Skip to content

Release v0.1.3 #60

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jtherrmann merged 19 commits into from
May 30, 2025
Merged

Release v0.1.3 #60

jtherrmann merged 19 commits into from
May 30, 2025

Conversation

@williamh890
Copy link
Contributor

@williamh890 williamh890 commented May 30, 2025
edited by jtherrmann
Loading

dependabot bot and others added 12 commits May 12, 2025 07:29
@dependabot
Bump ruff from 0.11.8 to 0.11.9
2a9d854 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.11.8 to 0.11.9.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.11.8...0.11.9)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.11.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Merge pull request #54 from ASFHyP3/dependabot/pip/ruff-0.11.9
ffa2d13 
Bump ruff from 0.11.8 to 0.11.9
@dependabot
Bump ruff from 0.11.9 to 0.11.10
0c2a9f6 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.11.9 to 0.11.10.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.11.9...0.11.10)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.11.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump ASFHyP3/actions from 0.18.1 to 0.19.0
8af2eff 
Bumps [ASFHyP3/actions](https://github.com/asfhyp3/actions) from 0.18.1 to 0.19.0.
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](ASFHyP3/actions@v0.18.1...v0.19.0)

---
updated-dependencies:
- dependency-name: ASFHyP3/actions
  dependency-version: 0.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Merge pull request #56 from ASFHyP3/dependabot/github_actions/ASFHyP3…
0166c28 
…/actions-0.19.0

Bump ASFHyP3/actions from 0.18.1 to 0.19.0
@jtherrmann
Merge pull request #55 from ASFHyP3/dependabot/pip/ruff-0.11.10
7c91c23 
Bump ruff from 0.11.9 to 0.11.10
@dependabot
Bump ruff from 0.11.10 to 0.11.11
c3ead8f 
---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.11.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Merge pull request #58 from ASFHyP3/dependabot/pip/ruff-0.11.11
da048e9 
Bump ruff from 0.11.10 to 0.11.11
@williamh890
Download opera burst db during docker build
5bb1aa5
@williamh890
Remove extra newline from dockerfile
4d30e76
@williamh890
Update changelog
b235235
@williamh890
Merge pull request #59 from ASFHyP3/burst-db
50e7821 
Download opera burst db during docker build
@williamh890 williamh890 requested a review from a team as a code owner May 30, 2025 18:59
@github-actions
Copy link

github-actions bot commented May 30, 2025
edited by jtherrmann
Loading

Developer checklist

  • Indicated the level of changes to this package by affixing one of these labels:
    • major -- Major changes to the API that may break current workflows
    • minor -- Minor changes to the API that do not break current workflows
    • patch -- Patches and bugfixes for the current version that do not break current workflows
    • bumpless -- Changes to documentation, CI/CD pipelines, etc. that don't affect the software's version
  • (If applicable) Updated the dependencies and indicated any downstream changes that are required
  • Added/updated documentation for these changes
  • Added/updated tests for these changes
  • Verified changes in test deployment and summarized results, e.g. in PR description or comments on the related issue(s)

Reviewer checklist

  • Have all dependencies been updated?
  • Is the level of changes labeled appropriately?
  • Are all the changes described appropriately in CHANGELOG.md?
  • Has the documentation been adequately updated?
  • Are the tests adequate?
  • Have the changes been verified in the test deployment?

@github-advanced-security
Copy link

github-advanced-security bot commented May 30, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

github-advanced-security[bot]
github-advanced-security bot found potential problems May 30, 2025
View reviewed changes
@williamh890 williamh890 added the patch Bump the patch version number of this project label May 30, 2025
@forrestfwilliams
Copy link
Contributor

forrestfwilliams commented May 30, 2025

Golden test run:
https://github.com/ASFHyP3/hyp3-testing/actions/runs/15353843480

jtherrmann and others added 5 commits May 30, 2025 11:15
@jtherrmann
publish docker container to GHCR
20dc770
@jtherrmann
update readme
23e41d6
@jtherrmann
Merge pull request #61 from ASFHyP3/ghcr
6353c2f 
publish docker container to GHCR
@dependabot
bump ASFHyP3/actions from 0.19.0 to 0.20.0
a124b0a 
Bumps [ASFHyP3/actions](https://github.com/asfhyp3/actions) from 0.19.0 to 0.20.0.
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](ASFHyP3/actions@v0.19.0...v0.20.0)

