Feature/#60-improve-gha-setup #109
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
added 16 commits
January 6, 2026 13:27
fix missing negation pattern on playwright workflow
closes #107 props to Gabo (https://github.com/ashishb/gabo) for the baseline
Closed
Pinguladora
added a commit
that referenced
this pull request
Jan 8, 2026
* Sync main (#54) * Add Zizmor support and GitSign verification (#40) * Configure Renovate (#1) * Add renovate.json * chore(deps): update renovate.json configuration for enhanced dependency management * chore(deps): remove redundant docker manager from Renovate configuration * chore(deps): correct typo in separateMajor option --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): add semantic commit scope and clean up schedule and package rules in Renovate config (#4) * chore(deps): update dependency node to v22 (#3) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Reconfigure renovate (#6) * chore(deps): add semantic commit scope and clean up schedule and package rules in Renovate config * chore(deps): add merge confidence badge and enable weekly lock file maintenance * chore(deps): update Renovate config to use baseBranchPatterns and simplify lock file maintenance * chore(deps): update minimumReleaseAge to 3 days for improved dependency management * fix(deps): correct key name from matchPackagePatterns to matchPackageNames in Renovate config --------- Signed-off-by: Pinguladora <50406923+Pinguladora@users.noreply.github.com> Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): update actions/checkout action to v5 (#19) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): add lockfile to all projects (#28) Co-authored-by: Pinguladora <mec@gmail.com> * feat(build): add pre-commit framework support (#30) * chore(ci): add pre-commit configuration for Gitleaks secret detection * chore(pre-commit): add Oxipng compression tool for PNG optimization * chore(pre-commit): reorganize hooks and add descriptions for clarity * chore(pre-commit): replace commitizen with Cocogitto for commit message verification --------- Co-authored-by: Pinguladora <mec@gmail.com> * feat(build): add devcontainer support (#29) * chore(build): add devcontainer prototype configuration for .NET Aspire environment * fix: update SDK version to 10.0.0-rc.2.25502.107 in global.json * fix: update .NET Aspire devcontainer image to 10.0 and modify onCreateCommand --------- Co-authored-by: Pinguladora <mec@gmail.com> * feat(workflows): add GitHub Actions security analysis with zizmor implements Zizmor analysis. Resolves #34. * feat(build): add pre-commit hook for Renovate (#38) * feat(pre-commit): add renovate pre-commit * Feature/#37-gitsign-verification (#39) * feat(ci): add Gitsign verification for PR * feat(ci): add Chainguard source.yaml configuration * feat(ci): update Gitsign verification workflow remove broad permissions disable credential persistence * fix(playwright): update webServer configuration to use port instead of url --------- Signed-off-by: Pinguladora <50406923+Pinguladora@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Pinguladora <mec@gmail.com> * Upgrade to Aspire 13 and update testing frameworks (#53) * Update to Aspire 13 (dotnet#916) * Update to official versions and fix the build * Update to v7 RabbitMQ Remove some native AOT workarounds Convert to use artifacts output so the src directory isn't litered with bin/obj folders * Update to latest patch, including Aspire.Npgsql.EntityFrameworkCore.PostgreSQL * Use latest xUnit, MSTest + move to MTP (dotnet#924) * Use latest xUnit, MSTest + move to MTP * Add no progress and detailed output * Fix test * Fix dotnet test call for maui * chore(repo): sync fork with upstream update to Aspire 13 * Merge remote-tracking branch 'origin/main' into pr/Pinguladora/52 --------- Signed-off-by: Pinguladora <50406923+Pinguladora@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Pinguladora <mec@gmail.com> * Feature/#51-update-to-dotnet-10-lts (#56) chore(dotnet): update .NET SDK version to 10.0.101 Co-authored-by: Pinguladora <mec@gmail.com> * Renovate/reconfigure (#57) chore(renovate): fix typo on preset config Co-authored-by: Pinguladora <mec@gmail.com> * feat(trivy): enhance trivy support (#49) * feat(trivy): add prototype config file * chore(trivy): add .trivyignore file and update trivy.yaml configuration * chore(trivy): update Trivy configuration to use exit code 0 non 0 exit codes make pre-commit job fail --------- Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): update dependency node to v18 (#66) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update actions/setup-node action to v5 (#62) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update actions/upload-artifact action to v5 (#64) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update dependency node to v20 (#67) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Feature/#70 skip workflows created by renovate (#71) * chore(ci): update gitsign workflow name and trigger events for commit verification * chore(ci): renovate skip and add timeout for commit verification --------- Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): update dependency node to v22 (#68) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update