dependabot[bot]
9045919d2b
chore: bump robinraju/release-downloader from 1.11 to 1.12 ( #7289 )
...
Bumps [robinraju/release-downloader](https://github.com/robinraju/release-downloader ) from 1.11 to 1.12.
- [Release notes](https://github.com/robinraju/release-downloader/releases )
- [Commits](https://github.com/robinraju/release-downloader/compare/v1.11...v1.12 )
---
updated-dependencies:
- dependency-name: robinraju/release-downloader
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-14 11:01:03 -08:00
dependabot[bot]
b07335a0f1
chore: bump aquasecurity/trivy-action from 0.29.0 to 0.30.0 ( #7288 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.29.0 to 0.30.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](18f2510ee3...6c175e9c40
2025-04-14 10:57:40 -08:00
Asher
cc3c22deee
Build with newer version of Python
...
We are getting an issue importing __future__ from annotations in one
case and "invalid syntax" in another with `if CC :=`.
There does not seem to be a reason to maintain a separate step for the
amd64 build since the glibc version is the same.
2025-03-07 12:25:35 -09:00
Asher
727555b414
Skip e2e when only changing workflows
2025-03-07 12:13:12 -09:00
dependabot[bot]
db5f99dc78
chore: bump dawidd6/action-download-artifact from 8 to 9 ( #7241 )
...
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) from 8 to 9.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases )
- [Commits](https://github.com/dawidd6/action-download-artifact/compare/v8...v9 )
---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-06 11:34:15 -09:00
Olivier Benz
31c211aded
Update Code to 1.98.0 ( #7249 )
...
* Update Code to 1.98.0
* Avoid sudo when launching caddy
It is erroring about needing a password, but also do we even need to run
this as root considering we are not binding to privileged ports?
---------
Co-authored-by: Asher <ash@coder.com>
2025-03-06 11:32:11 -09:00
SXX
9b89774ff6
Add back macOS amd64 release ( #7196 )
2025-02-12 15:17:19 -09:00
dependabot[bot]
ebf2df63f5
chore: bump dawidd6/action-download-artifact from 6 to 8 ( #7191 )
...
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) from 6 to 8.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases )
- [Commits](https://github.com/dawidd6/action-download-artifact/compare/v6...v8 )
---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-12 15:12:31 -09:00
dependabot[bot]
96800cc521
chore: bump aquasecurity/trivy-action from 0.28.0 to 0.29.0 ( #7097 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.28.0 to 0.29.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](915b19bbe7...18f2510ee3
2025-02-11 11:11:50 -09:00
dependabot[bot]
0b7c044857
chore: bump codecov/codecov-action from 4 to 5 ( #7096 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4 to 5.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-11 11:11:21 -09:00
Asher
272e28abc6
Set GITHUB_TOKEN on macOS job
...
Trying to see if this will help with the 403s trying to download
ripgrep.
2024-12-18 13:42:37 -09:00
qupig
25c2183be0
ci: fix prettier check job
...
Use prettier version specified in `package.json` instead of fixed versions from third-party workflows.
2024-12-12 20:13:22 +00:00
dependabot[bot]
fc97e248c3
chore: bump aquasecurity/trivy-action from 0.24.0 to 0.28.0 ( #7060 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.24.0 to 0.28.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](6e7b7d1fd3...915b19bbe7
2024-11-08 10:12:29 -09:00
Asher
578b5f22c4
Remove AUR dependency on npm
...
It pulls a release from GitHub, not npm.
2024-11-06 13:00:40 -09:00
Asher
494a3e0c2b
Update Code to 1.95.1 ( #7059 )
...
* Update Code to 1.95.1
* Update Node to 20.18.0
* Update build.yaml to use Ubuntu 22.04
This is to resolve a gcc error. Might have to address
the release step later as well.
* Fix --stdin-to-clipboard
With the switch to esm, the fs require is failing. fs is already
imported, so we can just use it anyway.
* Fix mangled exports
* Update CSP hashes
2024-11-01 12:35:53 -08:00
Asher
bea906f90b
Install python before npm ci
2024-10-18 11:36:40 -08:00
Asher
15752526bd
Install python3 in cross-compile container
...
Unsure why this is suddenly missing.
