docker/setup-qemu-action
1
0
Fork 0
mirror of https://github.com/docker/setup-qemu-action.git synced 2026-03-31 13:28:18 +01:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: docker:dependabot/npm_and_yarn/brace-expansion-1.1.13
Branches Tags
docker:master docker:dependabot/npm_and_yarn/brace-expansion-1.1.13 docker:dependabot/npm_and_yarn/handlebars-4.7.9 docker:dependabot/npm_and_yarn/picomatch-4.0.4 docker:dependabot/npm_and_yarn/flatted-3.4.2 docker:dependabot/npm_and_yarn/fast-xml-parser-5.5.7 docker:dependabot/npm_and_yarn/glob-10.5.0 docker:dependabot/npm_and_yarn/npm_and_yarn-2c62bb62f5 docker:dependabot/npm_and_yarn/undici-6.24.0 docker:dependabot/npm_and_yarn/docker/actions-toolkit-0.81.0 docker:releases/v3 docker:releases/v2 docker:releases/v1
docker:v4 docker:v4.0.0 docker:v3.7.0 docker:v3 docker:v3.6.0 docker:v3.5.0 docker:v3.4.0 docker:v3.3.0 docker:v3.2.0 docker:v3.1.0 docker:v3.0.0 docker:v2.2.0 docker:v2 docker:v2.1.0 docker:v2.0.0 docker:v1.2.0 docker:v1 docker:v1.1.0 docker:v1.0.2 docker:v1.0.1 docker:v1.0.0
..
compare: docker:master
Branches Tags
docker:master docker:dependabot/npm_and_yarn/brace-expansion-1.1.13 docker:dependabot/npm_and_yarn/handlebars-4.7.9 docker:dependabot/npm_and_yarn/picomatch-4.0.4 docker:dependabot/npm_and_yarn/flatted-3.4.2 docker:dependabot/npm_and_yarn/fast-xml-parser-5.5.7 docker:dependabot/npm_and_yarn/glob-10.5.0 docker:dependabot/npm_and_yarn/npm_and_yarn-2c62bb62f5 docker:dependabot/npm_and_yarn/undici-6.24.0 docker:dependabot/npm_and_yarn/docker/actions-toolkit-0.81.0 docker:releases/v3 docker:releases/v2 docker:releases/v1
docker:v4 docker:v4.0.0 docker:v3.7.0 docker:v3 docker:v3.6.0 docker:v3.5.0 docker:v3.4.0 docker:v3.3.0 docker:v3.2.0 docker:v3.1.0 docker:v3.0.0 docker:v2.2.0 docker:v2 docker:v2.1.0 docker:v2.0.0 docker:v1.2.0 docker:v1 docker:v1.1.0 docker:v1.0.2 docker:v1.0.1 docker:v1.0.0

5 Commits
dependabot ... master

Author SHA1 Message Date
CrazyMax
6412e4f975 Merge pull request #268 from docker/dependabot/github_actions/codecov/codecov-action-6.0.0 
build(deps): bump codecov/codecov-action from 5.5.4 to 6.0.0
 2026-03-31 09:27:41 +02:00
dependabot[bot]
3329a8ce3d build(deps): bump codecov/codecov-action from 5.5.4 to 6.0.0 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 5.5.4 to 6.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](75cd11691c...57e3a136b7)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-31 01:51:28 +00:00
Tõnis Tiigi
cf45d1535a Merge pull request #267 from crazy-max/zizmor 
ci: zizmor workflow
 2026-03-30 18:50:33 -07:00
CrazyMax
7b4ca36676 fix zizmor findings 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-03-30 14:25:09 +02:00
CrazyMax
9d536b88bb ci: zizmor workflow 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-03-30 14:24:46 +02:00
13 changed files with 98 additions and 34 deletions
Expand all files Collapse all files

8
.github/dependabot.yml vendored
View File

@@ -4,6 +4,12 @@ updates:
directory: "/"
schedule:
interval: "daily"
cooldown:
default-days: 2
groups:
crazy-max-dot-github:
patterns:
- "crazy-max/.github/*"
labels:
- "dependencies"
- "bot"
@@ -11,6 +17,8 @@ updates:
directory: "/"
schedule:
interval: "daily"
cooldown:
default-days: 2
versioning-strategy: "increase"
allow:
- dependency-type: "production"

13
.github/workflows/ci.yml vendored
View File

@@ -1,5 +1,8 @@
name: ci
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
@@ -22,7 +25,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up QEMU
id: qemu
@@ -45,7 +48,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up QEMU
id: qemu
@@ -62,7 +65,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Stop docker
run: |
@@ -92,7 +95,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up QEMU
id: qemu
@@ -116,7 +119,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up QEMU
uses: ./

19
.github/workflows/codeql.yml vendored
View File

@@ -1,5 +1,8 @@
name: codeql
permissions:
contents: read
on:
push:
branches:
@@ -7,21 +10,19 @@ on:
- 'releases/v*'
pull_request:
permissions:
actions: read
contents: read
security-events: write
env:
NODE_VERSION: "24"
jobs:
analyze:
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Enable corepack
run: |
@@ -29,17 +30,17 @@ jobs:
yarn --version
-
name: Set up Node
uses: actions/setup-node@v6
uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: ${{ env.NODE_VERSION }}
-
name: Initialize CodeQL
uses: github/codeql-action/init@v4
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
with:
languages: javascript-typescript
build-mode: none
-
name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v4
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
with:
category: "/language:javascript-typescript"

