{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":773012237,"defaultBranch":"main","name":"LINUXtips-PICK","ownerLogin":"nataliagranato","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2024-03-16T13:56:24.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/91998391?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1726487873.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"6f24935565ec8a08c658b135bf90a7f1b994a72d","ref":"refs/heads/dependabot/github_actions/azure/setup-helm-4","pushedAt":"2024-09-16T11:57:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump azure/setup-helm from 1 to 4\n\nBumps [azure/setup-helm](https://github.com/azure/setup-helm) from 1 to 4.\n- [Release notes](https://github.com/azure/setup-helm/releases)\n- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/azure/setup-helm/compare/v1...v4)\n\n---\nupdated-dependencies:\n- dependency-name: azure/setup-helm\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump azure/setup-helm from 1 to 4"}},{"before":"4758d2baae5fbbc2c8f1582991aa2eab8054b8f8","after":"ea980e5f7841970acf3f0de93343e5cf4abf6647","ref":"refs/heads/main","pushedAt":"2024-09-14T00:38:50.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: Adicionar verificação do arquivo apko-stg.yaml","shortMessageHtmlLink":"feat: Adicionar verificação do arquivo apko-stg.yaml"}},{"before":"01eccd122de6bf5afc4fe5b2af29d8ac1146cafe","after":"4758d2baae5fbbc2c8f1582991aa2eab8054b8f8","ref":"refs/heads/main","pushedAt":"2024-09-14T00:32:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"fix: Adicionar etapas de implantação packages para produção, staging e desenvolvimento","shortMessageHtmlLink":"fix: Adicionar etapas de implantação packages para produção, staging …"}},{"before":"422845ded0c1f35896a7a8425f94a66e7cd33e59","after":"01eccd122de6bf5afc4fe5b2af29d8ac1146cafe","ref":"refs/heads/main","pushedAt":"2024-09-14T00:28:01.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: Adicionar etapas de implantação packages para produção, staging e desenvolvimento","shortMessageHtmlLink":"feat: Adicionar etapas de implantação packages para produção, staging…"}},{"before":"8e58cd4d7c4649db4389172f27e3a754a17951b0","after":"422845ded0c1f35896a7a8425f94a66e7cd33e59","ref":"refs/heads/main","pushedAt":"2024-09-14T00:18:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: Adicionar etapas de implantação do Helm para produção, staging e desenvolvimento","shortMessageHtmlLink":"feat: Adicionar etapas de implantação do Helm para produção, staging …"}},{"before":"8e311d4b9fbfbd17d8947e4bf5116cefe4540f3f","after":"8e58cd4d7c4649db4389172f27e3a754a17951b0","ref":"refs/heads/main","pushedAt":"2024-09-14T00:14:42.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: Adicionar etapas de implantação do Helm para produção, staging e desenvolvimento","shortMessageHtmlLink":"feat: Adicionar etapas de implantação do Helm para produção, staging …"}},{"before":null,"after":"8ed9a3086f829a402ca25c0c562af93f8788ece2","ref":"refs/heads/dependabot/github_actions/actions/upload-artifact-4.4.0","pushedAt":"2024-09-11T11:54:02.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump actions/upload-artifact from 3.2.1.pre.node20 to 4.4.0\n\nBumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.2.1.pre.node20 to 4.4.0.\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/c24449f33cd45d4826c6702db7e49f7cdb9b551d...50769540e7f4bd5e21e526ee35c689e35e0d6874)\n\n---\nupdated-dependencies:\n- dependency-name: actions/upload-artifact\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump actions/upload-artifact from 3.2.1.pre.node20 to 4.4.0"}},{"before":"000a33218a818b4a1680c5a434fef9aba1183a09","after":"8e311d4b9fbfbd17d8947e4bf5116cefe4540f3f","ref":"refs/heads/main","pushedAt":"2024-09-10T20:26:14.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: Adicionar documentação sobre monitoramento com Zabbix e Grafana","shortMessageHtmlLink":"feat: Adicionar documentação sobre monitoramento com Zabbix e Grafana"}},{"before":"b5094f42fc9f362a982cc417cd7fdd2c42f51906","after":null,"ref":"refs/heads/dependabot/github_actions/ossf/scorecard-action-2.4.0","pushedAt":"2024-09-10T14:54:31.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"c5e3f3b6831cf630c5532fe95de1be063dd75a8f","after":"000a33218a818b4a1680c5a434fef9aba1183a09","ref":"refs/heads/main","pushedAt":"2024-09-10T14:54:29.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.4.0 (#76)\n\nBumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action)\r\nfrom 2.3.1 to 2.4.0.\r\n
\r\nRelease notes\r\n

Sourced from ossf/scorecard-action's\r\nreleases.