2024-10-18 10:38:44 -08:00
Olivier Benz
fc6064dcd3
Update Code to 1.94.2 ( #7026 )
...
* Update Code to 1.94.2
* Convert from yarn to npm
This is to match VS Code. We were already partially using npm for the
releases so this is some nice alignment.
* Update caniuse-lite
This was complaining on every unit test.
* Update eslint
I was having a bunch of dependency conflicts and eslint seemed to be the
culprit so I just removed it and set it up again, since it seems things
have changed quite a bit.
* Update test dependencies
I was getting oom when running the unit tests...updating seems to work.
* Remove package.json `scripts` property in release
The new pre-install script was being included, which is dev-only.
This was always the intent; did not realize jq's merge was recursive.
* Remove jest and devDependencies in release as well
* Update test extension dependencies
This appears to be conflicting with the root dependencies.
* Fix playwright exec
npm does not let you run binaries like yarn does, as far as I know.
* Fix import of server-main.js
* Fix several tests by waiting for selectors
2024-10-17 20:32:21 -08:00
Asher
69df01185c
Revert "chore: bump softprops/action-gh-release from 1 to 2 ( #6740 )"
...
This reverts commit 1abb2ee567
2024-09-19 12:08:43 -08:00
dependabot[bot]
90f8135c68
chore: bump tj-actions/changed-files from 44 to 45 ( #6972 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 44 to 45.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v44...v45 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 10:24:27 -08:00
Asher
0f9436e7b9
Remove Ranger for now
...
- We have a labeling bot that is marking issues as upstream (so far
correctly) now Ranger is closing them right away and it felt too
aggressive to me.
- It keeps posting its comment twice. Not sure how to fix that.
2024-07-19 10:51:31 -08:00
Asher
a9eb923790
Remove unused audit-ci dependency
...
There is a `yarn ci` script which was using audit-ci but this does not
appear to be called anywhere.
The security worflow uses `yarn audit` and `npm audit` which seem fine
enough anyway.
2024-07-10 13:23:24 -08:00
dependabot[bot]
2b33ca8a3f
chore: bump aquasecurity/trivy-action from 0.21.0 to 0.24.0 ( #6894 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.21.0 to 0.24.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](fd25fed697...6e7b7d1fd3
2024-07-10 13:10:01 -08:00
dependabot[bot]
97bcc3b934
chore: bump robinraju/release-downloader from 1.10 to 1.11 ( #6875 )
...
Bumps [robinraju/release-downloader](https://github.com/robinraju/release-downloader ) from 1.10 to 1.11.
- [Release notes](https://github.com/robinraju/release-downloader/releases )
- [Commits](https://github.com/robinraju/release-downloader/compare/v1.10...v1.11 )
---
updated-dependencies:
- dependency-name: robinraju/release-downloader
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-10 13:08:52 -08:00
dependabot[bot]
c86c4e8bb6
chore: bump dawidd6/action-download-artifact from 3 to 6 ( #6876 )
...
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) from 3 to 6.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases )
- [Commits](https://github.com/dawidd6/action-download-artifact/compare/v3...v6 )
---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-10 19:26:02 +00:00
Muhammad Atif Ali
3031f8599c
ci: updates actionlint to 1.7.1 version ( #6887 )
2024-07-10 18:39:03 +00:00
Asher
0c802ba165
Remove node-gyp install ( #6831 )
...
Seems to install fine without it now.
2024-06-08 20:07:51 -08:00
Asher
1bd2b9cf08
Fix segfault in CI ( #6830 )
...
Setting DISABLE_V8_COMPILE_CACHE=1 seems to fix it.
2024-06-08 20:07:24 -08:00
dependabot[bot]
fc47b4f1c5
chore: bump aquasecurity/trivy-action from 0.19.0 to 0.21.0 ( #6819 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.19.0 to 0.21.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d710430a67...fd25fed697
2024-06-03 10:44:54 -08:00
Asher
ab4b36f573
Fix setuptools install on macOS
...
This is erroring now with "This environment is externally managed".
2024-05-07 13:41:21 -08:00
dependabot[bot]
2adb215d03
chore: bump robinraju/release-downloader from 1.9 to 1.10 ( #6779 )
...
Bumps [robinraju/release-downloader](https://github.com/robinraju/release-downloader ) from 1.9 to 1.10.
