Merge pull request 'chore(deps): pin dependencies' (#5 ) from renovate/pin-dependencies into main

Reviewed-on: #5
chore(deps): pin dependencies
2024-09-04 06:08:01 +00:00 · 2024-09-04 06:03:36 +00:00 · 2024-08-26 14:33:21 +02:00 · 2024-08-26 12:32:43 +00:00 · 2024-08-26 14:32:21 +02:00 · 2024-08-16 19:24:33 +00:00
4 changed files with 54 additions and 6 deletions
--- a/.gitea/workflows/release.yaml
+++ b/.gitea/workflows/release.yaml
@ -0,0 +1,29 @@
+name: Release
+on:
+  push:
+    branches:
+      - main
+
+env:
+  GITEA_TOKEN: ${{ secrets.GITEA_TOKEN }}
+
+permissions:
+  contents: read # for checkout
+
+jobs:
+  release:
+    name: Release
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write # to be able to publish a GitHub release
+      issues: write # to be able to comment on released issues
+      pull-requests: write # to be able to comment on released pull requests
+      id-token: write # to enable use of OIDC for npm provenance
+    steps:
+      - name: Create Release
+        uses: https://git.kjan.de/actions/semantic-release@main
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITEA_TOKEN: ${{ secrets.GITEA_TOKEN }}
+
+
--- a/action.yml
+++ b/action.yml
@ -21,26 +21,26 @@ runs:
  using: "composite"
  steps:
    - name: Checkout
-      uses: https://git.kjan.de/actions/checkout@v4
+      uses: https://git.kjan.de/actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4

    - name: Set up Docker Buildx
-      uses: https://git.kjan.de/actions/setup-buildx-action@v3
+      uses: https://git.kjan.de/actions/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3

    - name: Login to local Docker Registry
-      uses: https://git.kjan.de/actions/login-action@v3
+      uses: https://git.kjan.de/actions/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3
      with:
        registry: git.kjan.de
        username: ${{ inputs.REGISTRY_USERNAME }}
        password: ${{ inputs.REGISTRY_TOKEN }}

    - name: Login to Docker.io Registry
-      uses: https://git.kjan.de/actions/login-action@v3
+      uses: https://git.kjan.de/actions/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3
      with:
        username: ${{ inputs.DOCKER_USERNAME }}
        password: ${{ inputs.DOCKER_PASSWORD }}

    - name: Cache Docker layers
-      uses: actions/cache@v4
+      uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4
      with:
        path: /tmp/.buildx-cache
        key: ${{ runner.os }}-${{ inputs.name }}-${{ github.sha }}
@ -48,7 +48,7 @@ runs:
          ${{ runner.os }}-${{ inputs.name }}-                

    - name: Build and push
-      uses: https://git.kjan.de/actions/build-push-action@v6
+      uses: https://git.kjan.de/actions/build-push-action@5cd11c3a4ced054e52742c5fd54dca954e0edd85 # v6
      with:
        cache-from: type=local,src=/tmp/.buildx-cache
        cache-to: type=local,dest=/tmp/.buildx-cache-new,mode=max
--- a/release.config.cjs
+++ b/release.config.cjs
@ -0,0 +1,13 @@
+module.exports = {
+
+  branches: ['main'],
+  plugins: [
+    '@semantic-release/commit-analyzer',
+    '@semantic-release/release-notes-generator',
+    '@semantic-release/changelog',
+      ["@saithodev/semantic-release-gitea", {
+      "giteaUrl": "https://git.kjan.de"
+    }],
+  ],
+};
+
--- a/renovate.json
+++ b/renovate.json
@ -0,0 +1,6 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
+  "extends": [
+    "local>Renovate/renovate-config"
+  ]
+}
Author	SHA1	Message	Date
Jan Gleytenhoover	dee058ba49	Merge pull request 'chore(deps): pin dependencies' (#5 ) from renovate/pin-dependencies into main All checks were successful Release / Release (push) Successful in 34s Details Reviewed-on: #5	2024-09-04 06:08:01 +00:00
Renovate	349c1a63fc	chore(deps): pin dependencies	2024-09-04 06:03:36 +00:00
Jan Klattenhoff	6acb2e1e31	ci: update release workflow to include main branch trigger All checks were successful Release / Release (push) Successful in 32s Details	2024-08-26 14:33:21 +02:00
Jan Gleytenhoover	5cdf26e742	Merge pull request 'feat(ci): add release workflow and config files' (#3 ) from feature/versioning into main All checks were successful Release / Release (push) Successful in 37s Details Reviewed-on: #3	2024-08-26 12:32:43 +00:00
Jan Klattenhoff	1b82ac932e	feat(ci): add release workflow and config files All checks were successful Release / Release (push) Successful in 38s Details	2024-08-26 14:32:21 +02:00
Renovate	80de6df6aa	Configure Renovate (#1 ) Welcome to [Renovate](https://github.com/renovatebot/renovate)! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin. 🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged. --- ### Detected Package Files * `action.yml` (github-actions) ### Configuration Summary Based on the default config's presets, Renovate will: - Start dependency updates only once this onboarding PR is merged - Enable Renovate Dependency Dashboard creation. - Use semantic commit type `fix` for dependencies and `chore` for all others if semantic commits are in use. - Ignore `node_modules`, `bower_components`, `vendor` and various test/tests directories. - Group known monorepo packages together. - Use curated list of recommended non-monorepo package groupings. - Apply crowd-sourced package replacement rules. - Apply crowd-sourced workarounds for known problems with packages. - Preserve (but continue to upgrade) any existing SemVer ranges. - Enable Renovate Dependency Dashboard creation. - Rebase existing PRs any time the base branch has been updated. - Raise PR when vulnerability alerts are detected with label `'security'`. - Use curated list of recommended non-monorepo package groupings. - Show all Merge Confidence badges for pull requests. 🔡 Do you want to change how Renovate upgrades your dependencies? Add your custom config to `renovate.json` in this branch. Renovate will update the Pull Request description the next time it runs. --- ### What to Expect It looks like your repository dependencies are already up-to-date and no Pull Requests will be necessary right away. --- ❓ Got questions? Check out Renovate's [Docs](https://docs.renovatebot.com/), particularly the Getting Started section. If you need any further assistance then you can also [request help here](https://github.com/renovatebot/renovate/discussions). --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-config-hash:0a0b8841b14278c0c061ba4db2615c8f351f5dda327a6ee5707d6e1ee5980f1c--> Reviewed-on: #1 Co-authored-by: Renovate <renovate@kjan.de> Co-committed-by: Renovate <renovate@kjan.de>	2024-08-16 19:24:33 +00:00