dependabot[bot]
d0f22b6e3f
Bump github/codeql-action from 4.35.2 to 4.35.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.2 to 4.35.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](95e58e9a2c...68bde559desupport@github.com >
2026-05-12 02:40:41 +00:00
trinity-1686a
09667ee9c8
Merge pull request #2909 from osyniakov/claude/add-ossf-scorecard-1z6Vn
...
Add OpenSSF Scorecard workflow
2026-04-28 11:57:36 +02:00
Oleksii Syniakov
60a39a4689
Merge branch 'main' into claude/fix-issues-5945-5937-eQm1Q
2026-04-28 10:28:23 +02:00
Oleksii Syniakov
f8f3e4277f
remove not neeeded permissions for the public repo
2026-04-28 10:09:30 +02:00
Oleksii Syniakov
ff1433713a
bump upload-sarif -> 4.35.2
...
Co-authored-by: trinity-1686a <trinity.pointard@gmail.com >
2026-04-28 10:07:45 +02:00
dependabot[bot]
ae0ab907fe
Bump actions/checkout from 4 to 6 ( #2875 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v6 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-25 14:15:27 +02:00
dependabot[bot]
7d62e084e7
Bump codecov/codecov-action from 3 to 6 ( #2876 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 3 to 6.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v3...v6 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-25 14:14:54 +02:00
Claude
a5d297c75f
Add OpenSSF Scorecard workflow
...
Runs weekly security analysis and uploads SARIF results to GitHub code
scanning. Third-party actions are pinned by commit SHA. Adds the Scorecard
badge to the README.
Based on quickwit-oss/quickwit#5969 .
2026-04-24 06:56:58 +00:00
Claude
3a6a3de8d7
ci: update pinned Action SHAs to current latest versions
...
The previous commit pinned actions to commit SHAs but used stale
version tags (v4.2.2, v2.7.5, old nextest/cargo-llvm-cov refs).
Update to the actual current HEAD of each pinned tag:
actions/checkout v4.2.2 → v4.3.1 (34e114876b0b...)
Swatinem/rust-cache v2.7.5 → v2.9.1 (c19371144df3...)
taiki-e/install-action nextest (56cc9adf3a3e...)
taiki-e/install-action cargo-llvm-cov (e4b3a0453201...)
actions-rs/toolchain, actions-rs/clippy-check, and
codecov/codecov-action SHAs were already correct.
https://claude.ai/code/session_01VD7Bo8upj3cQwWDf9ni2Ln
2026-04-16 06:49:47 +00:00
Claude
af3c6c0070
ci: pin GitHub Actions to full commit SHAs and restrict token permissions
...
Fixes two supply chain / token security issues:
- Pin all third-party Actions to immutable full commit SHAs instead of
mutable version tags (addresses unpinned-dependencies risk, analogous
to quickwit-oss/quickwit#5937 ):
actions/checkout v4.2.2
actions-rs/toolchain v1.0.7
Swatinem/rust-cache v2.7.5
taiki-e/install-action nextest / cargo-llvm-cov
actions-rs/clippy-check v1.0.7
codecov/codecov-action v3.1.6
- Add explicit least-privilege `permissions` blocks at workflow and job
level (addresses excessive GITHUB_TOKEN permissions, analogous to
quickwit-oss/quickwit#5945 ):
default: contents: read
check job: also grants checks: write (required by clippy-check)
https://claude.ai/code/session_01VD7Bo8upj3cQwWDf9ni2Ln
2026-04-15 20:55:43 +00:00
trinity Pointard
cf9800f981
add dependabot cooldown
2026-03-30 11:36:04 +02:00
Paul Masurel
77505c3d03
Making stemming optional. ( #2791 )
...
Fixed code and CI to run on no default features.
Co-authored-by: Paul Masurel <paul.masurel@datadoghq.com >
2026-01-02 12:40:42 +01:00
PSeitz-dd
e9020d17d4
fix coverage ( #2769 )
2025-12-11 11:35:58 +01:00
PSeitz
232f37126e
fix coverage ( #2448 )
2024-07-05 12:04:18 +08:00
PSeitz
1417eaf3a7
fix coverage ( #2368 )
2024-04-22 12:23:15 +02:00
PSeitz
7e1980b218
run coverage only after merge ( #2212 )
...
* run coverage only after merge
coverage is a quite slow step in CI. It can be run only after merging
* Apply suggestions from code review
Co-authored-by: Paul Masurel <paul@quickwit.io >
---------
Co-authored-by: Paul Masurel <paul@quickwit.io >
2023-10-18 07:19:36 +02:00
PSeitz
34920d31f5
Fix DateHistogram bucket gap ( #2183 )
...
* Fix DateHistogram bucket gap
Fixes a computation issue of the number of buckets needed in the
DateHistogram.
This is due to a missing normalization from request values (ms) to fast field
values (ns), when converting an intermediate result to the final result.
This results in a wrong computation by a factor 1_000_000.
The Histogram normalizes values to nanoseconds, to make the user input like
extended_bounds (ms precision) and the values from the fast field (ns precision for date type) compatible.
This normalization happens only for date type fields, as other field types don't have precision settings.
The normalization does not happen due a missing `column_type`, which is not
correctly passed after merging an empty aggregation (which does not have a `column_type` set), with a regular aggregation.
Another related issue is an empty aggregation, which will not have
`column_type` set, will not convert the result to human readable format.
