From f70c72a2e28a5b42160463b2681b15e6cbb812f4 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sat, 22 Feb 2025 01:51:14 +0900 Subject: [PATCH 01/16] fix readme --- README.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index f66a4c6..04dd557 100644 --- a/README.md +++ b/README.md @@ -67,6 +67,7 @@ or download from [Releases](https://github.com/fujiwara/apprun-cli/releases) Action fujiwara/apprun-cli installs apprun-cli binary into /usr/local/bin. This action runs install only. +```yaml jobs: deploy: runs-on: ubuntu-latest @@ -74,10 +75,12 @@ jobs: - uses: actions/checkout@v4 - uses: fujiwara/apprun-cli@v0 with: - version: v0.3.0 + version: v0.3.2 # version-file: .apprun-cli-version - run: | apprun-cli deploy --app app.jsonnet +``` + Note: - `version` is not required, but it is recommended that the version be specified. From 3b53cd8200f94fd00d86ce0e20051b4d4216e931 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 23 Feb 2025 20:49:04 +0900 Subject: [PATCH 02/16] inputs.version is required. latest should not be used. --- action.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/action.yml b/action.yml index 6caeb7b..72d8c1b 100644 --- a/action.yml +++ b/action.yml @@ -1,8 +1,7 @@ inputs: version: description: "A version to install apprun-cli" - default: "latest" - required: false + required: true version-file: description: "File name that contains the apprun-cli version." required: false From 7eb1cc5276848b5aa724f8650a370df3af57fa27 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 23 Feb 2025 20:57:33 +0900 Subject: [PATCH 03/16] use v0 --- .github/workflows/action.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/action.yml b/.github/workflows/action.yml index 91e659d..9e312ae 100644 --- a/.github/workflows/action.yml +++ b/.github/workflows/action.yml @@ -20,14 +20,14 @@ jobs: - uses: actions/checkout@v4 # main branch - - uses: fujiwara/apprun-cli@main + - uses: fujiwara/apprun-cli@v0 with: version: v0.3.2 - run: | apprun-cli --version 2>&1 | fgrep v0.3.2 rm -f `which apprun-cli` - - uses: fujiwara/apprun-cli@main + - uses: fujiwara/apprun-cli@v0 with: version-file: .test-apprun-cli-version - run: | From bdf7213fd4d79c18f3ca1c6d8f236e6ce8343503 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sat, 1 Mar 2025 17:12:57 +0900 Subject: [PATCH 04/16] add dependabot --- .github/dependabot.yml | 4 ---- 1 file changed, 4 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index b9c8923..1ac4797 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -4,10 +4,6 @@ updates: directory: "/" schedule: interval: monthly - groups: - aws-sdk-go-v2: - patterns: - - "github.com/aws/aws-sdk-go-v2*" - package-ecosystem: github-actions directory: "/" schedule: From 2ffb1718fce3bf8863a771648e264afede3f3d7f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Mar 2025 08:15:24 +0000 Subject: [PATCH 05/16] Bump github.com/alecthomas/kong from 1.7.0 to 1.8.1 Bumps [github.com/alecthomas/kong](https://github.com/alecthomas/kong) from 1.7.0 to 1.8.1. - [Release notes](https://github.com/alecthomas/kong/releases) - [Commits](https://github.com/alecthomas/kong/compare/v1.7.