ivuorinen/base-configs
1
0
Fork 0
mirror of https://github.com/ivuorinen/base-configs.git synced 2026-02-28 18:53:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
854 Commits 2 Branches 563 Tags
4a7b3ea7bcdc3b0120a0f8de37b78e7712ae1fe6
Commit Graph

854 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
renovate[bot]
4a7b3ea7bc chore(deps): lock file maintenance 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-27 10:16:23 +00:00
semantic-release-bot
482fa4c650 chore(release): 1.0.3 [skip ci] 
## [1.0.3](https://github.com/ivuorinen/base-configs/compare/v1.0.2...v1.0.3) (2026-02-27)

### Bug Fixes

* **ci:** replace read-all with specific permissions in workflows ([ae49ca9](ae49ca90c6))
v1.0.3 		2026-02-27 07:05:52 +00:00
Ismo Vuorinen
ae49ca90c6 fix(ci): replace read-all with specific permissions in workflows 
Replace overly broad `permissions: read-all` with minimal
`contents: read` at workflow level in pr-lint.yml and sync-labels.yml.
Job-level permissions already declare specific needs.
 2026-02-27 09:02:17 +02:00
semantic-release-bot
98d9f7410d chore(release): 1.0.2 [skip ci] 
## [1.0.2](https://github.com/ivuorinen/base-configs/compare/v1.0.1...v1.0.2) (2026-02-26)

### Bug Fixes

* **ci:** consolidate CodeQL workflows with proper permissions ([#473](https://github.com/ivuorinen/base-configs/issues/473)) ([ee3606e](ee3606e3cb))
v1.0.2 		2026-02-26 21:07:41 +00:00
renovate[bot]
c3e9b156e4 chore(deps): lock file maintenance (#475) 2026-02-26 23:04:07 +02:00
renovate[bot]
8551db8073 chore(deps): update node.js (v24.13.1 → v24.14.0) (#474) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-26 22:28:08 +02:00
Ismo Vuorinen
ee3606e3cb fix(ci): consolidate CodeQL workflows with proper permissions (#473) 
* fix(ci): consolidate CodeQL workflows with proper permissions

Merge codeql.yml and codeql-analysis.yml into a single workflow.
Add top-level permissions block to fix Checkov CKV2_GHA_1.

Changes:
- Add top-level permissions (actions: read, contents: read)
- Add merge_group trigger
- Enable security-and-quality query suite
- Use javascript-typescript language with build-mode: none
- Remove redundant codeql-analysis.yml

* fix(ci): include all required permissions at job level

Job-level permissions override top-level permissions in GitHub Actions
rather than extending them. Add actions: read and contents: read to
the job-level block so the analyze job retains all required permissions.
 2026-02-26 22:20:14 +02:00
Ismo Vuorinen
79ea896d8e chore(deps): update dependencies, release config 2026-02-25 21:41:04 +02:00
renovate[bot]
1dd35376c7 chore(deps): lock file maintenance (#472) 2026-02-23 21:43:58 +02:00
renovate[bot]
9744eabce9 chore(deps): update github/codeql-action action (v4.32.3 → v4.32.4) (#471) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-22 04:46:45 +00:00
dependabot[bot]
78ef670756 chore(deps): bump tar from 7.5.7 to 7.5.9 (#469) 
Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.7 to 7.5.9.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v7.5.7...v7.5.9)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.9
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-20 14:15:51 +02:00
renovate[bot]
e9ae91a8d7 chore(deps): update ivuorinen/actions action (v2026.02.10 → v2026.02.18) (#470) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-20 04:51:31 +00:00
renovate[bot]
914e186966 chore(deps): lock file maintenance (#468) 2026-02-18 00:00:27 +02:00
renovate[bot]
77d4ab15e8 chore(deps): update github/codeql-action action (v4.32.2 → v4.32.3) (#467) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-15 04:50:26 +00:00
renovate[bot]
becac6d7c4 chore(deps): update node.js (v24.13.0 → v24.13.1) (#466) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-12 09:12:11 +00:00
renovate[bot]
ebb6cfce3d chore(deps): update ivuorinen/actions action (v2026.02.03 → v2026.02.10) (#465) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-12 06:31:47 +00:00
renovate[bot]
722fa145d2 chore(deps): update simek/yarn-lock-changes action (v0.14.0 → v0.14.1) (#464) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-09 10:37:35 +00:00
renovate[bot]
acc2da1f37 chore(deps): update github/codeql-action action (v4.32.1 → v4.32.2) (#463) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-07 04:51:24 +00:00
renovate[bot]
3340f5d4e2 chore(deps): update ivuorinen/actions action (v2026.01.21 → v2026.02.03) (#462) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-05 14:00:28 +00:00
renovate[bot]
65ea3e0ffb chore(deps): update github/codeql-action action (v4.32.0 → v4.32.1) (#461) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-04 04:24:28 +00:00
renovate[bot]
6845253eab chore(deps): update simek/yarn-lock-changes action (v0.12.2 → v0.14.0) (#460) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-02-01 22:08:18 +02:00
renovate[bot]
d48f64b4d9 chore(deps): update actions/cache action (v5.0.2 → v5.0.3) (#459) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-31 18:45:12 +02:00
semantic-release-bot
6764211e73 chore(release): 1.0.1 [skip ci] 
## [1.0.1](https://github.com/ivuorinen/base-configs/compare/v1.0.0...v1.0.1) (2026-01-30)

