dependabot[bot]
09a34687fb
Bump the github-actions group with 6 updates
...
Bumps the github-actions group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/github-script](https://github.com/actions/github-script ) | `7.0.1` | `8.0.0` |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `2.2.2` | `2.2.3` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.6.0` | `6.0.0` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.4.2` | `2.4.3` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.29.11` | `3.30.5` |
| [actions/stale](https://github.com/actions/stale ) | `9.1.0` | `10.0.0` |
Updates `actions/github-script` from 7.0.1 to 8.0.0
- [Release notes](https://github.com/actions/github-script/releases )
- [Commits](60a0d83039...ed597411d8https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.2.2...v2.2.3 )
Updates `actions/setup-python` from 5.6.0 to 6.0.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](a26af69be9...e797f83bcbhttps://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](05b42c6244...4eaacf0543https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3c3833e0f8...3599b3baa1https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](5bef64f19d...3a9db7e6a4
2025-10-01 08:14:08 +00:00
dependabot[bot]
875802801c
Bump the github-actions group with 3 updates
...
Bumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout ), [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](11bd71901b...08c6903cd8https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.1.0...v2.2.2 )
Updates `github/codeql-action` from 3.29.7 to 3.29.11
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](51f77329af...3c3833e0f8
2025-09-01 15:40:11 +00:00
dependabot[bot]
bba9ce1da7
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `google/osv-scanner-action` from 2.0.3 to 2.1.0
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.0.3...v2.1.0 )
Updates `github/codeql-action` from 3.29.2 to 3.29.5
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](181d5eefc2...51f77329af
2025-08-01 08:40:51 +00:00
dependabot[bot]
3284d96456
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `google/osv-scanner-action` from 2.0.2 to 2.0.3
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.0.2...v2.0.3 )
Updates `github/codeql-action` from 3.28.19 to 3.29.2
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fca7ace96b...181d5eefc2
2025-07-01 10:33:30 +00:00
Mihai Maruseac
8ef8ad37d4
Correctly remove user from assignees list
2025-06-30 09:38:59 -07:00
Venkat6871
7f51cf09cc
Update bot_config.yml
...
Remove the auto assignment list
2025-06-30 10:23:10 +05:30
dependabot[bot]
b6dc530d7d
Bump github/codeql-action in the github-actions group
...
Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action ).
Updates `github/codeql-action` from 3.28.18 to 3.28.19
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ff0a06e83c...fca7ace96b
2025-06-04 01:10:36 +00:00
Quoc Truong
9fc62761fd
Remove linux_arm64 container as this has been moved to ml_build_arm64
...
PiperOrigin-RevId: 766897560
2025-06-03 18:09:09 -07:00
dependabot[bot]
c2aa722eab
Bump the github-actions group with 3 updates
...
Bumps the github-actions group with 3 updates: [google/osv-scanner-action](https://github.com/google/osv-scanner-action ), [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `google/osv-scanner-action` from 2.0.1 to 2.0.2
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.0.1...v2.0.2 )
Updates `ossf/scorecard-action` from 2.4.1 to 2.4.2
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](f49aabe0b5...05b42c6244https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](28deaeda66...ff0a06e83c
2025-06-01 08:41:19 +00:00
dependabot[bot]
39fe694360
Bump the github-actions group with 3 updates
...
Bumps the github-actions group with 3 updates: [google/osv-scanner-action](https://github.com/google/osv-scanner-action ), [actions/setup-python](https://github.com/actions/setup-python ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `google/osv-scanner-action` from 2.0.0 to 2.0.1
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v2.0.0...v2.0.1 )
Updates `actions/setup-python` from 5.5.0 to 5.6.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](8d9ed9ac5c...a26af69be9https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b549b9259...28deaeda66
2025-05-01 08:39:53 +00:00
dependabot[bot]
d898facd6c
Bump the github-actions group with 5 updates
...