\r\n
\r\n

v2.4.0

\r\n

What's Changed

\r\n

This update bumps the Scorecard version to the v5 release. For a\r\ncomplete list of changes, please refer to the v5.0.0\r\nrelease notes. Of special note to Scorecard Action is the Maintainer\r\nAnnotation feature, which can be used to suppress some Code Scanning\r\nfalse positives. Alerts will not be generated for any Scorecard Check\r\nwith an annotation.

\r\n
    \r\n
  • :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to\r\nv5.0.0 by @​spencerschrock\r\nin ossf/scorecard-action#1410
    • \r\n
  • :bug: lower license sarif alert threshold to 9 by @​spencerschrock\r\nin ossf/scorecard-action#1411
    • \r\n
\r\n

Documentation

\r\n
    \r\n
  • docs: dogfooding badge by @​jkowalleck in ossf/scorecard-action#1399
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​jkowalleck made\r\ntheir first contribution in ossf/scorecard-action#1399
    • \r\n
\r\n

Full Changelog: https://github.com/ossf/scorecard-action/compare/v2.3.3...v2.4.0

\r\n

v2.3.3

\r\n
\r\n

[!NOTE]
\r\nThere is no v2.3.2 release as a step was skipped in the release process.\r\nThis was fixed and re-released under the v2.3.3 tag

\r\n
\r\n

What's Changed

\r\n
    \r\n
  • :seedling: Bump github.com/ossf/scorecard/v4 (v4.13.1) to\r\ngithub.com/ossf/scorecard/v5 (v5.0.0-rc1) by @​spencerschrock\r\nin ossf/scorecard-action#1366
    • \r\n
  • :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to\r\nv5.0.0-rc2 by @​spencerschrock\r\nin ossf/scorecard-action#1374
    • \r\n
  • :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to\r\nv5.0.0-rc2.0.20240509182734-7ce860946928 by @​spencerschrock\r\nin ossf/scorecard-action#1377
    • \r\n
\r\n

For a full changelist of what these include, see the v5.0.0-rc1\r\nand v5.0.0-rc2\r\nrelease notes.

\r\n

Documentation

\r\n
    \r\n
  • :book: Move token discussion out of main README. by @​spencerschrock\r\nin ossf/scorecard-action#1279
    • \r\n
  • :book: link to ossf/scorecard workflow instead of\r\nmaintaining an example by @​spencerschrock\r\nin ossf/scorecard-action#1352
    • \r\n
  • :book: update api links to new scorecard.dev site by @​spencerschrock\r\nin ossf/scorecard-action#1376
    • \r\n
\r\n

