docker/actions-toolkit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,804 Commits 1 Branch 131 Tags
fda38b8e1ae8d4757050edd384ed16eae59ffbcd
Commit Graph

1804 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
fda38b8e1a build(deps): bump lodash from 4.17.21 to 4.17.23 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23)

---
updated-dependencies:
- dependency-name: lodash
  dependency-version: 4.17.23
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-22 06:22:14 +00:00
Tõnis Tiigi
5e85cd909c Merge pull request #948 from docker/bot/buildx-releases-json 
Update `.github/buildx-releases.json`
 2026-01-21 16:56:03 -08:00
crazy-max
e4be903f47 github: update .github/buildx-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-22 00:27:49 +00:00
CrazyMax
1e6bce61a0 Merge pull request #942 from docker/bot/docker-releases-json 
Update `.github/docker-releases.json`
 2026-01-17 20:22:12 +01:00
CrazyMax
62950e53c4 Merge pull request #941 from docker/bot/buildx-releases-json 
Update `.github/buildx-releases.json`
 2026-01-17 20:21:48 +01:00
crazy-max
fbfb919592 github: update .github/docker-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-17 00:34:28 +00:00
crazy-max
7853dc580d github: update .github/buildx-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-17 00:24:56 +00:00
CrazyMax
882907c07b Merge pull request #931 from docker/sigstore-signing-config 
sigstore: use signing config with cosign
 2026-01-15 17:11:42 +01:00
CrazyMax
d5a1a969a5 Merge pull request #939 from docker/bot/buildx-releases-json 
Update `.github/buildx-releases.json`
 2026-01-15 09:28:57 +01:00
crazy-max
99d1f39750 github: update .github/buildx-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-15 08:27:12 +00:00
CrazyMax
79a6dd0432 Merge pull request #938 from crazy-max/bake-def-envs
Some checks failed
publish / publish (push) Has been cancelled
Details 
buildx(bake): merge existing env vars when parsing definition
v0.75.0 		2026-01-14 14:03:57 +01:00
CrazyMax
306d954be2 buildx(bake): merge existing env vars when parsing definition 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-14 13:51:42 +01:00
CrazyMax
65261f5a19 Merge pull request #937 from crazy-max/sigstore-platform 
sigstore: opt to verify attestation manifest for specific platform
 2026-01-14 12:59:10 +01:00
CrazyMax
a5dc8e7614 sigstore: opt to verify attestation manifest for specific platform 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-14 12:23:11 +01:00
CrazyMax
c9ffda6adf Merge pull request #936 from crazy-max/oci-defaultPlatform 
oci: defaultPlatform function
 2026-01-14 12:01:47 +01:00
CrazyMax
af989cc324 oci: defaultPlatform function 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-14 11:49:45 +01:00
CrazyMax
18f82ba384 Merge pull request #935 from crazy-max/imagetools-filter-platform 
buildx(imagetools): opt to filter attestation manifests by platform
 2026-01-14 11:12:59 +01:00
CrazyMax
f136d06171 buildx(imagetools): opt to filter attestation manifests by platform 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-14 10:52:51 +01:00
CrazyMax
6e1b0e6179 Merge pull request #934 from docker/sigstore-verify-retry
Some checks failed
publish / publish (push) Has been cancelled
Details 
sigstore: make retry on manifest unknown optional
v0.74.0 		2026-01-13 17:33:53 +01:00
CrazyMax
b4f34ed319 sigstore: make retry on manifest unknown optional 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-13 16:21:46 +01:00
CrazyMax
c47fbe6179 sigstore: use signing config with cosign 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-13 15:14:37 +01:00
CrazyMax
ba992bb822 Merge pull request #933 from crazy-max/sigstore-test-sign
Some checks failed
publish / publish (push) Has been cancelled
Details 
sigstore: test signAttestationManifests
v0.73.0 		2026-01-13 15:07:08 +01:00
CrazyMax
345531d0a4 sigstore: test signAttestationManifests 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-13 14:56:12 +01:00
CrazyMax
2e620f9c90 Merge pull request #932 from crazy-max/sigstore-verifyimage 
sigstore: add function to verify image attestations
 2026-01-13 14:50:59 +01:00
CrazyMax
0162b2cf8b cosign: clear errors if manifest or bundle payload found 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-13 13:25:39 +01:00
CrazyMax
7397cfe37c sigstore: add function to verify image attestations 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-13 13:21:55 +01:00
CrazyMax
a3d5eee63a Merge pull request #928 from docker/bot/cosign-releases-json 
Update `.github/cosign-releases.json`
 2026-01-12 14:18:20 +01:00
crazy-max
85c3d8b7f3 github: update .github/cosign-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-10 00:13:01 +00:00
CrazyMax
22773fa848 Merge pull request #927 from docker/bot/docker-releases-json 
Update `.github/docker-releases.json`
 2026-01-09 13:16:03 +01:00
crazy-max
cbf7323bc1 github: update .github/docker-releases.json 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-01-09 12:14:24 +00:00
CrazyMax
382ab4c9ac Merge pull request #924 from docker/dependabot/npm_and_yarn/actions/tool-cache-3.0.0 
build(deps): bump @actions/tool-cache from 2.0.2 to 3.0.0
 2026-01-08 16:33:06 +01:00
CrazyMax
b0b34198c4 Merge pull request #925 from docker/dependabot/npm_and_yarn/actions/cache-5.0.2 
build(deps): bump @actions/cache from 5.0.1 to 5.0.2
 2026-01-08 16:30:42 +01:00
dependabot[bot]
842eaf5ac0 build(deps): bump @actions/cache from 5.0.1 to 5.0.2 
Bumps [@actions/cache](https://github.com/actions/toolkit/tree/HEAD/packages/cache) from 5.0.1 to 5.0.2.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/cache)

