privilegedescalation/org
12
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity
20 Commits 17 Branches 0 Tags
e97fee87af509d26d4cd8fe452d8836682bc59ad
Commit Graph

10 Commits

Author SHA1 Message Date
addison-addington[bot] e97fee87af Add FUNDING.yml for org-wide GitHub Sponsors 
Co-authored-by: addison-addington[bot] <266309314+addison-addington[bot]@users.noreply.github.com>
 2026-03-11 21:43:22 +00:00
hugh-hackman[bot] cd6bbb2481 ci: automate ci health checks (#11) 
Co-authored-by: gandalf-the-greybeard[bot] <gandalf-the-greybeard[bot]@users.noreply.github.com>
 2026-03-11 01:52:08 +00:00
hugh-hackman[bot] 0ef78ac580 feat: make reusable workflows strictly container-native (#10) 
Co-authored-by: gandalf-the-greybeard[bot] <gandalf-the-greybeard[bot]@users.noreply.github.com>
 2026-03-10 23:44:40 +00:00
Chris Farhood 4361c131f0 Merge pull request #9 from privilegedescalation/fix/release-workflow-branch-protection 
fix: release workflow creates PR instead of pushing to main
 2026-03-09 17:09:10 -04:00
Chris Farhood 70252f4175 Merge pull request #7 from privilegedescalation/fix/release-tag-guard 
fix: add tag-exists guard to release workflow
 2026-03-09 17:08:57 -04:00
gandalf-the-greybeard[bot] 7a035654c9 feat: auto-merge and cleanup release version bump PRs 
The release PR is just a version bump + checksum update. Enable
auto-merge with squash and delete the release branch after merge
to prevent branch accumulation.
 2026-03-09 19:22:10 +00:00
gandalf-the-greybeard[bot] caee689f15 fix: release workflow creates PR instead of pushing to main 
The release workflow pushed directly to main which fails on repos
with branch protection enabled. This broke the polaris plugin v0.7.0
release.

Changes:
- Create release/vX.Y.Z branch instead of committing to main
- Push to the release branch + tags
- Create a PR to merge the version bump back to main
- Add pull-requests: write permission
 2026-03-09 19:18:07 +00:00
gandalf-the-greybeard[bot] 254bd4fbc3 fix: add tag-exists guard to release workflow 
Fail fast when a release tag already exists instead of running the
full build+package cycle only to fail at git push. Saves CI time on
duplicate workflow_dispatch triggers.
 2026-03-09 06:20:52 +00:00
gandalf-the-greybeard[bot] 991278ebac ci: add npm audit step to shared plugin CI workflow 
Adds a security audit step (npm audit --omit=dev) to catch known
vulnerabilities in production dependencies. Runs after tests so build
failures are reported before audit findings. Uses --omit=dev to focus
on production-facing risk.

This covers all 6 plugin repos that use the shared workflow.
 2026-03-08 19:02:12 +00:00
hugh-hackman[bot] 521d120425 feat: add reusable CI and release workflows for Headlamp plugins 2026-03-08 00:44:51 +00:00