dependabot[bot]
8a9d916ac9
Bump docker/setup-buildx-action from 4.0.0 to 4.1.0 ( #6678 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd...d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-29 20:35:46 +02:00
dependabot[bot]
86f2d0cb62
Bump docker/login-action from 4.1.0 to 4.2.0 ( #6658 )
2026-05-22 19:20:12 +02:00
dependabot[bot]
3608e2d34b
Bump docker/login-action from 4.0.0 to 4.1.0 ( #6583 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/b45d80f862d83dbcd57f89517bcf500b2ab88fb2...4907a6ddec9925e35a0a9e82d7399ccc52663121 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-07 10:36:15 +02:00
dependabot[bot]
0588d6f0ae
Bump actions/download-artifact from 8.0.0 to 8.0.1 ( #6538 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 8.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-13 17:20:49 +01:00
dependabot[bot]
e61e87549b
Bump docker/setup-buildx-action from 3.12.0 to 4.0.0 ( #6529 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.12.0 to 4.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/8d2750c68a42422c14e847fe6c8ac0403b4cbd6f...4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-version: 4.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 15:25:41 +00:00
dependabot[bot]
53582879e6
Bump docker/login-action from 3.7.0 to 4.0.0 ( #6527 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/c94ce9fb468520275223c153574b00df6fe4bcc9...b45d80f862d83dbcd57f89517bcf500b2ab88fb2 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 16:11:43 +01:00
dependabot[bot]
eadd1b9ed3
Bump actions/download-artifact from 7.0.0 to 8.0.0 ( #6517 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/37930b1c2abaa49bbe596cd826c3c89aef350131...70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 8.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-27 23:10:23 +01:00
dependabot[bot]
e5012c3fcc
Bump docker/login-action from 3.6.0 to 3.7.0 ( #6468 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/5e57cd118135c172c3672efd75eb46360885c0ef...c94ce9fb468520275223c153574b00df6fe4bcc9 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 3.7.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-31 21:52:39 +01:00
Danny Mösch
1bc3ef0dae
Allow to dispatch Docker build
2026-01-25 13:46:42 +01:00
dependabot[bot]
0e011258a5
Bump actions/checkout from 6.0.1 to 6.0.2 ( #6455 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/8e8c483db84b4bee98b60c0593521ed34d9990e8...de0fac2e4500dabe0009e67214ff5f5447ce83dd )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-23 16:46:50 +01:00
Danny Mösch
3860c5c490
Refactor workflows with YAML anchors for common patterns ( #6313 )
2026-01-02 13:37:04 +00:00
dependabot[bot]
10f258820a
Bump docker/setup-buildx-action from 3.11.1 to 3.12.0 ( #6388 )
2025-12-22 16:03:19 +01:00
dependabot[bot]
938ec50259
Bump actions/download-artifact from 6.0.0 to 7.0.0 ( #6379 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 6.0.0 to 7.0.0.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/018cc2cf5baa6db3ef3c5f8a56943fffe632ef53...37930b1c2abaa49bbe596cd826c3c89aef350131 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 7.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 17:57:14 +01:00
dependabot[bot]
ef63229c3b
Bump actions/checkout from 6.0.0 to 6.0.1 ( #6370 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3...8e8c483db84b4bee98b60c0593521ed34d9990e8 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-08 20:02:13 +01:00
dependabot[bot]
ca49d31e45
Bump actions/checkout from 5.0.0 to 6.0.0 ( #6356 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/08c6903cd8c0fde910a37f88322edcfb5dd907a8...1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-24 15:52:09 +01:00
Danny Mösch
49272b4e32
Use new slim runners for simple tasks ( #6325 )
2025-10-31 17:11:37 +00:00
dependabot[bot]
c23244ec0d
Bump actions/download-artifact from 5.0.0 to 6.0.0 ( #6322 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](https://github.com/actions/download-artifact/compare/634f93cb2916e3fdff6788551b99b062d0335ce0...018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 )
---
updated-dependencies:
- dependency-name: actions/download-artifact
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-28 18:17:54 +01:00
dependabot[bot]
15a5983aa5
Bump actions/download-artifact from 4.3.0 to 5.0.0 ( #6266 )
2025-09-30 07:37:17 +02:00
dependabot[bot]
82b0f5c74f
Bump actions/checkout from 4.3.0 to 5.0.0 ( #6264 )
2025-09-30 07:36:00 +02:00
dependabot[bot]
588e26bdbc
Bump docker/login-action from 3.5.0 to 3.6.0 ( #6263 )
2025-09-30 07:34:00 +02:00
Danny Mösch
da74086498
Revert "Pass only relevant secret"
...
