Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ci: Fix static analysis errors #955

Merged
merged 5 commits into from
Dec 13, 2024
Merged

ci: Fix static analysis errors #955

merged 5 commits into from
Dec 13, 2024

Conversation

Techassi
Copy link
Member

The workflows were checked with https://github.com/woodruffw/zizmor to find various security related improvements.

The following lints were fixed:

@Techassi Techassi self-assigned this Dec 12, 2024
@Techassi Techassi marked this pull request as ready for review December 13, 2024 07:34
@Techassi Techassi added this pull request to the merge queue Dec 13, 2024
Merged via the queue into main with commit 344b892 Dec 13, 2024
3 checks passed
@Techassi Techassi deleted the ci/apply-static-analysis-fixes branch December 13, 2024 07:43
NickLarsenNZ pushed a commit that referenced this pull request Dec 13, 2024
@Techassi @NickLarsenNZ
ci: Fix static analysis errors (#955)
91b8563 
* ci: Fix high severity errors

* ci: Set persist-credentials to false

* ci: Move step output to env var

* chore: Add changelog entry
NickLarsenNZ added a commit that referenced this pull request Dec 13, 2024
@NickLarsenNZ @Techassi @lfrancke
ci: cherry-pick workflow and container build improvements (#957)
ec65c46 
* ci: remove redundant usages of the free-disk-space action

Co-authored-by: Techassi <[email protected]>

* ci: Add attempt number to the workflow run name, and URL in the slack message (#941)

Co-authored-by: Techassi <[email protected]>

* ci: register a dummy test_build_images workflow which will be completed in a separate PR (#947)

* Use our build-repo for Maven downloads & other updates (#953)

* Use our build-repo for Maven downloads

* ci(build): Continue matrix builds on failure so there is less jobs to rerun when there are transient failures

* Update Spark Mvn build as well

* Hopefully silence Spark build

* Update FMPP version

This is because FMPP Maven Plugin depends on FMPP in version 0.9.14
which itself depends on a Freemarker version that has not been pinned.
Instead it specifies a "range" which resolves to a SNAPSHOT version
which we don't want.

* Add Stackable repo to Kafka build as well

* Update changelog

* Update CHANGELOG.md

Co-authored-by: Nick <[email protected]>

---------

Co-authored-by: Nick Larsen <[email protected]>
Co-authored-by: Nick <[email protected]>

* ci: Fix static analysis errors (#955)

* ci: Fix high severity errors

* ci: Set persist-credentials to false

* ci: Move step output to env var

* chore: Add changelog entry

* ci(build): stagger the scheduled builds to ease load on external systems (#954)

---------

Co-authored-by: Techassi <[email protected]>
Co-authored-by: Lars Francke <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lfrancke lfrancke lfrancke approved these changes

Assignees

@Techassi Techassi

Labels
None yet
Projects
Stackable Engineering
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Techassi @lfrancke