9 commits

Author	SHA1	Message	Date
Archi	4b2e5f3178	CI: Tie final release builds to OS they match ... Windows: generic-netf + win-x64 OS X: should have osx-x64, but doesn't seem to preserve chmod +x in the zip file Linux: everything else	2021-08-01 21:31:49 +02:00
Archi	6ace2107a7	CI: Utilize zip_exec utility for chmod +x ... We can aid non-windows users by adding chmod +x flag to appropriate executables directly in the zip file	2021-08-01 19:27:16 +02:00
Archi	d50e848f84	CI: Fix the check for secrets	2021-08-01 19:14:56 +02:00
Archi	4bdbbedfb1	CI hardening against errors	2021-08-01 13:00:14 +02:00
Archi	7971585a32	Enable private signing of CI builds	2021-08-01 12:56:08 +02:00
Renovate Bot	0672e4393c	Update actions/setup-node action to v2.3.0	2021-07-20 14:51:21 +00:00
Archi	e7bc2e5e1c	CI: Use latest node LTS	2021-06-30 16:26:33 +02:00
Archi	2f7478b968	CI: Pin versions ... While floating tags are nice to use and fancy, we already had situations where the fixed source code did not result in the same deterministic build as the one built e.g. a week ago due to non-pinned versions that resulted in a different set of dependencies than originally. Since GitHub actions follow similar pattern, we want to do our best to ensure that if CI in given fixed version passed on a fixed source, then it should also result in the same deterministic output. Of course this is impossible to achieve in 100% (e.g. resources no longer being available over the network), but this is something we can do. It wasn't like that before renovate since we didn't have a standarized bot that could handle bumping those versions for us.	2021-06-30 16:19:41 +02:00
Łukasz Domeradzki	8c4a0d7f06	Workflow enhancements (#2326) ... 1. Split publish part of ci.yml into independent publish.yml action (run on the same schedule) 2. Add docker-ci.yml without pushing capability on the same schedule as ci	2021-05-20 23:36:02 +02:00