Full Changelog: https://github.com/ossf/scorecard-action/compare/v2.3.1...v2.3.3

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 62b2cac\r\nbump docker tag to v2.4.0 for release (#1414)
    • \r\n
  • c09630c\r\nlower license score alert threshold to 9 (#1411)
    • \r\n
  • cf8594c\r\n:seedling: Bump github.com/sigstore/cosign/v2 from 2.2.4 to 2.3.0 (#1413)
    • \r\n
  • de5fcb9\r\n:seedling: Bump the github-actions group with 2 updates (#1412)
    • \r\n
  • a46b90b\r\nbump scorecard to v5.0.0 release (#1410)
    • \r\n
  • 9fc518d\r\n:seedling: Bump golang in the docker-images group (#1407)
    • \r\n
  • a8eaa1b\r\n:seedling: Bump the github-actions group with 2 updates (#1408)
    • \r\n
  • 873d5fd\r\n:seedling: Bump the github-actions group across 1 directory with 2\r\nupdates (#...
    • \r\n
  • 54cc1fe\r\n:seedling: Bump the docker-images group with 2 updates (#1401)
    • \r\n
  • 82bcb91\r\n:seedling: Bump golang.org/x/net from 0.26.0 to 0.27.0 (#1400)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.3.1&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.4.0 (#76)"}},{"before":"dcf8289df79055a322f38c132ffd68d85f9e51b6","after":"c5e3f3b6831cf630c5532fe95de1be063dd75a8f","ref":"refs/heads/main","pushedAt":"2024-09-10T13:52:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"fix: path dockerfile redis in Docker pipeline","shortMessageHtmlLink":"fix: path dockerfile redis in Docker pipeline"}},{"before":"b370e55fb4c75666d046f057eb1eb3a628168f81","after":"dcf8289df79055a322f38c132ffd68d85f9e51b6","ref":"refs/heads/main","pushedAt":"2024-09-10T13:49:50.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"fix: path dockerfile redis","shortMessageHtmlLink":"fix: path dockerfile redis"}},{"before":"67613d2888d72d2da7824ab96c3a2064fc456328","after":null,"ref":"refs/heads/dependabot/github_actions/actions/upload-artifact-c24449f33cd45d4826c6702db7e49f7cdb9b551d","pushedAt":"2024-09-10T13:35:24.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"b6af4214c09038cdc877da5287a2a95934750256","after":"b370e55fb4c75666d046f057eb1eb3a628168f81","ref":"refs/heads/main","pushedAt":"2024-09-10T13:35:23.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump actions/upload-artifact from 97a0fba1372883ab732affbe8f94b823f91727db to c24449f33cd45d4826c6702db7e49f7cdb9b551d (#75)\n\nBumps\r\n[actions/upload-artifact](https://github.com/actions/upload-artifact)\r\nfrom 97a0fba1372883ab732affbe8f94b823f91727db to\r\nc24449f33cd45d4826c6702db7e49f7cdb9b551d.\r\n
\r\nCommits\r\n
    \r\n
  • c24449f\r\nMerge pull request #608\r\nfrom actions/joshmgross/fix-include-hidden-files-inpu...
    • \r\n
  • 2339de4\r\nEnsure hidden files input is used
    • \r\n
  • 672174a\r\nMerge pull request #606\r\nfrom actions/v3/node16
    • \r\n
  • 9ee08a3\r\nMerge pull request #604\r\nfrom actions/v3/backport-exclude-hidden-files
    • \r\n
  • ff37344\r\nUpdate documentation for action
    • \r\n
  • d99c5ec\r\nupdate readme with section
    • \r\n
  • afc7e4a\r\nExclude hidden files by default backport
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"chore(deps): bump actions/upload-artifact from 97a0fba1372883ab732aff…"}},{"before":null,"after":"b5094f42fc9f362a982cc417cd7fdd2c42f51906","ref":"refs/heads/dependabot/github_actions/ossf/scorecard-action-2.4.0","pushedAt":"2024-09-10T11:50:59.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.4.0\n\nBumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.4.0.\n- [Release notes](https://github.com/ossf/scorecard-action/releases)\n- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)\n- [Commits](https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...62b2cac7ed8198b15735ed49ab1e5cf35480ba46)\n\n---\nupdated-dependencies:\n- dependency-name: ossf/scorecard-action\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump ossf/scorecard-action from 2.3.1 to 2.4.0"}},{"before":null,"after":"67613d2888d72d2da7824ab96c3a2064fc456328","ref":"refs/heads/dependabot/github_actions/actions/upload-artifact-c24449f33cd45d4826c6702db7e49f7cdb9b551d","pushedAt":"2024-09-10T11:50:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump actions/upload-artifact\n\nBumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 97a0fba1372883ab732affbe8f94b823f91727db to c24449f33cd45d4826c6702db7e49f7cdb9b551d.\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/97a0fba1372883ab732affbe8f94b823f91727db...c24449f33cd45d4826c6702db7e49f7cdb9b551d)\n\n---\nupdated-dependencies:\n- dependency-name: actions/upload-artifact\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump actions/upload-artifact"}},{"before":"0e851b8bd227db739a4aa384b877dcd2cd5db0c2","after":"b6af4214c09038cdc877da5287a2a95934750256","ref":"refs/heads/main","pushedAt":"2024-09-10T03:19:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: implementação de melhorias e novas funcionalidades","shortMessageHtmlLink":"feat: implementação de melhorias e novas funcionalidades"}},{"before":"7f21e25274202777d0e7d2b18e8e38886323b065","after":"0e851b8bd227db739a4aa384b877dcd2cd5db0c2","ref":"refs/heads/main","pushedAt":"2024-09-10T03:18:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"feat: implementação de melhorias e novas funcionalidades","shortMessageHtmlLink":"feat: implementação de melhorias e novas funcionalidades"}},{"before":"cfb8c79559e451c958ef4af2a2287d1025206455","after":null,"ref":"refs/heads/develop","pushedAt":"2024-09-10T03:15:13.