Commit Graph

434 Commits

Author SHA1 Message Date
zowoq
bbe49339b8 .github/workflows: fix permissions
the merge actions comment on pull requests, seems this was broken by 2c71278a23

also:
- fix permissions on new manual rendering action
- drop unnecessary issues permission from the terraform action
2022-09-12 15:34:35 +10:00
pennae
fc6f0ea188 workflows: fix manual-rendering.yml
the check command didn't set NIX_PATH, so compare-manuals.sh (which is a nix-shell script) failed.
2022-09-11 13:14:44 +10:00
pennae
c45deeb2aa workflows: add check for docbook/md manual equality
we want to make sure that rendering the manual from markdown without
going through docbook produces (semantically) the same output as with
going through docbook. to ensure this we'll build the manual twice, run
each manual through html-tidy to generate a normalized form and diff
the normalized forms. we don't want to compare raw output because that
exposes us to a lot of whitespace we'd have to reproduce exactly in the
MD render.

this check may be relaxed even further in the future, but hopefully not
by much.
2022-09-10 18:23:13 +02:00
pennae
ec75c8efff workflows: check that nixos manual does not use docbook option docs
the nixos manual should not use docbook for module option documentation,
only markdown, to make future transition to a markdown-only world easier
and less painful. this check will ensure that all options
documentation (even plain text that would not be interpreted specially
by neither markdown nor docbook) is declared as being markdown.
2022-09-10 18:23:13 +02:00
Bobby Rong
33c884dde5
.github/labeler.yml: label PR that touches cinnamon modules and tests 2022-09-05 18:48:58 +08:00
zowoq
8ce6fdf581 .github/CODEOWNERS: remove rust docs/packaging 2022-08-23 08:34:36 +10:00
Janne Heß
8b7092290c
Add myself to Perl CODEOWNERS 2022-08-20 17:52:35 +02:00
zowoq
9a49ca9f9a buildGo{Module,Package}: move to build-support/go 2022-08-07 18:26:01 +10:00
zowoq
25b464c8b3
terraform-full: remove (#184649)
* terraform-full: remove

* .github/workflows/update-terraform-providers.yml: switch to terraform.full
2022-08-02 19:45:05 +02:00
Winter
3707cc5a0d
Revert "backport-action: 0.0.5 -> 0.0.8" 2022-07-24 23:30:11 -04:00
Winter
fee30801b2 backport-action: 0.0.5 -> 0.0.8 2022-07-24 13:20:39 -04:00
Janne Heß
51a615ff70
Merge pull request #180228 from fricklerhandwerk/codeowners-doc
codeowners: add fricklerhandwerk to documentation
2022-07-13 11:23:02 +02:00
zowoq
47b0cc5761 .github/CODEOWNERS: remove non-committer
Resolves github warning that the file contains errors: cbf736eb39
2022-07-12 11:50:19 +10:00
github-actions[bot]
33be3debd5 terraform-providers: update 2022-07-10 2022-07-10 16:20:44 +10:00
Varun Sharma
2c71278a23 ci: Add GitHub token permissions for workflows
Signed-off-by: Varun Sharma <varunsh@stepsecurity.io>
2022-07-08 10:53:38 -07:00
Robert Hensing
3a27c40463 workflows/nixos-manual: Add command to run to error message 2022-07-06 07:32:17 +02:00
Valentin Gagarin
ef9afda389 codeowners: add fricklerhandwerk to documentation 2022-07-05 14:37:35 +02:00
Janne Heß
8befefd1a7
workflows: Remove 21.11 merges
Channel is EOL
2022-07-04 20:04:17 +02:00
nathannaveen
5deff9583c chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-07-04 01:09:50 +00:00
Markus Wamser
2c74606664
.github/PULL_REQUEST_TEMPLATE.md: 21.11 -> 22.05 2022-05-31 19:14:32 +08:00
Janne Heß
cbaacfb8df
Release 22.05 2022-05-30 20:50:07 +02:00
Sandro
7d498dea03
Merge pull request #171041 from ryantm/stalebot
.github/stale bot: stop commenting
2022-05-26 22:42:41 +02:00
Ellie Hermaszewska
cef38c9488
Merge pull request #174363 from expipiplus1/ellie-codeowners
CODEOWNERS: remove expipiplus1 from haskell
2022-05-25 10:31:20 +08:00
Ellie Hermaszewska
cbf736eb39
CODEOWNERS: remove expipiplus1 from haskell
Hopefully temporarily, just too many notifications at the moment
2022-05-25 09:12:42 +08:00
Janne Heß
e728029b30
workflows: Replace 21.05 with 22.05 2022-05-23 19:57:42 +02:00
Rick van Schijndel
caf95ff509 CODEOWNERS: rename Gabriel439 to Gabriella439
See https://github.com/Gabriel439:

Hi, there! 👋🏼

I renamed my GitHub account from @Gabriel439 to @Gabriella439, so if you got here from an old profile link you can visit my new profile here:

    @Gabriella439

I created this placeholder account so that:

    … people who visit old links to my profile can find my new profile
    … other people cannot impersonate my old handle
    … GitHub continues to redirect old links to my repositories indefinitely
2022-05-11 21:04:28 +02:00
Artturin
d46665e879 ISSUE_TEMPLATE/build_failure.md: create 2022-05-09 15:43:53 +03:00
Ryan Mulligan
2118173ca4 .github/stale bot: stop commenting
Niklas Hambüchen noted in

https://github.com/NixOS/rfcs/pull/124#issuecomment-1113647856

that we can add a label description for the stale label that appears
when you hover over the label, or look on

https://github.com/NixOS/nixpkgs/labels

I set the description to be

> https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md

which is our page explaining the stale bot.

