Robby Russell
6afcbc0ad5
docs: add AI disclosure checkbox to PR template
...
Add checkbox to encourage contributors to disclose AI tool usage
(ChatGPT, Claude, Gemini, etc.) in their pull requests, complementing
the new AI usage policy in CONTRIBUTING.md.
Co-Authored-By: Claude <noreply@anthropic.com>
2026-01-16 11:53:14 -08:00
dependabot[bot]
6634f44826
chore(deps): bump urllib3 in /.github/workflows/dependencies ( #13506 )
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 2.6.2 to 2.6.3.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/2.6.2...2.6.3 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-version: 2.6.3
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 09:28:11 +01:00
ohmyzsh[bot]
2daffdf101
chore(kube-ps1): update to 0b0e6daf ( #13503 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2026-01-05 13:07:40 +01:00
Carlo Sala
28d4ab6e98
ci(deps): add GH_TOKEN to GitHub API requests ( #13502 )
2026-01-05 12:36:14 +01:00
Tom Parker-Shemilt
72625e2f2f
ci(deps): add kube-ps1 to dependencies ( #13283 )
...
Co-authored-by: Carlo Sala <carlosalag@protonmail.com>
2026-01-05 11:41:34 +01:00
dependabot[bot]
d23d3ea69f
chore(deps): bump certifi in /.github/workflows/dependencies ( #13499 )
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2025.11.12 to 2026.1.4.
- [Commits](https://github.com/certifi/python-certifi/compare/2025.11.12...2026.01.04 )
---
updated-dependencies:
- dependency-name: certifi
dependency-version: 2026.1.4
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-04 21:50:31 +01:00
dependabot[bot]
3a73094983
chore(deps): bump github/codeql-action from 4.31.8 to 4.31.9 ( #13486 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.8 to 4.31.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b168cd394...5d4e8d1aca
2025-12-21 14:07:16 +01:00
dependabot[bot]
7192af5239
chore(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 ( #13480 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 11:07:43 +01:00
dependabot[bot]
1fee750c3b
chore(deps): bump step-security/harden-runner from 2.13.3 to 2.14.0 ( #13483 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 09:59:52 +01:00
dependabot[bot]
57781231bb
chore(deps): bump urllib3 in /.github/workflows/dependencies ( #13482 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 09:59:27 +01:00
dependabot[bot]
a4e15fdb16
chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8 ( #13481 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 09:57:41 +01:00
dependabot[bot]
ddec79ad43
chore(deps): bump actions/checkout from 6.0.0 to 6.0.1 ( #13468 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](1af3b93b68...8e8c483db8
2025-12-07 18:39:14 +01:00
dependabot[bot]
0ebeae78d0
chore(deps): bump actions/create-github-app-token from 2.2.0 to 2.2.1 ( #13470 )
...
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token ) from 2.2.0 to 2.2.1.
- [Release notes](https://github.com/actions/create-github-app-token/releases )
- [Commits](7e473efe3c...29824e69f5
2025-12-07 18:38:44 +01:00
dependabot[bot]
3b66f643e4
chore(deps): bump step-security/harden-runner from 2.13.2 to 2.13.3 ( #13471 )
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.13.2 to 2.13.3.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](95d9a5deda...df199fb7be
2025-12-07 18:38:26 +01:00
dependabot[bot]
953f526dea
chore(deps): bump github/codeql-action from 4.31.5 to 4.31.7 ( #13469 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.5 to 4.31.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fdbfb4d275...cf1bb45a27
2025-12-07 18:38:05 +01:00
dependabot[bot]
1b4497fc8f
chore(deps): bump urllib3 in /.github/workflows/dependencies ( #13464 )
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/2.5.0...2.6.0 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-version: 2.6.0
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-06 09:06:29 +01:00
Marc Cornellà
e9fc134236
ci(dependencies): update job permissions, change commits to chore ( #13457 )
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
2025-12-01 11:22:14 +01:00
Carlo Sala
ca5c467db1
fix(dependencies): only open PR if there are relevant changes ( #13454 )
...
Fixes cases like #13453
2025-12-01 09:59:09 +01:00
dependabot[bot]
a449c0247d
chore(deps): bump actions/setup-python from 6.0.0 to 6.1.0 ( #13455 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 6.0.0 to 6.1.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](e797f83bcb...83679a892e
2025-11-30 16:29:07 +01:00
dependabot[bot]
343c5a83cb
chore(deps): bump github/codeql-action from 4.31.4 to 4.31.5 ( #13456 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.4 to 4.31.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e12f017898...fdbfb4d275
2025-11-30 16:28:47 +01:00
dependabot[bot]
beadd56dd7
chore(deps): bump actions/create-github-app-token from 2.1.4 to 2.2.0 ( #13440 )
...
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token ) from 2.1.4 to 2.2.0.
