Commit Graph

664 Commits

Author SHA1 Message Date
Andy Pixley
83f9061474
[BRE-831] migrate secrets akv (#15158) 2025-07-21 15:54:28 -04:00
Matt Andreko
127fed70ac
Update scan workflow to use centralized reusable component (#15635) 2025-07-17 10:01:37 -04:00
Bernd Schoolmann
8250e40c6c
[PM-22271] Switch to SDK argon2 implementation, and drop other impls (#15401)
* Switch to SDK argon2 implementation

* Cleanup and update to the latest sdk

* Update package lock

* Remove copy patch

* Fix builds

* Fix test build

* Remove error

* Fix tests

* Fix build

* Run prettier

* Remove argon2 references

* Regenerate index.d.ts for desktop_native napi

* Replace mocked crypto function service type
2025-07-15 11:53:58 +02:00
Tyler
3f7cb674af
BRE-883 build(firefox): check file size (#15399)
* build(firefox): check file size

if building `firefox` or `firefox-mv3`

    * check if any file(s) exceeds 4M (megabytes)

        - If true, fail and provide basic message.

* style: add clarity

sytle: add error message

* fix: relocate step

ensure final step of source files before validating

* test: add failure condition

* fix: source file target directory

* fix: test for failure condition

* test: remove failure condition

remove lines used for testing
2025-07-01 22:31:59 +02:00
Justin Baur
4c2475a515
[PM-22343] Bump non-cli to Node 22 (#15058)
* Bump non-cli to Node 22

* Fix working-directory

* Lets see what breaks

* Maybe this works
2025-06-26 18:05:37 -04:00
Andy Pixley
78bebe66ea
[BRE-848] Add Workflow Permissions (#15328) 2025-06-26 12:57:01 -04:00
Andreas Coroiu
556ec500ff
[PM-12416] Fix cli signing issues (#15132)
* Add macOS notarization and signing steps to CI workflow

* Fix

* Fix path

* Test logic changes for signing

* Test logic

* feat: remove runtime hardening option

* feat: try using entitlements instead

* try removing unsigned memory entitlement

* fix: revert changes, unsigned memory required

---------

Co-authored-by: Michal Checinski <mchecinski@bitwarden.com>
Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>
2025-06-24 09:36:14 +02:00
Andy Pixley
a4ef61e1fc
[BRE-848] Adding Workflow Permissions (#15250) 2025-06-20 12:34:18 -04:00
Addison Beck
e8e61d2796
build(ci): remove the need to cherry pick version bumps to rc (#15188) 2025-06-17 13:57:27 -04:00
Colton Hurst
4ddff8abb0
[PM-22645] Rename Windows Desktop Pack & Sign workflow (#15175) 2025-06-16 09:19:48 -04:00
renovate[bot]
fb9f8a9b33
[deps]: Update crowdin/github-action action to v2 (#15169)
* [deps]: Update crowdin/github-action action to v2

* fix(build): adjust config keys to match crowdin breaking changes

* build(crowdin): add a lint action for crowdin configurations

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: addisonbeck <github@addisonbeck.com>
2025-06-12 17:59:17 -04:00
Addison Beck
ed169335bf
Revert "[deps]: Update crowdin/github-action action to v2 (#14929)" (#15159)
This reverts commit e8d73b577f.
2025-06-11 22:05:20 +00:00
renovate[bot]
e8d73b577f
[deps]: Update crowdin/github-action action to v2 (#14929)
* [deps]: Update crowdin/github-action action to v2

* fix(build): adjust config keys to match crowdin breaking changes

* fix(build): comply with the new workflow linter for effect files

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Addison Beck <github@addisonbeck.com>
2025-06-11 17:38:47 -04:00
renovate[bot]
f30d6f0105
[deps]: Update dtolnay/rust-toolchain digest to b3b07ba (#14921)
* [deps]: Update dtolnay/rust-toolchain digest to b3b07ba

* fix(build): comply with ci linter in the test workflow

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Addison Beck <github@addisonbeck.com>
2025-06-11 16:14:13 -04:00
Vince Grassia
04e59a0fe2
BRE-889 - Remove checksum assets (#15146) 2025-06-11 15:33:51 -04:00
Oscar Hinton
685f7a0fd8
Confirm we can run the npm published CLI (#15007)
* Confirm we can run the npm published CLI

