Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: Set permissions for GitHub actions #7036

Merged
merged 1 commit into from
May 31, 2022

Conversation

nathannaveen
Copy link
Contributor

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <[email protected]>
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Apr 26, 2022
@k8s-ci-robot
Copy link
Contributor

Welcome @nathannaveen!

It looks like this is your first PR to kubernetes/dashboard 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes/dashboard has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

@k8s-ci-robot k8s-ci-robot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Apr 26, 2022
@nathannaveen
Copy link
Contributor Author

/assign @shu-mutou

@maciaszczykm
Copy link
Member

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label May 31, 2022
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: maciaszczykm, nathannaveen

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label May 31, 2022
@k8s-ci-robot k8s-ci-robot merged commit b43c727 into kubernetes:master May 31, 2022
floreks pushed a commit to maciaszczykm/kubernetes-dashboard that referenced this pull request Aug 5, 2022
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <[email protected]>
maciaszczykm added a commit that referenced this pull request Sep 16, 2022
* Start moving files

* Move modules to the root dir

* Fix backend import paths

* Move some scripts

* Add API workflow

* Update codegen scripts

* Update gitignores

* Update API workflow

* Update API workflow

* Update backend structure

* Update backend structure

* Add modules dir

* Update structure

* Split frontend and update web build logic

* Update license config

* Add tools module

* Add license check workflow

* Fix licenses

* Update scripts

* Update workflows

* Update workflows

* Lower npm requirements to bundled version

* Update package-lock.json

* Update configs

* Remove unused code

* Add workspace support and update web handling

* Bump github/codeql-action from 2.1.8 to 2.1.9 (#7049)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.8 to 2.1.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@1ed1437...7502d6e)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @types/node from 17.0.29 to 17.0.30 (#7059)

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 17.0.29 to 17.0.30.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump core-js from 3.22.2 to 3.22.3 (#7055)

Bumps [core-js](https://github.com/zloirock/core-js) from 3.22.2 to 3.22.3.
- [Release notes](https://github.com/zloirock/core-js/releases)
- [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md)
- [Commits](zloirock/core-js@v3.22.2...v3.22.3)

---
updated-dependencies:
- dependency-name: core-js
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/setup-buildx-action from 1.6.0 to 1.7.0 (#7056)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@94ab11c...f211e3e)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump typescript from 4.6.3 to 4.6.4 (#7060)

Bumps [typescript](https://github.com/Microsoft/TypeScript) from 4.6.3 to 4.6.4.
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v4.6.3...v4.6.4)

---
updated-dependencies:
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump ts-loader from 9.2.9 to 9.3.0 (#7062)

Bumps [ts-loader](https://github.com/TypeStrong/ts-loader) from 9.2.9 to 9.3.0.
- [Release notes](https://github.com/TypeStrong/ts-loader/releases)
- [Changelog](https://github.com/TypeStrong/ts-loader/blob/main/CHANGELOG.md)
- [Commits](TypeStrong/ts-loader@v9.2.9...v9.3.0)

---
updated-dependencies:
- dependency-name: ts-loader
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump stylelint from 14.8.0 to 14.8.1 (#7065)

Bumps [stylelint](https://github.com/stylelint/stylelint) from 14.8.0 to 14.8.1.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md)
- [Commits](stylelint/stylelint@14.8.0...14.8.1)

---
updated-dependencies:
- dependency-name: stylelint
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @babel/core from 7.17.9 to 7.17.10 (#7066)

Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) from 7.17.9 to 7.17.10.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.17.10/packages/babel-core)

---
updated-dependencies:
- dependency-name: "@babel/core"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @types/node from 17.0.30 to 17.0.31 (#7064)

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 17.0.30 to 17.0.31.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @babel/preset-env from 7.16.11 to 7.17.10 (#7063)

Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.16.11 to 7.17.10.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.17.10/packages/babel-preset-env)

---
updated-dependencies:
- dependency-name: "@babel/preset-env"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* docs: deploy `helm` with name `kubernetes-dashboard` (#7068)

* docs: deploy `helm` with name `my-release`

* docs: change all `my-release` to `kubernetes-dashboard`

* Bump @typescript-eslint/eslint-plugin from 5.21.0 to 5.22.0 (#7070)

Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.21.0 to 5.22.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.22.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @types/jest from 27.4.1 to 27.5.0 (#7069)

Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 27.4.1 to 27.5.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest)

---
updated-dependencies:
- dependency-name: "@types/jest"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump core-js from 3.22.3 to 3.22.4 (#7071)

Bumps [core-js](https://github.com/zloirock/core-js) from 3.22.3 to 3.22.4.
- [Release notes](https://github.com/zloirock/core-js/releases)
- [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md)
- [Commits](zloirock/core-js@v3.22.3...v3.22.4)

---
updated-dependencies:
- dependency-name: core-js
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Update Japanese translation (Line 1-1593) (#7054)

* Update Japanese translation (Line 1-1593)

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

* Update i18n/ja/messages.ja.xlf

Co-authored-by: Shu Muto <[email protected]>

* Bump @typescript-eslint/parser from 5.21.0 to 5.22.0 (#7072)

Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 5.21.0 to 5.22.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.22.0/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/setup-qemu-action from 1.2.0 to 2 (#7074)

Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1.2.0 to 2.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](docker/setup-qemu-action@27d0a4f...8b12248)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump docker/setup-buildx-action from 1.7.0 to 2 (#7075)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1.7.0 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@f211e3e...dc7b971)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Add support for IngressClass [#5232] (#6920)

* Update Japanese translation(Line 1594-2887) (#7079)

* Update Japanese translation(Line 1594-2887)

* modified Japanese translation(Line 1594-2887)

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

Co-authored-by: atoato88 <[email protected]>

* Comment targets to migrate

* Add licence ignores

* Refactor workflows

* Other updates

* Workflow updates

* Workflow updates

* Workflow updates

* Workflow updates

* Add Go lint action

* Format files

* Fix serve target and update build pipeline

* go mod tidy for tools

* Add ensure target for golangci-lint

* Add ensure go target to tools

* Use private targets in makefile

* Optimize targets

* Update i18n handling for web

* Remove deprecated ngx-i18nsupport package and use ng-extract-i18n-merge instead

* Fix package.json

* Add nginx gateway and make targets to run prod version of the application locally

* Bump github/codeql-action from 2.1.9 to 2.1.10 (#7095)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.9 to 2.1.10.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@7502d6e...75b4f1c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Fix path

* Update Japanese translation(Line 2888-5094) (#7096)

* Update Japanese translation(Line 2888-5094)

* modified Japanese translation(Line 2888-5094)

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: atoato88 <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: Shu Muto <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: Shu Muto <[email protected]>

* Update i18n/ja/messages.ja.xlf

Co-authored-by: Shu Muto <[email protected]>

Co-authored-by: atoato88 <[email protected]>
Co-authored-by: Shu Muto <[email protected]>

* Update messages.de.xlf (#7117)

Fixed typo in german translation for community. #7113

* Bump angular staffs to 13.3.5 (#7053)

cli and build-angular were still 13.3.4.

* Bump k8s modules to 0.24.0 (#7073)

* chore(deps): Included dependency review (#7102)

> Dependency Review GitHub Action in your repository to enforce dependency
> reviews on your pull requests.
> The action scans for vulnerable versions of dependencies introduced by package version
> changes in pull requests,
> and warns you about the associated security vulnerabilities.
> This gives you better visibility of what's changing in a pull request,
> and helps prevent vulnerabilities being added to your repository.

https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
Signed-off-by: naveensrinivasan <[email protected]>

* chore: Set permissions for GitHub actions (#7036)

Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <[email protected]>

* Update docs for 1.24+ (#6967)

* Bump actions/setup-go from 3.0.0 to 3.2.0 (#7131)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.0.0 to 3.2.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@f6164bd...b22fbbc)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump github/codeql-action (#7107)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 75b4f1c4669133dc294b06c2794e969efa2e5316 to 2.1.11. This release includes the previously tagged commit.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@75b4f1c...a3a6c12)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump actions/setup-node from 3.1.1 to 3.2.0 (#7106)

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 3.1.1 to 3.2.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@56337c4...17f8bd9)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Update dependencies and prepare for v2.6.0 release (#7140)

