dc262e5ce2
Add a command to update the 3rdparty submodule to the same branch as the PR target
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-03-14 22:08:46 +07:00
b59cf4c1d4
Run webdav related integration tests on github actions
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2023-03-06 22:46:07 +07:00
ae915cff05
chore(CI): Backport the CA Cert update to stable26
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-03-03 06:55:16 +07:00
f74b75630e
[CI] Update update-psalm-baseline workflow to solve warnings
...
This updates the PR action to v4, which solves warnings about deprecated Node.js 12 actions set-output commmand calls.
Signed-off-by: MichaIng <micha@dietpi.com>
2023-02-28 00:51:58 +07:00
f32804e97d
First run unit tests so they don't fail
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-02-23 16:58:15 +07:00
b0e2a296ff
fix(CI): Run repair steps against Oracle DB
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-02-23 16:57:52 +07:00
6e276ad2e1
Show logs on smb-kerberos CI failure
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:36 +07:00
33b52077ff
Only run 32bit CI once a day
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:34 +07:00
892e6c642a
Skip buggy tests for 32bits CI
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:33 +07:00
2d8e696c24
Add apcu and ffmpeg to have less skipped tests
...
Also exclude test groups which rely on a service
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:28 +07:00
b370fdb1e7
Running all tests on 32bits to see what happens
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:28 +07:00
3885818ab6
Add workflow for 32bits testing
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-07 11:23:10 +07:00
17ed023be2
Merge pull request #36314 from nextcloud/sso-kerberos-fix
...
Update kerberos sso test setup to use new user_saml config system
2023-02-07 11:16:08 +07:00
bb34476b68
chore(CI): Opt-out of PHPUnit 10 for now
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-02-03 10:02:02 +07:00
ac5df8e94f
Catch deprecation warnings in oci tests
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-02 12:05:21 +07:00
0925709c62
Add 8.2 to oci tests
...
This is the only test suite testing 8.1, so adding 8.2 as well
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-02-02 12:05:20 +07:00
664c7113ae
ci(psalm): Generate base analysis on pushes so we can compare to updated reports
...
Signed-off-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
2023-01-27 10:08:53 +07:00
3b577aa5b2
Update kerberos sso test setup to use new user_saml config system
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2023-01-23 18:21:47 +07:00
54973c3cf9
run kerberos sso test when the action is changed
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2023-01-23 18:21:39 +07:00
793424ab79
Specify the profiler app branch to test with
...
So we can test in stable25 with a matching profiler version instead of master
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-01-20 16:36:34 +07:00
d2204a71c6
Always show the psalm baseline change, even on failure
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:13 +07:00
83d2655844
Show failure of SAML login in kerberos workflow
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:13 +07:00
55baa7b586
Fixing samba test and adding details to kerberos job
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:12 +07:00
7e0a0240c9
Remove PHP version matrix from kerberos test
...
It runs on a docker image on which we cannot control which PHP version runs.
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:11 +07:00
9acb982333
Prettify static-code-analysis.yml
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:10 +07:00
f6ed727b3f
Always upload psalm result to github
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:10 +07:00
e8299d4826
Merge back the two static analysis workflows together
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:10 +07:00
87ebf28eb4
Fix kerberos step name
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2023-01-20 11:22:08 +07:00
e2da30a0c5
Add component testing workflow
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2023-01-04 16:46:16 +07:00
48d6000468
chore(CI): Improve rate limit situation when installing phpunit
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2023-01-03 13:33:49 +07:00
21254b02eb
fix(actions): php-lint
...
Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
2022-12-30 11:05:32 +07:00
3c23604834
chore(actions): bring back php 8.2 lint
...
Co-authored-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
2022-12-30 10:30:49 +07:00
e6b56a425b
8.2 is not supported yet
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-12-29 10:51:07 +07:00
eab9ed6e09
fix(actions): Update psalm github action
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-12-29 10:46:48 +07:00
0dc1aef292
chore(actions): update php min supported to 8.0
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-12-29 10:37:27 +07:00
7a73219412
Checkout current branch in cypress tests in CI
...
