From 581a2bdca490b734b4cb7478b0ccae72cd304b3f Mon Sep 17 00:00:00 2001 From: Adonis Jimenez Date: Sat, 12 Apr 2025 17:52:07 -0400 Subject: [PATCH 01/21] Create jekyll-docker.yml --- .github/workflows/jekyll-docker.yml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 .github/workflows/jekyll-docker.yml diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml new file mode 100644 index 00000000..68ffc767 --- /dev/null +++ b/.github/workflows/jekyll-docker.yml @@ -0,0 +1,20 @@ +name: Jekyll site CI + +on: + push: + branches: [ "gh-pages" ] + pull_request: + branches: [ "gh-pages" ] + +jobs: + build: + + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v4 + - name: Build the site in the jekyll/builder container + run: | + docker run \ + -v ${{ github.workspace }}:/srv/jekyll -v ${{ github.workspace }}/_site:/srv/jekyll/_site \ + jekyll/builder:latest /bin/bash -c "chmod -R 777 /srv/jekyll && jekyll build --future" From bb2e52381321e9dc378c95c7495436fec596e0f1 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez Date: Sat, 12 Apr 2025 17:53:29 -0400 Subject: [PATCH 02/21] Create config.yml --- .github/config.yml | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 .github/config.yml diff --git a/.github/config.yml b/.github/config.yml new file mode 100644 index 00000000..5990d9c6 --- /dev/null +++ b/.github/config.yml @@ -0,0 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file + +version: 2 +updates: + - package-ecosystem: "" # See documentation for possible values + directory: "/" # Location of package manifests + schedule: + interval: "weekly" From dc7144d6f86af2e842256dae363592495baa041f Mon Sep 17 00:00:00 2001 From: Adonis Jimenez Date: Sat, 12 Apr 2025 17:54:19 -0400 Subject: [PATCH 03/21] Create codeql.yml --- .github/workflows/codeql.yml | 102 +++++++++++++++++++++++++++++++++++ 1 file changed, 102 insertions(+) create mode 100644 .github/workflows/codeql.yml diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 00000000..e9c1472e --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,102 @@ +# For most projects, this workflow file will not need changing; you simply need +# to commit it to your repository. +# +# You may wish to alter this file to override the set of languages analyzed, +# or to provide custom queries or build logic. +# +# ******** NOTE ******** +# We have attempted to detect the languages in your repository. Please check +# the `language` matrix defined below to confirm you have the correct set of +# supported CodeQL languages. +# +name: "CodeQL Advanced" + +on: + push: + branches: [ "gh-pages" ] + pull_request: + branches: [ "gh-pages" ] + schedule: + - cron: '25 1 * * 5' + +jobs: + analyze: + name: Analyze (${{ matrix.language }}) + # Runner size impacts CodeQL analysis time. To learn more, please see: + # - https://gh.io/recommended-hardware-resources-for-running-codeql + # - https://gh.io/supported-runners-and-hardware-resources + # - https://gh.io/using-larger-runners (GitHub.com only) + # Consider using larger runners or machines with greater resources for possible analysis time improvements. + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} + permissions: + # required for all workflows + security-events: write + + # required to fetch internal or private CodeQL packs + packages: read + + # only required for workflows in private repositories + actions: read + contents: read + + strategy: + fail-fast: false + matrix: + include: + - language: actions + build-mode: none + - language: javascript-typescript + build-mode: none + - language: ruby + build-mode: none + # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' + # Use `c-cpp` to analyze code written in C, C++ or both + # Use 'java-kotlin' to analyze code written in Java, Kotlin or both + # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both + # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis, + # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning. + # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how + # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + # Add any setup steps before running the `github/codeql-action/init` action. + # This includes steps like installing compilers or runtimes (`actions/setup-node` + # or others). This is typically only required for manual builds. + # - name: Setup runtime (example) + # uses: actions/setup-example@v1 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + build-mode: ${{ matrix.build-mode }} + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + + # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs + # queries: security-extended,security-and-quality + + # If the analyze step fails for one of the languages you are analyzing with + # "We were unable to automatically build your code", modify the matrix above + # to set the build mode to "manual" for that language. Then modify this step + # to build your code. + # â„šī¸ Command-line programs to run using the OS shell. + # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun + - if: matrix.build-mode == 'manual' + shell: bash + run: | + echo 'If you are using a "manual" build mode for one or more of the' \ + 'languages you are analyzing, replace this with the commands to build' \ + 'your code, for example:' + echo ' make bootstrap' + echo ' make release' + exit 1 + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: "/language:${{matrix.language}}" From fb9b7efe2b0db951f403696d8a14ed0fc169d747 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez Date: Sat, 12 Apr 2025 18:01:04 -0400 Subject: [PATCH 04/21] Create npm-publish-github-packages.yml Signed-off-by: Adonis Jimenez --- .../workflows/npm-publish-github-packages.