From 0bceab11143234d49c529e6639ae0df5f5c78e2e Mon Sep 17 00:00:00 2001 From: Merlin Unterfinger <info@munterfinger.ch> Date: Fri, 31 May 2024 13:50:35 +0200 Subject: [PATCH 1/4] FIX: NAV-72 - Fix docker publish action --- .github/workflows/docker-publish.yml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index e8f59400..ec29211c 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -16,7 +16,9 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up environment variables - run: echo "IMAGE_TAG=ghcr.io/${{ github.repository_owner }}/${{ github.repository }}:${{ github.event.release.tag_name }}" >> $GITHUB_ENV + run: | + GIT_TAG=${GITHUB_REF#refs/tags/} + echo "IMAGE_TAG=ghcr.io/${{ github.repository_owner }}/${{ github.repository }}:$GIT_TAG" >> $GITHUB_ENV - name: Login to ghcr run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }} --password-stdin From eacd80549e36a14a0a6381e0558953f2edd79a10 Mon Sep 17 00:00:00 2001 From: Merlin Unterfinger <info@munterfinger.ch> Date: Fri, 31 May 2024 13:53:33 +0200 Subject: [PATCH 2/4] ORG: NAV-72 - Dependabot uses only stable versions --- .github/dependabot.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index dd34c79a..7e506551 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,11 +1,11 @@ -# To get started with Dependabot version updates, you'll need to specify which -# package ecosystems to update and where the package manifests are located. -# Please see the documentation for all configuration options: -# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file - version: 2 updates: - package-ecosystem: "maven" directory: "/" # Location of package manifests schedule: interval: "daily" + versioning-strategy: increase + allow: + - dependency-type: direct + ignore: + - versions: [ "-alpha", "-beta", "-rc", "-SNAPSHOT" ] From 15d71d6101444a456958afec27f46a0c36678236 Mon Sep 17 00:00:00 2001 From: Merlin Unterfinger <info@munterfinger.ch> Date: Fri, 31 May 2024 13:56:11 +0200 Subject: [PATCH 3/4] ORG: NAV-72 - Dependabot uses only stable versions, second try --- .github/dependabot.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 7e506551..b4692116 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -4,8 +4,8 @@ updates: directory: "/" # Location of package manifests schedule: interval: "daily" - versioning-strategy: increase allow: - dependency-type: direct ignore: - - versions: [ "-alpha", "-beta", "-rc", "-SNAPSHOT" ] + - dependency-name: "*" + versions: [ "-alpha", "-beta", "-rc", "-SNAPSHOT" ] From a0f514280811467a59639c77cbd39c4078d19199 Mon Sep 17 00:00:00 2001 From: Merlin Unterfinger <info@munterfinger.ch> Date: Fri, 31 May 2024 13:59:00 +0200 Subject: [PATCH 4/4] ORG: NAV-72 - Dependabot uses only stable versions, rollback --- .github/dependabot.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index b4692116..b03a8fbc 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,11 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file + version: 2 updates: - package-ecosystem: "maven" directory: "/" # Location of package manifests schedule: - interval: "daily" - allow: - - dependency-type: direct - ignore: - - dependency-name: "*" - versions: [ "-alpha", "-beta", "-rc", "-SNAPSHOT" ] + interval: "daily" \ No newline at end of file