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/alecthomas/kong dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 4b118c4..9cf0f99 100644 --- a/go.mod +++ b/go.mod @@ -5,7 +5,7 @@ go 1.23 require ( github.com/Songmu/prompter v0.5.1 github.com/aereal/jsondiff v0.4.0 - github.com/alecthomas/kong v1.7.0 + github.com/alecthomas/kong v1.8.1 github.com/fatih/color v1.18.0 github.com/fujiwara/tfstate-lookup v1.5.0 github.com/google/go-cmp v0.6.0 diff --git a/go.sum b/go.sum index fcc3430..cb4f4f8 100644 --- a/go.sum +++ b/go.sum @@ -47,8 +47,8 @@ github.com/aereal/jsondiff v0.4.0 h1:WJXeM07sOfnG9C7BQ4Zhjh5cu+J1YdgDE0lgafYg/L0 github.com/aereal/jsondiff v0.4.0/go.mod h1:PkwQgM5q19eAx1jeCpgnjO+eWoXIYvmVHo0R4YaZQBI= github.com/alecthomas/assert/v2 v2.11.0 h1:2Q9r3ki8+JYXvGsDyBXwH3LcJ+WK5D0gc5E8vS6K3D0= github.com/alecthomas/assert/v2 v2.11.0/go.mod h1:Bze95FyfUr7x34QZrjL+XP+0qgp/zg8yS+TtBj1WA3k= -github.com/alecthomas/kong v1.7.0 h1:MnT8+5JxFDCvISeI6vgd/mFbAJwueJ/pqQNzZMsiqZE= -github.com/alecthomas/kong v1.7.0/go.mod h1:p2vqieVMeTAnaC83txKtXe8FLke2X07aruPWXyMPQrU= +github.com/alecthomas/kong v1.8.1 h1:6aamvWBE/REnR/BCq10EcozmcpUPc5aGI1lPAWdB0EE= +github.com/alecthomas/kong v1.8.1/go.mod h1:p2vqieVMeTAnaC83txKtXe8FLke2X07aruPWXyMPQrU= github.com/alecthomas/repr v0.4.0 h1:GhI2A8MACjfegCPVq9f1FLvIBS+DrQ2KQBFZP1iFzXc= github.com/alecthomas/repr v0.4.0/go.mod h1:Fr0507jx4eOXV7AlPV6AVZLYrLIuIeSOWtW57eE/O/4= github.com/apapsch/go-jsonmerge/v2 v2.0.0 h1:axGnT1gRIfimI7gJifB699GoE/oq+F2MU7Dml6nw9rQ= From aa8054f8f4ee41ce0ebdd0f510731f49442e58a5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Mar 2025 08:15:33 +0000 Subject: [PATCH 06/16] Bump github.com/sacloud/apprun-api-go from 0.2.1 to 0.3.0 Bumps [github.com/sacloud/apprun-api-go](https://github.com/sacloud/apprun-api-go) from 0.2.1 to 0.3.0. - [Release notes](https://github.com/sacloud/apprun-api-go/releases) - [Changelog](https://github.com/sacloud/apprun-api-go/blob/main/.goreleaser.yaml) - [Commits](https://github.com/sacloud/apprun-api-go/compare/v0.2.1...v0.3.0) --- updated-dependencies: - dependency-name: github.com/sacloud/apprun-api-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 4b118c4..9e3b75f 100644 --- a/go.mod +++ b/go.mod @@ -11,7 +11,7 @@ require ( github.com/google/go-cmp v0.6.0 github.com/google/go-jsonnet v0.20.0 github.com/itchyny/gojq v0.12.17 - github.com/sacloud/apprun-api-go v0.2.1 + github.com/sacloud/apprun-api-go v0.3.0 github.com/schollz/progressbar/v3 v3.18.0 golang.org/x/sys v0.29.0 ) diff --git a/go.sum b/go.sum index fcc3430..b581c01 100644 --- a/go.sum +++ b/go.sum @@ -269,8 +269,8 @@ github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4= github.com/sacloud/api-client-go v0.2.10 h1:+rv3jDohD+pkdYwOTBiB+jZsM0xK3AxadXRzhp3q66c= github.com/sacloud/api-client-go v0.2.10/go.mod h1:Jj3CTy2+O4bcMedVDXlbHuqqche85HEPuVXoQFhLaRc= -github.com/sacloud/apprun-api-go v0.2.1 h1:ji5E3xjnXE3MjrOMK0+DXK22bYrGPDO0OETL/QniZFQ= -github.com/sacloud/apprun-api-go v0.2.1/go.mod h1:XB88c3BsZ8TBKNqN6K5+t/sJK+cg1PRRh2a1g4KBAzc= +github.com/sacloud/apprun-api-go v0.3.0 h1:KOV6NLDE97RZrB9cyFpAHZdHdPovdZAQB6970aHJSpM= +github.com/sacloud/apprun-api-go v0.3.0/go.mod h1:exDPXQMJIShaelI5LtXI3Ns7HwRLnYI8QuGFMd+pESM= github.com/sacloud/go-http v0.1.8 h1:ynreWA/vnM8G2ksbMlmefBHsXURKPz49qlPRqQ9IQdw= github.com/sacloud/go-http v0.1.8/go.mod h1:7TL7TN1fnPKHsMifIqURDkGujnKViCgEz5Ei/LQdFK8= github.com/sacloud/packages-go v0.0.10 h1:UiQGjy8LretewkRhsuna1TBM9Vz/l9FoYpQx+D+AOck= From 308d738bb560442e13a564bf531ff1cb8c211443 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Mar 