npm - @continuoussecuritytooling/keycloak-reporter - Versions diffs - 0.8.11 → 0.8.14 - Mend

@continuoussecuritytooling/keycloak-reporter 0.8.11 → 0.8.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/.github/workflows/release.yml +120 -51
package/CHANGELOG.md +73 -0
package/Dockerfile +1 -1
package/charts/keycloak-reporter/Chart.yaml +1 -1
package/charts/keycloak-reporter/README.md +2 -2
package/keycloak-reporter-0.8.14.tgz +0 -0
package/package.json +4 -4

package/.github/workflows/release.yml CHANGED Viewed

@@ -1,54 +1,123 @@
-name: Release Chart
+name: Create release # You may choose a different name
+run-name: ${{ inputs.releaseversion }} # Enumerates entries in the "workflow runs" view
 on:
-  push:
-    branches:
-      - main
+    workflow_dispatch:
+        inputs:
+            releaseversion:
+                description: 'Release version'
+                required: true
+                type: string
+                default: "X.Y.Z"
 jobs:
-  release:
-    # depending on default permission settings for your org (contents being read-only or read-write for workloads), you will have to add permissions
-    # see: https://docs.github.com/en/actions/security-guides/automatic-token-authentication#modifying-the-permissions-for-the-github_token
-    permissions:
-      contents: write
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-      - name: Configure Git
-        run: |
-          git config user.name "$GITHUB_ACTOR"
-          git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
-      - name: Install Helm
-        uses: azure/setup-helm@v4
-      - name: Install Python
-        uses: actions/setup-python@v5
-        with:
-          python-version: '3.9'
-          check-latest: true
-      - name: Set up chart-testing
-        uses: helm/chart-testing-action@v2.6.1
-      - name: Run chart-testing (lint)
-        run: ct lint --config .ct.yaml
-      - name: Helm Package
-        run: helm package charts/keycloak-reporter/
-      - name: Login to GitHub Container Registry
-        run: |
-          echo ${{ secrets.CT_OCI_GITHUB_TOKEN }} | helm registry login ghcr.io -u $ --password-stdin
-      - name: Push Charts to GHCR
-        run: |
-          shopt -s nullglob
-          for pkg in *.tgz; do
-            if [ -z "${pkg:-}" ]; then
-              break
-            fi
-            helm push "${pkg}" oci://ghcr.io/cloudtooling/helm-charts
-          done
+    release: # Arbitrarily chosen
+        name: Release
+        runs-on: ubuntu-latest
+        permissions:
+            contents: write
+            packages: write
+            attestations: write
+            id-token: write
+        steps:
+            -   name: Checkout
+                uses: actions/checkout@v4
+                with:
+                    fetch-depth: 0
+            -   uses: actions/create-github-app-token@v1
+                id: app-token
+                with:
+                    app-id: ${{ vars.CI_APP_ID }}
+                    private-key: ${{ secrets.CI_PRIVATE_KEY }}
+            -   name: Setup NodeJS
+                uses: actions/setup-node@v4
+                with:
+                    node-version: '20'
+                    registry-url: 'https://registry.npmjs.org'
+            -   name: Setup Java
+                uses: actions/setup-java@v4 # Does also set up Maven and GPG
+                with:
+                    distribution: 'temurin' # As good as any other, see: https://github.com/actions/setup-java#supported-distributions
+                    java-version: '21'
+            -   name: Configure git
+                run: |
+                    git config --global user.name '${{ steps.app-token.outputs.app-slug }}[bot]'
+                    git config --global user.email '${{ steps.get-user-id.outputs.user-id }}+${{ steps.app-token.outputs.app-slug }}[bot]@users.noreply.github.com>'
+            -   name: npm build and test
+                run: |
+                    npm run clean
+                    npm version --no-git-tag-version ${{ github.event.inputs.releaseversion }}
+                    npm run build
+            -   name: Install Helm
+                uses: azure/setup-helm@v4
+            -   name: Install Python
+                uses: actions/setup-python@v5
+                with:
+                    python-version: '3.9'
+                    check-latest: true
+            -   name: Set up chart-testing
+                uses: helm/chart-testing-action@v2.6.1
+            -   name: Set up helm-docs
+                uses: gabe565/setup-helm-docs-action@v1
+            -   name: Run chart-testing (lint)
+                run: ct lint --config .ct.yaml
+            -   name: Helm Package
+                run: |
+                    export HELM_CHART_DIR=charts/keycloak-reporter
+                    chartVersion=$(cat $HELM_CHART_DIR/Chart.yaml | grep "version: " | sed -E -n "s/^version: \s*(.*)$/\1/p")
+                    sed -i 's/version: '"$chartVersion"'/version: '"${{ github.event.inputs.releaseversion }}"'/g' $HELM_CHART_DIR/Chart.yaml
+                    helm-docs
+                    helm package $HELM_CHART_DIR
+                    git add .
+            -   name: Run chart-testing (lint)
+                run: ct lint --config .ct.yaml
+            -   name: Conventional Changelog Action
+                uses: TriPSs/conventional-changelog-action@v5
+                with:
+                    input-file: CHANGELOG.md
+                    github-token: ${{ secrets.GITHUB_TOKEN }}
+                    version-file: package.json
+                    pre-release: true
+                    skip-bump: true
+                    skip-on-empty: false
+                    tag-prefix: 'v'
+            -   name: Create Release on GH
+                id: tag-and-release
+                uses: avakar/tag-and-release@v1
+                with:
+                    draft: true
+                    release_name: ${{ github.event.inputs.releaseversion }}
+                    tag_name: v${{ github.event.inputs.releaseversion }}
+                env:
+                    GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+            -   name: Publish npm package
+                run: |
+                    npm publish
+                env:
+                    NODE_AUTH_TOKEN: ${{ secrets.NPM_AUTH_TOKEN }}
+            -   name: Login to GitHub Container Registry
+                run: |
+                    echo ${{ secrets.CT_OCI_GITHUB_TOKEN }} | helm registry login ghcr.io -u $ --password-stdin
+            -   name: Push Charts to GHCR
+                run: |
+                    shopt -s nullglob
+                    for pkg in *.tgz; do
+                      if [ -z "${pkg:-}" ]; then
+                        break
+                      fi
+                      helm push "${pkg}" oci://ghcr.io/cloudtooling/helm-charts
+                    done

