v1.4.3

What's Changed

• .sync/Files.yml: Sync auto approver workflow @makubacki (#81)
  
  Change Details

    Adds the auto approval workflow to the file sync list.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• .sync/dependabot: Remove team reviewers @makubacki (#79)
  
  Change Details

    Removes the microsoft/project-mu-dependency-reviewers team from reviews to reduce messages with the automated workflow.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

Full Changelog: v1.4.2...v1.4.3

v1.4.2

What's Changed

• Split approval and merge workflows @makubacki (#76)
  
  Change Details

    Split approval and merge workflows

  Splitting the workflows provides several benefits:

  1. Simplifies logic due to jobs being attached to separate triggers
     relevant for the specific job.
  2. Reduces number of status checks shown in PRs due to certain steps
     being skipped in irrelevant circumstances.
  3. Allows better workflow reuse.

  The reviewers are also dropped from dependabot PRs since the pending
  team reviewer is (1) not acted upon (2) can delay PR merging if the
  reviewer team has not reviewed the PR.

  The version is updated in anticipation of this change. It will be
  modified if the expected version changes before this PR is merged.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• GitHub Action: Bump release-drafter/release-drafter from 5.21.1 to 5.22.0 @dependabot (#77)
  
  Change Details

    Bumps [release-drafter/release-drafter](https://github.com/release-drafter/release-drafter) from 5.21.1 to 5.22.0.

  Release notes

  Sourced from release-drafter/release-drafter's releases.

  v5.22.0

  What's Changed

  New

  • Only use last full release when drafting (#1240) @​ssbarnea

  Full Changelog: release-drafter/release-drafter@v5.21.1...v5.22.0

  Commits

  • cfc5540 v5.22.0
  • 7ef15e2 Only use last full release when drafting (#1240)
  • See full diff in compare view

  
  

  

  Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

  ---

  Dependabot commands and options

  
  

  You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

  ---

Full Changelog: v1.4.1...v1.4.2

v1.4.1

What's Changed

• GitHub Action: Bump actions/stale from 6 to 7 @dependabot (#71)
  
  Change Details

    Bumps [actions/stale](https://github.com/actions/stale) from 6 to 7.

  Release notes

  Sourced from actions/stale's releases.

  v7.0.0

  ⚠️ This version contains breaking changes ⚠️

  What's Changed

  • Allow daysBeforeStale options to be float by @​irega in actions/stale#841
  • Use cache in check-dist.yml by @​jongwooo in actions/stale#876
  • fix print outputs step in existing workflows by @​irega in actions/stale#859
  • Update issue and PR templates, add/delete workflow files by @​IvanZosimov in actions/stale#880
  • Update how stale handles exempt items by @​johnsudol in actions/stale#874

  Breaking Changes

  • In this release we prevent this action from managing the stale label on items included in exempt-issue-labels and exempt-pr-labels
  • We decided that this is outside of the scope of this action, and to be left up to the maintainer

  New Contributors

  • @​irega made their first contribution in actions/stale#841
  • @​jongwooo made their first contribution in actions/stale#876
  • @​IvanZosimov made their first contribution in actions/stale#880
  • @​johnsudol made their first contribution in actions/stale#874

  Full Changelog: actions/stale@v6...v7.0.0

  v6.0.1

  Update @​actions/core to 1.10.0 #839

  Full Changelog: actions/stale@v6.0.0...v6.0.1

  Changelog

  Sourced from actions/stale's changelog.

  Changelog

  [7.0.0]

  ⚠️ Breaking change ⚠️

  • Allow daysBeforeStale options to be float by @​irega in actions/stale#841
  • Use cache in check-dist.yml by @​jongwooo in actions/stale#876
  • fix print outputs step in existing workflows by @​irega in actions/stale#859
  • Update issue and PR templates, add/delete workflow files by @​IvanZosimov in actions/stale#880
  • Update how stale handles exempt items by @​johnsudol in actions/stale#874

  [6.0.1]

  Update @​actions/core to v1.10.0 (#839)

  [6.0.0]

  ⚠️ Breaking change ⚠️

  Issues/PRs default close-issue-reason is now not_planned(#789)

  [5.1.0]

  Don't process stale issues right after they're marked stale [Add close-issue-reason option]#764#772 Various dependabot/dependency updates

  4.1.0 (2021-07-14)

  Features

  • Ability to exempt draft PRs

  4.0.0 (2021-07-14)

  Features

  • options: simplify config by removing skip stale message options (#457) (6ec637d), closes #405 #455
  • output: print output parameters (#458) (3e6d35b)

  Bug Fixes

  • dry-run: forbid mutations in dry-run (#500) (f1017f3), closes #499
  • logs: coloured logs (#465) (5fbbfba)
  • operations: fail fast the current batch to respect the operations limit (#474) (5f6f311), closes #466
  • label comparison: make label comparison case insensitive #517, closes #516
  • filtering comments by actor could have strange behavior: "stale" comments are now detected based on if the message is the stale message not who made the comment(#519), fixes #441, #509, #518

