From eabe6828619b24b0d3b03e01582efb570798262f Mon Sep 17 00:00:00 2001
From: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
Date: Thu, 28 Dec 2023 20:45:27 +0100
Subject: [PATCH 1/3] Create FUNDING.yml
Signed-off-by: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
---
.github/FUNDING.yml | 25 +++++++++++++++++++++++++
1 file changed, 25 insertions(+)
create mode 100644 .github/FUNDING.yml
diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml
new file mode 100644
index 0000000..e58518a
--- /dev/null
+++ b/.github/FUNDING.yml
@@ -0,0 +1,25 @@
+# These are supported funding model platforms
+
+jobs:
+ job_id:
+ permissions:
+ contents: 'read'
+ id-token: 'write'
+
+ steps:
+
+ # ...
+
+ - uses: 'google-github-actions/auth@v2'
+ with:
+ workload_identity_provider: 'projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider'
+ service_account: 'my-service-account@my-project.iam.gserviceaccount.com'
+
+ - uses: 'google-github-actions/deploy-cloudrun@v2'
+ with:
+ image: 'gcr.io/cloudrun/hello'
+ service: 'hello-cloud-run'
+github: [KIDI’S TECH.com,kidiit]
+patreon: KIDI'S-TECH@patreon.com
+community_bridge: https://openprofile.dev/profile/kiditech
+custom: [https://github.com/KIDI-S-TECH, https://github.com/KidiIT]
From 8a12fc952bb5656bd7d34b59ed11faf7c4db3acf Mon Sep 17 00:00:00 2001
From: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
Date: Thu, 28 Dec 2023 20:46:54 +0100
Subject: [PATCH 2/3] Create codeql.yml
Signed-off-by: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
---
.github/workflows/codeql.yml | 81 ++++++++++++++++++++++++++++++++++++
1 file changed, 81 insertions(+)
create mode 100644 .github/workflows/codeql.yml
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..0a82e48
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,81 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL"
+
+on:
+ push:
+ branches: [ "main" ]
+ pull_request:
+ branches: [ "main" ]
+ schedule:
+ - cron: '15 14 * * 6'
+
+jobs:
+ analyze:
+ name: Analyze
+ # Runner size impacts CodeQL analysis time. To learn more, please see:
+ # - https://gh.io/recommended-hardware-resources-for-running-codeql
+ # - https://gh.io/supported-runners-and-hardware-resources
+ # - https://gh.io/using-larger-runners
+ # Consider using larger runners for possible analysis time improvements.
+ runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
+ timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }}
+ permissions:
+ actions: read
+ contents: read
+ security-events: write
+
+ strategy:
+ fail-fast: false
+ matrix:
+ language: [ 'javascript-typescript' ]
+ # CodeQL supports [ 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' ]
+ # Use only 'java-kotlin' to analyze code written in Java, Kotlin or both
+ # Use only 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
+ # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
+
+ steps:
+ - name: Checkout repository
+ uses: actions/checkout@v4
+
+ # Initializes the CodeQL tools for scanning.
+ - name: Initialize CodeQL
+ uses: github/codeql-action/init@v3
+ with:
+ languages: ${{ matrix.language }}
+ # If you wish to specify custom queries, you can do so here or in a config file.
+ # By default, queries listed here will override any specified in a config file.
+ # Prefix the list here with "+" to use these queries and those in the config file.
+
+ # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+ # queries: security-extended,security-and-quality
+
+
+ # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift).
+ # If this step fails, then you should remove it and run the build manually (see below)
+ - name: Autobuild
+ uses: github/codeql-action/autobuild@v3
+
+ # ℹ️ Command-line programs to run using the OS shell.
+ # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+
+ # If the Autobuild fails above, remove it and uncomment the following three lines.
+ # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
+
+ # - run: |
+ # echo "Run, Build Application using script"
+ # ./location_of_script_within_repo/buildscript.sh
+
+ - name: Perform CodeQL Analysis
+ uses: github/codeql-action/analyze@v3
+ with:
+ category: "/language:${{matrix.language}}"
From bd343216823297ebe57ac9881368984bea283708 Mon Sep 17 00:00:00 2001
From: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
Date: Thu, 28 Dec 2023 20:48:15 +0100
Subject: [PATCH 3/3] Create dependabot.yml
Signed-off-by: KIDI'S-TECH <146373396+KidiIT@users.noreply.github.com>
---
.github/dependabot.yml | 34 ++++++++++++++++++++++++++++++++++
1 file changed, 34 insertions(+)
create mode 100644 .github/dependabot.yml
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..f575ec7
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,34 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+# `dependabot.yml` file with updates
+# disabled for Docker and limited for npm
+
+version: 2
+updates:
+ # Configuration for Dockerfile
+ - package-ecosystem: "docker"
+ directory: "/"
+ schedule:
+ interval: "weekly"
+ # Disable all pull requests for Docker dependencies
+ open-pull-requests-limit: 0
+
+ # Configuration for npm
+ - package-ecosystem: "npm"
+ directory: "/"
+ schedule:
+ interval: "weekly"
+ ignore:
+ # Ignore updates to packages that start with 'aws'
+ # Wildcards match zero or more arbitrary characters
+ - dependency-name: "aws*"
+ # Ignore some updates to the 'express' package
+ - dependency-name: "express"
+ # Ignore only new versions for 4.x and 5.x
+ versions: ["4.x", "5.x"]
+ # For all packages, ignore all patch updates
+ - dependency-name: "*"
+ update-types: ["version-update:semver-patch"]
pFad - Phonifier reborn
Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.
Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.
Alternative Proxies:
Alternative Proxy
pFad Proxy
pFad v3 Proxy
pFad v4 Proxy