package/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,76 @@
+## [0.8.14](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.12...v0.8.14) (2024-09-17)
+### Bug Fixes
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.10 ([ac7118b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac7118bbcdd08dc4df3e33aca1d207ff946abbe6))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.4 ([e79d129](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/e79d129308de45c661374303990aad06a3264a48))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.5 ([179de86](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/179de86d06f61eadf6975bee86784fab0fc510a2))
+* **deps:** update dependency @slack/webhook to v7.0.3 ([483dce5](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/483dce5975e0722e531f673035703ef78983afa0))
+* **deps:** update dependency ms-teams-webhook to v2.2.0 ([38e4184](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/38e41849a6a5eb41edafe813f8d9dcd7bfc37f7e))
+* **deps:** update dependency ms-teams-webhook to v2.2.1 ([eb91bcf](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/eb91bcff5142099cada7ed1cb9cceac71ebfd9bd))
+* **deps:** update dependency ms-teams-webhook to v2.2.2 ([1ccd777](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1ccd7771918077cadbe74e88e78554e7307871b1))
+* **deps:** update dependency npm to v10.8.3 ([b14ebf4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b14ebf4f2fa6295aad533f610949425313cb92ce))
+* **deps:** update dependency openid-client to v5.7.0 ([8688200](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8688200de26bd62077aeec9f01ce8f503e92e296))
+## [0.8.13](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.12...v) (2024-09-17)
+### Bug Fixes
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.10 ([ac7118b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac7118bbcdd08dc4df3e33aca1d207ff946abbe6))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.4 ([e79d129](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/e79d129308de45c661374303990aad06a3264a48))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.5 ([179de86](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/179de86d06f61eadf6975bee86784fab0fc510a2))
+* **deps:** update dependency @slack/webhook to v7.0.3 ([483dce5](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/483dce5975e0722e531f673035703ef78983afa0))
+* **deps:** update dependency ms-teams-webhook to v2.2.0 ([38e4184](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/38e41849a6a5eb41edafe813f8d9dcd7bfc37f7e))
+* **deps:** update dependency ms-teams-webhook to v2.2.1 ([eb91bcf](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/eb91bcff5142099cada7ed1cb9cceac71ebfd9bd))
+* **deps:** update dependency ms-teams-webhook to v2.2.2 ([1ccd777](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1ccd7771918077cadbe74e88e78554e7307871b1))
+* **deps:** update dependency npm to v10.8.3 ([b14ebf4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b14ebf4f2fa6295aad533f610949425313cb92ce))
+* **deps:** update dependency openid-client to v5.7.0 ([8688200](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8688200de26bd62077aeec9f01ce8f503e92e296))
+## [0.8.12](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.11...v0.8.12) (2024-07-29)
+### Bug Fixes
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.1 ([b267295](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b267295b0f3b8a30834586ebb3f9554fad1393c0))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.2 ([d14e96b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/d14e96b4d0f97516dda20c34c210a97cf98798cb))
+* **deps:** update dependency ajv to v8.17.1 ([ac581df](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac581df5f60bd52463aa102bd7176cb230ae4f0a))
+* **deps:** update dependency npm to v10.8.2 ([1671de8](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1671de8e1c7f9ff73fb75fb2d4c5396103337b32))
+* Dockerfile to reduce vulnerabilities ([96c4505](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/96c450526d53d9efa5c8d74d6adeaaf9fef85470))
+## [0.8.11](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.10...v0.8.11) (2024-06-16)
+### Bug Fixes
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.8 ([5656b22](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/5656b222af725e3e3d0555d3129a5b2751b40ffa))
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.9 ([c077a40](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/c077a406c0636449b9dc56c43fc6689d4ca702a6))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v24.0.3 ([a6827e9](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/a6827e9d79287df4189b72c43f8fce1a8ac3530f))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v24.0.4 ([53d80cc](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/53d80cc7268690a2e3aca9378492b0429cbb1d57))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v24.0.5 ([3864f49](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/3864f493d09454b96b0ed3516a1f26306a3c7097))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25 ([bb6a85b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/bb6a85bb8f84c52368219dfea200a95b141e4037))
+* **deps:** update dependency ajv to v8.13.0 ([ce6d67d](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ce6d67d6a09f27f3289c1c50d2904b18fc5b6762))
+* **deps:** update dependency ajv to v8.14.0 ([8618ff8](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8618ff868b6aadc39ab6019dac42eeb427111997))
+* **deps:** update dependency ajv to v8.16.0 ([78b2ce1](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/78b2ce1e37b8fc9959bb267ff31dc38a8f1332f9))
+* **deps:** update dependency ms-teams-webhook to v2.1.0 ([d9f1662](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/d9f16622cdccec368b10278b8cef5f2c9383f4cb))
+* **deps:** update dependency npm to v10.5.1 ([3ac3f1f](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/3ac3f1fd2225ddf85b7a90fa40a8c951bd41b546))
+* **deps:** update dependency npm to v10.5.2 ([372e56c](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/372e56ca9c8aaaf4a400970413c2853f2775be31))
+* **deps:** update dependency npm to v10.6.0 ([7ea79af](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/7ea79af7616cc75d95c6798507a2411afa9950e8))
+* **deps:** update dependency npm to v10.7.0 ([4adeef7](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/4adeef7af981cac832df4daa5c92cf6adcc0b3df))
+* **deps:** update dependency npm to v10.8.0 ([b086d1b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b086d1baf975ba5a6eae7f1f0c51af9fa03e739d))
+* **deps:** update dependency npm to v10.8.1 ([3318fd0](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/3318fd06be4295a0fc7e3ffebf30b08722561e81))
+* **deps:** update dependency ramda to ^0.30.0 ([d8b7a83](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/d8b7a83313072472dbe19ee5b60aaae033a47f98))
+* **deps:** update dependency ramda to v0.30.1 ([6852d20](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/6852d2045fda5b6b2f230ea551ab5637e00942d5))
 ## [0.8.10](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.9...v0.8.10) (2024-03-28)