2025 08:15:36 +0000 Subject: [PATCH 07/16] Bump golang.org/x/sys from 0.29.0 to 0.30.0 Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.29.0 to 0.30.0. - [Commits](https://github.com/golang/sys/compare/v0.29.0...v0.30.0) --- updated-dependencies: - dependency-name: golang.org/x/sys dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 4b118c4..3a23d9b 100644 --- a/go.mod +++ b/go.mod @@ -13,7 +13,7 @@ require ( github.com/itchyny/gojq v0.12.17 github.com/sacloud/apprun-api-go v0.2.1 github.com/schollz/progressbar/v3 v3.18.0 - golang.org/x/sys v0.29.0 + golang.org/x/sys v0.30.0 ) require ( diff --git a/go.sum b/go.sum index fcc3430..ff39bec 100644 --- a/go.sum +++ b/go.sum @@ -364,8 +364,8 @@ golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBc golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU= -golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc= +golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.28.0 h1:/Ts8HFuMR2E6IP/jlo7QVLZHggjKQbhu/7H0LJFr3Gg= From 73072c709d1772babfd88fad16864bc10cbf063e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Mar 2025 08:22:17 +0000 Subject: [PATCH 08/16] Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.6.0 to 0.7.0. - [Release notes](https://github.com/google/go-cmp/releases) - [Commits](https://github.com/google/go-cmp/compare/v0.6.0...v0.7.0) --- updated-dependencies: - dependency-name: github.com/google/go-cmp dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index fc3ab9d..01c576b 100644 --- a/go.mod +++ b/go.mod @@ -8,7 +8,7 @@ require ( github.com/alecthomas/kong v1.8.1 github.com/fatih/color v1.18.0 github.com/fujiwara/tfstate-lookup v1.5.0 - github.com/google/go-cmp v0.6.0 + github.com/google/go-cmp v0.7.0 github.com/google/go-jsonnet v0.20.0 github.com/itchyny/gojq v0.12.17 github.com/sacloud/apprun-api-go v0.3.0 diff --git a/go.sum b/go.sum index adf744a..7d9bb2f 100644 --- a/go.sum +++ b/go.sum @@ -179,8 +179,8 @@ github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/ github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= -github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI= -github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY= +github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= +github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU= github.com/google/go-jsonnet v0.20.0 h1:WG4TTSARuV7bSm4PMB4ohjxe33IHT5WVTrJSU33uT4g= github.com/google/go-jsonnet v0.20.0/go.mod h1:VbgWF9JX7ztlv770x/TolZNGGFfiHEVx9G6ca2eUmeA= github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8= From f8bbd727832957110a06f667715f81d9b825b90c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Mar 2025 08:23:24 +0000 Subject: [PATCH 09/16] Bump github.com/aereal/jsondiff from 0.4.0 to 0.4.1 Bumps [github.com/aereal/jsondiff](https://github.com/aereal/jsondiff) from 0.4.0 to 0.4.1. - [Release notes](https://github.com/aereal/jsondiff/releases) - [Changelog](https://github.com/aereal/jsondiff/blob/main/.goreleaser.yml) - [Commits](https://github.com/aereal/jsondiff/compare/v0.4.0...v0.4.1) --- updated-dependencies: - dependency-name: github.com/aereal/jsondiff dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 01c576b..37b3bdc 100644 --- a/go.mod +++ b/go.mod @@ -4,7 +4,7 @@ go 1.23 require ( github.com/Songmu/prompter v0.5.1 - github.com/aereal/jsondiff v0.4.0 + github.com/aereal/jsondiff