| Age | Commit message (Collapse) | Author |
|---|
|
* chore: do not pass artifacts to downstream jobs
* chore: expire artifacts
* chore: point to new project_id
* chore: remove after_script
* refactor: rename license-management to license-finder
* docs: Add changelog entry and update links to old repo
|
|
|
|
|
|
|
|
|
|
|
|
* do not allow license_scanning job to fail
* update script to download *.deb files
* ensure apt db is valid
* Update CHANGELOG and bump version
|
|
|
|
|
|
* Target ruby version 2.7.1
* Add spec to fetch gems from a custom source
* Add proxy to rubygems.org config
* Specify default env vars to support offline environment
* Cleanup custom certificates after spec
* Inline docker-test script
* Do not install license_finder with each installed ruby
* Increase gem log verbosity and include backtrace
* Extract test fixtures for the different ruby scenarios
* Find *.gemspec files in gems dir
* Use RUBYLIB to hijack src path
* Run scan from project path dir
|
|
* Install license_finder ~> 6.6 into default gems
|
|
|
|
* Update CHANGELOG and fix typo
* Render severity based on exit code
* Explicitly specify the default GOPROXY
* Default to -mod=readonly and allow override
* Do not modify `vendor` directory if it exists.
* Skip `go mod tidy` to prevent modifying projects files.
* Include dependencies that appear in go.mod but are not present in the
vendor directory.
* Remove severity from log output
* Wipe golang module cache before each spec
```plaintext
The -mod build flag provides additional control over updating and use of
go.mod.
If invoked with -mod=readonly, the go command is disallowed from the
implicit automatic updating of go.mod described above. Instead, it fails
when any changes to go.mod are needed. This setting is most useful to
check that go.mod does not need updates, such as in a continuous
integration and testing system. The "go get" command remains permitted
to update go.mod even with -mod=readonly, and the "go mod" commands do
not take the -mod flag (or any other build flags).
If invoked with -mod=vendor, the go command loads packages from the main
module's vendor directory instead of downloading modules to and loading
packages from the module cache. The go command assumes the vendor
directory holds correct copies of dependencies, and it does not compute
the set of required module versions from go.mod files. However, the go
command does check that vendor/modules.txt (generated by 'go mod
vendor') contains metadata consistent with go.mod.
If invoked with -mod=mod, the go command loads modules from the module
cache even if there is a vendor directory present.
If the go command is not invoked with a -mod flag and the vendor
directory is present and the "go" version in go.mod is 1.14 or higher,
the go command will act as if it were invoked with -mod=vendor.
```
- https://golang.org/cmd/go/#hdr-Maintaining_module_requirements
|
|
|
|
* Use git fetch with a depth of 1
* Control Conan environment via environment variables
* Allow specifying a custom CONAN_LOGIN_USERNAME and CONAN_PASSWORD
* Specify a default CONAN_CACERT_PATH to point the system cert file
* Tie CONAN_LOGGING_LEVEL to LOG_LEVEL
* Tag and skip offline environment tests because it was shutdown
* Add CHANGELOG entry
|
|
* Move jobs to gitlab-ci.yml files that match the stage they belong to.
* Move linter job to build stage
* Add functional test jobs
* Reduce max size to 2 GB
* Pass the current pipeline image to the downstream jobs
* Replace `edge` tag with `latest`
* Use $CI_DEFAULT_BRANCH instead of master
* Move `.env*` files to config dir and update RELEASE instructions
* Combine `tag` and `release` stages into `deploy` stage as recommended in GitLab docs
* Make the `build-docker-image` job interruptible
* Fix issues found in code quality report
|
|
|
|
|
|
|
|
* Inline creation of PipPackage in legacy scan results
* Add CHANGELOG entry
|
|
* Remove dind for license scan and move it to code_quality
* Add spec to verify TLS connections to maven repo
* Add CHANGELOG and bump version
|
|
|
|
* Explicity specify services in jobs that need them
* Make gitlab-org the default tag
* Download the image and ensure the download plus the unpack fits within the allotted time
* Specify a depth of 10 commits
* Cache bundled gems
* Run unit tests in the built docker image
* Use the created image in as many stages as possible
|
|
|
|
* Install packages when multiple maven modules are detected
* Add CHANGELOG entry
* Install gem silently
* Add package manager to test description
* Sort paths
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* Add QA jobs for js-npm
|
|
|
|
|