This reverts commit 6c8468a491 .
2025-08-30 15:21:38 +02:00
Danny Mösch
6c8468a491
Pass only relevant secret
2025-08-30 15:18:00 +02:00
Danny Mösch
d11a65bfa5
Pin actions to specific SHAs
2025-08-30 15:18:00 +02:00
Danny Mösch
98c30205af
Avoid storing Git credentials on disk if not required by follow-up steps
2025-08-30 15:18:00 +02:00
Danny Mösch
96df29d72c
Remedy risk of template code injection
2025-08-30 15:18:00 +02:00
Danny Mösch
32bbc5b6d6
Inline Docker build script ( #6196 )
...
With #6193 , both Docker variants are built on different machines, so
that not both binaries need to be handled at once.
Since the binaries are not used as release artifacts anymore, dynamic
linking should be fine as well.
2025-08-20 18:06:52 +02:00
Danny Mösch
ede20069e7
Split Docker workflow to build for different platforms in parallel ( #6193 )
...
* Split Docker build to avoid slow cross-compilation
* Push digests of intermediate builds only
* Inline permissions to have them more fine-grained
* Build on runners matching the platform to compile for
* Run on every push to main
* Extract build steps into reusable action
2025-08-17 22:30:55 +02:00
Danny Mösch
e75981494f
Build Linux binaries for releases without Docker ( #6192 )
...
Given that Swift is installed on Linux runners and there are ARM runners
available, too, we can just build the binaries directly with Bazel and
not rely on Docker.
The Docker images will be created post-release now as additional release
artifacts and not as prerequisites for other artifacts.
2025-08-16 19:36:43 +02:00
Bradley Mackey
ad30ecef67
Build and provide ARM64 Linux binaries ( #6015 )
...
Co-authored-by: Danny Mösch <danny.moesch@icloud.com >
2025-08-16 17:31:23 +02:00
Danny Mösch
2cdb8685a7
Restrict workflow permissions ( #5996 )
2025-02-11 09:22:15 +01:00
Danny Mösch
c3e6bbbfe7
Fix issues reported by ShellCheck
2025-01-19 17:39:16 +01:00
Danny Mösch
18d658bbf3
Specify explicit OS version
2025-01-17 00:02:16 +01:00
Danny Mösch
d8b7215844
Remove quotes
2025-01-16 23:08:12 +01:00
Danny Mösch
a08c92c870
Separate Docker build into artifact and release version
...
This builds the Docker image twice per release - first to extract the
Linux binary from it as a dedicated release artifact, second as the
official Docker image associated with the later published release.
This avoids that a Docker image for a version exist that is not otherwise
available as an official release on GitHub.
2025-01-16 23:04:57 +01:00
Danny Mösch
9a7e645a02
Build Docker image from local context
2025-01-16 23:00:19 +01:00
Danny Mösch
bfefc384db
Pull branch before Docker build
2025-01-16 21:55:44 +01:00
Danny Mösch
ca80b0e4ad
Add human-friendly names to build jobs
2025-01-11 21:29:46 +01:00
Danny Mösch
470d27d443
Use existing functions
2025-01-11 21:10:13 +01:00
Danny Mösch
aa2a0973d4
Split post-release actions from release workflow
2025-01-11 20:43:25 +01:00
Danny Mösch
bae1a6ac39
Rename Linux binary before upload
2025-01-11 16:09:39 +01:00
Danny Mösch
329f9b0204
Throw an error if no files were found
2025-01-11 14:22:27 +01:00
Danny Mösch
cc08a8794b
Take binary from install location
2025-01-11 14:04:13 +01:00
Danny Mösch
62ad0c00f6
Use text block
2025-01-11 13:46:22 +01:00
Danny Mösch
4f056eb32b
Specify multiple outputs
2025-01-11 13:44:39 +01:00
Danny Mösch
f54840f8ba
Build Linux and macOS binaries in parallel and upload them
2025-01-11 13:11:00 +01:00
Danny Mösch
1d3ebc8034
Define release process in a workflow
2025-01-10 21:40:43 +01:00
Danny Mösch
5777bab476
Avoid condition that's always true
2025-01-08 19:36:50 +01:00
Danny Mösch
5ab8f09161
Check for explicitly set Docker tag
2024-12-21 19:41:31 +01:00
Danny Mösch
ece675cae9
Do not use defined event names
...
When this workflow is called from another, the event type will be the
one of the caller. Therefore, checking agains `workflow_call` doesn't
work.
2024-11-24 16:58:57 +01:00
Danny Mösch
b59e2daad0
Build Docker image with Swift 6 on Ubuntu 24.04
2024-09-29 21:34:49 +02:00