This PR fixes the issue by:
- Limit the allowed field types of DateHistogram to DateType
- Instead of passing the column_type, which is only available on the segment level, we flag the aggregation as `is_date_agg`.
- Fix the merge logic
Add a flag to to normalization only once. This is not an issue
currently, but it could become easily one.
closes https://github.com/quickwit-oss/quickwit/issues/3837
* use older nightly for time crate (breaks build)
2023-09-21 10:41:35 +02:00
dependabot[bot]
03fcdce016
Bump actions/checkout from 3 to 4 ( #2171 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-11 10:47:33 +02:00
Adam Reichold
820f126075
Remove support for Brotli and Snappy compression ( #2123 )
...
LZ4 provides fast and simple compression whereas Zstd is exceptionally flexible
so that the additional support for Brotli and Snappy does not really add
any distinct functionality on top of those two algorithms.
Removing them reduces our maintenance burden and reduces the number of choices
users have to make when setting up their project based on Tantivy.
2023-07-14 16:54:59 +09:00
Paul Masurel
184a9daa8a
Cancels concurrently running actions for the same PR. ( #2067 )
2023-06-01 12:57:38 +09:00
Antoine Gauthier
b60b7d2afe
fix(CI) enable coverage on doctest ( #1839 )
...
* fix(CI) enable coverage on doctest
⚠️ Marked as [unstable](https://github.com/taiki-e/cargo-llvm-cov/issues/2 )
refs #1761
* remove obsolete CI directory
2023-02-14 16:42:44 +09:00
Adam Reichold
a4b759d2fe
Include stop word lists from Lucene and the Snowball project ( #1666 )
2022-11-09 16:57:35 +09:00
Paul Masurel
03e4630cd8
Mark the CI as successful regardless of whether uploading to Coverall fails.
2022-08-26 07:35:29 +02:00
Adam Reichold
11a4d97cf5
Use a job matrix to further split and deduplicate the test CI job.
2022-08-24 10:27:57 +02:00
Adam Reichold
1c3d39677a
Split checking and testing to a bit more parallelism in the CI.
2022-08-24 10:27:57 +02:00
Adam Reichold
2ae383e452
Cache dependencies in CI to speed up build times. ( #1469 )
...
* Cache dependencies in CI to speed up build times.
* Give cargo-nextest a try.
2022-08-24 06:27:29 +09:00
Pascal Seitz
431b5a091e
remove test trigger
2022-07-05 10:32:33 +08:00
Pascal Seitz
e31e78f39f
fix workflow action
2022-07-04 14:04:49 +08:00
Pascal Seitz
d278417300
move build step down
2022-07-04 13:22:04 +08:00
Pascal Seitz
d89a8dd118
set rust version
2022-07-04 13:15:32 +08:00
Kryesh
c95013b11e
Add zstd-compression feature to github workflow tests
2022-05-19 22:15:18 +10:00
PSeitz
8a8a048015
fix coverage ( #1335 )
2022-04-13 13:47:47 +09:00
dependabot[bot]
c72549cb9a
Bump codecov/codecov-action from 2 to 3 ( #1328 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 2 to 3.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-11 21:26:52 +09:00
dependabot[bot]
d31f045872
Bump actions/checkout from 2 to 3 ( #1300 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-03-07 11:54:26 +09:00
Paul Masurel
2ead010c83
Tantivy quickwit ( #1293 )
...
* Added sstable and enabling it by default, and parallel boolean query.
* Added async API for FileSlice.
* Added async get_doc
* Reduce blocksize to 32_000
* Added debug logs
Quickwit specific feature a hidden behind the quickwit feature flag.
2022-02-25 17:32:49 +09:00
Paul Masurel
e6653228a9
Renamed github workflows ( #1269 )
2022-02-04 15:10:24 +09:00
Paul Masurel
0d8263cba1
Using nightly to format
2022-01-31 16:10:11 +09:00
Paul Masurel
9e66c75fc6
Using stable in CI as rustc nightly seems broken
2021-12-10 18:45:23 +09:00
Kanji Yomoda
09668459c8
Update codecov-action to v2 and make it possible to keep it up-to-date with dependabot ( #1181 )
...
* Update codecov-action to v2
* Add github-actions to dependabot
2021-10-25 10:58:16 +09:00
PSeitz
319609e9c1
test cargo-llvm-cov ( #1149 )
2021-09-03 22:00:43 +09:00
Pascal Seitz
022ab9d298
don't run as pr
2021-08-02 15:44:00 +01:00
Pascal Seitz
605e8603dc
add positions to long running test
2021-08-02 15:29:49 +01:00
Pascal Seitz
70f160b329
add long running test in ci
2021-08-02 11:35:39 +01:00
PSeitz
6d265e6bed
fix gh action name
2021-08-02 10:38:01 +01:00
PSeitz
92f20bc5a2
use nightly image in coverage
2021-07-03 09:38:44 +02:00
PSeitz
57f931da3c
Create coverage.yml
2021-07-03 09:35:07 +02:00
Pascal Seitz
060b83159a
use nightly for tests
2021-06-15 10:08:49 +02:00
Pascal Seitz
a40ff35453
test all features
2021-06-15 09:31:39 +02:00
PSeitz
5209238c1b
use github actions for tests
2021-06-14 12:51:46 +02:00
dependabot-preview[bot]
bbeac5888c
Upgrade to GitHub-native Dependabot
2021-04-29 15:02:36 +00:00
