diff --git a/.github/renovate.json5 b/.github/renovate.json5 deleted file mode 100644 index 2374fb949..000000000 --- a/.github/renovate.json5 +++ /dev/null @@ -1,81 +0,0 @@ -{ - extends: ['config:base'], - timezone: 'Europe/Zurich', - schedule: 'after 5pm on the first day of the month', - labels: ['dependencies'], - separateMajorMinor: true, - separateMinorPatch: true, - prHourlyLimit: 0, - prConcurrentLimit: 0, - html: { - fileMatch: ['\\.html?$', '\\.html?.mako$'], - }, - lockFileMaintenance: { - enabled: true, - automerge: true, - schedule: 'after 5pm on the first day of the month', - }, - baseBranches: ['master', '5.2', '5.1', '5.0', 'release_4'], - 'pre-commit': { enabled: true }, - regexManagers: [ - { - fileMatch: ['^.pre-commit-config\\.yaml$'], - matchStrings: [" +- '?(?[^' @=]+)(@|==)(?[^' @=]+)'? # (?.+)"], - }, - { - fileMatch: ['^ci/config\\.yaml$'], - matchStrings: [ - '.*https://raw\\.githubusercontent\\.com/(?[^\\s]+)/(?[0-9\\.]+)/.*', - ], - datasourceTemplate: 'github-tags', - }, - { - fileMatch: ['^ci/dpkg-versions\\.yaml$'], - matchStrings: [" *(?[^'\\s]+): '?(?[^'\\s/]*[0-9][^'\\s/]*)'?"], - datasourceTemplate: 'repology', - versioningTemplate: 'loose', - }, - ], - packageRules: [ - /** Automerge the patch, the minor and the dev dependency */ - { - matchDepTypes: ['devDependencies'], - automerge: true, - }, - /** Group the patch and the minor */ - { - matchUpdateTypes: ['patch'], - groupName: 'all patch versions', - automerge: true, - }, - { - matchUpdateTypes: ['minor'], - groupName: 'all minor versions', - automerge: true, - }, - /** Group Poetry packages */ - { - matchPackageNames: ['poetry', 'pip'], - matchPackagePrefixes: ['poetry-'], - groupName: 'Poetry', - automerge: true, - separateMajorMinor: false, - separateMinorPatch: false, - }, - /** Accept only the patch on stabilization branches */ - { - matchBaseBranches: ['/[0-9]\\..*/', '/release_.*/'], - matchUpdateTypes: ['major', 'minor', 'pin', 'digest', 'lockFileMaintenance', 'rollback', 'bump'], - enabled: false, - }, - /** Monthly update on stabilization branches */ - { - matchBaseBranches: ['/[0-9]\\..*/', '/release_.*/'], - schedule: ['on the 1st day of the month'], - }, - { - matchPackageNames: ['shellcheck-py/shellcheck-py'], - versioning: 'regex:^v(?\\d+)\\.(?\\d+)\\.(?\\d+)\\.(?\\d+)$', - }, - ], -} diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml deleted file mode 100644 index 4aa3fcc08..000000000 --- a/.github/workflows/audit.yaml +++ /dev/null @@ -1,59 +0,0 @@ -name: Audit - -on: - schedule: - - cron: '30 2 * * *' - -jobs: - audit: - runs-on: ubuntu-22.04 - name: Audit - timeout-minutes: 10 - - strategy: - fail-fast: false - matrix: - branch: - - release_4 - - '5.0' - - '5.1' - - '5.2' - - steps: - # Remove Python packages with wrong version - - run: sudo apt-get remove python3-debian python3-distro-info - - uses: actions/checkout@v4 - with: - ref: ${{ matrix.branch }} - token: ${{ secrets.GOPASS_CI_GITHUB_TOKEN }} - - - uses: camptocamp/initialise-gopass-summon-action@v2 - with: - ci-gpg-private-key: ${{secrets.CI_GPG_PRIVATE_KEY}} - github-gopass-ci-token: ${{secrets.GOPASS_CI_GITHUB_TOKEN}} - - - run: python3 -m venv ~/.venv - - run: ~/.venv/bin/pip install --pre c2cciutils[audit] - - run: python3 -m pip install --pre c2cciutils[audit] - - - name: Check .tool-versions file existence - id: tool-versions - uses: andstor/file-existence-action@v2 - with: - files: .tool-versions - - uses: asdf-vm/actions/install@v2 - if: steps.tool-versions.outputs.files_exists == 'true' - - run: cat /tmp/python-build.