e5ff2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:07:08 +00:00
dependabot[bot] dd3b0a1a3f
Bump github/codeql-action from 2.21.3 to 2.21.4 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.3 to 2.21.4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5b6282e01c...a09933a12a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-18 12:07:43 +00:00
dependabot[bot] f32d671c32
Bump github/codeql-action from 2.21.2 to 2.21.3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.2 to 2.21.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](0ba4244466...5b6282e01c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-11 12:39:11 +00:00
dependabot[bot] ed93e7e45f
Bump github/codeql-action from 2.21.1 to 2.21.2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.1 to 2.21.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](6ca1aa8c19...0ba4244466)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-04 12:15:15 +00:00
Gary Gregory decfc1b77d
Merge pull request #338 from apache/dependabot/github_actions/actions/setup-java-3.12.0 
Bump actions/setup-java from 3.11.0 to 3.12.0
 2023-07-28 09:05:29 -04:00
dependabot[bot] 3d5e555750
Bump actions/setup-java from 3.11.0 to 3.12.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.11.0 to 3.12.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](5ffc13f417...cd89f46ac9)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-28 12:54:34 +00:00
dependabot[bot] 40d91aae4d
Bump github/codeql-action from 2.21.0 to 2.21.1 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.0 to 2.21.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](1813ca74c3...6ca1aa8c19)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-28 12:54:29 +00:00
dependabot[bot] fa4328d758
Bump github/codeql-action from 2.20.3 to 2.21.0 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.20.3 to 2.21.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](46ed16ded9...1813ca74c3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-21 12:27:52 +00:00
dependabot[bot] dd90aeff2a
Bump github/codeql-action from 2.20.1 to 2.20.3 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.20.1 to 2.20.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f6e388ebf0...46ed16ded9)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-07 12:45:00 +00:00
Gary Gregory f596c7e075
Merge pull request #332 from apache/dependabot/github_actions/ossf/scorecard-action-2.2.0 
Bump ossf/scorecard-action from 2.1.3 to 2.2.0
 2023-06-30 08:34:12 -04:00
dependabot[bot] 18d070c51b
Bump ossf/scorecard-action from 2.1.3 to 2.2.0 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](80e868c13c...08b4669551)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-30 12:26:24 +00:00
dependabot[bot] 74b0b15395
Bump github/codeql-action from 2.1.22 to 2.20.1 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.22 to 2.20.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.22...f6e388ebf0efc915c6c5b165b019ee61a6746a38)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-30 12:26:20 +00:00
StepSecurity Bot 1a6129608f
[StepSecurity] ci: Harden GitHub Actions 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
 2023-06-24 18:00:38 +00:00
StepSecurity Bot 62f4c6db31
[StepSecurity] ci: Harden GitHub Actions 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
 2023-06-24 17:51:28 +00:00
dependabot[bot] f4274a80cd Bump actions/checkout from 3.5.2 to 3.5.3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8e5e7e5ab8...c85c95e3d7)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-16 15:00:42 +02:00
dependabot[bot] 3444b63a89 Bump actions/checkout from 3.5.0 to 3.5.2 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8f4b7f8486...8e5e7e5ab8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-14 15:00:04 +02:00
Gary Gregory 1842b788fd
Merge pull request #317 from apache/dependabot/github_actions/actions/setup-java-3.11.0 
Bump actions/setup-java from 3.10.0 to 3.11.0
 2023-03-31 09:06:39 -04:00
dependabot[bot] b64dd74baa