4
.github/workflows/pr-assign-author.yml vendored
View File

@@ -4,14 +4,14 @@ permissions:
contents: read
on:
pull_request_target:
pull_request_target: # zizmor: ignore[dangerous-triggers] safe to use without checkout
types:
- opened
- reopened
jobs:
run:
uses: crazy-max/.github/.github/workflows/pr-assign-author.yml@20ef82212dc54bab5749f5e05576ca6d3c8a5773 # v1.1.0
uses: crazy-max/.github/.github/workflows/pr-assign-author.yml@bb328ea508cd6a89d0865555ddbeb148e5724aed # v1.3.0
permissions:
contents: read
pull-requests: write

11
.github/workflows/publish.yml vendored
View File

@@ -1,5 +1,12 @@
name: publish
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
release:
types:
@@ -15,7 +22,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Publish
uses: actions/publish-immutable-action@v0.0.4
uses: actions/publish-immutable-action@4bc8754ffc40f27910afb20287dbbbb675a4e978 # v0.0.4

9
.github/workflows/test.yml vendored
View File

@@ -1,5 +1,8 @@
name: test
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
@@ -17,16 +20,16 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Test
uses: docker/bake-action@v7
uses: docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
with:
source: .
targets: test
-
name: Upload coverage
uses: codecov/codecov-action@v5
uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2 # v6.0.0
with:
files: ./coverage/clover.xml
token: ${{ secrets.CODECOV_TOKEN }}

17
.github/workflows/update-dist.yml vendored
View File

@@ -1,5 +1,12 @@
name: update-dist
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
pull_request:
types:
@@ -8,27 +15,27 @@ on:
jobs:
update-dist:
if: github.actor == 'dependabot[bot]'
if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == github.event.pull_request.head.repo.full_name
runs-on: ubuntu-latest
steps:
-
name: GitHub auth token from GitHub App
id: docker-read-app
uses: actions/create-github-app-token@v3
uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0
with:
app-id: ${{ secrets.GHACTIONS_REPO_WRITE_APP_ID }}
private-key: ${{ secrets.GHACTIONS_REPO_WRITE_APP_PRIVATE_KEY }}
owner: docker
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
ref: ${{ github.event.pull_request.head.ref }}
fetch-depth: 0
token: ${{ steps.docker-read-app.outputs.token || github.token }}
token: ${{ steps.docker-read-app.outputs.token }}
-
name: Build
uses: docker/bake-action@v7
uses: docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
with:
source: .
targets: build

9
.github/workflows/validate.yml vendored
View File

@@ -1,5 +1,8 @@
name: validate
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
@@ -19,11 +22,11 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@v6
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Generate matrix
id: generate
uses: docker/bake-action/subaction/matrix@v7
uses: docker/bake-action/subaction/matrix@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
with:
target: validate
@@ -38,6 +41,6 @@ jobs:
steps:
-
name: Validate
uses: docker/bake-action@v7
uses: docker/bake-action@82490499d2e5613fcead7e128237ef0b0ea210f7 # v7.0.0
with:
targets: ${{ matrix.target }}

29
.github/workflows/zizmor.yml vendored Normal file
View File

@@ -0,0 +1,29 @@
name: zizmor
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
workflow_dispatch:
push:
branches:
- 'master'
- 'releases/v*'
tags:
- 'v*'
pull_request:
jobs:
zizmor:
uses: crazy-max/.github/.github/workflows/zizmor.yml@bb328ea508cd6a89d0865555ddbeb148e5724aed # v1.3.0
permissions:
contents: read
security-events: write
with:
min-severity: medium
min-confidence: medium
persona: pedantic

3
.github/zizmor.yml vendored Normal file
View File

@@ -0,0 +1,3 @@
rules:
secrets-outside-env: # FIXME: remove this rule when zizmor 1.24.0 is released, fixing the right persona attached to this rule: https://github.com/zizmorcore/zizmor/pull/1783
disable: true

2
dist/index.js generated vendored
View File

File diff suppressed because one or more lines are too long

2
dist/index.js.map generated vendored
View File

File diff suppressed because one or more lines are too long

6
yarn.lock
View File

@@ -1829,12 +1829,12 @@ __metadata:
linkType: hard
"brace-expansion@npm:^1.1.7":
version: 1.1.13
resolution: "brace-expansion@npm:1.1.13"
version: 1.1.12
resolution: "brace-expansion@npm:1.1.12"
dependencies:
balanced-match: "npm:^1.0.0"
concat-map: "npm:0.0.1"
checksum: 10/b5f4329fdbe9d2e25fa250c8f866ebd054ba946179426e99b86dcccddabdb1d481f0e40ee5430032e62a7d0a6c2837605ace6783d015aa1d65d85ca72154d936
checksum: 10/12cb6d6310629e3048cadb003e1aca4d8c9bb5c67c3c321bafdd7e7a50155de081f78ea3e0ed92ecc75a9015e784f301efc8132383132f4f7904ad1ac529c562
languageName: node
linkType: hard