🐛 Bug Fixes 🐛

• Fix: Remove optional input for maven verify @askb (#387)
• Revert: Fix: Use lfit/checkout-gerrit-change-actio @askb (#388)
• Fix: Pass gerrit-project in compose-maven-verify @tykeal (#389)

🔧 Maintenance 🔧

• Chore: pre-commit linting updates @pre-commit-ci[bot] (#379)
• Chore(deps): Bump github/codeql-action from 3.29.0 to 3.29.2 @dependabot[bot] (#380)
• Chore(deps): Bump lfit/releng-reusable-workflows from 0.2.17 to 0.2.18 @dependabot[bot] (#381)
• Chore(deps): Bump step-security/harden-runner from 2.12.1 to 2.12.2 @dependabot[bot] (#382)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#383)
• Chore(deps): Bump step-security/harden-runner from 2.12.2 to 2.13.0 @dependabot[bot] (#386)
• Chore(deps): Bump github/codeql-action from 3.29.2 to 3.29.3 @dependabot[bot] (#385)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#384)
• Chore(deps): Bump github/codeql-action from 3.29.3 to 3.29.9 @dependabot[bot] (#397)
• Chore(deps): Bump actions/download-artifact from 4.3.0 to 5.0.0 @dependabot[bot] (#396)
• Chore(deps): Bump actions/checkout from 4.2.2 to 5.0.0 @dependabot[bot] (#394)
• Chore(deps): Bump jfrog/setup-jfrog-cli from 4.5.11 to 4.5.13 @dependabot[bot] (#393)
• Chore(deps): Bump actions/cache from 4.2.3 to 4.2.4 @dependabot[bot] (#392)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#390)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#398)
• Chore(deps): Bump github/codeql-action from 3.29.9 to 3.29.11 @dependabot[bot] (#404)
• Chore(deps): Bump amannn/action-semantic-pull-request @dependabot[bot] (#405)
• Chore(deps): Bump actions/dependency-review-action from 4.7.1 to 4.7.3 @dependabot[bot] (#407)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#403)
• Chore(deps): Bump lfreleng-actions/tag-push-verify-action @dependabot[bot] (#402)
• Chore(deps): Bump actions/setup-java from 4.7.1 to 5.0.0 @dependabot[bot] (#406)
• Chore(deps): Bump github/codeql-action from 3.29.11 to 3.30.0 @dependabot[bot] (#408)
• Chore(deps): Bump jfrog/setup-jfrog-cli from 4.5.13 to 4.6.0 @dependabot[bot] (#409)
• Chore(deps): Bump lfreleng-actions/sonarqube-cloud-scan-action @dependabot[bot] (#410)
• Chore(deps): Bump actions/setup-python from 5.6.0 to 6.0.0 @dependabot[bot] (#411)
• Chore(deps): Bump github/codeql-action from 3.30.0 to 3.30.1 @dependabot[bot] (#412)
• Chore: pre-commit linting updates @pre-commit-ci[bot] (#413)

Links

• Submit bugs/feature requests

🐛 Bug Fixes 🐛

• Fix: Use lfit/checkout-gerrit-change-action @askb (#370)
• Fix: Pass sonar token in the right section @keanjapesan (#374)
• Fix: Remove legacy scan args from composed-prescan-sonar-cloud.yaml @ModeSevenIndustrialSolutions (#377)
• Fix: pre-commit-ci autoupdate commit message format @askb (#378)

🔧 Maintenance 🔧

• Chore: Update sonarqube-cloud-scan-action path @keanjapesan (#375)
• Chore: Use lowercase for sonar token input @keanjapesan (#376)
• Chore: pre-commit.ci automation update @pre-commit-ci[bot] (#373)
• Chore(deps): Bump lfit/releng-reusable-workflows from 0.2.16 to 0.2.17 @dependabot[bot] (#372)

Links

• Submit bugs/feature requests

🐛 Bug Fixes 🐛

• Fix: Use lfit/checkout-gerrit-change-action @askb (#368)

🔧 Maintenance 🔧

• Chore(deps): Bump step-security/harden-runner from 2.12.0 to 2.12.1 @dependabot[bot] (#366)
• Chore(deps): Bump github/codeql-action from 3.28.19 to 3.29.0 @dependabot[bot] (#362)
• Chore(deps): Bump lfit/releng-reusable-workflows from 0.2.14 to 0.2.16 @dependabot[bot] (#363)
• Chore(deps): Bump lfreleng-actions/sonarqube-cloud-scan-action @dependabot[bot] (#364)
• Chore(deps): Bump lfreleng-actions/sonarqube-cloud-scan-action @dependabot[bot] (#369)

