ae1a764ffe
ci: bump taiki-e/install-action from 2.81.8 to 2.81.10 in /.github/actions/setup ( #23058 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.8 to 2.81.10.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/0631aa6515c7d545823c67cfae7ef4fc7f490154...7a79fe8c3a13344501c80d99cae481c1c9085912 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:19:58 +02:00
453a49d954
ci: bump taiki-e/install-action from 2.81.7 to 2.81.8 in /.github/actions/setup ( #22995 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.7 to 2.81.8.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/56545b37b57562edd73171cb6c62cc509db4c34e...0631aa6515c7d545823c67cfae7ef4fc7f490154 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.8
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:14 +02:00
8ce9ecaec4
ci: bump astral-sh/setup-uv from 8.1.0 to 8.2.0 in /.github/actions/setup ( #22923 )
...
ci: bump astral-sh/setup-uv in /.github/actions/setup
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv ) from 8.1.0 to 8.2.0.
- [Release notes](https://github.com/astral-sh/setup-uv/releases )
- [Commits](https://github.com/astral-sh/setup-uv/compare/08807647e7069bb48b6ef5acd8ec9567f424441b...fac544c07dec837d0ccb6301d7b5580bf5edae39 )
---
updated-dependencies:
- dependency-name: astral-sh/setup-uv
dependency-version: 8.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-09 14:56:51 +02:00
91b8f85788
ci: bump actions/checkout from 6.0.2 to 6.0.3 ( #22877 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.2 to 6.0.3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/de0fac2e4500dabe0009e67214ff5f5447ce83dd...df4cb1c069e1874edd31b4311f1884172cec0e10 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-09 14:55:44 +02:00
29550745e0
ci: bump int128/docker-manifest-create-action from 2.21.0 to 2.22.0 ( #22946 )
...
Bumps [int128/docker-manifest-create-action](https://github.com/int128/docker-manifest-create-action ) from 2.21.0 to 2.22.0.
- [Release notes](https://github.com/int128/docker-manifest-create-action/releases )
- [Commits](https://github.com/int128/docker-manifest-create-action/compare/b9d644eaa3312dd895ffdafb19333a7b266e6ba9...126c2b2195800ebc112cffe9ad6c2e2cce16eff2 )
---
updated-dependencies:
- dependency-name: int128/docker-manifest-create-action
dependency-version: 2.22.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-09 14:16:41 +02:00
20bc560087
ci: bump taiki-e/install-action from 2.81.2 to 2.81.7 in /.github/actions/setup ( #22948 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.2 to 2.81.7.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/6887963ccf37a9ddcd8c5fa4baeb3e1e5fd61fa1...56545b37b57562edd73171cb6c62cc509db4c34e )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-09 14:16:32 +02:00
72cbd237f9
ci: bump codecov/codecov-action from 6.0.1 to 7.0.0 in /.github/actions/test-results ( #22949 )
...
ci: bump codecov/codecov-action in /.github/actions/test-results
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 6.0.1 to 7.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/e79a6962e0d4c0c17b229090214935d2e33f8354...fb8b3582c8e4def4969c97caa2f19720cb33a72f )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-version: 7.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-09 14:16:23 +02:00
24157caaf6
ci: remove redundant if in cherry-pick action ( #22859 )
2026-06-08 14:48:43 +02:00
668f363ae7
ci: bump getsentry/action-release from 3.6.1 to 3.7.0 ( #22917 )
...
Bumps [getsentry/action-release](https://github.com/getsentry/action-release ) from 3.6.1 to 3.7.0.
