From 31b8509a2ca7dd2edac51c7a1713340aa8e8c193 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Tue, 31 Mar 2026 11:33:19 +0200 Subject: [PATCH 1/8] chore: it's ok for fossa to fail here --- .github/workflows/ci-lite.yaml | 2 +- .github/workflows/ci-main.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci-lite.yaml b/.github/workflows/ci-lite.yaml index 870d9640dc..a4f523c7eb 100644 --- a/.github/workflows/ci-lite.yaml +++ b/.github/workflows/ci-lite.yaml @@ -107,7 +107,7 @@ jobs: path: /tmp/THIRDPARTY - name: run fossa test run: | - fossa test --debug + fossa test --debug || echo "FOSSA test reported issues (see above). Continuing." env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index 0eeaf8b41c..d48309efdc 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -106,7 +106,7 @@ jobs: path: /tmp/THIRDPARTY - name: run fossa test run: | - fossa test --debug + fossa test --debug || echo "FOSSA test reported issues (see above). Continuing." env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} From df88a679b18d2d17a0d19cf8517f0ffdbb29f89b Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 09:53:14 +0200 Subject: [PATCH 2/8] chore: change fossa errors to warnings instead --- .github/workflows/ci-lite.yaml | 4 +++- .github/workflows/ci-main.yaml | 4 +++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci-lite.yaml b/.github/workflows/ci-lite.yaml index a4f523c7eb..0f940417c0 100644 --- a/.github/workflows/ci-lite.yaml +++ b/.github/workflows/ci-lite.yaml @@ -107,7 +107,9 @@ jobs: path: /tmp/THIRDPARTY - name: run fossa test run: | - fossa test --debug || echo "FOSSA test reported issues (see above). Continuing." + if ! fossa test --debug; then + echo "::warning::FOSSA compliance test failed. Review issues above." + fi env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index d48309efdc..bb50e3802a 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -106,7 +106,9 @@ jobs: path: /tmp/THIRDPARTY - name: run fossa test run: | - fossa test --debug || echo "FOSSA test reported issues (see above). Continuing." + if ! fossa test --debug; then + echo "::warning::FOSSA compliance test failed. Review issues above." + fi env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} From 4c368fc64f8cf497065c79457e3ad8374b2ad724 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 10:01:23 +0200 Subject: [PATCH 3/8] chore: test semantic actions bump to v4 --- .github/workflows/ci-lite.yaml | 4 ++-- .github/workflows/ci-main.yaml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci-lite.yaml b/.github/workflows/ci-lite.yaml index 0f940417c0..d5ff475bf3 100644 --- a/.github/workflows/ci-lite.yaml +++ b/.github/workflows/ci-lite.yaml @@ -58,7 +58,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v3 + uses: cycjimmy/semantic-release-action@v4 with: semantic_version: 18 extra_plugins: | @@ -475,7 +475,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v3 + uses: cycjimmy/semantic-release-action@v4 with: semantic_version: 18 extra_plugins: | diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index bb50e3802a..6a569177c5 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -57,7 +57,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v3 + uses: cycjimmy/semantic-release-action@v4 with: semantic_version: 18 extra_plugins: | @@ -476,7 +476,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v3 + uses: cycjimmy/semantic-release-action@v4 with: semantic_version: 18 extra_plugins: | From a24f5185a119c5dbf4f1855eac4463a606834d72 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 10:11:08 +0200 Subject: [PATCH 4/8] chore: test semantic actions bump to v5 --- .github/workflows/ci-lite.yaml | 4 ++-- .github/workflows/ci-main.yaml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci-lite.yaml b/.github/workflows/ci-lite.yaml index d5ff475bf3..8eda9d94f0 100644 --- a/.github/workflows/ci-lite.yaml +++ b/.github/workflows/ci-lite.yaml @@ -58,7 +58,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v4 + uses: cycjimmy/semantic-release-action@v5 