Signed-off-by: Louis Chemineau <louis@chmn.me>
2022-12-27 11:44:46 +07:00
1aad491676
ci: update minio image for s3 primary storage tests
...
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2022-12-07 17:39:41 +07:00
33c2c3d030
Merge pull request #35635 from nextcloud/ci/update-psalm-baseline/stable25
...
Update update-psalm-baseline workflow for NC25
2022-12-07 11:14:46 +07:00
35d67bdcf0
Update update-psalm-baseline workflow for NC25
...
and also update Psalm OCP baseline.
Additionally update the checkout action.
Signed-off-by: MichaIng <micha@dietpi.com>
2022-12-06 22:53:40 +07:00
de3c5f2b1c
Update node check to not run sass twice
...
They are now included in the `postbuild` npm step
Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
2022-12-06 14:56:08 +07:00
b981b23e3d
Update compile to not run sass twice
...
They are now included in the `postbuild` npm step
Signed-off-by: John Molakvoæ <skjnldsv@users.noreply.github.com>
2022-12-06 14:54:02 +07:00
7964b860cd
downgrade ubuntu in order to fix CI
...
Signed-off-by: Simon L <szaimen@e.mail.de>
2022-12-03 23:01:05 +07:00
0761c84bbf
Bump cypress runners
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-11-30 18:39:58 +07:00
8434259b1b
Merge pull request #35376 from nextcloud/bug/noid/fix-workflow-s3-primary
...
Run s3 primary tests sequential
2022-11-30 14:53:32 +07:00
064fa10ecf
Extract colour from custom background
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-11-29 11:23:05 +07:00
cddc753b29
Run s3 primary tests sequential
...
To avoid casual test failures.
Concurrent jobs may try to use the same port forwarding for the minio container.
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2022-11-25 17:58:51 +07:00
56aee55f9b
Fix github action "performance-8.0" when PR is from a fork.
...
There is an assumption that the PR is from the same remote as
the base it is being merged into. This is fixed so that instead
of doing a `git fetch origin`, it now fetches from the `clone_url`
of the PR head.
Signed-off-by: Peter Serwylo <peter@serwylo.com>
2022-11-16 23:50:40 +07:00
af8a69b407
Update OCI workflow of server
...
* Only on pull requests
* Concurrency group
* Bump used actions
* Add summary
Signed-off-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
2022-10-18 23:02:52 +07:00
9b8916457c
Updating lint-eslint.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-10-15 13:39:15 +07:00
6e30b9b4ac
Also backport the cacert to stable25
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-10-11 08:12:58 +07:00
f51da25647
Update update-cacert-bundle.yml
...
Signed-off-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
2022-09-16 12:47:32 +07:00
9eade34385
Automate CA certificate bundle update
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2022-09-16 09:13:45 +07:00
bda2068ce0
Merge pull request #32830 from nextcloud/feat/workflow-auto-update-command-rebase.yml
2022-08-10 12:46:55 +07:00
b5895459c9
Update node workflow for better error messages
...
Signed-off-by: Vincent Petry <vincent@nextcloud.com>
2022-08-03 15:23:20 +07:00
b6f23ce9b4
Remove "needs info" label when the issue is not stale anymore
...
Signed-off-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
2022-08-02 11:33:20 +07:00
d6e35dfe2c
use blueprint from repo
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-06-30 15:52:33 +07:00
5d3e86a1c6
use profiler action
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-06-30 15:52:30 +07:00
6378a186ab
run performance comparisons in ci
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-06-30 15:52:24 +07:00
6ae3fcf9b5
Updating command-rebase.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-06-11 15:29:08 +07:00
2af36577c5
Add matrix for psalm baseline update job
...
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2022-06-05 22:57:23 +07:00
9566fb8007
Add --if-present flag to prevent error when sass script does not exists
...
Signed-off-by: Louis Chemineau <louis@chmn.me>
2022-06-01 09:04:26 +07:00
a849b3fa0c
Add lint job for PHP8.2
...
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
2022-05-25 16:21:46 +07:00
da49e3f3e0
Port share by mail settings to vue
...
