Tag: Branch: Tree: b7de33ce48

21.x

22.x

22.x-202303072154

22.x-202304122338

23.0-rc2-patch

23.x

23.x-202305051714

23.x-202305081751

23.x-202305171614

24.x

25.x

25.x-202311012212

25.x-allow-compat-test

25.x-compat-tests

25.x-compat-upgrade

26.x

27.x

28.x

28.x-202408082011

28.x-202409182056

29.x

3.0.x

3.1.x

3.10.x

3.11.x

3.12.x

3.13.x

3.14.x

3.15.x

3.16.x

3.17.x

3.18.x

3.19.x

3.2.x

3.20.x

3.3.x

3.5.x

3.6.x

3.7.x

3.8.x

3.9.x

4.0.x

add-support-for-options-in-ruby

add_missing_headers

b7-all

bazel-rules

bazel-rules2

bazel7-deb11

bcr

bootstrap_upb_fix

burndown_patches

bzlmod

cherrypickStatic

cherrypicks

cp-bzl

cp-java-feature-bootstrap

cp-java-generator

cp-segv

deannagarcia-patch-1

deannagarcia-patch-10

deannagarcia-patch-11

deannagarcia-patch-12

deannagarcia-patch-2

deannagarcia-patch-3

deannagarcia-patch-4

deannagarcia-patch-5

deannagarcia-patch-6

deannagarcia-patch-7

deannagarcia-patch-8

deannagarcia-patch-9

delete-internal-files

disable-upload-artifacts-action

dmaclach-mach_absolute_time

editions-27

ffi-fix

fix-25.x-staleness

fix_jruby_proto3_optional

gha

gha-actions

gha-migration

gha-migration2

gha-migration3

gha-test

ghaPassFail

java8

jruby_9.4.6.0

main

main-202302161846

main-202303072257

main-202304252156

main-202305082101

main-202310162054

main-202401251548

main-202404180211

main-202407112335

main-202409302244

main-tmp-1

main-tmp-2

main-tmp-3

main-tmp-test-branch

mavenTests

php-regen

pkgconfig2-22

pomTrial

reenable_cruby_ffi_tests

regen-upb

revert-12721-main-202305082101

revert-18339-bazel-rules2

rm-php-compat-code

ruby-ffi-freezing

ruby-json-pool-fix

ruby-rm-syntax

ruby_artifact_uploads

ruby_dep

set-ex-test

shaod2-patch-1

support_ruby_3.4.x

test_458711847

test_472529298

test_477475045

test_488676475

test_488736123

test_488863171

test_488996168

test_489037129

test_489075734

test_489259176

test_490412672

test_490480534

test_490544827

test_490775181

test_491410618

test_492007398

test_492047164

test_492051638

test_492365076

test_492380119

test_493086551

test_493088412

test_493584811

test_493743618

test_493886620

test_494027573

test_494043842

test_494271758

test_494398568

test_494723105

test_494824070

test_494835245

test_495003404

test_495019683

test_495043824

test_495125557

test_495293733

test_495294072

test_495352403

test_495412624

test_495507057

test_500390065

test_559560115

test_673637686

test_688236375

test_690747142

test_694296172

test_695874999

test_695907097

test_696193936

test_696314735

test_696627666

test_696648468

test_696653406

test_696685663

test_696996787

test_697057326

test_697064024

test_697519418

test_697543962

test_697570239

test_697675982

test_697733985

test_697737595

test_697740279

test_698127760

test_698146211

test_698366909

test_698390064

test_698410801

test_698427292

test_698449789

test_698470722

test_698483682

test_698517877

test_698524915

test_kfm

test_ruby

win2019-23.x

zhangskz-patch-1

3.15.0-rc1

conformance-build-tag

v16.2

v18.3

v19.5

v2.4.1

v2.5.0

v2.6.0

v2.6.1

v2.6.1rc1

v20.2

v21.0

v21.0-rc1

v21.0-rc2

v21.1

v21.10

v21.11

v21.12

v21.2

v21.3

v21.4

v21.5

v21.6

v21.7

v21.8

v21.9

v22.0

v22.0-rc1

v22.0-rc2

v22.0-rc3

v22.1

v22.2

