dependabot[bot]
6e508f8553
chore(deps): bump actions/setup-go from 5.3.0 to 5.4.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](f111f3307d...0aaccfd150
2025-03-27 21:07:19 +00:00
github-actions[bot]
38fe7f463a
Merge pull request #16310 from prometheus/dependabot/github_actions/actions/upload-artifact-4.6.2
...
chore(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
2025-03-27 21:49:28 +01:00
dependabot[bot]
8d980bf747
chore(deps): bump actions/setup-node from 4.2.0 to 4.3.0
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](1d0ff469b7...cdca7365b2
2025-03-24 09:56:09 +00:00
dependabot[bot]
c7f4e41e79
chore(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65
2025-03-24 09:56:06 +00:00
Julius Volz
475092ff79
Remove dependabot configs for npm-based dependencies ( #16307 )
...
This is just IMO, but getting my inbox flooded every month with hundreds of
dependabot PRs is annoying, even if I don't end up handling most of them myself
(thanks to others who do!). And then philosophically, I don't know if this is
even the right approach. I don't think that whoever merges these PRs actually
has the capacity or the knowledge to check that everything is still working as
expected. Often subtle things can break after package updates, like a class
name from an npm package not fitting to a style definition in our code anymore
(as happened once with e.g. codemirror in the past, and nobody noticed when
merging, and that bug is still present in Thanos' port of our UI). And you
can't look in detail at the UI for every little PR that dependabot sends.
Node module dependencies are inherently very noisy because there are so many of
them, but I think a better approach would be to update them maybe once or twice
a year (or whenever really needed), with all deps updated together, at a time
when a maintainer has the time to really look at things carefully, and then do
a comprehensive manual check of the UI to see that everything is still behaving
as before.
Signed-off-by: Julius Volz <julius.volz@gmail.com>
2025-03-24 10:55:01 +01:00
dependabot[bot]
dc82666ed4
chore(deps): bump prometheus/promci from 0.4.6 to 0.4.7 ( #16262 )
...
Bumps [prometheus/promci](https://github.com/prometheus/promci ) from 0.4.6 to 0.4.7.
- [Release notes](https://github.com/prometheus/promci/releases )
- [Commits](c3c93a50d5...443c7fc239
2025-03-22 18:40:11 +01:00
dependabot[bot]
e375e7c84d
chore(deps): bump github/codeql-action from 3.28.10 to 3.28.12 ( #16260 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.10 to 3.28.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b56ba49b26...5f8171a638
2025-03-22 18:40:03 +01:00
dependabot[bot]
b71ad4f6b7
chore(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.2
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.5.0 to 6.5.2.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](2226d7cb06...55c2c1448f
2025-03-22 16:51:17 +00:00
github-actions[bot]
9b6c8a9ea3
Merge pull request #16259 from prometheus/dependabot/github_actions/actions/cache-4.2.3
...
chore(deps): bump actions/cache from 4.2.2 to 4.2.3
2025-03-22 17:50:28 +01:00
dependabot[bot]
6d45ea4e5b
chore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](62b2cac7ed...f49aabe0b5
2025-03-22 13:04:10 +00:00
dependabot[bot]
43b0eac343
chore(deps): bump actions/cache from 4.2.2 to 4.2.3
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.2.2 to 4.2.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](d4323d4df1...5a3ec84eff
2025-03-22 13:04:00 +00:00
Matthieu MOREL
64905156f4
chore: use directories to simplify dependabot config ( #16241 )
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
2025-03-22 14:03:17 +01:00
zhengkezhou1
1b92962484
ci: attempt to run Go tests on Windows
...
Signed-off-by: zhengkezhou1 <madzhou1@gmail.com>
2025-03-10 23:17:46 +08:00
dependabot[bot]
de784ce6e0
chore(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 ( #16129 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0
2025-03-07 15:05:03 +01:00
dependabot[bot]
71cb219eb6
chore(deps): bump golangci/golangci-lint-action from 6.2.0 to 6.5.0 ( #16124 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.2.0 to 6.5.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](ec5d18412c...2226d7cb06
2025-03-07 13:38:20 +01:00
dependabot[bot]
3de752572e
chore(deps): bump actions/cache from 4.2.0 to 4.2.2 ( #16128 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.2.0 to 4.2.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](1bd1e32a3b...d4323d4df1
2025-03-07 13:36:53 +01:00
dependabot[bot]
a1430c9766
chore(deps): bump actions/setup-node from 4.1.0 to 4.2.0 ( #16130 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](39370e3970...1d0ff469b7
2025-03-07 13:36:43 +01:00
github-actions[bot]
c4a26a8868
Merge pull request #16126 from prometheus/dependabot/github_actions/github/codeql-action-3.28.10
...
chore(deps): bump github/codeql-action from 3.28.8 to 3.28.10
2025-03-07 12:36:06 +00:00
Arve Knudsen
f2d8af008d
Fix testing of previous Go version
...
Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
2025-03-07 11:47:33 +01:00
Arve Knudsen
56929ffa42
Upgrade to Go v1.24 ( #16180 )
...
* Upgrade to Go v1.24
* Upgrade golangci-lint
---------
Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
2025-03-07 11:28:26 +01:00
dependabot[bot]
62715de317
chore(deps): bump github/codeql-action from 3.28.8 to 3.28.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.8 to 3.28.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](dd746615b3...b56ba49b26
2025-03-01 23:48:01 +00:00
Jan Fajerski
d5b18be9e2
ci: fix build-all status trigger to contain always
...
Otherwise a failure in the dependent job skips the status job, which is
treated as success.
Signed-off-by: Jan Fajerski <jfajersk@redhat.com>
2025-02-20 11:41:24 +01:00
Bartlomiej Plotka
8fe24ced82
ci: Add GH action that clicks "enable auto-merge" on dependabot PRs ( #15967 )
...
This will merge on green all non-conflicting dependabot PRs.
Signed-off-by: bwplotka <bwplotka@gmail.com>
2025-02-12 16:51:40 +00:00
Bartlomiej Plotka
8baad1a73e
Bump promci to latest to avoid deprecated actions/cache CI issue. ( #16013 )
...
Current main is broken due to:
```
Error: This request has been automatically failed because it uses a deprecated version of `actions/cache: 0c45773b623bea8c8e75f6c82b208c3cf94ea4f9`. Please update your workflow to use v3/v4 of actions/cache to avoid interruptions. Learn more: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down
```
This is odd given `actions/cache: 0c45773b623bea8c8e75f6c82b208c3cf94ea4f9` has a comment of v4.0.2 (so not v1 and v2), trying 4.1.0.
https://github.com/prometheus/prometheus/actions/runs/13267052807/job/37037025130?pr=16011
Signed-off-by: bwplotka <bwplotka@gmail.com>
2025-02-11 18:09:21 +00:00
dependabot[bot]
9c5fd0b9fb
chore(deps): bump actions/setup-go from 5.2.0 to 5.3.0 ( #15957 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.2.0 to 5.3.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](3041bf56c9...f111f3307d
2025-02-07 19:10:17 +00:00
dependabot[bot]
6db18abe4e
chore(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 ( #15958 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.1.1 to 6.2.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](971e284b60...ec5d18412c
2025-02-07 19:13:23 +01:00
dependabot[bot]
bc07189662
chore(deps): bump actions/stale from 9.0.0 to 9.1.0 ( #15959 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 9.0.0 to 9.1.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](28ca103628...5bef64f19d
2025-02-07 19:12:51 +01:00
dependabot[bot]
92873bbfe8
chore(deps): bump github/codeql-action from 3.28.0 to 3.28.8 ( #15960 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.0 to 3.28.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](48ab28a6f5...dd746615b3
2025-02-07 19:12:24 +01:00
dependabot[bot]
f453f43178
chore(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 ( #15961 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6f51ac03b9...65c4c4a1dd
2025-02-07 19:12:03 +01:00
dependabot[bot]
151d7e6c28
chore(deps): bump bufbuild/buf-setup-action from 1.48.0 to 1.50.0 ( #15962 )
...
Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action ) from 1.48.0 to 1.50.0.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases )
- [Commits](1115d0acd3...a47c93e0b1
2025-02-07 19:11:47 +01:00
dongjiang
b3a9fa3df9
chore: Upgrade to golangci-lint v1.63.4 ( #15799 )
...
update golangci-lint and enable more lntiers
This updates golangci-lint to v1.63.4 and enables linters
`nilnesserr` and `exptostd`
Signed-off-by: dongjiang <dongjiang1989@126.com>
---------
Signed-off-by: dongjiang <dongjiang1989@126.com>
2025-01-14 19:22:22 +01:00
dependabot[bot]
cb0dc8bc55
chore(deps): bump bufbuild/buf-setup-action from 1.47.2 to 1.48.0 ( #15756 )
...
Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action ) from 1.47.2 to 1.48.0.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases )
- [Commits](9672cee018...1115d0acd3
2025-01-13 19:13:47 +01:00
dependabot[bot]
ebb3c4e35f
chore(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0 ( #15757 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9
2025-01-13 19:13:29 +01:00
dependabot[bot]
2a5cd8179d
chore(deps): bump github/codeql-action from 3.27.7 to 3.28.0 ( #15759 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.7 to 3.28.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](babb554ede...48ab28a6f5
2025-01-13 19:13:12 +01:00
dependabot[bot]
08c81b721a
chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0 ( #15581 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](41dfa10bad...3041bf56c9
2024-12-29 17:08:18 +00:00
dependabot[bot]
4d2c1c1d06
chore(deps): bump actions/cache from 4.1.2 to 4.2.0 ( #15583 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](6849a64899...1bd1e32a3b
2024-12-29 17:50:09 +01:00
dependabot[bot]
43fd40cae0
chore(deps): bump github/codeql-action from 3.27.5 to 3.27.7 ( #15582 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.5 to 3.27.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f09c1c0a94...babb554ede
2024-12-29 17:49:51 +01:00
Bartlomiej Plotka
804ab49cfc
Merge pull request #15695 from prometheus/rm-funcbench
...
ci: We removed funbench functionality from the test-infra, removing CI job for it.
2024-12-19 18:20:54 +01:00
Björn Rabenstein
318d6bc4bf
Merge pull request #15548 from TinfoilSubmarine/fix/386-test-failures
...
test: fixes for 32-bit archs
2024-12-18 15:49:30 +01:00
bwplotka
221f50e413
ci: We removed funbench functionality from test-infra, removing CI job too.
...
Signed-off-by: bwplotka <bwplotka@gmail.com>
2024-12-18 14:11:33 +00:00
bwplotka
6e3eba133d
prombench: Extend GH job for the upcoming custom benchmark feature.
...
See https://github.com/prometheus/proposals/pull/41
Signed-off-by: bwplotka <bwplotka@gmail.com>
2024-12-17 10:54:03 +00:00
Joel Beckmeyer
5271dabb29
run all tests for 386
...
Signed-off-by: Joel Beckmeyer <joel@beckmeyer.us>
2024-12-16 10:45:14 -05:00
SuperQ
64dd7079fa
Add old UI to dependabot
...
Until we have removed the code for the old UI, we should maintain the
dependabot configuration for security warnings.
Signed-off-by: SuperQ <superq@gmail.com>
2024-12-10 17:12:06 +01:00
dependabot[bot]
5352e48ddd
chore(deps): bump github/codeql-action from 3.26.10 to 3.27.5 ( #15510 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.10 to 3.27.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e2b3eafc8d...f09c1c0a94
2024-12-03 12:00:09 +00:00
dependabot[bot]
83b4723ac2
chore(deps): bump bufbuild/buf-setup-action from 1.43.0 to 1.47.2 ( #15508 )
...
Bumps [bufbuild/buf-setup-action](https://github.com/bufbuild/buf-setup-action ) from 1.43.0 to 1.47.2.
- [Release notes](https://github.com/bufbuild/buf-setup-action/releases )
- [Commits](62ee92603c...9672cee018
2024-12-03 12:37:50 +01:00
dependabot[bot]
da1de613fd
chore(deps): bump actions/cache from 4.0.2 to 4.1.2 ( #15509 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.0.2 to 4.1.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](0c45773b62...6849a64899
2024-12-03 12:36:57 +01:00
dependabot[bot]
071955df6d
chore(deps): bump actions/setup-go from 5.0.2 to 5.1.0 ( #15511 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.2 to 5.1.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0a12ed9d6a...41dfa10bad
2024-12-03 12:35:32 +01:00
Arve Knudsen
89bbb885e5
Upgrade to golangci-lint v1.62.0 ( #15424 )
...
Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
2024-11-20 17:22:20 +01:00
SuperQ
5e8de28aec
Update golangci-lint
...
Update to the latest golangci-lint version.
Signed-off-by: SuperQ <superq@gmail.com>
2024-11-08 15:31:03 +01:00
dependabot[bot]
405b088d6d
chore(deps): bump actions/upload-artifact from 4.4.0 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...b4b15b8c7c
2024-11-08 08:50:27 +00:00