### Bug Fixes

* **ci:** add branches to releaserc ([7222d0d](7222d0d263))
v1.0.1 		2026-01-30 14:47:05 +00:00
Ismo Vuorinen
7222d0d263 fix(ci): add branches to releaserc 2026-01-30 16:43:50 +02:00
Ismo Vuorinen
c8bb871b9d chore(deps): update npm packages 2026-01-30 16:38:44 +02:00
Ismo Vuorinen
f75c5bb8a9 chore(deps): update npm packages 2026-01-30 11:02:13 +02:00
dependabot[bot]
61fc06b7c6 chore(deps): bump tar from 7.5.6 to 7.5.7 (#458) 
Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.6 to 7.5.7.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v7.5.6...v7.5.7)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-29 20:36:47 +02:00
renovate[bot]
4c06a97439 chore(deps): update github/codeql-action action (v4.31.11 → v4.32.0) (#457) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-28 06:32:40 +00:00
renovate[bot]
fc68ba7fb5 chore(deps): update github/codeql-action action (v4.31.10 → v4.31.11) (#456) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-25 04:45:02 +00:00
renovate[bot]
649bdef76e chore(deps): update actions/checkout action (v6.0.1 → v6.0.2) (#455) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-24 01:25:25 +02:00
renovate[bot]
f920836b58 chore(deps): update ivuorinen/actions action (v2026.01.13 → v2026.01.21) (#454) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-22 11:20:14 +00:00
dependabot[bot]
6bedd1a3fd chore(deps): bump lodash from 4.17.21 to 4.17.23 (#453) 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23)

---
updated-dependencies:
- dependency-name: lodash
  dependency-version: 4.17.23
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-22 13:16:36 +02:00
dependabot[bot]
bda429823f chore(deps): bump tar from 7.5.3 to 7.5.6 (#451) 2026-01-22 10:10:15 +02:00
dependabot[bot]
d582716608 chore(deps): bump lodash-es from 4.17.21 to 4.17.23 (#452) 2026-01-22 10:09:29 +02:00
renovate[bot]
65d80f2a3a chore(deps): update actions/cache action (v5.0.1 → v5.0.2) (#450) 2026-01-18 15:31:31 +02:00
dependabot[bot]
87c4bca3f9 chore(deps): bump tar from 7.4.3 to 7.5.3 (#449) 
Bumps [tar](https://github.com/isaacs/node-tar) from 7.4.3 to 7.5.3.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.3)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-17 12:37:01 +02:00
renovate[bot]
9bf1d397fc chore(deps): update actions/setup-node action (v6.1.0 → v6.2.0) (#448) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-17 04:40:17 +00:00
renovate[bot]
5ff1fd1271 chore(deps): update node.js (v24.12.0 → v24.13.0) (#447) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-15 16:39:12 +00:00
renovate[bot]
c994b011fd chore(deps): update ivuorinen/actions action (v2026.01.09 → v2026.01.13) (#446) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-15 13:15:01 +00:00
renovate[bot]
a7cf077c64 chore(deps): update github/codeql-action action (v4.31.9 → v4.31.10) (#445) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-14 06:36:46 +00:00
renovate[bot]
5c99268e50 chore(deps): update ivuorinen/actions action (v2026.01.06 → v2026.01.09) (#444) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-11 04:29:09 +00:00
renovate[bot]
7c065e968e chore(deps)!: update ivuorinen/actions (v2025.12.31 → v2026.01.06) (#442) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-07 16:26:47 +02:00
renovate[bot]
a2026b02d5 chore(deps): update ivuorinen/actions action (v2025.12.06 → v2025.12.31) (#443) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-07 14:24:42 +00:00
Ismo Vuorinen
d819a7b257 security(ci): update permissions in publish.yml 2026-01-07 16:07:37 +02:00
renovate[bot]
44832a01b5 chore(deps): update github/codeql-action action (v4.31.8 → v4.31.9) (#441) 2025-12-18 09:39:17 +02:00
renovate[bot]
28b230e931 chore(deps): update github/codeql-action action (v4.31.7 → v4.31.8) (#440) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-14 09:39:50 +00:00
renovate[bot]
45603a51e8 chore(deps): update actions/cache action (v5.0.0 → v5.0.1) (#439) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-14 05:57:42 +00:00
renovate[bot]
ad15143559 chore(deps)!: update actions/cache (v4.3.0 → v5.0.0) (#437) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-12 12:14:31 +02:00
renovate[bot]
5b3e008d45 chore(deps): update node.js (v24.11.1 → v24.12.0) (#438) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-12 06:40:52 +00:00
Ismo Vuorinen
8fb98907cd chore: linting and semantic-commit plugins 2025-12-06 23:54:07 +01:00