- [Release notes](https://github.com/robinraju/release-downloader/releases )
- [Commits](https://github.com/robinraju/release-downloader/compare/v1.9...v1.10 )
---
updated-dependencies:
- dependency-name: robinraju/release-downloader
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-06 14:16:27 -08:00
dependabot[bot]
1a7265b392
chore: bump azure/setup-helm from 3.5 to 4 ( #6780 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 3.5 to 4.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md )
- [Commits](https://github.com/azure/setup-helm/compare/v3.5...v4 )
---
updated-dependencies:
- dependency-name: azure/setup-helm
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-06 14:16:06 -08:00
Olivier Benz
9a28bc29db
Update Code to 1.88.1 ( #6754 )
...
* Update Code to 1.88.1
* Install node-gyp
---------
Co-authored-by: Asher <ash@coder.com>
2024-04-15 15:00:21 -08:00
dependabot[bot]
ebd79ed958
chore: bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 ( #6739 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.18.0 to 0.19.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](062f259268...d710430a67
2024-04-05 14:24:18 -08:00
dependabot[bot]
1abb2ee567
chore: bump softprops/action-gh-release from 1 to 2 ( #6740 )
...
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release ) from 1 to 2.
- [Release notes](https://github.com/softprops/action-gh-release/releases )
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md )
- [Commits](https://github.com/softprops/action-gh-release/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: softprops/action-gh-release
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-05 14:21:48 -08:00
dependabot[bot]
1c5bfeeb99
chore: bump tj-actions/changed-files from 42 to 44 ( #6741 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 42 to 44.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v42...v44 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-05 14:21:27 -08:00
Asher
45e96ec3b0
Shorten bug dropdown descriptions
2024-03-14 12:19:13 -08:00
Asher
0e384d5442
Tweak issue templates
...
- Remove the redundant title prefix.
- Remove outdated assignees.
- Improve reproduction step description (trying to get folks to submit
more specific/detailed reproductions).
- Render logs with shell (not sure if this actually changes anything).
- Use dropdowns for testing in VS Code and Codespaces. I think the
existing checkboxes are still confusing so hopefully this sorts it.
2024-03-14 12:16:33 -08:00
Asher
c65b1f2870
Continue release drafting on Codecov failure
2024-03-12 09:41:21 -08:00
dependabot[bot]
5453d02872
chore: bump aquasecurity/trivy-action from 0.16.1 to 0.18.0 ( #6705 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.16.1 to 0.18.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d43c1f16c0...062f259268
2024-03-07 10:20:04 -09:00
dependabot[bot]
107a3fd410
chore: bump codecov/codecov-action from 3 to 4 ( #6706 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3 to 4.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-07 10:15:42 -09:00
Asher
56b5992280
Pin Arch Linux action version
...
We are still getting the old one, I think?
2024-03-06 14:10:57 -09:00
Asher
275c130845
Update Arch Linux action username
...
This broke due to the username being changed, and GitHub does not appear
to put any redirects in place.
2024-03-06 14:04:32 -09:00
Asher
460a4564c3
Revert "chore: bump codecov/codecov-action from 3 to 4 ( #6652 )"
...
This reverts commit 63beaaabd7
2024-02-28 14:04:55 -09:00
Dmitry Sharshakov
a2d35ad815
docker: add Fedora 39 and openSUSE Tumbleweed based images ( #6669 )
2024-02-08 12:31:50 -09:00
dependabot[bot]
ab17495e3a
chore: bump actions/cache from 3 to 4 ( #6650 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3 to 4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 16:38:25 -09:00
dependabot[bot]
53b0fda510
chore: bump robinraju/release-downloader from 1.8 to 1.9 ( #6651 )
...
Bumps [robinraju/release-downloader](https://github.com/robinraju/release-downloader ) from 1.8 to 1.9.
