Thomas Eizinger
5fff000623
ci: add sentry dependabot group ( #10658 )
2025-10-21 05:18:53 +00:00
Mariusz Klochowicz
c692efa2de
fix(dependabot): remove anchors from dependabot config ( #10422 )
...
fix(dependabot): Remove anchors from dependabot config
YAML anchors are not supported here.
Also:
- remove explicit major,minor and patch version cooldown periods
- actually set it to 28 days (like previous PR claimed)
Fixes #10378
2025-09-23 05:56:38 +00:00
Mariusz Klochowicz
852a7a9484
chore(dependabot): Add 28-day cooldown for supply-chain security ( #10365 )
...
Configure Dependabot with a 28-day cooldown period across all package
ecosystems to protect against supply-chain attacks. This ensures newly
released packages undergo community vetting before adoption.
Key changes:
- Add 7-day cooldown for all dependency types (major, minor, patch)
- Switch from monthly to weekly checks to ensure timely updates after
cooldown expires
- Use YAML anchors to maintain DRY configuration (we can unfold them if
we need custom config)
Security rationale:
- Most supply-chain attacks are discovered within a few days of release
- Patch versions are particularly vulnerable as they're often
auto-merged with less scrutiny
- Weekly checks + 28-day cooldown = roughly matching previous elixir
dependency update cadence
Note: Security updates bypass the cooldown and are applied immediately,
ensuring critical CVEs are patched without delay
2025-09-17 00:35:54 +00:00
Jamil
a8f93d24a3
chore(infra): ditch gcp registry for ghcr.io ( #9913 )
...
Google Cloud Artifact registry and Cloud storage is a significant cost.
GitHub, on the other hand, is completely free due to our being a public
repository. Hence, it makes sense to ditch GCP for GHCR.
To do this, we move all "staging" artifacts to GHCR. These will then be
used in the infra repo to push to GCP for deploys - we probably still
want pulls for our infra to hit GCP and not GitHub.
One big element of this is that we potentially lose sccache, so I'll be
checking the compile time of this PR and looking for alternatives that
don't involve such a massive cloud bill.
2025-07-19 07:00:30 -07:00
Jamil
a3c95f4d08
fix(deps): tell dependabot about composite actions ( #9455 )
...
Dependabot doesn't look in composite dirs for workflows to bump deps on,
so here we try to tell it explicitly.
It's important we either fix this or move the affected steps back to
somewhere that can be managed by dependabot in order to remain compliant
with SOC2 controls.
2025-06-06 14:41:54 +00:00
Thomas Eizinger
5869b9584e
ci: add dependency groups for GUI client NPM dependencies ( #9442 )
2025-06-06 11:52:30 +00:00
Jamil
1e94afdb98
chore: move terraform/ to private repo ( #9421 )
...
Since we'll be adding ops playbooks and other things here, it makes
sense to separate infra from product source.
---------
Signed-off-by: Jamil <jamilbk@users.noreply.github.com >
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-06-05 19:24:06 +00:00
Thomas Eizinger
7c87adc1cc
ci: add rand group for dependabot ( #9245 )
...
The crates of the `rand` ecosystem need to be bumped together.
2025-05-27 03:12:32 +00:00
Thomas Eizinger
375c309fc6
ci: increase max number of Rust dependabot PRs ( #9244 )
...
We have a lot of Rust dependencies and the default limit of 5 just
spoon-feeds us the updates.
2025-05-27 01:38:25 +00:00
Jamil
f2ee63e056
fix(deps): Dependabot looks for Package.swift ( #8997 )
...
<img width="907" alt="Screenshot 2025-05-01 at 9 29 47 AM"
src="https://github.com/user-attachments/assets/061b757c-1268-42e9-b95b-4e6fa1e8d19f "
/>
2025-05-02 00:18:52 +00:00
Jamil
5ed76d5b66
fix(deps): update github-actions in .github/actions ( #9000 )
...
Dependabot only updates dependencies in .github/workflows. This is an
attempt to tell it to also update in .github/actions too.
2025-05-01 21:50:15 +00:00
Jamil
593a288f64
fix(ci): Fix github actions dependabot ( #8985 )
...
Our GitHub actions packages are not being updated. This may be a reason
why.
Edit: Looks like it's not applying to our composite actions in
.github/actions. Will see if this fixes it.
