3
0
Fork 0
forked from mirrors/nixpkgs
Commit graph

434 commits

Author SHA1 Message Date
zowoq bbe49339b8 .github/workflows: fix permissions
the merge actions comment on pull requests, seems this was broken by 2c71278a23

also:
- fix permissions on new manual rendering action
- drop unnecessary issues permission from the terraform action
2022-09-12 15:34:35 +10:00
pennae fc6f0ea188 workflows: fix manual-rendering.yml
the check command didn't set NIX_PATH, so compare-manuals.sh (which is a nix-shell script) failed.
2022-09-11 13:14:44 +10:00
pennae c45deeb2aa workflows: add check for docbook/md manual equality
we want to make sure that rendering the manual from markdown without
going through docbook produces (semantically) the same output as with
going through docbook. to ensure this we'll build the manual twice, run
each manual through html-tidy to generate a normalized form and diff
the normalized forms. we don't want to compare raw output because that
exposes us to a lot of whitespace we'd have to reproduce exactly in the
MD render.

this check may be relaxed even further in the future, but hopefully not
by much.
2022-09-10 18:23:13 +02:00
pennae ec75c8efff workflows: check that nixos manual does not use docbook option docs
the nixos manual should not use docbook for module option documentation,
only markdown, to make future transition to a markdown-only world easier
and less painful. this check will ensure that all options
documentation (even plain text that would not be interpreted specially
by neither markdown nor docbook) is declared as being markdown.
2022-09-10 18:23:13 +02:00
Bobby Rong 33c884dde5
.github/labeler.yml: label PR that touches cinnamon modules and tests 2022-09-05 18:48:58 +08:00
zowoq 8ce6fdf581 .github/CODEOWNERS: remove rust docs/packaging 2022-08-23 08:34:36 +10:00
Janne Heß 8b7092290c
Add myself to Perl CODEOWNERS 2022-08-20 17:52:35 +02:00
zowoq 9a49ca9f9a buildGo{Module,Package}: move to build-support/go 2022-08-07 18:26:01 +10:00
zowoq 25b464c8b3
terraform-full: remove (#184649)
* terraform-full: remove

* .github/workflows/update-terraform-providers.yml: switch to terraform.full
2022-08-02 19:45:05 +02:00
Winter 3707cc5a0d
Revert "backport-action: 0.0.5 -> 0.0.8" 2022-07-24 23:30:11 -04:00
Winter fee30801b2 backport-action: 0.0.5 -> 0.0.8 2022-07-24 13:20:39 -04:00
Janne Heß 51a615ff70
Merge pull request #180228 from fricklerhandwerk/codeowners-doc
codeowners: add fricklerhandwerk to documentation
2022-07-13 11:23:02 +02:00
zowoq 47b0cc5761 .github/CODEOWNERS: remove non-committer
Resolves github warning that the file contains errors: cbf736eb39
2022-07-12 11:50:19 +10:00
github-actions[bot] 33be3debd5 terraform-providers: update 2022-07-10 2022-07-10 16:20:44 +10:00
Varun Sharma 2c71278a23 ci: Add GitHub token permissions for workflows
Signed-off-by: Varun Sharma <varunsh@stepsecurity.io>
2022-07-08 10:53:38 -07:00
Robert Hensing 3a27c40463 workflows/nixos-manual: Add command to run to error message 2022-07-06 07:32:17 +02:00
Valentin Gagarin ef9afda389 codeowners: add fricklerhandwerk to documentation 2022-07-05 14:37:35 +02:00
Janne Heß 8befefd1a7
workflows: Remove 21.11 merges
Channel is EOL
2022-07-04 20:04:17 +02:00
nathannaveen 5deff9583c chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
2022-07-04 01:09:50 +00:00
Markus Wamser 2c74606664
.github/PULL_REQUEST_TEMPLATE.md: 21.11 -> 22.05 2022-05-31 19:14:32 +08:00
Janne Heß cbaacfb8df
Release 22.05 2022-05-30 20:50:07 +02:00
Sandro 7d498dea03
Merge pull request #171041 from ryantm/stalebot
.github/stale bot: stop commenting
2022-05-26 22:42:41 +02:00
Ellie Hermaszewska cef38c9488
Merge pull request #174363 from expipiplus1/ellie-codeowners
CODEOWNERS: remove expipiplus1 from haskell
2022-05-25 10:31:20 +08:00
Ellie Hermaszewska cbf736eb39
CODEOWNERS: remove expipiplus1 from haskell
Hopefully temporarily, just too many notifications at the moment
2022-05-25 09:12:42 +08:00
Janne Heß e728029b30
workflows: Replace 21.05 with 22.05 2022-05-23 19:57:42 +02:00
Rick van Schijndel caf95ff509 CODEOWNERS: rename Gabriel439 to Gabriella439
See https://github.com/Gabriel439:

Hi, there! 👋🏼

I renamed my GitHub account from @Gabriel439 to @Gabriella439, so if you got here from an old profile link you can visit my new profile here:

    @Gabriella439

I created this placeholder account so that:

    … people who visit old links to my profile can find my new profile
    … other people cannot impersonate my old handle
    … GitHub continues to redirect old links to my repositories indefinitely
2022-05-11 21:04:28 +02:00
Artturin d46665e879 ISSUE_TEMPLATE/build_failure.md: create 2022-05-09 15:43:53 +03:00
Ryan Mulligan 2118173ca4 .github/stale bot: stop commenting
Niklas Hambüchen noted in

https://github.com/NixOS/rfcs/pull/124#issuecomment-1113647856

that we can add a label description for the stale label that appears
when you hover over the label, or look on

https://github.com/NixOS/nixpkgs/labels

I set the description to be

> https://github.com/NixOS/nixpkgs/blob/master/.github/STALE-BOT.md

which is our page explaining the stale bot.