The stale bot comments/emails are a significant burden on our most
prodigious contributors, and the reason for their existence to orient
new contributors.

Since our stale bot's configuration is benign enough to ignore (it
does not close), I believe it is good enough to satisfy the new
contributor orientation with the label description.

Therefore, this commit disables commenting when labeling an issue or
PR stale.
2022-04-30 08:30:08 -07:00
dependabot[bot]
646ed065e5 build(deps): bump peter-evans/create-pull-request from 3 to 4
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3 to 4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4)
2022-04-29 17:58:49 +10:00
zowoq
c19e9b776d .github/workflows/update-terraform-providers.yml: minor fixes
- simplify comment
- move `ofborg` command into block for clickable copying
2022-04-28 08:13:24 +10:00
=
83677514e6 .github/CODEOWNERS: add IvarWithoutBones for dotnet 2022-04-25 20:44:39 +02:00
aszlig
eca4a0087f
CODEOWNERS: Add layus for autoPatchelfHook
With the re-implementation in Python merged[1], it no longer makes sense
for me to track issues and pull requests. I did this originally because
people were forgetting (rightfully so) to run tests against all that
proprietary stuff we have in nixpkgs that is using autoPatchelfHook.

We still can't test these automatically but with me no longer being the
author of the code, I hereby drop my entry in CODEOWNERS and instead
replace it with layus, who's the author of the rewrite.

[1]: https://github.com/NixOS/nixpkgs/pull/149731

Signed-off-by: aszlig <aszlig@nix.build>
2022-04-14 09:46:00 +02:00
dependabot[bot]
23e9e781e2 build(deps): bump cachix/install-nix-action from 16 to 17
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 16 to 17.
- [Release notes](https://github.com/cachix/install-nix-action/releases)
- [Commits](https://github.com/cachix/install-nix-action/compare/v16...v17)

---
updated-dependencies:
- dependency-name: cachix/install-nix-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-08 17:59:26 +10:00
zowoq
1b9fa5ade6 .github/CODEOWNERS: update dockerTools paths 2022-04-05 10:17:43 +10:00
Jörg Thalheim
04afcacb6e
Merge pull request #166772 from Artturin/gi-ci-basiceval
.github/workflows/basic-eval.yml: only run if manually triggered
2022-04-02 06:10:01 +01:00
Artturin
36c36411b8 .github/workflows/basic-eval.yml: only run if manually triggered
ofborg should have obsoleted this with https://github.com/NixOS/ofborg/pull/588#issuecomment-1078451552
https://github.com/NixOS/nixpkgs/pull/166599#issuecomment-1085069938

this is still useful to have around for act usage
2022-04-01 09:48:20 +03:00
zowoq
630732fdd7 .github/CODEOWNERS: remove non-committer users/teams
these didn't work anyway and now github warns if they don't have commit access
2022-03-30 07:31:11 +10:00
Sandro
319145c9dc
Merge pull request #165397 from Mic92/create-or-update-comment 2022-03-27 12:12:23 +02:00
dependabot[bot]
1f161a57c2 build(deps): bump peter-evans/commit-comment from 1 to 2
Bumps [peter-evans/commit-comment](https://github.com/peter-evans/commit-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/commit-comment/releases)
- [Commits](https://github.com/peter-evans/commit-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/commit-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:24:13 +01:00
dependabot[bot]
180dada3ed build(deps): bump peter-evans/create-or-update-comment from 1 to 2
Bumps [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/create-or-update-comment/releases)
- [Commits](https://github.com/peter-evans/create-or-update-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/create-or-update-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:23:37 +01:00
Florian Klink
66d57184af
Merge pull request #164850 from bobvanderlinden/patch-3
CODEOWNERS: add @NixOS/systemd for systemd files
2022-03-22 20:19:27 +01:00
Bob van der Linden
7c44799cd5
CODEOWNERS: formatting 2022-03-22 19:24:26 +01:00
Bob van der Linden
54041b9b84
CODEOWNERS: remove @Kloenk from systemd files 2022-03-22 19:23:34 +01:00
Bob van der Linden
d220f223ec
CODEOWNERS: use correct paths for systemd
Co-authored-by: zowoq <59103226+zowoq@users.noreply.github.com>
2022-03-22 19:22:41 +01:00
Bob van der Linden
42784b3d20
CODEOWNERS: only include NixOS/systemd and Kloenk 2022-03-21 20:09:53 +01:00
Jörg Thalheim
92a720cbac ci: add warning to actions with writeable GITHUB_TOKEN
Co-authored-by: ckie <25263210+ckiee@users.noreply.github.com>
2022-03-21 08:54:42 +01:00
Bob van der Linden
73e92f61bf
CODEOWNERS: add members of NixOS/systemd as well 2022-03-20 16:05:14 +01:00
Bob van der Linden
72faca439d
CODEOWNERS: add @NixOS/systemd for systemd files 2022-03-19 12:35:41 +01:00
Cole Helbling
5e4d6e627e labeler: don't use path-based labeling for BSD
ofborg labels the bsd and darwin platforms based on the title, which
conflicts with the labeler action's `sync-labels` setting (if no paths
are changed, it'll remove the label).
2022-03-17 16:41:35 -07:00
zowoq
1d41af9bc9 .github/workflows/basic-eval.yml: add cachix cache
Avoids rebuilding nix in every PR if it hasn't been build on hydra yet.
2022-03-14 08:12:25 +10:00