Bumps the github-actions group with 5 updates:
| Package | From | To |
| --- | --- | --- |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.9.2` | `2.0.0` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.4.0` | `5.5.0` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `7.0.7` | `7.0.8` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.6.1` | `4.6.2` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.10` | `3.28.13` |
Updates `google/osv-scanner-action` from 1.9.2 to 2.0.0
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.9.2...v2.0.0 )
Updates `actions/setup-python` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](42375524e2...8d9ed9ac5chttps://github.com/peter-evans/create-pull-request/releases )
- [Commits](dd2324fc52...271a8d0340https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b56ba49b26...1b549b9259
2025-04-01 08:48:50 +00:00
Quoc Truong
d95b111484
Remove GitHub Actions for building tensorflow sigs Dockerfile since we have migrated to the new ML build container.
...
The new ML Build Container Dockerfile can be found under https://github.com/tensorflow/tensorflow/tree/master/ci/official/containers/ml_build
PiperOrigin-RevId: 739282534
2025-03-21 13:38:51 -07:00
dependabot[bot]
4f8ccf851a
Bump the github-actions group with 6 updates
...
Bumps the github-actions group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `7.0.6` | `7.0.7` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.4.0` | `2.4.1` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.6.0` | `4.6.1` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.8` | `3.28.10` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.8.0` | `3.10.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.13.0` | `6.15.0` |
Updates `peter-evans/create-pull-request` from 7.0.6 to 7.0.7
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](67ccf781d6...dd2324fc52https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](62b2cac7ed...f49aabe0b5https://github.com/actions/upload-artifact/releases )
- [Commits](65c4c4a1dd...4cec3d8aa0https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](dd746615b3...b56ba49b26https://github.com/docker/setup-buildx-action/releases )
- [Commits](6524bf65af...b5ca514318https://github.com/docker/build-push-action/releases )
- [Commits](ca877d9245...471d1dc4e0
2025-03-01 08:27:17 +00:00
dependabot[bot]
c2de29c83a
Bump the github-actions group with 8 updates
...
Bumps the github-actions group with 8 updates:
| Package | From | To |
| --- | --- | --- |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.9.0` | `1.9.2` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.3.0` | `5.4.0` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `7.0.5` | `7.0.6` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.4.3` | `4.6.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.27.5` | `3.28.8` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.7.1` | `3.8.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.10.0` | `6.13.0` |
| [actions/stale](https://github.com/actions/stale ) | `9.0.0` | `9.1.0` |
Updates `google/osv-scanner-action` from 1.9.0 to 1.9.2
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.9.0...v1.9.2 )
Updates `actions/setup-python` from 5.3.0 to 5.4.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](0b93645e9f...42375524e2https://github.com/peter-evans/create-pull-request/releases )
- [Commits](5e914681df...67ccf781d6https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...65c4c4a1ddhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f09c1c0a94...dd746615b3https://github.com/docker/setup-buildx-action/releases )
- [Commits](c47758b77c...6524bf65afhttps://github.com/docker/build-push-action/releases )
- [Commits](48aba3b46d...ca877d9245https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](28ca103628...5bef64f19d
2025-02-01 08:42:17 +00:00
Mihai Maruseac
e11579afba
Add license stanza
2025-01-30 08:22:25 -08:00
Mihai Maruseac
d5e7459e51
Disable creation of issues that don't follow the template
...
This is an attempt to eliminate the spam created by bot accounts
2025-01-29 15:31:18 -08:00
dependabot[bot]
630c8b51d4
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action ) and [docker/build-push-action](https://github.com/docker/build-push-action ).
Updates `github/codeql-action` from 3.27.0 to 3.27.5
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](662472033e...f09c1c0a94https://github.com/docker/build-push-action/releases )
- [Commits](4f58ea7922...48aba3b46d
2024-12-01 08:10:51 +00:00
dependabot[bot]
222a0fc340
Bump the github-actions group with 6 updates
...
Bumps the github-actions group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `4.2.0` | `4.2.2` |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.8.5` | `1.9.0` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.2.0` | `5.3.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.4.0` | `4.4.3` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.26.10` | `3.27.0` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.6.1` | `3.7.1` |
Updates `actions/checkout` from 4.2.0 to 4.2.2
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](d632683dd7...11bd71901bhttps://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.8.5...v1.9.0 )
Updates `actions/setup-python` from 5.2.0 to 5.3.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](f677139bbe...0b93645e9fhttps://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...b4b15b8c7chttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e2b3eafc8d...662472033ehttps://github.com/docker/setup-buildx-action/releases )
- [Commits](988b5a0280...c47758b77c
2024-11-01 08:40:10 +00:00
dependabot[bot]
1ea093377c
Bump the github-actions group with 5 updates
...
