Andrew Lytvynov
3a4b622276
.github/workflows/govulncheck.yml: send messages to another channel ( #15295 )
...
Updates #cleanup
Signed-off-by: Andrew Lytvynov <awly@tailscale.com>
2025-03-14 12:30:29 -07:00
dependabot[bot]
03f7f1860e
.github: Bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 ( #15257 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.7 to 7.0.8.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](dd2324fc52...271a8d0340
2025-03-11 11:31:52 -06:00
dependabot[bot]
ce0d8b0fb9
.github: Bump github/codeql-action from 3.28.10 to 3.28.11 ( #15258 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.10 to 3.28.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b56ba49b26...6bb031afdd
2025-03-11 11:25:35 -06:00
dependabot[bot]
b9f4c5d246
.github: Bump golangci/golangci-lint-action from 6.3.1 to 6.5.0 ( #15046 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.3.1 to 6.5.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](2e788936b0...2226d7cb06
2025-03-09 13:31:02 -06:00
dependabot[bot]
71b1ae6bef
.github: Bump actions/upload-artifact from 4.6.0 to 4.6.1 ( #15111 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0
2025-03-09 13:02:04 -06:00
dependabot[bot]
5827e20fdf
.github: Bump github/codeql-action from 3.28.9 to 3.28.10 ( #15110 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.9 to 3.28.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](9e8d0789d4...b56ba49b26
2025-03-09 12:42:13 -06:00
dependabot[bot]
f67725c3ff
.github: Bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 ( #15113 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.6 to 7.0.7.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](67ccf781d6...dd2324fc52
2025-03-09 12:41:30 -06:00
Mario Minardi
5ce8cd5fec
.github/workflows: tidy go caches before uploading
...
Delete files from `$(go env GOCACHE)` and `$(go env GOMODCACHE)/cache`
that have not been modified in >= 90 minutes as these files are not
resulting in cache hits on the current branch.
These deltions have resulted in the uploaded / downloaded compressed
cache size to go down to ~1/3 of the original size in some instances
with the extracted size being ~1/4 of the original extraced size.
Updates https://github.com/tailscale/tailscale/issues/15238
Signed-off-by: Mario Minardi <mario@tailscale.com>
2025-03-07 12:27:29 -08:00
Brad Fitzpatrick
96202a7c0c
.github/workflows: descope natlab CI for now until GitHub flakes are fixed
...
The natlab VM tests are flaking on GitHub Actions.
To not distract people, disable them for now (unless they're touched
directly) until they're made more reliable, which will be some painful
debugging probably.
Updates #13038
Change-Id: I6570f1cd43f8f4d628a54af8481b67455ebe83dc
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-03-05 16:46:33 -08:00
Brad Fitzpatrick
5eafce7e25
gokrazy/natlab: update gokrazy, wire up natlab tests to GitHub CI
...
Updates #13038
Change-Id: I610f9076816f44d59c0ca405a1b4f5eb4c6c0594
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-03-04 18:57:29 -08:00
dependabot[bot]
1d2d449b57
.github: Bump actions/cache from 4.2.0 to 4.2.2
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.2.0 to 4.2.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](1bd1e32a3b...d4323d4df1
2025-03-04 14:13:16 -08:00
Brad Fitzpatrick
836c01258d
go.toolchain.branch: update to Go 1.24 ( #15016 )
...
* go.toolchain.branch: update to Go 1.24
Updates #15015
Change-Id: I29c934ec17e60c3ac3264f30fbbe68fc21422f4d
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
* cmd/testwrapper: fix for go1.24
Updates #15015
Signed-off-by: Paul Scott <paul@tailscale.com>
* go.mod,Dockerfile: bump to Go 1.24
Also bump golangci-lint to a version that was built with 1.24
Updates #15015
Signed-off-by: Andrew Lytvynov <awly@tailscale.com>
---------
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
Signed-off-by: Paul Scott <paul@tailscale.com>
Signed-off-by: Andrew Lytvynov <awly@tailscale.com>
Co-authored-by: Paul Scott <paul@tailscale.com>
Co-authored-by: Andrew Lytvynov <awly@tailscale.com>
2025-02-19 10:55:49 -08:00
Brad Fitzpatrick
cbf3852b5d
cmd/testwrapper: temporarily remove test coverage support
...
testwrapper doesn't work with Go 1.24 and the coverage support is
making it harder to debug.
