attest

Author	SHA1	Message	Date
dependabot[bot]	2da562a775	Bump the actions-minor group with 2 updates (#400 ) Some checks failed Public-Good Sigstore Prober / prober (push) Has been cancelled Details GitHub Sigstore Prober / prober (push) Has been cancelled Details Check Transpiled JavaScript / Check dist/ (push) Has been cancelled Details Continuous Integration / TypeScript Tests (push) Has been cancelled Details Continuous Integration / Test attest action (push) Has been cancelled Details CodeQL / Analyze (TypeScript) (push) Has been cancelled Details Bumps the actions-minor group with 2 updates: [actions/setup-node](https://github.com/actions/setup-node) and [github/codeql-action](https://github.com/github/codeql-action). Updates `actions/setup-node` from 6.3.0 to 6.4.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](`53b83947a5...48b55a011b`) Updates `github/codeql-action` from 4.35.1 to 4.35.2 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`c10b8064de...95e58e9a2c`) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor - dependency-name: github/codeql-action dependency-version: 4.35.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-04-20 17:31:02 -07:00
dependabot[bot]	c2fbdcca7f	Bump the actions-minor group across 1 directory with 3 updates (#395 ) Bumps the actions-minor group with 3 updates in the / directory: [actions/upload-artifact](https://github.com/actions/upload-artifact), [github/codeql-action](https://github.com/github/codeql-action) and [masci/datadog](https://github.com/masci/datadog). Updates `actions/upload-artifact` from 7.0.0 to 7.0.1 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](`bbbca2ddaa...043fb46d1a`) Updates `github/codeql-action` from 4.34.1 to 4.35.1 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`3869755554...c10b8064de`) Updates `masci/datadog` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/masci/datadog/releases) - [Commits](`c1b1466047...d7cb6cfc2b`) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor - dependency-name: github/codeql-action dependency-version: 4.35.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor - dependency-name: masci/datadog dependency-version: 2.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-04-18 17:01:52 -07:00
Eugene	c65e8d4737	Pin GitHub Actions to commit SHAs for security (#386 ) Replace mutable tag references with immutable commit SHAs in codeql-analysis.yml and check-dist.yml to prevent supply chain attacks. Actions pinned: - actions/checkout@v6.0.2 - github/codeql-action/init@v4 - github/codeql-action/autobuild@v4 - github/codeql-action/analyze@v4 - actions/setup-node@v6.3.0 - actions/upload-artifact@v7.0.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>	2026-03-25 13:13:15 -04:00
dependabot[bot]	1ddccb76ab	Bump masci/datadog from 1.9.3 to 2.0.0 (#378 ) Bumps [masci/datadog](https://github.com/masci/datadog) from 1.9.3 to 2.0.0. - [Release notes](https://github.com/masci/datadog/releases) - [Commits](`a3f481d2ed...c1b1466047`) --- updated-dependencies: - dependency-name: masci/datadog dependency-version: 2.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Eugene <108841108+ejahnGithub@users.noreply.github.com>	2026-03-23 10:28:55 -04:00
dependabot[bot]	9c10929297	Bump actions/setup-node from 6.2.0 to 6.3.0 in the actions-minor group (#372 ) Bumps the actions-minor group with 1 update: [actions/setup-node](https://github.com/actions/setup-node). Updates `actions/setup-node` from 6.2.0 to 6.3.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v6.2.0...v6.3.0) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-09 15:38:03 -07:00
dependabot[bot]	088247d089	Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#369 ) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 6.0.0 to 7.0.0. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v6...v7) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-02 16:03:08 -08:00
Brian DeHamer	6bc26cfc5e	add e2e tests (#368 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2026-02-26 14:23:01 -08:00
dependabot[bot]	65786c7512	Bump the actions-minor group across 1 directory with 2 updates (#335 ) Bumps the actions-minor group with 2 updates in the / directory: [actions/checkout](https://github.com/actions/checkout) and [actions/setup-node](https://github.com/actions/setup-node). Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v6.0.1...v6.0.2) Updates `actions/setup-node` from 6.1.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v6.1.0...v6.2.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor - dependency-name: actions/setup-node dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-01-27 15:27:59 -08:00
dependabot[bot]	8ed7eda47c	Bump actions/upload-artifact from 5 to 6 (#314 ) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 5 to 6. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-15 14:54:32 -08:00