- [Release notes](https://github.com/getsentry/action-release/releases )
- [Changelog](https://github.com/getsentry/action-release/blob/master/CHANGELOG.md )
- [Commits](https://github.com/getsentry/action-release/compare/f71adb49d4b2aeeda98052d3de234bbb0f3e03ab...ff07929a6537bac57790c3451cf4d364aca38528 )
---
updated-dependencies:
- dependency-name: getsentry/action-release
dependency-version: 3.7.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-08 14:37:46 +02:00
83854281d0
ci: bump github/codeql-action from 4.36.1 to 4.36.2 ( #22921 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.36.1 to 4.36.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/87557b9c84dde89fdd9b10e88954ac2f4248e463...8aad20d150bbac5944a9f9d289da16a4b0d87c1e )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.36.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-08 14:37:29 +02:00
ec4847182d
ci: bump taiki-e/install-action from 2.81.1 to 2.81.2 in /.github/actions/setup ( #22884 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.1 to 2.81.2.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/e49978b799e49ff429d162b7a30601a569ab6538...6887963ccf37a9ddcd8c5fa4baeb3e1e5fd61fa1 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-05 23:09:14 +02:00
8cc4e7eb84
ci: bump github/codeql-action from 4.36.0 to 4.36.1 ( #22882 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.36.0 to 4.36.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/7211b7c8077ea37d8641b6271f6a365a22a5fbfa...87557b9c84dde89fdd9b10e88954ac2f4248e463 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.36.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-05 18:13:30 +02:00
b39c6877bf
ci: bump AndreKurait/docker-cache from 0.6.0 to 0.7.0 in /.github/actions/setup ( #22883 )
...
ci: bump AndreKurait/docker-cache in /.github/actions/setup
Bumps [AndreKurait/docker-cache](https://github.com/andrekurait/docker-cache ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/andrekurait/docker-cache/releases )
- [Changelog](https://github.com/AndreKurait/docker-cache/blob/main/CHANGELOG.md )
- [Commits](https://github.com/andrekurait/docker-cache/compare/0fe76702a40db986d9663c24954fc14c6a6031b7...7a3887908bdb97935395833df69b060cfcca0f7f )
---
updated-dependencies:
- dependency-name: AndreKurait/docker-cache
dependency-version: 0.7.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-05 18:13:21 +02:00
767fe966a3
root: Update PR template ( #22185 )
...
* Update pr template
* Update makefile in another PR
* Apply suggestion from @dewi-tik
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-04 11:12:50 -05:00
b9d4a563d6
ci: harden cherry-pick action against template injection ( #22828 )
2026-06-04 17:15:03 +03:00
b83036e865
ci: bump taiki-e/install-action from 2.80.0 to 2.81.1 in /.github/actions/setup ( #22848 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.80.0 to 2.81.1.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/50b4a718b59c718df4ef27a3b445f86cd57b9f00...e49978b799e49ff429d162b7a30601a569ab6538 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-04 15:06:10 +02:00
88439e45f0
ci: bump aws-actions/configure-aws-credentials from 6.1.3 to 6.2.0 ( #22855 )
...
Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials ) from 6.1.3 to 6.2.0.
- [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases )
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws-actions/configure-aws-credentials/compare/99214aa6889fcddfa57764031d71add364327e59...e7f100cf4c008499ea8adda475de1042d6975c7b )
---
updated-dependencies:
- dependency-name: aws-actions/configure-aws-credentials
dependency-version: 6.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-04 15:04:20 +02:00
4a267b3ead
ci: replace deprecated app-id with client-id for actions/create-github-app-token ( #22799 )
2026-06-02 20:50:08 +02:00
5c1f435995
ci: bump snok/container-retention-policy from 3.0.1 to 3.1.0 ( #22778 )
...
Bumps [snok/container-retention-policy](https://github.com/snok/container-retention-policy ) from 3.0.1 to 3.1.0.
- [Release notes](https://github.com/snok/container-retention-policy/releases )
- [Commits](https://github.com/snok/container-retention-policy/compare/3b0972b2276b171b212f8c4efbca59ebba26eceb...d3bdcf5ce9b05f685154e4a16c39233b245e3d53 )
---
updated-dependencies:
- dependency-name: snok/container-retention-policy
dependency-version: 3.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-02 19:54:28 +02:00
2e271785ab
ci: update ubuntu version of ARM runners ( #22798 )
2026-06-02 19:51:53 +02:00
c1e784689b
ci: bump getsentry/action-release from 3.6.0 to 3.6.1 ( #22777 )
...
Bumps [getsentry/action-release](https://github.com/getsentry/action-release ) from 3.6.0 to 3.6.1.