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 .github/workflows/npm-publish-github-packages.yml diff --git a/.github/workflows/npm-publish-github-packages.yml b/.github/workflows/npm-publish-github-packages.yml new file mode 100644 index 00000000..ea2d329f --- /dev/null +++ b/.github/workflows/npm-publish-github-packages.yml @@ -0,0 +1,36 @@ +# This workflow will run tests using node and then publish a package to GitHub Packages when a release is created +# For more information see: https://docs.github.com/en/actions/publishing-packages/publishing-nodejs-packages + +name: Node.js Package + +on: + release: + types: [created] + +jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 + with: + node-version: 20 + - run: npm ci + - run: npm test + + publish-gpr: + needs: build + runs-on: ubuntu-latest + permissions: + contents: read + packages: write + steps: + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 + with: + node-version: 20 + registry-url: https://npm.pkg.github.com/ + - run: npm ci + - run: npm publish + env: + NODE_AUTH_TOKEN: ${{secrets.GITHUB_TOKEN}} From c7d60bc98c8300266f98454451c9ed8bd620ff1d Mon Sep 17 00:00:00 2001 From: Adonis Jimenez Date: Sat, 12 Apr 2025 18:03:05 -0400 Subject: [PATCH 05/21] Update issue templates --- .github/ISSUE_TEMPLATE/bug_report.md | 38 ++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 .github/ISSUE_TEMPLATE/bug_report.md diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md new file mode 100644 index 00000000..dd84ea78 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/bug_report.md @@ -0,0 +1,38 @@ +--- +name: Bug report +about: Create a report to help us improve +title: '' +labels: '' +assignees: '' + +--- + +**Describe the bug** +A clear and concise description of what the bug is. + +**To Reproduce** +Steps to reproduce the behavior: +1. Go to '...' +2. Click on '....' +3. Scroll down to '....' +4. See error + +**Expected behavior** +A clear and concise description of what you expected to happen. + +**Screenshots** +If applicable, add screenshots to help explain your problem. + +**Desktop (please complete the following information):** + - OS: [e.g. iOS] + - Browser [e.g. chrome, safari] + - Version [e.g. 22] + +**Smartphone (please complete the following information):** + - Device: [e.g. iPhone6] + - OS: [e.g. iOS8.1] + - Browser [e.g. stock browser, safari] + - Version [e.g. 22] + +**Additional context** +Add any other context about the problem here. From 5f7d6d6087d49355d410e9c78725e59f01724125 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 18:48:35 -0400 Subject: [PATCH 06/21] Create secure-flow Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/secure-flow | 102 ++++++++++++++++++++++++++++++++++ 1 file changed, 102 insertions(+) create mode 100644 .github/workflows/secure-flow diff --git a/.github/workflows/secure-flow b/.github/workflows/secure-flow new file mode 100644 index 00000000..8713932d --- /dev/null +++ b/.github/workflows/secure-flow @@ -0,0 +1,102 @@ +# For most projects, this workflow file will not need changing; you simply need +# to commit it to your repository. +# +# You may wish to alter this file to override the set of languages analyzed, +# or to provide custom queries or build logic. +# +# ******** NOTE ******** +# We have attempted to detect the languages in your repository. Please check +# the `language` matrix defined below to confirm you have the correct set of +# supported CodeQL languages. +# +name: "CodeQL Advanced" + +on: + push: + branches: [ "gh-pages" ] + pull_request: + branches: [ "gh-pages" ] + schedule: + - cron: '42 1 * * 3' + +jobs: + analyze: + name: Analyze (${{ matrix.language }}) + # Runner size impacts CodeQL analysis time. To learn more, please see: + # - https://gh.io/recommended-hardware-resources-for-running-codeql + # - https://gh.io/supported-runners-and-hardware-resources + # - https://gh.io/using-larger-runners (GitHub.com only) + # Consider using larger runners or machines with greater resources for possible analysis time improvements. + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} + permissions: + # required for all workflows + security-events: write + + # required to fetch internal or private CodeQL packs + packages: read + + # only required for workflows in private repositories + actions: read + contents: read + + strategy: + fail-fast: false + matrix: + include: + - language: actions + build-mode: none + - language: javascript-typescript + build-mode: none + - language: ruby + build-mode: none + # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' + # Use `c-cpp` to