From 7d9e050c01af81cedc3e4f0c50eb16fb8e0b9e69 Mon Sep 17 00:00:00 2001 From: "alma-renovate-bot[bot]" <163289924+alma-renovate-bot[bot]@users.noreply.github.com> Date: Mon, 20 May 2024 10:10:50 +0000 Subject: [PATCH 1/7] chore(deps): update dependency ubuntu to v22 --- .github/workflows/php.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/php.yml b/.github/workflows/php.yml index ca6e9457..2a5a31dc 100644 --- a/.github/workflows/php.yml +++ b/.github/workflows/php.yml @@ -9,7 +9,7 @@ on: jobs: ci: - runs-on: ubuntu-20.04 + runs-on: ubuntu-22.04 defaults: run: working-directory: ./ From 1994b2b3604f6e77aa6781617b3516a002971814 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Guillaume=20Desv=C3=A9?= Date: Wed, 22 May 2024 16:57:58 +0200 Subject: [PATCH 2/7] Add missing Renovate base branch configuration --- .github/renovate.json | 37 +++++++++++++++++++------------------ 1 file changed, 19 insertions(+), 18 deletions(-) diff --git a/.github/renovate.json b/.github/renovate.json index 98b7278a..6e8cf2b0 100644 --- a/.github/renovate.json +++ b/.github/renovate.json @@ -1,20 +1,21 @@ { - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "prHourlyLimit": 20, - "prConcurrentLimit": 20, - "recreateWhen": "always", - "enabledManagers": ["github-actions", "pre-commit", "composer"], - "extends": [ - "github>alma/renovate:github-actions", - "github>alma/renovate:confidence-badges", - "github>alma/renovate:pre-commit" - ], - "dependencyDashboard": true, - "reviewers": ["team:squad-pre-purchase"], - "packageRules": [ - { - "matchManagers": ["composer"], - "groupName": "composer updates" - } - ] + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "prHourlyLimit": 20, + "prConcurrentLimit": 20, + "recreateWhen": "always", + "enabledManagers": ["github-actions", "pre-commit", "composer"], + "extends": [ + "github>alma/renovate:github-actions", + "github>alma/renovate:confidence-badges", + "github>alma/renovate:pre-commit" + ], + "dependencyDashboard": true, + "reviewers": ["team:squad-pre-purchase"], + "baseBranches": ["develop"], + "packageRules": [ + { + "matchManagers": ["composer"], + "groupName": "composer updates" + } + ] } From c045d8c49cc026b6f42e1113f20622e329bc4be3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Guillaume=20Desv=C3=A9?= Date: Wed, 22 May 2024 16:59:06 +0200 Subject: [PATCH 3/7] Fix tabulations in renovate.json --- .github/renovate.json | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-) diff --git a/.github/renovate.json b/.github/renovate.json index 6e8cf2b0..bf7c7aad 100644 --- a/.github/renovate.json +++ b/.github/renovate.json @@ -1,21 +1,21 @@ { - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "prHourlyLimit": 20, - "prConcurrentLimit": 20, - "recreateWhen": "always", - "enabledManagers": ["github-actions", "pre-commit", "composer"], - "extends": [ - "github>alma/renovate:github-actions", - "github>alma/renovate:confidence-badges", - "github>alma/renovate:pre-commit" - ], - "dependencyDashboard": true, - "reviewers": ["team:squad-pre-purchase"], - "baseBranches": ["develop"], - "packageRules": [ - { - "matchManagers": ["composer"], - "groupName": "composer updates" - } - ] + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "prHourlyLimit": 20, + "prConcurrentLimit": 20, + "recreateWhen": "always", + "enabledManagers": ["github-actions", "pre-commit", "composer"], + "extends": [ + "github>alma/renovate:github-actions", + "github>alma/renovate:confidence-badges", + "github>alma/renovate:pre-commit" + ], + "dependencyDashboard": true, + "reviewers": ["team:squad-pre-purchase"], + "baseBranches": ["develop"], + "packageRules": [ + { + "matchManagers": ["composer"], + "groupName": "composer updates" + } + ] } From ab6ea16e2260212dfcdceee5d7b676a660b80a91 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Guillaume=20Desv=C3=A9?