* Add comment
2025-06-09 11:02:14 +02:00
renovate[bot]
4e07fd7666
[deps]: Update anchore/scan-action action to v6 (#14928)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-30 08:54:58 -07:00
renovate[bot]
d64ec01bd7
[deps]: Update sonarsource/sonarqube-scan-action action to v5 (#14931)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-30 08:48:07 -07:00
aj-bw
21dfcfeada
fix chromatic linter failure (#14972) 2025-05-29 17:18:59 -04:00
Daniel García
a02c230e4d
Pin rust toolchain (#14817)
Some checks failed
Chromatic / Check PR run (push) Has been cancelled
Scan / Check PR run (push) Has been cancelled
Testing / Run tests (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (macos-14) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (ubuntu-22.04) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (windows-2022) (push) Has been cancelled
Testing / Rust Coverage (push) Has been cancelled
Chromatic / Chromatic (push) Has been cancelled
Scan / SAST scan (push) Has been cancelled
Scan / Quality scan (push) Has been cancelled
Testing / Upload to Codecov (push) Has been cancelled
* Pin rust toolchain

* Always install targets in build script

* Delete installed toolchains
2025-05-17 22:17:36 +02:00
Maciej Zieniuk
7f8a9825dd
[PM-18502] jest and rust coverage upload separated as one step (#14286)
* jest and rust coverage upload separated as one step

* wrong file paths when downloading coverage

* correct relative coverage paths with sources

* Update .github/workflows/test.yml

Co-authored-by: Matt Bishop <mbishop@bitwarden.com>

---------

Co-authored-by: Matt Bishop <mbishop@bitwarden.com>
2025-05-15 22:11:04 +02:00
aj-bw
0c2b924252
BRE-609/update-workflows (#14666)
* update workflow branches

* additional workflow changes

* update scan file
2025-05-15 09:37:58 -04:00
renovate[bot]
3b2dc2907f
[deps]: Update chromaui/action action to v11.28.2 (#14499)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-14 08:30:15 -07:00
renovate[bot]
89be04a45e
[deps]: Update dorny/test-reporter action to v2 (#14518)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
2025-05-09 19:01:50 +02:00
renovate[bot]
47d41f9289
[deps]: Update codecov/test-results-action action to v1.1.0 (#14501)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
2025-05-09 18:12:02 +02:00
Daniel James Smith
8cf48d77fc
Revert "[deps]: Update crowdin/github-action action to v2 (#12310)" (#14694)
This reverts commit 9e467163db.
2025-05-09 04:58:48 -04:00
renovate[bot]
590053a96a
[deps]: Update sigstore/cosign-installer action to v3.8.2 (#14507)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-08 21:31:48 -04:00
renovate[bot]
9e467163db
[deps]: Update crowdin/github-action action to v2 (#12310)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-08 16:57:55 -04:00
renovate[bot]
a802798b58
[deps]: Update codecov/codecov-action action to v5.4.2 (#14500)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-08 16:21:09 -04:00
renovate[bot]
1e8bc87353
[deps]: Update actions/create-github-app-token action to v2 (#14517)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-08 15:47:51 -04:00
renovate[bot]
c9dcba2506
[deps]: Update docker/setup-qemu-action action to v3.6.0 (#14504)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-01 09:00:40 -07:00
Andy Pixley
74d01eca81
[BRE-784] Fixing web vault build to pull valid server ref (#14382) 2025-04-28 10:14:09 +02:00
Nathan Ansel
d70d81dec6
[BRE-266] Fixes autofill extension signing (#13229)
* Applies patch to enable the autofill extension