v0.4.1 github.com/alecthomas/kong v1.8.1 github.com/fatih/color v1.18.0 github.com/fujiwara/tfstate-lookup v1.5.0 diff --git a/go.sum b/go.sum index 7d9bb2f..eff8c7e 100644 --- a/go.sum +++ b/go.sum @@ -43,8 +43,8 @@ github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03 github.com/RaveNoX/go-jsoncommentstrip v1.0.0/go.mod h1:78ihd09MekBnJnxpICcwzCMzGrKSKYe4AqU6PDYYpjk= github.com/Songmu/prompter v0.5.1 h1:IAsttKsOZWSDw7bV1mtGn9TAmLFAjXbp9I/eYmUUogo= github.com/Songmu/prompter v0.5.1/go.mod h1:CS3jEPD6h9IaLaG6afrl1orTgII9+uDWuw95dr6xHSw= -github.com/aereal/jsondiff v0.4.0 h1:WJXeM07sOfnG9C7BQ4Zhjh5cu+J1YdgDE0lgafYg/L0= -github.com/aereal/jsondiff v0.4.0/go.mod h1:PkwQgM5q19eAx1jeCpgnjO+eWoXIYvmVHo0R4YaZQBI= +github.com/aereal/jsondiff v0.4.1 h1:tCm2iINE5bbMeZqvFkWWNQTe3Q7zCZs3cH7Oi8lYWwk= +github.com/aereal/jsondiff v0.4.1/go.mod h1:MnSLklf25ZHqNwYmRS0W9HwvBAe9Q5aLooxh5IB+bzU= github.com/alecthomas/assert/v2 v2.11.0 h1:2Q9r3ki8+JYXvGsDyBXwH3LcJ+WK5D0gc5E8vS6K3D0= github.com/alecthomas/assert/v2 v2.11.0/go.mod h1:Bze95FyfUr7x34QZrjL+XP+0qgp/zg8yS+TtBj1WA3k= github.com/alecthomas/kong v1.8.1 h1:6aamvWBE/REnR/BCq10EcozmcpUPc5aGI1lPAWdB0EE= From 97b55bb8b5404b07fc52c347d2516ec2ad6352e5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Sep 2025 14:34:55 +0000 Subject: [PATCH 10/16] Bump actions/checkout from 4 to 5 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/action.yml | 2 +- .github/workflows/tagpr-release.yml | 2 +- .github/workflows/test.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/action.yml b/.github/workflows/action.yml index 9e312ae..327d064 100644 --- a/.github/workflows/action.yml +++ b/.github/workflows/action.yml @@ -17,7 +17,7 @@ jobs: name: test action runs-on: ${{ matrix.env.runner }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 # main branch - uses: fujiwara/apprun-cli@v0 diff --git a/.github/workflows/tagpr-release.yml b/.github/workflows/tagpr-release.yml index 9ebfa70..7a60801 100644 --- a/.github/workflows/tagpr-release.yml +++ b/.github/workflows/tagpr-release.yml @@ -19,7 +19,7 @@ jobs: deploy: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: ref: ${{ inputs.tag || github.ref }} - uses: Songmu/tagpr@v1 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index c9d5f67..f341720 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -17,7 +17,7 @@ jobs: id: go - name: Check out code into the Go module directory - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Build & Test run: | From 15da2a1b592deac90749253aa9be9fe1f98436a9 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 21 Sep 2025 12:59:51 +0900 Subject: [PATCH 11/16] immutable release --- .goreleaser.yml | 2 ++ .tagpr | 1 + 2 files changed, 3 insertions(+) diff --git a/.goreleaser.yml b/.goreleaser.yml index bcf3085..205f3d4 100644 --- a/.goreleaser.yml +++ b/.goreleaser.yml @@ -29,3 +29,5 @@ changelog: exclude: - "^docs:" - "^test:" +release: + use_existing_draft: true diff --git a/.tagpr b/.tagpr index 84a5ba0..f3e28ad 100644 --- a/.tagpr +++ b/.tagpr @@ -46,3 +46,4 @@ vPrefix = true releaseBranch = main versionFile = - + release = draft From db16db4c282dd8301180d11429af3b0223d57b36 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 21 Sep 2025 13:00:04 +0900 Subject: [PATCH 12/16] pin actions --- .github/workflows/action.yml | 10 +++++----- .github/workflows/tagpr-release.yml | 8 ++++---- .github/workflows/test.yml | 4 ++-- 3 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/action.yml b/.github/workflows/action.yml index 9e312ae..a8b1208 100644 --- a/.github/workflows/action.yml +++ b/.github/workflows/action.yml @@ -17,17 +17,17 @@ jobs: name: test action runs-on: ${{ matrix.env.runner }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 # main branch - - uses: fujiwara/apprun-cli@v0 + - uses: fujiwara/apprun-cli@7eb1cc5276848b5aa724f8650a370df3af57fa27 # v0 with: version: v0.3.2 - run: | apprun-cli --version 2>&1 | fgrep v0.3.2 rm -f `which apprun-cli` - - uses: fujiwara/apprun-cli@v0 + - uses: fujiwara/apprun-cli@7eb1cc5276848b5aa724f8650a370df3af57fa27 # v0 with: version-file: .test-apprun-cli-version - run: | @@ -35,14 +35,14 @@ jobs: rm -f `which apprun-cli` # actions-test branch - - uses: fujiwara/apprun-cli@actions-test + - uses: fujiwara/apprun-cli@189de78b89a5d1745eba6acf9445710a693ab9a2 # actions-test with: version: v0.3.2 - run: | apprun-cli --version 2>&1 | fgrep v0.3.2 rm -f `which apprun-cli` - - uses: fujiwara/apprun-cli@actions-test + - uses: fujiwara/apprun-cli@189de78b89a5d1745eba6acf9445710a693ab9a2 # actions-test with: version-file: .test-apprun-cli-version - run: | diff --git a/.github/workflows/tagpr-release.yml b/.github/workflows/tagpr-release.yml index 9ebfa70..60057e1 100644 --- a/.github/workflows/tagpr-release.yml +++ b/.github/workflows/tagpr-release.yml @@ -19,22 +19,22 @@ jobs: deploy: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 with: ref: ${{ inputs.tag || github.ref }} - - uses: Songmu/tagpr@v1 + - uses: Songmu/tagpr@9c294c8b7b1815a5f3b7c61d6ee6aa50ac25b030 # v1 id: tagpr env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} if: ${{ github.event_name != 'workflow_dispatch' }} # skip on workflow_dispatch # after tagpr adds a release tag, or workflow_dispatch, release it - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5 with: go-version: "1.23" if: ${{ steps.tagpr.outputs.tag != '' || github.event_name == 'workflow_dispatch' }} - name: Run GoReleaser - uses: goreleaser/goreleaser-action@v6 + uses: goreleaser/goreleaser-action@e435ccd777264be153ace6237001ef4d979d3a7a # v6 with: version: latest args: release diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index c9d5f67..43a71f1 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -11,13 +11,13 @@ jobs: steps: - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5 with: go-version: ${{ matrix.go }} id: go - name: Check out code into the Go module directory - uses: actions/checkout@v4 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4 - name: Build & Test run: | From 87db554ea73d805d882708894f4096fac9f8d03e Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 21 Sep 2025 13:02:01 +0900 Subject: [PATCH 13/16] pin actions --- .github/workflows/action.yml | 2 +- .github/workflows/tagpr-release.yml | 2 +- .github/workflows/test.