- [Release notes](https://github.com/getsentry/action-release/releases )
- [Changelog](https://github.com/getsentry/action-release/blob/master/CHANGELOG.md )
- [Commits](https://github.com/getsentry/action-release/compare/5657c9e888b4e2cc85f4d29143ea4131fde4a73a...f71adb49d4b2aeeda98052d3de234bbb0f3e03ab )
---
updated-dependencies:
- dependency-name: getsentry/action-release
dependency-version: 3.6.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-02 17:03:03 +02:00
17395b2d36
ci: bump docker/setup-qemu-action from 4.0.0 to 4.1.0 ( #22779 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](https://github.com/docker/setup-qemu-action/compare/ce360397dd3f832beb865e1373c09c0e9f86d70a...06116385d9baf250c9f4dcb4858b16962ea869c3 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-02 17:02:41 +02:00
232b67420e
ci: bump taiki-e/install-action from 2.79.6 to 2.80.0 in /.github/actions/setup ( #22781 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.79.6 to 2.80.0.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/f48d2f8ba2b452934c948b7be1a768079c3632ff...50b4a718b59c718df4ef27a3b445f86cd57b9f00 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.79.14
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-02 17:02:15 +02:00
48a66f55f4
ci: bump aws-actions/configure-aws-credentials from 6.1.1 to 6.1.3 ( #22780 )
...
Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials ) from 6.1.1 to 6.1.3.
- [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases )
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws-actions/configure-aws-credentials/compare/d979d5b3a71173a29b74b5b88418bfda9437d885...99214aa6889fcddfa57764031d71add364327e59 )
---
updated-dependencies:
- dependency-name: aws-actions/configure-aws-credentials
dependency-version: 6.1.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-02 17:01:50 +02:00
75b8694bbf
core: bump types-zxcvbn from 4.5.0.20260508 to 4.5.0.20260518 ( #22652 )
...
* core: bump types-zxcvbn from 4.5.0.20260508 to 4.5.0.20260518
Bumps [types-zxcvbn](https://github.com/python/typeshed ) from 4.5.0.20260508 to 4.5.0.20260518.
- [Commits](https://github.com/python/typeshed/commits )
---
updated-dependencies:
- dependency-name: types-zxcvbn
dependency-version: 4.5.0.20260518
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
* merge types updates
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-05-26 17:25:26 +02:00
4d5d7bf135
ci: bump taiki-e/install-action from 2.79.5 to 2.79.6 in /.github/actions/setup ( #22655 )
...
* ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.79.5 to 2.79.6.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/6c1f7cf125e42770ff087ea443901b487cc5471a...f48d2f8ba2b452934c948b7be1a768079c3632ff )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.79.6
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
* re-lock
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-05-26 17:06:53 +02:00
77576832ac
ci: bump actions/stale from 10.2.0 to 10.3.0 ( #22625 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 10.2.0 to 10.3.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/b5d41d4e1d5dceea10e7104786b73624c18a190f...eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-26 11:20:00 +02:00
182f1ef695
ci: bump docker/setup-buildx-action from 4.0.0 to 4.1.0 ( #22626 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd...d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-26 11:19:39 +02:00
91753b2a03
ci: bump github/codeql-action from 4.35.5 to 4.36.0 ( #22624 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.5 to 4.36.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/9e0d7b8d25671d64c341c19c0152d693099fb5ba...7211b7c8077ea37d8641b6271f6a365a22a5fbfa )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.36.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-26 11:19:21 +02:00
d4184a58ff
ci: bump docker/build-push-action from 7.1.0 to 7.2.0 ( #22623 )
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 7.1.0 to 7.2.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/bcafcacb16a39f128d818304e6c9c0c18556b85f...f9f3042f7e2789586610d6e8b85c8f03e5195baf )
---
updated-dependencies:
- dependency-name: docker/build-push-action
dependency-version: 7.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-26 11:19:04 +02:00
4190de1870
ci: bump docker/login-action from 4.1.0 to 4.2.0 ( #22627 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-05-26 11:10:19 +02:00
7d797e9ae8
ci: bump taiki-e/install-action from 2.79.2 to 2.79.5 in /.github/actions/setup ( #22629 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-05-26 11:10:10 +02:00
4e469e42c9
ci: bump golangci/golangci-lint-action from 9.2.0 to 9.2.1 ( #22628 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-05-26 11:10:00 +02:00
cf10dc4fa6
ci: update nightly compatibility versions ( #22557 )
...
ci: Update nightly compatibility versions
Keep docs in the daily container test matrix while limiting versioned release-site checks to 2026.2 and 2026.5.
