CERBERUS/kitty
1
0
Fork 0
mirror of https://github.com/kovidgoyal/kitty.git synced 2026-05-13 08:26:56 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
18169 commits 31 branches 135 tags 94 MiB
Commit graph

175 commits

Author SHA1 Message Date
dependabot[bot]
9993f82d64
Bump github/codeql-action from 4.35.2 to 4.35.3 in the actions group 
Bumps the actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4.35.2 to 4.35.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v4.35.2...v4.35.3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-11 03:52:22 +00:00
dependabot[bot]
30686c39b4
Bump github/codeql-action from 4.35.1 to 4.35.2 in the actions group 
Bumps the actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v4.35.1...v4.35.2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-27 03:47:32 +00:00
dependabot[bot]
20877f2079
Bump github/codeql-action from 4 to 4.35.1 in the actions group 
Bumps the actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4 to 4.35.1
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v4...v4.35.1)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-20 03:47:19 +00:00
Kovid Goyal
9bb359e1ef
Bump python version in CI 2026-04-19 21:35:13 +05:30
Kovid Goyal
3a598218d3
Flush streams and sleep before printing crash report 2026-04-19 21:25:08 +05:30
Kovid Goyal
5e8ca630d4
... 2026-04-14 17:39:04 +05:30
Kovid Goyal
27114c9703
DRYer 2026-04-06 11:28:12 +05:30
Kovid Goyal
79bde7f9a9
Ignore inapplicable CVE in python 2026-03-25 20:20:17 +05:30
Kovid Goyal
c57305addc
Ignore dependency CVEs against unreleased versions of deps 2026-03-20 10:45:08 +05:30
Kovid Goyal
1106ee8d10
Ignore CVE that's not an actual issue 2026-03-06 13:46:07 +05:30
Kovid Goyal
0ea65903b8
Revert "Increase minimum python version to 3.12" 
This reverts commit 7004911271.
Dont need 3.12 anymore
 2026-02-08 21:57:11 +05:30
Kovid Goyal
3839dcc082
Bump dependency for CVE 2026-02-07 14:41:17 +05:30
Kovid Goyal
0afe77ebc9
Ignore irrelevant CVE 2026-02-05 23:01:58 +05:30
Kovid Goyal
7004911271
Increase minimum python version to 3.12 
Needed for PyErr_GetRaisedException

I could polyfill it, but cant be bothered. Python 3.12 is almost 3 years
old now. If somebody really, really needs older python support, PR
welcome.
 2026-02-04 20:47:28 +05:30
Kovid Goyal
0267a02bb3
Ignore irrelevant python stdlib CVE 2026-02-03 14:48:30 +05:30
Kovid Goyal
cb53c41c7c
... 2026-01-28 09:40:15 +05:30
Kovid Goyal
ae36822837
Ignore a bunch of CVes in python that havent actually had their fixes released yet. 2026-01-23 19:07:02 +05:30
Kovid Goyal
e342f5ffab
Ignore inapplicable CVE in python stdlib 2026-01-16 19:13:16 +05:30
Kovid Goyal
edd466e5f7
Pygments does not need type checking globally ignored anymore 2026-01-14 22:18:11 +05:30
Kovid Goyal
8a10931f0e
Download grype from my own server 
Far higher reliability than githubj;wq
 2026-01-10 12:42:09 +05:30
Kovid Goyal
24b634ae1a
Nicer 403 error andling when downloading grype 2026-01-02 11:35:28 +05:30
dependabot[bot]
232edb3ad3
Bump actions/cache from 4 to 5 in the actions group 
Bumps the actions group with 1 update: [actions/cache](https://github.com/actions/cache).


Updates `actions/cache` from 4 to 5
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-12-22 03:22:12 +00:00
Kovid Goyal
f39183bd6b
Ignore inapplicable CVE 2025-12-11 12:49:16 +05:30
Kovid Goyal
d87ba95d9c
Ignore CVE-2025-13836 
We dont care about this DoS enough, so ignore until a new version of
python 3.12 s released with the fix. Not updating past Python 3.12 for
this DoS.
 2025-12-04 15:10:26 +05:30
dependabot[bot]
e69318e5fb
Bump actions/checkout from 5 to 6 in the actions group 
Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout).


Updates `actions/checkout` from 5 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-12-01 03:51:10 +00:00
Kovid Goyal
5f90102413
Add support for RAR archive preview 2025-11-27 09:33:15 +05:30
Kovid Goyal
0195f0f5f6
auto fixes to github actions by zizmor 2025-11-07 09:36:57 +05:30
Kovid Goyal
97b030edf7
Dont scan grype itself with grype 2025-11-02 15:41:01 +05:30
Kovid Goyal
d3ef27c2bc
Update grype db as part of install 2025-10-17 10:59:11 +05:30
dependabot[bot]
6a6296a90f
Bump github/codeql-action from 3 to 4 in the actions group 
Bumps the actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 3 to 4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-13 03:41:50 +00:00
Kovid Goyal
0bfcffbaed
Fix spurious CVE in dep detection 2025-10-11 13:23:33 +05:30
Kovid Goyal
3b0938e878
Run govulncheck on the binary and remove upload of SARIF to github as github doesnt like the SARIF govulncheck produces 2025-09-24 13:12:00 +05:30
Kovid Goyal
4771de3f95
Print out the govulncheck.sarif file in CI 2025-09-24 12:57:21 +05:30
Kovid Goyal
4ffacbbe80
Another try at running govulncheck 2025-09-24 12:50:06 +05:30
Kovid Goyal
3383675bb2
... 2025-09-23 16:15:34 +05:30
Kovid Goyal
508b022721
Run dependency scanner CI job on schedule as well 2025-09-23 08:52:35 +05:30
Kovid Goyal
4e240b94e1
explicitly close opened url 2025-09-22 12:30:53 +05:30
Kovid Goyal
53e2f00473
A fancier download_with_retry function 2025-09-22 12:28:48 +05:30
Kovid Goyal
a05a56e413
use a retry for all downloads in CI script 2025-09-22 12:16:41 +05:30
Kovid Goyal
92ee52b68c
Retry grype download on failure 2025-09-22 11:36:27 +05:30
Kovid Goyal
dfeef6df83
Ignore CVE that does not apply 2025-09-20 10:06:30 +05:30
Kovid Goyal
1672110854
Turn off CodeQL TRAP caching 
It was using up the GitHub actions caching quota of 10GB
 2025-09-19 22:53:14 +05:30
Kovid Goyal
54368be554
Fix grype not scanning C deps that dont have CPEs 2025-09-18 09:22:28 +05:30
Kovid Goyal
c30f8cec46
... 2025-09-17 23:30:37 +05:30
Kovid Goyal
0eddbefda9
List vulnerabilities by CVE 2025-09-17 23:20:39 +05:30
Kovid Goyal
c4cb9cdbb7
Filter out another form of the same CVE 2025-09-17 23:14:40 +05:30
Kovid Goyal
87856efa49
Run grype against SBOM as well 2025-09-17 22:29:49 +05:30
Kovid Goyal
cf9b0da489
... 2025-09-17 22:06:38 +05:30
Kovid Goyal
ebb7ccebd0
Add a check dependencies action 
Use the gyre tool to scan all binaries and generate a report
 2025-09-17 21:32:28 +05:30
Kovid Goyal
77fbd5beba
Use CodeQL on github actions 2025-09-17 07:47:34 +05:30