2025-05-01 16:04:02 +00:00
Thomas Eizinger
c3dcb3630e
ci: add tailwind dependabot group for Client frontend ( #8850 )
2025-04-19 12:46:41 +00:00
Thomas Eizinger
ab8b1f8f1e
ci: add aya dependabot group ( #8819 )
2025-04-19 10:34:41 +00:00
Thomas Eizinger
c3c09255b7
ci(dependabot): simplify the "tauri" group ( #8696 )
2025-04-08 19:59:32 +00:00
Jamil
6def7b8203
build(deps): Use Package.resolved dir for dependabot ( #7910 )
...
We don't use the `Package.swift` in `FirezoneKit` because it only
applies to that module. Instead, we use Xcode's package management which
tracks things in
`swift/apple/Firezone.xcodeproj/project.xcworkspace/xcshareddata/swiftpm/Package.resolved`.
2025-01-29 00:12:01 +00:00
Jamil
af249c0286
ci: add @tauri-apps/* to dependabot group ( #7658 )
...
These packages need to be grouped together for the NPM ecosystem.
2025-01-03 16:32:06 +00:00
Jamil
dc55d063d4
build(deps): Group tauri dependabot updates ( #7648 )
...
Groups tauri updates related to the core packages together.
2025-01-03 12:59:43 +00:00
Jamil
2bccfb9345
ci: Remove obsolete dependabot config for browser tests ( #7637 )
2025-01-01 19:43:36 +00:00
Jamil
f5717f336f
ci: group all android navigation libs ( #7440 )
...
Fixes some dependabot groups that weren't grouped.
Co-authored-by: Thomas Eizinger <thomas@eizinger.io >
2024-12-02 01:57:51 +00:00
Reactor Scram
786fbc6689
chore(gui-client): delete GTK+ and Iced prototypes ( #7035 )
...
We don't need these since Tauri v2 looks like it's about to succeed, and
keeping packages outside of the workspace has been breaking dependabot
PRs
2024-10-15 15:29:11 +00:00
Reactor Scram
61fbfdcbe0
chore(automation): tell dependabot about rust/gtk-client ( #6969 )
...
Closes #6968
2024-10-08 20:13:28 +00:00
Thomas Eizinger
05e1f1e3d9
ci: add opentelemetry_sdk to dependabot group ( #5982 )
...
These need to be bumped in a group.
2024-07-23 23:53:58 +00:00
dependabot[bot]
9a01745a1d
build(deps): Bump the windows group in /rust with 2 updates ( #5288 )
...
Bumps the windows group in /rust with 2 updates:
[windows](https://github.com/microsoft/windows-rs ) and
[windows-implement](https://github.com/microsoft/windows-rs ).
Updates `windows` from 0.56.0 to 0.57.0
<details>
<summary>Commits</summary>
<ul>
<li><a
href="15947886behttps://redirect.github.com/microsoft/windows-rs/issues/3081 ">#3081</a>)</li>
<li><a
href="21d17ab998https://redirect.github.com/microsoft/windows-rs/issues/3070 ">#3070</a>)</li>
<li><a
href="7d94387a7chttps://redirect.github.com/microsoft/windows-rs/issues/3073 ">#3073</a>)</li>
<li><a
href="4572dcd6aehttps://redirect.github.com/microsoft/windows-rs/issues/3078 ">#3078</a>)</li>
<li><a
href="a623c3f27fhttps://redirect.github.com/microsoft/windows-rs/issues/3074 ">#3074</a>)</li>
<li><a
href="0940e1f635https://redirect.github.com/microsoft/windows-rs/issues/3057 ">#3057</a>)</li>
<li><a
href="8b4a185e56https://redirect.github.com/microsoft/windows-rs/issues/3064 ">#3064</a>)</li>
<li><a
href="b8586add80https://redirect.github.com/microsoft/windows-rs/issues/3066 ">#3066</a>)</li>
<li><a
href="dbc3932513https://redirect.github.com/microsoft/windows-rs/issues/3060 ">#3060</a>)</li>
<li><a
href="71f8c2a4d9https://redirect.github.com/microsoft/windows-rs/issues/3059 ">#3059</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/microsoft/windows-rs/compare/0.56.0...0.57.0 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `windows-implement` from 0.56.0 to 0.57.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/microsoft/windows-rs/releases ">windows-implement's
releases</a>.</em></p>
<blockquote>
<h2>0.57.0</h2>
<p>This release includes updates to a number of crates.</p>
<p>It includes major updates to the following:</p>
<ul>
<li><code>riddle</code> 0.57.0</li>
<li><code>windows</code> 0.57.0</li>
<li><code>windows-bindgen</code> 0.57.0</li>
<li><code>windows-core</code> 0.57.0</li>
<li><code>windows-implement</code> 0.57.0</li>
<li><code>windows-interface</code> 0.57.0</li>
<li><code>windows-metadata</code> 0.57.0</li>
</ul>
<p>It also includes minor updates to the following:</p>
<ul>
<li><code>windows-result</code> 0.1.2</li>
<li><code>windows-registry</code> 0.1.2</li>
</ul>
