Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lineage pull request for: skeleton #22

Merged
merged 33 commits into from
May 6, 2022
Merged

Lineage pull request for: skeleton #22

merged 33 commits into from
May 6, 2022

Conversation

cisagovbot
Copy link

Lineage Pull Request

Lineage has created this pull request to incorporate new changes found in an
upstream repository:

Upstream repository: https://github.com/cisagov/skeleton-python-library.git
Remote branch: HEAD

Check the changes in this pull request to ensure they won't cause issues with
your project.

Note: You are seeing this because one of this repository's maintainers has
configured Lineage to open pull requests.

For more information:

🛠 Lineage configurations for this project are stored in .github/lineage.yml

📚 Read more about Lineage

dependabot bot and others added 30 commits February 28, 2022 18:02
@dependabot
Bump actions/setup-python from 2 to 3
4ee1bfd 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump actions/checkout from 2 to 3
3406c2d 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@mcdonnnj
Update pre-commit hooks
9a03808 
Update pre-commit hooks using `pre-commit autoupdate`. The `ansible-lint` hook
is intentionally held back due to issues with upgrading to v6.
@mcdonnnj
Add Dependabot ignore directives
511a37c 
This adds commented out ignore directives for the following GitHub
Actions:

- action/cache
- action/checkout
- action/setup-python

These should be uncommented downstream to ensure that updates to these
dependencies are pushed from pull requests made in the skeleton.
@mcdonnnj
Upgrade from Python 3.9 to 3.10 for the lint job in GHA
5839926
@mcdonnnj
Use consistent quoting for software versions
e22c12c
@mcdonnnj
Merge pull request #101 from cisagov/dependabot/github_actions/action…
a3f12f4 
…s/setup-python-3

Bump actions/setup-python from 2 to 3
@mcdonnnj
Merge branch 'develop' into dependabot/github_actions/actions/checkout-3
6869c68
@mcdonnnj
Merge pull request #102 from cisagov/dependabot/github_actions/action…
e190ae7 
…s/checkout-3

Bump actions/checkout from 2 to 3
@dependabot @mcdonnnj
Bump actions/cache from 2 to 3
c576ef5 
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](actions/cache@v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@mcdonnnj
Merge branch 'develop' into improvement/add_dependabot_ignores_for_gi…
496ea93 
…thub_actions
@mcdonnnj
Merge pull request #107 from cisagov/improvement/add_dependabot_ignor…
a9c93d0 
…es_for_github_actions

Add Dependabot ignore directives
@mcdonnnj
Merge pull request #104 from cisagov/dependabot/github_actions/action…
d168151 
…s/cache-3

Bump actions/cache from 2 to 3
@mcdonnnj
Merge branch 'develop' into improvement/use_python_3.10_for_gha
14aff9c
@mcdonnnj
Merge pull request #106 from cisagov/improvement/use_python_3.10_for_gha
504ed9e 
Use Python 3.10 for the `lint` job in GitHub Actions
@mcdonnnj
Merge branch 'develop' into maintenance/update_pre-commit_hooks
57d6ac0
@mcdonnnj
Merge pull request #105 from cisagov/maintenance/update_pre-commit_hooks
da532a5 
Update `pre-commit` hooks
@mcdonnnj
Merge github.com:cisagov/skeleton-generic into lineage/skeleton
e75882f
@mcdonnnj
Enable Dependabot ignore directives
4d37032 
This enables the Dependabot ignore directives for GitHub Actions.
@mcdonnnj
Add pre-commit hooks to validate GitHub Actions content
49d87d4 
Add hooks to validate GitHub Actions and GitHub Action workflows. These
are validated using JSON Schemas.
@mcdonnnj
Merge pull request #109 from cisagov/improvement/add_github_actions_p…
4215ba3 
…re-commit_hooks

Add `pre-commit` hooks to validate GitHub Actions content
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
16dce55
@mcdonnnj
Add permission scoping for the CodeQL Analyze GHA job
3464799 
This sets permissions around `GITHUB_TOKEN` to the minimum necessary
for this workflow. Please see
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
for more information.
@mcdonnnj
Update github/codeql-action/init from 1 to 2
d03d2c9 
Update the comments to better mirror the current documentation for
github/codeql-action. Switch to block style for the map of languages.
@mcdonnnj
Consistently use block style in the CodeQL GHA workflow
256cd17
@mcdonnnj
Update github/codeql-action/autobuild from 1 to 2
5c86848 
Clean up the commenting while we're here.
@mcdonnnj
Update github/codeql-action/analyze from 1 to 2
55d2238 
Also clean up the commenting while we're here.
@mcdonnnj
Merge pull request #97 from cisagov/lineage/skeleton
ef206f9 
Lineage pull request for: skeleton
@mcdonnnj
Merge pull request #98 from cisagov/improvement/update_codeql_workflow
94be4ca 
Update the CodeQL workflow
@mcdonnnj
Update git ignore list
c251246 
Add dist/ to the .gitignore file to better support local building.
mcdonnnj and others added 3 commits May 5, 2022 11:51
@mcdonnnj
Modernize the Python package build step
96f816e 
Modernize the build process by using the build package instead of the
now deprecated setup.py install method. Remove installing the package
requirements as it is unnecessary for this build process. Upgrade the
setuptools package as part of the initial dependency installation.
@mcdonnnj
Merge pull request #95 from cisagov/improvement/update_build_process
7dc735b 
Modernize the `build` step in the `build` workflow
Merge https://github.com/cisagov/skeleton-python-library into lineage…
52a4eda 
…/skeleton
@cisagovbot cisagovbot added the upstream update This issue or pull request pulls in upstream updates label May 5, 2022
@jsf9k jsf9k removed their assignment May 6, 2022
@dav3r dav3r merged commit 0c26d03 into develop May 6, 2022
@dav3r dav3r deleted the lineage/skeleton branch May 6, 2022 18:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dav3r dav3r dav3r approved these changes

@jsf9k jsf9k jsf9k approved these changes

@felddy felddy Awaiting requested review from felddy felddy is a code owner

@mcdonnnj mcdonnnj Awaiting requested review from mcdonnnj mcdonnnj is a code owner

Assignees

@felddy felddy

@dav3r dav3r

@mcdonnnj mcdonnnj

Labels
upstream update This issue or pull request pulls in upstream updates
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@cisagovbot @jsf9k @dav3r @felddy @mcdonnnj