Bumps the github-actions group with 5 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `4.1.7` | `4.2.0` |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.8.4` | `1.8.5` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `6.1.0` | `7.0.5` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.26.6` | `3.26.10` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.7.0` | `6.9.0` |
Updates `actions/checkout` from 4.1.7 to 4.2.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](692973e3d9...d632683dd7https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.8.4...v1.8.5 )
Updates `peter-evans/create-pull-request` from 6.1.0 to 7.0.5
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](c5a7806660...5e914681dfhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4dd16135b6...e2b3eafc8dhttps://github.com/docker/build-push-action/releases )
- [Commits](5cd11c3a4c...4f58ea7922
2024-10-01 08:13:39 +00:00
dependabot[bot]
f43de6599e
Bump the github-actions group with 6 updates
...
Bumps the github-actions group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.8.2` | `1.8.4` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.1.1` | `5.2.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.4` | `4.4.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.25.15` | `3.26.6` |
| [docker/login-action](https://github.com/docker/login-action ) | `3.2.0` | `3.3.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.5.0` | `6.7.0` |
Updates `google/osv-scanner-action` from 1.8.2 to 1.8.4
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.8.2...v1.8.4 )
Updates `actions/setup-python` from 5.1.1 to 5.2.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](39cd14951b...f677139bbehttps://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...50769540e7https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](afb54ba388...4dd16135b6https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v3.2.0...9780b0c442fbb1117ed29e0efdff1e18412f7567 )
Updates `docker/build-push-action` from 6.5.0 to 6.7.0
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](5176d81f87...5cd11c3a4c
2024-09-01 08:46:56 +00:00
Quoc Truong
cb035ed30b
Update sigbuild-docker.yml
2024-08-08 10:15:50 -07:00
Quoc Truong
0dded0dd8f
Build and push to Artifact Registry in parallel with gcr.io for weekly build
...
Google Container Registry is getting deprecated in favor of Artifact Registry so we need to migrate the contains over.
This PR builds and pushes to Artifact Registry whenever something is pushed and built to the Container Registry for the weekly build. This will be used to verify that the Artifact Registry works.
2024-08-07 14:17:30 -07:00
TensorFlower Gardener
b21f67bae4
Merge pull request #73240 from tensorflow:quoct-artifact-registry
...
PiperOrigin-RevId: 660451156
2024-08-07 11:39:39 -07:00
Mihai Maruseac
d95b5bf77f
Fix nit on comment alignment
2024-08-06 22:10:23 -07:00
Quoc Truong
740e70cbd5
Build and push to Artifact Registry in parallel with gcr.io so we can verify the workflow
...
Google Container Registry is getting deprecated in favor of Artifact Registry so we need to migrate the contains over.
This CL builds and pushes to Artifact Registry whenever something is pushed and built to the Container Registry. This will be used to verify that the Artifact Registry works.
2024-08-06 14:19:30 -07:00
dependabot[bot]
d2c714691c
Bump the github-actions group with 8 updates
...
Bumps the github-actions group with 8 updates:
| Package | From | To |
| --- | --- | --- |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.8.1` | `1.8.2` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.1.0` | `5.1.1` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.3.3` | `2.4.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.3` | `4.3.4` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.25.11` | `3.25.15` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.3.0` | `3.6.1` |
| [docker/login-action](https://github.com/docker/login-action ) | `3.2.0` | `3.3.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.2.0` | `6.5.0` |
Updates `google/osv-scanner-action` from 1.8.1 to 1.8.2
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.8.1...v1.8.2 )
Updates `actions/setup-python` from 5.1.0 to 5.1.1
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](82c7e631bb...39cd14951bhttps://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](dc50aa9510...62b2cac7edhttps://github.com/actions/upload-artifact/releases )
- [Commits](65462800fd...0b2256b8c0https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b611370bb5...afb54ba388https://github.com/docker/setup-buildx-action/releases )
- [Commits](d70bba72b1...988b5a0280https://github.com/docker/login-action/releases )
- [Commits](0d4c9c5ea7...9780b0c442https://github.com/docker/build-push-action/releases )
- [Commits](15560696de...5176d81f87
2024-08-01 08:20:07 +00:00
tilakrayal
578b5db867
Replace auto assignment list in bot_config.yml
...