Agent-thread: https://sdko.org/internal/threads/019e4d9f-929b-74e2-ae4a-8d159a6e57df
Co-authored-by: Agent <agent@svc.sdko.net >
2026-05-22 12:15:03 +00:00
69c0d998c4
ci: bump taiki-e/install-action from 2.79.1 to 2.79.2 in /.github/actions/setup ( #22565 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-05-22 12:03:45 +00:00
9efb6c365c
ci: add dependency-review workflow ( #22464 )
...
* ci: add dependency-review workflow
Adds a `QA - Dependency review` workflow that runs
`actions/dependency-review-action` on every PR targeting `main`.
This blocks PRs that introduce a *new* dependency (direct or transitive)
with a known high or critical vulnerability in GitHub's Advisory
Database. It complements rather than duplicates Dependabot: Dependabot
surfaces vulns in already-merged dependencies; dependency-review catches
them at the moment they would be introduced.
It also catches the much narrower case that motivated this PR — a
maintainer-account-hijack publishing a malicious version to npm — only
indirectly: GitHub will not have an advisory entry until the package
has been flagged. The real value here is keeping the much larger class
of "newly introduced dep happens to carry a known CVE" out of the tree.
Configured with:
- fail-on-severity: high (block on high/critical only)
- comment-summary-in-pr: on-failure (surface diff context to
reviewers when a block fires)
Pinned to v5.0.0 (a1d282b36b6f3519aa1f3fc636f609c47dddb294).
Co-authored-by: Agent <279763771+playpen-agent@users.noreply.github.com >
* Update comment.
---------
Co-authored-by: Agent <279763771+playpen-agent@users.noreply.github.com >
2026-05-21 12:16:02 +00:00
0be121dc44
ci: bump codecov/codecov-action from 6.0.0 to 6.0.1 in /.github/actions/test-results ( #22522 )
...
ci: bump codecov/codecov-action in /.github/actions/test-results
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2...e79a6962e0d4c0c17b229090214935d2e33f8354 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-version: 6.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-21 08:51:55 +00:00
cf7d8b4cd1
ci: bump taiki-e/install-action from 2.79.0 to 2.79.1 in /.github/actions/setup ( #22521 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.79.0 to 2.79.1.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/7be9fd86bd1707236395105d6e9329dd1511a7e1...b550161ef8a7bc4f2a671c0b03a18ac9ccedea1e )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.79.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-21 10:26:13 +02:00
00975518bd
ci: bump int128/docker-manifest-create-action from 2.20.0 to 2.21.0 ( #22480 )
...
Bumps [int128/docker-manifest-create-action](https://github.com/int128/docker-manifest-create-action ) from 2.20.0 to 2.21.0.
- [Release notes](https://github.com/int128/docker-manifest-create-action/releases )
- [Commits](https://github.com/int128/docker-manifest-create-action/compare/fa55f72001a6c74b0f4997dca65c70d334905180...b9d644eaa3312dd895ffdafb19333a7b266e6ba9 )
---
updated-dependencies:
- dependency-name: int128/docker-manifest-create-action
dependency-version: 2.21.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-20 17:02:05 +02:00
bc9ec53d4c
ci: bump taiki-e/install-action from 2.78.1 to 2.79.0 in /.github/actions/setup ( #22496 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.78.1 to 2.79.0.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/184183c2401be73c3bf42c2e61268aa5855379c1...7be9fd86bd1707236395105d6e9329dd1511a7e1 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.79.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-05-20 17:01:51 +02:00
397e8ff8c4
ci: pin github/codeql-action references to commit SHA ( #22458 )
...
Replace the three remaining tag-pinned references to
github/codeql-action@v4.35 .5 in qa-codeql.yml with their resolved
commit SHA (9e0d7b8d25671d64c341c19c0152d693099fb5ba). Tag pinning
allows an upstream tag to be silently retargeted at a new commit; SHA
pinning removes that risk and brings these three references in line
with the rest of the repo's actions, which are already SHA-pinned.
Co-authored-by: Agent <279763771+playpen-agent@users.noreply.github.com >
2026-05-19 18:26:57 +02:00
fa3c7b8b55
ci: bump actions/create-github-app-token from 3.1.1 to 3.2.0 ( #22381 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-05-18 15:39:28 +02:00
52108e446a
ci: bump github/codeql-action from 4.35.4 to 4.35.5 ( #22432 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.4 to 4.35.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v4.35.4...v4.35.5 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-18 12:48:39 +02:00
49a2e3879a
ci: bump calibreapp/image-actions from e2cc8db5d49c849e00844dfebf01438318e96fa2 to 9d037c06280028c110ff61c433ad4dc7d33c3c43 ( #22433 )
...
ci: bump calibreapp/image-actions
Bumps [calibreapp/image-actions](https://github.com/calibreapp/image-actions ) from e2cc8db5d49c849e00844dfebf01438318e96fa2 to 9d037c06280028c110ff61c433ad4dc7d33c3c43.