- [Release notes](https://github.com/robinraju/release-downloader/releases )
- [Commits](https://github.com/robinraju/release-downloader/compare/v1.8...v1.9 )
---
updated-dependencies:
- dependency-name: robinraju/release-downloader
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 16:37:57 -09:00
dependabot[bot]
63beaaabd7
chore: bump codecov/codecov-action from 3 to 4 ( #6652 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3 to 4.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 16:37:42 -09:00
dependabot[bot]
2db0184c4a
chore: bump github/codeql-action from 2 to 3 ( #6653 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 16:37:33 -09:00
dependabot[bot]
dd9cefab66
chore: bump tj-actions/changed-files from 41 to 42 ( #6654 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 41 to 42.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v41...v42 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-01 16:37:09 -09:00
Asher
d6ef385de2
Release v4.20.1
2024-01-22 08:34:02 -09:00
dependabot[bot]
94f759a53c
chore: bump actions/download-artifact from 3 to 4 ( #6609 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3 to 4.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-05 13:32:33 -09:00
dependabot[bot]
2786f60752
chore: bump actions/upload-artifact from 3 to 4 ( #6610 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3 to 4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-05 13:32:10 -09:00
dependabot[bot]
aea28cb499
chore: bump dawidd6/action-download-artifact from 2 to 3 ( #6612 )
...
Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) from 2 to 3.
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases )
- [Commits](https://github.com/dawidd6/action-download-artifact/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: dawidd6/action-download-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-05 13:29:50 -09:00
dependabot[bot]
21e798ccdf
chore: bump aquasecurity/trivy-action from 0.14.0 to 0.16.1 ( #6621 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.14.0 to 0.16.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](2b6a709cf9...d43c1f16c0
2024-01-05 13:28:00 -09:00
dependabot[bot]
5214555683
chore: bump tj-actions/changed-files from 40 to 41 in /.github/workflows ( #6618 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 40 to 41.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v40...v41 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-05 13:27:05 -09:00
Asher
d0215eca88
Tweak bug report template
...
These checkboxes keep getting checked despite the submitter using an
insecure context or not having tested upstream. I think two things are
at play here:
1. Folks might be interpreting "cannot reproduce" as "did not
reproduce" or "did not have time to reproduce".
2. The checkboxes are required to submit the issue so folks might be
marking them just so they can get their issue submitted; maybe they
are not even reading the checkboxes and are just seeing the error
that they need to be marked and blindly marking them because while
in some cases folks will add "I had to check this but it is not
true", usually they say nothing.
In any case, hopefully these changes make the checkboxes more accurate,
and then if they are unchecked we can ask them to go reproduce in VS
Code or use a secure context or whatever the case may be.
2023-12-18 13:56:35 -09:00
Asher
984fb135dc
Fix node-gyp failure on macOS ( #6537 )
2023-11-16 10:10:36 -09:00
Asher
da254c39ee
Set Node version in a single place ( #6534 )
...
This should make it much easier to update. Also use 18.15.0
specifically since that is what VS Code ships with.
Additionally, it fixes the post-install script being skipped due to
a Yarn v1 bug that happens when Yarn installs node-gyp, which
it does because 18.18 onward stopped bundling node-gyp.
2023-11-14 12:45:56 -09:00
dependabot[bot]
ae75f76e30
chore: bump aquasecurity/trivy-action from 0.13.1 to 0.14.0 ( #6530 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.13.1 to 0.14.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](f78e9ecf42...2b6a709cf9
2023-11-14 09:26:40 -09:00
dependabot[bot]
4e4d510238
chore: bump docker/setup-qemu-action from 2 to 3 ( #6464 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 2 to 3.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](https://github.com/docker/setup-qemu-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-14 09:25:33 -09:00
dependabot[bot]
c4efcaf079
chore: bump actions/setup-node from 3 to 4 ( #6512 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-14 09:23:05 -09:00
dependabot[bot]
f44b57393c
chore: bump docker/login-action from 2 to 3 ( #6513 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 2 to 3.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-14 09:21:54 -09:00
dependabot[bot]
3fc30cae3e
chore: bump aquasecurity/trivy-action from 0.12.0 to 0.13.1 ( #6514 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.12.0 to 0.13.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](fbd16365eb...f78e9ecf42
2023-11-14 09:21:03 -09:00
dependabot[bot]
91f8ec6295
chore: bump tj-actions/changed-files from 39 to 40 ( #6515 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 39 to 40.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v39...v40 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-14 09:20:36 -09:00
Asher
c2d79d94f9
Use secure context in bug report template
...
Some folks run over localhost, which will work just fine for service
workers.
