Gaction #2
Closed
Gaction #2
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.3 to 3.2.4. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@58c146c...627f0f4) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…t of the build ant target (adoptium#3210) * Update cyclonedx-lib/build.xml to clone openkeystore and build as part of the build ant target --------- Co-authored-by: Wen Zhou <wenzhou@redhat.com>
Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…tium#3237) Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…adoptium#3240) * Add a github action for building and runnning TemurinGenSBOM unit test Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Add a github action for building and runnning TemurinGenSBOM unit test Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Add a github action for building and runnning TemurinGenSBOM unit test Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…3241) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.1 to 2.2.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@3ebbd71...39d8d7e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Keith W. Campbell <keithc@ca.ibm.com>
) Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3.9.0 to 3.10.0. - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@1df8dbe...3f07048) --- updated-dependencies: - dependency-name: actions/setup-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…3246) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.2 to 2.2.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@39d8d7e...8775e86) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.4 to 3.2.5. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@627f0f4...6998d13) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…3249) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.3 to 2.2.4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@8775e86...17573ee) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Stewart X Addison <sxa@redhat.com>
Signed-off-by: Andrew Leonard <anleonar@redhat.com>
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.5 to 3.2.6. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@6998d13...69d9d44) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…3266) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.4 to 2.2.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@17573ee...32dc499) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ium#3275) * Move cyclonedx java library dependencies to 7.3.2 dep versions Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Correct testsbom concurrency github action check Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com>
Bumps [actions/labeler](https://github.com/actions/labeler) from 4.0.2 to 4.0.3. - [Release notes](https://github.com/actions/labeler/releases) - [Commits](actions/labeler@5c75392...ba790c8) --- updated-dependencies: - dependency-name: actions/labeler dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…3243) * add TemurinSignSBOM.java with --sign and verify operations * remove unused imports * update code * create a script to build org.webpki.json openkeystore code * update code * update code * add github action * refactored code * Update code * update code * update code * Update code * Update code * update code * Update code * Update code * fix lint * refactor code and fix lint * refactor code and fix lint * fix lint * fix lint * fix lint * update code * correct the openkeystore build directory * correct build openkeystore directory * resolve conflicts * correct openkeystore compile directory * fix the compilation errors in the TemurinSignSbom class * remove unused imports * fix lint * fix lint * fix linter * fix linter warnings * fix linter warnings * fix linter warnings * fix linter warnings * fix linter warnings * fix linter warnings * give file permissions to execute * make the scripts executable * fix the sign verify error * update code * fix linter * update build.xml * update build.xml * update signsbom.yml * add --signSBOM to build.xml * separate calls to TemurinSignSBOM * update code * decode the public key * update code * refacor code * update cyclonedx-core-java-version version * update signsbom method * fix linter * update code * refactor code * fix code * add java setup versions * update code * change jdk version * update code * fix linter * reformat code to fix linter * fix linter * clean code * refactor code * remove unnecessary space * update code * update code * add a catch exception * add GeneralSecurityException * include parse exception * update code * update code * update code * update code
…3279) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@32dc499...16964e9) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.6 to 3.3.0. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@69d9d44...940f3d7) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/cache](https://github.com/actions/cache) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@940f3d7...88522ab) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…doptium#3284) * Ensure --with-vendor-url is not blank Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Disable globbing shellcheck SC2086 Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…3286) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.6 to 2.2.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@16964e9...168b99b) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.3.0 to 3.4.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@ac59398...24cb908) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Andrew Leonard <anleonar@redhat.com>
* Alter JFR check for JDK20 * Simplify logic.
…ptium#3729) (adoptium#3731) Update the "Reproducible Build Tools" section of tooling/reproducible/ReproducibleBuilds.md to reflect the reorganization of repro_compare.sh. Signed-off-by: Thomas Fitzsimmons <fitzsim@redhat.com> Co-authored-by: Martijn Verburg <martijnverburg@gmail.com>
Related ibmruntimes#94 ibmruntimes/ci-jenkins-pipeline#182 Signed-off-by: Adam Brousseau <adam.brousseau88@gmail.com> Co-authored-by: Martijn Verburg <martijnverburg@gmail.com>
* add license checker GH action * test * update dates to be correct * review fixes --------- Co-authored-by: Martijn Verburg <martijnverburg@gmail.com>
…it (adoptium#3743) * Check for /usr/local/devkit before downloading Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Check for /usr/local/devkit before downloading Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Check for /usr/local/devkit before downloading Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Check for /usr/local/devkit before downloading Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Check for /usr/local/devkit before downloading Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com>
) * Usng proper laud countdown before cleaning of repository * Update sbin/common/common.sh Co-authored-by: Stewart X Addison <6487691+sxa@users.noreply.github.com> * Update sbin/common/common.sh Co-authored-by: Martijn Verburg <martijnverburg@gmail.com> * Following linter while [ $i -gt 0 ] ; do echo -n " $i " && sleep 1 && i=$(($i-1)) ; done && echo " $i" ^-- SC2086 (info): Double quote to prevent globbing and word splitting. ^-- SC2004 (style): $/${} is unnecessary on arithmetic variables. --------- Co-authored-by: Stewart X Addison <6487691+sxa@users.noreply.github.com> Co-authored-by: Martijn Verburg <martijnverburg@gmail.com>
* Using centos:7 as base image to reproduciable Move reproduciable comparing tests to special.system Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Stage reproducible shell scripts Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Others Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Apply reproducible changes in test directory to tooling directory Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Temporarily rm container right after docker run As the docker run consistently fails right now Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Remove BOOTJDK suffix -LTS Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Specify component of jdk Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Update sbom jdk file directory Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Remove leading-directory Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Separate test and work dir Add default comparing test jdk dir Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Rename test result Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * remove openjdk-build dir Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Archive reproJDK.tar.gz as testoutput Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Enhance the deternination of jdk and sbom file Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Using TEST_ROOT locate test jdk Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Support local TEST_JDK_HOME as compared JDK Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Update SBOM_FILE location Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Remove the diff for release file Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Update license Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Shell script check Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> * Keep BUILD_SOURCE , BUILD_REPO, BUILD_SOURCE_REPO comparison Signed-off-by: Sophia Guo <sophia.gwf@gmail.com> --------- Signed-off-by: Sophia Guo <sophia.gwf@gmail.com>
…um#3751) * Ensure LD_LIBRARY_PATH set when building using a linux devkit Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…m#3754) Bumps [apache/skywalking-eyes](https://github.com/apache/skywalking-eyes) from 0.5.0 to 0.6.0. - [Release notes](https://github.com/apache/skywalking-eyes/releases) - [Changelog](https://github.com/apache/skywalking-eyes/blob/main/CHANGES.md) - [Commits](apache/skywalking-eyes@6b25292...cd7b195) --- updated-dependencies: - dependency-name: apache/skywalking-eyes dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Remove header comment Signing tool does not allow for header comment. * Ignore serverTimestamp.properties Don't add license header to the serverTimestamp.properties * Ignore serverTimestamp.properties
…tium#3761) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.4 to 4.1.5. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@c850b93...8caf195) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…tium#3765) Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.5 to 4.1.6. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@8caf195...9c19ed7) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ium#3766) * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> * Update macos github build action Signed-off-by: Andrew Leonard <anleonar@redhat.com> --------- Signed-off-by: Andrew Leonard <anleonar@redhat.com> Co-authored-by: Martijn Verburg <martijnverburg@gmail.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
…comment Signed-off-by: Andrew Leonard <anleonar@redhat.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.