Jan Fajerski
fae9323c13
Merge pull request #17113 from machine424/deadl
...
chore(prombench): re-roder checks on nodes to avoid deadlocks between start and clean and in restart
2025-11-07 14:36:14 +01:00
Jan Fajerski
b58d868bc4
Merge pull request #17442 from prometheus/dependabot/github_actions/github/codeql-action-4.31.2
...
chore(deps): bump github/codeql-action from 3.30.5 to 4.31.2
2025-11-06 11:32:26 +01:00
Jan Fajerski
d12f2fcdf0
Merge pull request #17443 from prometheus/dependabot/github_actions/actions/upload-artifact-5.0.0
...
chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0
2025-11-06 11:31:59 +01:00
dependabot[bot]
9b7a4c00da
chore(deps): bump actions/stale from 9.1.0 to 10.1.0
...
Bumps [actions/stale](https://github.com/actions/stale ) from 9.1.0 to 10.1.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](5bef64f19d...5f858e3efb
2025-11-01 23:16:40 +00:00
dependabot[bot]
134a40b782
chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.2 to 5.0.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](ea165f8d65...330a01c490
2025-11-01 23:16:36 +00:00
dependabot[bot]
79893d3b3c
chore(deps): bump github/codeql-action from 3.30.5 to 4.31.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.30.5 to 4.31.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3599b3baa1...0499de31b9
2025-11-01 23:16:30 +00:00
dependabot[bot]
3d2d847e77
chore(deps): bump actions/setup-go from 5.5.0 to 6.0.0 ( #17259 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.5.0 to 6.0.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](d35c59abb0...4469467582
2025-10-22 11:34:20 +02:00
dependabot[bot]
0ef13ac7c6
chore(deps): bump actions/setup-node from 4.4.0 to 5.0.0 ( #17261 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.4.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](49933ea528...a0853c2454
2025-10-22 11:33:44 +02:00
dependabot[bot]
a20c381649
chore(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 ( #17257 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.2 to 2.4.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](05b42c6244...4eaacf0543
2025-10-22 10:36:52 +02:00
dependabot[bot]
40fe032238
chore(deps): bump github/codeql-action from 3.29.2 to 3.30.5 ( #17258 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.29.2 to 3.30.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](181d5eefc2...3599b3baa1
2025-10-22 10:29:26 +02:00
dependabot[bot]
e18053fa8a
chore(deps): bump actions/cache from 4.2.3 to 4.3.0 ( #17260 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.2.3 to 4.3.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](5a3ec84eff...0057852bfa
2025-10-22 10:28:45 +02:00
Bartlomiej Plotka
a4da440dad
fix: Fix slicelabels corruption when used with proto decoding ( #17150 )
...
* fix: Fix slicelabels corruption when used with proto decoding
Alternative to https://github.com/prometheus/prometheus/pull/16957/
Signed-off-by: bwplotka <bwplotka@gmail.com>
* addressed comments
Signed-off-by: bwplotka <bwplotka@gmail.com>
---------
Signed-off-by: bwplotka <bwplotka@gmail.com>
2025-10-07 12:06:48 +01:00
Bryan Boreham
356e778a0d
Merge pull request #17204 from machine424/ccl
...
chore(workflows/check_release_notes): do not run on dependabot PRs and only run against main
2025-09-30 12:22:22 +01:00
machine424
365409d3be
chore: allow seamless use of testing/synctest for >=go1.24
...
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-09-19 22:48:25 +02:00
Ayoub Mrini
7416f33df5
chore: define golangci-lint version in a single place and bump to v2.4.0 ( #17202 )
...
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-09-17 10:52:09 +02:00
machine424
5af40c2404
chore(workflows/check_release_notes): do not run on dependabot PRs and only run against main
...
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-09-17 09:35:59 +02:00
machine424
91ef9a50b9
chore(prombench): re-roder checks on nodes to avoid deadlocks start and cancel and in restart
...
the start job requires the node pools to be gone before creating them, and
the cleanup and restart jobs require the pools to be running to delete them,
When the initial start is partial (only one pool was created), no command can
move forward...
the preconditions should be relaxed, for more robustness.
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-09-02 12:26:08 +02:00
Duciwuci
070ffd7edb
bump go version across all stages
...
Signed-off-by: Duciwuci <duciwuci@gmail.com>
2025-09-02 10:02:39 +02:00
Ayoub Mrini
dd6ad8ec4c
feat: add a way to pass release notes from the PR ( #16904 )
...