Bump actions/setup-java from 3.10.0 to 3.11.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.10.0 to 3.11.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v3.10.0...v3.11.0)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-31 12:56:29 +00:00
dependabot[bot] da070b4c93
Bump ossf/scorecard-action from 2.1.2 to 2.1.3 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.2 to 2.1.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](e38b1902ae...80e868c13c)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-31 12:56:25 +00:00
dependabot[bot] bda0cd8598 Bump actions/checkout from 3.4.0 to 3.5.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](24cb908017...8f4b7f8486)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-24 14:03:12 +01:00
dependabot[bot] ca7885680f Bump actions/cache from 3.3.0 to 3.3.1 
Bumps [actions/cache](https://github.com/actions/cache) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.3.0...v3.3.1)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-17 14:00:22 +01:00
dependabot[bot] 82aa29dac4 Bump actions/checkout from 3.3.0 to 3.4.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](ac59398561...24cb908017)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-17 13:59:36 +01:00
dependabot[bot] f90939b52a Bump actions/cache from 3.2.6 to 3.3.0 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.6 to 3.3.0.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.6...v3.3.0)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-10 14:16:44 +01:00
dependabot[bot] 01c6a17ef1
Bump actions/cache from 3.2.5 to 3.2.6 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.5 to 3.2.6.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.5...v3.2.6)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-24 12:56:23 +00:00
dependabot[bot] 420cd15cac Bump actions/cache from 3.2.4 to 3.2.5 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.4 to 3.2.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.4...v3.2.5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-10 14:20:05 +01:00
dependabot[bot] e4cf61b6c7 Bump actions/setup-java from 3.9.0 to 3.10.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.9.0 to 3.10.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v3.9.0...v3.10.0)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-10 14:19:47 +01:00
dependabot[bot] 201679d7c1 Bump actions/cache from 3.2.3 to 3.2.4 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.3 to 3.2.4.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.3...v3.2.4)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 13:24:18 +01:00
Gary Gregory 3b55ade372
Merge pull request #301 from apache/dependabot/github_actions/actions/upload-artifact-3.1.2 
Bump actions/upload-artifact from 3.1.1 to 3.1.2
 2023-01-13 07:49:20 -05:00
dependabot[bot] ee6659d1af
Bump actions/upload-artifact from 3.1.1 to 3.1.2 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](83fd05a356...0b7f8abb15)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-13 12:00:28 +00:00
dependabot[bot] 656132c59f
Bump actions/cache from 3.2.2 to 3.2.3 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.2 to 3.2.3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.2...v3.2.3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-13 12:00:27 +00:00
dependabot[bot] 8d1dc08d4f
Bump actions/checkout from 3.2.0 to 3.3.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](755da8c3cf...ac59398561)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-06 12:00:20 +00:00
dependabot[bot] 4c9ac9c0aa
Bump actions/cache from 3.2.1 to 3.2.2 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.2.1...v3.2.2)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-30 12:00:19 +00:00
Gary Gregory 86b2bfa9c1
Merge pull request #294 from apache/dependabot/github_actions/actions/cache-3.2.1 
Bump actions/cache from 3.0.11 to 3.2.1
 2022-12-23 08:20:05 -05:00
dependabot[bot] 734482d447
Bump actions/cache from 3.0.11 to 3.2.1 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.11 to 3.2.1.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.11...v3.2.1)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-23 12:00:28 +00:00
dependabot[bot] e4a34fbef3