dependabot[bot]	70b5d87a50	Bump the actions-minor group with 2 updates (#311 ) Bumps the actions-minor group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [actions/setup-node](https://github.com/actions/setup-node). Updates `actions/checkout` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v6...v6.0.1) Updates `actions/setup-node` from 6.0.0 to 6.1.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v6...v6.1.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor - dependency-name: actions/setup-node dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-12-15 08:41:09 -08:00
dependabot[bot]	3293874900	Bump actions/checkout from 5.0.1 to 6.0.0 (#308 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.1 to 6.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v5.0.1...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-26 08:44:16 -08:00
dependabot[bot]	a6ce6d776c	Bump actions/checkout from 5 to 6 (#306 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-11-24 14:31:23 -08:00
dependabot[bot]	9ad3ee754c	Bump actions/setup-node from 5.0.0 to 6.0.0 (#296 ) * Bump actions/setup-node from 5.0.0 to 6.0.0 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5.0.0 to 6.0.0. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Fix actions/setup-node v6.0.0 version comment and commit hash (#304) * Initial plan * Fix actions/setup-node v6.0.0 comment and hash Co-authored-by: tingx2wang <17136661+tingx2wang@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: tingx2wang <17136661+tingx2wang@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: tingx2wang <17136661+tingx2wang@users.noreply.github.com>	2025-11-20 10:15:59 -08:00
dependabot[bot]	139b0f683f	Bump actions/upload-artifact from 4 to 5 (#298 ) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tingting Wang <tingx2wang@github.com>	2025-11-18 16:09:35 -08:00
dependabot[bot]	d59d2680aa	Bump github/codeql-action from 3 to 4 (#293 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3 to 4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3...v4) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-10-17 10:54:18 -07:00
dependabot[bot]	4ed1c73c0c	Bump actions/setup-node from 4 to 5 (#286 ) Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 5. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-09-12 13:06:37 -07:00
Brian DeHamer	eda10f897a	Upgrade to Node 24 (#276 ) * upgrade to node24 * update .node-version to 24.x Signed-off-by: Brian DeHamer <bdehamer@github.com> * delete publish immutable action Signed-off-by: Brian DeHamer <bdehamer@github.com> * bump version from 2.4.0 to 3.0.0 Signed-off-by: Brian DeHamer <bdehamer@github.com> --------- Signed-off-by: Brian DeHamer <bdehamer@github.com> Co-authored-by: Salman Chishti <salmanmkc@GitHub.com>	2025-08-26 16:06:47 -07:00
Brian DeHamer	1e2321d281	remove super-linter (#283 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2025-08-26 16:05:21 -07:00
dependabot[bot]	238c03f77f	Bump actions/checkout from 4 to 5 (#272 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-08-14 14:02:31 -07:00
dependabot[bot]	7a96af5af0	Bump super-linter/super-linter from 7.4.0 to 8.0.0 (#265 ) Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 7.4.0 to 8.0.0. - [Release notes](https://github.com/super-linter/super-linter/releases) - [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md) - [Commits](https://github.com/super-linter/super-linter/compare/v7.4.0...v8.0.0) --- updated-dependencies: - dependency-name: super-linter/super-linter dependency-version: 8.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-07-22 10:39:13 -04:00
dependabot[bot]	4d8a13a13f	Bump super-linter/super-linter in the actions-minor group (#244 ) Bumps the actions-minor group with 1 update: [super-linter/super-linter](https://github.com/super-linter/super-linter). Updates `super-linter/super-linter` from 7.3.0 to 7.4.0 - [Release notes](https://github.com/super-linter/super-linter/releases) - [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md) - [Commits](https://github.com/super-linter/super-linter/compare/v7.3.0...v7.4.0) --- updated-dependencies: - dependency-name: super-linter/super-linter dependency-version: 7.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-05-19 19:23:19 -07:00
Brian DeHamer	5ea2571690	offboard from eslint in superlinter (#236 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2025-04-28 11:27:33 -07:00
Brian DeHamer	a63cfcc7d1	bump @actions/attest from 1.5.0 to 1.6.0 (#217 ) * bump @actions/attest from 1.5.0 to 1.6.0 Signed-off-by: Brian DeHamer <bdehamer@github.com> * pin superlinter to v7.2.1 Signed-off-by: Brian DeHamer <bdehamer@github.com> --------- Signed-off-by: Brian DeHamer <bdehamer@github.com>	2025-02-26 10:41:20 -08:00