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
2022-05-19 15:45:44 +07:00
5a80df6e4c
Remove stale debug mode
2022-05-13 20:24:18 +07:00
458dc1c040
Update command-rebase.yml
2022-05-13 20:21:52 +07:00
29a8b2958d
Add workflow test
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-05-13 16:13:01 +07:00
cb73fe26b8
Compile theming
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-05-11 08:35:23 +07:00
d8c7099cc9
Increase retry delay on 'Wait for S3' CI job
...
1 second means 10 seconds before failure (1x10). Increasing to 10x10 before failure.
2022-05-09 18:44:46 +07:00
2425a7effc
Updating command-rebase.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-04-26 16:05:28 +07:00
b72c619d4b
Merge pull request #31467 from nextcloud/feat/workflow-auto-update-node.yml
2022-04-26 17:38:16 +07:00
036f871d01
Merge pull request #31492 from nextcloud/fix/check-secret-configured
2022-04-26 17:28:51 +07:00
42d24f3051
Add stale action
2022-04-13 09:27:58 +07:00
25e4eb0f42
try to improve s3 primary storage test reliability
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-03-15 17:07:19 +07:00
e6161af662
Also check for instanceid and passwordhash
...
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
2022-03-09 13:36:06 +07:00
7496bf3461
Require the secret config to be configured
...
If it's not configured the instance will look like it is working but
various features will silently break (end to end encryption, setting
alternate email and probably more).
One issue is that changing the secret from empty to something will
break various other stuff (app token). I don't think there is a good way
to solve this issue other than breaking early instead of having to
handle a painful migration later on.
Signed-off-by: Carl Schwan <carl@carlschwan.eu>
2022-03-08 23:11:08 +07:00
1f961e33b0
Updating node.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-03-06 18:04:42 +07:00
80dc1094f2
Updating command-rebase.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2022-03-05 08:32:53 +07:00
72f9fd951d
run ci with primary s3 setup
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-02-25 15:21:37 +07:00
d635d58d19
Merge pull request #29286 from nextcloud/enhancement/drop-php-7-3
...
Drop PHP7.3
2022-02-01 10:50:28 +07:00
deb735ed85
Prevent merging on EOL branches
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-01-27 09:05:30 +07:00
54c933769f
Drop 7.3 from some CI steps
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2022-01-25 17:25:14 +07:00
4fe70de132
Add test for samba kerberos sso in ci
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2022-01-20 18:34:34 +07:00
58798b835a
Merge pull request #30738 from nextcloud/nickvergessen-patch-1
2022-01-19 10:18:06 +07:00
a41d27d8d2
Create block-merge-freeze.yml
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2022-01-19 09:19:13 +07:00
bca3ef60a3
Move jsunit dependencies to main package.json
...
Signed-off-by: Louis Chemineau <louis@chmn.me>
2022-01-18 11:29:51 +07:00
16ba294065
Migrate to npm 7 for autotest-js.sh
...
Signed-off-by: Louis Chemineau <louis@chmn.me>
2022-01-18 11:03:00 +07:00
faeeb03020
Remove iconv from further tests
...
as of: https://github.com/nextcloud/server/pull/29470
Some tests were missing in: https://github.com/nextcloud/server/pull/29958
Signed-off-by: MichaIng <micha@dietpi.com>
2021-12-31 17:32:43 +07:00
4f7b9cc6b2
Add 8.1 tests to CI
...
Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2021-12-16 09:43:31 +07:00
4586560f9b
Revert "Explicitly name node tests workflow"
2021-12-07 09:46:57 +07:00
7fd6339c79
Explicitly name node tests workflow
...
Signed-off-by: Christopher Ng <chrng8@gmail.com>
2021-12-03 18:59:15 +07:00
0d749b7e9a
Remove iconv from dependencies and tests
...
which is not used anymore since: https://github.com/nextcloud/server/pull/29470
Signed-off-by: MichaIng <micha@dietpi.com>
2021-11-30 02:33:12 +07:00
c6429e6cd1
Merge pull request #29547 from nextcloud/automated/noid/psalm-baseline-update
2021-11-04 11:48:51 +07:00
421d8ac4b3
Add branch-suffix to update-psalm-baseline PR creation
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2021-11-04 11:42:34 +07:00
0dc51320e8
Add `3. to review` label
2021-11-04 10:19:29 +07:00
e20f002c4f
Add continue-on-error for update-psalm-baseline workflow
2021-11-04 10:11:56 +07:00
6ee4e6a796
Update update-psalm-baseline.yml
...