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"93277314a56b84131cd8980abfea537e0820035b","after":"7f21e25274202777d0e7d2b18e8e38886323b065","ref":"refs/heads/main","pushedAt":"2024-09-10T03:15:12.000Z","pushType":"pr_merge","commitsCount":6,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"Implementação de Melhorias e Novas Funcionalidades (#74)\n\n## Descrição\r\n\r\nEste PR inclui várias melhorias e novas funcionalidades para o projeto,\r\nconforme descrito abaixo:\r\n\r\n### Dockerização de Aplicação\r\n- Implementação de multi-stage build para otimização da imagem Docker.\r\n\r\n### Pipeline de Publicação\r\n- Configuração de pipeline para publicação de imagem Docker em um\r\nrepositório privado.\r\n\r\n### Manifestos do Kubernetes\r\n- Criação de manifestos para:\r\n - Deployment\r\n - Service\r\n - PersistentVolume (PV)\r\n - PersistentVolumeClaim (PVC)\r\n - Ingress\r\n - Secret\r\n\r\n### Pacote Helm\r\n- Desenvolvimento de pacotes Helm para ambientes de desenvolvimento,\r\nstaging e produção.\r\n\r\n### Segurança e Compliance\r\n- Scan de segurança e correção de vulnerabilidades utilizando:\r\n - Trivy\r\n - Docker Scout\r\n - Snyk\r\n- Criação de políticas de segurança e compliance com Kyverno.\r\n- Assinatura de imagens com Cosign.\r\n\r\n### Monitoramento e Alertas\r\n- Instalação do Prometheus e Grafana.\r\n- Monitoramento da aplicação com ServiceMonitor e PodMonitor.\r\n- Criação de alertas com o Alertmanager integrado ao Grafana.\r\n- Desenvolvimento de dashboards no Grafana para monitoramento da\r\naplicação.\r\n\r\n### Construção de Imagem\r\n- Construção de imagem com uma única camada utilizando APKO e Melange.\r\n\r\n### Pipelines\r\n- Construção de imagem Docker.\r\n- Geração de tag única para imagem.\r\n- Scan de segurança com Trivy e integração com o GitHub Security.\r\n- Assinatura de imagem com Cosign.\r\n- Scan de qualidade de Dockerfile com Hadolint e integração com o Git.\r\n- Utilização do Digestabot.\r\n- Utilização do Dependabot.\r\n- Implementação do Scorecard Supply-Chain Security.\r\n\r\n## Links Relacionados\r\n\r\n### Públicos\r\n\r\n- **Aplicação**:\r\n[https://senhas.nataliagranato.xyz](https://senhas.nataliagranato.xyz)\r\n- **Documentação do Projeto**:\r\n[https://devops.nataliagranato.xyz](https://devops.nataliagranato.xyz)\r\n- **Pipelines**:\r\n[https://github.com/nataliagranato/LINUXtips-PICK/tree/develop/.github/workflows](https://github.com/nataliagranato/LINUXtips-PICK/tree/develop/.github/workflows)\r\n- **Fórum de Discussão para Dúvidas**:\r\n[https://github.com/nataliagranato/LINUXtips-PICK/discussions](https://github.com/nataliagranato/LINUXtips-PICK/discussions)\r\n- **Prometheus**:\r\n[https://prom.nataliagranato.xyz/](https://prom.nataliagranato.xyz/)\r\n- **Grafana**:\r\n[https://grafana.nataliagranato.xyz/public-dashboards/56431da54e9143438ef8e5da78258347](https://grafana.nataliagranato.xyz/public-dashboards/56431da54e9143438ef8e5da78258347)\r\n- **Pacotes**:\r\n[https://github.com/nataliagranato?tab=packages&repo_name=LINUXtips-PICK](https://github.com/nataliagranato?tab=packages&repo_name=LINUXtips-PICK)\r\n\r\n### Privados\r\n\r\n- **Helm Chart**:\r\n[https://github.com/nataliagranato/senhas](https://github.com/nataliagranato/senhas)\r\n- **Registry**: `nataliagranato/senhas:1.0.0-amd64`\r\n\r\n## Checklist\r\n\r\n- [ ] Testes adicionados/atualizados\r\n- [ ] Documentação atualizada\r\n- [ ] Verificação de segurança realizada\r\n- [ ] Revisão de código concluída\r\n\r\n\r\n\r\n## Summary by CodeRabbit\r\n\r\n- **Novos Recursos**\r\n- Adicionadas seções detalhadas no `README.md`, incluindo links do\r\nprojeto e ferramentas utilizadas.\r\n- Introduzido um novo arquivo de documentação `KUBERNETES.md` para guiar\r\nsobre a orquestração de contêineres.\r\n- Adicionado um novo arquivo `COSIGN.md` para orientar sobre a\r\nassinatura e verificação de artefatos de software.\r\n- Implementado um novo `ServiceMonitor` e `PodMonitor` para\r\nmonitoramento da aplicação.\r\n- Configuração de `Horizontal Pod Autoscaler` para escalonamento\r\nautomático da aplicação.\r\n- Introduzido um dashboard do Grafana para monitoramento de métricas da\r\naplicação.\r\n\r\n- **Correções de Bugs**\r\n- Renomeação de recursos e ajustes em configurações para melhorar a\r\nclareza e funcionalidade.\r\n\r\n- **Documentação**\r\n- Diversos novos documentos e atualizações de documentação para melhor\r\ncompreensão e uso das tecnologias e ferramentas envolvidas.\r\n\r\n- **Estilo**\r\n- Melhorias na formatação e organização de arquivos de configuração e\r\ndocumentação para maior legibilidade.\r\n\r\n","shortMessageHtmlLink":"Implementação de Melhorias e Novas Funcionalidades (#74)"}},{"before":"722463a83433e6c611a5aadbf0006ada54247272","after":null,"ref":"refs/heads/dependabot/github_actions/slsa-framework/slsa-github-generator-2.0.0","pushedAt":"2024-09-10T03:11:39.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"a62e839d89103a30f0e23e0aa95cab56026a51c0","after":"93277314a56b84131cd8980abfea537e0820035b","ref":"refs/heads/main","pushedAt":"2024-09-10T03:11:38.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump slsa-framework/slsa-github-generator from 1.4.0 to 2.0.0 (#71)\n\nBumps\r\n[slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator)\r\nfrom 1.4.0 to 2.0.0.\r\n
\r\nRelease notes\r\n

