Commit Graph

10 Commits

Author SHA1 Message Date
6f4c537a3b chore(deps): update hadolint/hadolint-action action to v3.3.0 (#20)
Some checks failed
Release / Tag release (push) Successful in 17s
Release / Create Release (push) Successful in 1m42s
Release / Publish Docker Images (push) Failing after 1m49s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [hadolint/hadolint-action](https://github.com/hadolint/hadolint-action) | action | minor | `v3.2.0` -> `v3.3.0` |

---

### Release Notes

<details>
<summary>hadolint/hadolint-action (hadolint/hadolint-action)</summary>

### [`v3.3.0`](https://github.com/hadolint/hadolint-action/releases/tag/v3.3.0)

[Compare Source](https://github.com/hadolint/hadolint-action/compare/v3.2.0...v3.3.0)

##### Features

- trigger release workflow ([2332a7b](2332a7b74a))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMjMuMCIsInVwZGF0ZWRJblZlciI6IjQxLjEyMy4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJ0eXBlL2RlcGVuZGVuY2llcyJdfQ==-->

Reviewed-on: #20
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-09-22 19:50:45 +02:00
ec9494ea13 chore(deps): update actions/checkout action to v5 (#17)
Some checks failed
Release / Tag release (push) Successful in 34s
Release / Create Release (push) Successful in 3m59s
Release / Publish Docker Images (push) Failing after 5m17s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://github.com/actions/checkout) | action | major | `v4.3.0` -> `v5.0.0` |

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

### [`v5.0.0`](https://github.com/actions/checkout/releases/tag/v5.0.0)

[Compare Source](https://github.com/actions/checkout/compare/v4.3.0...v5.0.0)

#### What's Changed

- Update actions checkout to use node 24 by [@&#8203;salmanmkc](https://github.com/salmanmkc) in [#&#8203;2226](https://github.com/actions/checkout/pull/2226)
- Prepare v5.0.0 release by [@&#8203;salmanmkc](https://github.com/salmanmkc) in [#&#8203;2238](https://github.com/actions/checkout/pull/2238)

#### ⚠️ Minimum Compatible Runner Version

**v2.327.1**\
[Release Notes](https://github.com/actions/runner/releases/tag/v2.327.1)

Make sure your runner is updated to this version or newer to use this release.

**Full Changelog**: <https://github.com/actions/checkout/compare/v4...v5.0.0>

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS42MS4xIiwidXBkYXRlZEluVmVyIjoiNDEuODEuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=-->

Reviewed-on: #17
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-09-15 11:53:59 +02:00
13b67934f6 chore(deps): update hadolint/hadolint-action action to v3.2.0 (#18)
Some checks failed
Release / Tag release (push) Successful in 27s
Release / Create Release (push) Successful in 2m20s
Release / Publish Docker Images (push) Failing after 2m15s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [hadolint/hadolint-action](https://github.com/hadolint/hadolint-action) | action | minor | `v3.1.0` -> `v3.2.0` |

---

### Release Notes

<details>
<summary>hadolint/hadolint-action (hadolint/hadolint-action)</summary>

### [`v3.2.0`](https://github.com/hadolint/hadolint-action/releases/tag/v3.2.0)

[Compare Source](https://github.com/hadolint/hadolint-action/compare/v3.1.0...v3.2.0)

##### Features

- new minor release ([3fc49fb](3fc49fb50d))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45MS40IiwidXBkYXRlZEluVmVyIjoiNDEuOTEuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=-->

Reviewed-on: #18
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-09-09 14:57:26 +02:00
5d9fa8f641 chore(deps): update actions/checkout action to v4.3.0 (#16)
Some checks failed
Release / Tag release (push) Successful in 22s
Release / Create Release (push) Successful in 9s
Release / Publish Docker Images (push) Failing after 1m31s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://github.com/actions/checkout) | action | minor | `v4.2.2` -> `v4.3.0` |

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

### [`v4.3.0`](https://github.com/actions/checkout/releases/tag/v4.3.0)

[Compare Source](https://github.com/actions/checkout/compare/v4.2.2...v4.3.0)

#### What's Changed

- docs: update README.md by [@&#8203;motss](https://github.com/motss) in https://github.com/actions/checkout/pull/1971
- Add internal repos for checking out multiple repositories by [@&#8203;mouismail](https://github.com/mouismail) in https://github.com/actions/checkout/pull/1977
- Documentation update - add recommended permissions to Readme by [@&#8203;benwells](https://github.com/benwells) in https://github.com/actions/checkout/pull/2043
- Adjust positioning of user email note and permissions heading by [@&#8203;joshmgross](https://github.com/joshmgross) in https://github.com/actions/checkout/pull/2044
- Update README.md by [@&#8203;nebuk89](https://github.com/nebuk89) in https://github.com/actions/checkout/pull/2194
- Update CODEOWNERS for actions by [@&#8203;TingluoHuang](https://github.com/TingluoHuang) in https://github.com/actions/checkout/pull/2224
- Update package dependencies by [@&#8203;salmanmkc](https://github.com/salmanmkc) in https://github.com/actions/checkout/pull/2236
- Prepare release v4.3.0 by [@&#8203;salmanmkc](https://github.com/salmanmkc) in https://github.com/actions/checkout/pull/2237

