shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-01-09 01:18:19 +03:00
Code
65,417 Commits 4 Branches 400 Tags 553 MiB
94c357ca23
Commit Graph

18 Commits

Author SHA1 Message Date
jonathanmetzman
56595a3730
ci: Report results from CIFuzz using SARIF 
Upload results from CIFuzz using SARIF.
This will allow CIFuzz to report issues in the security tab.
This is a better UI than having to look through logs.
TODO(google/oss-fuzz#10452): Add proper descriptions of UBSAN bugs.
 2023-06-05 07:37:34 +02:00
dependabot[bot]
c07aa178b3 build(deps): bump actions/upload-artifact from 3.1.1 to 3.1.2 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.1...0b7f8abb1508181956e8e162db84b466c27e18ce)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-11 09:31:55 +02:00
dependabot[bot]
690e7bfe8f build(deps): bump actions/upload-artifact from 3.1.0 to 3.1.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.0...83fd05a356d7e2593de66fc9913b3002723633cb)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-01 10:02:00 +00:00
Evgeny Vereshchagin
4f62dc3e92 cifuzz: build fuzzers on i386 as well 
It's a follow-up to https://github.com/systemd/systemd/pull/23550.
 2022-06-08 21:32:38 +00:00
dependabot[bot]
2f9e3d5f50 build(deps): bump actions/upload-artifact from 2.3.1 to 3.1.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.3.1 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](82c141cc51...3cea537223)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-01 15:32:03 +03:00
Evgeny Vereshchagin
d6b99a4a48 ci: run all fuzz targets on CIFuzz 
CIFuzz has been kind of broken for a couple months because
coverage reports downloaded from OSS-Fuzz contain absolute
paths while paths to files changed in PRs are relative and they
don't match. It makes it kind of hard for CIFuzz to figure out
what it should run so it runs either all fuzz targets or just new
fuzz targets. Until that issue is fixed let's just always predictably run
all fuzz targets.
 2022-02-11 13:21:24 +00:00
dependabot[bot]
219c1dc780 build(deps): bump actions/upload-artifact from 2.3.0 to 2.3.1 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](da838ae959...82c141cc51)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-20 13:14:23 +03:00
dependabot[bot]
fdae4504c7 build(deps): bump actions/upload-artifact from 2.2.4 to 2.3.0 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.2.4 to 2.3.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](27121b0bdf...da838ae959)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-12-13 14:45:19 +03:00
Evgeny Vereshchagin
e7a966915d ci: mimic the "restricted" mode 
Judging by https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token
it should be enough to grant the "read contents" permission to
most of our actions. The "read metadata" permission is set impliciclty
somewhere and can't be set via the "permissions" setting:
```
The workflow is not valid. .github/workflows/linter.yml (Line: 14, Col: 3): Unexpected value 'metadata'
```
 2021-11-14 10:41:06 +00:00
Evgeny Vereshchagin
311956ccd9 ci: tighten several GHActions a bit more 
with https://docs.github.com/en/actions/learn-github-actions/workflow-syntax-for-github-actions#permissions
 2021-11-13 22:17:21 +03:00
Evgeny Vereshchagin
3fec0e6cbf ci: pin some workflows to SHAs 
to let Dependabot keep track of them using SHAs

codeql-actions doesn't point to SHAs because it isn't clear
whether Dependabot supports their release cycle mentioned
at https://github.com/github/codeql-action/issues/307
 2021-11-11 10:32:02 +00:00
Frantisek Sumsal
8b212f3596 ci: take CIFuzz's matrix into consideration 
Otherwise the jobs will try to cancel each other out.

Follow-up to 3884837610.
 2021-11-10 20:44:24 +00:00
Frantisek Sumsal
3884837610 ci: cancel previous jobs on ref update 
Let's save the environment (and reduce the number of jobs in GH Actions
queues) by cancelling old jobs on a ref update (force push).

See: https://docs.github.com/en/actions/learn-github-actions/workflow-syntax-for-github-actions#concurrency
 2021-11-10 17:15:35 +01:00
Frantisek Sumsal
46573ee131 ci: fix indentation 2021-11-10 17:15:35 +01:00
Zbigniew Jędrzejewski-Szmek
186b9041ae ci: use LGPLv2+ for all our ci configuration 2021-10-01 14:45:00 +02:00
Evgeny Vereshchagin
9b25429cb4 GH Actions: switch to main 
It's just a follow-up to https://github.com/systemd/systemd/issues/16834
 2021-01-21 16:28:02 +01:00
Evgeny Vereshchagin
a2c7035976 cifuzz: build fuzz target with UBsan and MSan as well 2020-06-12 10:17:57 +02:00
Frantisek Sumsal
48c6399ad8 github: rename CIFuzz workflow file to cifuzz.yml 2020-06-11 10:22:09 +02:00