<p>This includes various improvements and fixes to code generation,
compliance with new Rust warnings, COM authoring support helpers, and
more.</p>
<p>This release also includes the first published version of the
<code>cppwinrt</code> crate.</p>
<h2>What's Changed</h2>
<ul>
<li>Workflow improvements by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/2994 ">microsoft/windows-rs#2994</a></li>
<li>Workflow improvements 2 by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/2998 ">microsoft/windows-rs#2998</a></li>
<li>Workflow improvements 3 by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3000 ">microsoft/windows-rs#3000</a></li>
<li>Workflow improvements 4 by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3001 ">microsoft/windows-rs#3001</a></li>
<li>Add <code>as_raw</code> to <code>windows-registry</code> by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3003 ">microsoft/windows-rs#3003</a></li>
<li>Add Linux smoke test by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3005 ">microsoft/windows-rs#3005</a></li>
<li>Add non-windows support for PWSTR and PCWSTR by <a
href="https://github.com/tyilo "><code>@tyilo</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3004 ">microsoft/windows-rs#3004</a></li>
<li>Use generated <code>E_POINTER</code> constant in
<code>windows-core</code> by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3008 ">microsoft/windows-rs#3008</a></li>
<li>Use prebuilt gnullvm target by <a
href="https://github.com/mati865 "><code>@mati865</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3007 ">microsoft/windows-rs#3007</a></li>
<li>Eliminate default features for JSON samples by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3012 ">microsoft/windows-rs#3012</a></li>
<li>Add support for freeing handles automatically by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3013 ">microsoft/windows-rs#3013</a></li>
<li>Addressing feedback on handle ownership by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3014 ">microsoft/windows-rs#3014</a></li>
<li>Bump ejs from 3.1.9 to 3.1.10 in /web/features by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3017 ">microsoft/windows-rs#3017</a></li>
<li>Reconfigure environment for GNU toolchain by <a
href="https://github.com/riverar "><code>@riverar</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3019 ">microsoft/windows-rs#3019</a></li>
<li>Remove workaround for empty structs by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3016 ">microsoft/windows-rs#3016</a></li>
<li>Derive <code>Copy</code>, <code>Clone</code>, and <code>Debug</code>
for handles by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3015 ">microsoft/windows-rs#3015</a></li>
<li>Fix for Clippy <code>HSTRING</code> interior mutability warnings in
nightly by <a
href="https://github.com/riverar "><code>@riverar</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3021 ">microsoft/windows-rs#3021</a></li>
<li>Handle new <code>unexpected_cfgs</code> warnings by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3022 ">microsoft/windows-rs#3022</a></li>
<li>Update jsonschema requirement from 0.17 to 0.18 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3023 ">microsoft/windows-rs#3023</a></li>
<li>Add <code>Ref</code> and <code>OutRef</code> to enhance COM
authoring support by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3025 ">microsoft/windows-rs#3025</a></li>
<li>Simplify derefencing <code>Ref</code> interface parameters by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3027 ">microsoft/windows-rs#3027</a></li>
<li>Add <code>from_raw</code> to <code>windows-registry</code> by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3034 ">microsoft/windows-rs#3034</a></li>
<li>Simplify <code>windows-registry</code> readme by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3035 ">microsoft/windows-rs#3035</a></li>
<li>Type name deferral in <code>windows-metadata</code> and
<code>windows-bindgen</code> by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3039 ">microsoft/windows-rs#3039</a></li>
<li>Streamline <code>TypeName</code> to support pattern matching by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3040 ">microsoft/windows-rs#3040</a></li>
