diff --git a/.github/workflows/bats-test.yml b/.github/workflows/bats-test.yml index b0db34f0f7..f1186b3f27 100644 --- a/.github/workflows/bats-test.yml +++ b/.github/workflows/bats-test.yml @@ -9,7 +9,7 @@ on: jobs: prepare: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 outputs: matrix: ${{ steps.set-matrix.outputs.matrix }} steps: @@ -24,7 +24,7 @@ jobs: echo "matrix=$MATRIX_JSON" >> $GITHUB_OUTPUT test: needs: prepare - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 strategy: fail-fast: false matrix: diff --git a/.github/workflows/cleanup-caches-by-branch.yml b/.github/workflows/cleanup-caches-by-branch.yml index 11dcee031d..e066c2fc6b 100644 --- a/.github/workflows/cleanup-caches-by-branch.yml +++ b/.github/workflows/cleanup-caches-by-branch.yml @@ -5,7 +5,7 @@ on: - closed jobs: cleanup: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Check out code uses: actions/checkout@v3 @@ -31,4 +31,4 @@ jobs: gh actions-cache delete $cacheKey -R $REPO -B $BRANCH --confirm done env: - GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file + GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/dco-check.yml b/.github/workflows/dco-check.yml index 4c089ca2e9..26392097d7 100644 --- a/.github/workflows/dco-check.yml +++ b/.github/workflows/dco-check.yml @@ -12,7 +12,7 @@ on: jobs: commits_check_job: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 name: Commits Check steps: - name: Get PR Commits diff --git a/.github/workflows/dispatch-oss.yml b/.github/workflows/dispatch-oss.yml index 272d054370..b3d53b2c30 100644 --- a/.github/workflows/dispatch-oss.yml +++ b/.github/workflows/dispatch-oss.yml @@ -7,7 +7,7 @@ on: jobs: push: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/github-script@v6 with: diff --git a/.github/workflows/on-event-issue-closed.yml b/.github/workflows/on-event-issue-closed.yml index 56fd538e25..5cf907ab5a 100644 --- a/.github/workflows/on-event-issue-closed.yml +++ b/.github/workflows/on-event-issue-closed.yml @@ -8,7 +8,7 @@ on: jobs: notify: name: 'Discord' - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Discord notify uses: rjstone/discord-webhook-notify@v1 diff --git a/.github/workflows/pr-to-master.yml b/.github/workflows/pr-to-master.yml index 989f239320..1cfe812c13 100644 --- a/.github/workflows/pr-to-master.yml +++ b/.github/workflows/pr-to-master.yml @@ -28,7 +28,7 @@ on: jobs: pr-to-master: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - run: | echo 'triggering pr-to-master' @@ -59,4 +59,4 @@ jobs: env: GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}" PULL_REQUEST: "${{ steps.cpr.outputs.pr_number }}" - MERGE_LABELS: "Bot: Automerge" \ No newline at end of file + MERGE_LABELS: "Bot: Automerge" diff --git a/.github/workflows/publish-api-docs.yml b/.github/workflows/publish-api-docs.yml index ed5e9e7051..b2227313cf 100644 --- a/.github/workflows/publish-api-docs.yml +++ b/.github/workflows/publish-api-docs.yml @@ -11,7 +11,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/publish-blog.yml b/.github/workflows/publish-blog.yml index aeab978b5f..3199065f61 100644 --- a/.github/workflows/publish-blog.yml +++ b/.github/workflows/publish-blog.yml @@ -8,7 +8,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/publish-dev-docs.yml b/.github/workflows/publish-dev-docs.yml index 2755aa5241..baf32a5ccc 100644 --- a/.github/workflows/publish-dev-docs.yml +++ b/.github/workflows/publish-dev-docs.yml @@ -12,7 +12,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/publish-docs-index-typesense.yml b/.github/workflows/publish-docs-index-typesense.yml index 0a6777a58e..b485bb7414 100644 --- a/.github/workflows/publish-docs-index-typesense.yml +++ b/.github/workflows/publish-docs-index-typesense.yml @@ -8,7 +8,7 @@ on: jobs: doc-indexer: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout Repository uses: actions/checkout@v3 # You MUST checkout your repository first! diff --git a/.github/workflows/publish-docs.yml b/.github/workflows/publish-docs.yml index 914bbb3d62..e81ec0c8dd 100644 --- a/.github/workflows/publish-docs.yml +++ b/.github/workflows/publish-docs.yml @@ -11,7 +11,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/publish-noco-i18n.yml b/.github/workflows/publish-noco-i18n.yml index 121d66cfc5..192433c979 100644 --- a/.github/workflows/publish-noco-i18n.yml +++ b/.github/workflows/publish-noco-i18n.yml @@ -10,7 +10,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/publish-prev-docs.yml b/.github/workflows/publish-prev-docs.yml index a86d43fc2f..1bc748562f 100644 --- a/.github/workflows/publish-prev-docs.yml +++ b/.github/workflows/publish-prev-docs.yml @@ -11,7 +11,7 @@ on: jobs: copy-file: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/release-close-issue.yml b/.github/workflows/release-close-issue.yml index b8e3c438a7..1f88ba07f1 100644 --- a/.github/workflows/release-close-issue.yml +++ b/.github/workflows/release-close-issue.yml @@ -23,7 +23,7 @@ on: type: string jobs: close-issues: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@master - name: close-resolved-issues @@ -31,4 +31,4 @@ jobs: env: LABEL: ${{ github.event.inputs.issue_label || inputs.issue_label }} VERSION: ${{ github.event.inputs.version || inputs.version }} - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release-docker.yml b/.github/workflows/release-docker.yml index aaf987c72c..79cbf78c51 100644 --- a/.github/workflows/release-docker.yml +++ b/.github/workflows/release-docker.yml @@ -41,7 +41,7 @@ on: jobs: buildx: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 env: working-directory: ./packages/nocodb steps: diff --git a/.github/workflows/release-draft.yml b/.github/workflows/release-draft.yml index 119aa7f238..479d95481a 100644 --- a/.github/workflows/release-draft.yml +++ b/.github/workflows/release-draft.yml @@ -37,7 +37,7 @@ on: jobs: build: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v3 with: diff --git a/.github/workflows/release-executables.yml b/.github/workflows/release-executables.yml index 419fa4fdc3..cdd5661fee 100644 --- a/.github/workflows/release-executables.yml +++ b/.github/workflows/release-executables.yml @@ -19,7 +19,7 @@ on: required: true jobs: build-executables: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v3 - name: Get pnpm store directory @@ -178,7 +178,7 @@ jobs: publish-mac-executables-and-homebrew: needs: [sign-mac-executables,build-executables] - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/download-artifact@master with: diff --git a/.github/workflows/release-nightly-dev.yml b/.github/workflows/release-nightly-dev.yml index 42b601bef5..982fe6ca10 100644 --- a/.github/workflows/release-nightly-dev.yml +++ b/.github/workflows/release-nightly-dev.yml @@ -10,7 +10,7 @@ on: jobs: # enrich tag for nightly auto release set-tag: - runs-on: 'ubuntu-latest' + runs-on: 'ubuntu-22.04' steps: - name: Checkout uses: actions/checkout@v3 diff --git a/.github/workflows/release-nocodb.yml b/.github/workflows/release-nocodb.yml index bd0ffb4962..1abd1378c3 100644 --- a/.github/workflows/release-nocodb.yml +++ b/.github/workflows/release-nocodb.yml @@ -13,7 +13,7 @@ on: jobs: # Validate Branch validate-branch: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - run: | if [[ ${{ github.ref }} != 'refs/heads/master' ]]; then @@ -23,7 +23,7 @@ jobs: # Process Input process-input: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 needs: validate-branch outputs: target_tag: ${{ steps.process-input.outputs.target_tag }} diff --git a/.github/workflows/release-npm.yml b/.github/workflows/release-npm.yml index 139c18f304..d4583cd31a 100644 --- a/.github/workflows/release-npm.yml +++ b/.github/workflows/release-npm.yml @@ -33,7 +33,7 @@ on: jobs: release: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 env: working-directory: ./packages/nocodb steps: diff --git a/.github/workflows/release-pr.yml b/.github/workflows/release-pr.yml index 59702bc50d..8b3659eccb 100644 --- a/.github/workflows/release-pr.yml +++ b/.github/workflows/release-pr.yml @@ -21,7 +21,7 @@ jobs: # enrich tag for pr release set-tag: if: ${{ github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' && github.event.pull_request.draft == false && github.base_ref == 'develop' && github.event.action != 'closed' }} - runs-on: 'ubuntu-latest' + runs-on: 'ubuntu-22.04' steps: - name: Checkout uses: actions/checkout@v3 @@ -77,7 +77,7 @@ jobs: # Add a comment for PR docker build leave-comment: if: ${{ github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' && github.event.pull_request.draft == false && github.base_ref == 'develop' && github.event.action != 'closed' }} - runs-on: 'ubuntu-latest' + runs-on: 'ubuntu-22.04' needs: [release-docker, set-tag] steps: - uses: peter-evans/commit-comment@v2 @@ -92,7 +92,7 @@ jobs: preview-pull-request: name: "Trigger Uffizzi Preview" if: ${{ github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' && github.event.pull_request.draft == false && github.base_ref == 'develop' && github.event.action != 'closed' }} - runs-on: 'ubuntu-latest' + runs-on: 'ubuntu-22.04' needs: [release-docker, set-tag] outputs: compose-file-cache-key: ${{ env.COMPOSE_FILE_HASH }} @@ -127,7 +127,7 @@ jobs: # Add a comment for PR executable build # leave-executable-comment: # if: ${{ github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' && github.event.pull_request.draft == false && github.base_ref == 'develop' && github.event.action != 'closed' }} - # runs-on: 'ubuntu-latest' + # runs-on: 'ubuntu-22.04' # needs: [release-executables, set-tag] # steps: # - uses: peter-evans/commit-comment@v2 @@ -163,7 +163,7 @@ jobs: # delete the uffizzi preview created off of this PR delete-uffizzi-preview: name: Call for Preview Deletion - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 if: ${{ github.event.pull_request.head.repo.full_name == github.repository && github.actor != 'dependabot[bot]' && github.event.pull_request.draft == false && github.base_ref == 'develop' && github.event.action == 'closed' }} steps: # If this PR is closing, we will not render a compose file nor pass it to the next workflow. diff --git a/.github/workflows/release-previous-docker.yml b/.github/workflows/release-previous-docker.yml index d5688dade7..0a975bb1dd 100644 --- a/.github/workflows/release-previous-docker.yml +++ b/.github/workflows/release-previous-docker.yml @@ -10,7 +10,7 @@ on: jobs: login: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Login to Docker Hub diff --git a/.github/workflows/release-secret-cli.yml b/.github/workflows/release-secret-cli.yml index 49efb941b6..1324030324 100644 --- a/.github/workflows/release-secret-cli.yml +++ b/.github/workflows/release-secret-cli.yml @@ -13,7 +13,7 @@ on: required: true jobs: build-and-publish: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v3 - name: Setup pnpm @@ -135,7 +135,7 @@ jobs: publish-mac-executables: needs: [sign-mac-executables, build-and-publish] - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/download-artifact@master with: diff --git a/.github/workflows/release-timely-docker.yml b/.github/workflows/release-timely-docker.yml index c956e142f1..6c5c3d954f 100644 --- a/.github/workflows/release-timely-docker.yml +++ b/.github/workflows/release-timely-docker.yml @@ -41,7 +41,7 @@ on: jobs: buildx: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 env: working-directory: ./packages/nocodb steps: diff --git a/.github/workflows/release-timely-executables.yml b/.github/workflows/release-timely-executables.yml index ff9d49beea..9e7cb0de48 100644 --- a/.github/workflows/release-timely-executables.yml +++ b/.github/workflows/release-timely-executables.yml @@ -19,7 +19,7 @@ on: required: true jobs: build-executables: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v3 with: @@ -181,7 +181,7 @@ jobs: publish-mac-executables: needs: sign-mac-executables - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/download-artifact@master with: diff --git a/.github/workflows/sync-to-develop.yml b/.github/workflows/sync-to-develop.yml index 36a961e103..50e7f5791f 100644 --- a/.github/workflows/sync-to-develop.yml +++ b/.github/workflows/sync-to-develop.yml @@ -7,7 +7,7 @@ on: workflow_call: jobs: sync-to-develop: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Setup Node uses: actions/setup-node@v3 diff --git a/.github/workflows/uffizzi-preview.yml b/.github/workflows/uffizzi-preview.yml index ed512d1ca9..d6b63c87b3 100644 --- a/.github/workflows/uffizzi-preview.yml +++ b/.github/workflows/uffizzi-preview.yml @@ -10,7 +10,7 @@ on: jobs: cache-compose-file: name: Cache Compose File - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 if: ${{ github.event.workflow_run.conclusion == 'success' }} outputs: compose-file-cache-key: ${{ steps.hash.outputs.COMPOSE_FILE_HASH }} diff --git a/.github/workflows/unit-test.yml b/.github/workflows/unit-test.yml index 39d85f95a8..4c03399687 100644 --- a/.github/workflows/unit-test.yml +++ b/.github/workflows/unit-test.yml @@ -15,7 +15,7 @@ on: jobs: unit-tests: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 strategy: matrix: diff --git a/.github/workflows/update-sdk-path.yml b/.github/workflows/update-sdk-path.yml index dc11097225..ddb295878f 100644 --- a/.github/workflows/update-sdk-path.yml +++ b/.github/workflows/update-sdk-path.yml @@ -7,7 +7,7 @@ on: workflow_call: jobs: release: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Setup pnpm uses: pnpm/action-setup@v4 diff --git a/SECURITY.md b/SECURITY.md index 2fd791a798..1077f8c077 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,6 +1,7 @@ # Security Policy ### Reporting a Vulnerability + Please report (suspected) security vulnerabilities to security@nocodb.com - You will receive a response from us within 7 working days.