dependabot[bot]
ebc46ef1fc
Bump actions/setup-node from 3 to 4
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-10-30 03:31:38 +00:00
Serhii Petrov
9ea4c136d9
Test against php 8.3
2023-10-09 20:15:07 +03:00
Jérémy Benoist
adc79d0578
Fix symfony pattern for dependabot
...
`*symfony*` matches to much deps (ie `phpstan-symfony`) which aren't related to Symfony release.
`symfony/*` will properly match Symfony release better.
2023-10-02 09:17:32 +02:00
Jérémy Benoist
7cbe1dafb3
Avoid deps for Symfony/*
...
Until we release official support for Symfony 5+
2023-10-02 08:35:01 +02:00
Yassine Guedidi
752606941f
Remove the Assets workflow
2023-09-27 19:16:25 +02:00
Yassine Guedidi
fde129e5c6
Build assets on release
2023-09-27 19:13:22 +02:00
Kevin Decherf
2910fb6da4
Merge branch '2.6' into port/2.6.4-2.6.6
...
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2023-09-18 16:50:07 +02:00
Rotzbua
49e8619c01
Upgrade to NodeJS 18
...
* GH Actions: use cache
* GH Actions: use `.nvmrc`
2023-09-17 19:29:46 +02:00
Jérémy Benoist
944461d67c
Move grouping deps in the right place
...
I put npm grouped deps inside the composer section, which is why it wasn't working.
I move it in the right place and also added one grouped deps for Symfony*
2023-09-12 09:52:43 +02:00
dependabot[bot]
f1c9e4ca3a
Bump actions/checkout from 3 to 4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-11 02:30:18 +00:00
Jeremy Benoist
5db058ff72
Update assets & add grouped update
2023-09-04 09:42:56 +02:00
Jeremy Benoist
aaf4ab2d2a
Add Google mailer
...
SMTP is the default provider to send email.
But users tend to use Gmail from time to time. So, instead of a complex installation to allow it, we prefer to ship it with the default package.
Also:
- update deps globally
- lock symfony/* deps to 4.4
2023-08-28 18:01:09 +02:00
Nicolas Lœuillet
382272c51c
Add composer normalizer
2023-07-26 15:12:47 +02:00
Jeremy Benoist
8b9fd04c74
Add a new build to test when no database table prefix are defined
...
This is mostly to avoid further error when users don't defined a database table prefix. it's recommenced to define one anyway.
Also enable verbose migration so we'll be able to actually view SQL queries (and execution time).
2023-07-17 14:21:12 +02:00
Casper Meijn
5ca4df1585
Add test and formatter commands to CONTRIBUTING.md
2023-07-15 14:53:25 +02:00
dependabot[bot]
4fc21d08f2
Bump dependabot/fetch-metadata from 1.5.1 to 1.6.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.5.1 to 1.6.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.5.1...v1.6.0 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-03 02:28:14 +00:00
dependabot[bot]
27a650ef97
Bump dependabot/fetch-metadata from 1.4.0 to 1.5.1
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.4.0 to 1.5.1.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.4.0...v1.5.1 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-29 02:58:49 +00:00
Jeremy Benoist
3de290b441
Enable 8.2 in CI
2023-04-24 15:20:58 +02:00
dependabot[bot]
6bbbcdf791
Bump dependabot/fetch-metadata from 1.3.6 to 1.4.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.3.6 to 1.4.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.6...v1.4.0 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-24 02:59:20 +00:00
dependabot[bot]
8bd2bae841
Bump dependabot/fetch-metadata from 1.3.5 to 1.3.6
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.3.5 to 1.3.6.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.5...v1.3.6 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-01-30 03:07:21 +00:00
Jérémy Benoist
c19a0c6fe5
Ignore lcobucci/jwt > 4.2.0
2022-12-16 13:40:12 +01:00
Jeremy Benoist
b3099f68c5
Update all Doctrine deps
...
Also update these deps to be compatible with latest Doctrine version:
- `friendsofsymfony/oauth-server-bundle`
- `lexik/form-filter-bundle`
- `dama/doctrine-test-bundle`
2022-12-16 10:29:42 +01:00
Jeremy Benoist
5e2ad5f8db
Move translations files to `/translations`
...
This is a recommendation for Symfony 5
2022-12-15 21:19:41 +01:00
Jeremy Benoist
33267f0736
Update to FOSUserBundle 3.1
...
Also remove some deprecation from Symfony.
Use `LegacyEventDispatcherProxy` to handle Symfony 4 dispatch from FOSUser
2022-12-14 09:42:17 +01:00
Jeremy Benoist
14cbe0975d
Upgrade PHPStan
2022-11-23 15:22:00 +01:00
dependabot[bot]
b5809669d4
Bump dependabot/fetch-metadata from 1.3.4 to 1.3.5
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.3.4 to 1.3.5.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.4...v1.3.5 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-07 03:06:00 +00:00
Jeremy Benoist
8d3fcd4635
Merge remote-tracking branch 'origin/master' into 2.6.0
2022-11-03 10:30:17 +01:00
Jérémy Benoist
641aeb1f4b
Remove `weblate` PR from the automated changelog
...