#### New Contributors

- [@&#8203;motss](https://github.com/motss) made their first contribution in https://github.com/actions/checkout/pull/1971
- [@&#8203;mouismail](https://github.com/mouismail) made their first contribution in https://github.com/actions/checkout/pull/1977
- [@&#8203;benwells](https://github.com/benwells) made their first contribution in https://github.com/actions/checkout/pull/2043
- [@&#8203;nebuk89](https://github.com/nebuk89) made their first contribution in https://github.com/actions/checkout/pull/2194
- [@&#8203;salmanmkc](https://github.com/salmanmkc) made their first contribution in https://github.com/actions/checkout/pull/2236

**Full Changelog**: https://github.com/actions/checkout/compare/v4...v4.3.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS42MS4xIiwidXBkYXRlZEluVmVyIjoiNDEuNjEuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=-->

Reviewed-on: #16
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-08-12 22:12:44 +02:00
83fe18553d feat(ci): Update .gitea/workflows/ci.yml (#15)
All checks were successful
Release / Tag release (push) Successful in 11s
Release / Create Release (push) Successful in 5s
Release / Publish Docker Images (push) Successful in 1m0s
Okay, I will review the provided Git diff and explain the proposed changes. Here's a breakdown:

**File:** `.gitea/workflows/ci.yml`

This file defines the CI (Continuous Integration) workflow for the Gitea repository. The workflow is triggered on certain events (likely pushes and pull requests).

**Changes:**

1.  **Hadolint Action:**
    *   The change introduces a `name` field to the `hadolint-action` step, renaming it to "Run Hadolint". This improves the readability of the workflow execution logs.

2.  **SonarQube Scan (Commented Out):**
    *   The SonarQube Scan action is commented out. This means that the SonarQube static analysis will no longer be performed as part of the CI workflow *for now*. The environment variables `SONAR_HOST_URL` and `SONAR_TOKEN` were used to authenticate with SonarQube and are now also commented out.

3.  **Snyk SAST Scan:**
    *   A new step called "Snyk SAST Scan" is added. This step uses the `snyk/actions/python@master` action to perform static application security testing (SAST) using Snyk.
    *   It uses the `SNYK_TOKEN` secret to authenticate with Snyk.
    *   The `args` parameter is set to `snyk code test --all-projects --exclude=.archive`. This tells Snyk to scan all projects in the repository for security vulnerabilities and to exclude the `.archive` directory from the scan.

**Summary:**

The primary changes are the addition of a Snyk SAST scan and the temporary removal of the SonarQube scan from the CI workflow.  Hadolint was updated with a name to provide clarity. The Snyk scan performs static analysis to identify potential security vulnerabilities directly in the codebase. The SonarQube scan is commented out, possibly for temporary reasons such as configuration issues, cost optimization, or replacement by the Snyk SAST scan.

Reviewed-on: #15
2025-06-08 10:47:31 +02:00
7981877152 chore(deps): update sonarsource/sonarqube-scan-action action to v5.2.0 (#11)
Some checks failed
Release / Create Release (push) Successful in 1m11s
Release / Print Release (push) Successful in 20s
Release / Publish Docker Images (push) Failing after 5m2s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [SonarSource/sonarqube-scan-action](https://github.com/SonarSource/sonarqube-scan-action) | action | minor | `v5.1.0` -> `v5.2.0` |

---

### Release Notes

<details>
<summary>SonarSource/sonarqube-scan-action (SonarSource/sonarqube-scan-action)</summary>

### [`v5.2.0`](https://github.com/SonarSource/sonarqube-scan-action/releases/tag/v5.2.0)

[Compare Source](https://github.com/SonarSource/sonarqube-scan-action/compare/v5.1.0...v5.2.0)