<li>Derive standard traits for structs by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3041 ">microsoft/windows-rs#3041</a></li>
<li>Add missing MSRV workflows for newer lib crates by <a
href="https://github.com/kennykerr "><code>@kennykerr</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3042 ">microsoft/windows-rs#3042</a></li>
<li>Provide an explicit <code>ComObject<T></code> type that
represents a heap-allocated COM object by <a
href="https://github.com/sivadeilra "><code>@sivadeilra</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3043 ">microsoft/windows-rs#3043</a></li>
<li>bindgen/default: Improve formatting of the readme by <a
href="https://github.com/MarijnS95 "><code>@MarijnS95</code></a> in <a
href="https://redirect.github.com/microsoft/windows-rs/pull/3045 ">microsoft/windows-rs#3045</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="15947886behttps://redirect.github.com/microsoft/windows-rs/issues/3081 ">#3081</a>)</li>
<li><a
href="21d17ab998https://redirect.github.com/microsoft/windows-rs/issues/3070 ">#3070</a>)</li>
<li><a
href="7d94387a7chttps://redirect.github.com/microsoft/windows-rs/issues/3073 ">#3073</a>)</li>
<li><a
href="4572dcd6aehttps://redirect.github.com/microsoft/windows-rs/issues/3078 ">#3078</a>)</li>
<li><a
href="a623c3f27fhttps://redirect.github.com/microsoft/windows-rs/issues/3074 ">#3074</a>)</li>
<li><a
href="0940e1f635https://redirect.github.com/microsoft/windows-rs/issues/3057 ">#3057</a>)</li>
<li><a
href="8b4a185e56https://redirect.github.com/microsoft/windows-rs/issues/3064 ">#3064</a>)</li>
<li><a
href="b8586add80https://redirect.github.com/microsoft/windows-rs/issues/3066 ">#3066</a>)</li>
<li><a
href="dbc3932513https://redirect.github.com/microsoft/windows-rs/issues/3060 ">#3060</a>)</li>
<li><a
href="71f8c2a4d9https://redirect.github.com/microsoft/windows-rs/issues/3059 ">#3059</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/microsoft/windows-rs/compare/0.56.0...0.57.0 ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
</details>
---------
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Reactor Scram <ReactorScram@users.noreply.github.com >
2024-06-11 18:01:35 +00:00
Jamil
d159ea373a
chore(deps): bump browser tests ( #4865 )
...
Dependabot browser tests
2024-05-01 07:05:25 -07:00
Jamil
1adde7f764
chore(deps): Add hilt-testing to dependabot group ( #4861 )
2024-05-01 06:44:20 -07:00
Jamil
bf7e492ac0
chore(deps): Don't create duplicate dependabot groups ( #4443 )
...
It looks like Dependabot's path search is recursive, so it was pulling
in dependencies for both the project-wide and app-wide folders.
2024-04-01 08:50:35 -07:00
Jamil
a689a9a2a7
chore(deps): Link Package.resolved to where dependabot should find it ( #4074 )
...
Dependabot isn't bumping our Swift packages. This is an attempt to
resolve that by linking the "lockfile" into the directory where the
associated Package.swift lives.
Unfortunately Dependabot's docs [aren't
great](https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#swift )
on the subject.
2024-03-11 16:08:21 +00:00
Jamil
bd7aa814d9
chore(ci): Fix dependabot paths and CI warnings ( #3982 )
...
<img width="1090" alt="Screenshot 2024-03-05 at 3 48 57 PM"
src="https://github.com/firezone/firezone/assets/167144/c7d9f0c5-f0e9-479a-917c-6225da10188c ">
<img width="846" alt="Screenshot 2024-03-05 at 3 49 21 PM"
src="https://github.com/firezone/firezone/assets/167144/f4d5765f-47e0-4c7e-b399-cde1f415764d ">
2024-03-06 18:44:32 +00:00
Reactor Scram
379f577291
chore(windows client): update windows and windows-implement deps ( #3919 )
...
Closes #3879 and #3902
I re-created Cargo.lock, so it incidentally updated a bunch of other
stuff. I can revert that file if it's a problem.
Had to search a bit for the breaking changes. Found here that they
renamed `ComInterface`:
https://github.com/microsoft/windows-rs/issues/2875#issuecomment-1962332067
---------
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-05 15:38:19 +00:00
Jamil
8efd70ebea
chore(ci): Fix hilt groups typo ( #3966 )
2024-03-05 07:15:32 -08:00
Thomas Eizinger
d023dd8417
chore(dependabot): remove non-existent package configuration ( #3936 )
...