Sourced from slsa-framework/slsa-github-generator's\r\nreleases.

\r\n
\r\n

v2.0.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v2.0.0-rc.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.10.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.9.1

\r\n

This is an un-finalized release.

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.9.1-rc.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.9.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.9.0-rc.0

\r\n

This is an un-finalized pre-release.

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.8.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.8.0-rc.2

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.8.0-rc.1

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.8.0-rc.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.7.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.7.0-rc.1

\r\n

See the CHANGELOG\r\nfor details.

\r\n

v1.7.0-rc.0

\r\n

See the CHANGELOG\r\nfor details.

\r\n

This is UNFINALIZED.

\r\n

v1.6.0

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from slsa-framework/slsa-github-generator's\r\nchangelog.

\r\n
\r\n

v2.0.0

\r\n

v2.0.0: Breaking Change: upload-artifact and download-artifact

\r\n
    \r\n
  • Our workflows now use the new @v4s of\r\nactions/upload-artifact and\r\nactions/download-artifact, which are incompatiblle with the\r\nprior @v3. See\r\nOur docs on the generic\r\ngenerator\r\nfor more information and how to upgrade.
    • \r\n
\r\n

v2.0.0: Breaking Change: attestation-name Workflow Input and\r\nOutput

\r\n
    \r\n
  • attestation-name as a workflow input to\r\n.github/workflows/generator_generic_slsa3.yml is now\r\nremoved. Use\r\nprovenance-name instead.
    • \r\n
\r\n

v2.0.0: DSSE Rekor Type

\r\n
    \r\n
  • When uploading signed provenance to the log, the entry created in\r\nthe log is now\r\na DSSE Rekor type. This fixes a bug where the current intoto type does\r\nnot\r\npersist provenance signatures. The attestation will no longer be\r\npersisted\r\nin Rekor (#3299)
    • \r\n
\r\n

v1.10.0

\r\n

Release v1.10.0\r\nincludes bug fixes and new features.

\r\n

See the full\r\nchange list.

\r\n

v1.10.0: TUF fix

\r\n
    \r\n
  • The cosign TUF roots were fixed (#3350).\r\nMore details here.
    • \r\n
\r\n

v1.10.0: Gradle Builder

\r\n
    \r\n
  • The Gradle Builder was fixed when the project root is the same as\r\nthe\r\nrepository root (#2727)
    • \r\n
\r\n

v1.10.0: Go Builder

\r\n
    \r\n
  • The go-version-file input was fixed so that it can find\r\nthe go.mod file\r\n(#2661)
    • \r\n
\r\n

v1.10.0: Container Generator

\r\n
    \r\n
  • A new provenance-repository input was added to allow\r\nreading provenance from\r\na different container repository than the image itself (#2956)
    • \r\n
\r\n

v1.9.0

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 5a775b3\r\nchore: v2.0.0: update tags (#3583)
    • \r\n
  • 41733f7\r\nchore: v2.0.0-rc.0: update tags (#3578)
    • \r\n
  • 3789345\r\ndocs: v.2.0.0: finalize CHANGELOG.md (#3577)
    • \r\n
  • 02fc78b\r\nfix: deadlock and improve debugging experience (#3570)
    • \r\n
  • 4534a0b\r\nbreak: Revert "chore: Revert "fix: upload-artifact and\r\ndownload-artifact v4""...
    • \r\n
  • e8c2dcf\r\nfix(deps): Update Sigstore Dep to Sigstore 2.2.2 (#3491)
    • \r\n
  • 2512315\r\nfeat(breaking): remove attestation-name input and output (#3456)
    • \r\n
  • 4fbc6a9\r\nchore: add ramonpetgrave64 to CODEOWNERS (#3490)
    • \r\n
  • 8869c8a\r\nfix: Switch to newer DSSE rekor type (#3299)
    • \r\n
  • 9d81ca7\r\nchore: Update slsa-verifier version (#3454)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=slsa-framework/slsa-github-generator&package-manager=github_actions&previous-version=1.4.0&new-version=2.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n\r\n\r\n## Summary by CodeRabbit\r\n\r\n- **Novos Recursos**\r\n- Atualização do workflow do GitHub Actions para a versão 2.0.0,\r\nproporcionando melhorias e novas funcionalidades.\r\n\r\n\r\n","shortMessageHtmlLink":"chore(deps): bump slsa-framework/slsa-github-generator from 1.4.0 to …"}},{"before":"10c6b3e2916264be69cf6036ca7642f5d64fdd48","after":null,"ref":"refs/heads/dependabot/pip/werkzeug-3.0.4","pushedAt":"2024-09-10T03:09:03.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"c92fa8883afebfbd20a0aa6fefd3c741300576fc","after":"a62e839d89103a30f0e23e0aa95cab56026a51c0","ref":"refs/heads/main","pushedAt":"2024-09-10T03:09:02.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump werkzeug from 3.0.3 to 3.0.4 (#68)\n\nBumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.3 to\r\n3.0.4.\r\n
\r\nRelease notes\r\n

Sourced from werkzeug's\r\nreleases.

