github/containerd
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
14,415 Commits 3 Branches 4 Tags
d3ff3e2ff5ea1343158fe64f0926b06264ee15b0
Commit Graph

507 Commits

Author SHA1 Message Date
Akihiro Suda
d3ff3e2ff5 CI: move crun from Ubuntu to Fedora 
crun is usually used on Fedora, RHEL, and similar distros.
So it makes more sense to run crun tests on Fedora.

Ubuntu jobs are removed, because inflating the number of the jobs will result
in making the flakiness rate much worse.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-10-24 17:56:08 +09:00
Akihiro Suda
1d98bad427 Merge pull request #10872 from containerd/dependabot/github_actions/azure/CLI-2.1.0 
build(deps): bump azure/CLI from 1.0.9 to 2.1.0
 2024-10-23 01:09:18 +09:00
Akihiro Suda
1992917779 Merge pull request #10870 from containerd/dependabot/github_actions/actions/upload-artifact-4.4.3 
build(deps): bump actions/upload-artifact from 4.1.0 to 4.4.3
 2024-10-22 14:54:58 +00:00
Derek McGowan
7663dba25f Merge pull request #10869 from containerd/dependabot/github_actions/github/codeql-action-3.26.13 
build(deps): bump github/codeql-action from 3.24.0 to 3.26.13
 2024-10-22 13:52:09 +00:00
dependabot[bot]
03860c208e build(deps): bump azure/CLI from 1.0.9 to 2.1.0 
Bumps [azure/CLI](https://github.com/azure/cli) from 1.0.9 to 2.1.0.
- [Release notes](https://github.com/azure/cli/releases)
- [Changelog](https://github.com/Azure/cli/blob/master/ReleaseProcess.md)
- [Commits](4db43908b9...089eac9d8c)

---
updated-dependencies:
- dependency-name: azure/CLI
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-21 23:08:08 +00:00
dependabot[bot]
cf7218fb07 build(deps): bump actions/checkout from 4.1.1 to 4.2.1 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.1 to 4.2.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4.1.1...eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-21 23:08:00 +00:00
dependabot[bot]
78ec6ef026 build(deps): bump actions/upload-artifact from 4.1.0 to 4.4.3 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.1.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4.1.0...b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-21 23:07:56 +00:00
dependabot[bot]
bfe8fa3309 build(deps): bump github/codeql-action from 3.24.0 to 3.26.13 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.0 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v3.24.0...f779452ac5af1c261dce0346a8f964149f49322b)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-21 23:07:51 +00:00
dependabot[bot]
4f2bc1580b build(deps): bump lycheeverse/lychee-action from 1.10.0 to 2.0.2 
Bumps [lycheeverse/lychee-action](https://github.com/lycheeverse/lychee-action) from 1.10.0 to 2.0.2.
- [Release notes](https://github.com/lycheeverse/lychee-action/releases)
- [Commits](https://github.com/lycheeverse/lychee-action/compare/v1.10.0...v2.0.2)

---
updated-dependencies:
- dependency-name: lycheeverse/lychee-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-16 07:55:51 +00:00
StepSecurity Bot
bff82e1968 [StepSecurity] ci: Harden GitHub Actions 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
 2024-10-16 05:53:03 +00:00
Akihiro Suda
1db0064c6a CI: install OVMF for Vagrant 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-10-12 05:19:09 +09:00
Akihiro Suda
4d02217b5e CI: fix "Unable to find a source package for vagrant" error 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-10-12 05:19:08 +09:00
Akihiro Suda
38beeb359a Revert "use vagrant from jammy in noble" 
This reverts commit 1bfdccee09.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-10-12 05:19:08 +09:00
Akihiro Suda
e2daa20ed5 Revert "use older version of OVMF package" 
This reverts commit c25183ff19.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-10-12 05:19:08 +09:00
Phil Estes
ee921689f7 Switch from actuated.dev to GH Action runners for arm64 
Signed-off-by: Phil Estes <estesp@amazon.com>
 2024-10-11 13:30:43 -04:00
Austin Vazquez
46f5a0d939 update to go1.23.2,go1.22.8 
Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2024-10-07 15:09:53 +00:00
Austin Vazquez
7b18098513 Update runner images to macOS13 
This change upgrades the runner images in CI to macOS 13. macOS 12
runners are being deprecated.

See https://github.com/actions/runner-images/issues/10721 for more
information.