- [Release notes](https://github.com/actions/create-github-app-token/releases )
- [Commits](6701853927...7e473efe3c
2025-11-23 22:37:35 +01:00
dependabot[bot]
0116e7a5af
chore(deps): bump github/codeql-action from 4.31.3 to 4.31.4 ( #13439 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.3 to 4.31.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](014f16e7ab...e12f017898
2025-11-23 22:36:07 +01:00
dependabot[bot]
441299ca77
chore(deps): bump actions/checkout from 5.0.0 to 6.0.0 ( #13438 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](08c6903cd8...1af3b93b68
2025-11-23 22:35:53 +01:00
dependabot[bot]
8a4d6fc0a2
chore(deps): bump github/codeql-action from 4.31.2 to 4.31.3 ( #13430 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.2 to 4.31.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0499de31b9...014f16e7ab
2025-11-16 09:09:09 -03:00
dependabot[bot]
73d79fe137
chore(deps): bump certifi in /.github/workflows/dependencies ( #13431 )
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2025.10.5 to 2025.11.12.
- [Commits](https://github.com/certifi/python-certifi/compare/2025.10.05...2025.11.12 )
---
updated-dependencies:
- dependency-name: certifi
dependency-version: 2025.11.12
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-16 09:08:43 -03:00
dependabot[bot]
18d0a63df8
chore(deps): bump step-security/harden-runner from 2.13.1 to 2.13.2 ( #13414 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-09 20:03:00 +01:00
ohmyzsh[bot]
e70086a76a
feat(gradle): update to a9d7c822 ( #13413 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2025-11-09 07:48:59 +01:00
ohmyzsh[bot]
90a22b61e6
feat(gradle): update to 25c3d368 ( #13407 )
...
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2025-11-03 08:30:05 +01:00
dependabot[bot]
423e9aef52
chore(deps): bump github/codeql-action from 4.31.0 to 4.31.2 ( #13408 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.0 to 4.31.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4e94bd11f7...0499de31b9
2025-11-03 08:29:39 +01:00
Marc Cornellà
1dc87da9e6
chore: tidy funding ( #13401 )
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
2025-10-29 11:46:31 -07:00
dependabot[bot]
829b8fdea4
chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 ( #13395 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-26 06:17:45 -07:00
dependabot[bot]
279e91e132
chore(deps): bump github/codeql-action from 4.30.9 to 4.31.0 ( #13394 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-26 06:16:55 -07:00
ohmyzsh[bot]
969cd28e0d
chore(gradle): update completion to 1525cf3f ( #13393 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2025-10-26 08:56:26 +01:00
ohmyzsh[bot]
55aa4c40e2
feat(gradle): update to d51199b5 ( #13390 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2025-10-23 05:23:50 -07:00
Carlo Sala
38423b4b5c
ci(deps): ensure push permissions are available ( #13389 )
2025-10-23 05:16:17 -07:00
dependabot[bot]
ac92582961
chore(deps): bump charset-normalizer in /.github/workflows/dependencies ( #13378 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-21 11:33:03 +03:00
dependabot[bot]
1672a12704
chore(deps): bump github/codeql-action from 4.30.8 to 4.30.9 ( #13376 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-21 11:29:15 +03:00
dependabot[bot]
064f0c1d0a
chore(deps): bump idna in /.github/workflows/dependencies ( #13377 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-21 11:28:57 +03:00
dependabot[bot]
c5f64018ff
chore(deps): bump github/codeql-action from 3.30.6 to 4.30.8 ( #13364 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-13 11:57:33 +02:00
dependabot[bot]
c6482fa5be
chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 ( #13351 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-06 09:21:58 +02:00
dependabot[bot]
d4cb4f249c
chore(deps): bump certifi in /.github/workflows/dependencies ( #13353 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-06 09:21:45 +02:00
dependabot[bot]
182dfdf210
chore(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 ( #13352 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-06 09:21:34 +02:00
dependabot[bot]
9ac3b895d4
chore(deps): bump pyyaml in /.github/workflows/dependencies ( #13337 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 08:31:23 +02:00
dependabot[bot]
e7528a5b37
chore(deps): bump github/codeql-action from 3.30.3 to 3.30.5 ( #13336 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 08:27:53 +02:00
Marc Cornellà
242e2faa51
ci: improve security in project.yml workflow ( #13329 )
...
There is no inherent security vulnerability in the workflow, but there were
certain practices that increased latent risk. In this commit, we:
- Explicitly bind app token for each step that needs it, instead of setting it for
all steps after "Store app token"
- Refactor "classify" step, to not rely on files passed around, and instead uses
only awk script.
- Remove all instances of template injection within `run` scripts. There was nothing
dangerous, but the practice is unsafe.
- Sanitize all unwanted characters from PR plugin and theme names.
References: W2M1-06 W2M1-07
2025-09-27 20:00:50 +02:00
dependabot[bot]
58cba61465
chore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.2 ( #13322 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-22 10:50:59 +02:00
dependabot[bot]
b428e31770
chore(deps): bump actions/checkout from 4.3.0 to 5.0.0 ( #13323 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-22 10:50:42 +02:00
Carlo Sala
ddd77516ef
ci: add scorecard automatic update ( #13319 )
2025-09-19 17:55:16 +02:00
StepSecurity Bot
7f3d8a34e2
ci: Harden GitHub Actions [StepSecurity] ( #13318 )
2025-09-19 17:30:10 +02:00
dependabot[bot]
8c168e2662
chore(deps): bump actions/setup-python from 5 to 6 ( #13293 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-08 12:06:41 +08:00
