dependabot[bot]
|
494dfabc2e
|
Bump actions/setup-node from 1 to 3 (#3472)
|
2022-06-13 09:42:22 +00:00 |
dependabot[bot]
|
0291bf3e1f
|
Bump actions/checkout from 1 to 3 (#3471)
Bumps [actions/checkout](https://github.com/actions/checkout) from 1 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v1...v3)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2022-06-13 11:40:13 +02:00 |
Naveen
|
9561a9ab00
|
chore: Included githubactions in the dependabot config (#3470)
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
|
2022-06-13 10:24:09 +02:00 |
nathannaveen
|
b85e1ada6f
|
Set permissions for GitHub actions (#3468)
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)
Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
|
2022-06-12 09:59:43 +02:00 |
Michael Schmidt
|
5333e28106
|
Added regex coverage (#3138)
|
2021-10-19 19:34:41 +02:00 |
Michael Schmidt
|
b77317c521
|
CI: Run tests with NodeJS 16.x (#2888)
|
2021-05-17 16:40:06 +02:00 |
Michael Schmidt
|
bb1eca949c
|
ESLint: Fail CI if there are warnings (#2847)
|
2021-04-17 22:21:15 +02:00 |
Michael Schmidt
|
772d42bec0
|
Added ESLint with minimal config (#2831)
|
2021-03-26 13:16:16 +01:00 |
Michael Schmidt
|
7cd9e79485
|
Added link to Q&A to issue templates (#2834)
|
2021-03-26 12:59:04 +01:00 |
Michael Schmidt
|
b5f4f10e42
|
Test page: Added "Share" option (#2575)
This adds a link and a small popup to share the current state of the test page via a compact link.
|
2020-12-22 17:27:14 +01:00 |
Michael Schmidt
|
7f23ef3df0
|
Fixed Danger CI for forks (#2638)
|
2020-12-22 10:17:05 +01:00 |
James DiGioia
|
9df20c5ece
|
Added Dangerfile and provide bundle size info (#2608)
|
2020-11-09 15:33:41 +01:00 |
James DiGioia
|
69132045d2
|
Migrate from TravisCI -> GitHub Actions (#2606)
This moves the test suite from Travis -> GitHub Actions. The Workflow
is essentially the same as what we had on Travis, but split into two
jobs.
|
2020-10-25 00:08:21 +02:00 |
Michael Schmidt
|
53f07b1b29
|
Issue template improvements (#2069)
This fixes a typo in the issue templates and comments out some instruction to make them invisible in the issue.
|
2019-09-26 16:46:43 +02:00 |
Michael Schmidt
|
2f9c9261bc
|
Clearer description for the highlighting bug report template (#1850)
This makes the description of the plugins info in the highlighting bug report template a little clearer.
|
2019-03-31 09:50:19 +02:00 |
Michael Schmidt
|
dedb475ff4
|
Added issue templates (#1805)
This adds issue templates for the prism project after #1802.
|
2019-03-14 13:49:47 +01:00 |