Any version not listed in the following tables is not supported.
| Component | Version | Supported |
|---|---|---|
| Bun Setup-cached | actions-bun-setup-cached-v1.1.3 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Commit Changes | actions-common-commit-changes-v1.1.1 | ✅ |
| Common Modify YAML | actions-common-modify-yaml-v1.2.0 | ✅ |
| Common Read YAML | actions-common-read-yaml-v1.1.0 | ✅ |
| Get App Git Identity | actions-common-get-app-git-identity-v1.1.0 | ✅ |
| Setup App Git Identity | actions-common-setup-app-git-identity-v1.1.0 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Update Helm Chart Version | actions-helm-update-chart-version-v1.4.4 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Verify Commit Authors | actions-helper-verify-commit-authors-v1.1.3 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Common Test Workflow21345 | workflows-common-test2-v2.11.1 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Auto Format | workflows-maintenance-auto-bun-prettier-v1.1.7 | ✅ |
| Auto-Approve & Merge Timed PRs | workflows-maintenance-timed-auto-pr-approve-v1.2.7 | ✅ |
| Maintenance Auto-approve-renovate | workflows-maintenance-auto-approve-renovate-v1.2.5 | ✅ |
| Component | Version | Supported |
|---|---|---|
| Rust Auto-format | workflows-rust-auto-format-v1.1.1 | ✅ |
| Rust Cargo Check | workflows-rust-cargo-check-v1.1.3 | ✅ |
| Rust Clippy | workflows-rust-clippy-v1.1.1 | ✅ |
| Rust Coverage (Codecov) | workflows-rust-coverage-codecov-v1.0.1 | ✅ |
| Rust Test | workflows-rust-test-v1.0.1 | ✅ |
We accept vulnerability reports via GitHub's Private Vulnerability Reporting feature.
- Go to the Security tab of this repository.
- Click on Report a vulnerability to open a private advisory.
- Provide details of the vulnerability.
This ensures that the report is handled securely and privately. Valid reports will be investigated and addressed as soon as possible.
This repository employs several automated security measures to ensure the integrity and safety of the code:
- CodeQL Analysis: Automated vulnerability scanning is run on every push and pull request.
- Dependency Updates: Renovate is used to keep dependencies up-to-date and secure.
- Action Linting:
zizmoris used to lint GitHub Actions workflows for security issues. - Branch Protection: Main branch is protected and requires passing status checks before merging.
- Protected Tags: All Git tags are immutable and protected. They can only be created through our automated release CI process.