* feat: add a way to add release notes from the PR
make the release note block part of .github/PULL_REQUEST_TEMPLATE.md (inspired from k8s')
A CI check would check the input.
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
* imp
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
* suggestions
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
---------
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-08-13 15:34:36 +02:00
George Krajcsovits
929bd787ec
fix(ci): run linter with all build tags ( #17027 )
...
Fix up lint errors that were not previously checked.
Signed-off-by: György Krajcsovits <gyorgy.krajcsovits@grafana.com>
2025-08-08 09:43:41 +00:00
Matthias Rampke
9ad799e0b1
repo sync: allow manual triggering
...
Add a [workflow dispatch](https://docs.github.com/en/actions/reference/workflows-and-actions/events-that-trigger-workflows#workflow_dispatch )
trigger to allow [manual triggering](https://docs.github.com/en/actions/managing-workflow-runs/manually-running-a-workflow )
of the repo sync workflow.
I am often behind on merging the repo sync PRs. The script does not update them,
and I don't have the nerve right now to figure _that_ out. As a workaround, it
would be useful to trigger it manually after merging the outstanding ones, so I
can get a fresh round on the same day.
Signed-off-by: Matthias Rampke <matthias@prometheus.io>
2025-08-01 22:24:03 +02:00
Piotr
be46837c12
fix memory corruption in labels when scraping with protbuf
...
Signed-off-by: Piotr <17101802+thampiotr@users.noreply.github.com>
2025-07-30 11:22:59 +01:00
Piotr
0b3ed4020c
reproduce decoder labels memory corruption
...
Signed-off-by: Piotr <17101802+thampiotr@users.noreply.github.com>
2025-07-29 17:22:04 +01:00
dependabot[bot]
74ec898bec
chore(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 ( #16677 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.4.1 to 2.4.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](f49aabe0b5...05b42c6244
2025-07-11 11:57:05 +02:00
dependabot[bot]
489c22d5b6
chore(deps): bump actions/setup-go from 5.4.0 to 5.5.0 ( #16678 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.4.0 to 5.5.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0aaccfd150...d35c59abb0
2025-07-11 11:56:37 +02:00
github-actions[bot]
dcdba5fc96
Merge pull request #16676 from prometheus/dependabot/github_actions/dependabot/fetch-metadata-2.4.0
...
chore(deps): bump dependabot/fetch-metadata from 2.3.0 to 2.4.0
2025-07-11 11:56:20 +02:00
github-actions[bot]
6a6682cec0
Merge pull request #16810 from prometheus/dependabot/github_actions/github/codeql-action-3.29.2
...
build(deps): bump github/codeql-action from 3.28.16 to 3.29.2
2025-07-11 11:55:29 +02:00
dependabot[bot]
07028d3cd5
chore(deps): bump golangci/golangci-lint-action from 7.0.0 to 8.0.0 ( #16674 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](1481404843...4afd733a84
2025-07-11 11:55:00 +02:00
Cristian Greco
3a5db2d442
ci: address golangci-lint issue with persist-credentials ( #16861 )
...
* ci: address golangci-lint issue with persist-credentials
Fixes the following zizmor warning:
```
warning[artipacked]: credential persistence through GitHub Actions artifacts
--> scripts/golangci-lint.yml:26:9
|
26 | - name: Checkout repository
| _________-
27 | | uses: actions/checkout@11bd71901b # v4.2.2
28 | | # with:
29 | | # persist-credentials: false
| |______________________________________- does not set persist-credentials: false
```
All other actions have been fixed in https://github.com/prometheus/prometheus/pull/16530
Credit to @jharvey10 who also addressed this particular issue in
a5bf67d897
2025-07-11 11:53:32 +02:00
dependabot[bot]
5ca501e648
build(deps): bump github/codeql-action from 3.28.16 to 3.29.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.16 to 3.29.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](28deaeda66...181d5eefc2
2025-07-01 23:20:21 +00:00
dependabot[bot]
3111370d35
chore(deps): bump dependabot/fetch-metadata from 2.3.0 to 2.4.0
...
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata ) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases )
- [Commits](d7267f607e...08eff52bf6
2025-06-02 00:17:27 +00:00
Ayoub Mrini
44f78bb3c8
Merge pull request #16623 from machine424/reprep
...
fix: add reproducer for a dangling-reference issue in parsers and fix
2025-05-27 05:24:48 +02:00
Joe Harvey
79c9e9348f
ci: address zizmor gh action vulnerabilities ( #16530 )
...
