From f715877a98a397f21408304e2c7467513b558725 Mon Sep 17 00:00:00 2001 From: addetz <43963729+addetz@users.noreply.github.com> Date: Wed, 28 Jan 2026 15:34:53 +0000 Subject: [PATCH 1/4] fix: bump node version DOC-2502 --- .github/workflows/release.yaml | 4 ++-- .github/workflows/test.yaml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index b84600b..c3c6e0e 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -25,7 +25,7 @@ jobs: - name: Setup nodeJs uses: actions/setup-node@v6 with: - node-version: "20" + node-version: "22" - name: Check out code into the Go module directory uses: actions/checkout@v6 @@ -103,7 +103,7 @@ jobs: - name: Setup Nodejs uses: actions/setup-node@v6 with: - node-version: 18 + node-version: 22 - name: Install dependencies run: npm ci diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 77963bb..4b79313 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -49,7 +49,7 @@ jobs: - name: Setup Nodejs uses: actions/setup-node@v6 with: - node-version: "20" + node-version: "22" - name: Install dependencies run: npm ci From e841db38e8c5f634b69a6e22ac57f61e6408e9ec Mon Sep 17 00:00:00 2001 From: addetz <43963729+addetz@users.noreply.github.com> Date: Wed, 28 Jan 2026 15:42:11 +0000 Subject: [PATCH 2/4] docs: add semantic release dry run check --- .github/workflows/test.yaml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 4b79313..3d63e84 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -83,3 +83,23 @@ jobs: PALETTE_REGISTRY_CLI_VERSION=${{env.PALETTE_REGISTRY_CLI_VERSION}} K9S_VERSION=${{env.K9S_VERSION}} SPECTRO_CLI_VERSION=${{env.SPECTRO_CLI_VERSION}} + + semantic: + name: "Semantic Release Dry Run" + needs: [run-ci] + runs-on: ubuntu-latest + if: ${{ !github.event.pull_request.draft }} + steps: + - name: Setup nodeJs + uses: actions/setup-node@v6 + with: + node-version: "20" + + - name: Check out code into the Go module directory + uses: actions/checkout@v6 + + - name: Install dependencies + run: npm ci + + - name: Semantic Release Dry Run + run: npx semantic-release --dry-run From 4d1b62e5a69cba919d74eb6a5fa5ad444f95c3b3 Mon Sep 17 00:00:00 2001 From: addetz <43963729+addetz@users.noreply.github.com> Date: Wed, 28 Jan 2026 15:43:45 +0000 Subject: [PATCH 3/4] docs: bump node version --- .github/workflows/test.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 3d63e84..552d8de 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -93,7 +93,7 @@ jobs: - name: Setup nodeJs uses: actions/setup-node@v6 with: - node-version: "20" + node-version: "22" - name: Check out code into the Go module directory uses: actions/checkout@v6 From dd61ca131ca4d1afd86b83cb71056ef596b95fa0 Mon Sep 17 00:00:00 2001 From: addetz <43963729+addetz@users.noreply.github.com> Date: Wed, 28 Jan 2026 15:50:40 +0000 Subject: [PATCH 4/4] docs: add node_version env and remove gitleaks --- .github/workflows/gitleaks.yaml | 36 --------------------------------- .github/workflows/release.yaml | 5 +++-- .github/workflows/test.yaml | 7 ++++--- 3 files changed, 7 insertions(+), 41 deletions(-) delete mode 100644 .github/workflows/gitleaks.yaml diff --git a/.github/workflows/gitleaks.yaml b/.github/workflows/gitleaks.yaml deleted file mode 100644 index bb431f7..0000000 --- a/.github/workflows/gitleaks.yaml +++ /dev/null @@ -1,36 +0,0 @@ -name: GitLeaks -on: [pull_request] - -concurrency: - group: gitleaks-${{ github.ref }} - cancel-in-progress: true - -jobs: - gitleaks-scan: - runs-on: ubuntu-latest - container: - image: gcr.io/spectro-dev-public/bulwark/gitleaks:latest - env: - REPO: ${{ github.event.repository.name }} - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - GITLEAKS_CONFIG: config.toml - steps: - - - name: run-bulwark-gitleaks-scan - shell: sh - env: - BRANCH: ${{ github.head_ref || github.ref_name }} - run: /workspace/bulwark -name CodeSASTGitLeaks -target $REPO -tags "branch:$BRANCH,options:--log-opts origin..HEAD" - - - name: check-result - shell: sh - run: | - resultPath=./$REPO/gitleaks.json - cat $resultPath | grep -v \"Match\"\: | grep -v \"Secret\"\: - total_failed_tests=`cat $resultPath | grep \"Fingerprint\"\: | wc -l` - if [ "$total_failed_tests" -gt 0 ]; then - echo "GitLeaks validation check failed with above findings..." - exit 1 - else - echo "GitLeaks validation check passed" - fi \ No newline at end of file diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index c3c6e0e..d0d088d 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -14,6 +14,7 @@ env: PALETTE_REGISTRY_CLI_VERSION: 4.6.1 K9S_VERSION: 0.32.5 SPECTRO_CLI_VERSION: 4.6.0 + NODE_VERSION: "22" jobs: docker: @@ -25,7 +26,7 @@ jobs: - name: Setup nodeJs uses: actions/setup-node@v6 with: - node-version: "22" + node-version: ${{ env.NODE_VERSION }} - name: Check out code into the Go module directory uses: actions/checkout@v6 @@ -103,7 +104,7 @@ jobs: - name: Setup Nodejs uses: actions/setup-node@v6 with: - node-version: 22 + node-version: ${{ env.NODE_VERSION }} - name: Install dependencies run: npm ci diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 552d8de..98783d6 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -17,7 +17,8 @@ env: TERRAFORM_VERSION: 1.9.0 PALETTE_REGISTRY_CLI_VERSION: 4.5.0 K9S_VERSION: 0.32.5 - SPECTRO_CLI_VERSION: 4.6.0 + SPECTRO_CLI_VERSION: 4.6.0 + NODE_VERSION: "22" concurrency: group: docker-${{ github.ref }} @@ -49,7 +50,7 @@ jobs: - name: Setup Nodejs uses: actions/setup-node@v6 with: - node-version: "22" + node-version: ${{ env.NODE_VERSION }} - name: Install dependencies run: npm ci @@ -93,7 +94,7 @@ jobs: - name: Setup nodeJs uses: actions/setup-node@v6 with: - node-version: "22" + node-version: ${{ env.NODE_VERSION }} - name: Check out code into the Go module directory uses: actions/checkout@v6