f2ddeaface
Merge remote-tracking branch 'origin/5.8.x'
2022-10-17 15:01:30 -06:00
ff055cf07a
Remote antoraUpdateVersion task from CI
2022-10-17 14:24:13 -06:00
5e4f1ba211
Merge branch '5.8.x'
...
Closes gh-11826
2022-09-16 10:19:32 -03:00
7756247c3a
Simplify checkSamples task
...
Closes gh-11814
2022-09-16 09:36:12 -03:00
57d212ddca
Use cache and user.name system property on Windows
2022-07-28 15:13:55 -05:00
539b17f6da
Only run prerequisites job if on upstream repo
2022-07-28 15:13:54 -05:00
37e1ad27fe
Simplify dependency graph
2022-07-28 15:13:53 -05:00
043fdd6f03
Use Spring Gradle Build Action
...
Closes gh-11630
2022-07-28 15:13:52 -05:00
3234e05085
Polish gh-11367
2022-07-28 15:13:51 -05:00
f957e3c051
Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.
- Included permissions for the action.
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
Closes gh-11367
2022-07-28 15:13:51 -05:00
865bf23ecc
Use cache and user.name system property on Windows
2022-07-28 13:00:15 -05:00
f86d30f4a1
Only run prerequisites job if on upstream repo
2022-07-27 16:01:16 -05:00
dc59d12405
Simplify dependency graph
2022-07-27 16:01:15 -05:00
bdeb32854e
Use Spring Gradle Build Action
...
Closes gh-11630
2022-07-27 16:01:15 -05:00
3f4efedd23
Polish gh-11367
2022-07-26 15:33:34 -05:00
8f93a7fc94
Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.
- Included permissions for the action.
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-07-26 15:33:33 -05:00
aaf20e7b61
Build only on branches
...
Issue gh-11480
2022-07-18 11:47:25 -05:00
148756076c
Backport release automation and github actions
...
Closes gh-11501
2022-07-13 15:51:25 -05:00
095f23d81f
Fix slack notifications in #spring-security-ci
...
Issue gh-11346
2022-07-05 17:50:27 -05:00
ac98e358a5
Add slack announcement when release is successful
...
Closes gh-11307
2022-06-14 14:10:09 -05:00
d1cb236df5
Fix slack notifications in #spring-security-ci
...
This change can be reverted if upgrading to a new version of
Gamesight/slack-workflow-status with the fix available (> 1.1.0).
Closes gh-11346
2022-06-07 16:07:10 -05:00
07f28de79b
Polish gh-11184
...
Propagate rename in notify_result section.
2022-06-03 15:23:48 -05:00
46723a601c
Add workflow step for scheduling the next milestone
...
This step introduces the concept of a release train to determine the appropriate release dates and schedules milestones as needed. It uses the following rules:
- If the current SNAPSHOT version is a minor release (patchVersion == 0), checks to see if a GA release exists. If not, a release train is scheduled as follows:
- Finds the next available release train starting month (including this month), either January or July.
- Schedules a release train with M1, M2, M3, RC1 and GA versions on either January/February/March/April/May or July/August/September/October/November
- If the current SNAPSHOT version is a patch release (patchVersion != 0), checks to see if a GA release exists. If not, an individual milestone is scheduled on the next even month whose release day is in the future (can include this month).
- In either case, the release day used to schedule the release is based on the configured weekOfMonth (1-4) and dayOfWeek (1-5), e.g. 3rd Monday of the month (3, 1).
If a milestone already exists, nothing is created. Once created, milestone due dates can be updated manually as desired.
Closes gh-10458
2022-06-03 15:07:42 -05:00
44e672d969
Use properties in the checkSamples job
...
Issue gh-10344
2022-05-11 16:13:34 -03:00
0137f94f3b
Use properties in the checkSamples job
...
Issue gh-10344
2022-05-11 12:32:16 -03:00
9601efd341
Add gradle-build-action to GitHub Actions pipelines
...
Closes gh-11099
2022-04-14 15:05:46 -05:00
992b8c38ac
Update antora on next development version release
...
Move commit from gradle task to workflow. Update antora.yml after project version update and before commit.
Closes gh-11021
2022-03-29 12:28:37 +02:00
43142a8137
Update CI pipeline to push next snapshot version after release
...
Issue gh-10461
2022-03-18 13:43:37 -05:00
d7ac254b3d
Do not run CI on tags
...
Issue gh-10457
2022-03-16 11:47:14 -05:00
5f37ee2f64
Add missing output and checkout
...
Issue gh-10928
2022-03-09 10:47:48 -06:00
aa0005b1e1
Update CI process to create GitHub releases with release notes
...
Closes gh-10928
2022-03-08 17:41:57 -06:00
c7f3ad89f3
Re-enable check samples CI task
...
Issue gh-10832
This reverts commit 85de423756
2022-02-14 13:04:32 +01:00
85de423756
Temporarily disable check samples CI task
...
Issue gh-10832
2022-02-14 12:53:48 +01:00
e5ff13901e
Switch workflows to use a JDK17 baseline
...
Closes gh-10353
2021-11-01 09:02:42 -03:00
d779cd1d48
Support Structure101 License ID
...
Closes gh-10443
2021-10-28 13:26:02 -06:00
cb6ca7f470
GitHub Actions uses spring-builds+github user
...
This is more clear than spring-builds user
2021-10-26 11:25:42 -06:00
cff0bde1a3
GitHub Actions uses spring-builds+github user
...
This is more clear than spring-builds user
2021-09-28 15:09:03 -05:00
770c57ecc9
Add Structure101 to CI Build
...
Closes gh-6236
2021-09-27 16:23:19 -06:00
d0fbe6b501
Update CI deployments to be dependent on Check Samples
...
Closes gh-10207
2021-08-19 10:13:38 -03:00
be91a78781
Update Check Samples job to run in parallel
...
Issue gh-9846
2021-08-17 11:15:10 -03:00
71f1cf1e0b
Remove Remaining Sonar Reference
...
Issue gh-10205
2021-08-16 14:45:33 -05:00
829733896c
Remove unused Sonar from Build
...
Closes gh-10205
2021-08-16 14:42:38 -05:00
c562d56ff4
Add checkSamples task
...
Closes gh-9846
2021-07-27 14:11:51 -03:00
98326dfae4
Use stack-workflow-status Action
...
Closes gh-9792
2021-06-15 13:41:11 -06:00
2d61fda1af
Combine multiple OS builds into one
...
Closes gh-9790
2021-05-25 10:40:28 -06:00
fa7ba5e3db
Update Env Variables in Build Windows Job
...
Closes gh-9761
2021-05-25 10:40:28 -06:00
f7f435d3f4
Include all configured branches in CI
...
Closes gh-9775
2021-05-18 15:57:40 -06:00
081e3301ad
Use GPG_PRIVATE_KEY directly
...
Closes gh-9776
2021-05-18 16:44:29 -05:00
03924951a2
Update GitHub Actions to use publishArtifacts
2021-05-17 23:40:43 -05:00
8ace670479
Configure user name for Gradle CI builds
...
Closes gh-9747
2021-05-17 11:07:35 +02:00
Josh Cummings
Marcus Da Coregio
Steve Riesenberg
naveen
Eleftheria Stein
Rob Winch