* Fixes the zip command

* Updates the signing identity

* Fixes a typo in a github action

* Moves the security command to a previous action

* Updates workflow to work on the PR branch

* Updates the workflow to build from this branch

* Forces native module build

* Adds profile to extension building

* Enables the autofill production config

* List the profiles

* Copies the autofill provisioning profile to Xcode

* Updates the provisioning profile used for the autofill extension

* Alters how the provisioning profile is provided to xcodebuild

* Adds a mas build with the autofill extension

* Print variables

* Removes spaces from the config file

* Updates all provisioning profile installation steps

* Adds a new provisioning profiles location

* Updates the inherited entitlements

* Passes in identity and provisioning profile in after sign call

* Removes mac dev cert from keychain

* Undoes after sign changes

* Adds resign step to workflow

* Fixes the codesign call

* Adds profile argument to electron builder

* Adds resign step to mas builds

* Removes resign step

* Enable debug messages for electron builder signing

* Copies autofill profile instead of desktop

* Add autofill extension to signIgnore list in electron-builder config

* Comment out if in test flight

* Bump version

* Moves the autofill extension building to after pack

* Update version

* Fixes windows and linux builds

* Forces native build

* Removes installation of unrelated certificates

* Comments out synchronous function call

* Update autofill project configuration

* Adds ls command to debug framework

* Moves the extension build script back

* Updates mac developer id provisioning profile

* Updates build location for autofill extension release versions

* Removes unnecessary extension build call

* Updates the version number

* Debug signing

* Removes team identifier from mac entitlements

* Adds new inherited entitlements for mac

* Updates the version number

* Debug version number

* Removes check for creating fastlane secrets

* Readds check for cache before building

* Reverts workflow changes in build-desktop.yml

* Cleans up after-sign and extension build script

* Removes installation of unnecessary mac signing certs

---------

Co-authored-by: Michal Checinski <mchecinski@bitwarden.com>
2025-04-22 09:24:18 -05:00
Todd Martin
d4dd8d096b
chore(builds): [PM-20431] Add bit-web to build-web workflow paths
* Add bit-web to build-web workflow paths.

* Updated to also include bit-common
2025-04-18 17:35:42 -04:00
aj-bw
08b966409f
linux-x86-builds-fix (#14321)
* readd rust toolchain commands

* revert native module build call
2025-04-17 09:18:39 -04:00
aj-bw
c7259b4cb1
BRE-536/Add-ARM-targz-builds-for-desktop-and-cli (#14270)
* Test ARM64 build

* Remove sudo

* Change to public preview runner

* Change cache key for architectures

* Test

* Test

* Test

* remove x86 musl target - troubleshooting build error

* native module troubleshooting

* remove cross-platform for testing

* attempt to resolve cross-platform issue

* support more arm64 build types

* fix missed amd to arm update

* missing dependency during env setup

* lxd troubleshooting

* install lxd with snap instead

* electron-builder debug

* simplified script for testing

* testing

* 22.04 to 20.04

* try ubuntu 24.04 runner

* add dist script

* update build command

* troubleshoot 24.04 compatibility

* remove lxd before merging main

* add comment, bump arm runner down to 22.04

* revert to tar.gz support only for this PR

* testing cli arm builds

* fix build target designation

* adjust runner designation

* runner name typo

* not needed currently

* adjust build.js logic and call in workflow

* address styling feedback and unnecessary rust toolchain call

* simplify build cli os matrix

* revert x86 linux builds to cross-platform command for build.js

---------

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>
2025-04-17 08:21:24 -04:00
Michał Chęciński
9da15601be
Add workflow to trigger self-host unified build in publish web (#14268) 2025-04-16 15:06:41 +02:00
Andy Pixley
94d9487547
[BRE-777] Fixing output to match what's in gh-actions (#14292) 2025-04-15 12:31:08 -04:00
Todd Martin
938e9454e1
fix(workflow): [PM-19254] Update image tag generation for builds from forked PRs
* Added fork name to tag

* Added logging.

* Added pull_request_target

* Added repository name if on fork.

* Limited characters

* Added sanitization

* Moved to env var for extra security.
2025-04-14 21:33:51 -04:00
Vicki League
63a3cb0160
[CL-394] Only run Chromatic action on relevant PRs (#14065) 2025-04-10 11:51:43 -04:00
renovate[bot]
b488253722
[deps]: Update actions/create-github-app-token action to v1.12.0 (#13879)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-04-08 14:24:04 +02:00
Álison Fernandes
7f58cee41b
[PM-18897] Add workflow to auto-reply / auto-close GitHub Discussions (#13682) 2025-04-07 14:20:29 -04:00
Vince Grassia
c8967bf4b3
Update build web workflow (#14111) 2025-04-07 09:57:55 -04:00
Todd Martin
3a4f342471
Updated workflows to correctly trigger on pull_request_target (#14115) 2025-04-04 10:16:28 -04:00
Todd Martin
10306995e6
Add comments to build workflows to indicate their intended use (#14069)
* Added comments to build workflows.