v22.3

v22.4

v22.5

v23.0

v23.0-rc1

v23.0-rc2

v23.0-rc3

v23.1

v23.2

v23.3

v23.4

v24.0

v24.0-rc1

v24.0-rc2

v24.0-rc3

v24.1

v24.2

v24.3

v24.4

v25.0

v25.0-rc1

v25.0-rc2

v25.1

v25.2

v25.3

v25.4

v25.5

v26-dev

v26.0

v26.0-rc1

v26.0-rc2

v26.0-rc3

v26.1

v27-dev

v27.0

v27.0-rc1

v27.0-rc2

v27.0-rc3

v27.1

v27.2

v27.3

v27.4

v27.5

v28-dev

v28.0

v28.0-rc1

v28.0-rc2

v28.0-rc3

v28.1

v28.2

v28.3

v29-dev

v29.0-rc1

v29.0-rc2

v29.0-rc3

v3.0.0

v3.0.0-alpha-1

v3.0.0-alpha-2

v3.0.0-alpha-3

v3.0.0-alpha-3.1

v3.0.0-alpha-4

v3.0.0-alpha-4.1

v3.0.0-beta-1

v3.0.0-beta-1-bzl-fix

v3.0.0-beta-1.1

v3.0.0-beta-2

v3.0.0-beta-3

v3.0.0-beta-3-pre-1

v3.0.0-beta-3.1

v3.0.0-beta-3.2

v3.0.0-beta-3.3

v3.0.0-beta-4

v3.0.0-javalite

v3.0.1-javalite

v3.0.2

v3.1.0

v3.1.0-alpha-1

v3.10.0

v3.10.0-rc1

v3.10.1

v3.11.0

v3.11.0-rc1

v3.11.0-rc2

v3.11.1

v3.11.2

v3.11.3

v3.11.4

v3.12.0

v3.12.0-rc1

v3.12.0-rc2

v3.12.1

v3.12.2

v3.12.3

v3.12.4

v3.13.0

v3.13.0-rc3

v3.13.0.1

v3.14.0

v3.14.0-rc1

v3.14.0-rc2

v3.14.0-rc3

v3.15.0

v3.15.0-rc1

v3.15.0-rc2

v3.15.1

v3.15.2

v3.15.3

v3.15.4

v3.15.5

v3.15.6

v3.15.7

v3.15.8

v3.16.0

v3.16.0-rc1

v3.16.0-rc2

v3.16.1

v3.16.2

v3.16.3

v3.17.0

v3.17.0-rc1

v3.17.0-rc2

v3.17.1

v3.17.2

v3.17.3

v3.18.0

v3.18.0-rc1

v3.18.0-rc2

v3.18.1

v3.18.2

v3.18.3

v3.19.0

v3.19.0-rc1

v3.19.0-rc2

v3.19.1

v3.19.2

v3.19.3

v3.19.4

v3.19.5

v3.19.6

v3.2.0

v3.2.0-alpha-1

v3.2.0-rc.1

v3.2.0rc2

v3.2.1

v3.20.0

v3.20.0-rc1

v3.20.0-rc2

v3.20.0-rc3

v3.20.1

v3.20.1-rc1

v3.20.2

v3.20.3

v3.21.0

v3.21.0-rc2

v3.21.1

v3.21.10

v3.21.11

v3.21.12

v3.21.2

v3.21.3

v3.21.4

v3.21.5

v3.21.6

v3.21.7

v3.21.8

v3.21.9

v3.22.0

v3.22.0-rc1

v3.22.0-rc2

v3.22.0-rc3

v3.22.1

v3.22.2

v3.22.3

v3.22.4

v3.22.5

v3.23.0

v3.23.0-rc1

v3.23.0-rc2

v3.23.0-rc3

v3.23.1

v3.23.2

v3.23.3

v3.23.4

v3.24.0

v3.24.0-rc1

v3.24.0-rc2

v3.24.0-rc3

v3.24.1

v3.24.2

v3.24.3

v3.24.4

v3.25.0

v3.25.0-rc1

v3.25.0-rc2

v3.25.1

v3.25.2

v3.25.3

v3.25.4

v3.25.5

v3.26.0

v3.26.0-rc1

v3.26.0-rc2

v3.26.0-rc3

v3.26.1

v3.27.0

v3.27.0-rc1

v3.27.0-rc2

v3.27.0-rc3

v3.27.1

v3.27.2

v3.27.3

v3.27.4

v3.27.5

v3.28.0

v3.28.0-rc1

v3.28.0-rc2

v3.28.0-rc3

v3.28.1

v3.28.2

v3.28.3

v3.29.0-rc1

v3.29.0-rc2

v3.29.0-rc3

v3.3.0

v3.3.0rc1

v3.3.1

v3.3.2

v3.4.0

v3.4.0rc1

v3.4.0rc2

v3.4.0rc3

v3.4.1

v3.5.0

v3.5.0.1

v3.5.1

v3.5.1.1

v3.5.2

v3.6.0

v3.6.0.1

v3.6.0rc1

v3.6.0rc2

v3.6.1

v3.6.1.1

v3.6.1.2

v3.6.1.3

v3.7.0

v3.7.0-rc.2

v3.7.0-rc.3

v3.7.0rc1

v3.7.0rc2

v3.7.1

v3.8.0

v3.8.0-rc1

v3.9.0

v3.9.0-rc1

v3.9.1

v3.9.2

v4.22.0

v4.22.0-rc1

v4.22.0-rc2

v4.22.0-rc3

v4.22.1

v4.22.2

v4.22.3

v4.22.4

v4.22.5

v4.23.0

v4.23.0-rc1

v4.23.0-rc2

v4.23.0-rc3

v4.23.1

v4.23.2

v4.23.3

v4.23.4

v4.24.0

v4.24.0-rc1

v4.24.0-rc2

v4.24.0-rc3

v4.24.1

v4.24.2

v4.24.3

v4.24.4

v4.25.0

v4.25.0-rc1

v4.25.0-rc2

v4.25.1

v4.25.2

v4.25.3

v4.25.4

v4.25.5

v5.26.0

v5.26.0-rc1

v5.26.0-rc2

v5.26.0-rc3

v5.26.1

v5.27.0

v5.27.0-rc1

v5.27.0-rc2

v5.27.0-rc3

v5.27.1

v5.27.2

v5.27.3

v5.27.4

v5.27.5

v5.28.0

v5.28.0-rc1

v5.28.0-rc2

v5.28.0-rc3

v5.28.1

v5.28.2

v5.28.3

v5.29.0-rc1

v5.29.0-rc2

v5.29.0-rc3

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'b7de33ce48'