Links

• Submit bugs/feature requests

🔧 Maintenance 🔧

• Chore: Update scans (Sonatype/Sonarqube) to use lfreleng-actions @ModeSevenIndustrialSolutions (#360)
• Chore: remove redundant actions @ModeSevenIndustrialSolutions (#361)

Links

• Submit bugs/feature requests

• Feat: Add automatic release promotion on tag push @ModeSevenIndustrialSolutions (#359)

⚡ Enhancements ⚡

• Chore: remove redundant reusable workflow and standalone-linting action @ModeSevenIndustrialSolutions (#354)
• Feat: Add debugging option to Sonatype Lifecycle scanning @ModeSevenIndustrialSolutions (#358)

🐛 Bug Fixes 🐛

• Fix: Trigger maven-verify on relevant path changes @askb (#351)

🔧 Maintenance 🔧

• Chore: Update pre-commit hooks @tykeal (#345)
• Chore(deps): Bump actions/dependency-review-action from 4.7.0 to 4.7.1 @dependabot[bot] (#349)
• Chore(deps): Bump docker/build-push-action from 6.16.0 to 6.17.0 @dependabot[bot] (#348)
• Chore(deps): Bump github/codeql-action from 3.28.17 to 3.28.18 @dependabot[bot] (#347)
• Chore(deps): Bump lfit/releng-reusable-workflows from 0.2.13 to 0.2.14 @dependabot[bot] (#346)
• Docs: Fix markdownlint duplicate top level heading @ModeSevenIndustrialSolutions (#352)
• Chore: remove redundant reusable workflow and standalone-linting action @ModeSevenIndustrialSolutions (#354)
• Chore(deps): Bump ossf/scorecard-action from 2.4.1 to 2.4.2 @dependabot[bot] (#355)
• Chore(deps): Bump docker/build-push-action from 6.17.0 to 6.18.0 @dependabot[bot] (#356)
• Chore(deps): Bump github/codeql-action from 3.28.18 to 3.28.19 @dependabot[bot] (#357)
• Chore: pre-commit autoupdate @pre-commit-ci[bot] (#350)