analyze code written in C, C++ or both + # Use 'java-kotlin' to analyze code written in Java, Kotlin or both + # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both + # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis, + # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning. + # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how + # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + # Add any setup steps before running the `github/codeql-action/init` action. + # This includes steps like installing compilers or runtimes (`actions/setup-node` + # or others). This is typically only required for manual builds. + # - name: Setup runtime (example) + # uses: actions/setup-example@v1 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + build-mode: ${{ matrix.build-mode }} + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + + # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs + # queries: security-extended,security-and-quality + + # If the analyze step fails for one of the languages you are analyzing with + # "We were unable to automatically build your code", modify the matrix above + # to set the build mode to "manual" for that language. Then modify this step + # to build your code. + # â„šī¸ Command-line programs to run using the OS shell. + # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun + - if: matrix.build-mode == 'manual' + shell: bash + run: | + echo 'If you are using a "manual" build mode for one or more of the' \ + 'languages you are analyzing, replace this with the commands to build' \ + 'your code, for example:' + echo ' make bootstrap' + echo ' make release' + exit 1 + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: "/language:${{matrix.language}}" From 83fb9fb655bb6f388b42113392fd9f7c1699646d Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 18:52:05 -0400 Subject: [PATCH 07/21] Update _config.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- _config.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/_config.yml b/_config.yml index f8cf0b94..818cfc6b 100644 --- a/_config.yml +++ b/_config.yml @@ -1,4 +1,5 @@ -# Site settings +# Site- name: Attest Build Provenance + uses: actions/attest-build-provenance@v2.2.3 settings title: Development containers description: > Development containers documentation and specification page. From e579364b68cd1d9ba17874f6d3740b9c006b0026 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:01:30 -0400 Subject: [PATCH 08/21] Update _config.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- _config.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/_config.yml b/_config.yml index 818cfc6b..715eb401 100644 --- a/_config.yml +++ b/_config.yml @@ -1,4 +1,5 @@ -# Site- name: Attest Build Provenance +# S- name: Cache + uses: actions/cache@v4.2.3ite- name: Attest Build Provenance uses: actions/attest-build-provenance@v2.2.3 settings title: Development containers description: > From 12efb51e59a5af59f837dacdcb45ad4a88fb0794 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:02:11 -0400 Subject: [PATCH 09/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 68ffc767..fe0a4660 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -1,3 +1,5 @@ +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From ab907050fdc176b616279cab7296c836bd7babe8 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:02:42 -0400 Subject: [PATCH 10/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index fe0a4660..14554358 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -1,3 +1,5 @@ +- name: Cache + uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 name: Jekyll site CI From a5fc5ddaa443a74e9b8d9c8ad525b28db9d6db13 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:03:03 -0400 Subject: [PATCH 11/21] Update publish.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/publish.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 858414d1..d6054bb0 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -1,3 +1,5 @@ +- name: Cache + uses: actions/cache@v4.2.3 name: Publish to GitHub Pages on: From aa165dfa28aa2007db4856f6bdaca7210fb9d714 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:03:27 -0400 Subject: [PATCH 12/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 14554358..ea6912aa 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -2,6 +2,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From 5fd436fa431d84773dbbde34bcb15d833ed9661f Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:04:01 -0400 Subject: [PATCH 13/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index ea6912aa..67b60db2 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -4,6 +4,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From f6f4dad587fd2a70f3acb974574c33e7636aa1e5 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:04:27 -0400 Subject: [PATCH 14/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 67b60db2..6bf30fda 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -6,6 +6,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From 7d314e6caf701027dc19cd7f8272f5e864be8325 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:05:03 -0400 Subject: [PATCH 15/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 6bf30fda..8d92501e 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -8,6 +8,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From e83e9126dd4c5d8135694dedb184767b1c11a8ac Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:05:28 -0400 Subject: [PATCH 16/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 8d92501e..91bc89a0 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -10,6 +10,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From f1e48786acc280237a119956e66fd5c497bad953 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:05:59 -0400 Subject: [PATCH 17/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 91bc89a0..79f9a14c 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -12,6 +12,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From 4b34358495c1118c42fb0c5f6573fa411382e886 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:06:26 -0400 Subject: [PATCH 18/21] Update jekyll-docker.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/jekyll-docker.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/jekyll-docker.yml b/.github/workflows/jekyll-docker.yml index 79f9a14c..d74d7f67 100644 --- a/.github/workflows/jekyll-docker.yml +++ b/.github/workflows/jekyll-docker.yml @@ -14,6 +14,8 @@ uses: actions/cache@v4.2.3 - name: Cache uses: actions/cache@v4.2.3 +- name: Cache + uses: actions/cache@v4.2.3 name: Jekyll site CI on: From 8eecf52a84fcc5aeff8d6f2456e60e2861b9db43 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Sat, 12 Apr 2025 19:07:03 -0400 Subject: [PATCH 19/21] Update codeql.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/codeql.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index e9c1472e..26c153cb 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -1,3 +1,5 @@ +- name: Cache + uses: actions/cache@v4.2.3 # For most projects, this workflow file will not need changing; you simply need # to commit it to your repository. # From 15f2b4e47c9f448bd310e293efe24368c79c8bb4 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Fri, 18 Apr 2025 10:05:11 -0400 Subject: [PATCH 20/21] Update _config.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- _config.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/_config.yml b/_config.yml index 715eb401..4a7a67e7 100644 --- a/_config.yml +++ b/_config.yml @@ -1,4 +1,5 @@ -# S- name: Cache +- name: Setup Node.js environment + uses: actions/setup-node@v4.4.0# S- name: Cache uses: actions/cache@v4.2.3ite- name: Attest Build Provenance uses: actions/attest-build-provenance@v2.2.3 settings title: Development containers From 8a8965147672b788e774ad7cde37c5bb0afa34a3 Mon Sep 17 00:00:00 2001 From: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> Date: Fri, 18 Apr 2025 10:07:35 -0400 Subject: [PATCH 21/21] Update codeql.yml Signed-off-by: Adonis Jimenez <198886012+adonisjimenezzz@users.noreply.github.com> --- .github/workflows/codeql.yml | 25 ++++++++++++++++++++++++- 1 file changed, 24 insertions(+), 1 deletion(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 26c153cb..b5a4dc67 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -1,4 +1,27 @@ -- name: Cache + - name: Setup Node.js environment + uses: actions/setup-node@v3.9.1 + with: + # Set always-auth in npmrc. + always-auth: # optional, default is false + # Version Spec of the version to use. Examples: 12.x, 10.15.1, >=10.15.0. + node-version: # optional + # File containing the version Spec of the version to use. Examples: .nvmrc, .node-version, .tool-versions. + node-version-file: # optional + # Target architecture for Node to use. Examples: x86, x64. Will use system architecture by default. + architecture: # optional + # Set this option if you want the action to check for the latest available version that satisfies the version spec. + check-latest: # optional + # Optional registry to set up for auth. Will set the registry in a project level .npmrc and .yarnrc file, and set up auth to read in from env.NODE_AUTH_TOKEN. + registry-url: # optional + # Optional scope for authenticating against scoped registries. Will fall back to the repository owner when using the GitHub Packages registry (https://npm.pkg.github.com/). + scope: # optional + # Used to pull node distributions from node-versions. Since there's a default, this is typically not supplied by the user. When running this action on github.com, the default value is sufficient. When running on GHES, you can pass a personal access token for github.com if you are experiencing rate limiting. + token: # optional, default is ${{ github.server_url == 'https://github.com' && github.token || '' }} + # Used to specify a package manager for caching in the default directory. Supported values: npm, yarn, pnpm. + cache: # optional + # Used to specify the path to a dependency file: package-lock.json, yarn.lock, etc. Supports wildcards or a list of file names for caching multiple dependencies. + cache-dependency-path: # optional + - name: Cache uses: actions/cache@v4.2.3 # For most projects, this workflow file will not need changing; you simply need # to commit it to your repository.