---
updated-dependencies:
- dependency-name: ASFHyP3/actions
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Merge pull request #57 from ASFHyP3/dependabot/github_actions/ASFHyP3…
d325174 
…/actions-0.20.0

bump ASFHyP3/actions from 0.19.0 to 0.20.0
github-advanced-security[bot]
github-advanced-security bot found potential problems May 30, 2025
View reviewed changes
.github/workflows/changelog.yml
call-changelog-check-workflow:
# Docs: https://github.com/ASFHyP3/actions
uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.18.1
uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.20.0

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 8 months ago

To fix the issue, we will add a permissions block at the root of the workflow file. This block will specify the minimal permissions required for the workflow to function. Based on the context, the workflow appears to check for changelog updates, which likely requires read access to the repository contents. Therefore, we will set contents: read as the permission.

Suggested changeset 1
.github/workflows/changelog.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml
--- a/.github/workflows/changelog.yml
+++ b/.github/workflows/changelog.yml
@@ -2,2 +2,5 @@
 
+permissions:
+  contents: read
+
 on:
EOF
@@ -2,2 +2,5 @@

permissions:
contents: read

on:
Copilot is powered by AI and may make mistakes. Always verify output.
.github/workflows/labeled-pr.yml
call-labeled-pr-check-workflow:
# Docs: https://github.com/ASFHyP3/actions
uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.18.1
uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.20.0

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 8 months ago

To fix the issue, we need to add a permissions block to the workflow. This block should specify the least privileges required for the workflow to function correctly. Since the workflow interacts with pull requests (e.g., checking labels), it likely requires contents: read and pull-requests: read. If additional permissions are needed, they should be added explicitly based on the functionality of the reusable workflow.

The permissions block should be added at the root level of the workflow, ensuring it applies to all jobs unless overridden by job-specific permissions.

Suggested changeset 1
.github/workflows/labeled-pr.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/labeled-pr.yml b/.github/workflows/labeled-pr.yml
--- a/.github/workflows/labeled-pr.yml
+++ b/.github/workflows/labeled-pr.yml
@@ -2,2 +2,6 @@
 
+permissions:
+  contents: read
+  pull-requests: read
+
 on:
EOF
@@ -2,2 +2,6 @@

permissions:
contents: read
pull-requests: read

on:
Copilot is powered by AI and may make mistakes. Always verify output.
.github/workflows/static-analysis.yml

call-mypy-workflow:
uses: ASFHyP3/actions/.github/workflows/reusable-mypy.yml@v0.18.1
uses: ASFHyP3/actions/.github/workflows/reusable-mypy.yml@v0.20.0

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 8 months ago

To fix the issue, we need to add a permissions block to the root of the workflow file. This block will define the minimum required permissions for the workflow. Since the workflow calls reusable workflows, we should assume the most basic permissions (contents: read) unless the reusable workflows explicitly require additional permissions. If the reusable workflows need more permissions, they should ideally define them internally.

The fix involves:

  1. Adding a permissions block at the root level of the workflow file.
  2. Setting contents: read as the default permission, which is sufficient for most basic CI workflows.
Suggested changeset 1
.github/workflows/static-analysis.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml
--- a/.github/workflows/static-analysis.yml
+++ b/.github/workflows/static-analysis.yml
@@ -4,2 +4,5 @@
 
+permissions:
+  contents: read
+
 jobs:
EOF
@@ -4,2 +4,5 @@

permissions:
contents: read

jobs:
Copilot is powered by AI and may make mistakes. Always verify output.
@williamh890
Copy link
Contributor Author

williamh890 commented May 30, 2025

Golden tests with ghcr image: https://github.com/ASFHyP3/hyp3-testing/actions/runs/15354527364

@jtherrmann jtherrmann merged commit 2604ca6 into main May 30, 2025
22 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jtherrmann jtherrmann jtherrmann approved these changes

+1 more reviewer

@forrestfwilliams forrestfwilliams forrestfwilliams approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

patch Bump the patch version number of this project

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@williamh890 @forrestfwilliams @jtherrmann @asjohnston-asf