Replace auto assignment list
2024-07-15 10:30:54 +05:30
TensorFlower Gardener
dbad52fd80
Merge pull request #70678 from tensorflow:dependabot/github_actions/github-actions-736b04677c
...
PiperOrigin-RevId: 649320514
2024-07-04 00:53:13 -07:00
David Dunleavy
6e39eb7869
Remove obsolete workflows from XLA and TensorFlow
...
PiperOrigin-RevId: 648854692
2024-07-02 15:15:35 -07:00
dependabot[bot]
ead8e4440e
Bump the github-actions group with 2 updates
...
Bumps the github-actions group with 2 updates: [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `google/osv-scanner-action` from 1.7.4 to 1.8.1
- [Release notes](https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.7.4...v1.8.1 )
Updates `github/codeql-action` from 3.25.10 to 3.25.11
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](23acc5c183...b611370bb5
2024-07-01 08:33:14 +00:00
dependabot[bot]
29070f51b6
Bump the github-actions group across 1 directory with 14 updates
...
Bumps the github-actions group with 14 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `3.2.0` | `4.1.7` |
| [actions/github-script](https://github.com/actions/github-script ) | `6.3.3` | `7.0.1` |
| [google/osv-scanner-action](https://github.com/google/osv-scanner-action ) | `1.6.2.pre.beta1` | `1.7.4` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `4.3.1` | `5.1.0` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) | `4.2.3` | `6.1.0` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.3.1` | `2.3.3` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `3.pre.node20` | `4.3.3` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.24.9` | `3.25.10` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `2.2.1` | `3.3.0` |
| [docker/login-action](https://github.com/docker/login-action ) | `2.1.0` | `3.2.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `3.2.0` | `6.2.0` |
| [mshick/add-pr-comment](https://github.com/mshick/add-pr-comment ) | `a65df5f64fc741e91c59b8359a4bc56e57aaf5b1` | `dd126dd8c253650d181ad9538d8b4fa218fc31e8` |
| [actions/stale](https://github.com/actions/stale ) | `7.0.0` | `9.0.0` |
| [zofrex/mirror-branch](https://github.com/zofrex/mirror-branch ) | `1.0.3` | `1.0.4` |
Updates `actions/checkout` from 3.2.0 to 4.1.7
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.2.0...692973e3d937129bcbf40652eb9f2f61becf3332 )
Updates `actions/github-script` from 6.3.3 to 7.0.1
- [Release notes](https://github.com/actions/github-script/releases )
- [Commits](d556feaca3...60a0d83039https://github.com/google/osv-scanner-action/releases )
- [Commits](https://github.com/google/osv-scanner-action/compare/v1.6.2-beta1...v1.7.4 )
Updates `actions/setup-python` from 4.3.1 to 5.1.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](2c3dd9e7e2...82c7e631bbhttps://github.com/peter-evans/create-pull-request/releases )
- [Commits](2b011faafd...c5a7806660https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](0864cf1902...dc50aa9510https://github.com/actions/upload-artifact/releases )
- [Commits](97a0fba137...65462800fdhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b1aada464...23acc5c183https://github.com/docker/setup-buildx-action/releases )
- [Commits](8c0edbc76e...d70bba72b1https://github.com/docker/login-action/releases )
- [Commits](f4ef78c080...0d4c9c5ea7https://github.com/docker/build-push-action/releases )
- [Commits](c56af95754...15560696dehttps://github.com/mshick/add-pr-comment/releases )
- [Commits](a65df5f64f...dd126dd8c2https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](6f05e4244c...28ca103628https://github.com/zofrex/mirror-branch/releases )
- [Commits](a8809f0b42...0be56f4c80
2024-06-26 15:41:19 +00:00
Michael Hudgins
9787ca53df
Add ignore conditions to dependabot docker updates
...
Dependabot is currently suggesting upgrades that can not be auto upgraded, including major versions to operating system and updates to CUDA versions.