#### What's Changed

-   SQSCANGHA-90 remove mend dead conf by [@&#8203;pierre-guillot-gh](https://github.com/pierre-guillot-gh) in https://github.com/SonarSource/sonarqube-scan-action/pull/184
-   SQSCANGHA-89 Attempt to fix command injection by [@&#8203;henryju](https://github.com/henryju) in https://github.com/SonarSource/sonarqube-scan-action/pull/186
-   SQSCANGHA-93 Fix madhead/semver-utils' version by [@&#8203;csaba-feher-sonarsource](https://github.com/csaba-feher-sonarsource) in https://github.com/SonarSource/sonarqube-scan-action/pull/187
-   SQSCANGHA-94 Update version update logic by [@&#8203;csaba-feher-sonarsource](https://github.com/csaba-feher-sonarsource) in https://github.com/SonarSource/sonarqube-scan-action/pull/188
-   SQSCANGHA-92 Validate scanner version by [@&#8203;csaba-feher-sonarsource](https://github.com/csaba-feher-sonarsource) in https://github.com/SonarSource/sonarqube-scan-action/pull/189

**Full Changelog**: https://github.com/SonarSource/sonarqube-scan-action/compare/v5...v5.2.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC4wLjkiLCJ1cGRhdGVkSW5WZXIiOiI0MC4wLjkiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbInR5cGUvZGVwZW5kZW5jaWVzIl19-->

Reviewed-on: #11
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-05-06 21:19:11 +02:00
0121c607be chore(deps): update sonarsource/sonarqube-scan-action action to v5.1.0 (#10)
Some checks failed
Release / Create Release (push) Successful in 30s
Release / Print Release (push) Successful in 5s
Release / Publish Docker Images (push) Failing after 1m56s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [SonarSource/sonarqube-scan-action](https://github.com/SonarSource/sonarqube-scan-action) | action | minor | `v5.0.0` -> `v5.1.0` |

---

### Release Notes

<details>
<summary>SonarSource/sonarqube-scan-action (SonarSource/sonarqube-scan-action)</summary>

### [`v5.1.0`](https://github.com/SonarSource/sonarqube-scan-action/releases/tag/v5.1.0)

[Compare Source](https://github.com/SonarSource/sonarqube-scan-action/compare/v5.0.0...v5.1.0)

#### What's Changed

-   Update SonarScanner CLI to 7.1.0.4889 to support sonar.region=us by [@&#8203;github-actions](https://github.com/github-actions) in https://github.com/SonarSource/sonarqube-scan-action/pull/183

**Full Changelog**: https://github.com/SonarSource/sonarqube-scan-action/compare/v5.0.0...v5.1.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMTEuNCIsInVwZGF0ZWRJblZlciI6IjM5LjIxMS40IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJ0eXBlL2RlcGVuZGVuY2llcyJdfQ==-->

Reviewed-on: #10
Reviewed-by: Luke Tainton <luke@tainton.uk>
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-03-24 16:45:34 +01:00
34853ccd5d chore(deps): update sonarsource/sonarqube-scan-action action to v5 (#7)
Some checks failed
Release / Create Release (push) Successful in 8s
Release / Print Release (push) Successful in 2s
Release / Publish Docker Images (push) Failing after 38s
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [SonarSource/sonarqube-scan-action](https://github.com/SonarSource/sonarqube-scan-action) | action | major | `v4.2.1` -> `v5.0.0` |

---

### Release Notes

<details>
<summary>SonarSource/sonarqube-scan-action (SonarSource/sonarqube-scan-action)</summary>

### [`v5.0.0`](https://github.com/SonarSource/sonarqube-scan-action/releases/tag/v5.0.0)

[Compare Source](https://github.com/SonarSource/sonarqube-scan-action/compare/v4.2.1...v5.0.0)

#### What's Changed

-   SQSCANGHA-81 Update SonarScanner CLI to 7.0.2.4839 by [@&#8203;github-actions](https://github.com/github-actions) in https://github.com/SonarSource/sonarqube-scan-action/pull/175

**Full Changelog**: https://github.com/SonarSource/sonarqube-scan-action/compare/v4...v5.0.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xNzEuMyIsInVwZGF0ZWRJblZlciI6IjM5LjE3MS4zIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJ0eXBlL2RlcGVuZGVuY2llcyJdfQ==-->

Reviewed-on: #7
Reviewed-by: Luke Tainton <luke@tainton.uk>
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
2025-02-17 12:02:10 +01:00
7c0587314e feat(ci): switch to self-hosted SonarQube
Some checks failed
Validate PR Title / validate (pull_request) Successful in 37s
CI / ci (pull_request) Successful in 1m35s
Release / Test (push) Failing after 1s
Release / Create Release (push) Has been skipped
Release / Print Release (push) Has been skipped
Release / Publish Docker Images (push) Has been skipped
2025-02-09 21:08:54 +00:00
dcb11b3faf feat(ci): add SonarQube Cloud (#1)
Some checks failed
Release / Test (push) Successful in 44s
Release / Create Release (push) Successful in 10s
Build Docker / Create Docker Image (release) Failing after 1s
Release / Print Release (push) Successful in 3s
Reviewed-on: public/docker-dnsmasq#1
2025-01-15 23:35:41 +01:00