actions/setup-php
1
0
Fork 0
mirror of https://github.com/shivammathur/setup-php.git synced 2026-06-14 04:47:30 +07:00
Code Issues Packages Projects Releases Wiki Activity
1,699 Commits 8 Branches 149 Tags
95edd725578a37c79fe92b7a25c62d108b9d583f
Commit Graph

46 Commits

Author SHA1 Message Date
dependabot[bot] 95edd72557 Bump the github-actions group with 3 updates (#1087) 
Bumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [github/codeql-action](https://github.com/github/codeql-action) and [codecov/codecov-action](https://github.com/codecov/codecov-action).


Updates `actions/checkout` from 6.0.2 to 6.0.3
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/de0fac2e4500dabe0009e67214ff5f5447ce83dd...df4cb1c069e1874edd31b4311f1884172cec0e10)

Updates `github/codeql-action` from 4.36.0 to 4.36.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/7211b7c8077ea37d8641b6271f6a365a22a5fbfa...8aad20d150bbac5944a9f9d289da16a4b0d87c1e)

Updates `codecov/codecov-action` from 6.0.1 to 7.0.0
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/e79a6962e0d4c0c17b229090214935d2e33f8354...fb8b3582c8e4def4969c97caa2f19720cb33a72f)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.36.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-06-13 18:06:26 +05:30
Shivam Mathur deb2299a77 Harden GitHub Actions workflows 2026-05-18 00:56:40 +05:30
Shivam Mathur a33066c001 Merge pull request #1065 from shivammathur/dependabot/github_actions/develop/actions/download-artifact-8 
Bump actions/download-artifact from 7 to 8
 2026-03-09 17:10:54 +05:30
dependabot[bot] e167f5c259 Bump actions/upload-artifact from 6 to 7 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 6 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-09 11:18:10 +00:00
dependabot[bot] 45158d762a Bump actions/download-artifact from 7 to 8 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 7 to 8.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-09 11:18:07 +00:00
Shivam Mathur f72fc99524 Merge pull request #1045 from shivammathur/dependabot/github_actions/develop/actions/download-artifact-7 
Bump actions/download-artifact from 6 to 7
 2025-12-15 15:54:23 +05:30
dependabot[bot] c14319add5 Bump actions/upload-artifact from 5 to 6 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 5 to 6.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-12-15 10:02:24 +00:00
dependabot[bot] 8bd624e171 Bump actions/download-artifact from 6 to 7 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 6 to 7.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-12-15 10:02:16 +00:00
dependabot[bot] aaed46225e Bump actions/checkout from 5 to 6 
Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-11-24 11:06:15 +00:00
Shivam Mathur 74d4e20179 Merge pull request #1018 from shivammathur/dependabot/github_actions/develop/actions/download-artifact-6 
Bump actions/download-artifact from 5 to 6
 2025-10-27 19:25:54 +05:30
dependabot[bot] 5187d97121 Bump actions/download-artifact from 5 to 6 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 5 to 6.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-27 12:47:32 +00:00
dependabot[bot] eec99716ef Bump actions/upload-artifact from 4 to 5 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-27 11:01:07 +00:00
Shivam Mathur 4cba65b8c5 Improve workflows 2025-09-25 22:11:11 +05:30
Shivam Mathur 7fea117d1c Add support for PHP 8.6.0-dev 2025-09-25 20:38:18 +05:30
dependabot[bot] 629475b7b3 Bump actions/checkout from 4 to 5 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-18 16:21:04 +00:00
dependabot[bot] 259d177178 Bump actions/download-artifact from 4 to 5 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 5.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-11 14:51:06 +00:00
jrfnl c9735bcc02 GH Actions: don't run cron jobs on forks 
While workflows are disabled by default in forks, it is quite common for contributors to enable them to verify CI will pass before submitting a pull request.

When enabling workflow runs in forks, it's "all or nothing".
This means that:
* All workflows which are only intended to be run on the canonical repo will also be enabled.
    These workflows will also often need access to repo-specific secrets and will typically fail when run from a fork.
* Workflows which contain cron jobs will also be enabled.
    Depending on the type of account the contributor has, this can burn through their "CI minutes".