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2024-10-07 01:31:05 +00:00
lengrongfu
095131abf9 add use systemd cgroup e2e 
Signed-off-by: lengrongfu <lenronfu@gmail.com>
Signed-off-by: rongfu.leng <lenronfu@gmail.com>
 2024-10-03 00:37:29 +08:00
Sebastiaan van Stijn
9037069da8 update to go1.23.1, go1.22.7 
- https://github.com/golang/go/issues?q=milestone%3AGo1.23.1+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.23.0...go1.23.1

These minor releases include 3 security fixes following the security policy:

- go/parser: stack exhaustion in all Parse* functions

    Calling any of the Parse functions on Go source code which contains
    deeply nested literals can cause a panic due to stack exhaustion.

    This is CVE-2024-34155 and Go issue https://go.dev/issue/69138.

- encoding/gob: stack exhaustion in Decoder.Decode

    Calling Decoder.Decode on a message which contains deeply nested
    structures can cause a panic due to stack exhaustion.

    This is a follow-up to CVE-2022-30635.

    Thanks to Md Sakib Anwar of The Ohio State University for reporting
    this issue.

    This is CVE-2024-34156 and Go issue https://go.dev/issue/69139.

- go/build/constraint: stack exhaustion in Parse

    Calling Parse on a "// +build" build tag line with deeply nested
    expressions can cause a panic due to stack exhaustion.

    This is CVE-2024-34158 and Go issue https://go.dev/issue/69141.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.23.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-09-06 16:12:28 +02:00
Akihiro Suda
ef1316efc1 Merge pull request #10642 from containerd/dependabot/github_actions/google-github-actions/upload-cloud-storage-2.2.0 
build(deps): bump google-github-actions/upload-cloud-storage from 2.1.3 to 2.2.0
 2024-09-03 16:24:15 +00:00
dependabot[bot]
bf5fc240b1 build(deps): bump google-github-actions/upload-cloud-storage 
Bumps [google-github-actions/upload-cloud-storage](https://github.com/google-github-actions/upload-cloud-storage) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/google-github-actions/upload-cloud-storage/releases)
- [Changelog](https://github.com/google-github-actions/upload-cloud-storage/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google-github-actions/upload-cloud-storage/compare/v2.1.3...v2.2.0)

---
updated-dependencies:
- dependency-name: google-github-actions/upload-cloud-storage
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-27 00:02:05 +00:00
Derek McGowan
a26a33c3d9 Merge pull request #10543 from vishalRGurrala/feature/generate-attestation-for-artifacts 
Generate attestation for artifacts during release CI job
 2024-08-26 23:36:04 +00:00
dependabot[bot]
429085c84d build(deps): bump google-github-actions/upload-cloud-storage 
Bumps [google-github-actions/upload-cloud-storage](https://github.com/google-github-actions/upload-cloud-storage) from 2.1.2 to 2.1.3.
- [Release notes](https://github.com/google-github-actions/upload-cloud-storage/releases)
- [Changelog](https://github.com/google-github-actions/upload-cloud-storage/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google-github-actions/upload-cloud-storage/compare/v2.1.2...v2.1.3)

---
updated-dependencies:
- dependency-name: google-github-actions/upload-cloud-storage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-19 23:20:08 +00:00
Akhil Mohan
20ee6de0b5 update golangci-lint to v1.60.1 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-08-14 12:40:37 +05:30
Akhil Mohan
fb8cd045b8 add go1.23.0 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-08-14 12:30:37 +05:30
dependabot[bot]
1de84c29f1 build(deps): bump google-github-actions/upload-cloud-storage 
Bumps [google-github-actions/upload-cloud-storage](https://github.com/google-github-actions/upload-cloud-storage) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/google-github-actions/upload-cloud-storage/releases)
- [Changelog](https://github.com/google-github-actions/upload-cloud-storage/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google-github-actions/upload-cloud-storage/compare/v2.1.1...v2.1.2)

---
updated-dependencies:
- dependency-name: google-github-actions/upload-cloud-storage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-12 23:07:43 +00:00
Kazuyoshi Kato
6b04c9dfac Merge pull request #10550 from containerd/dependabot/github_actions/google-github-actions/upload-cloud-storage-2.1.1 
build(deps): bump google-github-actions/upload-cloud-storage from 2.1.0 to 2.1.1
 2024-08-09 23:08:42 +00:00
Sebastiaan van Stijn
a100b055cb update to go1.22.6 
- https://github.com/golang/go/issues?q=milestone%3AGo1.22.6+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.22.5...go1.22.6

go1.22.6 (released 2024-08-06) includes fixes to the go command, the compiler,
the linker, the trace command, the covdata command, and the bytes, go/types,
and os/exec packages. See the Go 1.22.6 milestone on our issue tracker for
details.