with: semantic_version: 18 extra_plugins: | @@ -475,7 +475,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v4 + uses: cycjimmy/semantic-release-action@v5 with: semantic_version: 18 extra_plugins: | diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index 6a569177c5..ca694d1878 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -57,7 +57,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v4 + uses: cycjimmy/semantic-release-action@v5 with: semantic_version: 18 extra_plugins: | @@ -476,7 +476,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@v4 + uses: cycjimmy/semantic-release-action@5 with: semantic_version: 18 extra_plugins: | From b19d459d40ffeefa53af6c9a598fe97923895b59 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 10:28:32 +0200 Subject: [PATCH 5/8] chore: updated setup-node github action --- .github/workflows/agreements.yaml | 4 ++-- .github/workflows/ci-lite.yaml | 4 ++-- .github/workflows/ci-main.yaml | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/agreements.yaml b/.github/workflows/agreements.yaml index c366662821..66471656d7 100644 --- a/.github/workflows/agreements.yaml +++ b/.github/workflows/agreements.yaml @@ -18,7 +18,7 @@ jobs: - name: "CLA Assistant" if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target' # Alpha Release - uses: contributor-assistant/github-action@v2.6.0 + uses: contributor-assistant/github-action@v2.6.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # the below token should have repo scope and must be manually added by you in the repository's secret @@ -43,7 +43,7 @@ jobs: - name: "COC Assistant" if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the Code of Conduct and I hereby accept the Terms') || github.event_name == 'pull_request_target' # Alpha Release - uses: contributor-assistant/github-action@v2.6.0 + uses: contributor-assistant/github-action@v2.6.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # the below token should have repo scope and must be manually added by you in the repository's secret diff --git a/.github/workflows/ci-lite.yaml b/.github/workflows/ci-lite.yaml index 8eda9d94f0..af0b64897c 100644 --- a/.github/workflows/ci-lite.yaml +++ b/.github/workflows/ci-lite.yaml @@ -53,7 +53,7 @@ jobs: with: submodules: false persist-credentials: false - - uses: actions/setup-node@v6 + - uses: actions/setup-node@v6.3.0 with: node-version: "24" - name: Semantic Release @@ -470,7 +470,7 @@ jobs: with: submodules: false persist-credentials: false - - uses: actions/setup-node@v6 + - uses: actions/setup-node@v6.3.0 with: node-version: "24" - name: Semantic Release diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index ca694d1878..f5a181dff5 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -52,7 +52,7 @@ jobs: with: submodules: false persist-credentials: false - - uses: actions/setup-node@v6 + - uses: actions/setup-node@v6.3.0 with: node-version: "24" - name: Semantic Release @@ -471,7 +471,7 @@ jobs: with: submodules: false persist-credentials: false - - uses: actions/setup-node@v6 + - uses: actions/setup-node@v6.3.0 with: node-version: "24" - name: Semantic Release From 60ede853c90b624e701ece54a99b688fd9a06aa0 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 11:07:04 +0200 Subject: [PATCH 6/8] chore: fixed a typo in github workflows --- .github/workflows/ci-main.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci-main.yaml b/.github/workflows/ci-main.yaml index f5a181dff5..a65f28a911 100644 --- a/.github/workflows/ci-main.yaml +++ b/.github/workflows/ci-main.yaml @@ -476,7 +476,7 @@ jobs: node-version: "24" - name: Semantic Release id: version - uses: cycjimmy/semantic-release-action@5 + uses: cycjimmy/semantic-release-action@v5 with: semantic_version: 18 extra_plugins: | From be686ddd4b0797fd075c90b51218eddab5fc187a Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 13:35:11 +0200 Subject: [PATCH 7/8] chore: test changes to dockerfile --- package/Dockerfile | 4 ++-- package/Dockerfile.lite | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package/Dockerfile