Updates #15015
Updates tailscale/corp#26659
Change-Id: I0125e881d08c92f1ecef88b57344f6bbb571b569
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-02-17 09:51:23 -08:00
dependabot[bot]
11cd98fab0
.github: Bump golangci/golangci-lint-action from 6.2.0 to 6.3.1 ( #14963 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.2.0 to 6.3.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](ec5d18412c...2e788936b0
2025-02-10 10:09:44 -07:00
dependabot[bot]
76fe556fcd
.github: Bump github/codeql-action from 3.28.5 to 3.28.9 ( #14962 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.5 to 3.28.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f6091c0113...9e8d0789d4
2025-02-10 09:58:08 -07:00
dependabot[bot]
0aa54151f2
.github: Bump actions/checkout from 3.6.0 to 4.2.2 ( #14139 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.6.0 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.6.0...11bd71901bbe5b1630ceea73d27597364c9af683 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-28 15:03:13 -07:00
dependabot[bot]
76dc028b38
.github: Bump github/codeql-action from 3.28.1 to 3.28.5 ( #14794 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.1 to 3.28.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b6a472f63d...f6091c0113
2025-01-27 12:36:42 -07:00
dependabot[bot]
3fec806523
.github: Bump actions/setup-go from 5.2.0 to 5.3.0 ( #14793 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.2.0 to 5.3.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](3041bf56c9...f111f3307d
2025-01-27 12:36:04 -07:00
Brad Fitzpatrick
8c925899e1
go.mod: bump depaware, add --internal flag to stop hiding internal packages
...
The hiding of internal packages has hidden things I wanted to see a
few times now. Stop hiding them. This makes depaware.txt output a bit
longer, but not too much. Plus we only really look at it with diffs &
greps anyway; it's not like anybody reads the whole thing.
Updates #12614
Change-Id: I868c89eeeddcaaab63e82371651003629bc9bda8
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-01-26 21:12:34 +00:00
dependabot[bot]
d1b378504c
.github: Bump slackapi/slack-github-action from 1.27.0 to 2.0.0 ( #14141 )
...
Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action ) from 1.27.0 to 2.0.0.
- [Release notes](https://github.com/slackapi/slack-github-action/releases )
- [Commits](37ebaef184...485a9d42d3
2025-01-22 11:46:13 -07:00
dependabot[bot]
682c06a0e7
.github: Bump golangci/golangci-lint-action from 6.1.0 to 6.2.0 ( #14696 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.1.0 to 6.2.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](aaa42aa062...ec5d18412c
2025-01-20 12:48:50 -07:00
dependabot[bot]
33e62a31bd
.github: Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 ( #14695 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.5 to 7.0.6.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](5e914681df...67ccf781d6
2025-01-20 11:18:42 -07:00
dependabot[bot]
174af763eb
.github: Bump actions/upload-artifact from 4.4.3 to 4.6.0 ( #14697 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...65c4c4a1dd
2025-01-20 10:57:18 -07:00
dependabot[bot]
3431ab1720
.github: Bump github/codeql-action from 3.27.6 to 3.28.1 ( #14618 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.6 to 3.28.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](aa57810251...b6a472f63d
2025-01-15 10:54:34 -07:00
dependabot[bot]
beb951c744
.github: Bump actions/setup-go from 5.1.0 to 5.2.0 ( #14391 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](41dfa10bad...3041bf56c9
2025-01-15 10:53:38 -07:00
Nahum Shalman
9373a1b902
all: illumos/solaris userspace only support
...
Updates #14565
Change-Id: I743148144938794db0a224873ce76c10dbe6fa5f
Signed-off-by: Nahum Shalman <nahamu@gmail.com>
2025-01-09 14:46:23 -08:00
Erisa A
4267d0fc5b
.github: update matrix of installer.sh tests ( #14462 )
...
Remove EOL Ubuntu versions.