* Updated comments and job names.
2025-04-02 13:56:30 -04:00
Vince Grassia
0d9794e968
Add Docker arm64 builds (#14025) 2025-04-02 09:50:31 -04:00
Michał Chęciński
56672a3568
[BRE-714] Enhance TestFlight desktop publishing (#13871)
* Update TestFlight deployment to use Fastlane for app uploads

* Update TestFlight deployment to use Fastlane for app uploads

* Fix

* Fix create secret for fastlane

* Fix create secret for fastlane

* Fix create secret for fastlane

* Install gsed to use sed on macos runner

* Create test file

* Fix test

* Use actual token

* Add TestFlight distribution option for QA testing

* Update .github/workflows/build-desktop.yml

Co-authored-by: MtnBurrit0 <77340197+mimartin12@users.noreply.github.com>

* Add if to secret construction for fastlane

---------

Co-authored-by: MtnBurrit0 <77340197+mimartin12@users.noreply.github.com>
2025-03-31 12:59:47 +02:00
Matt Bishop
cfafeaac66
Remove references to Codecov token (#14033) 2025-03-27 15:46:48 -07:00
Michał Chęciński
c999c19f07
fix(workflow): add conditional checks for Docker image scanning and result upload (#13898) 2025-03-20 16:38:51 +00:00
Matt Andreko
e31ffd9b66
Update SARIF upload to use proper branch (#13917) 2025-03-20 12:29:24 -04:00
Amy Galles
54c779afe8
update github runner for child process (#13797)
* update github runner for child process
2025-03-13 09:20:55 -07:00
Matt Andreko
d01f0c6bc4
Replace secret checking logic with branch detection logic (#13642) 2025-03-03 14:19:43 -05:00
renovate[bot]
08b6da3f4e
[deps]: Update dtolnay/rust-toolchain digest to c5a29dd (#13659)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
2025-03-03 12:26:38 +01:00
Todd Martin
a4ff5436bf
[PM-18617] Revert Firefox back to build Mv2 (#13620)
* Revert changes to build Mv3 on Firefox.

* Revert script changes.
2025-02-28 10:14:36 -05:00
Opeyemi
164f15d9f9
[BRE-610] - Sign windows CLI (#13542)
* [BRE-610] - Sign windows CLI

* little fix

* testing path to script

* testing script path

* Testing windows signing script

* single line run

---------

Co-authored-by: Andy Pixley <3723676+pixman20@users.noreply.github.com>
2025-02-26 13:17:24 +00:00
Vince Grassia
c85f6a54f5
Add artifact names for macOS ARM64 builds (#13503) 2025-02-24 10:45:49 -07:00
José Pereira
76fb5d46bb
[PM-10105] Release arm64 binaries for macOS (#10273)
* ci(mac): add step to build and release macos arm64 binary

* ci(mac): add step to build and release macos arm64 binary

* fix: add target_suffix to build & package command
2025-02-24 10:24:27 -05:00
Amy Galles
9dd2033081
Fix broken image tagging on build-web (#13514)
* updating logic to include pull requests
2025-02-21 14:02:46 -08:00
Justin Baur
9e6643f668
Opera mv3 build changes (#13365)
* Remove MV2 Opera Artifact Creation

* Rename Opera MV3 Artifact
2025-02-12 16:28:36 -05:00
Matt Andreko
b036d6c0e8
Enabled SonarQube scanning for PRs (#13250)
* Modified Scan workflow to contain PR number during a PR

* Update .github/workflows/scan.yml

Co-authored-by: Matt Bishop <mbishop@bitwarden.com>

---------

Co-authored-by: Matt Bishop <mbishop@bitwarden.com>
2025-02-12 09:07:27 -05:00
Justin Baur
e3870a6b28
Firefox mv3 build changes (#13366)
* Remove Firefox MV2 Artifact Creation

