Merge branch 'master' into dependabot/npm_and_yarn/minimist-1.2.8

Woodpile37 · Feb 2, 2024 · b4452e2 · b4452e2
2 parents 739a56e + d1770bc
commit b4452e2
Show file tree

Hide file tree

Showing 4 changed files with 3,023 additions and 2,429 deletions.
diff --git a/.github/workflows/datree-validation.yml b/.github/workflows/datree-validation.yml
@@ -0,0 +1,53 @@
+# |=========================== Datree Policy Check ===================================|
+# | This workflow will verify that all committed config files in the PR are valid.    |
+# | If one of the config files is happened to be a K8s config file (manifest),        |
+# | It will also automatically be tested for schema validation and misconfigurations. |
+# | For more info visit: https://github.com/marketplace/datree                        |
+# |===================================================================================|
+
+name: Datree Workflow
+
+on:
+  pull_request:
+    types: [opened, edited, synchronize, reopened]
+
+jobs:
+  configs-validation:
+    runs-on: ubuntu-latest
+    env:
+      DATREE_TOKEN: ${{ secrets.DATREE_TOKEN }}
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+
+      - name: Get changed files
+        id: changed-files
+        uses: tj-actions/changed-files@v41
+        with:
+          files: |
+            *.yaml
+            *.yml
+      - name: List all changed files
+        run: echo ${{ steps.changed-files.outputs.all_changed_files }}
+
+      - name: Install Datree's CLI
+        if: steps.changed-files.outputs.any_changed == 'true'
+        run: curl https://get.datree.io | /bin/bash -s
+
+      # |=========================== Datree Policy Check ===================================|
+      # | Prevent Kubernetes misconfigurations from reaching production!                    |
+      # | Datree is a CLI tool to ensure K8s configs follow stability & security            |
+      # | best practices as well as your organization’s policies.                           |
+      # | For more info visit: https://github.com/datreeio/datree                           |
+      # |===================================================================================|
+
+      - name: Datree validate config files
+        if: steps.changed-files.outputs.any_changed == 'true'
+        uses: datreeio/action-datree@main # For more info about this Actions visit 👉 https://github.com/datreeio/action-datree
+        with:
+          path: ${{ steps.changed-files.outputs.all_changed_files }}
+          cliArguments: --only-k8s-files
+          isHelmChart: false
+          isKustomization: false
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,21 @@
+# Security Policy
+
+## Supported Versions
+
+Use this section to tell people about which versions of your project are
+currently being supported with security updates.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 5.1.x   | :white_check_mark: |
+| 5.0.x   | :x:                |
+| 4.0.x   | :white_check_mark: |
+| < 4.0   | :x:                |
+
+## Reporting a Vulnerability
+
+Use this section to tell people how to report a vulnerability.
+
+Tell them where to go, how often they can expect to get an update on a
+reported vulnerability, what to expect if the vulnerability is accepted or
+declined, etc.
diff --git a/package.json b/package.json
@@ -26,7 +26,7 @@
     "assert": "^2.0.0",
     "crypto-browserify": "^3.12.0",
     "framer-motion": "^6.2.8",
-    "gatsby": "^4.9.0",
+    "gatsby": "^4.25.4",
     "gatsby-plugin-emotion": "^7.9.0",
     "gatsby-plugin-netlify": "^4.1.0",
     "gatsby-plugin-react-helmet": "^5.9.0",