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/action.yml b/.github/workflows/action.yml index 807e5e6..8cec965 100644 --- a/.github/workflows/action.yml +++ b/.github/workflows/action.yml @@ -17,7 +17,7 @@ jobs: name: test action runs-on: ${{ matrix.env.runner }} steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 # main branch - uses: fujiwara/apprun-cli@7eb1cc5276848b5aa724f8650a370df3af57fa27 # v0 diff --git a/.github/workflows/tagpr-release.yml b/.github/workflows/tagpr-release.yml index 9fa45f9..576f332 100644 --- a/.github/workflows/tagpr-release.yml +++ b/.github/workflows/tagpr-release.yml @@ -19,7 +19,7 @@ jobs: deploy: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 with: ref: ${{ inputs.tag || github.ref }} - uses: Songmu/tagpr@9c294c8b7b1815a5f3b7c61d6ee6aa50ac25b030 # v1 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index c8acfd2..9d71210 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -17,7 +17,7 @@ jobs: id: go - name: Check out code into the Go module directory - uses: actions/checkout@v5 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 - name: Build & Test run: | From fb177e962f840fde5a304ac99c205d4580e78c70 Mon Sep 17 00:00:00 2001 From: fujiwara Date: Sun, 21 Sep 2025 13:03:34 +0900 Subject: [PATCH 14/16] go 1.25 --- .github/workflows/tagpr-release.yml | 2 +- .github/workflows/test.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/tagpr-release.yml b/.github/workflows/tagpr-release.yml index 576f332..eabf210 100644 --- a/.github/workflows/tagpr-release.yml +++ b/.github/workflows/tagpr-release.yml @@ -31,7 +31,7 @@ jobs: - name: Set up Go uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5 with: - go-version: "1.23" + go-version: "1.25" if: ${{ steps.tagpr.outputs.tag != '' || github.event_name == 'workflow_dispatch' }} - name: Run GoReleaser uses: goreleaser/goreleaser-action@e435ccd777264be153ace6237001ef4d979d3a7a # v6 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 9d71210..4d1ef1b 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -5,7 +5,7 @@ jobs: strategy: matrix: go: - - '1.23' + - '1.25' name: Build runs-on: ubuntu-latest From d833040717bd47ff92b32ce3ecc992c4abf83c52 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 21 Sep 2025 04:05:14 +0000 Subject: [PATCH 15/16] [tagpr] prepare for the next release From 51e4bee7b3184db6ab05e9c9702febf8ff6828da Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 21 Sep 2025 04:05:15 +0000 Subject: [PATCH 16/16] [tagpr] update CHANGELOG.md --- CHANGELOG.md | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 4c1a668..b77b290 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,16 @@ # Changelog +## [v0.3.3](https://github.com/fujiwara/apprun-cli/compare/v0.3.2...v0.3.3) - 2025-09-21 +- [Action] inputs.version is required. by @fujiwara in https://github.com/fujiwara/apprun-cli/pull/30 +- fix dependabot by @fujiwara in https://github.com/fujiwara/apprun-cli/pull/31 +- Bump github.com/alecthomas/kong from 1.7.0 to 1.8.1 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/32 +- Bump golang.org/x/sys from 0.29.0 to 0.30.0 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/36 +- Bump github.com/sacloud/apprun-api-go from 0.2.1 to 0.3.0 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/35 +- Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/34 +- Bump github.com/aereal/jsondiff from 0.4.0 to 0.4.1 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/33 +- Bump actions/checkout from 4 to 5 by @dependabot[bot] in https://github.com/fujiwara/apprun-cli/pull/48 +- Immutable release by @fujiwara in https://github.com/fujiwara/apprun-cli/pull/50 + ## [v0.3.2](https://github.com/fujiwara/apprun-cli/compare/v0.3.1...v0.3.2) - 2025-02-21 ## [v0.3.1](https://github.com/fujiwara/apprun-cli/compare/v0.3.0...v0.3.1) - 2025-02-21