Bump ossf/scorecard-action from 2.1.0 to 2.1.2 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.0 to 2.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](937ffa90d7...e38b1902ae)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-23 12:00:25 +00:00
Gary Gregory 1cf6a1a26c
Merge pull request #291 from apache/dependabot/github_actions/actions/setup-java-3.9.0 
Bump actions/setup-java from 3.8.0 to 3.9.0
 2022-12-16 08:31:02 -05:00
Gary Gregory 18bcd0d233
Merge pull request #289 from apache/dependabot/github_actions/ossf/scorecard-action-2.1.0 
Bump ossf/scorecard-action from 2.0.6 to 2.1.0
 2022-12-16 08:30:29 -05:00
dependabot[bot] 5c2fd46d8d
Bump actions/setup-java from 3.8.0 to 3.9.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.8.0 to 3.9.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v3.8.0...v3.9.0)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-16 12:00:25 +00:00
dependabot[bot] f9f39c937f
Bump actions/checkout from 3.1.0 to 3.2.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](93ea575cb5...755da8c3cf)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-16 12:00:21 +00:00
dependabot[bot] a2d977753d
Bump ossf/scorecard-action from 2.0.6 to 2.1.0 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](99c53751e0...937ffa90d7)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-16 12:00:18 +00:00
dependabot[bot] 3cd25f5b31
Bump actions/setup-java from 3.6.0 to 3.8.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.6.0 to 3.8.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v3.6.0...v3.8.0)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-09 12:00:21 +00:00
Gary Gregory 9247498a95 Undo Bump actions/setup-java from 3.6.0 to 3.7.0 2022-12-06 06:51:07 -05:00
Gary Gregory 952e46bd38 Bump actions/setup-java from 3.6.0 to 3.7.0 #126 2022-12-01 22:02:58 -05:00
Gary Gregory dc9316063c Add GHitHub robots file 2022-11-19 17:54:13 -05:00
dependabot[bot] f17766f4b0
Bump actions/upload-artifact from 3.1.0 to 3.1.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](3cea537223...83fd05a356)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-28 12:01:50 +00:00
Gary Gregory 5d494a6fd6 Match comment to pinned commit 2022-10-23 15:13:03 -04:00
Gary Gregory cafb4d2f43 Update for Scorecards 2 2022-10-23 15:11:16 -04:00
Gary Gregory 481d8b1ff3
Update comment to match PR bump to 2.0.6 2022-10-23 14:12:45 -04:00
Gary Gregory 1b4e3af81a
Merge pull request #277 from apache/dependabot/github_actions/ossf/scorecard-action-2.0.6 
Bump ossf/scorecard-action from 1.1.2 to 2.0.6
 2022-10-23 13:53:53 -04:00
dependabot[bot] 0829b0d7a1 Bump actions/setup-java from 3.5.1 to 3.6.0 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.5.1 to 3.6.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v3.5.1...v3.6.0)

---
updated-dependencies:
- dependency-name: actions/setup-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-22 01:18:54 +13:00
dependabot[bot] 8d72b51dd6
Bump ossf/scorecard-action from 1.1.2 to 2.0.6 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ce330fde6b...99c53751e0)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-21 12:01:20 +00:00
Gary Gregory 93af662ddd Enable doclint for GitHub builds 2022-10-15 10:12:52 -04:00
dependabot[bot] 827a1fcc98 Bump actions/cache from 3.0.10 to 3.0.11 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.10...v3.0.11)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-15 09:23:28 +13:00
Sebb 7fbe1495fa Don't persist credentials unnecessarily 2022-10-08 15:18:47 +01:00
Gary Gregory 954a6ce6fd Set to level permissions to 'read' 2022-10-07 20:07:09 -04:00
dependabot[bot] ee2e3c11f6
Bump actions/cache from 3.0.9 to 3.0.10 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.9 to 3.0.10.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.9...v3.0.10)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-07 14:48:32 +00:00
dependabot[bot] 713f1fdaf3
Bump actions/checkout from 3.0.2 to 3.1.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.0.2...93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-07 12:01:22 +00:00