Signed-off-by: John Molakvoæ <skjnldsv@protonmail.com>
2021-11-03 10:23:33 +07:00
294b218895
ci
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-10-15 15:35:12 +07:00
09ffac5e6d
s3 external storage listing rework
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-10-15 15:35:02 +07:00
a3f1d10f4d
ftp ci improvements
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-10-07 18:47:13 +07:00
7ec80b3957
ftp logs
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-10-07 17:19:30 +07:00
10b613810f
run ftp external storage tests against multiple ftp servers
...
Signed-off-by: Robin Appelman <robin@icewind.nl>
2021-10-07 17:19:18 +07:00
6cfc7f5dd3
Reset composer for automated psalm baseline update
...
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2021-10-07 09:27:21 +07:00
442eb6cc0e
Merge pull request #29050 from nextcloud/debt/noid/job-to-update-psalm-baseline-broken
...
Fix job to update psalm baseline
2021-10-06 09:21:45 +07:00
20da1080fa
Fix job to update psalm baseline
...
Signed-off-by: Daniel Kesselberg <mail@danielkesselberg.de>
2021-10-03 20:31:10 +07:00
b4403201dc
Change output format of Psalm to Github
...
This automatically inlines the errors into the diff view.
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2021-10-03 14:41:31 +07:00
1e266e8b38
Run oci against all php versions
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-09-27 14:24:05 +07:00
cab44b6311
Run oci tests against phpunit9/php8
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-09-27 14:24:05 +07:00
7559a4a97d
Pin Psalm version for security analysis
...
The action will otherwise pull dev-master and this can break easily as
we just experience.
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
2021-09-03 13:52:04 +07:00
ed36b8b7f0
Updating command-compile.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2021-08-06 07:33:28 +07:00
c854a3fd38
Updating command-rebase.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2021-08-02 08:44:50 +07:00
fabd0a87b3
Update update-psalm-baseline.yml
2021-07-28 18:04:40 +07:00
640f339b7d
Add checkout token
2021-07-28 07:40:58 +07:00
525460c04d
Use COMMAND_BOT_PAT
2021-07-28 07:34:47 +07:00
39931cab94
Update dependabot-approve-merge.yml
2021-07-27 08:16:41 +07:00
f304633fbc
Add command-compile
2021-07-26 18:44:29 +07:00
00105dca82
Add proper node testing
...
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
2021-07-22 13:30:56 +07:00
49b490ce6d
Migrate to npm 7
...
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
2021-07-22 13:06:17 +07:00
3508976156
Add files via upload
2021-07-16 09:13:20 +07:00
472a51e845
Updating dependabot-approve-merge.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2021-07-02 15:43:33 +07:00
b4cb5e2cff
Updating dependabot-approve-merge.yml workflow from template
...
Signed-off-by: Nextcloud bot <bot@nextcloud.com>
2021-06-29 19:06:49 +07:00
2fdd8c40ef
Updating command-rebase.yml workflow from template
...
Signed-off-by: GitHub <noreply@github.com>
2021-06-29 07:46:40 +07:00
53695dac53
Merge pull request #27687 from nextcloud/szaimen-patch-1
...
Create rebase command
2021-06-28 19:09:49 +07:00
b18a7b8d22
Auto approve/merge also on stable branches
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2021-06-28 12:11:12 +07:00
716dd54af2
Create rebase command
...
Signed-off-by: szaimen <szaimen@e.mail.de>
2021-06-26 13:36:32 +07:00
deaf0f3aa2
Change reviewers of Psalm baseline update
...
Change reviewers from Roeland and Me to Julius and Louis
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2021-06-16 09:19:43 +07:00
8c8777a841
Fix name
2021-05-29 09:12:37 +07:00
38a19c263b
Add fixup.yml
2021-05-29 09:09:03 +07:00
162229dbff
Fix psalm action
2021-05-28 18:17:58 +07:00
fb583d5665
Fix psalm action
2021-05-28 18:17:42 +07:00
018e18bf8a
Fix dependabot config
2021-05-28 12:25:03 +07:00
ab3424ad44
Add ext-zip as platform dependency
...
