Teffen Ellis
9543b3c9f6
ci: Consistent NPM versions via Corepack ( #20400 )
...
* core: add .npmrc baseline to block dependency lifecycle scripts
Set ignore-scripts=true at the repo root, plus engine-strict, save-exact,
audit, and prefer-offline. This neutralizes the dominant npm supply-chain
attack vector — postinstall scripts in transitive dependencies — at the
cost of requiring an explicit rebuild for the handful of packages that
legitimately need install scripts (esbuild, chromedriver, tree-sitter,
tree-sitter-json). The next commit wires that rebuild into the Makefile.
Co-Authored-By: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
* core: route node installs through make to retire website preinstall hook
Make docs-install depend on a new root-node-install so the root deps
are guaranteed before the website install runs, removing the need for
the website/preinstall lifecycle script. Rebuild the small audited list
of trusted packages (esbuild, chromedriver, tree-sitter, tree-sitter-json)
after the web install so ignore-scripts=true remains the only path that
needs maintenance. web/README documents the new workflow.
Co-Authored-By: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
* Clean up install scripts.
* Track .npmrc in CODEOWNERS
* Fix formatter config. Reformat.
* Fix mounted references.
* Flesh out node scripts.
* Bump engines.
* Prep containers.
* Update makefile.
* Flesh out github actions.
* Clean up docs container.
* lint.
Bump.
Lint.
Bump NPM version.
* Add limits.
* collapse the composite's three setup-node calls to one cache restore
* Add SHA.
* Bump NPM range.
* Run formatter.
* Bump NPM.
* Remove extra install.
* Fix website deps.
* Use local prettier. Fix drift in CI.
* ci: build frontend in CI with node_env production
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Install docusaurus config.
* Fix linter warning, order.
* Add linter commands.
* Add timeout.
* Remove pre install check.
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-05-13 22:05:07 +00:00
dependabot[bot]
953c70f5fc
ci: bump actions/setup-node from 6.3.0 to 6.4.0 ( #21762 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](53b83947a5...48b55a011bsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-22 11:39:18 +02:00
dependabot[bot]
6d9eb2f133
ci: bump actions/cache from 5.0.4 to 5.0.5 ( #21634 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.4 to 5.0.5.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](668228422a...27d5ce7f10support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-16 06:29:59 +00:00
dependabot[bot]
c6389c82fd
ci: bump actions/upload-artifact from 7.0.0 to 7.0.1 ( #21565 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-13 13:34:00 +00:00
dependabot[bot]
03b23b87e0
ci: bump actions/cache from 5.0.3 to 5.0.4 ( #21002 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.3 to 5.0.4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](cdf6c1fa76...668228422asupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-19 15:49:09 +01:00
dependabot[bot]
735cacd256
ci: bump actions/download-artifact from 8.0.0 to 8.0.1 ( #20850 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-12 12:27:38 +00:00
dependabot[bot]
6c6c5d5702
ci: bump actions/setup-node from 6.2.0 to 6.3.0 ( #20707 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](6044e13b5d...53b83947a5support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-04 09:46:16 +01:00
dependabot[bot]
9ac7715682
ci: bump actions/download-artifact from 7.0.0 to 8.0.0 ( #20615 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-27 18:05:59 +00:00
dependabot[bot]
d568eb32e1
ci: bump actions/upload-artifact from 6.0.0 to 7.0.0 ( #20617 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-27 18:44:52 +01:00
dependabot[bot]
1f6c479169
ci: bump actions/cache from 5.0.2 to 5.0.3 ( #19873 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](8b402f58fb...cdf6c1fa76support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:25:17 +01:00
dependabot[bot]
e2daaae0ae
ci: bump actions/checkout from 6.0.1 to 6.0.2 ( #19696 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8e8c483db8...de0fac2e45support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-23 12:24:23 +01:00
dependabot[bot]
0d8cc62975
ci: bump actions/cache from 5.0.1 to 5.0.2 ( #19571 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-19 13:23:52 +01:00
dependabot[bot]
852bb05ba2