---
updated-dependencies:
- dependency-name: "@actions/cache"
  dependency-version: 5.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 15:21:39 +00:00
CrazyMax
2f0f57f46e Merge pull request #926 from docker/dependabot/npm_and_yarn/actions/artifact-5.0.2 
build(deps): bump @actions/artifact from 5.0.1 to 5.0.2
 2026-01-08 16:19:26 +01:00
dependabot[bot]
4f8b9ae301 build(deps): bump @actions/tool-cache from 2.0.2 to 3.0.0 
Bumps [@actions/tool-cache](https://github.com/actions/toolkit/tree/HEAD/packages/tool-cache) from 2.0.2 to 3.0.0.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/tool-cache/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/tool-cache)

---
updated-dependencies:
- dependency-name: "@actions/tool-cache"
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 15:12:22 +00:00
dependabot[bot]
0aaa94bdee build(deps): bump @actions/artifact from 5.0.1 to 5.0.2 
Bumps [@actions/artifact](https://github.com/actions/toolkit/tree/HEAD/packages/artifact) from 5.0.1 to 5.0.2.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/artifact/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/artifact)

---
updated-dependencies:
- dependency-name: "@actions/artifact"
  dependency-version: 5.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 15:12:07 +00:00
CrazyMax
654afbf8c5 Merge pull request #922 from docker/dependabot/npm_and_yarn/actions/core-2.0.2 
build(deps): bump @actions/core from 2.0.1 to 2.0.2
 2026-01-08 16:09:49 +01:00
CrazyMax
d256fc587d Merge pull request #923 from docker/dependabot/npm_and_yarn/actions/github-7.0.0 
build(deps): bump @actions/github from 6.0.1 to 7.0.0
 2026-01-08 16:08:23 +01:00
dependabot[bot]
ca8ad9e7ab build(deps): bump @actions/github from 6.0.1 to 7.0.0 
Bumps [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) from 6.0.1 to 7.0.0.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

---
updated-dependencies:
- dependency-name: "@actions/github"
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 14:53:30 +00:00
dependabot[bot]
53aedd9542 build(deps): bump @actions/core from 2.0.1 to 2.0.2 
Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) from 2.0.1 to 2.0.2.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core)

---
updated-dependencies:
- dependency-name: "@actions/core"
  dependency-version: 2.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 14:53:07 +00:00
CrazyMax
01fb6c8d3b Merge pull request #921 from docker/dependabot/npm_and_yarn/actions/http-client-3.0.1 
build(deps): bump @actions/http-client from 3.0.0 to 3.0.1
 2026-01-08 10:28:17 +01:00
dependabot[bot]
6439a13308 build(deps): bump @actions/http-client from 3.0.0 to 3.0.1 
Bumps [@actions/http-client](https://github.com/actions/toolkit/tree/HEAD/packages/http-client) from 3.0.0 to 3.0.1.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/http-client/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/http-client)

---
updated-dependencies:
- dependency-name: "@actions/http-client"
  dependency-version: 3.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-08 01:10:26 +00:00
CrazyMax
a6ccf4cb79 Merge pull request #919 from crazy-max/fix-publish-workflow 
ci(publish): fix permissions to create GitHub Release
 2026-01-07 17:17:31 +01:00
CrazyMax
333909f560 Merge pull request #920 from crazy-max/buildkit-0.26.3 
update buildkit to 0.26.3
 2026-01-05 16:08:22 +01:00
CrazyMax
0b7584385a update buildkit to 0.26.3 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-05 14:58:42 +01:00
CrazyMax
3a94f7311f ci(publish): fix permissions to create GitHub Release 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-05 14:47:21 +01:00
CrazyMax
f2404dca2f Merge pull request #918 from crazy-max/isolated-modules
Some checks failed
publish / publish (push) Has been cancelled
Details 
set isolatedModules=true to fix ts-jest TS151002 warning
v0.72.0 		2026-01-05 13:58:14 +01:00
CrazyMax
8bae8c963f Merge pull request #913 from docker/dependabot/npm_and_yarn/sigstore/verify-3.1.0 
build(deps): bump @sigstore/verify from 3.0.0 to 3.1.0
 2026-01-05 13:46:58 +01:00
CrazyMax
c00b0d2393 set isolatedModules=true to fix ts-jest TS151002 warning 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-01-05 13:45:55 +01:00
dependabot[bot]
f861f8df56 build(deps): bump @sigstore/verify from 3.0.0 to 3.1.0 
Bumps [@sigstore/verify](https://github.com/sigstore/sigstore-js) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/sigstore/sigstore-js/releases)
- [Commits](https://github.com/sigstore/sigstore-js/compare/@sigstore/verify@3.0.0...sigstore@3.1.0)

---
updated-dependencies:
- dependency-name: "@sigstore/verify"
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-05 11:05:33 +00:00