2023-10-11 17:19:19 -08:00
dependabot[bot]
9fec2d7cad
chore: bump docker/setup-buildx-action from 2 to 3 ( #6463 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2 to 3.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-11 15:51:24 -08:00
dependabot[bot]
80dfb2b2a9
chore: bump actions/checkout from 3 to 4 ( #6462 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-04 15:50:11 -08:00
dependabot[bot]
8ee45686b0
chore: bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 ( #6461 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.11.2 to 0.12.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](41f05d9ecf...fbd16365eb
2023-10-02 13:24:45 -08:00
dependabot[bot]
512d97f22f
chore: bump tj-actions/changed-files from 38 to 39 ( #6460 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 38 to 39.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v38...v39 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-02 13:24:15 -08:00
Asher
6275520348
Fix incorrect argon2 target in arm builds ( #6453 )
...
* Fix building from source on arm
Not building from source causes argon2 to pull the wrong arch, so we
have to build from source.
But building from source is causing the new Kerberos module to fail on
arm64 and keytar to fail on both.
The latter has been very difficult to debug because the GitHub image
provides a different result to containers based on Ubuntu 20.04.
Because of this, use a container instead.
Use debian:buster as the container because it is easier to set up the
architecture sources (no need to modify the sources) and because it
seems to come with glibc 2.28 rather than 2.31.
Also use the exact version of Node (18.15.0) for reproducibility.
* Set owner and group during tar to zero
Otherwise you get IDs that can cause (benign) errors while extracting,
which might be confusing. At the very least, I did not see these errors
from previous tars (although they seem to use 1001).
There is no guarantee what IDs might exist so 0 seems the most
reasonable.
2023-09-27 19:17:47 -08:00
Asher
7a213161f2
Build from source on cross-compile step
...
The comment said the issue with argon2 was related to CentOS 7 but the
cross-compile steps never used CentOS 7 so maybe the real issue is with
the architecture.
2023-09-26 09:58:53 -08:00
Asher
468cf5c6ce
Update npm publish workflow to use v18
2023-09-22 17:53:56 -08:00
Asher
58f6e24a07
Fix installation of kerberos module on armv7l ( #6442 )
...
Also build with the same version of Node we will release with.
2023-09-22 00:54:14 -08:00
Asher
7868f4db23
Fix cross-compilation ( #6441 )
...
* Avoid packaging yarn.lock
Since the shrinkwrap is what we want everything to use.
* Build with npm
It seems we stuck with yarn because npm was giving us errors but I will try
sorting it out now so we can build with npm as originally intended.
* Remove build from source
Not using CentOS 7 anymore so based on the comment we no longer need
this. Keytar seems to install fine now.
* Update missed Node version
These numbers are all over the place.
* npm_config_arch must be lowercase
* Patch out Kerberos
I am not sure exactly how it is used but I think it is not a path code-server
worries about, at least not right now. Just going to patch it out rather than
figure out how to build it on armv7l but we can revisit later.
2023-09-21 23:21:01 -08:00
Asher
acc50a5d36
Update dependencies and force-update qs ( #6440 )
...
* Update dependencies and force-update qs
This is mainly an attempt to get rid of as many resolutions as possible
since it seems they are unnecessary except for qs (according to yarn/npm
audit).
For qs use 6.9.7 since Express is using 6.9.6 and that matches the most
closely.
Also add overrides since this is npm's version of yarn's resolutions and
we need it for the shrinkwrap to generate with the right dependencies.
Decided to keep pinning @types/node as well although I am not sure it is
necessary. Express is pulling in v20 types. Since this is
development-only we only need it in resolutions.
* Run formatter
Some rules seem to have changed with the dependency updates.
* Replace deprecated bodyParser.json() usage
* Audit npm shrinkwrap as well
* Skip installing dependencies in audit
It seems the tools only require the lock files.
* Fix tests when using ipv6
* Add missing openssl dependency to flake
2023-09-21 16:13:34 -08:00
Asher
47ee7ae670
Bump minimum glibc to 2.28 ( #6439 )
...
At least, for the standalone and for anyone running on default Node 18.
If support for 2.17 is needed then one would need to build Node 18 with 2.17 and then build code-server with that version (specifically, the native npm modules).
2023-09-21 13:42:17 -08:00
Asher
70d0c603cc
Update to VS Code 1.82.2 ( #6436 )
...
