Justin Florentine
3927753f65
Github Actions Updates ( #6537 )
...
- Uses pull_request_target to make sure action definitions only come from main or release-*. This also allows them to escalate privs.
- All priv escalations moved as narrowly as possible. Typically this is only required to upload test results.
- All actions pinned to specific SHA versions. When updated, repository settings will need to be adjusted to allow it.
---------
Signed-off-by: Justin Florentine <justin+github@florentine.us>
10 months ago
Sally MacFarlane
7be3859dfe
only run non-privacy ATs ( #6526 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
10 months ago
Gabriel Fukushima
a35b05fe1b
Fix typo ( #6520 )
...
Signed-off-by: Gabriel Fukushima <gabrielfukushima@gmail.com>
10 months ago
Justin Florentine
9cb6600456
GitHub Actions CI/CD ( #6427 )
...
Implements a CI/CD pipeline using Github Actions, to replace the current CircleCI implementation.
https://wiki.hyperledger.org/pages/viewpage.action?pageId=80774216
---------
Signed-off-by: Justin Florentine <justin+github@florentine.us>
Signed-off-by: Gabriel Fukushima <gabrielfukushima@gmail.com>
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
Signed-off-by: jflo <justin+github@florentine.us>
Signed-off-by: RoboCopsGoneSock <158174948+RoboCopsGoneSock@users.noreply.github.com>
Signed-off-by: Danno Ferrin (shemnon) <danno.ferrin@shemnon.com>
Signed-off-by: Danno Ferrin <danno.ferrin@swirldslabs.com>
Signed-off-by: Karim Taam <karim.t2am@gmail.com>
Signed-off-by: Ameziane H <ameziane.hamlat@consensys.net>
Signed-off-by: ahamlat <ameziane.hamlat@consensys.net>
Signed-off-by: garyschulte <garyschulte@gmail.com>
Co-authored-by: Fabio Di Fabio <fabio.difabio@consensys.net>
Co-authored-by: Gabriel Fukushima <gabrielfukushima@gmail.com>
Co-authored-by: Sally MacFarlane <macfarla.github@gmail.com>
Co-authored-by: RoboCopsGoneSock <158174948+RoboCopsGoneSock@users.noreply.github.com>
Co-authored-by: Danno Ferrin <danno.ferrin@shemnon.com>
Co-authored-by: Karim TAAM <karim.t2am@gmail.com>
Co-authored-by: garyschulte <garyschulte@gmail.com>
10 months ago
Fabio Di Fabio
1a7244f808
Update Gradle plugins and replace unmaintained license plugin ( #6275 )
...
Signed-off-by: Fabio Di Fabio <fabio.difabio@consensys.net>
11 months ago
Sally MacFarlane
43260023fd
update checkout action to v4 ( #6197 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
1 year ago
garyschulte
ad7bd960e2
move to Hyperledger shared runners for current github actions ( #5860 )
...
Signed-off-by: garyschulte <garyschulte@gmail.com>
1 year ago
Sally MacFarlane
db410621b0
PR checklist - remove checkbox for non-mainnet ATs ( #5514 )
...
* removed non-mainnetATs line
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
---------
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Ry Jones
81a2b88ef8
Update sonarcloud.yml ( #5419 )
2 years ago
Simon Dudley
06c38ed8fc
Add database compatibility to the PR checklist ( #5349 )
...
Signed-off-by: Simon Dudley <simon.dudley@consensys.net>
2 years ago
Justin Florentine
ad43d0d9e4
continue despite test failures ( #5274 )
...
* don't try to sonarqube on forks
* continue despite test failures
Signed-off-by: Justin Florentine <justin+github@florentine.us>
2 years ago
garyschulte
2c1db63927
fence repolinter docker action to prevent docker user from poisoning the filesystem permissions ( #5256 )
...
Signed-off-by: garyschulte <garyschulte@gmail.com>
2 years ago
garyschulte
5bd75b43ae
Cleanup after GHA docker user ( #5253 )
...
* cheaply attempt to cleanup after docker user
Signed-off-by: garyschulte <garyschulte@gmail.com>
2 years ago
Sally MacFarlane
48e2063fb7
[GHA] actions not required on merge group ( #5233 )
...
* no need to run codeql on merge group
* no need to run repolinter on merge group
* no need to run checks and gradle-wrapper on merge group
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
---------
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
garyschulte
a76e1f135f
use x86 for codeQL github action ( #5235 )
...
* use x86 for codeQL github action
* and spotless
* add javadoc_17 runs-on
Signed-off-by: garyschulte <garyschulte@gmail.com>
2 years ago
garyschulte
759697e20a
Mainnet AT reduce parallelism and self-hosted runners ( #5234 )
...
* reduce parallelism to 4
* use self-hosted runners
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
Signed-off-by: garyschulte <garyschulte@gmail.com>
2 years ago
Sally MacFarlane
57df469e0e
[GHA] Checklist action ( #5225 )
...
This GHA will add the checklist that's currently in the PR template, as
a comment, on newly opened PRs.
Because it needs write access (to add the comment), it needs to run on
the `pull_request_target` action, which means you won't see the outcome
on _this_ PR, but only once it's merged in, you'll see it on subsequent
PRs - example -
https://github.com/daisy-row/vigilant-octo-umbrella/pull/51
---------
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Sally MacFarlane
b2dccc89e2
add separate dco yml for merge_group event ( #5207 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Sally MacFarlane
15a9ca93de
no dco on merge_group ( #5204 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Sally MacFarlane
3dcedb5128
add merge_group action trigger ( #5132 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Justin Florentine
249a6f363e
Sonarcloud Analysis once a week. ( #5137 )
...