This commit is based on a review of workflows containing cron jobs and disables running the jobs when a cron job is triggered in a fork.
 2025-08-04 16:23:49 +02:00
Shivam Mathur cf4cade272 Drop support for ubuntu-20.04 [skip ci] 2025-04-14 07:25:31 +05:30
alexmerlin fb9c2a9f77 Fixed typo in GitHub workflows docs.yml 
Signed-off-by: alexmerlin <alex@dotkernel.com>
 2024-12-02 11:04:50 +02:00
Shivam Mathur 981ce2a75a Do not add composer in docs workflow 2024-12-01 07:14:07 +05:30
Shivam Mathur edf0223f7d Add extension type in docs workflow 2024-12-01 06:00:17 +05:30
Shivam Mathur 58a6e6fb4b Add PHP 8.5 to the workflows 2024-11-04 09:55:55 +05:30
Shivam Mathur bf9d25532d Improve docs workflow 2024-11-04 09:55:00 +05:30
Shivam Mathur cf36231a82 Remove macos-12 from docs workflow [skip ci] 2024-10-21 06:20:59 +05:30
Shivam Mathur d6560b1fbb Document and test support for ubuntu-24.04 2024-05-17 19:19:10 +05:30
Shivam Mathur 5a2bd88cb3 Try to fix docs workflow 2023-12-24 02:12:22 +05:30
Shivam Mathur 7ba520ae30 Merge pull request #804 from shivammathur/dependabot/github_actions/develop/actions/download-artifact-4 
Bump actions/download-artifact from 3 to 4
 2023-12-18 16:53:51 +05:30
dependabot[bot] 6e825ca69e Bump actions/upload-artifact from 3 to 4 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-18 10:33:19 +00:00
dependabot[bot] 7b1eaadfbb Bump actions/download-artifact from 3 to 4 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3 to 4.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-18 10:33:16 +00:00
Shivam Mathur e6d44f159a Add PHP 8.4 to wiki extension pages 2023-11-23 12:12:26 +05:30
Shivam Mathur dc513528da Update os in docs workflow 2023-11-23 11:57:50 +05:30
jrfnl 3c525df325 GH Actions/docs workflow: generate extensions page for PHP 8.3 2023-11-23 03:19:38 +01:00
Shivam Mathur 6207829361 Update use of actions/checkout to v4 2023-09-14 02:51:47 +05:30
Shivam Mathur 1474d67903 Drop support for ubuntu-18.04 2023-04-03 10:11:53 +05:30
nathannaveen 787285e08a chore: Set permissions for GitHub actions 
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: nathannaveen <42319948+nathannaveen@users.noreply.github.com>
 2022-05-26 00:50:23 +00:00
Shivam Mathur 6cba851606 Add support for Ubuntu 22.04 2022-05-06 05:43:20 +05:30
jrfnl ddf8825c2f GH Actions: version update for various predefined actions 
A number of predefined actions have had major release, which warrant an update the workflow(s).

These updates don't actually contain any changed functionality, they are mostly just a change of the Node version used by the action itself (from Node 14 to Node 16).

Refs:
* https://github.com/actions/download-artifact/releases
* https://github.com/actions/upload-artifact/releases
 2022-03-05 16:11:15 +01:00
Shivam Mathur 4678e809c3 Bump actions/checkout to v3 2022-03-02 06:00:52 +05:30
Shivam Mathur 44ff4ed92d Refactor workflows and templates 2022-01-29 07:29:03 +05:30
Shivam Mathur 9ca9ab33ef Update docs workflow 2022-01-20 22:03:33 +05:30
Shivam Mathur 6473b1c04c Add 8.2 to the workflows 2021-09-02 00:18:50 +05:30
Shivam Mathur b717b2fcde Rename macos-11.0 to macos-11 2021-08-18 09:52:47 +05:30
Shivam Mathur 947009a717 Sunset support for Ubuntu 16.04 2021-08-02 23:10:43 +05:30
Shivam Mathur 113fcc64e3 Fix docs workflow 
Do not run docs workflow on macos-11.0

Run docs workflow on saturday
 2021-03-03 09:16:13 +05:30
Shivam Mathur 5a15252e66 Fix docs workflow 2020-12-01 08:48:41 +05:30
Shivam Mathur 68fbd80105 Add workflow to add default extensions on wiki 2020-11-02 04:47:28 +05:30