\r\n
\r\n

3.0.4

\r\n

This is the Werkzeug 3.0.4 fix release, which fixes bugs but does not\r\notherwise change behavior and should not result in breaking changes.

\r\n

PyPI: https://pypi.org/project/Werkzeug/3.0.4/\r\nChanges: https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4\r\nMilestone: https://github.com/pallets/werkzeug/milestone/36?closed=1

\r\n
    \r\n
  • Restore behavior where parsing\r\nmultipart/x-www-form-urlencoded data with\r\ninvalid UTF-8 bytes in the body results in no form data parsed rather\r\nthan a\r\n413 error. #2930
    • \r\n
  • Improve parse_options_header performance when parsing\r\nunterminated\r\nquoted string values. #2904
    • \r\n
  • Debugger pin auth is synchronized across threads/processes when\r\ntracking\r\nfailed entries. #2916
    • \r\n
  • Dev server handles unexpected SSLEOFError due to issue\r\nin Python < 3.13.\r\n#2926
    • \r\n
  • Debugger pin auth works when the URL already contains a query\r\nstring.\r\n#2918
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from werkzeug's\r\nchangelog.

\r\n
\r\n

Version 3.0.4

\r\n

Released 2024-08-21

\r\n
    \r\n
  • Restore behavior where parsing\r\nmultipart/x-www-form-urlencoded data with\r\ninvalid UTF-8 bytes in the body results in no form data parsed rather\r\nthan a\r\n413 error. :issue:2930
    • \r\n
  • Improve parse_options_header performance when parsing\r\nunterminated\r\nquoted string values. :issue:2904
    • \r\n
  • Debugger pin auth is synchronized across threads/processes when\r\ntracking\r\nfailed entries. :issue:2916
    • \r\n
  • Dev server handles unexpected SSLEOFError due to issue\r\nin Python < 3.13.\r\n:issue:2926
    • \r\n
  • Debugger pin auth works when the URL already contains a query\r\nstring.\r\n:issue:2918
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b933ccb\r\nrelease version 3.0.4
    • \r\n
  • c09de73\r\ndebugger works on urls with query string (#2942)
    • \r\n
  • 1d1d987\r\ndebugger works on urls with query string
    • \r\n
  • 32a77a0\r\ntreat SSLEOFError as dropped connection (#2941)
    • \r\n
  • cf18d03\r\ntreat SSLEOFError as dropped connection
    • \r\n
  • a1db120\r\nsynchronize failed pin entry (#2940)
    • \r\n
  • 6504819\r\nsynchronize failed pin entry
    • \r\n
  • 7abec4b\r\nimprove parse_options_header performance (#2939)
    • \r\n
  • 3a893d2\r\nimprove parse_options_header performance
    • \r\n
  • 3a52597\r\nrestore invalid bytes behavior for form parser (#2938)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=3.0.3&new-version=3.0.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n\r\n## Summary by CodeRabbit\r\n\r\n\r\n- **Novas Funcionalidades**\r\n- Atualização da dependência Werkzeug para a versão 3.0.4, que pode\r\nincluir correções de bugs e melhorias de desempenho.\r\n\r\n","shortMessageHtmlLink":"chore(deps): bump werkzeug from 3.0.3 to 3.0.4 (#68)"}},{"before":"07ecf2bfb8f3ad87bebc20b1be7640c88c3ba83d","after":null,"ref":"refs/heads/dependabot/github_actions/docker/login-action-3","pushedAt":"2024-09-10T03:07:16.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"e61db308f930b38db1cac861e90ad220848e212a","after":"c92fa8883afebfbd20a0aa6fefd3c741300576fc","ref":"refs/heads/main","pushedAt":"2024-09-10T03:07:15.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump docker/login-action from 2 to 3 (#69)\n\nBumps [docker/login-action](https://github.com/docker/login-action) from\r\n2 to 3.\r\n
\r\nRelease notes\r\n

Sourced from docker/login-action's\r\nreleases.

\r\n
\r\n

v3.0.0

\r\n
    \r\n
  • Node 20 as default runtime (requires Actions\r\nRunner v2.308.0 or later) by @​crazy-max in docker/login-action#593
    • \r\n
  • Bump @​actions/core from 1.10.0 to 1.10.1 in docker/login-action#598
    • \r\n
  • Bump @​aws-sdk/client-ecr and\r\n@​aws-sdk/client-ecr-public to 3.410.0 in docker/login-action#555\r\ndocker/login-action#560\r\ndocker/login-action#582\r\ndocker/login-action#599
    • \r\n
  • Bump semver from 6.3.0 to 6.3.1 in docker/login-action#556
    • \r\n
  • Bump https-proxy-agent to 7.0.2 docker/login-action#561\r\ndocker/login-action#588
    • \r\n
\r\n

