upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-19 02:38:40 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 11
60964 commits 690 branches 1186 tags 6.6 GiB
Commit graph

68 commits

Author SHA1 Message Date
Andy Scherzinger
0752eed562
ci: Pin actions 
Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
 2026-02-04 09:56:39 +01:00
Joas Schilling
f403b9d4ae
ci(node): Don't download Puppeteer 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2025-12-11 13:52:19 +01:00
Joas Schilling
80c1c5b0bd
fix(CI): Fix oracle image and config 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2024-07-01 10:28:46 +02:00
Joas Schilling
ff46977237
Fix phpunit version used in s3 external testing 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2023-02-03 15:08:58 +01:00
Carl Schwan
efdbbbd716
Update node js ci job 
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
 2022-08-24 20:26:03 +02:00
John Molakvoæ
56153ed19f Prevent merging on EOL branches 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2022-01-27 08:12:47 +00:00
Robin Appelman
c651fc2078 Add test for samba kerberos sso in ci 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2022-01-20 19:14:13 +00:00
Joas Schilling
a8847c022b Create block-merge-freeze.yml 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2022-01-19 09:23:56 +00:00
MichaIng
7375a1b747 [stable22] Remove iconv from dependencies and tests 
which is not used anymore since: https://github.com/nextcloud/server/pull/29470

Signed-off-by: MichaIng <micha@dietpi.com>
 2022-01-06 23:56:28 +01:00
John Molakvoæ
668895ad25
Jsunit requires npm6 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2021-12-09 17:45:43 +01:00
John Molakvoæ
91ad520de9
Add branch-suffix to update-psalm-baseline PR creation 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2021-11-04 11:44:07 +01:00
John Molakvoæ
1f3a9c6337
[stable22] Update update-psalm-baseline workflow 
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
 2021-11-04 11:02:17 +01:00
Robin Appelman
a3d365b33b ci 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2021-10-22 12:34:30 +00:00
Robin Appelman
a4a4097068 s3 external storage listing rework 
Signed-off-by: Robin Appelman <robin@icewind.nl>
 2021-10-22 12:34:30 +00:00
Morris Jobke
050ba4b8d2 Change output format of Psalm to Github 
This automatically inlines the errors into the diff view.

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2021-10-03 17:40:25 +00:00
Christoph Wurst
eda2be4972 Pin Psalm version for security analysis 
The action will otherwise pull dev-master and this can break easily as
we just experience.

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2021-09-03 15:24:40 +00:00
John Molakvoæ
837c08892b
Add files via upload 2021-07-27 12:00:30 +02:00
Morris Jobke
deaf0f3aa2
Change reviewers of Psalm baseline update 
Change reviewers from Roeland and Me to Julius and Louis

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2021-06-16 09:19:43 +02:00
John Molakvoæ
8c8777a841
Fix name 2021-05-29 09:12:37 +02:00
John Molakvoæ
38a19c263b
Add fixup.yml 2021-05-29 09:09:03 +02:00
John Molakvoæ
162229dbff
Fix psalm action 2021-05-28 18:17:58 +02:00
John Molakvoæ
fb583d5665
Fix psalm action 2021-05-28 18:17:42 +02:00
John Molakvoæ
018e18bf8a
Fix dependabot config 2021-05-28 12:25:03 +02:00
Christoph Wurst
ab3424ad44
Add ext-zip as platform dependency 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2021-05-03 10:10:28 +02:00
Joas Schilling
6a43948a6e
FIx Oracle by testing on Ubuntu 20.04 until oci8.so is available for 21.04 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2021-04-22 16:57:00 +02:00
John Molakvoæ (skjnldsv)
fb183b457c
Add eslint testing 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2021-03-17 13:03:38 +01:00
Roeland Jago Douma
da652ded26 Move fixup check to action 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2021-03-07 19:42:40 +01:00
Roeland Jago Douma
cc18213c98 Have psalm analysis directly on github 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2021-02-10 14:57:36 +01:00
Roeland Jago Douma
08cae2ec44
Revert "Pin Psalm version to an older one" 2021-02-02 22:08:01 +01:00
Lukas Reschke
f1d2dcdaa5 Pin Psalm version to an older one 
Ref https://github.com/vimeo/psalm/issues/5144