* ci: address zizmor gh action vulnerabilities
---------
Signed-off-by: Joe Harvey <51208233+jharvey10@users.noreply.github.com>
Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
2025-05-26 15:38:09 +00:00
machine424
2bfbd8a714
fix: add reproducer for a dangling-reference issue in parsers
...
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-05-22 17:22:51 +02:00
Ayoub Mrini
2edc3ed6c5
feat(tsdb): introduce --use-uncached-io feature flag and allow using it for chunks writing ( #15365 )
...
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
Signed-off-by: Ayoub Mrini <ayoubmrini424@gmail.com>
2025-05-21 14:42:30 +02:00
dependabot[bot]
c3ce1f1927
chore(deps): bump actions/setup-node from 4.3.0 to 4.4.0 ( #16533 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](cdca7365b2...49933ea528
2025-05-04 11:50:04 +02:00
github-actions[bot]
504a130722
Merge pull request #16535 from prometheus/dependabot/github_actions/github/codeql-action-3.28.16
...
chore(deps): bump github/codeql-action from 3.28.13 to 3.28.16
2025-05-04 11:21:45 +02:00
Matthieu MOREL
9d7a37ae18
Bump golangci-lint to v2.1.5 ( #16545 )
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
2025-05-04 11:17:22 +02:00
Bryan Boreham
ca416c580c
Merge branch 'main' into slicelabels
...
Signed-off-by: Bryan Boreham <bjboreham@gmail.com>
2025-05-02 10:31:57 +01:00
dependabot[bot]
9dcc160049
chore(deps): bump github/codeql-action from 3.28.13 to 3.28.16
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.13 to 3.28.16.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b549b9259...28deaeda66
2025-05-02 00:14:05 +00:00
machine424
37000f6f3d
chore: sync golang versions
...
use 1.24 as intended in https://github.com/prometheus/prometheus/pull/16180
Signed-off-by: machine424 <ayoubmrini424@gmail.com>
2025-04-17 15:40:13 +02:00
github-actions[bot]
917a26ce97
Merge pull request #16384 from prometheus/dependabot/github_actions/github/codeql-action-3.28.13
...
chore(deps): bump github/codeql-action from 3.28.12 to 3.28.13
2025-04-17 13:05:30 +02:00
Lukasz Mierzwa
bb76966992
Use stringlabels by default
...
This removes the stringlabels build tag, makes that implementation the default one, and moves the old labels implementation under the slicelabels build tag.
Fixes #16064 .
Signed-off-by: Lukasz Mierzwa <l.mierzwa@gmail.com>
2025-04-15 17:52:24 +01:00
Matthieu MOREL
08aa5e3f97
ci: update golangci-lint to v2.0.2 and adjust configuration ( #16356 )
...
* ci: update golangci-lint to v2.0.2 and adjust configuration
---------
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com>
2025-04-02 13:05:30 +02:00
dependabot[bot]
b76e49d1c1
chore(deps): bump github/codeql-action from 3.28.12 to 3.28.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.28.12 to 3.28.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](5f8171a638...1b549b9259
2025-04-02 00:05:16 +00:00
dependabot[bot]
6e508f8553
chore(deps): bump actions/setup-go from 5.3.0 to 5.4.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](f111f3307d...0aaccfd150
2025-03-27 21:07:19 +00:00
github-actions[bot]
38fe7f463a
Merge pull request #16310 from prometheus/dependabot/github_actions/actions/upload-artifact-4.6.2
...
chore(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
2025-03-27 21:49:28 +01:00
dependabot[bot]
8d980bf747
chore(deps): bump actions/setup-node from 4.2.0 to 4.3.0
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](1d0ff469b7...cdca7365b2
2025-03-24 09:56:09 +00:00
dependabot[bot]
c7f4e41e79
chore(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.6.1 to 4.6.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65
2025-03-24 09:56:06 +00:00
dependabot[bot]
dc82666ed4
chore(deps): bump prometheus/promci from 0.4.6 to 0.4.7 ( #16262 )
...
Bumps [prometheus/promci](https://github.com/prometheus/promci ) from 0.4.6 to 0.4.7.
- [Release notes](https://github.com/prometheus/promci/releases )
- [Commits](c3c93a50d5...443c7fc239
2025-03-22 18:40:11 +01:00
