Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / guardian/gha-scala-library-release-workflow issues and pull requests
#52 - Bump sbt/setup-sbt from 1.1.4 to 1.1.5
Pull Request -
State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies
#51 - Add `setup-sbt` Action
Pull Request -
State: closed - Opened by JamieB-gu about 2 months ago
- 1 comment
#50 - SBT is no longer available on ubuntu-latest image.
Issue -
State: closed - Opened by sageserpent-open about 2 months ago
- 2 comments
#49 - Expired PGP keys: can we fail the release immediately, with clearer messaging?
Issue -
State: open - Opened by rtyley 2 months ago
#48 - Add docs on using a new PGP keypair
Pull Request -
State: closed - Opened by rtyley 2 months ago
#47 - Artifact Attestations
Pull Request -
State: open - Opened by rtyley 2 months ago
#46 - `sbt-version-policy` sometimes makes unnecessary major/minor version bumps
Issue -
State: open - Opened by rtyley 2 months ago
#45 - Shorten release time: create staging repository earlier in workflow?
Issue -
State: open - Opened by rtyley 5 months ago
#44 - Submit sbt dependencies to GitHub for vulnerability monitoring
Pull Request -
State: closed - Opened by gu-dependency-graph-integrator[bot] 5 months ago
#43 - Clarify that non-artifact-producing modules need `publish / skip := true`
Pull Request -
State: closed - Opened by rtyley 6 months ago
#42 - Tests need to be disabled for release on projects where they require special setup/credentials
Issue -
State: open - Opened by rtyley 6 months ago
#41 - Fix link to create GitHub App: use `pull_requests` with underscore
Pull Request -
State: closed - Opened by rtyley 7 months ago
#40 - Allow users to commit to the `main` branch while full release running
Pull Request -
State: closed - Opened by rtyley 8 months ago
- 4 comments
#39 - Sonatype release API auth now requires API token, rejects Nexus UI username & password
Issue -
State: closed - Opened by rtyley 8 months ago
#38 - Artifact Attestations & Sigstore - generate & verify signed attestations for things made in GitHub Actions
Issue -
State: open - Opened by rtyley 8 months ago
#37 - `🔒 Sign` fails if `main` branch has new commits since release workflow run started
Issue -
State: closed - Opened by rtyley 8 months ago
#36 - Require projects specify their Java version with `.tool-versions`
Pull Request -
State: closed - Opened by rtyley 9 months ago
- 1 comment
#35 - Simulate a bad file being added for signing
Pull Request -
State: closed - Opened by rtyley 9 months ago
#34 - Verify artifact hashes before signing
Pull Request -
State: closed - Opened by rtyley 9 months ago
#33 - Compatibility testing needs to be manually temporarily disabled when new artifacts are introduced or a release fails at the Sonatype step
Issue -
State: open - Opened by rtyley 10 months ago
#32 - Docs: Explain GitHub App needs access to each repo
Pull Request -
State: closed - Opened by rtyley 11 months ago
- 2 comments
#31 - Require projects specify Java version in `.tool-versions` so we build with that version, use Java 21 LTS elsewhere
Pull Request -
State: closed - Opened by rtyley 11 months ago
- 1 comment
#30 - docs: add instructions about applying rulesets
Pull Request -
State: closed - Opened by tjsilver 11 months ago
- 4 comments
#29 - Fix Sonatype session name so it's not identical with each release
Pull Request -
State: closed - Opened by rtyley 11 months ago
#28 - Disable default behaviour of base64 wrapping at 76 columns
Pull Request -
State: closed - Opened by davidfurey 11 months ago
- 1 comment
#27 - Remove underscores from PREVIEW version-numbers, complying with SemVer and fixing for `sbt-release`
Pull Request -
State: closed - Opened by rtyley 12 months ago
#26 - Coexist with branch-protection: use Github App for pushing commits
Pull Request -
State: closed - Opened by rtyley 12 months ago
- 4 comments
#25 - Output release version to caller workflow
Pull Request -
State: closed - Opened by rtyley about 1 year ago
- 2 comments
#24 - Bump actions/cache from 3 to 4
Pull Request -
State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies
#23 - Explicitly switch to Sonatype token authentication
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#22 - Tweak docs, to separate generation of new credentials
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#21 - Give earlier warning when PGP key is misconfigured
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#20 - Adoption of `gha-scala-library-release-workflow` across the Guardian
Issue -
State: open - Opened by rtyley about 1 year ago
#19 - Support publishing preview releases
Pull Request -
State: closed - Opened by rtyley about 1 year ago
- 1 comment
#18 - Potential speed improvement: parallelise `🔒 Read Signing Key Id` & `🎊 Test & Version`
Issue -
State: open - Opened by rtyley about 1 year ago
#17 - Error could come earlier for misconfigured GPG key that incorrectly possesses a passphrase
Issue -
State: open - Opened by rtyley about 1 year ago
#16 - Reduce per-project config: remove per-repo need to declare `sbt-sonatype`
Issue -
State: open - Opened by rtyley about 1 year ago
#15 - Docs: setting the `groupId` with `organisation`
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#14 - Break workflow definition into small pieces by using composite actions
Issue -
State: open - Opened by rtyley about 1 year ago
#13 - Document that `license` is a required setting
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#12 - Add configuration guidence
Pull Request -
State: closed - Opened by rtyley about 1 year ago
- 1 comment
#11 - Release-credential secret provisioning - how easy is it to grant credentials for a new project?
Issue -
State: open - Opened by rtyley about 1 year ago
#10 - Support some form of pre-releases (SNAPSHOTs? arbitrary non-SNAPSHOT releases from PR branches?)
Issue -
State: closed - Opened by rtyley about 1 year ago
- 1 comment
Labels: high priority
#9 - Add CI for the `gha-scala-library-release-workflow` repo itself
Issue -
State: open - Opened by rtyley about 1 year ago
#8 - Adopt versioning so we can experiment while not breaking user's release process
Issue -
State: closed - Opened by rtyley about 1 year ago
- 2 comments
#7 - Verify SHA256 hashes match before signing
Issue -
State: open - Opened by rtyley about 1 year ago
#6 - Archive `guardian/actions-sbt-release`
Issue -
State: closed - Opened by rtyley about 1 year ago
#5 - Co-exist with branch protection rules/rulesets
Issue -
State: closed - Opened by rtyley about 1 year ago
- 2 comments
Labels: high priority
#4 - Take care of setting `sonatypeProjectHosting` so projects don't need to
Pull Request -
State: closed - Opened by rtyley about 1 year ago
#3 - Verify secrets are available before proceeeding
Issue -
State: open - Opened by rtyley about 1 year ago
#2 - Bump actions/setup-java from 3 to 4
Pull Request -
State: closed - Opened by dependabot[bot] about 1 year ago
- 3 comments
Labels: dependencies
#1 - Bump actions/checkout from 3 to 4
Pull Request -
State: closed - Opened by dependabot[bot] about 1 year ago
- 3 comments
Labels: dependencies