From 8cd9408a5850d317f1e9dc7c4b885f6e9de87382 Mon Sep 17 00:00:00 2001 From: BrewTestBot <1589480+BrewTestBot@users.noreply.github.com> Date: Mon, 18 Nov 2024 12:10:14 +0000 Subject: [PATCH 1/5] actionlint.yml: update to match main configuration --- .github/workflows/actionlint.yml | 86 ++++++++++++++++++++++++++++++++ 1 file changed, 86 insertions(+) create mode 100644 .github/workflows/actionlint.yml diff --git a/.github/workflows/actionlint.yml b/.github/workflows/actionlint.yml new file mode 100644 index 0000000..44e84cc --- /dev/null +++ b/.github/workflows/actionlint.yml @@ -0,0 +1,86 @@ +# This file is synced from the `.github` repository, do not modify it directly. +name: Actionlint + +on: + push: + branches: + - main + - master + pull_request: + +defaults: + run: + shell: bash -xeuo pipefail {0} + +concurrency: + group: "actionlint-${{ github.ref }}" + cancel-in-progress: ${{ github.event_name == 'pull_request' }} + +env: + HOMEBREW_DEVELOPER: 1 + HOMEBREW_NO_AUTO_UPDATE: 1 + HOMEBREW_NO_ENV_HINTS: 1 + +permissions: {} + +jobs: + workflow_syntax: + if: github.repository_owner == 'Homebrew' + runs-on: ubuntu-latest + permissions: + contents: read + steps: + - name: Set up Homebrew + id: setup-homebrew + uses: Homebrew/actions/setup-homebrew@master + with: + core: false + cask: false + test-bot: false + + - name: Install tools + run: brew install actionlint shellcheck zizmor + + - uses: actions/checkout@v4 + with: + persist-credentials: false + + - run: | + # NOTE: exit code intentionally suppressed here + zizmor --format sarif . > results.sarif || true + + - name: Upload SARIF file + uses: actions/upload-artifact@v4 + with: + name: results.sarif + path: results.sarif + + - name: Set up actionlint + run: echo "::add-matcher::$(brew --repository)/.github/actionlint-matcher.json" + + - run: actionlint + + upload_sarif: + needs: workflow_syntax + # We want to always upload this even if `actionlint` failed. + # This is only available on public repositories. + if: > + always() && + !contains(fromJSON('["cancelled", "skipped"]'), needs.workflow_syntax.result) && + !github.event.repository.private + runs-on: ubuntu-latest + permissions: + contents: read + security-events: write + steps: + - name: Download SARIF file + uses: actions/download-artifact@v4 + with: + name: results.sarif + path: results.sarif + + - name: Upload SARIF file + uses: github/codeql-action/upload-sarif@v3 + with: + sarif_file: results.sarif + category: zizmor From a7552ee1f62966043c6e92bfaf8fbdbe385dacb5 Mon Sep 17 00:00:00 2001 From: BrewTestBot <1589480+BrewTestBot@users.noreply.github.com> Date: Mon, 18 Nov 2024 12:10:15 +0000 Subject: [PATCH 2/5] stale-issues.yml: update to match main configuration --- .github/workflows/stale-issues.yml | 13 +++++++++---- 1 file changed, 9 insertions(+), 4 deletions(-) diff --git a/.github/workflows/stale-issues.yml b/.github/workflows/stale-issues.yml index 111de4b..ba2621b 100644 --- a/.github/workflows/stale-issues.yml +++ b/.github/workflows/stale-issues.yml @@ -12,10 +12,7 @@ on: - cron: "0 0 * * *" issue_comment: -permissions: - contents: write - issues: write - pull-requests: write +permissions: {} defaults: run: @@ -35,6 +32,10 @@ jobs: ) ) runs-on: ubuntu-latest + permissions: + contents: write + issues: write + pull-requests: write steps: - name: Mark/Close Stale Issues and Pull Requests uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9 @@ -61,6 +62,10 @@ jobs: ) ) runs-on: ubuntu-latest + permissions: + contents: write + issues: write + pull-requests: write steps: - name: Mark/Close Stale `bump-formula-pr` and `bump-cask-pr` Pull Requests uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9 From 553fe952b50946c4bba8789b02c58e9e1cdcad30 Mon Sep 17 00:00:00 2001 From: BrewTestBot <1589480+BrewTestBot@users.noreply.github.com> Date: Mon, 18 Nov 2024 12:10:15 +0000 Subject: [PATCH 3/5] .rubocop.yml: update to match main configuration --- .rubocop.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.rubocop.yml b/.rubocop.yml index 4035b60..646abda 100644 --- a/.rubocop.yml +++ b/.rubocop.yml @@ -189,6 +189,8 @@ Style/OptionalBooleanParameter: AllowedMethods: - respond_to? - respond_to_missing? +Style/RedundantLineContinuation: + Enabled: false Style/RescueStandardError: EnforcedStyle: implicit Style/ReturnNil: From fea6c55e8d1eb128471dc8e8348ab610f2168d8a Mon Sep 17 00:00:00 2001 From: BrewTestBot <1589480+BrewTestBot@users.noreply.github.com> Date: Mon, 18 Nov 2024 12:10:15 +0000 Subject: [PATCH 4/5] .ruby-version: update to match main configuration --- .ruby-version | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.ruby-version b/.ruby-version index fa7adc7..9c25013 100644 --- a/.ruby-version +++ b/.ruby-version @@ -1 +1 @@ -3.3.5 +3.3.6 From f04c1c281fb4a5f1ca3aca6364cc1d9e074aa3d0 Mon Sep 17 00:00:00 2001 From: Patrick Linnane Date: Mon, 18 Nov 2024 07:34:11 -0800 Subject: [PATCH 5/5] workflows/build: fix syntax Signed-off-by: Patrick Linnane --- .github/workflows/build.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 717fa10..63c3f12 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -32,7 +32,7 @@ jobs: working-directory: debian7 - name: Run Docker container - run: docker run --rm --detach --user linuxbrew --name ${{github.sha}} --workdir /home/linuxbrew --volume $(pwd):/home/linuxbrew/glibc-bootstrap ${{matrix.container}} sleep inf + run: docker run --rm --detach --user linuxbrew --name ${{github.sha}} --workdir /home/linuxbrew --volume "$(pwd):/home/linuxbrew/glibc-bootstrap" ${{matrix.container}} sleep inf - name: Build ${{matrix.binary}} run: docker exec ${{github.sha}} /bin/bash -c "/home/linuxbrew/glibc-bootstrap/build-${{matrix.binary}}.sh"