dependabot[bot]	0b9e351b03	Bump actions/publish-immutable-action in the actions-minor group (#158 ) Bumps the actions-minor group with 1 update: [actions/publish-immutable-action](https://github.com/actions/publish-immutable-action). Updates `actions/publish-immutable-action` from 0.0.3 to 0.0.4 - [Release notes](https://github.com/actions/publish-immutable-action/releases) - [Commits](https://github.com/actions/publish-immutable-action/compare/0.0.3...v0.0.4) --- updated-dependencies: - dependency-name: actions/publish-immutable-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-10-28 15:47:37 -07:00
Joel Ambass	97d213a059	Add workflow file for publishing releases to immutable action package (#148 ) * Add workflow file for publishing releases to immutable action package This workflow file publishes new action releases to the immutable action package of the same name as this repo. This is part of the Immutable Actions project which is not yet fully released to the public. First party actions like this one are part of our initial testing of this feature. * linter fix for workflow permissions Signed-off-by: Brian DeHamer <bdehamer@github.com> --------- Signed-off-by: Brian DeHamer <bdehamer@github.com> Co-authored-by: Brian DeHamer <bdehamer@github.com>	2024-10-14 16:58:26 -07:00
dependabot[bot]	ac63f56931	Bump super-linter/super-linter from 6 to 7 (#126 ) * Bump super-linter/super-linter from 6 to 7 Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 6 to 7. - [Release notes](https://github.com/super-linter/super-linter/releases) - [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md) - [Commits](https://github.com/super-linter/super-linter/compare/v6...v7) --- updated-dependencies: - dependency-name: super-linter/super-linter dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * fix yaml lint error Signed-off-by: Brian DeHamer <bdehamer@github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Brian DeHamer <bdehamer@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Brian DeHamer <bdehamer@github.com>	2024-08-20 13:10:07 -05:00
Brian DeHamer	fa63d16379	disable typescript-standard super linter (#117 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-08-06 09:08:10 -07:00
Brian DeHamer	805ae990d5	Revert "disable github action linting (#49 )" (#85 ) This reverts commit `74e71f701d`.	2024-06-04 08:37:19 -07:00
Brian DeHamer	74e71f701d	disable github action linting (#49 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-05-01 13:58:56 -07:00
Phill MV	6a7057735b	Update README.md to refer to `attestations` permission (#37 ) * Update README.md to refer to `attestations` permission * Update ci.yml * Update README.md Co-authored-by: Brian DeHamer <bdehamer@github.com> * Update README.md Co-authored-by: Brian DeHamer <bdehamer@github.com> * Update .github/workflows/ci.yml Co-authored-by: Brian DeHamer <bdehamer@github.com> --------- Co-authored-by: Brian DeHamer <bdehamer@github.com>	2024-04-15 11:52:46 -07:00
Brian DeHamer	e6f9108958	force signing with github private sigstore (#17 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-29 08:12:24 -08:00
Brian DeHamer	32049315c5	enable unit tests in CI (#15 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-28 10:45:31 -08:00
Brian DeHamer	6e9708eee5	create release attestation in CI test (#9 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-27 16:41:49 -08:00
Brian DeHamer	d3e0400371	reference @actions/attest package (#10 ) Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-26 14:46:15 -08:00
Brian DeHamer	7515199999	workflow fixup Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-23 17:22:43 -08:00
Brian DeHamer	5a922dcb2b	fix permissions for codeql workflow Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-23 16:48:00 -08:00
Brian DeHamer	e11ba98f5d	update fetch-depth for linter checkout Signed-off-by: Brian DeHamer <bdehamer@github.com>	2024-02-23 16:48:00 -08:00
dependabot[bot]	70f43ffb61	Bump super-linter/super-linter from 5 to 6 Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 5 to 6. - [Release notes](https://github.com/super-linter/super-linter/releases) - [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md) - [Commits](https://github.com/super-linter/super-linter/compare/v5...v6) --- updated-dependencies: - dependency-name: super-linter/super-linter dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2024-02-23 16:48:00 -08:00
ejahnGithub	1ea45aee0c	fix linter	2024-02-23 16:24:34 -08:00
ejahnGithub	a801b62e6f	fixed ci	2024-02-22 08:14:04 -08:00
ejahnGithub	34454bfc74	fixed ci	2024-02-22 07:58:33 -08:00
ejahnGithub	e3c685d193	init attest action	2024-02-22 07:53:51 -08:00
Brian DeHamer	aaaeb08d4e	Initial commit	2024-02-20 11:22:22 -08:00

43 Commits