* Update VS Code to 1.82.2
* Add new libkrb5 dependency
* Update patches
The only changes were to context except:
- The URL callback provider uses a new _callbackRoute argument and moved
locations.
- The telemetry provider gets passed the request service as the first
argument now.
- CSP hash changed, as usual.
* Update Node to v18
* Revert back to es2020
es2022 is breaking Safari.
2023-09-20 15:33:28 -08:00
dependabot[bot]
2e29c233ea
chore: bump tj-actions/changed-files from 37 to 38 ( #6417 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 37 to 38.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v37...v38 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18 11:54:56 -08:00
Olivier Benz
788da5d495
Update Code to 1.80.1 ( #6340 )
...
* Update Code to 1.80.1 (#6340 )
* Give build workflow more time to run
2023-07-19 14:00:31 -08:00
dependabot[bot]
e72e8bb6b5
chore: bump aquasecurity/trivy-action from 0.10.0 to 0.11.2 ( #6303 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.10.0 to 0.11.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](e5f43133f6...41f05d9ecf
2023-07-13 16:04:18 -05:00
dependabot[bot]
2617623ed6
chore: bump tj-actions/changed-files from 36 to 37 ( #6302 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 36 to 37.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v36...v37 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-06 13:59:01 -05:00
dependabot[bot]
4a121edd16
chore: bump tj-actions/changed-files from 35 to 36 ( #6246 )
...
Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) from 35 to 36.
- [Release notes](https://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](https://github.com/tj-actions/changed-files/compare/v35...v36 )
---
updated-dependencies:
- dependency-name: tj-actions/changed-files
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-13 18:28:24 +00:00
dependabot[bot]
f6db985712
chore: bump robinraju/release-downloader from 1.7 to 1.8 ( #6245 )
...
Bumps [robinraju/release-downloader](https://github.com/robinraju/release-downloader ) from 1.7 to 1.8.
- [Release notes](https://github.com/robinraju/release-downloader/releases )
- [Commits](https://github.com/robinraju/release-downloader/compare/v1.7...v1.8 )
---
updated-dependencies:
- dependency-name: robinraju/release-downloader
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-13 12:47:40 -05:00
dependabot[bot]
7722ef1437
chore: bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 ( #6178 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.9.2 to 0.10.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](1f0aa582c8...e5f43133f6
2023-05-01 11:17:06 -05:00
Asher
78282a1fd6
Make random formatting change to security.yaml
...
This is an attempt to set myself as the notification target.
Closes #6090 .
2023-03-21 12:24:10 -08:00
dependabot[bot]
85e083580d
chore: bump aquasecurity/trivy-action from 0.9.0 to 0.9.2 ( #6075 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.9.0 to 0.9.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](cff3e9a7f6...1f0aa582c8
2023-03-14 16:49:25 -05:00
Asher
b0431069a1
Replace CI deprecations ( #6072 )
...
* Replace deprecated set-output usage in CI
* Update tj-actions/changed-files
CI is saying it uses Node 12 and that Node 12 actions are deprecated.
2023-03-14 15:52:53 -05:00
Asher
9ba08907da
Fix Node version failure in publish workflow
...
Looks like the images got updated to v18 so they started failing. For
npm install v16 and for Docker just run the script directly, it seems
silly to waste time installing v16 just to run a script through yarn.
2023-03-03 22:23:21 -09:00
Asher
bfcca5fcc0
Remove docs preview
...
This is failing CI on Dependabot PRs. Opted to just remove it since
most (all?) PRs will be from forks and this workflow will not run
anyway. If we figure out the secret situation we can add it back.
2023-02-06 09:07:34 -09:00
Asher
a76c0c5742
Remove PR npm package
...
It is causing CI to fail for Dependabot (no access to the token) and it
does not work with forks and currently there is no one who pushes
straight to the repo so this will never be used.
Can always add it back if we figure out how to make the secrets work.
2023-02-06 08:56:47 -09:00
renovate[bot]
6e1b9131e9
chore(deps): update aquasecurity/trivy-action digest to cff3e9a ( #5994 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-02-06 11:36:05 -06:00
Dean Sheather
776d57b12b
chore: enable dependabot ( #5997 )
2023-02-06 11:32:52 -06:00
zhaozhiming
7c2aa8c417
feat: add i18n in login page ( #5947 )
...