package/Dockerfile CHANGED Viewed

@@ -1,4 +1,4 @@
-FROM node:20.14.0-slim
+FROM node:20.17.0-slim
 ARG BUILD_DATE
 ARG APP_VERSION

package/charts/keycloak-reporter/Chart.yaml CHANGED Viewed

@@ -15,7 +15,7 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 1.3.3
+version: 0.8.14
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to

package/charts/keycloak-reporter/README.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # keycloak-reporter
-![Version: 1.3.3](https://img.shields.io/badge/Version-1.3.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.8.10](https://img.shields.io/badge/AppVersion-0.8.10-informational?style=flat-square)
+![Version: 0.8.14](https://img.shields.io/badge/Version-0.8.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.8.10](https://img.shields.io/badge/AppVersion-0.8.10-informational?style=flat-square)
 Keycloak user and client reporting tool for automated regular access checks.
@@ -35,4 +35,4 @@ Keycloak user and client reporting tool for automated regular access checks.
 | tolerations | list | `[]` |  |
 ----------------------------------------------
-Autogenerated from chart metadata using [helm-docs v1.13.1](https://github.com/norwoodj/helm-docs/releases/v1.13.1)
+Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2)

package/keycloak-reporter-0.8.14.tgz ADDED Viewed

Binary file

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@continuoussecuritytooling/keycloak-reporter",
-  "version": "0.8.11",
+  "version": "0.8.14",
   "description": "Reporting Tools for Keycloak",
   "main": "dist/index.js",
   "bin": {
@@ -45,12 +45,12 @@
     "yargs": "^17.7.2"
   },
   "devDependencies": {
-    "@octokit/rest": "^20.0.0",
+    "@octokit/rest": "^21.0.0",
     "@types/jest": "^29.5.1",
     "@types/node": "^20.1.5",
     "@types/yargs": "^17.0.24",
-    "@typescript-eslint/eslint-plugin": "^7.0.0",
-    "@typescript-eslint/parser": "^7.0.0",
+    "@typescript-eslint/eslint-plugin": "^8.0.0",
+    "@typescript-eslint/parser": "^8.0.0",
     "conventional-changelog-cli": "^5.0.0",
     "eslint": "^8.40.0",
     "eslint-config-prettier": "^9.0.0",