* Rename Firefox MV3 Artifact
2025-02-11 16:34:23 -05:00
Andreas Coroiu
4cb8e85937
[PM-15126] Third attempt: Remove reliance on secrets in build pipelines (#13222)
* feat: create copy of desktop build for PR target

* chore: add temporary file to trigger ci

* fix: remove check-run from regular desktop build

* feat: change browser build to not use pr target

* fix: skip build-safari if secret is not available

* feat: skip safari build if secrets are not available

* feat: let windows desktop build without secrets

* fix: has_secrets not being output correctly

* feat: let macos desktop build without secrets

* feat: don't build browser as part of desktop

* feat: change CLI to pull_request

* feat: let web build without secrets

* feat: tweak lint to run on PR and not just push

* feat: add PR target workflows

* fix: remove wip files

* fix: lint on hotfix-rc branches

* feat: add new workflows to CODEOWNERS

* fix: remove workflow_dispatch

pull_request_target are only intended to be used with contributor PRs and we cannot dispatch builds for these branches so there was no point having that option.
2025-02-11 11:14:09 +01:00
Maciej Zieniuk
d846f88c21
desktop native written in rust code coverage (#13106)
* desktop native written in rust code coverage

* working directory keyword missing fix

* use the same cargo-llvm-cov version as sdk

* rust coverage job working directory

* rust coverage job working directory

* fixing ci

* fixing ci

* fixing ci

* fixing ci

* fixing ci

* fixing ci

* pinning runners

* pinning runners

* remove codecov token
2025-02-04 22:44:01 +01:00
renovate[bot]
a0e48781bd
[deps]: Update codecov/test-results-action action to v1.0.2 (#12962)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-02-03 11:11:34 +01:00
Matt Andreko
0e3e3c16c4
Removed unnecessary CODECOV_TOKEN with updated codecov-action (#12892) 2025-01-27 09:35:04 -05:00
Michał Chęciński
3fda91e42f
Fix deployment_id to deployment-id in workflow files (#13028) 2025-01-23 11:04:54 +00:00
Michał Chęciński
9f524d4b91
Fix name of the release-version-check workflow (#13026) 2025-01-23 09:06:13 +00:00
renovate[bot]
007e2fc951
[deps]: Update github-action minor (#12972)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-01-21 11:24:43 -08:00
renovate[bot]
ba24fd54e0
[deps]: Update github/codeql-action action to v3.28.2 (#12963)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-01-21 10:18:07 -08:00
Andy Pixley
1b9f546139
[BRE-563] Reverting out electron_publish option. Needs to always happen (#12997)
Some checks failed
Chromatic / Check PR run (push) Has been cancelled
Scan / Check PR run (push) Has been cancelled
Testing / Check for test secrets (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (macos-latest) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (ubuntu-22.04) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (windows-latest) (push) Has been cancelled
Chromatic / Chromatic (push) Has been cancelled
Scan / SAST scan (push) Has been cancelled
Scan / Quality scan (push) Has been cancelled
Testing / Run tests (push) Has been cancelled
2025-01-21 16:24:00 +00:00
Oscar Hinton
e5f83ff086
[PM-17031] Create UI-common (#12831)
Extract core functionality from `libs/angular` to allow teams to depend on `libs/ui-common` instead.

Moves the following functionality to `ui-common`.
- `I18nPipe`. `libs/angular` still has an old copy but `components` depends on the new variant from `ui-common`.
- `safeProvider`, `SafeProvider` and `SafeInjectionToken`. `libs/angular`re-exports these to avoid needing to update all consumers.
2025-01-17 10:42:31 -05:00
Todd Martin
87171289f0
Revert Opera to Mv2 build (#12921) 2025-01-17 10:16:52 -05:00
Andy Pixley
65b393e3ee
[BRE-563] Adding ability to skip electron publish (#12920) 2025-01-16 21:17:29 +00:00
Andy Pixley
3917f50fdd
[BRE-560] Display rollout percentage in run name (#12919) 2025-01-16 15:20:03 -05:00
Matt Andreko
ff5043f9ff
Updated SonarQube GitHub action to v4.2.1 (#12836) 2025-01-14 08:32:32 +01:00
Todd Martin
4c8565f7f3
Modify Edge and Opera artifacts to build Mv3 - Part 1 (#12674)
* Modify Edge and Chrome artifacts to build Mv3 version to mimic Chrome

