dependabot[bot]
a1c299da13
Bump actions/setup-python from 3 to 4
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
9342adb0d6
Bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
335d058bf4
Bump codecov/codecov-action from 1 to 3
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 1 to 3.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v1...v3 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
a51c3a66f2
Bump actions/upload-artifact from 1 to 3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v1...v3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
dependabot[bot]
80bf2b3d2f
Bump actions/setup-python from 1 to 3
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 1 to 3.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v1...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2 years ago
naveen
acd2151927
chore: Included githubactions in the dependabot config
...
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2 years ago
neilnaveen
356c1f8336
chore: Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
2 years ago
Behdad Esfahbod
aef92b2846
[ci] Better compiler specification in configs-build job
2 years ago
Khaled Hosny
c8810277bb
Update Coverity settings
3 years ago
Khaled Hosny
392f201047
[ci] Pin gcovr to version 5.0
...
Fixes https://github.com/harfbuzz/harfbuzz/issues/3540
3 years ago
Behdad Esfahbod
d12c51e6e6
[ci] Rename configs-ci to configs-build
...
Since it doesn't run any tests.
3 years ago
Behdad Esfahbod
8f519d55ac
[meson] Put back Experimental-API infrastructure
...
Just unused for now.
3 years ago
Behdad Esfahbod
e0ac6c587b
Remove remaining traces of HB_EXPERIMENTAL_API
3 years ago
Behdad Esfahbod
b2f5131029
[ci] Add configs-ci.yml to test different configs
...
Fixes https://github.com/harfbuzz/harfbuzz/issues/2884
3 years ago
Khaled Hosny
e045dbf617
[ci] Upgrade pip on MSVC job
...
To avoid bad pre-installed version.
3 years ago
Khaled Hosny
02a737e532
Revert "[ci] Downgrade pip on MSVC jobs"
...
This reverts commit c4cf5ddb27
.
3 years ago
Khaled Hosny
c4cf5ddb27
[ci] Downgrade pip on MSVC jobs
...
Turns out, pip 22.0 is the source of the breakage:
https://github.com/mesonbuild/meson/issues/9955#issuecomment-1030843844
https://github.com/pypa/pip/issues/10875
3 years ago
Khaled Hosny
3160789701
[ci] windows-2016 image is going away in a bit
...
https://github.com/actions/virtual-environments/issues/4312
windows-latest is the same as windows-2019, but we are using explicit
windows-2019 image for when they become different.
3 years ago
David Korczynski
de9424172d
[ci] Add CIFuzz integration
...
Add CIFuzz integration, which will run the fuzzers for a short amount
of time when a PR is submitted on Github.
Signed-off-by: David Korczynski <david@adalogics.com>
3 years ago
Khaled Hosny
671f1d149a
[ci] meson 0.55.0 didn’t work for harfbuzz
...
https://github.com/mesonbuild/meson/issues/7437
3 years ago
Khaled Hosny
f1b20b5a14
[ci] Ragel subproject requires meson 0.55.0
3 years ago
Khaled Hosny
835fc1376f
[ci] Build ragel on the Linux CI job
...
To make sure we don’t accidentally break this option.
3 years ago
Khaled Hosny
7e9ac8fea2
[meson] Require ragel 6.10
...
Ragel 7 is also not stable from upstream's point of view.
This uses “version” argument find_program(), which was introduced in
meson 0.52.0, so I raised the minimum required meson version
accordingly.
3 years ago
Garret Rieger
f3e031539f
Revert "[ci] Bin FontTools version due to recent COLRv1 changes"
...
This reverts commit 163748b505
.
3 years ago
Khaled Hosny
163748b505
[ci] Bin FontTools version due to recent COLRv1 changes
...
Should be reverted once HarfBuzz updated to match FontTools.
3 years ago
Khaled Hosny
2c7ef0db0b
[ci] Generate only XML coverage data
...
That is the one we are uploading, and HTML coverage seems broken on
macOS.
