carhartl
Repos
43
Followers
351
Following
71

🏡

5
2

Scan incoming commits for secrets with Talisman

A simple, lightweight TypeScript API for handling browser cookies

29
3

A simple, lightweight JavaScript API for handling browser cookies

20327
2027

Events

Created at 21 hours ago
Created at 23 hours ago
started
Created at 23 hours ago

Bump docker/build-push-action from 3.3.0 to 4.0.0

Bumps docker/build-push-action from 3.3.0 to 4.0.0.


updated-dependencies:

  • dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ...

Signed-off-by: dependabot[bot] support@github.com

Created at 23 hours ago
pull request closed
Bump docker/build-push-action from 3.3.0 to 4.0.0

Bumps docker/build-push-action from 3.3.0 to 4.0.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 23 hours ago

Bump docker/setup-buildx-action from 2.2.1 to 2.4.0

Bumps docker/setup-buildx-action from 2.2.1 to 2.4.0.


updated-dependencies:

  • dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 day ago
pull request closed
Bump docker/setup-buildx-action from 2.2.1 to 2.4.0

Bumps docker/setup-buildx-action from 2.2.1 to 2.4.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 day ago

Bump golangci/golangci-lint-action from 3.3.1 to 3.4.0

Bumps golangci/golangci-lint-action from 3.3.1 to 3.4.0.


updated-dependencies:

  • dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 day ago
pull request closed
Bump golangci/golangci-lint-action from 3.3.1 to 3.4.0

Bumps golangci/golangci-lint-action from 3.3.1 to 3.4.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 day ago

Remove useless badge in readme

Created at 1 day ago

Make Spring devtools reloading work

Also see: https://github.com/digitalservicebund/neuris-infra/commit/d636e6065c1f77d738e90219590f9536e74b2c46

Created at 2 days ago

Remove obsoleted gitignore config

Created at 2 days ago

Enable hot reloading for Java code

  • We must include the Spring Boot devtools no matter what (Skaffold builds the image using the regular bootBuildImage task
  • We must avoid using a distroless (=> tiny builder) image, as Skaffold requires tar on the running container for unpacking synced files
Created at 2 days ago

Move other helm chart installations to skaffold

Created at 4 days ago

Install monitoring stack

Need to use Skaffold's helm deploy capability, when trying to install as part of a Kustomize manifest the necessary CRDs weren't installed fast enough, despite of including includeCRDs: true.

The hint came from: https://stackoverflow.com/a/72382972

Created at 4 days ago

Update Skaffold version

Tidy up skaffold yaml

Created at 4 days ago

Remove and adapt outdated information

We're shouldn't make assumptions about how anyone decides to pass the necessary kubeconfig for kubectl.

Created at 5 days ago

Fix permissions setup for frontend container

Created at 5 days ago

Activate jar creation in build script

The buildpack based image building in Skaffold relies on it.

Created at 5 days ago
carhartl create branch spike/skaffold
Created at 5 days ago
Created at 1 week ago

Bump jest from 29.3.0 to 29.4.0

Bumps jest from 29.3.0 to 29.4.0.


updated-dependencies:

  • dependency-name: jest dependency-type: direct:development update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 week ago
Bump jest from 29.3.0 to 29.4.0

Bumps jest from 29.3.0 to 29.4.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 week ago
Created at 1 week ago

Bump selenium-webdriver from 4.7.0 to 4.8.0

Bumps selenium-webdriver from 4.7.0 to 4.8.0.


updated-dependencies:

  • dependency-name: selenium-webdriver dependency-type: direct:development update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 week ago
pull request closed
Bump selenium-webdriver from 4.7.0 to 4.8.0

Bumps selenium-webdriver from 4.7.0 to 4.8.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 week ago

Bump @typescript-eslint/parser from 5.48.0 to 5.49.0

Bumps @typescript-eslint/parser from 5.48.0 to 5.49.0.


updated-dependencies:

  • dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 week ago
Bump @typescript-eslint/parser from 5.48.0 to 5.49.0

Bumps @typescript-eslint/parser from 5.48.0 to 5.49.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 week ago

Bump @typescript-eslint/eslint-plugin from 5.48.0 to 5.49.0

Bumps @typescript-eslint/eslint-plugin from 5.48.0 to 5.49.0.


updated-dependencies:

  • dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-minor ...

Signed-off-by: dependabot[bot] support@github.com

Created at 1 week ago
Bump @typescript-eslint/eslint-plugin from 5.48.0 to 5.49.0

Bumps @typescript-eslint/eslint-plugin from 5.48.0 to 5.49.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 week ago