- [Release notes](https://github.com/calibreapp/image-actions/releases )
- [Commits](https://github.com/calibreapp/image-actions/compare/e2cc8db5d49c849e00844dfebf01438318e96fa2...e2cc8db5d49c849e00844dfebf01438318e96fa2 )
---
updated-dependencies:
- dependency-name: calibreapp/image-actions
dependency-version: e2cc8db5d49c849e00844dfebf01438318e96fa2
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-18 12:48:34 +02:00
865d8724a9
ci: bump taiki-e/install-action from 2.77.6 to 2.78.1 in /.github/actions/setup ( #22434 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.77.6 to 2.78.1.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/c070f87102a1c75b3183910f391c1cb887fe13c8...184183c2401be73c3bf42c2e61268aa5855379c1 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.78.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-18 12:48:30 +02:00
f2b5026d44
ci: bump actions/setup-go from 6.3.0 to 6.4.0 ( #22353 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v6.3.0...4a3601121dd01d1626a1e23e37211e3254c1c06c )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-version: 6.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-14 13:59:13 +02:00
f7824857de
ci: bump taiki-e/install-action from 2.77.4 to 2.77.6 in /.github/actions/setup ( #22354 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.77.4 to 2.77.6.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/ec28e287910af896fd98e04056d31fa68607e7ad...c070f87102a1c75b3183910f391c1cb887fe13c8 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.77.6
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-14 13:58:28 +02:00
0d55ef05f3
core: Defer status posts until GitHub Actions finishes. ( #22340 )
...
Defer status posts until GitHub Actions finishes.
2026-05-14 00:35:50 +02:00
9543b3c9f6
ci: Consistent NPM versions via Corepack ( #20400 )
...
* core: add .npmrc baseline to block dependency lifecycle scripts
Set ignore-scripts=true at the repo root, plus engine-strict, save-exact,
audit, and prefer-offline. This neutralizes the dominant npm supply-chain
attack vector — postinstall scripts in transitive dependencies — at the
cost of requiring an explicit rebuild for the handful of packages that
legitimately need install scripts (esbuild, chromedriver, tree-sitter,
tree-sitter-json). The next commit wires that rebuild into the Makefile.
Co-Authored-By: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
* core: route node installs through make to retire website preinstall hook
Make docs-install depend on a new root-node-install so the root deps
are guaranteed before the website install runs, removing the need for
the website/preinstall lifecycle script. Rebuild the small audited list
of trusted packages (esbuild, chromedriver, tree-sitter, tree-sitter-json)
after the web install so ignore-scripts=true remains the only path that
needs maintenance. web/README documents the new workflow.
Co-Authored-By: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
* Clean up install scripts.
* Track .npmrc in CODEOWNERS
* Fix formatter config. Reformat.
* Fix mounted references.
* Flesh out node scripts.
* Bump engines.
* Prep containers.
* Update makefile.
* Flesh out github actions.
* Clean up docs container.
* lint.
Bump.
Lint.
Bump NPM version.
* Add limits.
* collapse the composite's three setup-node calls to one cache restore
* Add SHA.
* Bump NPM range.
* Run formatter.
* Bump NPM.
* Remove extra install.
* Fix website deps.
* Use local prettier. Fix drift in CI.
* ci: build frontend in CI with node_env production
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Install docusaurus config.
* Fix linter warning, order.
* Add linter commands.
* Add timeout.
* Remove pre install check.
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-05-13 22:05:07 +00:00
3ef36b9e9e
ci: bump taiki-e/install-action from 2.77.3 to 2.77.4 in /.github/actions/setup ( #22321 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.77.3 to 2.77.4.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/e3134ec54b36203e18f2d1e80652058bd078dd91...ec28e287910af896fd98e04056d31fa68607e7ad )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.77.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-13 13:49:53 +02:00
dependabot[bot]
Emil Burzo
Connor Peshek
Jens L.
Dominic R
Teffen Ellis