From 58295a6d7f8b98e65bff0e3c5c46d5a3e6fd2eae Mon Sep 17 00:00:00 2001 From: William Storey Date: Wed, 19 Jun 2024 20:16:24 +0000 Subject: [PATCH 1/5] Bump copyright year --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 13d6f6a..c5f7514 100644 --- a/README.md +++ b/README.md @@ -42,7 +42,7 @@ https://github.com/maxmind/mm-geofeed-verifier/issues # Copyright and License -This software is Copyright (c) 2019 by MaxMind, Inc. +This software is Copyright (c) 2019 - 2024 by MaxMind, Inc. This is free software, licensed under the [Apache License, Version 2.0](LICENSE-APACHE) or the [MIT License](LICENSE-MIT), at your option. From c814c0add1dd761a845a0fb33bc6ca1a3cb3f7d6 Mon Sep 17 00:00:00 2001 From: William Storey Date: Wed, 19 Jun 2024 20:16:37 +0000 Subject: [PATCH 2/5] Bump Go version in readme --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index c5f7514..ef15366 100644 --- a/README.md +++ b/README.md @@ -26,7 +26,7 @@ archive. Inside is the `mm-geofeed-verifier` binary. ## Installation from source or Git -You need the Go compiler (Go 1.12+). You can get it at the [Go +You need the Go compiler (Go 1.21+). You can get it at the [Go website](https://golang.org). The easiest way is via `go install`: From 958c3be8725c1666cae01c3e83f1a9908524e01d Mon Sep 17 00:00:00 2001 From: William Storey Date: Wed, 19 Jun 2024 20:16:50 +0000 Subject: [PATCH 3/5] Do not run CodeQL on push --- .github/workflows/codeql-analysis.yml | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index dbaed25..d92ccab 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -1,9 +1,6 @@ name: "Code scanning - action" on: - push: - branches-ignore: - - 'dependabot/**' pull_request: schedule: - cron: '0 0 * * 1' @@ -25,7 +22,7 @@ jobs: # the head of the pull request instead of the merge commit. - run: git checkout HEAD^2 if: ${{ github.event_name == 'pull_request' }} - + # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL uses: github/codeql-action/init@v3 From 138479b37d241d28890790be468311964408e04f Mon Sep 17 00:00:00 2001 From: William Storey Date: Wed, 19 Jun 2024 20:16:56 +0000 Subject: [PATCH 4/5] Add modver action --- .github/workflows/modver.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 .github/workflows/modver.yml diff --git a/.github/workflows/modver.yml b/.github/workflows/modver.yml new file mode 100644 index 0000000..1313dd2 --- /dev/null +++ b/.github/workflows/modver.yml @@ -0,0 +1,21 @@ +name: modver + +on: + pull_request: + +permissions: + contents: read # This gets granted by default, so keep granting it. + packages: read # This gets granted by default, so keep granting it. + pull-requests: write # Needed to comment on the PR. + +jobs: + modver: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + with: + fetch-depth: 0 + - uses: bobg/modver@v2.8.1 + with: + github_token: ${{ secrets.GITHUB_TOKEN }} + pull_request_url: https://github.com/${{ github.repository }}/pull/${{ github.event.number }} From 9edef52c5f103cbbd147fc2e243ae72efcac075d Mon Sep 17 00:00:00 2001 From: William Storey Date: Wed, 19 Jun 2024 21:15:33 +0000 Subject: [PATCH 5/5] Add permission for scheduled CodeQL run --- .github/workflows/codeql-analysis.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index d92ccab..d111744 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -5,6 +5,9 @@ on: schedule: - cron: '0 0 * * 1' +permissions: + security-events: write # Used by this action. + jobs: CodeQL-Build: