docker/compose
1
37.2k
Fork 0
mirror of https://github.com/docker/compose.git synced 2026-03-29 15:37:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,674 Commits 24 Branches 296 Tags
main
Commit Graph

225 Commits

Author SHA1 Message Date
Guillaume Lours
0de456bc76 chore: bump GitHub Actions to latest versions 
- actions/checkout v4 -> v6
- actions/upload-artifact v4/v6 -> v7
- actions/download-artifact v4/v7 -> v8
- docker/setup-buildx-action v3 -> v4
- docker/bake-action v6 -> v7
- actions/stale v9 -> v10
- actions/create-github-app-token v1 -> v3
- actions/github-script v7 -> v8
- ossf/scorecard-action v2.4.0 -> v2.4.3
- ncipollo/release-action v1.10.0 -> v1.21.0
- mxschmitt/action-tmate v3.11 -> v3.23
- codecov/codecov-action, test-summary/action, github/codeql-action: bump to latest patch

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Signed-off-by: Guillaume Lours <glours@users.noreply.github.com>
 2026-03-25 10:19:36 +01:00
Guillaume Lours
56e2dba366 chore: pin GitHub Actions to commit SHA, remove pr-review workflow 
- Pin all action references to full commit SHA instead of mutable
  version tags. Tag retained as inline comment for readability.
- Remove pr-review.yml workflow.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Signed-off-by: Guillaume Lours <glours@users.noreply.github.com>

# Conflicts:
#	.github/workflows/pr-review.yml
 2026-03-25 10:19:36 +01:00
Derek Misler
46d75d0bea Update .github/workflows/pr-review.yml 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Derek Misler <derekmisler@gmail.com>
 2026-03-25 09:52:29 +01:00
Derek Misler
bd351d7f96 Update .github/workflows/pr-review.yml 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Derek Misler <derekmisler@gmail.com>
 2026-03-25 09:52:29 +01:00
Derek Misler
ece1886824 update cagent-action to latest (with better permissions) 
Signed-off-by: Derek Misler <derek.misler@docker.com>
 2026-03-25 09:52:29 +01:00
Guillaume Lours
2b9f60ba58 Add AI-powered PR review workflow via docker/cagent-action 
Introduce a GitHub Actions workflow that triggers an AI-powered code
  review on pull requests using docker/cagent-action's reusable workflow.

  - Restrict comment-triggered runs to OWNER/MEMBER/COLLABORATOR
  - Gate on github.repository to prevent execution on forks
  - Filter out draft PRs and bot actors
  - Only trigger on PR comments, not plain issue comments
  - Serialize reviews per PR via concurrency group

Signed-off-by: Guillaume Lours <glours@users.noreply.github.com>
 2026-03-23 17:38:46 +01:00
maks2134
b043368028 Update docker/github-builder to v1.4.0 
Fixes template validation error in CI by updating to latest stable version
of docker/github-builder workflow. This resolves the JToken parsing error
in bake.yml@v1 that was causing bin-image-test to fail.

Signed-off-by: maks2134 <maks210306@yandex.by>
 2026-03-18 16:23:34 +01:00
CrazyMax
af0029afe1 ci: use bin-image edge tag directly for e2e tests 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-02-03 15:11:49 +01:00
CrazyMax
b76feb66e1 ci: fix missing dependency on bin-image job 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-02-03 15:11:49 +01:00
CrazyMax
9dc7f1e70c ci: use docker/github-builder to build, sign and push bin image 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-02-03 14:19:21 +01:00
CrazyMax
03205124fe ci: use docker/github-builder to build, sign binaries 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-02-03 14:19:21 +01:00
Salman Muin Kayser Chishti
d91fc63813 Upgrade GitHub Actions to latest versions 
Signed-off-by: Salman Muin Kayser Chishti <13schishti@gmail.com>
 2026-01-23 15:34:48 +01:00
Austin Vazquez
359d2f076e ci: use .go-version file for actions/setup-go 
Signed-off-by: Austin Vazquez <austin.vazquez@docker.com>
 2025-12-09 20:33:00 +01:00
Austin Vazquez
c9e0d83e14 ci: upgrade actions/setup-go from v5 to v6 
Signed-off-by: Austin Vazquez <austin.vazquez@docker.com>
 2025-12-09 20:33:00 +01:00
Sebastiaan van Stijn
f2b14fe1aa gha: use custom names for matrix 
Manually enumerate the combinations ((plugin|standalone), (version))
so that we can assign a predictable name ("stable", "oldstable") and
prevent having to update the branch-protection rules for each update
to mark the tests as required.

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2025-11-16 14:42:03 +01:00
Sebastiaan van Stijn
bd2257b6d1 gha: test against docker v29, v28 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2025-11-16 14:42:03 +01:00
Sebastiaan van Stijn
9ded1684cd gha: update test-matrix: remove docker 26.x 
- Mirantis Container Runtime (MCR) 23.0 reached EOL, and the next LTS
  version of MCR is 25.x, but download.docker.com does not have 25.x
  packages for the latest Ubuntu release.
- Docker 26.x reached EOL and is no longer maintained

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2025-09-29 14:27:41 +02:00
Nicolas De Loof
5fc2b2a71c fix yaml indentation 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2025-07-18 11:59:56 +02:00
Nicolas De Loof
b1cd40c316 swarm 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2025-07-18 11:58:25 +02:00
Nicolas De Loof
ee1b1e0a93 run docker model configure 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2025-06-30 19:22:35 +02:00
Nicolas De Loof
26e46d7cc8 e2e tests in CI 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2025-06-30 19:22:35 +02:00
Guillaume Lours
5a063b7510 fix provider concurrent environment map accesses 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-06-30 19:07:10 +02:00
Nicolas De Loof
93b597ccec remove Docker EULA licensing which isn't relevant since Docker switched to a subscription model 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2025-05-14 15:02:13 +02:00
Guillaume Lours
51907d9f72 fix zizmor security alerts on GHA workflows 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-04-11 16:45:19 +02:00
CrazyMax
29e642e232 ci(bin-image): free disk space 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-04-10 17:01:52 +02:00
Sebastiaan van Stijn
49575ef499 gha: add docker engine v28.x to the test-matrix 
currently v28.0.0-rc.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2025-02-09 17:38:01 +01:00
CrazyMax
f160333e9e ci: use main branch for docs upstream validation workflow 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-22 19:27:02 +01:00
Guillaume Lours
bd2b49a1cf add codeowners file 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-01-20 14:09:53 +01:00
CrazyMax
433a60e122 ci: fix provenance for binaries and generate sbom 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-20 09:46:05 +01:00
Guillaume Lours
ef1931c8de add missing tag for build during merge workflow 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-01-15 18:26:03 +01:00
Guillaume Lours
9be7a3c9a1 ci: re-use local source to build binary images 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-01-15 18:02:23 +01:00
CrazyMax
666996bee2 ci: use local source for binary builds 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-15 16:50:20 +01:00
CrazyMax
083f676214 ci: update bake-action to v6 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2025-01-13 12:41:14 +01:00
Guillaume Lours
d474515d45 remove engine v25 from e2e test matrix 
The 1st version available for Ubuntu 24.x is Docker Engine v26

Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-01-07 14:59:47 +01:00
Guillaume Lours
68ad165a59 replace tibdex/github-app-token by official GitHub create-github-app-token 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2025-01-07 12:12:22 +01:00
Guillaume Lours
56e92e34b6 use the 3 latest major versions of the engine to run e2e step 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2024-12-18 16:29:41 +01:00
Guillaume Lours
a42a04dfe8 bump Golang version to v1.22.10 and update CI actions 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2024-12-18 16:09:48 +01:00
Nicolas De Loof
69a83d1303 use latest engine tags 
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
 2024-12-05 14:53:24 +01:00
Sebastiaan van Stijn
bcaacc7f23 gha: test against docker engine v27.4.0 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-11-15 11:48:29 +01:00
Guillaume Lours
aa0a4189ee pass stal bot inactivity limit from 6 to 3 months 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2024-11-12 09:37:21 +01:00
Sebastiaan van Stijn
8da82c98ef gha: set default permissions to "contents: read" 
make the OpenSSF scorecard slightly happier;
https://securityscorecards.dev/viewer/?uri=github.com/docker/compose

    Warn: jobLevel 'contents' permission set to 'write': .github/workflows/ci.yml:256: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/compose/ci.yml/main?enable=permissions
    Warn: no topLevel permission defined: .github/workflows/docs-upstream.yml:1: update your workflow using https://app.stepsecurity.io/secureworkflow/docker/compose/docs-upstream.yml/main?enable=permissions

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-10-09 15:02:57 +02:00
Sebastiaan van Stijn
1a8c855489 Add security policy 
Add a security policy to inform users where to report security issues,
and to make the OpenSSF scorecard slightly happier;
https://securityscorecards.dev/viewer/?uri=github.com/docker/compose

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-10-09 11:05:29 +02:00
temenuzhka-thede
e885bc084d Remove custom codeql workflow 
Signed-off-by: temenuzhka-thede <temenuzhka.thede@docker.com>
 2024-09-17 07:59:52 +02:00
Sebastiaan van Stijn
86ef8e62c3 gha: test against docker engine v27.3.0 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-09-13 22:00:22 +02:00
Guillaume Lours
8db0cba0af bump compose-go to version v2.2.0 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2024-09-12 09:36:18 +02:00
Guillaume Lours
adba639e88 remove all dependabot update PRs for OTel dependencies 
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
 2024-07-25 16:23:54 +02:00
Sebastiaan van Stijn
f278400fbc gha: add docker 27.1.0 
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
 2024-07-23 15:21:34 +02:00
Joana Hrotko
cacbca859d change time for stale bot 
Signed-off-by: Joana Hrotko <joana.hrotko@docker.com>
 2024-07-09 12:06:54 +02:00
Joana Hrotko
ecac13f272 Remove debug mode and run twice a week 
Signed-off-by: Joana Hrotko <joana.hrotko@docker.com>
 2024-07-08 15:26:37 +02:00
Joana Hrotko
14793cc2e4 Add stale workflow 
Signed-off-by: Joana Hrotko <joana.hrotko@docker.com>
 2024-07-08 15:26:37 +02:00