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2021-02-02 13:54:18 +00:00
Roeland Jago Douma
c96bb21ab9
Merge pull request #24903 from nextcloud/enh/psalm-ocp 
Add dedicated baseline for OCP
 2020-12-30 13:23:25 +01:00
Roeland Jago Douma
fe65f8facf
Add dedicated baseline for OCP 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-12-30 11:06:00 +01:00
Julius Härtl
c42385ef0f
Cleanup bundle files before checking the rebuild 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2020-12-29 12:20:32 +01:00
Julius Härtl
c7a320d880 jsunit: Run jsunit with chromium/puppeteer on github actions 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2020-12-29 08:42:27 +01:00
Morris Jobke
6811274cfd
Merge pull request #24246 from LukasReschke/add-taint-flow-analysis 
Add Psalm Security Analysis
 2020-11-21 00:04:37 +01:00
Lukas Reschke
47ac8e0028
Add Psalm Taint Flow Analysis 
This adds the Psalm Security Analysis, as described at
https://psalm.dev/docs/security_analysis/

It also adds a plugin for adding input into AppFramework.

The results can be viewed in the GitHub Security tab at
https://github.com/nextcloud/server/security/code-scanning

**Q&A:**

Q: Why do you not use the shipped Psalm version?
A: I do a lot of changes to the Psalm Taint behaviour. Using released
versions is not gonna get us the results we want.

Q: How do I improve false positives?
A: https://psalm.dev/docs/security_analysis/avoiding_false_positives/

Q: How do I add custom sources?
A: https://psalm.dev/docs/security_analysis/custom_taint_sources/

Q: We should run this on apps!
A: Yes.

Q: What will change in Psalm?
A: Quite some of the PHP core functions are not yet marked to propagate
the taint. This leads to results where the taint flow is lost. That's
something that I am currently working on.

Q: Why is the plugin MIT licensed?
A: Because its the first of its kind (based on GitHub Code Search) and
I want other people to copy it if they want to. Security is for all :)

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
 2020-11-20 23:12:00 +01:00
Roeland Jago Douma
12f322d804
Also lint php8 
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2020-11-20 16:49:09 +01:00
Joas Schilling
a524e83be0
Fix naming of jobs and steps 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2020-11-10 21:39:19 +01:00
Julius Härtl
2050517d44
Add github action for oci8 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2020-11-10 15:34:35 +01:00
John Molakvoæ
1e7a82d99e
Fix php lint action 2020-11-05 09:34:04 +01:00
Morris Jobke
bb05f0e4eb
Do not commit updated composer dependencies in psalm baseline update 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2020-10-30 10:48:01 +01:00
Morris Jobke
f18d9cd310
Update daily "update psalm baseline" job to composer psalm 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2020-10-29 09:58:25 +01:00
Morris Jobke
106c8d719c
Do not fail on changes to baseline.xml 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2020-10-13 21:55:37 +02:00
Christoph Wurst
081e9ac47f
Use own psalm instead of a global one 
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
 2020-10-13 17:55:37 +02:00
John Molakvoæ (skjnldsv)
91e463ff00
Move to automated dependabot merging 
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
 2020-09-07 14:45:53 +02:00
Morris Jobke
886466d510
Run psalm-baseline.xml update once a day 
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2020-08-20 12:51:51 +02:00
Morris Jobke
458320e8d7
Revert "This is just to trigger the GitHub scheduled actions registration" 
This reverts commit 2e912990ff.
 2020-08-20 12:50:57 +02:00
Morris Jobke
2e912990ff
This is just to trigger the GitHub scheduled actions registration 
It is needed for #22314 and I will revert it right away afterwards.

Sorry for the trouble.

See the answer in https://stackoverflow.com/questions/59560214/github-action-works-on-push-but-not-scheduled
 2020-08-20 12:50:27 +02:00
Morris Jobke
ebc80dba78
Run update-psalm-baseline action every 5 minutes 
For debugging purposed due to a GitHub bug.

See #22325 

Signed-off-by: Morris Jobke <hey@morrisjobke.de>
 2020-08-20 12:44:03 +02:00
Morris Jobke
27157051aa
Revert "This is just to trigger the GitHub scheduled actions registration" 2020-08-20 12:41:47 +02:00