ci: bump actions/setup-node from 6.1.0 to 6.2.0 ( #19470 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.1.0 to 6.2.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](395ad32622...6044e13b5dsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-01-16 13:44:54 +01:00
dependabot[bot]
c112f702b3
ci: bump actions/cache from 5.0.0 to 5.0.1 ( #18823 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 13:15:05 +01:00
dependabot[bot]
42b3323b3d
ci: bump actions/download-artifact from 6.0.0 to 7.0.0 ( #18825 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 13:14:22 +01:00
dependabot[bot]
8b5195aeff
ci: bump actions/upload-artifact from 5.0.0 to 6.0.0 ( #18824 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](330a01c490...b7c566a772support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-15 12:45:16 +01:00
dependabot[bot]
7484b153ac
ci: bump actions/cache from 4.3.0 to 5.0.0 ( #18779 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-12 13:30:11 +00:00
dependabot[bot]
dcfe722f5c
ci: bump actions/setup-node from 6.0.0 to 6.1.0 ( #18552 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.0.0 to 6.1.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](2028fbc5c2...395ad32622support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-05 14:37:31 +01:00
dependabot[bot]
f9d3e91106
ci: bump actions/checkout from 6.0.0 to 6.0.1 ( #18554 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-12-03 14:41:48 +01:00
dependabot[bot]
18891b72e1
ci: bump actions/checkout from 5.0.1 to 6.0.0 ( #18313 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 5.0.1 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93cb6efe18...1af3b93b68support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-24 13:44:24 +01:00
dependabot[bot]
1999d60465
ci: bump actions/checkout from 5.0.0 to 5.0.1 ( #18222 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-11-18 14:00:36 +01:00
dependabot[bot]
c5017ad5cb
ci: bump actions/upload-artifact from 4.6.2 to 5.0.0 ( #17720 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.2 to 5.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](ea165f8d65...330a01c490support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-27 11:58:55 +01:00
dependabot[bot]
d4a76419c5
ci: bump actions/download-artifact from 5.0.0 to 6.0.0 ( #17719 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](634f93cb29...018cc2cf5bsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-27 11:58:41 +01:00
dependabot[bot]
57e562a2b9
ci: bump actions/setup-node from 5.0.0 to 6.0.0 ( #17421 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](a0853c2454...2028fbc5c2support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-14 12:42:02 +02:00
Jens L.
70b07c1cf3
ci: migrate actions to commit hashes ( #17339 )
...
* remove deprecated action
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate v1
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup tags
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove netlify action since its not maintained
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-10-08 21:50:25 +02:00
dependabot[bot]
333ace5dc4
ci: bump actions/setup-node from 4 to 5 ( #16608 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4 to 5.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: '5'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-04 13:54:07 +02:00
dependabot[bot]
cf4dd24b6f
ci: bump actions/checkout from 4 to 5 ( #16127 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '5'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-12 13:47:23 +01:00
Marc 'risson' Schmitt
87eadea92b
ci: readable workflow names ( #16036 )
2025-08-08 14:51:18 +01:00
dependabot[bot]
47263aef3f
ci: bump actions/download-artifact from 4 to 5 ( #15995 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-06 15:29:24 +00:00
dependabot[bot]
0820e34301
web: bump chromedriver from 136.0.3 to 138.0.3 in /web ( #15767 )
...
* web: bump chromedriver from 136.0.3 to 138.0.3 in /web
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 136.0.3 to 138.0.3.
- [Commits](https://github.com/giggio/node-chromedriver/compare/136.0.3...138.0.3 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 138.0.3
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
* only netlify deploy when token available
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2025-07-24 14:29:31 +02:00
Teffen Ellis
e280159946
website: Docusaurus 3.8 ( #15097 )
...
website: Upgrade Docusaurus. Split API build.
2025-07-23 16:42:01 +02:00