  Breaking Changes

  ... (truncated)

  Commits

  • 6f05e42 draft release for v7.0.0 (#888)
  • eed91cb Update how stale handles exempt items (#874)
  • 10dc265 Merge pull request #880 from akv-platform/update-stale-repo
  • 9c1eb3f Update .md files and allign build-test.yml with the current test.yml
  • bc357bd Update .github/workflows/release-new-action-version.yml
  • 690ede5 Update .github/ISSUE_TEMPLATE/bug_report.md
  • afbcab...

v1.4.0

What's Changed

• GitHub Action: Bump stefanbuck/github-issue-parser from 2 to 3 [Rebase \& FF] @dependabot (#69)
  
  Change Details

    Bumps [stefanbuck/github-issue-parser](https://github.com/stefanbuck/github-issue-parser) from 2 to 3.

  Release notes

  Sourced from stefanbuck/github-issue-parser's releases.

  v3.0.0

  3.0.0 (2022-10-19)

  Bug Fixes

  • deps: bump @​actions/core from 1.9.1 to 1.10.0 (284e5eb)
  • Ensure releases can be pinned to SHAs #23 (#39) (428eec3)

  Features

  • mitigating script injection attacks by passing issue body as env var (#42) (0b27d4a)

  BREAKING CHANGES

  • Add issue-body argument which is required from v3 onwards

  To mitigate script injection attacks, github-issue-parser v3 will require workflow authors to pass the issue body as an argument. By doing so you will follow GitHub's Good practices for mitigating script injection attacks

  - uses: stefanbuck/github-issue-parser@v3
    id: issue-parser
    with:
      issue-body: ${{ github.event.issue.body }} # required
      template-path: .github/ISSUE_TEMPLATE/bug-report.yml # optional but recommended

  • New checkboxes parsing (#21) (1d341cb)

  The previous checkbox output produced this:

   {
      "laravel": true,
      "svelte": true,
   }

  whereas the new output will be an array like this

  {
      "fav_frameworks": ["Laravel", "Svelte"]
  }

  ... (truncated)

  Commits

  • 2e4d854 build
  • 55281d1 build(deps-dev): bump jest from 29.2.2 to 29.3.1
  • 3c9c1c3 build(deps-dev): bump jest from 29.1.2 to 29.2.2 (#49)
  • 741688b feat: add issue-body default (#47)
  • de423fc docs: Add migration section
  • 0b27d4a feat: mitigating script injection attacks by passing issue body as env var (#42)
  • 1d341cb feat: parse checkboxes (#21)
  • 284e5eb fix(deps): bump @​actions/core from 1.9.1 to 1.10.0
  • See full diff in compare view

  
  

  

  Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

  ---

  Dependabot commands and options

  
  

  You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

  ---

🚀 Features & ✨ Enhancements

• Add auto approval for auto merge @makubacki (#68)
  
  Change Details

    The auto merge process needs two reviews to meet Project Mu branch protection policy requirements. This change auto approves dependency update pull requests so they can be auto merged.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

Full Changelog: v1.3.1...v1.4.0

v1.3.1

What's Changed

• .sync/workflows: Add file sync notice to some files @makubacki (#67)
  
  Change Details

    These files were added without the notice in the copyright area that states the files should be updated in mu_devops.

  This change adds the notice.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• .sync: Set recent workflows to a fixed version of mu\_devops @makubacki (#66)
  
  Change Details

    When some workflows were added recently, the reusable workflow file that the leaf files depend on in mu_devops did not exist yet.

  Therefore, those leaf files depended on the main branch instead
  of a mu_devops release tag as the files would be in the main
  branch as soon as the PR was merged.

  Now that all of the reusable workflows are in a tagged release
  (as of the v1.3.0 release), this change sets them to a fixed version
  of Mu DevOps as well.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• .sync/Version.njk: Update Mu repos to Mu DevOps v1.3.0 @makubacki (#65)
  
  Change Details

    Changes since last release: https://github.com/microsoft/mu_devops/compare/v1.1.1...v1.3.0

  General release info:
  https://github.com/microsoft/mu_devops/releases

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

📖 Documentation Updates

• Add pull-request best practices guide @Erich-McMillan (#70)
  
  Change Details

    # Description

  Adds pull request best practices to CONTRIBUTING.md and references this document + pull request best practices in the pull_request_template.md so all contributors are confronted with this guide before they open a pull request rather than afterward by the bot.

  TODO:

  • ensure the relative path to CONTRIBUTING.md in pull_request_template.md is correct since dependent repos have different layout

  ---

Full Changelog: v1.3.0...v1.3.1

v1.3.0

What's Changed

🚀 Features & ✨ Enhancements

• Add reusable Auto Merge workflow @makubacki (#60)
  
  Change Details

    Adds a new workflow that automatically merges pull requests in Project Mu repos under certain conditions.