Full Changelog: https://github.com/docker/login-action/compare/v2.2.0...v3.0.0

\r\n

v2.2.0

\r\n
    \r\n
  • Switch to actions-toolkit implementation by @​crazy-max in docker/login-action#409\r\ndocker/login-action#470\r\ndocker/login-action#476
    • \r\n
  • Bump @​aws-sdk/client-ecr and\r\n@​aws-sdk/client-ecr-public to 3.347.1 in docker/login-action#524\r\ndocker/login-action#364\r\ndocker/login-action#363
    • \r\n
  • Bump minimatch from 3.0.4 to 3.1.2 in docker/login-action#354
    • \r\n
  • Bump json5 from 2.2.0 to 2.2.3 in docker/login-action#378
    • \r\n
  • Bump http-proxy-agent from 5.0.0 to 7.0.0 in docker/login-action#509
    • \r\n
  • Bump https-proxy-agent from 5.0.1 to 7.0.0 in docker/login-action#508
    • \r\n
\r\n

Full Changelog: https://github.com/docker/login-action/compare/v2.1.0...v2.2.0

\r\n

v2.1.0

\r\n
    \r\n
  • Ensure AWS temp credentials are redacted in workflow logs by @​crazy-max (#275)
    • \r\n
  • Bump @​actions/core from 1.6.0 to 1.10.0 (#252\r\n#292)
    • \r\n
  • Bump @​aws-sdk/client-ecr from 3.53.0 to 3.186.0 (#298)
    • \r\n
  • Bump @​aws-sdk/client-ecr-public from 3.53.0 to 3.186.0\r\n(#299)
    • \r\n
\r\n

Full Changelog: https://github.com/docker/login-action/compare/v2.0.0...v2.1.0

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 9780b0c\r\nMerge pull request #741\r\nfrom docker/dependabot/npm_and_yarn/proxy-agent-depen...
    • \r\n
  • 2fa130c\r\nchore: update generated content
    • \r\n
  • 5e87b2a\r\nbuild(deps): bump https-proxy-agent
    • \r\n
  • e039495\r\nMerge pull request #754\r\nfrom docker/dependabot/npm_and_yarn/docker/actions-to...
    • \r\n
  • 9af18aa\r\nchore: update generated content
    • \r\n
  • 668190a\r\nswitch to Docker exec
    • \r\n
  • be5150d\r\nbuild(deps): bump @​docker/actions-toolkit from 0.24.0 to\r\n0.35.0
    • \r\n
  • e80ebca\r\nMerge pull request #730\r\nfrom docker/dependabot/npm_and_yarn/braces-3.0.3
    • \r\n
  • 75ee3ea\r\nMerge pull request #733\r\nfrom docker/dependabot/github_actions/docker/bake-act...
    • \r\n
  • 793c19c\r\nbuild(deps): bump docker/bake-action from 4 to 5
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n\r\n## Summary by CodeRabbit\r\n\r\n\r\n\r\n- **Melhorias**\r\n- Atualização da ação de login do Docker para a versão mais recente,\r\npotencialmente melhorando o desempenho e a segurança do processo de\r\nlogin no Docker Hub.\r\n\r\n","shortMessageHtmlLink":"chore(deps): bump docker/login-action from 2 to 3 (#69)"}},{"before":"e3c6dfbcb614d63802617ee2cb6599c34f9cf893","after":"07ecf2bfb8f3ad87bebc20b1be7640c88c3ba83d","ref":"refs/heads/dependabot/github_actions/docker/login-action-3","pushedAt":"2024-09-10T02:59:12.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump docker/login-action from 2 to 3\n\nBumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3.\n- [Release notes](https://github.com/docker/login-action/releases)\n- [Commits](https://github.com/docker/login-action/compare/v2...v3)\n\n---\nupdated-dependencies:\n- dependency-name: docker/login-action\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump docker/login-action from 2 to 3"}},{"before":"b2b8a479b4c42933151c58576cb60659056421f0","after":null,"ref":"refs/heads/dependabot/github_actions/docker/setup-buildx-action-3","pushedAt":"2024-09-10T02:58:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}},{"before":"1d9a91a11ab85ab0984df707c64e88770988bc55","after":"e61db308f930b38db1cac861e90ad220848e212a","ref":"refs/heads/main","pushedAt":"2024-09-10T02:58:09.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"},"commit":{"message":"chore(deps): bump docker/setup-buildx-action from 1 to 3 (#72)\n\nBumps\r\n[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action)\r\nfrom 1 to 3.\r\n
\r\nRelease notes\r\n

Sourced from docker/setup-buildx-action's\r\nreleases.