* feat: add i18n in login page
* fix: add word space and put the app name into the title
* fix: remove duplicate replace title
* fix: prettier format code
* fix: fix typescript check warning
* fix: add zh-cn locale file code owner
* fix: use existing flag locale to the login page
Co-authored-by: Joe Previte <jjprevite@gmail.com>
2023-01-13 17:42:49 +00:00
Joe Previte
d40a9742c0
feat(ci): add lint-actions step to build.yaml ( #5957 )
...
* feat(ci): add lint-actions step to build.yaml
This adds a new job to the Build CI pipeline to lint our GitHub Actions.
By doing this, we can prevent typos from slipping in.
Fixes #5776
* fix: disable shellcheck in actionlint
I don't think we want to enable this for now.
* fix: ignore set-output warnings for now
It's deprecated but there isn't a reason to move away from using it yet.
2023-01-13 17:21:56 +00:00
Joe Previte
4e280811f9
chore: update renovate and deps ( #5914 )
...
* chore: update renovate.json ignoreDeps
ansi-regex, env-paths and limiter all switch to ESM which we can't
support at the moment so ignore updates for now.
* chore: update actions/cache@v3
* chore: update minor deps
* chore: add pretteir to renovate.json
2023-01-03 17:28:58 +00:00
Joe Previte
3eb35979f0
chore: update aur job in publish.yaml ( #5915 )
...
This uses the `env.VERSION` which should fix the issue with version being blank.
2022-12-22 13:58:20 -06:00
Joe Previte
8377bd23df
chore: upgrade Code to 1.74.1 ( #5909 )
...
* chore: upgrade Code to 1.74.1
* chore: remove require in integration.diff
I don't know what the impact of this is but in 192c67db71https://github.com/microsoft/vscode/pull/165831
* chore: update marketplace.diff
* chore: update sha hash in webview.diff
* chore: update disable-builtin-ext-update.diff
If my logic is right, then this patch is now simplified thanks to this:
https://github.com/microsoft/vscode/blob/1.74.1/src/vs/workbench/contrib/extensions/browser/extensionsWorkbenchService.ts#L1238
* chore: refresh proxy-uri patch
* chore: refresh local-storage.diff
* chore: refresh sourcemaps.diff
* chore: refresh disable-downloads.diff
* chore: refresh display-language.diff
* chore: refresh getting-started.diff
* docs: update testing notes for cli-window-open
* docs: update telemetry testing instructions
* fix: add GITHUB_TOKEN to build code-server job
Downloading @vscode/ripgrep is failing only in CI so adding this
environment variable to see if it increases the rate limit.
Ref: https://github.com/microsoft/vscode-ripgrep#github-api-limit-note
* refactor: use own cache key build code-server job
* temp: disable vscode test
* refactor: delete wrapper test
* Revert "refactor: delete wrapper test"
This reverts commit 3999279b73#5911 )
* wip: migrate vscode tests to e2e
* feat: add codeWorkspace to global setup
* refactor: only use dir in spawn when we should
* wip: migrate more tests
* refactor: move all vscode tests to e2e
* refactor(ci): move unit to own job
* fixup: add codecov to unit test step
* Update test/e2e/models/CodeServer.ts
* Update test/e2e/models/CodeServer.ts
* docs: add note about intercept requests
* refactor: rm unused clean() calls
* refactor: delete duplicate test
* refactor: update 'should not redirect' test
* refactor: rm unused imports
* refactor: rm unnecessary navigate call in test
* fixup: formatting
* wip: update test
* refactor: modify assertion for proxy
* fixup: use REVERSE_PROXY_BASE_PATH
* refactor: add helper fn getMaybeProxiedPathname
* fixup: formatting
* fixup: rm unused import
* chore: increase playwright timeout
* Revert "chore: increase playwright timeout"
This reverts commit a059129252
2022-12-22 10:25:28 -07:00
Joe Previte
87f606db2a
chore(ci): update linux cross-compile runner 20.04 ( #5896 )
2022-12-16 08:54:23 -07:00
Joe Previte
06483bc59d
refactor: rm node_mods caching in release workflow ( #5895 )
2022-12-15 14:24:59 -07:00