= Date: Wed, 22 May 2024 17:05:47 +0200 Subject: [PATCH 4/7] Fix squad in Renovate reviewers --- .github/renovate.json | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-) diff --git a/.github/renovate.json b/.github/renovate.json index bf7c7aad..148819b2 100644 --- a/.github/renovate.json +++ b/.github/renovate.json @@ -1,21 +1,21 @@ { - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "prHourlyLimit": 20, - "prConcurrentLimit": 20, - "recreateWhen": "always", - "enabledManagers": ["github-actions", "pre-commit", "composer"], - "extends": [ - "github>alma/renovate:github-actions", - "github>alma/renovate:confidence-badges", - "github>alma/renovate:pre-commit" - ], - "dependencyDashboard": true, - "reviewers": ["team:squad-pre-purchase"], - "baseBranches": ["develop"], - "packageRules": [ - { - "matchManagers": ["composer"], - "groupName": "composer updates" - } - ] + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "prHourlyLimit": 20, + "prConcurrentLimit": 20, + "recreateWhen": "always", + "enabledManagers": ["github-actions", "pre-commit", "composer"], + "extends": [ + "github>alma/renovate:github-actions", + "github>alma/renovate:confidence-badges", + "github>alma/renovate:pre-commit" + ], + "dependencyDashboard": true, + "reviewers": ["team:squad-e-commerce-integrations"], + "baseBranches": ["develop"], + "packageRules": [ + { + "matchManagers": ["composer"], + "groupName": "composer updates" + } + ] } From 97ff2c72a11a827091552e261d8cee895962d674 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Guillaume=20Desv=C3=A9?= Date: Wed, 22 May 2024 17:07:18 +0200 Subject: [PATCH 5/7] Syntax changes --- .github/renovate.json | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-) diff --git a/.github/renovate.json b/.github/renovate.json index 148819b2..6f253dea 100644 --- a/.github/renovate.json +++ b/.github/renovate.json @@ -1,21 +1,21 @@ { - "$schema": "https://docs.renovatebot.com/renovate-schema.json", - "prHourlyLimit": 20, - "prConcurrentLimit": 20, - "recreateWhen": "always", - "enabledManagers": ["github-actions", "pre-commit", "composer"], - "extends": [ - "github>alma/renovate:github-actions", - "github>alma/renovate:confidence-badges", - "github>alma/renovate:pre-commit" - ], - "dependencyDashboard": true, - "reviewers": ["team:squad-e-commerce-integrations"], - "baseBranches": ["develop"], - "packageRules": [ - { - "matchManagers": ["composer"], - "groupName": "composer updates" - } - ] + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "prHourlyLimit": 20, + "prConcurrentLimit": 20, + "recreateWhen": "always", + "enabledManagers": ["github-actions", "pre-commit", "composer"], + "extends": [ + "github>alma/renovate:github-actions", + "github>alma/renovate:confidence-badges", + "github>alma/renovate:pre-commit" + ], + "dependencyDashboard": true, + "reviewers": ["team:squad-e-commerce-integrations"], + "baseBranches": ["develop"], + "packageRules": [ + { + "matchManagers": ["composer"], + "groupName": "composer updates" + } + ] } From 335c04f7117ae47bb11651448cd084b7e4bcf799 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?R=C3=A9mi=20CHARBONNEL?= <121117838+remic-alma@users.noreply.github.com> Date: Tue, 4 Jun 2024 14:52:34 +0200 Subject: [PATCH 6/7] [Security] Update deprecated Aqua scanner options (#106) Misconguration engine activation option move from `config` to `misconfig`. --- .github/workflows/aqua.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/aqua.yml b/.github/workflows/aqua.yml index 97fbda06..633e7bc4 100644 --- a/.github/workflows/aqua.yml +++ b/.github/workflows/aqua.yml @@ -16,7 +16,7 @@ jobs: - name: Run Aqua scanner uses: docker://aquasec/aqua-scanner with: - args: trivy fs --sast --reachability --scanners config,vuln,secret . + args: trivy fs --sast --reachability --scanners misconfig,vuln,secret . # To customize which severities add the following flag: --severity UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL # To enable SAST scanning, add: --sast # To enable reachability scanning, add: --reachability From acab584c6b1b321c635741c0f276b6b985d3b2fc Mon Sep 17 00:00:00 2001 From: Carine Bonnafous Date: Tue, 11 Jun 2024 17:38:16 +0200 Subject: [PATCH 7/7] Add release draft template --- .github/release-drafter.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 .github/release-drafter.yml diff --git a/.github/release-drafter.yml b/.github/release-drafter.yml new file mode 100644 index 00000000..72c3ce8f --- /dev/null +++ b/.github/release-drafter.yml @@ -0,0 +1,21 @@ +name-template: 'v$RESOLVED_VERSION' +tag-template: 'v$RESOLVED_VERSION' + +template: | + + $CHANGES + +change-template: '- $TITLE' +change-title-escapes: '\<*_&#@`' +version-resolver: + major: + labels: + - 'major' + minor: + labels: + - 'minor' + - 'type: feature' + patch: + labels: + - 'patch' + default: patch