From 526353d00d58cd907452ec136f49a0fbcb27f373 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Dec 2023 09:13:22 +0000 Subject: [PATCH 1/6] Build(deps): Bump actions/setup-node from 4.0.0 to 4.0.1 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v4.0.0...v4.0.1) --- updated-dependencies: - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/pipeline.yaml b/.github/workflows/pipeline.yaml index 0fa368ae..1b3cf30d 100644 --- a/.github/workflows/pipeline.yaml +++ b/.github/workflows/pipeline.yaml @@ -136,7 +136,7 @@ jobs: # Required for running "npx" CLI - name: Setup Node - uses: actions/setup-node@v4.0.0 + uses: actions/setup-node@v4.0.1 with: node-version: ${{ env.NODE_VERSION }} @@ -258,7 +258,7 @@ jobs: # Required for running "npx" CLI - name: Setup Node - uses: actions/setup-node@v4.0.0 + uses: actions/setup-node@v4.0.1 with: node-version: ${{ env.NODE_VERSION }} @@ -315,7 +315,7 @@ jobs: # Required for running "npx" CLI - name: Setup Node - uses: actions/setup-node@v4.0.0 + uses: actions/setup-node@v4.0.1 with: node-version: ${{ env.NODE_VERSION }} @@ -475,7 +475,7 @@ jobs: # Required for running "npx" CLI - name: Setup Node - uses: actions/setup-node@v4.0.0 + uses: actions/setup-node@v4.0.1 with: node-version: ${{ env.NODE_VERSION }} From 7cbf028ea2d1af9979a4c02d05377fba13c9a9c8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Dec 2023 09:13:26 +0000 Subject: [PATCH 2/6] Build(deps): Bump sigstore/cosign-installer from 3.2.0 to 3.3.0 Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.2.0 to 3.3.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.2.0...v3.3.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/pipeline.yaml b/.github/workflows/pipeline.yaml index 0fa368ae..20b43ef3 100644 --- a/.github/workflows/pipeline.yaml +++ b/.github/workflows/pipeline.yaml @@ -141,7 +141,7 @@ jobs: node-version: ${{ env.NODE_VERSION }} - name: Setup Cosign - uses: sigstore/cosign-installer@v3.2.0 + uses: sigstore/cosign-installer@v3.3.0 with: cosign-release: v${{ env.COSIGN_VERSION }} @@ -320,7 +320,7 @@ jobs: node-version: ${{ env.NODE_VERSION }} - name: Setup Cosign - uses: sigstore/cosign-installer@v3.2.0 + uses: sigstore/cosign-installer@v3.3.0 with: cosign-release: v${{ env.COSIGN_VERSION }} @@ -480,7 +480,7 @@ jobs: node-version: ${{ env.NODE_VERSION }} - name: Setup Cosign - uses: sigstore/cosign-installer@v3.2.0 + uses: sigstore/cosign-installer@v3.3.0 with: cosign-release: v${{ env.COSIGN_VERSION }} From cfab2e4b3ef6d123007760f701e6be693cd06356 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Dec 2023 09:13:32 +0000 Subject: [PATCH 3/6] Build(deps): Bump actions/upload-artifact from 3.1.3 to 4.0.0 Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.3 to 4.0.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v3.1.3...v4.0.0) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pipeline.yaml b/.github/workflows/pipeline.yaml index 0fa368ae..4f7a747b 100644 --- a/.github/workflows/pipeline.yaml +++ b/.github/workflows/pipeline.yaml @@ -174,7 +174,7 @@ jobs: .cr-release-packages/azure-pipelines-agent-${{ needs.init.outputs.VERSION }}.tgz - name: Cache Helm chart - uses: actions/upload-artifact@v3.1.3 + uses: actions/upload-artifact@v4.0.0 with: name: helm-chart path: .cr-release-packages @@ -759,7 +759,7 @@ jobs: --baseURL "${{ steps.pages.outputs.base_url }}/" - name: Upload build artifact - uses: actions/upload-artifact@v3.1.3 + uses: actions/upload-artifact@v4.0.0 with: name: hugo path: docs/public From bcfb7da2339c7361e2e422327b293c815f9cc2bf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Dec 2023 09:13:36 +0000 Subject: [PATCH 4/6] Build(deps): Bump actions/download-artifact from 3.0.2 to 4.1.0 Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.2 to 4.1.0. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v3.0.2...v4.1.0) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pipeline.yaml b/.github/workflows/pipeline.yaml index 0fa368ae..884a23c5 100644 --- a/.github/workflows/pipeline.yaml +++ b/.github/workflows/pipeline.yaml @@ -235,7 +235,7 @@ jobs: git config user.email "${{ github.actor }}@users.noreply.github.com" - name: Download Helm chart - uses: actions/download-artifact@v3.0.2 + uses: actions/download-artifact@v4.1.0 with: name: helm-chart path: .cr-release-packages @@ -784,7 +784,7 @@ jobs: find . -type f -not -name "index.yaml" -not -path "*/.git/*" -delete - name: Download build artifact - uses: actions/download-artifact@v3.0.2 + uses: actions/download-artifact@v4.1.0 with: name: hugo From 90e19d96fc64a50c1bed6448d8e47569b68a965b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 22 Dec 2023 09:15:49 +0000 Subject: [PATCH 5/6] Build(deps): Bump github/codeql-action from 3.22.11 to 3.22.12 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.22.11 to 3.22.12. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3.22.11...v3.22.12) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/pipeline.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/pipeline.yaml b/.github/workflows/pipeline.yaml index e6e6098c..6825e3a4 100644 --- a/.github/workflows/pipeline.yaml +++ b/.github/workflows/pipeline.yaml @@ -209,7 +209,7 @@ jobs: snyk.sarif - name: Upload results to GitHub Security - uses: github/codeql-action/upload-sarif@v3.22.11 + uses: github/codeql-action/upload-sarif@v3.22.12 with: sarif_file: merged.sarif @@ -449,7 +449,7 @@ jobs: *.sarif - name: Upload results to GitHub Security - uses: github/codeql-action/upload-sarif@v3.22.11 + uses: github/codeql-action/upload-sarif@v3.22.12 with: sarif_file: merged.sarif @@ -634,7 +634,7 @@ jobs: ${{ steps.tag.outputs.tag }} - name: Upload results to GitHub Security - uses: github/codeql-action/upload-sarif@v3.22.11 + uses: github/codeql-action/upload-sarif@v3.22.12 with: sarif_file: snyk.sarif @@ -655,7 +655,7 @@ jobs: run: semgrep ci --sarif --output=semgrep.sarif - name: Upload results to GitHub Security - uses: github/codeql-action/upload-sarif@v3.22.11 + uses: github/codeql-action/upload-sarif@v3.22.12 with: sarif_file: semgrep.sarif From e89f25d1908d243dc58c0cb2f180bde58d2eded2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Cl=C3=A9mence=20Lesn=C3=A9?= Date: Sun, 24 Dec 2023 15:02:24 +0100 Subject: [PATCH 6/6] Doc: Use more impactful project badges --- README.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 37b85ea3..02bc369a 100644 --- a/README.md +++ b/README.md @@ -7,10 +7,10 @@ -[![Project license](https://img.shields.io/github/license/clemlesne/azure-pipelines-agent)](https://github.com/clemlesne/azure-pipelines-agent/blob/main/LICENSE) +[![Docker pulls](https://img.shields.io/docker/pulls/clemlesne/azure-pipelines-agent?label=docker.com%20pulls)](https://hub.docker.com/r/clemlesne/azure-pipelines-agent) +[![GitHub all releases](https://img.shields.io/github/downloads/clemlesne/azure-pipelines-agent/total?label=github.com%20downloads)](https://github.com/clemlesne/azure-pipelines-agent/pkgs/container/azure-pipelines-agent) [![Last release date](https://img.shields.io/github/release-date/clemlesne/azure-pipelines-agent)](https://github.com/clemlesne/azure-pipelines-agent/releases) -[![Workflow status](https://img.shields.io/github/actions/workflow/status/clemlesne/azure-pipelines-agent/pipeline.yaml?branch=main)](https://github.com/clemlesne/azure-pipelines-agent/actions/workflows/pipeline.yaml) -[![All releases download counter](https://img.shields.io/github/downloads/clemlesne/azure-pipelines-agent/total)](https://github.com/clemlesne/azure-pipelines-agent/pkgs/container/azure-pipelines-agent) +[![Project license](https://img.shields.io/github/license/clemlesne/azure-pipelines-agent)](https://github.com/clemlesne/azure-pipelines-agent/blob/main/LICENSE)