Drzewo: 2787089247

Chandler Carruth 2787089247 Switch to a Bazel-based runtimes build, and add bootstrapping (#6989)		1 miesiąc temu
..
README.md	0dac40e793 Update clangd-tidy endpoint whitelist (#6855)	1 miesiąc temu
auto_label_prs.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
clangd_tidy.yaml	a1b6f1c4bd Allow uploads.github.com (#6866)	1 miesiąc temu
discord_wiki.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
gh_pages_ci.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
gh_pages_deploy.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
nightly_release.yaml	a1b6f1c4bd Allow uploads.github.com (#6866)	1 miesiąc temu
pre_commit.yaml	a1b6f1c4bd Allow uploads.github.com (#6866)	1 miesiąc temu
pre_commit_suggestions.yaml	25793358c3 Remove jonmeow from pre-commit config (#6966)	1 miesiąc temu
proposal_labeled.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
proposal_ready.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
sync_repos.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu
tests.yaml	2787089247 Switch to a Bazel-based runtimes build, and add bootstrapping (#6989)	1 miesiąc temu
triage_inactive.yaml	6786edd6ff Update action versions (#6848)	1 miesiąc temu

Workflows

Hardening

Workflows are hardened using Step Security tool. Findings for the "Harden Runner" steps are available online.

Most jobs only have a few endpoints, but due to tools which do downloads, a few have significantly more. These are:

When updating one of these, consider updating all of them.

We try to keep allowed-endpoints with one per line. Prettier wants to wrap them, which we fix this with prettier-ignore.

We keep around an action-test branch in carbon-lang, which can be used to test triggers with push: configurations. For example:

on:
  push:
    branches: [action-test]