Links

• Submit bugs/feature requests

• Chore: Add initial repo config files @jwagantall (#2)
• CI: Properly configure pre-commit for actionlint @tykeal (#3)
• CI: commit-message check during PR only @tykeal (#4)
• CI: Add Gerrit ci-man Merge workflow @jwagantall (#5)
• Fix: Pin urllib3 to avoid jjb timeouts @jwagantall (#7)
• Fix: Force jjb's config file @jwagantall (#8)
• Fix: Use standard checkout for merge workflow @jwagantall (#9)
• Fix: Remove typo from actions call @jwagantall (#10)
• CI: Add Info Verify Yaml workflow @jwagantall (#11)
• Feat: Make start / finish announcements to Gerrit @tykeal (#12)
• Fix: Correct logic for INFO file required job @tykeal (#13)
• Feat: Make workflow optional @tykeal (#14)
• Fix: Fix typo in INFO verify workflow @jwagantall (#15)
• Fix: Install jsonschema before running validation @jwagantall (#16)
• Fix: Install yaml dependency @jwagantall (#17)
• Fix: Install yq instead of yaml @jwagantall (#18)
• CI: Add additional info to concurrency @tykeal (#20)
• Feat: Create a "composable" reusable ci-man verify @tykeal (#21)
• CI: Make composable INFO Yaml verify @tykeal (#22)
• Refactor: Set composable workflow names to match @tykeal (#23)
• Feat: Add packer verify Github Actions to workflow @askb (#19)
• Feat: Create basic repo linting workflow compose @tykeal (#24)
• Feat: Move JJB validation to one composition @tykeal (#25)
• Refactor: Re-arrange compose-packer-verify @tykeal (#26)
• Feat: Composed ci-management verify workflow @tykeal (#27)
• CI: Add output grouping for packer @tykeal (#28)
• Chore: Upgrade Gerrit checkout to v0.5 @tykeal (#30)
• CI: Add rtdv3 verify compose workflow @jwagantall (#31)
• Test: debug packer @tykeal (#33)
• Fix: Remove forced permissions set on composes @tykeal (#34)
• Test: Create testing info verify compose @tykeal (#35)
• Fix: Remove Target repo from rtdv3 verify @jwagantall (#36)
• Fix: Look for readthedocs file not directory @jwagantall (#37)
• Fix: Quote specific pip versions @jwagantall (#38)
• Fix: Fix path of ini file for rtdv3 configuration @jwagantall (#39)
• Fix: Use python 3.8 for docs to match the Jenkins verification. @jwagantall (#40)
• Fix: Restructure project dashed variable @jwagantall (#41)
• Fix: Move lftools config file creation @jwagantall (#43)
• Fix: Install lftools config in home not in workspace @jwagantall (#44)
• CI: Unpin urllib3<2.0.0 with JJB 5.0.4 @askb (#42)
• CI: Add rtdv3 merge compose workflow @jwagantall (#45)
• Fix: Pass the GERRIT_URL to the gerrit checkout @tykeal (#46)
• CI: Update rtdv3 verify and merge workflows @jwagantall (#47)
• Fix: Fix typo on workflow name call for rtdv3 verify @jwagantall (#49)
• Chore: Upgrade to gerrit checkout v0.6 @tykeal (#48)
• Fix: Restructure rtdv3 merge job @jwagantall (#50)
• Fix: Use TARGET_REPO in rtdv3 merge checkout step @jwagantall (#51)
• Fix: Change the filename back for info verify @tykeal (#52)
• Chore: Upgrade gerrit checkout @tykeal (#53)
• CI: Add GHA workflow for Nexus IQ scans @jwagantall (#54)
• Fix: Remove extra space passed to system property @askb (#56)
• Feat: Add maven verify reusable workflow @askb (#57)
• Fix: Update maven verify goals @jwagantall (#58)
• Fix: Use a different reusable workflow to install Maven @jwagantall (#60)
• Fix: Remove additional maven opts @jwagantall (#61)
• Fix: Add additional needed params to maven build @jwagantall (#62)
• Fix: Update maven verify workflow @jwagantall (#63)
• Fix: Export vars and secrets to the env in maven build @jwagantall (#64)
• Fix: Escape special characters in comments @jwagantall (#65)
• Fix: update version for infovista-opensource @jwagantall (#66)
• Fix: Do not fail Maven verify if JaCoCo config files do not exist. @jwagantall (#67)
• Fix: Make Maven phases an input so other maven jobs can re-use it @jwagantall (#68)
• Fix: Restructure Maven CLM to re-use maven build @jwagantall (#69)
• CI: Add Worflow for Gradle verify @jwagantall (#70)
• CI: Add compose action to perform docker login @jwagantall (#71)
• CI: Add compose workflow for docker build @jwagantall (#72)
• Fix: Strip carrot symbol from the settings file @askb (#73)
• Fix: Allow passing Maven opts as input @askb (#74)
• Fix: Rm shell multiline @askb (#75)
• Fix: Pass secrets and vars thru env @askb (#76)
• CI: Define ENV_SECRETS in workflow @askb (#77)
• CI: Move secret definition under secrets @askb (#78)
• Fix: mask sensitive info with ::add-masks:: @askb (#79)
• Fix: Add braces around var to decode correctly @askb (#80)
• Fix: Set ::add-mask:: before processing the vars @askb (#81)
• Fix: Install graphviz for rtd verification @jwagantall (#83)
• CI: Move input param ENV_SECRETS under secrets @askb (#82)
• CI: Add action to verify a release file against an approved schema @jwagantall (#84)
• Fix: Disable the bash echo with +x @askb (#85)
• CI: Add workflow for docker relases using release file. @jwagantall (#86)
• Fix: Remove extra options passed to bash @askb (#87)