Instead of having each PR from @weblate we just put a link to all PRs for the closed milestone.
2022-10-21 14:12:45 +02:00
Jeremy Benoist
c372d68cc1
Merge remote-tracking branch 'origin/master' into 2.6.0
2022-10-18 11:11:02 +02:00
dependabot[bot]
a34750b5ee
Bump dependabot/fetch-metadata from 1.3.1 to 1.3.4
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 1.3.1 to 1.3.4.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.1...v1.3.4 )
---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 02:16:51 +00:00
Jeremy Benoist
f2f542d093
Allow auto merging of Dependabot JS minor or patch
...
Reducing the time consuming of merging deps which shouldn't break the project
2022-10-03 09:39:31 +02:00
Yassine Guedidi
fc85cfd52e
Fix TwigCS issues
2022-08-24 23:13:18 +02:00
Yassine Guedidi
4742b890da
Add TwigCS to the CI
2022-08-24 23:12:42 +02:00
Jeremy Benoist
2984c0dfcc
Merge remote-tracking branch 'origin/master' into 2.6.0
2022-06-15 16:17:50 +02:00
Jeremy Benoist
40595af2cf
Merge remote-tracking branch 'origin/master' into 2.6.0
2022-06-09 11:33:05 +02:00
Jeremy Benoist
aa029ea73e
Automatically create the package after a release
...
And then upload it to the created release.
One less step during the release process 💪
We are using that GitHub Actions: https://github.com/shogo82148/actions-upload-release-asset
I've also:
- updated the release script to clone the repo using `https` instead of `git` (otherwise it failed during the build)
- use `md5sum` instead of `md5` because the latest isn't available in GitHub Actions
2022-06-09 11:30:14 +02:00
Jeremy Benoist
ce8369ce2d
Jump to Node 16 to build assets
2022-05-23 08:04:16 +02:00
Yassine Guedidi
819487721a
Back to latest composer version
2022-05-21 23:46:49 +02:00
Yassine Guedidi
1bd86e156e
Drop PHP prior to 7.4
2022-05-13 07:29:23 +02:00
dependabot[bot]
a5d883a55d
Bump actions/setup-node from 2 to 3
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 2 to 3.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-19 19:05:39 +00:00
naveensrinivasan
d52f00132a
Included githubactions in the dependabot config
...
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-19 13:55:41 -05:00
naveensrinivasan
8446cda519
Set permissions for GitHub actions
...
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-16 01:58:38 +00:00
Jeremy Benoist
0ac8089eee
CI workaround for PHP < 7.4 & MySQL 8
...
The error on PHP 7.2 & 7.3 is:
> PDO::__construct(): The server requested authentication method unknown to the client [caching_sha2_password]
See:
- https://stackoverflow.com/q/53066962/569101
- https://stackoverflow.com/q/52364415/569101
- https://stackoverflow.com/q/51489616/569101
- https://stackoverflow.com/q/50026939/569101
Also upgrade `actions/checkout` v3
2022-04-11 22:11:22 +02:00
Kevin Decherf
f51008aef0
Update docker-compose and Dockerfile for dev env
...
This change should ease the spawn of a development environment.
It can be used as a vscode devcontainer.
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2022-04-04 10:10:55 +02:00
Kevin Decherf
71ffcdc710
Update README
...
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2022-04-04 10:10:55 +02:00
Jeremy Benoist
fea2b46496
Composer 2.3 isn't compatible with wallabag
2022-04-01 16:09:59 +02:00
Jeremy Benoist
9e5a7db740
2.4.3
...
Also exclude @dependabot from automated GitHub release
2022-02-14 16:25:16 +01:00
Jeremy Benoist
3c507d676f
Add build test on PHP 8.0 & 8.1
...
Add `isTransactional` to `WallabagMigration` because PHP 8 behave differently with PDO transaction.
This is a workaround because we can't upgrade Doctrine Migration for now (upper versions have the fix).
- Build is now using Composer v2 (instead of v1)
- All actions have been updated to latest version
- Fix bug in PHP 8 were `$entry->getTags()` can't be properly used as a _traversable_ by `assertContains` during tests. Added a custom method `Entry::getTagsLabel()` which return a flatted tag array with only label
- Replace `assertNotRegExp` by `assertDoesNotMatchRegularExpression` because it was deprecated
2022-01-31 12:59:39 +01:00
Jeremy Benoist
96e2e8eeeb
Rebuild assets
...
Also update GitHub Actions to latest versions
2022-01-05 14:26:10 +01:00
Jeremy Benoist
0afd91a160
Remove dead test
...
The URL seems to be down now.
Move to a more frequent deps update
2022-01-05 13:25:50 +01:00