Skip to content

Commit 47f8c32

Browse files
kernelsamkernelsam
committed
Merge branch 'main' into 85-caceres-redo-fix-1
2 parents 400d705 + 1ab255e commit 47f8c32

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

42 files changed

+3270
-3196
lines changed

.github/linters/zizmor.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,5 @@
1+
rules:
2+
unpinned-uses:
3+
config:
4+
policies:
5+
"*": ref-pin

.github/workflows/add-labels-standardized.yaml

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,21 +6,22 @@ on:
66
- opened
77
- reopened
88

9-
permissions:
10-
issues: write
9+
permissions: {}
1110

1211
jobs:
1312
add-issue-labels:
13+
permissions:
14+
issues: write
1415
secrets:
1516
ORG_MEMBERSHIP_TOKEN: ${{ secrets.ORG_MEMBERSHIP_TOKEN }}
1617
SENZING_MEMBERS: ${{ secrets.SENZING_MEMBERS }}
17-
uses: senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml@v2
18+
uses: senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml@v3
1819

1920
slack-notification:
2021
needs: [add-issue-labels]
2122
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.add-issue-labels.outputs.job-status) }}
2223
secrets:
2324
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
24-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
25+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
2526
with:
2627
job-status: ${{ needs.add-issue-labels.outputs.job-status }}

.github/workflows/add-to-project-senzing-dependabot.yaml

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -4,14 +4,15 @@ on:
44
pull_request:
55
branches: [main]
66

7-
permissions:
8-
repository-projects: write
7+
permissions: {}
98

109
jobs:
1110
add-to-project-dependabot:
11+
permissions:
12+
repository-projects: write
1213
secrets:
1314
SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }}
14-
uses: senzing-factory/build-resources/.github/workflows/add-to-project-dependabot.yaml@v2
15+
uses: senzing-factory/build-resources/.github/workflows/add-to-project-dependabot.yaml@v3
1516
with:
1617
project: ${{ vars.SENZING_GITHUB_ORGANIZATION_PROJECT }}
1718

@@ -20,6 +21,6 @@ jobs:
2021
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.add-to-project-dependabot.outputs.job-status) }}
2122
secrets:
2223
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
23-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
24+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
2425
with:
2526
job-status: ${{ needs.add-to-project-dependabot.outputs.job-status }}

.github/workflows/add-to-project-senzing.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -6,16 +6,16 @@ on:
66
- opened
77
- reopened
88

9-
permissions:
10-
repository-projects: write
9+
permissions: {}
1110

1211
jobs:
1312
add-to-project:
13+
permissions:
14+
repository-projects: write
1415
secrets:
1516
SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }}
16-
uses: senzing-factory/build-resources/.github/workflows/add-to-project.yaml@v2
17+
uses: senzing-factory/build-resources/.github/workflows/add-to-project.yaml@v3
1718
with:
18-
classic: false
1919
project-number: ${{ vars.SENZING_GITHUB_ORGANIZATION_PROJECT }}
2020
org: ${{ vars.SENZING_GITHUB_ACCOUNT_NAME }}
2121

@@ -24,6 +24,6 @@ jobs:
2424
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.add-to-project.outputs.job-status) }}
2525
secrets:
2626
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
27-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
27+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
2828
with:
2929
job-status: ${{ needs.add-to-project.outputs.job-status }}

.github/workflows/bandit.yaml

Lines changed: 7 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,12 +6,13 @@ on:
66
pull_request:
77
branches: [main]
88

9-
permissions:
10-
contents: read
11-
pull-requests: write
9+
permissions: {}
1210

1311
jobs:
1412
bandit:
13+
permissions:
14+
contents: read
15+
pull-requests: write
1516
runs-on: ubuntu-latest
1617
strategy:
1718
fail-fast: false
@@ -21,6 +22,8 @@ jobs:
2122
steps:
2223
- name: Checkout repository
2324
uses: actions/checkout@v5
25+
with:
26+
persist-credentials: false
2427

2528
- name: Set up Python ${{ matrix.python-version }}
2629
uses: actions/setup-python@v6
@@ -32,5 +35,5 @@ jobs:
3235
env:
3336
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
3437
with:
35-
path: "examples src"
38+
path: "python"
3639
recursive: "true"

.github/workflows/bearer.yaml

Lines changed: 5 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,15 +6,18 @@ on:
66
pull_request:
77
branches: [main]
88

