Mirrors/flux2
1
0
Fork 0
mirror of synced 2026-02-13 21:16:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,762 Commits 29 Branches 200 Tags
2a2201fe56d4793ee35c1cc2b102ba3e7462926d
Commit Graph

5 Commits

Author SHA1 Message Date
Stefan Prodan
0b972771fd Update dependabot config 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2025-05-28 15:52:42 +03:00
Stefan Prodan
8e61fe805c ci: group all GH action updates under the same PR 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-07-04 13:43:22 +03:00
Stefan Prodan
d2cc01169b Declaratively define (and sync) labels 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-06-30 17:04:12 +03:00
Paulo Gomes
d0e6fcad3f build: Pin GitHub Actions 
The main benefit of pinning GitHub actions is the determinism it brings
in terms of what version of a given action will be executed. This is
a step towards having hermetic builds.

Once pinned to a commit, dependabot will automatically issue PRs to update
to newer versions.

Pinned versions is the only security metric from OpenSSF scorecard that
this repository currently have a zero score.

Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
 2022-11-17 15:33:59 +00:00
Stefan Prodan
4ea70765af Enable Dependabot for GitHub Actions 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-10-17 18:57:09 +03:00