naveen
341ed3b311
chore: Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-05-08 01:00:16 +00:00
dependabot[bot]
6547978c75
build(deps): bump actions/upload-artifact from 2.3.1 to 3 ( #2445 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2.3.1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2.3.1...v3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-01 15:47:39 +02:00
dependabot[bot]
e66b2594ca
build(deps): bump actions/checkout from 2 to 3 ( #2444 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-01 15:46:08 +02:00
Matthias Schiffer
d8aca7f211
workflows: build-gluon: avoid failure when no path filter matches
...
The CI should be successful when there is nothing to check. Add if
condition as proposed in [1].
[1] https://github.com/dorny/paths-filter/issues/66#issuecomment-778267385
2021-12-18 23:51:17 +01:00
Matthias Schiffer
83808221d7
workflows: build-gluon: remove obsolete comment
...
build-gluon.yml is not generated anymore.
2021-12-18 23:47:41 +01:00
dependabot[bot]
18cddd2046
build(deps): bump actions/upload-artifact from 1 to 2.3.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 1 to 2.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v1...v2.3.1 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-18 14:41:54 +00:00
Martin Weinelt
1f8c5d1c8f
actions: build targets conditionally
2021-08-10 22:16:08 +02:00
Matthias Schiffer
09c9b78e30
ramips-rt305x: drop target
...
VoCores aren't exactly useful mesh nodes except for experimentation.
They certainly aren't worth maintaining a whole target, in particular
one that has a WLAN driver not used by any other target.
2021-07-13 21:37:39 +02:00
David Bauer
4f133ac24e
actions: add mediatek-mt7622 target
...
Add the newly added mediatek-mt7622 to the firmware build-test matrix.
Signed-off-by: David Bauer <mail@david-bauer.net>
2021-07-01 03:35:06 +02:00
David Bauer
0f60214fc0
actions: add rockchip-armv8 target
2021-06-29 00:25:09 +02:00
David Bauer
a02270651c
actions: update workflow
2021-06-22 01:59:48 +02:00
David Bauer
53b647f748
actions: build gluon for next sub-branches
...
Currently we do not perform CI firmware builds on the next-2102 branch.
Build Gluon for all branches starting with "next" to increase the
coverage of our build tests.
Signed-off-by: David Bauer <mail@david-bauer.net>
2021-05-01 13:35:36 +02:00
Martin Weinelt
e6b996f0e1
Revert "actions: pin Ubuntu version"
...
This reverts commit d9621048ed
.
2021-04-05 04:09:42 +02:00
David Bauer
d9621048ed
actions: pin Ubuntu version
...
ubuntu-latest is now assigned to Ubuntu 20.04. As we use custom apt
sources for 18.04, pin to this version for now to fix the CI.
2021-02-15 01:38:51 +01:00
Martin Weinelt
bab05c8515
actions: run tasks based on set of modified paths
2021-01-02 17:25:51 +01:00
Annika Wickert
75f7b7c0b6
actions: use matrix to avoid repeats
...
Closes #2166
2021-01-02 15:08:41 +01:00
David Bauer
0b1ee0cf69
github: remove GitHub actions cache ( #2120 )
...
The performance benefit the cache brought was due to a broken sources
CDN mirror handling in OpenWrt.
The cache brings no measurable performance benefit. Disable it to slim
down the pipeline steps.
2020-09-18 13:50:02 +02:00
David Bauer
de9d3a917e
actions: cache OpenWrt DL folder ( #2084 )
...
This adds the ability to cache OpenWrt dependencies on a per-target
base. Artifacts over 10MB are excluded, as GitHub imposes a limit of 5G
of available space per repository cache. This affects mostly
linux(-firmware) and gcc / gdb.
The goal is to reduce the total amount of requests necessary to fetch
dependencies.
2020-07-25 00:42:55 +02:00
Vieno Hakkerinen
d353ad35fe
actions: add x86-legacy build workflow
2020-05-17 00:06:03 +02:00
Matthias Schiffer
55c51f2a73
actions: script improvements
...
- Rely on shebang instead of setting shell in workflow
- Run whole install-dependencies.sh in sudo
- Use /bin/sh instead of bash
- set -e
2020-05-13 15:48:06 +02:00
Matthias Schiffer
2889904e5f
actions: set BUILD_LOG=1 and store logs as artifacts
...
The new step is added with `if: ${{ !cancelled() }}`, so the logs are
stored even when the build fails.
2020-05-13 15:48:06 +02:00
David Bauer
0d341a76b3
actions: create per-target artifacts
2020-05-07 02:29:11 +02:00
David Bauer
d3f5adcfa4
github: actions: only build certain branches
...
This enables build-testing only on master as well as next and release
branches.
2020-04-10 03:50:31 +02:00
David Bauer
bb905b3351
actions: move dependencies to dedicated step
2020-04-05 19:08:15 +02:00
David Bauer
c21d95bf34
github: add build workflow
2020-04-04 18:04:31 +02:00