• Fix: Remove +x from bash options @askb (#88)
• Fix: Pin JJB to 5.1.0 @askb (#91)
• Fix: RTD job breakage due to missing dependency @ModeSevenIndustrialSolutions (#92)
• Chore: Update actions/checkout to v4 @ModeSevenIndustrialSolutions (#93)
• Fix: Revert dependency package install for RTD @jwagantall (#94)
• Chore: Update actions/setup-python to v5.0.0 @ModeSevenIndustrialSolutions (#99)
• CI: Allow JJB version to be set through vars @askb (#98)
• Chore: Update pre-commit and gerrit actions @tykeal (#101)
• Chore: fix commit IDs @keanjapesan (#102)
• Fix: Use actions/checkout for ref to local action @eb-oss (#104)
• Fix: Specify remote repo and local path for action @eb-oss (#105)
• Fix: Specify shell for composite action @eb-oss (#106)
• Fix: Remove "cache: pip" from setup-python call @eb-oss (#107)
• Chore: Update checkout-gerrit-change-action v0.8 @askb (#108)
• Chore: Update checkout-gerrit-change-action v0.9 @askb (#109)
• Chore: Update gerrit-review-action v0.6 @tykeal (#110)
• Fix: Switch from using ci-maven-action to using CLI commands @jwagantall (#112)
• Fix: Update MVN_PHASES to remove comma separated goals @jwagantall (#113)
• Fix: Use GLOBAL_SETTINGS var for global_settings.xml @jwagantall (#115)
• Chore: Cat global-settings file to explore contents @jwagantall (#116)
• Chore: Update GitHub setup-python action from v4 -> v5 @ModeSevenIndustrialSolutions (#117)
• CI: Add workflow for gradle CLM evaluation @jwagantall (#118)
• Fix: Update gradle clm workflow with few fixes: @jwagantall (#119)
• Fix: Nexus application ID should be all dashed @jwagantall (#121)
• Fix: Nexus target should point to the current directory @jwagantall (#122)
• Fix: Iterate CLM target build @jwagantall (#123)
• Fix: CLM target should be empty by default @jwagantall (#125)
• CI: Refactor Sonatype Nexus IQ workflow @jwagantall (#126)
• Fix: Fix gradle action @jwagantall (#128)
• Fix: Update action names and IDs for gradle action @jwagantall (#129)
• Fix: Use patchset revision to avoid collisions @askb (#130)
• CI: Refactor Maven build @jwagantall (#131)
• Fix: Add missing shell property in maven-build-action @jwagantall (#132)
• Fix: Fetch maven global settings in workflow not in action @jwagantall (#133)
• Fix: Update maven workflow input typo @jwagantall (#134)
• Fix: Fetch maven global settings file inside action @jwagantall (#135)
• CI: Refactor Maven CLM to call maven-build-action @jwagantall (#137)
• Fix: Use branch to avoid collisions @askb (#136)
• Fix: Fix typo in Nexus CLM application ID @jwagantall (#138)
• Fix: Fix typo in GHA Maven workflow @jwagantall (#139)
• Fix: Add debugging info in CLM workflow @jwagantall (#140)
• Fix: Disable debugging code, update CLM scan target @jwagantall (#141)
• CI: Add Maven Sonar Cloud scan workflow @jwagantall (#142)
• Fix: Update path for CLM scan target @jwagantall (#143)
• Fix: Update Maven SonarCloud workflow to make it Generic @jwagantall (#144)
• CI: Add workflow for Maven Sonar Cloud Scan @jwagantall (#145)
• Fix: Fix typos on Generic Sonar Cloud workflow @jwagantall (#146)
• Fix: Allow CLM workflows to continue on error @jwagantall (#147)
• Feat: Allow tox-verify pre-build url, string @eb-oss (#149)
• Chore: Update gerrit-review-action to v0.7 @askb (#150)
• Fix: Run a no-op bash command when there is no prebuild script @jwagantall (#151)
• CI: Add workflow for tox SonarCloud @jwagantall (#152)
• CI: Add workflow for prescan SonarCloud @jwagantall (#153)
• Chore: Update gerrit-review-action to v0.8 @askb (#155)
• CI: Add workflow for Autotools SonarCloud scan @jwagantall (#158)
• CI: Add SonarCloud scan with Cmake script pre-run @jwagantall (#159)
• Fix: Run "bash" not "sh" for Sonar pre-script step @jwagantall (#160)
• Fix: Run "bash" in cmake Sonar scan script step @jwagantall (#161)
• Chore: Update JJB to 6.3.0 @askb (#162)
• Fix: Mask secrets from console env on GHA @askb (#163)
• Fix: Change conclusion getter @tykeal (#164)
• Fix: Install setuptools for tox jobs with py3.12 @askb (#165)
• CI: Add workflow for gradle publish artifacts @jwagantall (#167)
• Chore: Add reuse for license checking @tykeal (#166)
• Chore: Switch to ruff plus add prettier and reuse @tykeal (#169)
• Feat: Add maven-merge workflow @eb-oss (#168)
• Fix: Change match string to find RTD subproject @keanjapesan (#171)
• CI: Enforce semantic commit messages @tykeal (#170)
• Fix: change rtd project create command @keanjapesan (#172)
• Fix: Update actions to address node warnings @ModeSevenIndustrialSolutions (#173)
• Fix: Use the Maven pom file provided by input @zxiiro (#174)
• Fix: Remove requirement for unused parameters @zxiiro (#176)
• Fix: Correct var name, use secrets rather than env @eb-oss (#178)
• Fix: Packer secrets back to env @eb-oss (#179)
• Fix: Securely mask secrets in Reusable Workflows @askb (#180)
• Fix: Mask required keys @askb (#181)
• Fix: Check and handle multiline values @askb (#182)
• Feat: Add node.js build a...