* Update dependencies

* Update dependencies

* Update dependabot config

* Fix startup

* Add dependabot config for Golang

* Minor update

* Fix unit tests
Bump version

* Bump metrics-server version

* Fix static check

* Update Goland dependencies

* Revert app version in Helm chart

* Update lockfile

* Update dev pipeline

* Update run pipeline

* Cleanup the build and start adding the multi arch build targets for the release pipeline

* add serviceMonitor labels/annotations (#7120)

* add serviceMonitor labels/annotations

* Update aio/deploy/helm-chart/kubernetes-dashboard/Chart.yaml

Co-authored-by: Cédric de Saint Martin <[email protected]>

Co-authored-by: Cédric de Saint Martin <[email protected]>

* Update Helm chart (#7167)

* Updates after merge

* Set correct working dir

* Set correct working dir

* Update API tests

* Fix file path

* Add cache

* Pipeline improvements

* Workflow and test updates

* Rewrite client-gen support and update improve multiarch build

* Remove leftover i18n from root dir

* Update web scripts

* Update workflows

* Update API workflow

* Fix dependencies

* Restore overrides

* Update dev pipeline

* Cleanup

* Refactor partial makefiles and web frontend build

* Fix top level build

* Update dashboard-arguments.md

* fix: close sizeChan to avoid memory leak. (#7244)

* Use batch/v1 API & Add /health endpoint & Fix CronJob OwnerRef (#7301)

* Use batch/v1 instead of batch/v1beta1, add OwnerReference to Job when triggering CronJob, add simple /health endpoint

* Add license

* Fix test and run go mod tidy

* Update go.mod

* Update dashboard-arguments.md

* fix: fix panic while RsaKeyHolder secret is nil (#7189)

* fix: fix panic while RsaKeyHolder secret is nil

* test: add test for auth.NewBasicAuthenticator

* go mod tidy and fix master merge issues

* go mod tidy and fix master merge issues

* Remove unused files

* Fix build/serve pipeline

* Update codecov config

* Bump Go version

* Set GOPATH

* Retry

* Retry

* Retry

* Fix variable name

* Update API workflow

* Bump golangci-lint

* Update web workflow

* Fix path

* Remove some of npm occurences

* Bump Go dependencies
Remove deprecated linters
goimport files

* Goimport rest of the files

* Update web workflow

* Fix license check

* Remove duplicated deps review action and tidy dependencies to solve critical security issue

* Fix web static check and remove unused conf variables

* Bump dependency review action

* Workflow cleanup

* Remove ng-in-viewport to fix tests

* Revert "Remove ng-in-viewport to fix tests"

This reverts commit 279e649.

* Fix typo

* Fix typo

* Remove duplicated import

* Optimize web dependencies, improve prod run

* Add ngcc postinstall command to yarn

* Fix license check

* Fix web static check

* Update test config

* Remove code freeze warning

* Update codecov config

* Update coverage config

* Bump coverage action version

* Retry

* Export GOPATH in e2e

* Use yarn to run e2e

* Add missing script

* Update e2e setup

* Fix wait-on script

* Fix e2e config

* Merge new translations from master

* Retry with different port number

* Retry

* Send serve process to background

* Add missing vars

* Fix typo

* Retry

* Update translation

* Fix translation file

Signed-off-by: naveensrinivasan <[email protected]>
Signed-off-by: nathannaveen <[email protected]>
Co-authored-by: Sebastian Florek <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: JounQin <[email protected]>
Co-authored-by: ziyi-xie <[email protected]>
Co-authored-by: Shu Muto <[email protected]>
Co-authored-by: Andrea Decorte <[email protected]>
Co-authored-by: atoato88 <[email protected]>
Co-authored-by: David Roth <[email protected]>
Co-authored-by: Naveen <[email protected]>
Co-authored-by: nathannaveen <[email protected]>
Co-authored-by: Jordan Liggitt <[email protected]>
Co-authored-by: TheRealNoob <[email protected]>
Co-authored-by: Cédric de Saint Martin <[email protected]>
Co-authored-by: 意琦行 <[email protected]>
Co-authored-by: L. Jiang <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants