AikidoSec-safe-chain

mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 20:20:49 +00:00

Author	SHA1	Message	Date
Ethan Setnik	4f18395e93	Merge `e976d100f3` into `9453c8c0c9`	2026-05-21 17:05:01 -04:00
Sander Declerck	aed0aebdae	Store the slack url as a secret	2026-05-20 09:20:03 +02:00
bitterpanda	f6145d5c20	Update bump-endpoint.yml	2026-05-19 14:58:55 -07:00
bitterpanda	ab058367f1	temp: re-add push trigger for testing	2026-05-19 14:56:46 -07:00
bitterpanda	f2cce7b7e9	temp: skip if branch already exists instead of checking for PR	2026-05-19 14:56:15 -07:00
bitterpanda	0b46c5408b	Update bump-endpoint.yml	2026-05-19 14:55:22 -07:00
bitterpanda	07b8571758	temp: post compare URL to Slack instead of creating PR	2026-05-19 14:52:37 -07:00
bitterpanda	3f0837c65a	temp: use open-source-releaser runner	2026-05-19 14:48:23 -07:00
bitterpanda	47e9ed0f6c	temp: trigger bump-endpoint on push to test	2026-05-19 14:47:33 -07:00
bitterpanda	cbbbe703d3	Add a slack webhook curl req for endpoint bumps	2026-05-19 14:45:26 -07:00
bitterpanda	9d44eca1d1	Apply suggestion from @bitterpanda63	2026-05-19 14:39:04 -07:00
bitterpanda	b38aba43dd	Create a bump-endpoint.yml workflow	2026-05-19 14:37:02 -07:00
Sander Declerck	34898980d7	Remove obsolete npm token from pipeline	2026-05-18 10:24:37 +02:00
Ethan Setnik	e976d100f3	Add Homebrew tap for safe-chain (closes #372 ) Adds a publish-homebrew job to the release workflow that renders Formula/safe-chain.rb from a template (substituting the released version + per-platform SHA256s parsed from the install script asset) and pushes it to AikidoSec/homebrew-tap on every non-prerelease. Users can then install via: brew install AikidoSec/tap/safe-chain safe-chain setup The formula downloads the existing prebuilt single-file binaries from the GitHub release (the same ones the install script uses), so there is no extra build work in this pipeline. One-time maintainer setup (creating the AikidoSec/homebrew-tap repo and adding HOMEBREW_TAP_TOKEN as a secret on safe-chain) is documented in docs/homebrew.md. Tested locally on macOS arm64 with Homebrew 5.1.11: - brew style: 0 offenses - brew install --build-from-source: success - brew test: 2 assertions pass (--version + help) - brew audit --new: 0 offenses This PR addresses item 1 of #372 (Homebrew only). The integrity-check piece in item 2 has already shipped — install-safe-chain.sh already calls verify_checksum() against the baked-in SHA256s. winget and Chocolatey are not in scope here; see docs/homebrew.md for notes on why they belong in separate PRs.	2026-05-15 11:36:57 -04:00
Sander Declerck	6667e5d7b4	E2E: Use pnpm 10 in node versions that don't support pnpm 11	2026-05-11 16:04:27 +02:00
Sander Declerck	d0fc643f23	Verify sha2356 checksum in install scripts	2026-04-29 12:50:17 +02:00
Reinier Criel	9d5503aa54	Remove Node 16 from test matrix	2026-04-10 20:38:50 -07:00
Sander Declerck	f1307c6d82	Fix release pipeline for immutable builds again	2026-04-08 13:16:14 +02:00
Sander Declerck	47ee9718d3	Remove check on npm release	2026-04-06 15:15:01 +02:00
Sander Declerck	a5541df5ec	Fix pre-release publishing	2026-04-06 15:08:23 +02:00
Sander Declerck	ae63d42ae9	Copy shrinkwrap before publishing	2026-04-06 15:03:11 +02:00
bitterpanda	72f3ad48cd	Merge pull request #388 from AikidoSec/fix-releases Fix releases to create draft	2026-04-03 16:47:01 +02:00
bitterpanda	458f7c3c42	Fix releases to create draft	2026-04-03 16:43:36 +02:00
Sander Declerck	e12ae31795	Fix version number on Windows	2026-04-02 15:58:19 +02:00
bitterpanda	33f50ba580	Change runner to open-source-releaser in workflow	2026-03-25 11:04:05 -07:00
Sander Declerck	e9f941e3d0	Use runner with static ip for releases	2026-03-25 09:53:42 +01:00
aikido-autofix[bot]	cc5a7d9a0b	fix(security): autofix Template Injection in GitHub Workflows Action	2026-03-23 21:57:05 +00:00
Sander Declerck	b3e5726a83	Add new scripts to release	2026-03-13 14:30:29 +01:00
Sander Declerck	c87a8ad7d9	Use latest version	2026-03-02 11:49:39 +01:00
Sander Declerck	0d8b919831	Use bash for setting up safe-chain in CI	2026-01-20 13:34:22 +01:00
Sander Declerck	b2a5336556	Use latest build of safe-chain in CI again	2026-01-07 11:39:22 +01:00
Sander Declerck	7a4b7057bc	Test on gh actions	2026-01-07 09:40:40 +01:00
Sander Declerck	b19d67f853	Add linuxstatic artifact to release	2026-01-07 08:55:20 +01:00
Sander Declerck	ffaf7b60b6	Merge branch 'main' into docker-standalone-exec	2026-01-07 08:48:30 +01:00
Sander Declerck	1f4e50df9d	Checkout code in set version	2026-01-06 11:51:01 +01:00
Sander Declerck	66c1da0f1e	Rework release workflow (split npm and github release), and skip npm publish for prereleases	2026-01-06 11:48:06 +01:00
Sander Declerck	4aca6ef86a	Restore publish script	2026-01-06 10:54:34 +01:00
Sander Declerck	efe3b24ab9	Comment npm publish step	2026-01-06 10:07:40 +01:00
Sander Declerck	ff4618602a	Add extra artifact for linuxstatic, change install script to use it.	2026-01-06 09:02:22 +01:00
Sander Declerck	d530b9a1de	Run tests with 0.0.1-docker-linux-exec-beta	2026-01-06 08:17:35 +01:00
Sander Declerck	35ca2233f8	Use linuxstatic target for linux	2026-01-05 15:45:57 +01:00
Sander Declerck	40b8638ddd	Fix artifact name	2026-01-05 14:24:19 +01:00
Sander Declerck	a910851422	Build for linuxstatic and alpine	2026-01-05 14:15:28 +01:00
Sander Declerck	2cb891b935	Use correct Windows install script	2025-12-17 14:12:39 +01:00
Sander Declerck	a1ec035d9c	Use Windows installation script	2025-12-17 14:09:45 +01:00
Sander Declerck	148eb21430	Use new release script in GH workflows	2025-12-17 14:07:58 +01:00
bitterpanda	7dd832dd9a	Merge pull request #249 from AikidoSec/fix-failing-download-in-install-script-beta Add install script with hard-coded version to build output	2025-12-17 13:53:13 +01:00
Sander Declerck	e6cfa65ee2	Document release scripts	2025-12-16 16:09:57 +01:00
Sander Declerck	aaa5a41af6	Replace version correctly	2025-12-16 15:19:50 +01:00
Sander Declerck	8b2ebdf49c	Add correct destination operand for cp uninstall scripts	2025-12-16 14:57:53 +01:00

1 2 3

119 commits