Commit graph

65 commits

Author SHA1 Message Date
dependabot[bot]
8bd2bae841
Bump dependabot/fetch-metadata from 1.3.5 to 1.3.6
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.5 to 1.3.6.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.5...v1.3.6)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-30 03:07:21 +00:00
Jérémy Benoist
c19a0c6fe5
Ignore lcobucci/jwt > 4.2.0 2022-12-16 13:40:12 +01:00
Jeremy Benoist
b3099f68c5
Update all Doctrine deps
Also update these deps to be compatible with latest Doctrine version:
- `friendsofsymfony/oauth-server-bundle`
- `lexik/form-filter-bundle`
- `dama/doctrine-test-bundle`
2022-12-16 10:29:42 +01:00
Jeremy Benoist
5e2ad5f8db
Move translations files to /translations
This is a recommendation for Symfony 5
2022-12-15 21:19:41 +01:00
Jeremy Benoist
33267f0736
Update to FOSUserBundle 3.1
Also remove some deprecation from Symfony.
Use `LegacyEventDispatcherProxy` to handle Symfony 4 dispatch from FOSUser
2022-12-14 09:42:17 +01:00
Jeremy Benoist
14cbe0975d
Upgrade PHPStan 2022-11-23 15:22:00 +01:00
dependabot[bot]
b5809669d4
Bump dependabot/fetch-metadata from 1.3.4 to 1.3.5
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.4 to 1.3.5.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.4...v1.3.5)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-11-07 03:06:00 +00:00
Jeremy Benoist
8d3fcd4635
Merge remote-tracking branch 'origin/master' into 2.6.0 2022-11-03 10:30:17 +01:00
Jérémy Benoist
641aeb1f4b
Remove weblate PR from the automated changelog
Instead of having each PR from @weblate we just put a link to all PRs for the closed milestone.
2022-10-21 14:12:45 +02:00
Jeremy Benoist
c372d68cc1
Merge remote-tracking branch 'origin/master' into 2.6.0 2022-10-18 11:11:02 +02:00
dependabot[bot]
a34750b5ee
Bump dependabot/fetch-metadata from 1.3.1 to 1.3.4
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.1 to 1.3.4.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.3.1...v1.3.4)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 02:16:51 +00:00
Jeremy Benoist
f2f542d093
Allow auto merging of Dependabot JS minor or patch
Reducing the time consuming of merging deps which shouldn't break the project
2022-10-03 09:39:31 +02:00
Yassine Guedidi
fc85cfd52e Fix TwigCS issues 2022-08-24 23:13:18 +02:00
Yassine Guedidi
4742b890da Add TwigCS to the CI 2022-08-24 23:12:42 +02:00
Jeremy Benoist
2984c0dfcc
Merge remote-tracking branch 'origin/master' into 2.6.0 2022-06-15 16:17:50 +02:00
Jeremy Benoist
40595af2cf
Merge remote-tracking branch 'origin/master' into 2.6.0 2022-06-09 11:33:05 +02:00
Jeremy Benoist
aa029ea73e
Automatically create the package after a release
And then upload it to the created release.
One less step during the release process 💪

We are using that GitHub Actions: https://github.com/shogo82148/actions-upload-release-asset

I've also:
- updated the release script to clone the repo using `https` instead of `git` (otherwise it failed during the build)
- use `md5sum` instead of `md5` because the latest isn't available in GitHub Actions
2022-06-09 11:30:14 +02:00
Jeremy Benoist
ce8369ce2d
Jump to Node 16 to build assets 2022-05-23 08:04:16 +02:00
Yassine Guedidi
819487721a Back to latest composer version 2022-05-21 23:46:49 +02:00
Yassine Guedidi
1bd86e156e Drop PHP prior to 7.4 2022-05-13 07:29:23 +02:00
dependabot[bot]
a5d883a55d
Bump actions/setup-node from 2 to 3
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2 to 3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-19 19:05:39 +00:00
naveensrinivasan
d52f00132a
Included githubactions in the dependabot config
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-19 13:55:41 -05:00
naveensrinivasan
8446cda519
Set permissions for GitHub actions
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-04-16 01:58:38 +00:00
Jeremy Benoist
0ac8089eee
CI workaround for PHP < 7.4 & MySQL 8
The error on PHP 7.2 & 7.3 is:

> PDO::__construct(): The server requested authentication method unknown to the client [caching_sha2_password]

See:
- https://stackoverflow.com/q/53066962/569101
- https://stackoverflow.com/q/52364415/569101
- https://stackoverflow.com/q/51489616/569101
- https://stackoverflow.com/q/50026939/569101

Also upgrade `actions/checkout` v3
2022-04-11 22:11:22 +02:00
Kevin Decherf
f51008aef0 Update docker-compose and Dockerfile for dev env
This change should ease the spawn of a development environment.
It can be used as a vscode devcontainer.

Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2022-04-04 10:10:55 +02:00
Kevin Decherf
71ffcdc710 Update README
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2022-04-04 10:10:55 +02:00
Jeremy Benoist
fea2b46496
Composer 2.3 isn't compatible with wallabag 2022-04-01 16:09:59 +02:00
Jeremy Benoist
9e5a7db740
2.4.3
Also exclude @dependabot from automated GitHub release
2022-02-14 16:25:16 +01:00
Jeremy Benoist
3c507d676f
Add build test on PHP 8.0 & 8.1
Add `isTransactional` to `WallabagMigration` because PHP 8 behave differently with PDO transaction.
This is a workaround because we can't upgrade Doctrine Migration for now (upper versions have the fix).

- Build is now using Composer v2 (instead of v1)
- All actions have been updated to latest version
- Fix bug in PHP 8 were `$entry->getTags()` can't be properly used as a _traversable_ by `assertContains` during tests. Added a custom method `Entry::getTagsLabel()` which return a flatted tag array with only label
- Replace `assertNotRegExp` by `assertDoesNotMatchRegularExpression` because it was deprecated
2022-01-31 12:59:39 +01:00
Jeremy Benoist
96e2e8eeeb
Rebuild assets
Also update GitHub Actions to latest versions
2022-01-05 14:26:10 +01:00
Jeremy Benoist
0afd91a160
Remove dead test
The URL seems to be down now.
Move to a more frequent deps update
2022-01-05 13:25:50 +01:00
Kevin Decherf
4d43f79b34 dependabot: change schedule to check updates once a month
Signed-off-by: Kevin Decherf <kevin@kdecherf.com>
2021-05-03 13:30:34 +02:00
Jeremy Benoist
6004de48ff
Allow GitHub Actions to run on 2.* branches
Since I created the 2.5.0 branch, GA on PR targeting that branch aren't triggered. This should fix this.
2020-12-31 14:18:49 +01:00
Jérémy Benoist
ab6f22a1f6
Fix issue template related to parameters
The way the template was used generated a badly rendered code.
2020-12-15 13:54:08 +01:00
Jeremy Benoist
415da16e77
Enhancement and config 2020-12-14 11:43:27 +01:00
Jérémy Benoist
03b531c360
Delete fetching-issue.md 2020-12-14 11:22:22 +01:00
Jeremy Benoist
5e5cb502f4
Remove old template 2020-12-14 11:20:33 +01:00
Jérémy Benoist
2249f40aa2 Update issue templates
Define new issue templates following new structure for them.

Also add a new template related to site config.
2020-12-14 11:19:43 +01:00
Thomas Citharel
98b834d836
Remove community.wallabag.org from the issue template 2020-12-11 09:32:26 +01:00
Jérémy Benoist
93e7c57101
Update dependabot.yml
Remove old lock in NPM after WebPack 5 update.
Add `materialize-css` because the update looks like to complex.
Remove `symfony/phpunit-bridge` lock
2020-12-07 09:30:25 +01:00
Jeremy Benoist
189a9ef033
Use ramsey/composer-install to handle composer install & cache 2020-12-03 10:16:03 +01:00
Jeremy Benoist
cab3eb4005
Update deps (PHP & JS)
Also re-enable assets diff in GitHub Actions.
2020-11-30 11:52:44 +01:00
Jeremy Benoist
c09b4bbea5
Disable assets check 2020-11-27 14:15:10 +01:00
Jeremy Benoist
d9bc425e1a
Better diff display 2020-11-27 14:14:45 +01:00
Jeremy Benoist
a03a49294a
Make assets build fail if changes are detected 2020-11-27 14:14:45 +01:00
Jeremy Benoist
c29ad30b56
Jump to 18.04 as it offers Tidy extension by default too 2020-11-27 14:14:44 +01:00
Jeremy Benoist
40c01ad1d4
Ditch Travis to use GitHub Actions 2020-11-27 14:14:44 +01:00
dependabot-preview[bot]
4ea7290441
Create Dependabot config file 2020-10-16 10:44:49 +00:00
Jeremy Benoist
2a61e13fae
Improve CONTRIBUTING guide
Also:

- update the docker-compose to use Alpine image (lighter)
- update the PHP Dockerfile to use Imagick instead of GD (for GIF support when downloading images) and add support for SQLite
2019-06-19 14:54:38 +02:00
Jérémy Benoist
76cc8ca26f
Update FUNDING.yml
"Some users provided are not enrolled in GitHub Sponsors."
2019-06-12 17:43:15 +02:00