3 years ago
Khaled Hosny
f6c9fcfd3e
[ci] Add macOS GitHub workflow
...
To collect codecov coverage on macOS as well (hopefully it will run the
macOS-specific tests).
3 years ago
Khaled Hosny
fa432a121e
Rename various references to master branch
3 years ago
Khaled Hosny
c571a96eb0
[ci] Disable Chafa on jobs that enables all auto features
...
No suitable versions are available on these setups.
4 years ago
Khaled Hosny
cad753e20f
[ci] Use known working Ubuntu version
...
GitHub Actions seems to be moving ubuntu-latest from ubuntu-18.04 to
ubuntu-20.04, but gcovr is broken for us in the new version.
4 years ago
Khaled Hosny
ff86c72e09
[ci] Avoid duplicate builds on pull requests
...
Don’t run GitHub Actions on pushing to branches other than master. This
was already the case for the linux-ci workflow.
4 years ago
Khaled Hosny
07315d9c83
[ci] Don’t install meson from its master branch
...
We are testing Harfbuzz not meson!
4 years ago
Behdad Esfahbod
7099a6dca1
[atomic] Remove old Intel primitives implementation
4 years ago
Khaled Hosny
fb1b29cee4
[ci] Fix msys2 breakage
...
What package manger randomly changes package names without fallback!
4 years ago
Khaled Hosny
296e9d7f33
[ci] Install fonttools using pip on msys2
...
Hopefully fixes the broken package.
4 years ago
Khaled Hosny
5091ea7e24
Merge pull request #2733 from astiob/buffer-context-doc
...
[docs] Describe buffer context applicability more explicitly
4 years ago
Ebrahim Byagowi
8586bad2bd
[ci] don't install rustc on linux-ci
...
https://github.com/harfbuzz/harfbuzz/pull/2610/checks?check_run_id=930572217
4 years ago
Ebrahim Byagowi
5f9ff04fb0
Add comparison against ttf-parser
4 years ago
Ebrahim Byagowi
7bab6087bf
[ci] Install meson's master
...
As https://github.com/mesonbuild/meson/issues/7437
4 years ago
Ebrahim Byagowi
11ae45f6eb
[ci] Don't run cov-analyze
...
https://stackoverflow.com/a/59353318
4 years ago
Christoph Reiter
d058e56cf1
[ci] Update to msys2/setup-msys2@v2
...
This update introduces better error handling and package caching by default.
4 years ago
Ebrahim Byagowi
ae8a71dfb8
[ci] minor, use --auto-features=enabled
4 years ago
Ebrahim Byagowi
f65a8a33b6
[ci] run cov-analyze
...
apparently we have to run that also ourselves, let's see
4 years ago
Christoph Reiter
93aea76a25
Fix the GHA msvc build
...
Use the 'ilammy/msvc-dev-cmd' action for setting up the msvc env,
so we can use powershell everywhere.
Remove a directory from PATH which was interfering with the meson build
by providing an unrelated pkg-config.exe.
4 years ago
Ebrahim Byagowi
3a46ae5127
Use GitHub Actions for msvc bots
4 years ago
Ebrahim Byagowi
8cbdb6fa41
[meson] Don't enable benchmark under the conditions ever
...
As we don't want to make headache for packagers as we don't want to
enable it when --auto-features=enabled is used.
4 years ago
Christoph Reiter
8e7a9b6eeb
msys2-ci: clean up
4 years ago
Christoph Reiter
9a4d590eee
CI: Port MSYS2 jobs from appveyor to github actions
4 years ago
Ebrahim Byagowi
2c1d699409
[ci] use clang for cov-build
...
to be honest this is done as a let's see what
happens move but the background is coverity
reveals more things for Firefox project and there
should be an interesting reason for it.
4 years ago
Ebrahim Byagowi
9ab7525a06
[ci] use a fixed version of meson in gh actions bot
...
a patch is uploaded to fix the issue with b_coverage in meson upstream thus let's revive our bot at least for now
4 years ago