See https://github.com/firezone/firezone/network/updates/18053834/jobs .
2024-03-05 06:28:58 +00:00
Jamil
fe35fabca4
fix(ci): Fix Android dependabot groups ( #3869 )
...
Fix typo preventing dependabot from figuring things out
2024-03-01 18:22:09 +00:00
Jamil
48e94a4a38
chore(ci): Update dependabot android groups ( #3501 )
2024-02-01 07:12:44 -08:00
Jamil
086f7a85c6
refactor(windows): Windows UI polish ( #3338 )
...
- Add Tailwind and Flowbite for consistent UI
---------
Signed-off-by: Reactor Scram <ReactorScram@users.noreply.github.com >
Co-authored-by: Reactor Scram <ReactorScram@users.noreply.github.com >
2024-01-23 17:07:25 +00:00
Jamil
a63801718f
chore(deps): Bump terraform google dependencies as a group ( #3202 )
2024-01-13 00:48:49 +00:00
Jamil
ff992ab8e5
chore(deps): Bump com.android libs and set dependabot group ( #3199 )
...
Just more dependabot tuning
2024-01-12 21:06:57 +00:00
Jamil
f22bd6e889
chore(deps): Group netlink dependabot updates ( #3169 )
...
This won't fix the issue in #2863 but will at least give Dependabot a
better chance at bumping them successfully.
2024-01-11 21:14:08 +00:00
Jamil
b7197d04c3
chore(deps): Bump hilt and fix groups ( #3081 )
...
Fixes #2429
2024-01-02 17:37:02 +00:00
Andrew Dryga
66302a5063
Production environment ( #2449 )
2023-10-19 19:20:51 -06:00
Jamil
218e1169d3
Change dependabot updates to monthly ( #2423 )
...
* `daily` is way too noisy
* we run the risk of tracking dependency updates too closely: a bad
update would cause issues. `monthly` increases the odds the community
will find any problems with said dependency and time for the maintainer
to fix it
* this doesn't affect security alerts (the main reason I had picked
`daily` to begin with) -- those are configured separately in repo
settings
---------
Signed-off-by: Jamil <jamilbk@users.noreply.github.com >
Co-authored-by: Thomas Eizinger <thomas@eizinger.io >
2023-10-18 19:40:20 +00:00
Jamil
8f75045a25
block kotlin upgrades ( #2425 )
2023-10-18 07:50:35 -07:00
Jamil
102d37d1e4
Fix/dependency ignore kotlin ( #2421 )
2023-10-18 06:06:45 -07:00
Jamil
febe6801cf
Fix/kotlin hilt compiler artifact issue ( #2416 )
2023-10-18 06:02:02 -07:00
Jamil
8441cf5c8d
Use Package.swift dir ( #2400 )
2023-10-17 19:01:47 -07:00
Jamil
6153e580f3
Specify gradle dependency versions in ONLY one place ( #2399 )
2023-10-17 17:52:50 -07:00
Jamil
06608eca1b
Add terraform dependabot ( #2392 )
...
Refs #2360
2023-10-17 16:46:12 -07:00
Jamil
40616abf84
Update dependabot package-ecosystems; set schedule to daily ( #2360 )
...
- Update dependabot dependency check to `daily`; it's our only supply
chain scanner at the moment
- Configure dependabot to alert on security issues
- Fix some directory path configurations
- Remove ruby
- Add Swift
- Use `gradle`, not `maven` ecosystem
- Add @firezone/engineering to code scanning / security alerting
management
- Remove Ruby and add Java/Kotlin and Swift to CodeQL
<img width="801" alt="Screenshot 2023-10-16 at 5 02 48 PM"
src="https://github.com/firezone/firezone/assets/167144/c2b11580-f819-4b9c-b28e-c20d9f24c93e ">
Fixes #1687
2023-10-17 16:33:44 -07:00
Thomas Eizinger
ad4184fe58
deps(rust): instruct dependabot to group all opentelemetry dependencies ( #2100 )
...
In case of new semver-minor releases, these dependencies need to be
bumped together, otherwise things don't compile
2023-09-21 06:35:25 +00:00
Jamil
d35208bf17
Stub out client app directories in monorepo structure ( #1716 )
...
Stubs out the client app dirs and basic CI workflow for the client apps
in preparation to move them into this repository.
After this is merged @roop @pratikvelani you should be able to add the
client repos here.
2023-06-29 20:16:29 +00:00