Gary Gregory 69a68b197e GitHub Actions build: no top level permission defined 2022-10-06 18:37:28 -04:00
Gary Gregory f36e0f590b Bump actions/setup-java from 3 to 3.5.1 2022-10-01 14:36:48 -04:00
dependabot[bot] 84a91755d4
Bump actions/cache from 3.0.8 to 3.0.9 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.8 to 3.0.9.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.8...v3.0.9)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-30 12:01:32 +00:00
Gary Gregory 4ed942fc8c Use GitHub cache for CodeQL 2022-09-22 08:43:18 -04:00
Gary Gregory 573eab776c Add same scorecards-analysis.yml as Apache Log4j (except for branches) 2022-09-12 09:53:37 -07:00
Gary Gregory caa9e348ab Bump actions/checkout from 3 to 3.0.2. 2022-09-06 09:23:37 -07:00
Gary Gregory 226628ab02 Bump actions/cache from 3.0.7 to 3.0.8 2022-08-22 15:20:52 -04:00
Gary Gregory 2236a52b19 Bump actions/cache from 3.0.6 to 3.0.7 2022-08-12 07:13:03 -04:00
Gary Gregory 8077cdcf7f Bump actions/cache from 3.0.5 to 3.0.6 2022-08-05 08:33:30 -04:00
Gary Gregory b035dae5e8 Update GitHub builds to use Temurin 2022-07-29 08:38:02 -04:00
dependabot[bot] 0455edb8eb Bump actions/cache from 3.0.4 to 3.0.5 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.4...v3.0.5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-07-16 10:10:04 +12:00
Gary Gregory e8f24e86bb Bump actions/cache 3.0.4 to 3.0.5 2022-07-15 08:33:28 -04:00
Gary Gregory aca67f4b45 Add coverage.yml 2022-06-08 12:50:11 -04:00
Gary Gregory ce569c148b Bump actions/cache from 3.0.3 to 3.0.4 2022-06-07 13:55:26 -04:00
Gary Gregory 2850581b01 Bump actions/cache from 3.0.2 to 3.0.3 2022-05-31 16:31:52 -04:00
dependabot[bot] 40b01dcee8
Bump github/codeql-action from 1 to 2 (#231) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-04-29 10:29:36 -04:00
Gary Gregory 1914e7daae Bump actions/setup-java from 2 to 3 2022-04-15 06:56:32 -04:00
Gary Gregory 3450f8e62e Bump actions/cache from 3 to 3.0.2 2022-04-12 08:13:03 -04:00
dependabot[bot] ef6c1a14dc
Bump actions/cache from 2.1.7 to 3 (#223) 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.7 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.7...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-25 07:56:52 -07:00
dependabot[bot] 9dcd49f628
Bump actions/checkout from 2 to 3 (#220) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-04 09:13:52 -05:00
Gary Gregory a470131a5c Add CodeQL GitHub workflow. 2022-02-03 06:54:39 -05:00
Gary Gregory a2d67314ae Run dependabot once a week. 2021-12-29 12:00:28 -05:00
dependabot[bot] 70b89c9ff0 Bump actions/checkout from 2.3.5 to 2.4.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.5 to 2.4.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.5...v2.4.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-24 14:06:04 +13:00
dependabot[bot] ebbd432f68 Bump actions/cache from 2.1.6 to 2.1.7 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.6 to 2.1.7.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.6...v2.1.7)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-24 13:59:52 +13:00
dependabot[bot] ef2a7fabf9
Bump actions/checkout from 2.3.4 to 2.3.5 (#188) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.4 to 2.3.5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.4...v2.3.5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-10-20 18:03:50 -04:00
Gary Gregory b5fa6a5ea9 Update GitHub build from Java 16 to 17. 
Update GitHub build from Java 17-EA to 18-EA but comment it (not there
yet).
 2021-09-28 11:05:46 -04:00
Gary Gregory 19cd322dba AdoptOpenJDK is moving to the Eclipse Foundation and rebranding as 
Eclipse Temurin.
 2021-08-29 00:25:02 -04:00
dependabot[bot] 7b99bdcc2d
Bump actions/cache from 2.1.4 to 2.1.6 (#153) 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.4 to 2.1.6.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.4...v2.1.6)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-06-24 20:31:26 -04:00
Gary Gregory bfdcad2a4f Update `actions/setup-java` to v2. 2021-04-19 09:13:34 -04:00
Gary Gregory a7117b8d40 Replace GitHub build for Java 15 with Java 16 and drop Java 16-ea. 2021-03-17 15:43:49 -04:00