*.log - if: failure() - - run: python --version - - - name: Audit - run: ~/.venv/bin/c2cciutils-audit --branch=${{ matrix.branch }} - env: - GITHUB_TOKEN: ${{ secrets.GOPASS_CI_GITHUB_TOKEN }} - - name: Audit Snyk debug - run: ~/.venv/bin/c2cciutils-audit --branch=${{ matrix.branch }} || true - if: failure() - env: - GITHUB_TOKEN: ${{ secrets.GOPASS_CI_GITHUB_TOKEN }} - DEBUG: '*snyk*' diff --git a/.github/workflows/clean.yaml b/.github/workflows/clean.yaml index a556e58ba..c33d8fdfb 100644 --- a/.github/workflows/clean.yaml +++ b/.github/workflows/clean.yaml @@ -5,6 +5,7 @@ on: pull_request: types: - closed + jobs: clean: runs-on: ubuntu-22.04 diff --git a/.github/workflows/dependency-auto-review.yaml b/.github/workflows/dependency-auto-review.yaml new file mode 100644 index 000000000..d09719021 --- /dev/null +++ b/.github/workflows/dependency-auto-review.yaml @@ -0,0 +1,25 @@ +name: Auto reviews updates + +on: + pull_request: + types: + - opened + - reopened + +jobs: + auto-merge: + name: Auto reviews updates + runs-on: ubuntu-22.04 + timeout-minutes: 5 + + steps: + - uses: actions/github-script@v6 + with: + script: |- + github.rest.pulls.createReview({ + owner: context.repo.owner, + repo: context.repo.repo, + pull_number: context.payload.pull_request.number, + event: 'APPROVE', + }) + if: github.event.pull_request.user.login == 'renovate[bot]' diff --git a/.github/workflows/dependency-update-review.yaml b/.github/workflows/dependency-update-review.yaml deleted file mode 100644 index 2d6c98e68..000000000 --- a/.github/workflows/dependency-update-review.yaml +++ /dev/null @@ -1,22 +0,0 @@ -name: Auto reviews updates - -on: - pull_request: - types: - - opened - - reopened - - synchronize - -jobs: - auto-merge: - name: Auto reviews updates - runs-on: ubuntu-22.04 - timeout-minutes: 5 - - steps: - - name: Auto reviews updates - uses: golfzaptw/action-auto-reviews-from-branches@1.2.3 - with: - GITHUB_TOKEN: ${{ secrets.GOPASS_CI_GITHUB_TOKEN }} - AUTHOR: renovate[bot] - if: github.event.pull_request.user.login == 'renovate[bot]' diff --git a/.github/workflows/rebuild.yaml b/.github/workflows/rebuild.yaml deleted file mode 100644 index d47517df8..000000000 --- a/.github/workflows/rebuild.yaml +++ /dev/null @@ -1,70 +0,0 @@ -name: Rebuild - -on: - schedule: - - cron: 30 2 * * * - -env: - IN_CI: '1' - -jobs: - rebuild: - name: Rebuild - runs-on: ubuntu-22.04 - timeout-minutes: 15 - - strategy: - fail-fast: false - matrix: - branch: - - release_4 - - '5.0' - - '5.1' - - '5.2' - - master - - steps: - # Remove Python packages with wrong version - - run: sudo apt-get remove python3-debian python3-distro-info - - run: sudo apt-get update - - run: sudo apt-get install --yes libxslt1-dev libxml2-dev - - run: docker system prune --all --force - - uses: actions/checkout@v4 - with: - ref: ${{ matrix.branch }} - - - uses: camptocamp/initialise-gopass-summon-action@v2 - with: - ci-gpg-private-key: ${{secrets.CI_GPG_PRIVATE_KEY}} - github-gopass-ci-token: ${{secrets.GOPASS_CI_GITHUB_TOKEN}} - patterns: pypi docker - - - name: Check .tool-versions file existence - id: tool-versions - uses: andstor/file-existence-action@v2 - with: - files: .tool-versions - - uses: asdf-vm/actions/install@v2 - if: steps.tool-versions.outputs.files_exists == 'true' - - run: cat /tmp/python-build.*.log - if: failure() - - run: python --version - - - run: echo "${HOME}/.local/bin" >> ${GITHUB_PATH} - - run: python3 -m pip install --user --requirement=ci/requirements.txt - - - name: Checks - run: c2cciutils-checks - - - name: Pull - run: make pull - - - name: Build - run: make build - - - run: pip install --editable . || true - - name: Acceptance - run: make acceptance - - - name: Publish - run: c2cciutils-publish --type=rebuild --branch=${{ matrix.branch }}