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-08-09 17:02:18 +02:00
Vishal Reddy Gurrala
fc1637d16e Attest artifacts in release workflow 
Signed-off-by: Vishal Reddy Gurrala <vishalgurrala21@gmail.com>
 2024-08-05 20:54:34 -05:00
Vishal Reddy Gurrala
337d8c52c5 Update release job to generate artifacts attestation 
Signed-off-by: Vishal Reddy Gurrala <vishalgurrala21@gmail.com>
 2024-08-05 20:50:26 -05:00
dependabot[bot]
6814cc3549 build(deps): bump google-github-actions/upload-cloud-storage 
Bumps [google-github-actions/upload-cloud-storage](https://github.com/google-github-actions/upload-cloud-storage) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/google-github-actions/upload-cloud-storage/releases)
- [Changelog](https://github.com/google-github-actions/upload-cloud-storage/blob/main/CHANGELOG.md)
- [Commits](https://github.com/google-github-actions/upload-cloud-storage/compare/v2.1.0...v2.1.1)

---
updated-dependencies:
- dependency-name: google-github-actions/upload-cloud-storage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-05 23:17:47 +00:00
dependabot[bot]
71b5b34de0 build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](dc50aa9510...62b2cac7ed)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 23:04:31 +00:00
Derek McGowan
edd84f4a65 Add read permission limit on link workflow 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-07-15 07:05:34 -07:00
Akihiro Suda
cbb2fc78e9 Merge pull request #10436 from AkihiroSuda/fedora-40 
CI: update Fedora to 40
 2024-07-07 11:15:11 +00:00
Akihiro Suda
51f34ff491 CI: update Fedora to 40 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-07-04 23:50:35 +09:00
Akhil Mohan
56495b404d update go version to 1.22.5 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-07-03 11:55:48 +05:30
Akhil Mohan
9077968119 update release runners to ubuntu 24.04 
update all runners except the binary building job to ubuntu-24.04

Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-06-20 07:07:18 +05:30
Akhil Mohan
c25183ff19 use older version of OVMF package 
use ovmf 2022.02-3ubuntu0.22.04.2 so that the OVMF_CODE.fd which vagrant
looks for is still available

Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-06-19 22:28:03 +05:30
Akhil Mohan
1bfdccee09 use vagrant from jammy in noble 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-06-19 02:26:02 +05:30
Akhil Mohan
769e0c8c16 add debian sources for ubuntu-24 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-06-19 00:07:28 +05:30
Akhil Mohan
027414ee50 enable ubuntu 24 runners 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2024-06-19 00:07:27 +05:30
Derek McGowan
531da99606 Reduce scope of permissions in stale workflow 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-06-17 12:04:15 -07:00
Kohei Tokunaga
939135ae36 CI: golangci-lint v1.59.1 
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
 2024-06-11 20:17:35 +09:00
Akihiro Suda
08c1e12e9b CI: add back EL 8 
Add back EL 8 to test legacy compatibility

Follow-up to PR 10297

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-06-08 19:50:39 +09:00
Derek McGowan
1c123efb41 Update Go version to 1.22.4 
Includes fix for a symlink race on remove.
Updates 1.21 to 1.21.11 for runc install which also includes the
symlink fix.

Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-06-04 15:46:09 -07:00
Derek McGowan
e1e793e4ab Update rockylinux vagrant build 
Signed-off-by: Derek McGowan <derek@mcg.dev>
 2024-06-04 14:38:12 -07:00
Austin Vazquez
2d73340c2c Explicitly set release latest to false 
This change explicitly sets mainline releases as not latest.

Signed-off-by: Austin Vazquez <macedonv@amazon.com>
 2024-05-25 15:27:48 +00:00
Maksym Pavlenko
a673c3452a Merge pull request #10222 from containerd/dependabot/github_actions/ossf/scorecard-action-2.3.3 
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3
 2024-05-14 16:13:17 +00:00
dependabot[bot]
8b2a69c19a build(deps): bump golangci/golangci-lint-action from 5 to 6 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5 to 6.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-13 23:54:52 +00:00
dependabot[bot]
96ff18d37c build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](0864cf1902...dc50aa9510)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-13 23:54:50 +00:00