dependency node to v24 (#69) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update actions/setup-node action to v6 (#63) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update pre-commit hook renovatebot/pre-commit-hooks to v42 (#73) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update pre-commit hook gitleaks/gitleaks to v8.30.0 (#72) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update zizmorcore/zizmor-action action to v0.3.0 * Update GitSign workflow for commit verification (#74) * chore(ci): update gitsign workflow name and trigger events for commit verification * chore(ci): renovate skip and add timeout for commit verification * chore(ci): skip GitSign verification workflow for Renovate bot commits bettet than previous approach which still ran jobs adding overhead and charges for runners see https://github.com/orgs/community/discussions/6943 --------- Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): update actions/upload-artifact action to v6 (#65) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * Update Renovate setup (#58) * chore(renovate): fix typo on preset config * chore(renovate): update config skip CI on version pinning rebase stale PRs open PRs as drafts * chore(renovate): adjust PR limits set concurrency to 10 remove hourly limit --------- Co-authored-by: Pinguladora <mec@gmail.com> * chore(deps): update actions/setup-dotnet action to v5.0.1 (#80) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update actions/checkout action to v6 (#79) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update pre-commit hook oxipng/oxipng to v10 (#88) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update pre-commit hook renovatebot/pre-commit-hooks to v42.71.0 (#87) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update chainguard-dev/actions action to v1.5.10 * Feature/#90-add-zensical (#92) * feat(docs): add architecture and development documentation with Zensical * chore(ci): add workflow for Zensical page deploy * chore(markdown): update markdownlint workflow and ignore settings for Zensical documentation * chore(ci): only run action on PRs ready for review * chore(ci): pin and verify action versions --------- Co-authored-by: Pinguladora <mec@gmail.com> * Feature/#90-add-zensical (#2) (#93) * feat(docs): add architecture and development documentation with Zensical * chore(ci): add workflow for Zensical page deploy * chore(markdown): update markdownlint workflow and ignore settings for Zensical documentation * chore(ci): only run action on PRs ready for review * chore(ci): pin and verify action versions * chore(ci): fix zensical GHA add zensical.toml to workflow trigger add zensical.toml to checkout --------- Co-authored-by: Pinguladora <mec@gmail.com> * Feature/#90-add-zensical (#3) (#103) * feat(docs): add architecture and development documentation with Zensical * chore(ci): add workflow for Zensical page deploy * chore(markdown): update markdownlint workflow and ignore settings for Zensical documentation * chore(ci): only run action on PRs ready for review * chore(ci): pin and verify action versions * chore(ci): fix zensical GHA add zensical.toml to workflow trigger add zensical.toml to checkout * chore: merge branch 'develop' into feature/#90-add-zensical * chore(ci): update Zensical GHA adjust workflow dispatch trigger add workflow path as trigger for push add feature branch for testing * chore(ci): remove feature branch trigger after testing it deploys to GitHub Pages * chore: merge branch 'develop' into feature/#90-add-zensical * Feature/#60-improve-gha-setup (#109) * chore(ci): remove CI on draft closes #75 * chore(ci): set concurrency setting fixes #83 * chore(ci): disable credentials persistence * chore(ci): adjust checkout filters fixes #104 * chore(ci): set permissions on GHA fixes #82 * chore(ci): set timeout on jobs fixes #84 * chore(ci): adjust zizmor triggers fixes #81 * chore(ci): refactor Zizmor workflow fixes #104 * chore(ci): add blob filtering fixes #105 * chore(ci): optimize Git config closes #105 * chore(ci): optimize Git config closes #105 * chore(ci): format all workflow files fix missing negation pattern on playwright workflow * chore(ci): add Caliebre image optimization solves #85 * chore(ci): add ghalint config file closes #108 * chore(ci): change path of ghalint config file * chore(ci): add actionlint support closes #107 props to Gabo (https://github.com/ashishb/gabo) for the baseline * chore(ci): fix sparse checkout * chore(ci): format workflows files --------- Co-authored-by: Pinguladora <mec@gmail.com> * feat(analytics): add Rybbit analytics (#110) * feat(analytics): add Rybbit analytics integration and configuration * refactor(zensical): point to proper CSS expected path --------- Co-authored-by: Pinguladora <mec@gmail.com> * chore(ci): fix Zensical workflows forgot to expand sparse checkout filter * chore(ci): fix Playwright workflow remove sparse checkout to reduce cognitive complexity --------- Signed-off-by: Pinguladora <50406923+Pinguladora@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Pinguladora <mec@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
closes #60
props to Gabo (https://github.com/ashishb/gabo) for the baseline for Zizmor and actionlint