\r\n
\r\n

v3.0.0

\r\n
    \r\n
  • Node 20 as default runtime (requires Actions\r\nRunner v2.308.0 or later) by @​crazy-max in docker/setup-buildx-action#264
    • \r\n
  • Bump @​actions/core from 1.10.0 to 1.10.1 in docker/setup-buildx-action#267
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.10.0...v3.0.0

\r\n

v2.10.0

\r\n
    \r\n
  • Bump @​docker/actions-toolkit from 0.7.1 to 0.10.0 by\r\n@​crazy-max in\r\ndocker/setup-buildx-action#258
    • \r\n
  • Bump word-wrap from 1.2.3 to 1.2.5 in docker/setup-buildx-action#253
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.9.1...v2.10.0

\r\n

v2.9.1

\r\n
    \r\n
  • Bump @​docker/actions-toolkit from 0.7.0 to 0.7.1 in docker/setup-buildx-action#248\r\n
      \r\n
    • Fixes an issue where building Buildx does not match the local\r\nplatform (docker/actions-toolkit#135)
      • \r\n
    \r\n
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.9.0...v2.9.1

\r\n

v2.9.0

\r\n
    \r\n
  • Bump @​docker/actions-toolkit from 0.6.0 to 0.7.0 in docker/setup-buildx-action#246\r\n
      \r\n
    • Adds support to cache Buildx binary to hosted tool cache and GHA\r\ncache backend
      • \r\n
    \r\n
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.8.0...v2.9.0

\r\n

v2.8.0

\r\n
    \r\n
  • Only set specific flags for drivers supporting them by @​nicks in docker/setup-buildx-action#241
    • \r\n
  • Bump @​docker/actions-toolkit from 0.5.0 to 0.6.0 in docker/setup-buildx-action#242
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.7.0...v2.8.0

\r\n

v2.7.0

\r\n
    \r\n
  • Bump @​docker/actions-toolkit from 0.3.0 to 0.5.0 in docker/setup-buildx-action#237\r\ndocker/setup-buildx-action#238
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.6.0...v2.7.0

\r\n

v2.6.0

\r\n
    \r\n
  • Set node name for k8s driver when appending nodes by @​crazy-max in docker/setup-buildx-action#219
    • \r\n
  • Bump @​docker/actions-toolkit from 0.1.0-beta.18 to\r\n0.3.0 in docker/setup-buildx-action#220\r\ndocker/setup-buildx-action#229\r\ndocker/setup-buildx-action#231\r\ndocker/setup-buildx-action#236
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.5.0...v2.6.0

\r\n

v2.5.0

\r\n
    \r\n
  • cleanup input to remove builder and temp files by @​crazy-max in docker/setup-buildx-action#213
    • \r\n
  • do not remove builder using the docker driver by @​crazy-max in docker/setup-buildx-action#218
    • \r\n
  • fix current context as builder name for docker driver\r\nby @​crazy-max\r\nin docker/setup-buildx-action#209
    • \r\n
\r\n

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.4.1...v2.5.0

\r\n

v2.4.1

\r\n
    \r\n
  • Get releases from actions toolkit by @​crazy-max (#200)
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 988b5a0\r\nMerge pull request #347\r\nfrom crazy-max/skip-malformed-context
    • \r\n
  • 2c21562\r\nchore: update generated content
    • \r\n
  • 3382292\r\ncheck for malformed docker context
    • \r\n
  • 3d68780\r\nMerge pull request #341\r\nfrom crazy-max/docker-context-tls
    • \r\n
  • d069e98\r\nchore: update generated content
    • \r\n
  • 8b850f8\r\ncreate docker context if default one has TLS data loaded
    • \r\n
  • aa33708\r\nMerge pull request #345\r\nfrom docker/dependabot/npm_and_yarn/docker/actions-to...
    • \r\n
  • 2d99e34\r\nchore: update generated content
    • \r\n
  • 4dab436\r\nbuild(deps): bump @​docker/actions-toolkit from 0.34.0 to\r\n0.35.0
    • \r\n
  • 49a04d6\r\nMerge pull request #344\r\nfrom docker/dependabot/npm_and_yarn/docker/actions-to...
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-buildx-action&package-manager=github_actions&previous-version=1&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n\r\n\r\n## Summary by CodeRabbit\r\n\r\n- **Novos Recursos**\r\n- Atualização da ação Docker Buildx para a versão mais recente,\r\nmelhorando o processo de construção e compatibilidade com o Docker.\r\n\r\n- **Correções de Bugs**\r\n- Mudança para versões mais gerais da ação Docker Buildx, permitindo\r\natualizações automáticas que podem incluir correções de bugs e melhorias\r\nde desempenho.\r\n\r\n","shortMessageHtmlLink":"chore(deps): bump docker/setup-buildx-action from 1 to 3 (#72)"}},{"before":"d2d0c640b439172b46238302828dcc507c84b852","after":null,"ref":"refs/heads/imgbot","pushedAt":"2024-09-10T02:55:54.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"nataliagranato","name":"Natália Granato","path":"/nataliagranato","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/91998391?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEt13MQwA","startCursor":null,"endCursor":null}},"title":"Activity · nataliagranato/LINUXtips-PICK"}