Add new Ubuntu LTS.
Update Alpine to test latest version.
Also, make the test run when its workflow is updated and installer.sh isn't.
Updates #cleanup
Signed-off-by: Erisa A <erisa@tailscale.com>
2024-12-23 14:48:35 +00:00
dependabot[bot]
d54cd59390
.github: Bump github/codeql-action from 3.27.1 to 3.27.6 ( #14332 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.1 to 3.27.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4f3212b617...aa57810251
2024-12-10 15:15:11 -07:00
dependabot[bot]
fa28b024d6
.github: Bump actions/cache from 4.1.2 to 4.2.0 ( #14331 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](6849a64899...1bd1e32a3b
2024-12-10 14:32:04 -07:00
dependabot[bot]
bfe5cd8760
.github: Bump actions/setup-go from 5.0.2 to 5.1.0 ( #13934 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.2 to 5.1.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0a12ed9d6a...41dfa10bad
2024-11-13 10:56:44 -07:00
dependabot[bot]
4474dcea68
.github: Bump actions/cache from 4.1.0 to 4.1.2 ( #13933 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.0 to 4.1.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](2cdf405574...6849a64899
2024-11-13 09:46:30 -07:00
dependabot[bot]
0cfa217f3e
.github: Bump actions/upload-artifact from 4.4.0 to 4.4.3 ( #13811 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...b4b15b8c7c
2024-11-13 09:34:10 -07:00
dependabot[bot]
1847f26042
.github: Bump github/codeql-action from 3.26.11 to 3.27.1 ( #14062 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.11 to 3.27.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6db8d6351f...4f3212b617
2024-11-13 09:30:14 -07:00
dependabot[bot]
866714a894
.github: Bump github/codeql-action from 3.26.9 to 3.26.11 ( #13710 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.9 to 3.26.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](461ef6c76d...6db8d6351f
2024-10-07 22:15:40 -06:00
dependabot[bot]
266c14d6ca
.github: Bump actions/cache from 4.0.2 to 4.1.0 ( #13711 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.0.2 to 4.1.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](0c45773b62...2cdf405574
2024-10-07 20:48:06 -06:00
dependabot[bot]
992ee6dd0b
.github: Bump github/codeql-action from 3.26.8 to 3.26.9 ( #13625 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.8 to 3.26.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](294a9d9291...461ef6c76d
2024-10-01 23:27:30 -06:00
dependabot[bot]
dd6b808acf
.github: Bump peter-evans/create-pull-request from 7.0.1 to 7.0.5 ( #13626 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.1 to 7.0.5.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](8867c4aba1...5e914681df
2024-09-30 21:12:44 -06:00
dependabot[bot]
a98f75b783
.github: Bump tibdex/github-app-token from 1.8.0 to 2.1.0 ( #9529 )
...
Bumps [tibdex/github-app-token](https://github.com/tibdex/github-app-token ) from 1.8.0 to 2.1.0.
- [Release notes](https://github.com/tibdex/github-app-token/releases )
- [Commits](b62528385c...3beb63f4bd
2024-09-24 10:01:00 -06:00
Mario Minardi
05d82fb0d8
.github: pin re-actors/alls-green to latest 1.x ( #13558 )
...
Pin re-actors/alls-green usage to latest 1.x. This was previously
pointing to `@release/v2` which pulls in the latest changes from this
branch as they are released, with the potential to break our workflows
if a breaking change or malicious version on this stream is ever pushed.
Changing this to a pinned version also means that dependabot will keep
this in the pinned version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 17:35:53 -06:00
Mario Minardi
04bbef0e8b
.github: update and pin actions/upload-artifact to latest 4.x ( #13556 )
...
Update and pin actions/upload-artifact usage to latest 4.x. These were
previously pointing to @3 which pulls in the latest v3 as they are
released, with the potential to break our workflows if a breaking change
or malicious version on the @3 stream is ever pushed.
Changing this to a pinned version also means that dependabot will keep
this in the pinned version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 16:44:26 -06:00
Mario Minardi
a8bd0cb9c2
.github: update and pin actions/cache to latest 4.x ( #13555 )
...
