Adam Cozzette
a2f3fd0367
Upgrade our `emulation` and `tcmalloc` Docker images
...
This will pull in a change allowing us to exclude Bazel targets using the
`-//foo:bar` syntax.
PiperOrigin-RevId: 558149395
1 year ago
Mike Kruskal
fff4905588
Drop support for Bazel 5.
...
This moves all our CI to Bazel 6 and drops the additional parameterization we had on Bazel version.
PiperOrigin-RevId: 551986376
1 year ago
Mike Kruskal
a80daa2a2c
Drop support for Bazel 5.
...
This moves all our CI to Bazel 6 and drops the additional parameterization we had on Bazel version.
PiperOrigin-RevId: 551986376
1 year ago
Tomo Suzuki
2fd29b0b73
Move linkage monitor check as part of Bazel build ( #12980 )
...
Fixes https://github.com/protocolbuffers/protobuf/issues/12912
Moving the Linkage Monitor check to Bazel, so that the result is cached.
Closes #12980
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12980 from suztomo:bazelize_linkage_monitor 51c00949ba
PiperOrigin-RevId: 539681611
2 years ago
Joyce
010fde9a18
Set top level permissions to read only on GitHub Workflows ( #12971 )
...
Hi, here is Joyce from Google again.
I'd like starting suggesting the [Token-Permission check](https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions ) fix.
Let me know if I might be missing any permission. Thanks!
### Security Reason
This is needed because, by default, github grants write-all permission to all workflows, which could be exploit by an attacker in case of a compromised workflow. Limiting permissions is a simple and effective way to also limit the impact of an eventual compromised workflow.
Thus, it is both a recommendation from [OpenSSF Scorecard](https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions ) and the [Github](https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions ) to always use credentials that are minimally scoped.
Closes #12971
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12971 from joycebrum:main 6d6dac5678
PiperOrigin-RevId: 537973051
2 years ago
deannagarcia
0e23f18865
Merge to main after 23.0 release ( #12721 )
...
Closes #12721
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12721 from protocolbuffers:main-202305082101 36482b4c68
PiperOrigin-RevId: 530664393
2 years ago
Protobuf Team Bot
67d9ea87f3
Internal change
...
PiperOrigin-RevId: 530619366
2 years ago
Deanna Garcia
d19c7997ab
Fix bom tests
2 years ago
Deanna Garcia
99c9491f7c
Fix maven pom test
2 years ago
Tomo Suzuki
d692223887
[WIP] Java BOM check with generated pom.xml files ( #12502 )
...
This check aims to address issues like https://github.com/protocolbuffers/protobuf/issues/12170 "Java 3.22.1: broken pom.xml".
Closes #12502
COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12502 from suztomo:bom_check c69e2af597
PiperOrigin-RevId: 526776900
2 years ago
Mike Kruskal
8894d03bae
Switch to docker image for protoc build in java linkage test
...
This will prevent non-hermetic outages and better unify our test infrastructure.
PiperOrigin-RevId: 521779648
2 years ago
deannagarcia
15bd2c21cf
Merge 22.x back to main ( #12169 )
...
Closes #12169
PiperOrigin-RevId: 515161008
2 years ago
Mike Kruskal
8a07f45293
Add release tests for statically linked binaries
...
For now, this only covers linux on the two architectures we have testing support for. However, it serves as a good sanity check and can be expanded in the future.
PiperOrigin-RevId: 514449399
2 years ago
Mike Kruskal
804ec94a16
Add release tests for statically linked binaries
...
For now, this only covers linux on the two architectures we have testing support for. However, it serves as a good sanity check and can be expanded in the future.
PiperOrigin-RevId: 514449399
2 years ago
Mike Kruskal
8ad6cdd007
Modify release artifacts for protoc to statically link system libraries.
...
Closes #12063
PiperOrigin-RevId: 513034570
2 years ago
Mike Kruskal
723bd4c3c1
Modify release artifacts for protoc to statically link system libraries.
...
Closes #12063
PiperOrigin-RevId: 513034570
2 years ago
Deanna Garcia
c245167528
Fix docker image
2 years ago
Deanna Garcia
1456462a14
Add java8 tests and build flags
2 years ago
Mike Kruskal
ef8ebe6c19
Migrate our shared github actions to a separate repository.
...
This will make PRs from forked repositories significantly less painful, since they'll agree on which version of each action to use. OTOH, we'll have a separate repo that needs to be maintained, and changes to it will need to be coordinated and versioned carefully. This will likely need to be done less often though now that our infrastructure is stable.
PiperOrigin-RevId: 512117705
2 years ago
Mike Kruskal
27f4ecd9e5
Migrate Java and C# Linux tests to GHA
...
PiperOrigin-RevId: 506782714
2 years ago