Julien Pivotto
66bb47ade6
fuzzing: fix artifact path and experimental parser flags
...
Fix two issues in fuzzing infrastructure:
- Correct artifact upload path from promql/testdata/fuzz to util/fuzzing/testdata/fuzz to match where Go stores crash artifacts
- Fix GetCorpusForFuzzParseExpr to preserve original parser flag values instead of always resetting them to false, which was disabling experimental features before actual fuzzing ran
Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
2026-01-16 12:07:16 +01:00
Julien Pivotto
802e959ec2
chore(fuzzing): Meet required check expectation
...
Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
2026-01-13 10:02:58 +01:00
Julien Pivotto
de0a864b5c
Fuzzing: Move to go fuzzing
...
Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
2026-01-12 12:59:10 +01:00
dependabot[bot]
8c38d1914f
chore(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 ( #17758 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](330a01c490...b7c566a772
2026-01-02 09:16:21 +01:00
renovate[bot]
e28d765d90
chore(deps): update google/oss-fuzz digest to 4bf20ff ( #17726 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-23 10:12:24 +01:00
Julien Pivotto
089ed0b083
chore: Update OSS-Fuzz CIFuzz actions to latest version
...
Update google/oss-fuzz/infra/cifuzz actions from cafd7a0e to 537c8005.
Prior to this PR, the OSS-Fuzz builder environment was updated and now produces
binaries that require GLIBC 2.32 or newer. However, the fuzzing runtime was
based on Ubuntu 20.04 (GLIBC 2.31), while the builder itself runs in a more
recent environment. This mismatch caused compatibility issues that this PR
solves.
Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
2025-12-15 17:19:05 +01:00
dependabot[bot]
134a40b782
chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.2 to 5.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](ea165f8d65...330a01c490
2025-11-01 23:16:36 +00:00
Joe Harvey
79c9e9348f
ci: address zizmor gh action vulnerabilities ( #16530 )
...
* ci: address zizmor gh action vulnerabilities
---------
Signed-off-by: Joe Harvey <51208233+jharvey10@users.noreply.github.com>
Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
2025-05-26 15:38:09 +00:00
dependabot[bot]
c7f4e41e79
chore(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65
2025-03-24 09:56:06 +00:00
dependabot[bot]
de784ce6e0
chore(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 ( #16129 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0
2025-03-07 15:05:03 +01:00
dependabot[bot]
f453f43178
chore(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 ( #15961 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](6f51ac03b9...65c4c4a1dd
2025-02-07 19:12:03 +01:00
dependabot[bot]
ebb3c4e35f
chore(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0 ( #15757 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9
2025-01-13 19:13:29 +01:00
dependabot[bot]
405b088d6d
chore(deps): bump actions/upload-artifact from 4.4.0 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...b4b15b8c7c
2024-11-08 08:50:27 +00:00
dependabot[bot]
54772a2c8f
Bump actions/upload-artifact from 4.3.4 to 4.4.0 ( #14775 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.4 to 4.4.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...50769540e7
2024-09-10 22:14:29 +02:00
dependabot[bot]
f6f911db75
build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.3 to 4.3.4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65462800fd...0b2256b8c0
2024-08-01 23:46:48 +00:00
dependabot[bot]
781815f064
build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.1 to 4.3.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](5d5d22a312...65462800fd
2024-05-01 23:05:58 +00:00
dependabot[bot]
091ad1c410
build(deps): bump actions/upload-artifact from 4.0.0 to 4.3.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.0.0 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](c7d193f32e...5d5d22a312
2024-03-01 23:44:24 +00:00
dependabot[bot]
97c186e2c8
build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0 ( #13355 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.3 to 4.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](a8a3f3ad30...c7d193f32e
2024-01-25 10:24:14 +01:00
Pedro Nacht
142c829fce
Hash-pin GitHub Actions
...
Signed-off-by: Pedro Kaj Kjellerup Nacht <pnacht@google.com>
2023-09-13 13:52:14 +00:00
Ashish Kurmi
00ba2f9a46
ci: add minimum GitHub token permissions for workflows
...
Signed-off-by: Ashish Kurmi <akurmi@stepsecurity.io>
2022-09-07 21:27:16 -07:00
Julien Pivotto
0a4c6d6c48
Refactor UI publishing and polish tests ( #11267 )
...
Signed-off-by: Julien Pivotto <roidelapluie@o11y.eu>
Signed-off-by: Julien Pivotto <roidelapluie@o11y.eu>
2022-09-06 16:58:50 +02:00
dependabot[bot]
f889ad3f73
build(deps): bump actions/upload-artifact from 2.3.1 to 3 ( #10519 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2.3.1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2.3.1...v3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-02 03:47:11 +02:00
David Leadbeater
51a023dc24
Run required checks always ( #10405 )
...
i.e. even if there's no Go code changes. That way the required checks
don't need bypassing.
Signed-off-by: David Leadbeater <dgl@dgl.cx>
2022-03-07 11:25:08 +01:00
dependabot[bot]
2737abf221
build(deps): bump actions/upload-artifact from 2.3.0 to 2.3.1 ( #10059 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2.3.0...v2.3.1 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-21 11:22:13 +01:00
dependabot[bot]
6f3e664ae7
build(deps): bump actions/upload-artifact from 2.2.4 to 2.3.0 ( #9994 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 2.2.4 to 2.3.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v2.2.4...v2.3.0 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-12-10 14:10:51 +01:00
dependabot[bot]
06aaf49e11
Bump actions/upload-artifact from 1 to 2.2.4 ( #9731 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 1 to 2.2.4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v1...v2.2.4 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-15 17:07:31 +01:00
Michal Wasilewski
3f686cad8b
fixes yamllint errors
...
Signed-off-by: Michal Wasilewski <mwasilewski@gmx.com>
2021-06-12 12:47:47 +02:00
Julien Pivotto
bc87f37830
Re-introduce fuzzing in pull requests
...
Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2021-02-13 22:23:46 +01:00
Julien Pivotto
b5edda7cc5
Disable fuzzing
...
Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2021-02-11 11:53:33 +01:00
Julien Pivotto
7bc48123e5
Restrict fuzzing on go paths
...
Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2020-12-09 21:37:14 +01:00
Julien Pivotto
4a4ea309b6
Add oss-fuzz on PR's
...
Signed-off-by: Julien Pivotto <roidelapluie@inuits.eu>
2020-12-09 21:13:18 +01:00