Update and pin actions/cache usage to latest 4.x. These were previously
pointing to `@3` which pulls in the latest v3 as they are released, with
the potential to break our workflows if a breaking change or malicious
version on the `@3` stream is ever pushed.
Changing this to a pinned version also means that dependabot will keep
this in the pinned version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
The breaking change between v3 and v4 is that v4 requires Node 20 which
should be a non-issue where this is run.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 16:34:55 -06:00
Mario Minardi
a3f7e72321
.github: use and pin slackapi/slack-github-action to latest 1.x ( #13554 )
...
Use slackapi/slack-github-action across the board and pin to latest 1.x.
Previously we were referencing the 1.27.0 tag directly which is
vulnerable to someone replacing that version tag with malicious code.
Replace usage of ruby/action-slack with slackapi/slack-github-action as
the latter is the officially supported action from slack.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 16:11:13 -06:00
Mario Minardi
22e98cf95e
.github: pin codeql actions to latest 3.x ( #13552 )
...
Pin codeql actions usage to latest 3.x. These were previously pointing
to `@2` which pulls in the latest v2 as they are released, with the
potential to break our workflows if a breaking change or malicious
version on the `@2` stream is ever pushed.
Changing this to a pinned version also means that dependabot will keep
this in the pinend version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
The breaking change between v2 and v3 is that v3 requires Node 20 which
is a non-issue as we are running this on ubuntu latest.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 15:52:26 -06:00
Mario Minardi
2c1bbfb902
.github: pin actions/setup-go usage to latest 5.x ( #13553 )
...
Pin actions/checkout usage to latest 5.x. These were previously pointing
to `@4` which pulls in the latest v4 as they are released, with the
potential to break our workflows if a breaking change or malicious
version on the `@4` stream is ever pushed.
Changing this to a pinned version also means that dependabot will keep
this in the pinend version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
The breaking change between v4 and v5 is that v5 requires Node 20 which
should be a non-issue where it is used.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 15:14:49 -06:00
Mario Minardi
07991dec83
.github: pin actions/checkout to latest v3 or v4 as appropriate ( #13551 )
...
Pin actions/checkout usage to latest 3.x or 4.x as appropriate. These
were previously pointing to `@4` or `@3` which pull in the latest
versions at these tags as they are released, with the potential to break
our workflows if a breaking change or malicious version for either of
these streams are released.
Changing this to a pinned version also means that dependabot will keep
this in the pinend version format (e.g., referencing a SHA) when it
opens a PR to bump the dependency.
Updates #cleanup
Signed-off-by: Mario Minardi <mario@tailscale.com>
2024-09-23 14:52:19 -06:00
Maisem Ali
f2713b663e
.github: enable fuzz testing again (go1.23)
...
Updates #12912
Signed-off-by: Maisem Ali <maisem@tailscale.com>
2024-09-11 14:50:13 -07:00
dependabot[bot]
71b550c73c
.github: Bump peter-evans/create-pull-request from 5.0.1 to 7.0.1 ( #13419 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 5.0.1 to 7.0.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](284f54f989...8867c4aba1
2024-09-10 10:08:14 -06:00
Brad Fitzpatrick
696711cc17
all: switch to and require Go 1.23
...
Updates #12912
Change-Id: Ib4ae26eb5fb68ad2216cab4913811b94f7eed5b6
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2024-08-22 12:31:08 -07:00
Chris Palmer
59936e6d4a
scripts: don't refresh the pacman repository on Arch ( #12194 )
...
Fixes #12186
Signed-off-by: Chris Palmer <cpalmer@tailscale.com>
Co-authored-by: Chris Palmer <cpalmer@tailscale.com>
2024-07-03 09:58:01 -07:00
Andrew Dunham
0323dd01b2
ci: enable checklocks workflow for specific packages
...
This turns the checklocks workflow into a real check, and adds
annotations to a few basic packages as a starting point.
Updates #12625
Signed-off-by: Andrew Dunham <andrew@du.nham.ca>
Change-Id: I2b0185bae05a843b5257980fc6bde732b1bdd93f
2024-06-26 13:55:07 -04:00