* fixing the sonarcloud building in gha
* update to temurin 17
* adds checksums on sonarqube plugins
* ignore generated for spdx
* runs at midnight Tuesday mornings UTC
---------
Signed-off-by: Joshua Fernandes <joshua.fernandes@consensys.net>
Signed-off-by: Justin Florentine <justin+github@florentine.us>
Co-authored-by: Joshua Fernandes <joshua.fernandes@consensys.net>
2 years ago
Ry Jones
ab576d6eed
Update to Java 17 ( #5110 )
...
Signed-off-by: Ry Jones <ry@linux.com>
2 years ago
Usman Saleem
e18e407c4e
Use Java 17 to build and run Besu ( #4977 )
...
Update following sections:
Gradle build, CircleCI, GitHub Actions, Docker
The devp2p TLS mutual authentication unit tests dealing with PKCS11+nss and QBFT+PKCS11+nss ATs were failing on Java 17 when dealing with RSA keys. The unit tests and AT are updated to use EC keys instead. The keystores, truststores, CRL etc. involved in those ATs are regenerated and detailed instructions are provided on how they are created.
Signed-off-by: Usman Saleem <usman@usmans.info>
2 years ago
Usman Saleem
9eb32836b7
Fix javadocs to allow build to pass in JDK 17 ( #4834 )
...
- Added missing javadocs so that javadoc doclint passes against JDK 17 (invoke by Besu gradle build).
- Exclude following packages from javadoc lint:
org.hyperledger.besu.privacy.contracts.generated
org.hyperledger.besu.tests.acceptance.*
- Temporarily exclude ethereum and evm submodule for doc lint checks.
- Run the javadoc task using GitHub actions (use Java 17) to report any javadoc errors during the PR builds
- Updating plugin-api build.gradle with new hash as javadoc comments caused it to change
Signed-off-by: Usman Saleem <usman@usmans.info>
2 years ago
Sally MacFarlane
083b5d1e9b
rollback dco on push ( #4855 )
...
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Sally MacFarlane
fa9f99d283
DCO check on main ( #4847 )
...
* run dco on push to main
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
* release branches
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
* add test-dco* branch
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>
2 years ago
Jason Frame
b29cc88e46
Fix docker release workflow login ( #4826 )
...
Signed-off-by: Jason Frame <jason.frame@consensys.net>
2 years ago
Jason Frame
1c59bdc7d8
Docker release task for latest tags ( #4810 )
...
Signed-off-by: Jason Frame <jason.frame@consensys.net>
2 years ago
Jason Frame
1205e3a6f0
Docker release builds to no longer add latest tag ( #4791 )
...
Signed-off-by: Jason Frame <jason.frame@consensys.net>
Co-authored-by: Justin Florentine <justin+github@florentine.us>
2 years ago
Antoine Toulme
f838572ec8
separate dco from spotless, make dco only run for pull requests. Run on workflow dispatch on demand ( #4165 )
...
Signed-off-by: Antoine Toulme <antoine@lunar-ocean.com>
Co-authored-by: Sally MacFarlane <sally.macfarlane@consensys.net>
2 years ago
Antoine Toulme
b7cea68d65
move some easy build jobs (DCO, Spotless) over to github ( #4161 )
...
Signed-off-by: Antoine Toulme <antoine@lunar-ocean.com>
2 years ago
Danno Ferrin
d0c71c3bdc
Remove Sonar Integration ( #4135 )
...
Sonar has been removed from the build workflow. This PR removes all
configuration and code markings that were used to facilitate it.
Signed-off-by: Danno Ferrin <danno.ferrin@gmail.com>
2 years ago
Joshua Fernandes
c0631cf2b1
Create sonarcloud.yml ( #3967 )
...
* Create sonarcloud.yml
Signed-off-by: Joshua Fernandes <joshua.fernandes@consensys.net>
2 years ago
Sally MacFarlane
834d13d8b3
Attempt to fix CodeQL OOM ( #3877 )
...
Signed-off-by: Sally MacFarlane <sally.macfarlane@consensys.net>
3 years ago
Joshua Fernandes
57c71fdb10
adding codeql to besu to check for quality ( #3774 )
...
Signed-off-by: Joshua Fernandes <joshua.fernandes@consensys.net>
Co-authored-by: Sally MacFarlane <sally.macfarlane@consensys.net>
3 years ago
Adrian Sutton
c2e5fcb905
Add GitHub action to verify gradle-wrapper.jar ( #3503 )
...
Checks that the gradle wrapper jar is from an official release.
See https://github.com/gradle/wrapper-validation-action for more details.
Signed-off-by: Adrian Sutton <adrian.sutton@consensys.net>
3 years ago
Danno Ferrin
5e0301a749
Update Repo for `main` branch ( #2608 )
...
Switch from `master` to `main` for the default branch
* Update CircleCI configuration
* Update Gradle snapshot detection
* Update issue templates
Signed-off-by: Danno Ferrin <danno.ferrin@gmail.com>
3 years ago
Ry Jones
f2e6f845f2
Update repolinter.yml ( #2083 )
...
Use current container image
Remove step which saves results to a file
Signed-off-by: Ry Jones <ry@linux.com>
4 years ago
Ry Jones
efc80e460b
Update Repolinter action ( #2053 )
...
Saves report for download
Allows manual running
Signed-off-by: Ry Jones <ry@linux.com>
4 years ago
Danno Ferrin
cfb01ab4b6
Repolinter ( #2016 )
...
Add Hyperledger standard Repolinter github action.
Signed-off-by: Danno Ferrin <danno.ferrin@gmail.com>
4 years ago