b/package/Dockerfile index 9d0b34f69a..3a7fe28571 100644 --- a/package/Dockerfile +++ b/package/Dockerfile @@ -73,8 +73,8 @@ RUN python3 -m venv /var/lib/python-venv \ && /var/lib/python-venv/bin/pip3 install --upgrade pip==26.0 \ && poetry export --format requirements.txt | /var/lib/python-venv/bin/pip3 --no-cache-dir install -r /dev/stdin \ # This is to upgrade urllib3 and jaraco.context to avoid vulnerabilities, can be remoeved once setuptools is updated upstream - && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ - && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ + # && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ + # && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ && rm -rf /var/lib/python-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && rm -rf /var/lib/syslog-ng-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && apk del build-base python3-dev libffi-dev diff --git a/package/Dockerfile.lite b/package/Dockerfile.lite index a76e3b8270..5d35e641bf 100644 --- a/package/Dockerfile.lite +++ b/package/Dockerfile.lite @@ -73,8 +73,8 @@ RUN python3 -m venv /var/lib/python-venv \ && /var/lib/python-venv/bin/pip3 install --upgrade pip==26.0 \ && poetry export --format requirements.txt | /var/lib/python-venv/bin/pip3 --no-cache-dir install -r /dev/stdin \ # This is to upgrade urllib3 and jaraco.context to avoid vulnerabilities, can be remoeved once setuptools is updated upstream - && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ - && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ + # && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ + # && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ && rm -rf /var/lib/python-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && rm -rf /var/lib/syslog-ng-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && apk del build-base python3-dev libffi-dev From 4613dbbbce36b0688c73189da3a97854c29c0879 Mon Sep 17 00:00:00 2001 From: sbylica-splunk Date: Wed, 1 Apr 2026 13:47:27 +0200 Subject: [PATCH 8/8] chore: remove unused updates in dockerfile --- package/Dockerfile | 3 --- package/Dockerfile.lite | 3 --- 2 files changed, 6 deletions(-) diff --git a/package/Dockerfile b/package/Dockerfile index 3a7fe28571..8205c59c1c 100644 --- a/package/Dockerfile +++ b/package/Dockerfile @@ -72,9 +72,6 @@ COPY poetry.lock / RUN python3 -m venv /var/lib/python-venv \ && /var/lib/python-venv/bin/pip3 install --upgrade pip==26.0 \ && poetry export --format requirements.txt | /var/lib/python-venv/bin/pip3 --no-cache-dir install -r /dev/stdin \ - # This is to upgrade urllib3 and jaraco.context to avoid vulnerabilities, can be remoeved once setuptools is updated upstream - # && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ - # && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ && rm -rf /var/lib/python-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && rm -rf /var/lib/syslog-ng-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && apk del build-base python3-dev libffi-dev diff --git a/package/Dockerfile.lite b/package/Dockerfile.lite index 5d35e641bf..ae81078f32 100644 --- a/package/Dockerfile.lite +++ b/package/Dockerfile.lite @@ -72,9 +72,6 @@ COPY poetry.lock / RUN python3 -m venv /var/lib/python-venv \ && /var/lib/python-venv/bin/pip3 install --upgrade pip==26.0 \ && poetry export --format requirements.txt | /var/lib/python-venv/bin/pip3 --no-cache-dir install -r /dev/stdin \ - # This is to upgrade urllib3 and jaraco.context to avoid vulnerabilities, can be remoeved once setuptools is updated upstream - # && /var/lib/python-venv/bin/pip3 install --upgrade "jaraco.context>=6.1.0" "urllib3>=2.6.3" "Werkzeug>=3.1.6" \ - # && /var/lib/syslog-ng-venv/bin/pip3 install --upgrade pip==26.0 "urllib3>=2.6.3" || true \ && rm -rf /var/lib/python-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && rm -rf /var/lib/syslog-ng-venv/lib/python3.*/site-packages/setuptools/_vendor/*.dist-info || true \ && apk del build-base python3-dev libffi-dev