* Added back the Mv3 scripts so that workflows run on the PR will pass
2025-01-12 16:37:15 -05:00
Vince Grassia
138e07eaf7
Add fetch-depth to checkout step (#12782) 2025-01-10 09:50:21 +01:00
Michał Chęciński
1a80ae8968
[BRE-513] Remove brew bump desktop workflow (#12772) 2025-01-09 16:10:28 +01:00
Addison Beck
5c96634974
fix(ci): Adjust variable name missed during lint update (#12768) 2025-01-09 04:37:26 +00:00
Addison Beck
a9ca361523
fix(ci): Adjust for a breaking change in the Slack action (#12753) 2025-01-08 18:47:45 +00:00
Addison Beck
4d576f0533
fix(ci): Resolve errors and warnings exposed by new workflow linter (#12755)
* fix(ci): Resolve errors and warnings exposed by new workflow linter

* Add missed warning
2025-01-08 13:06:19 -05:00
renovate[bot]
0b4c22c269
[deps] BRE: Update slackapi/slack-github-action action to v2 (#12140)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-01-03 11:39:01 -05:00
renovate[bot]
b370787239
[deps] BRE: Update gh minor (#11941)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-01-02 18:24:57 -05:00
Vince Grassia
af4311fa21
BRE-534 - Update workflow to parallelize extension builds (#12640) 2025-01-02 14:58:34 -05:00
Vince Grassia
30b4c891df
Change logic for workflow (#12626) 2024-12-30 17:46:07 +00:00
Vince Grassia
afe11676e2
Fix syntax for bash script (#12621) 2024-12-30 15:23:20 +00:00
Daniel James Smith
2041799174
Fix Crowdin push (#12500)
Related to https://github.com/bitwarden/clients/pull/11961

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
2024-12-20 09:18:35 -05:00
Daniel García
fff412665f
Run clippy and rustfmt on CI (#12388)
* Run clippy and rustfmt on CI

* Error on warnings and fix a couple of missed lints

* Move import inside function

* Fix unix lints

* Fix windows lints

* Missed some async tests

* Remove unneeded reference
2024-12-19 22:49:45 +01:00
Matt Bishop
c628f541d1
Sign main branch Unified container builds with cosign and perform security scanning (#12403) 2024-12-16 12:35:00 -05:00
Todd Martin
7c8b9db58f
Revert workflow changes (#12376)
* Revert "fix: target workflows not triggering on pull_request_target (#12370)"

This reverts commit 645d36f465.

* Revert "[PM-15126] Tighten scope of our client build pipelines to remove reliance on secrets (#12243)"

This reverts commit f8c33ea04b.
2024-12-12 12:22:55 -05:00
Andreas Coroiu
645d36f465
fix: target workflows not triggering on pull_request_target (#12370) 2024-12-12 12:42:44 +00:00
Andreas Coroiu
f8c33ea04b
[PM-15126] Tighten scope of our client build pipelines to remove reliance on secrets (#12243)
* feat: create copy of desktop build for PR target

* chore: add temporary file to trigger ci

* fix: remove check-run from regular desktop build

* feat: change browser build to not use pr target

* fix: skip build-safari if secret is not available

* feat: skip safari build if secrets are not available

* feat: let windows desktop build without secrets

* fix: has_secrets not being output correctly

* feat: let macos desktop build without secrets

* feat: don't build browser as part of desktop

* feat: change CLI to pull_request

* feat: let web build without secrets

* feat: tweak lint to run on PR and not just push

* feat: add PR target workflows

* fix: remove wip files

* fix: lint on hotfix-rc branches

* feat: add new workflows to CODEOWNERS
2024-12-12 11:50:21 +01:00
renovate[bot]
02c65fd1b8
[deps] BRE: Update sonarsource/sonarcloud-github-action action to v4 (#12311)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-12-09 16:51:27 -05:00
Bernd Schoolmann
80a898bd8c
[PM-14252] Switch to oo7 and drop libsecret (#11900)
* Switch to oo7 and drop libsecret