${ noResults }

Commit Graph

18 Commits (b7de33ce48a34ff1a1c824c82a1a4a0a06e24a23)

Author	SHA1	Message	Date
Mike Kruskal	4ce04206fc	Update our tests to use a custom checkout action. ... This will retry up to 3 times if we hit networks flakes updating our submodules. It will also allow us to easily inject other stability fixes to this step in the future. PiperOrigin-RevId: 568306356	1 year ago
Mike Kruskal	4d6ad56e4a	Migrate to sccache for better CMake caching ... This hooks up to the changes in https://github.com/protocolbuffers/protobuf-ci/pull/26. We see a speedup of up to 50% in no-op runs of our slowest CI builds. PiperOrigin-RevId: 565122690	1 year ago
Protobuf Team Bot	da398bd4c2	Hash pin github workflows ... ## Description I would like to suggest a security practice recommended by the [OpenSSF Scorecard][scorecard-repo] which is to hash pin dependencies to prevent typosquatting and tag renaming attacks. The change would only be applied to GitHub workflows. This means hash pinning GitHub Workflow actions. Along with hash-pinning dependencies, I also recommend adopting dependabot (or other dependency update tool) to help keep the dependencies up to date. Most tools can update hashes and associated semantic version comments. Any questions or concerns just let me know. Thanks! ## Additional Context A tag renaming attack is a type of attack whereby an attacker: - Hijack an action. - Upload a malicious version. - Replace existing tags with malicious versions. A [typosquatting attack][typosquatting] is a type of attack whereby an attacker: - Create a malicious package - Publish it with a similar name of a known package (example: numpi instead of numpy) For more informations about the dependency-update tools: - [Dependabot][dependabot] [scorecard-repo]: https://github.com/ossf/scorecard [deps-confusion]: https://www.websecuritylens.org/how-dependency-confusion-attack-works-and-how-to-prevent-it/ [typosquatting]: https://snyk.io/blog/typosquatting-attacks/ [dependabot]: https://github.blog/2020-06-01-keep-all-your-packages-up-to-date-with-dependabot/ [renovatebot]:https://www.mend.io/renovate/ PiperOrigin-RevId: 561019142	1 year ago
Adam Cozzette	a2f3fd0367	Upgrade our `emulation` and `tcmalloc` Docker images ... This will pull in a change allowing us to exclude Bazel targets using the `-//foo:bar` syntax. PiperOrigin-RevId: 558149395	1 year ago
Mike Kruskal	fff4905588	Drop support for Bazel 5. ... This moves all our CI to Bazel 6 and drops the additional parameterization we had on Bazel version. PiperOrigin-RevId: 551986376	1 year ago
Mike Kruskal	a80daa2a2c	Drop support for Bazel 5. ... This moves all our CI to Bazel 6 and drops the additional parameterization we had on Bazel version. PiperOrigin-RevId: 551986376	1 year ago
Tomo Suzuki	2fd29b0b73	Move linkage monitor check as part of Bazel build (#12980) ... Fixes https://github.com/protocolbuffers/protobuf/issues/12912 Moving the Linkage Monitor check to Bazel, so that the result is cached. Closes #12980 COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12980 from suztomo:bazelize_linkage_monitor 51c00949ba PiperOrigin-RevId: 539681611	1 year ago
Joyce	010fde9a18	Set top level permissions to read only on GitHub Workflows (#12971) ... Hi, here is Joyce from Google again. I'd like starting suggesting the [Token-Permission check](https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions) fix. Let me know if I might be missing any permission. Thanks! ### Security Reason This is needed because, by default, github grants write-all permission to all workflows, which could be exploit by an attacker in case of a compromised workflow. Limiting permissions is a simple and effective way to also limit the impact of an eventual compromised workflow. Thus, it is both a recommendation from [OpenSSF Scorecard](https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions) and the [Github](https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions) to always use credentials that are minimally scoped. Closes #12971 COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12971 from joycebrum:main 6d6dac5678 PiperOrigin-RevId: 537973051	1 year ago
deannagarcia	0e23f18865	Merge to main after 23.0 release (#12721) ... Closes #12721 COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12721 from protocolbuffers:main-202305082101 36482b4c68 PiperOrigin-RevId: 530664393	2 years ago
Protobuf Team Bot	67d9ea87f3	Internal change ... PiperOrigin-RevId: 530619366	2 years ago
Deanna Garcia	d19c7997ab	Fix bom tests	2 years ago
Deanna Garcia	99c9491f7c	Fix maven pom test	2 years ago
Tomo Suzuki	d692223887	[WIP] Java BOM check with generated pom.xml files (#12502) ... This check aims to address issues like https://github.com/protocolbuffers/protobuf/issues/12170 "Java 3.22.1: broken pom.xml". Closes #12502 COPYBARA_INTEGRATE_REVIEW=https://github.com/protocolbuffers/protobuf/pull/12502 from suztomo:bom_check c69e2af597 PiperOrigin-RevId: 526776900	2 years ago
Mike Kruskal	8894d03bae	Switch to docker image for protoc build in java linkage test ... This will prevent non-hermetic outages and better unify our test infrastructure. PiperOrigin-RevId: 521779648	2 years ago
deannagarcia	15bd2c21cf	Merge 22.x back to main (#12169) ... Closes #12169 PiperOrigin-RevId: 515161008	2 years ago
Mike Kruskal	8a07f45293	Add release tests for statically linked binaries ... For now, this only covers linux on the two architectures we have testing support for. However, it serves as a good sanity check and can be expanded in the future. PiperOrigin-RevId: 514449399	2 years ago
Mike Kruskal	804ec94a16	Add release tests for statically linked binaries ... For now, this only covers linux on the two architectures we have testing support for. However, it serves as a good sanity check and can be expanded in the future. PiperOrigin-RevId: 514449399	2 years ago
Mike Kruskal	8ad6cdd007	Modify release artifacts for protoc to statically link system libraries. ... Closes #12063 PiperOrigin-RevId: 513034570	2 years ago
Mike Kruskal	723bd4c3c1	Modify release artifacts for protoc to statically link system libraries. ... Closes #12063 PiperOrigin-RevId: 513034570	2 years ago
Deanna Garcia	c245167528	Fix docker image	2 years ago
Deanna Garcia	1456462a14	Add java8 tests and build flags	2 years ago
Mike Kruskal	ef8ebe6c19	Migrate our shared github actions to a separate repository. ... This will make PRs from forked repositories significantly less painful, since they'll agree on which version of each action to use. OTOH, we'll have a separate repo that needs to be maintained, and changes to it will need to be coordinated and versioned carefully. This will likely need to be done less often though now that our infrastructure is stable. PiperOrigin-RevId: 512117705	2 years ago
Mike Kruskal	27f4ecd9e5	Migrate Java and C# Linux tests to GHA ... PiperOrigin-RevId: 506782714	2 years ago