search

xry111 / lfs-book-i18n

Repository for LFS book translation (currently only Simplified Chinese).
https://lfs.xry111.site/zh_CN/
176 stars 10 forks source link

Bump webfactory/ssh-agent from 0.4.1 to 0.5.4 #16

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps webfactory/ssh-agent from 0.4.1 to 0.5.4.

Release notes

Sourced from webfactory/ssh-agent's releases.

Update GitHub Host Keys

The most important change in this release is the update of the SSH Host Keys used by GitHub.com (#102, #101).

In case you'd like to verify the keys, see https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/githubs-ssh-key-fingerprints.

Fixes for the post-action run "cleanup" phase

This release makes sure that the ssh-agent is actually terminated after workflow runs, and that this also happens on workflow failure.

Use case-insensitive scanning for deploy key repo URLs

Fixes that repository URLs (for deploy keys) were only recognized when written in lower case.

Fixes deployment keys on Windows

This release switches to using the ssh-agent and ssh-add binaries provided with Git for Windows (#63). These versions of the SSH binaries are based on a newer version of OpenSSH than the versions included in Windows natively. Deploy key support is not possible with the native versions.

Add support for Deployment Keys, Windows and container-based environments

This release brings a few exciting improvements 🙌🏻.

  • The action should now support all virtual environments, including Windows and Docker-based workflows.

Of course, since this is a rather new feature, expect some rough edges and feel free to open issues for problems you encounter.

  • This action now supports using multiple GitHub deployment keys

Mapping of keys to appropriate repositories happens through key comments. See the README file for more details.

Thanks 💚 to everyone involved in the discussions, for coming up with pull requests, for making suggestions and testing things.

Changelog

Sourced from webfactory/ssh-agent's changelog.

v0.5.4 [2021-11-21]

Fixed

  • Update changed GitHub Host Keys (#102, #101)

Changed

  • Various documentation (README) improvements and additions
  • Change logging to more precisely state that public keys are being printed

v0.5.3 [2021-06-11]

Fixed

  • Fixed cleanup phase to really terminate the ssh-agent (#80)
  • Fix termination of ssh-agent also on workflow faiulre (#79)

Changed

  • Various documentation (README) improvements and additions

v0.5.2 [2021-04-07]

Fixed

  • Use case-insensitive regex matching when scanning key comments (#68, #70, #71)

Changed

  • Log when a key is not used as a deploy key (#69)

v0.5.1 [2021-03-10]

Fixed

  • Fix deployment key mapping on Windows virtual environment by using SSH binaries from the Git suite, terminate ssh-agent upon actio termination on Windows as well (#63)
  • Handle ENOENT exceptions with a graceful message

Changed

  • Various documentation (README) improvements and additions

v0.5.0 [2021-02-19]

Added

  • Add support for GitHub Deployment Keys through key comments (#59). Fixes #30, closes #38.
  • Support for container-based workflows and Windows (#17)

... (truncated)

Commits
  • fc49353 Bump example version numbers in the README file
  • bc6614d Update recent changes in the CHANGELOG file
  • dc622c5 Update to Reflect Supported GitHub Host Keys (#102)
  • 97348a2 Document on how to integrate with docker/build-push-action (#90)
  • bbd5513 Better explain in the README how to set up keys in repositories (#96)
  • a652a40 Merge pull request #95 from mjhipp/mh_public_key_comment
  • 1711bb1 Update GitHub deploy key log comment to specify public key
  • 5f066a3 Prepare a 0.5.3 release
  • a45226b Use execFileSync to clean up (#80)
  • 81d965f Tix a fypo
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
xry111 commented 2 years ago

@dependabot merge

xry111 commented 2 years ago

@dependabot rebase

xry111 commented 2 years ago

@dependabot cancel merge