* Fix tests

* Fix windows

* Fix windows

* Fix windows

* Fix windows

* Add migration

* Update apps/desktop/desktop_native/core/src/password/unix.rs

Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>

* Remove libsecret in ci

* Move allow async to trait level

* Fix comment

* Pin oo7 dependency

---------

Co-authored-by: Matt Bishop <mbishop@bitwarden.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
2024-12-04 17:03:34 +01:00
Daniel James Smith
cf52c6030e
Cleaning up after removing gulp from codebase (#12117)
Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
2024-11-25 17:51:24 +01:00
Opeyemi
9e15f7dc29
[BRE-443] - Fix Linting pre bwwl Deployment (#12066)
Some checks failed
Chromatic / Check PR run (push) Has been cancelled
Scan / Check PR run (push) Has been cancelled
Testing / Check for test secrets (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (macos-latest) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (ubuntu-22.04) (push) Has been cancelled
Testing / Run Rust tests on ${{ matrix.os }} (windows-latest) (push) Has been cancelled
Chromatic / Chromatic (push) Has been cancelled
Scan / SAST scan (push) Has been cancelled
Scan / Quality scan (push) Has been cancelled
Testing / Run tests (push) Has been cancelled
2024-11-20 15:05:46 +00:00
Oscar Hinton
e43a204ab2
Fix broken browser build (#12050) 2024-11-19 13:43:19 +00:00
Oscar Hinton
b55a28f755
[PM-14485] Remove manifest and index.html logic from gulp (#12033)
Refactor the remaining logic from gulp.  Part of the browser build script
refactor effort.

Webpack is now responsible for performing most of the operations previously
done by gulp. This includes: - Setting browser specific class - Building the
manifest file  The `package.json` is modified to include browser specific
commands for `build`, `build:prod`, `build:watch` and `dist`.

# Manifests

Manifests now uses the `copy-webpack-plugin` `transform` feature. The logic is
located in `apps/browser/webpack/manifest.js`. It reads a template, which
supports some basic operations primarily overriding with browser specific
fields using `__browser__`.  The `manifest.json` for both regular and mv3
builds are identical to our existing manifests except:
- `applications` renamed to `browser_specific_settings`.
- `permissions` sorted alphabetically.

# Safari build

Safari requires additional packaging commands. This is implemented as a
powershell script due to the cross-platform nature, and since we generally
require powershell in our distribution pipelines. An alternative would be to
write it in bash, but bash is less powerful and would require some additional
commands like `jq`. Another alternative is to write it using js, but that would
require additional dependencies.
2024-11-19 13:25:30 +00:00
Andreas Coroiu
33f7643e15
[PM-12989] Create process for qa to build client with particular sdk version (#11601)
* feat: update sdk service abstraction with documentation and new `userClient$` function

* feat: add uninitialized user client with cache

* feat: initialize user crypto

* feat: initialize org keys

* fix: org crypto not initializing properly

* feat: avoid creating clients unnecessarily

* chore: remove dev print/subscription

* fix: clean up cache

* chore: update sdk version

* feat: implement clean-up logic (#11504)

* chore: bump sdk version to fix build issues

* chore: bump sdk version to fix build issues

* fix: missing constructor parameters

* refactor: simplify free() and delete() calls

* refactor: use a named function for client creation

* fix: client never freeing after refactor

* fix: broken impl and race condition in tests

* feat: add sdk override to desktop build

* feat: add SDK version to browser about dialog

* feat: add sdk override to browser build

* fix: `npm ci` overriding the override

* fix: artifacts not properly downloaded

* fix: switch to new repository

* feat: add debug version function to web

* feat: add sdk-version to CLI

* feat: add version to desktop

* feat: add override to cli

* feat: add override to web

* fix: cli version acting as default command

* fix: consistent workflow input name

* feat: add error handling

* feat: upgrade sdk-internal

* fix: forgot to update package lock

* fix: broken CI build

move sdk version to a regular command

* chore: revert version changes

* refactor: move error handling code

* chore: bump SDK to 0.2.0.main-1

* fix: clean up references to inputs.sdk_commit

* refactor: rename `init` to `applyVersionToWindow`
2024-11-19 13:59:59 +01:00
Vince Grassia
4d9dc9a839
BRE-438 - Update Crowdin workflow (#12038) 2024-11-18 16:15:58 +00:00