The stale bot comments/emails are a significant burden on our most
prodigious contributors, and the reason for their existence to orient
new contributors.

Since our stale bot's configuration is benign enough to ignore (it
does not close), I believe it is good enough to satisfy the new
contributor orientation with the label description.

Therefore, this commit disables commenting when labeling an issue or
PR stale.
2022-04-30 08:30:08 -07:00
dependabot[bot] 646ed065e5 build(deps): bump peter-evans/create-pull-request from 3 to 4
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3 to 4.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4)
2022-04-29 17:58:49 +10:00
zowoq c19e9b776d .github/workflows/update-terraform-providers.yml: minor fixes
- simplify comment
- move `ofborg` command into block for clickable copying
2022-04-28 08:13:24 +10:00
= 83677514e6 .github/CODEOWNERS: add IvarWithoutBones for dotnet 2022-04-25 20:44:39 +02:00
aszlig eca4a0087f
CODEOWNERS: Add layus for autoPatchelfHook
With the re-implementation in Python merged[1], it no longer makes sense
for me to track issues and pull requests. I did this originally because
people were forgetting (rightfully so) to run tests against all that
proprietary stuff we have in nixpkgs that is using autoPatchelfHook.

We still can't test these automatically but with me no longer being the
author of the code, I hereby drop my entry in CODEOWNERS and instead
replace it with layus, who's the author of the rewrite.

[1]: https://github.com/NixOS/nixpkgs/pull/149731

Signed-off-by: aszlig <aszlig@nix.build>
2022-04-14 09:46:00 +02:00
dependabot[bot] 23e9e781e2 build(deps): bump cachix/install-nix-action from 16 to 17
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 16 to 17.
- [Release notes](https://github.com/cachix/install-nix-action/releases)
- [Commits](https://github.com/cachix/install-nix-action/compare/v16...v17)

---
updated-dependencies:
- dependency-name: cachix/install-nix-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-08 17:59:26 +10:00
zowoq 1b9fa5ade6 .github/CODEOWNERS: update dockerTools paths 2022-04-05 10:17:43 +10:00
Jörg Thalheim 04afcacb6e
Merge pull request #166772 from Artturin/gi-ci-basiceval
.github/workflows/basic-eval.yml: only run if manually triggered
2022-04-02 06:10:01 +01:00
Artturin 36c36411b8 .github/workflows/basic-eval.yml: only run if manually triggered
ofborg should have obsoleted this with https://github.com/NixOS/ofborg/pull/588#issuecomment-1078451552
https://github.com/NixOS/nixpkgs/pull/166599#issuecomment-1085069938

this is still useful to have around for act usage
2022-04-01 09:48:20 +03:00
zowoq 630732fdd7 .github/CODEOWNERS: remove non-committer users/teams
these didn't work anyway and now github warns if they don't have commit access
2022-03-30 07:31:11 +10:00
Sandro 319145c9dc
Merge pull request #165397 from Mic92/create-or-update-comment 2022-03-27 12:12:23 +02:00
dependabot[bot] 1f161a57c2 build(deps): bump peter-evans/commit-comment from 1 to 2
Bumps [peter-evans/commit-comment](https://github.com/peter-evans/commit-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/commit-comment/releases)
- [Commits](https://github.com/peter-evans/commit-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/commit-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:24:13 +01:00
dependabot[bot] 180dada3ed build(deps): bump peter-evans/create-or-update-comment from 1 to 2
Bumps [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment) from 1 to 2.
- [Release notes](https://github.com/peter-evans/create-or-update-comment/releases)
- [Commits](https://github.com/peter-evans/create-or-update-comment/compare/v1...v2)

---
updated-dependencies:
- dependency-name: peter-evans/create-or-update-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-23 08:23:37 +01:00
Florian Klink 66d57184af
Merge pull request #164850 from bobvanderlinden/patch-3
CODEOWNERS: add @NixOS/systemd for systemd files
2022-03-22 20:19:27 +01:00
Bob van der Linden 7c44799cd5
CODEOWNERS: formatting 2022-03-22 19:24:26 +01:00
Bob van der Linden 54041b9b84
CODEOWNERS: remove @Kloenk from systemd files 2022-03-22 19:23:34 +01:00
Bob van der Linden d220f223ec
CODEOWNERS: use correct paths for systemd
Co-authored-by: zowoq <59103226+zowoq@users.noreply.github.com>
2022-03-22 19:22:41 +01:00
Bob van der Linden 42784b3d20
CODEOWNERS: only include NixOS/systemd and Kloenk 2022-03-21 20:09:53 +01:00
Jörg Thalheim 92a720cbac ci: add warning to actions with writeable GITHUB_TOKEN
Co-authored-by: ckie <25263210+ckiee@users.noreply.github.com>
2022-03-21 08:54:42 +01:00
Bob van der Linden 73e92f61bf
CODEOWNERS: add members of NixOS/systemd as well 2022-03-20 16:05:14 +01:00
Bob van der Linden 72faca439d
CODEOWNERS: add @NixOS/systemd for systemd files 2022-03-19 12:35:41 +01:00
Cole Helbling 5e4d6e627e labeler: don't use path-based labeling for BSD
ofborg labels the bsd and darwin platforms based on the title, which
conflicts with the labeler action's `sync-labels` setting (if no paths
are changed, it'll remove the label).
2022-03-17 16:41:35 -07:00
zowoq 1d41af9bc9 .github/workflows/basic-eval.yml: add cachix cache
Avoids rebuilding nix in every PR if it hasn't been build on hydra yet.
2022-03-14 08:12:25 +10:00