Restrict docker file updates to patch by ignoring semvar major and minor updates
2024-06-26 10:32:24 -04:00
A. Unique TensorFlower
1081403fee
Merged commit includes the following changes:
...
646570256 by A. Unique TensorFlower<gardener@tensorflow.org>:
Put back type aliases for some 3p projects until they're migrated off of xla::Status.
--
646567067 by A. Unique TensorFlower<gardener@tensorflow.org>:
[xla:cpu] Optimize KernelThunk alignment checks
--
646562233 by A. Unique TensorFlower<gardener@tensorflow.org>:
Automated rollback of changelist 609005660.
646560125 by A. Unique TensorFlower<gardener@tensorflow.org>:
[XLA:CollectivePipeliner] Add more execution tests (using the HLOs in collective_pipeliner_test.cc).
--
646554714 by A. Unique TensorFlower<gardener@tensorflow.org>:
Instead of copybara rules, use `if_google` to remove extra proto deps
Followup will do the same for TSL
--
646551061 by A. Unique TensorFlower<gardener@tensorflow.org>:
Remove `Array::Reshard`
This CL removes the deprecated `Array::Reshard` API. All existing users have been manually migrated to use `Client::CopyArrays`.
IFRT Proxy is updated such that the client no longer issues `Array::Reshard` and the server emulates the reshard behavior by using `Client::CopyArrays`. Since this does not actually change the wire format, we do not need to update the version number. Once the reshard API passes the compatibility window, we can remove its proto message and handler altogether.
--
646545951 by A. Unique TensorFlower<gardener@tensorflow.org>:
Add license header to `dependabot.yml`
--
646545541 by A. Unique TensorFlower<gardener@tensorflow.org>:
Remove force_synchronous attribute from ParallelMap op in map_parallelization optimizer.
The code reuses the attributes/inputs of the original Map op but just changes it to a ParallelMap op. But the force_synchronous attribute is not supported in ParallelMap and causes log warnings.
The issue was introduced in cl/642418430
--
646534280 by A. Unique TensorFlower<gardener@tensorflow.org>:
Use absl::StatusOr instead of xla::StatusOr.
--
646517068 by A. Unique TensorFlower<gardener@tensorflow.org>:
Add more pattern to HloUnstacker pass + some refactoring.
Added a support for handling slicing fusion pattern:
fusion(stacked_operand, loop_iteration_var), calls=fusion_computation
fusion_computation {
p0 = parameter(0)
p1 = parameter(1)
slice = dynamic_slice(p0, p1, zero, ...)
ROOT bitcast = bitcast(slice)
}
Add "xla_enable_hlo_unstacker" flag to the compiler.
--
646513305 by A. Unique TensorFlower<gardener@tensorflow.org>:
Remove unused deps.
--
646513101 by A. Unique TensorFlower<gardener@tensorflow.org>:
[xla:cpu] Add a fast path for executing thunks sequentially
--
646507520 by A. Unique TensorFlower<gardener@tensorflow.org>:
Added a fingerprint field to PjRtStreamExecutorLoadedExecutable to avoid recalculating fingerprints when FingerprintExecutable() is called. This change significantly reduces idle time before execution when the GPU load tracker enqueues an executable.
--
646505763 by A. Unique TensorFlower<gardener@tensorflow.org>:
Change visibility rules.
--
646505592 by A. Unique TensorFlower<gardener@tensorflow.org>:
[XLA:GPU] Parse block-level parameters from backend config when available.
If block-level parameters are not available, fall back to the SoftMax heuristic.
The original plan was to parse block-level parameters from the config and remove the heuristic, but it turned out that we don't support all "valid" tiling. With this change it will be easier to write tests and verify that we don't have problem, before we could remove the heuristic and fully migrate to fusion backend config.
Also fix strides in ir_emitter_triton.cc. This was not a problem before, because SoftMax heuristic only produces tiles that are contiguous in memory.
--
646505352 by A. Unique TensorFlower<gardener@tensorflow.org>:
[xla:cpu] Add dynamic-update-slice fusion optimization to IrEmitter2
+ enable select-and-scatter test that used to time out without DUS optimization
--
646504512 by A. Unique TensorFlower<gardener@tensorflow.org>:
PR #62472 : Hash Pin docker images
Imported from GitHub PR https://github.com/tensorflow/tensorflow/pull/62472
Also related to https://github.com/tensorflow/tensorflow/pull/62471 , would you consider hash pin the docker images?