9-
permissions:
10-
contents: read
9+
permissions: {}
1110

1211
jobs:
1312
rule_check:
13+
permissions:
14+
contents: read
1415
runs-on: ubuntu-latest
1516

1617
steps:
1718
- uses: actions/checkout@v5
19+
with:
20+
persist-credentials: false
1821

1922
- name: Bearer
2023
uses: bearer/bearer-action@v2

.github/workflows/black.yaml

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,12 +6,13 @@ on:
66
pull_request:
77
branches: [main]
88

9-
permissions:
10-
contents: read
9+
permissions: {}
1110

1211
jobs:
1312
black:
1413
name: black Python ${{ matrix.python-version }}
14+
permissions:
15+
contents: read
1516
runs-on: ubuntu-latest
1617
strategy:
1718
fail-fast: false
@@ -21,6 +22,8 @@ jobs:
2122
steps:
2223
- name: Checkout repository
2324
uses: actions/checkout@v5
25+
with:
26+
persist-credentials: false
2427

2528
- name: Set up Python ${{ matrix.python-version }}
2629
uses: actions/setup-python@v6
@@ -33,8 +36,7 @@ jobs:
3336
source ./venv/bin/activate
3437
echo "PATH=${PATH}" >> "${GITHUB_ENV}"
3538
python -m pip install --upgrade pip
36-
python -m pip install --requirement requirements.txt
37-
python -m pip install black
39+
python -m pip install --group all .
3840
3941
- name: Run black testing
4042
run: |

.github/workflows/csharp-darwin-snippets.yaml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,8 +6,7 @@ on:
66
- cron: "15 7 * * *"
77
workflow_dispatch:
88

9-
permissions:
10-
contents: read
9+
permissions: {}
1110

1211
jobs:
1312
csharp-darwin-snippets:
@@ -28,7 +27,7 @@ jobs:
2827
- name: checkout repository
2928
uses: actions/checkout@v5
3029
with:
31-
fetch-depth: 0
30+
persist-credentials: false
3231

3332
- uses: actions/setup-dotnet@v5
3433
with:
@@ -64,6 +63,6 @@ jobs:
6463
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.csharp-darwin-snippets.outputs.status ) && github.event_name == 'schedule' }}
6564
secrets:
6665
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
67-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
66+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
6867
with:
6968
job-status: ${{ needs.csharp-darwin-snippets.outputs.status }}

.github/workflows/csharp-linux-snippets.yaml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -8,8 +8,7 @@ on:
88
schedule:
99
- cron: "15 7 * * *"
1010

11-
permissions:
12-
contents: read
11+
permissions: {}
1312

1413
jobs:
1514
csharp-linux-snippets:
@@ -30,7 +29,7 @@ jobs:
3029
- name: checkout repository
3130
uses: actions/checkout@v5
3231
with:
33-
fetch-depth: 0
32+
persist-credentials: false
3433

3534
- uses: actions/setup-dotnet@v5
3635
with:
@@ -62,6 +61,6 @@ jobs:
6261
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.csharp-linux-snippets.outputs.status ) && github.event_name == 'schedule' }}
6362
secrets:
6463
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
65-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
64+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
6665
with:
6766
job-status: ${{ needs.csharp-linux-snippets.outputs.status }}

.github/workflows/csharp-windows-snippets.yaml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,8 +6,7 @@ on:
66
- cron: "15 7 * * *"
77
workflow_dispatch:
88

9-
permissions:
10-
contents: read
9+
permissions: {}
1110

1211
jobs:
1312
csharp-windows-snippets:
@@ -28,7 +27,7 @@ jobs:
2827
- name: checkout repository
2928
uses: actions/checkout@v5
3029
with:
31-
fetch-depth: 0
30+
persist-credentials: false
3231

3332
- uses: actions/setup-dotnet@v5
3433
with:
@@ -63,6 +62,6 @@ jobs:
6362
if: ${{ always() && contains(fromJSON('["failure", "cancelled"]'), needs.csharp-windows-snippets.outputs.status ) && github.event_name == 'schedule' }}
6463
secrets:
6564
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
66-
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v2
65+
uses: senzing-factory/build-resources/.github/workflows/build-failure-slack-notification.yaml@v3
6766
with:
6867
job-status: ${{ needs.csharp-windows-snippets.outputs.status }}

0 commit comments

Comments
 (0)