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
2021-05-03 10:10:28 +07:00
6a43948a6e
FIx Oracle by testing on Ubuntu 20.04 until oci8.so is available for 21.04
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2021-04-22 16:57:00 +07:00
fb183b457c
Add eslint testing
...
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
2021-03-17 13:03:38 +07:00
da652ded26
Move fixup check to action
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2021-03-07 19:42:40 +07:00
cc18213c98
Have psalm analysis directly on github
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2021-02-10 14:57:36 +07:00
08cae2ec44
Revert "Pin Psalm version to an older one"
2021-02-02 22:08:01 +07:00
f1d2dcdaa5
Pin Psalm version to an older one
...
Ref https://github.com/vimeo/psalm/issues/5144
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2021-02-02 13:54:18 +07:00
c96bb21ab9
Merge pull request #24903 from nextcloud/enh/psalm-ocp
...
Add dedicated baseline for OCP
2020-12-30 13:23:25 +07:00
fe65f8facf
Add dedicated baseline for OCP
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2020-12-30 11:06:00 +07:00
c42385ef0f
Cleanup bundle files before checking the rebuild
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2020-12-29 12:20:32 +07:00
c7a320d880
jsunit: Run jsunit with chromium/puppeteer on github actions
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2020-12-29 08:42:27 +07:00
6811274cfd
Merge pull request #24246 from LukasReschke/add-taint-flow-analysis
...
Add Psalm Security Analysis
2020-11-21 00:04:37 +07:00
47ac8e0028
Add Psalm Taint Flow Analysis
...
This adds the Psalm Security Analysis, as described at
https://psalm.dev/docs/security_analysis/
It also adds a plugin for adding input into AppFramework.
The results can be viewed in the GitHub Security tab at
https://github.com/nextcloud/server/security/code-scanning
**Q&A:**
Q: Why do you not use the shipped Psalm version?
A: I do a lot of changes to the Psalm Taint behaviour. Using released
versions is not gonna get us the results we want.
Q: How do I improve false positives?
A: https://psalm.dev/docs/security_analysis/avoiding_false_positives/
Q: How do I add custom sources?
A: https://psalm.dev/docs/security_analysis/custom_taint_sources/
Q: We should run this on apps!
A: Yes.
Q: What will change in Psalm?
A: Quite some of the PHP core functions are not yet marked to propagate
the taint. This leads to results where the taint flow is lost. That's
something that I am currently working on.
Q: Why is the plugin MIT licensed?
A: Because its the first of its kind (based on GitHub Code Search) and
I want other people to copy it if they want to. Security is for all :)
Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2020-11-20 23:12:00 +07:00
12f322d804
Also lint php8
...
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
2020-11-20 16:49:09 +07:00
a524e83be0
Fix naming of jobs and steps
...
Signed-off-by: Joas Schilling <coding@schilljs.com>
2020-11-10 21:39:19 +07:00
2050517d44
Add github action for oci8
...
Signed-off-by: Julius Härtl <jus@bitgrid.net>
2020-11-10 15:34:35 +07:00
1e7a82d99e
Fix php lint action
2020-11-05 09:34:04 +07:00
bb05f0e4eb
Do not commit updated composer dependencies in psalm baseline update
...
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2020-10-30 10:48:01 +07:00
f18d9cd310
Update daily "update psalm baseline" job to composer psalm
...
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2020-10-29 09:58:25 +07:00
106c8d719c
Do not fail on changes to baseline.xml
...
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
2020-10-13 21:55:37 +07:00
Côme Chilliet
Julius Härtl
Joas Schilling
MichaIng
Côme Chilliet
Joas Schilling
Robin Appelman
John Molakvoæ
John Molakvoæ
Louis Chemineau
Daniel Kesselberg
Carl Schwan
Simon L
Peter Serwylo
Nextcloud bot
Vincent Petry
Christoph Wurst
Git'Fellow
Christopher Ng
Morris Jobke
Lukas Reschke
Roeland Jago Douma
Roeland Jago Douma