The security benefit of doing so is that it mitigates the risk of typosquatting attacks since the images are public. If there is a need for them to be updated regularly, I can also submit a .github/dependabot file to update the docker images regularly (weekly or monthly for example).
Besides, AFAIUC, the dockerfiles are used for build and tests, which lead to another benefit of hash pinning: reliability and stability.
Let me know your thoughts about i.
Thanks!
Copybara import of the project:
--
8f4589fe583518d3099c98215e5e6bf3858fa24e by Joyce Brum <joycebrum@google.com>:
feat: create dependabot
Signed-off-by: Joyce Brum <joycebrum@google.com>
Merging this change closes #62472
--
PiperOrigin-RevId: 646570256
2024-06-25 19:52:04 +00:00
David Dunleavy
25099d1867
Use newer version of scorecards-analysis for XLA and TensorFlow
...
PiperOrigin-RevId: 644514423
2024-06-18 16:15:34 -07:00
tilakrayal
63a0146c62
Update bot_config.yml
2024-06-03 10:25:57 +05:30
A. Unique TensorFlower
87a99438f8
Create and use 2.17 toolchains in Docker build containers.
...
PiperOrigin-RevId: 623491147
2024-04-10 08:40:34 -07:00
Michael Hudgins
5a1f6733ac
Remove angerson from workflow reviewers
...
PiperOrigin-RevId: 618879841
2024-03-25 10:39:48 -07:00
Andrew Goodbody
7ca94e74d8
[ARM_CI:Linaro] Add Python 3.12 to build list in Actions
2024-03-05 10:24:16 +00:00
Andrew Goodbody
4d4de8a5c5
[Linaro:ARM_CI] Update checkout action
...
The checkout action previously in use depends on node.js 16 which
is now deprecated so update the action to one that depends on
node.js 20
2024-02-07 17:41:21 +00:00
A. Unique TensorFlower
ae626ad009
Update osv-scanner repository.
...
PiperOrigin-RevId: 604662729
2024-02-06 09:09:49 -08:00
David Dunleavy
8340931506
Update sigbuild-r2.16-clang to use Python 3.11 instead of Python 3.9
...
PiperOrigin-RevId: 603452472
2024-02-01 12:50:28 -08:00
Michael Hudgins
4b6e7c736d
Remove ARM CI from PR Trigger
...
Remove the arm ci trigger from arm-ci.yml in favor of the newer arm64 presubmit.
2023-12-11 16:31:34 -05:00
TensorFlower Gardener
cfabb0d185
Merge pull request #62405 from elfringham:no_fork_osv_scan
...
PiperOrigin-RevId: 586191543
2023-11-28 21:16:23 -08:00
Joyce
26b4d8f8b5
Feat: hash pin actions using Step Security
...
Signed-off-by: Joyce <joycebrum@google.com>
2023-11-23 17:04:38 -03:00
Andrew Goodbody
0116f16330
Prevent OSV scanner running in forks
...
The OSV scanner just fails anyway, so stop it running in
forks to stop the failures being logged and emailed.
2023-11-15 10:11:22 +00:00
A. Unique TensorFlower
2f09461a11
Add osv-scanner Github workflow that runs every Monday.
...
This workflow scans lockfiles and checks that there are no old and vulnerable dependencies
PiperOrigin-RevId: 576884675
2023-10-26 08:48:42 -07:00
A. Unique TensorFlower
8ea8e69e25
Create and use 2.16 toolchains in Docker build containers.
...
PiperOrigin-RevId: 576310310
2023-10-24 15:57:14 -07:00
A. Unique TensorFlower
a9e19d0de0
Add a 3.12 Docker container.
...
PiperOrigin-RevId: 575881215
2023-10-23 11:43:43 -07:00
Shivam Mishra
5d64ceeb28
Add github user 'venkat6871' into auto assignment list.
2023-10-17 17:18:07 +05:30
Shivam Mishra
34cbb8feb3
Remove user 'Varsha-anjanappa' from auto-assignment list.
2023-10-16 14:17:20 +05:30