  As automated bots pick up mundane tasks like syncing PIP module
  updates, submodules, files, and so on, an increasing number of
  pull requests can accumulate that essentially update dependencies
  we expect to be updated over time. In most cases, we simply care
  that the new update passes CI checks.

  This workflow is currently configured to automerge dependabot and
  uefibot pull requests.

  Files added:

  • .github/workflows/AutoMerger.yml - Reusable workflow to auto
    merge pull requests that meet given criteria.
  • .sync/workflows/leaf/auto-merge.yml - Leaf workflow file to
    auto merge pull requests in a given repo.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• Add Issue Triage workflow @makubacki (#55)
  
  Change Details

    Closes #54

  Adds a new workflow and accompanying configuration files that
  apply labels to new issues based on options chosen by the submitter
  in an issue form.

  • .github/IssueTriager.yml - Single reusable workflow to apply
    labels to issues based on user input in issue forms.
  • .sync/workflows/config/triage-issues/advanced-issue-labeler.yml -
    Configures how labels are applied to issues based on issue form
    input.
  • .sync/workflows/leaf/triage-issues.yml - A leaf workflow that can
    be synced to repos to trigger the reusable workflow in Mu DevOps.

  This change also enables file syncing of this action to all repos
  that issue forms are currently being synced to.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

Full Changelog: v1.2.0...v1.3.0

v1.2.0

What's Changed

🚀 Features & ✨ Enhancements

• Add container logic for matrix builds and enable containers for others @cfernald (#59)
  
  Change Details

    - Add logic to use container build for GCC matrix dependent builds - Enable container build on all GCC CI pipelines - Add devcontainer file to file sync

  Depends on:
  microsoft/mu_basecore#199
  microsoft/mu_common_intel_min_platform#80
  microsoft/mu_plus#118
  microsoft/mu_silicon_arm_tiano#32
  microsoft/mu_silicon_intel_tiano#29
  microsoft/mu_tiano_plus#67
  

  
  

  ---

  
  

🐛 Bug Fixes

• Fix incorrect changes to mu\_feature\_config custom Ubuntu-GCC5 pipeline @cfernald (#61)
  
  Change Details

    Fixes an incorrect change that resulted in an invalid pipeline file.

  ---

Full Changelog: v1.1.2...v1.2.0

v1.1.2

What's Changed

• InstallMarkdownLint.yml: Update to markdownlint-cli 0.31.1 @makubacki (#15)
  
  Change Details

    Updates to the latest markdownlint-cli to stay current. 0.31.1 was released on 2/9/2022 per the version history:

  https://www.npmjs.com/package/markdownlint-cli

  Note: 0.32 introduces new failures in some repos that would need to be
  addressed before moving to 0.32.x. 0.32.2 was specifically tested.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

• .sync/Version.njk: Update Mu repos to Mu DevOps v1.1.1 @makubacki (#53)
  
  Change Details

    Changes since last release: https://github.com/microsoft/mu_devops/compare/v0.1.0...v1.1.1

  General release info:
  https://github.com/microsoft/mu_devops/releases

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

🐛 Bug Fixes

• .sync/azure-pipelines: Swap CLANGPDB VM image name @makubacki (#56)
  
  Change Details

    After this change: - `Ubuntu-CLANGPDB.yml` - Uses: `tool-chain-clangpdb-ubuntu-vm-image` - `Windows-CLANGPDB.yml` - Uses: `tool-chain-clangpdb-windows-vm-image`

  These were previously reversed.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

Full Changelog: v1.1.1...v1.1.2

v1.1.1

What's Changed

🐛 Bug Fixes

• label-issues: Invert functional impact label logic @makubacki (#48)
  
  Change Details

    Fixes #47

  The checkbox exposed to contributors in a PR to determine whether
  the PR has a functional impact states:

  "Impacts functionality?"

  This uses positive logic to simplify understanding by the user.

  Currently the impact:non-functional label is applied if the
  checkbox is checked.

  This change inverts the logic to apply the label as expected.

  Signed-off-by: Michael Kubacki michael.kubacki@microsoft.com
  

  
  

  ---

  
  

Full Changelog: v1.1.0...v1.1.1

v1.1.0

What's Changed

🚀 Features & ✨ Enhancements

• Add Semantic Versioning Release workflow [Rebase \& FF] @makubacki (#49)
  
  Change Details

    Closes #50

  Adds a new workflow and accompanying configuration files that allow
  releases to automatically be drafted in repos as pull requests are
  completed.

  Semantic versioning is automatically determined based on the standard
  set of Project Mu labels associated with the pull request.

  The types of changes (e.g. bug fix, new feature, etc.) are
  automatically categorized in the pull request based on the labels as
  well.

  This makes tracking the new Semantic Version based on the type of
  changes automatic and a release is always ready. In between releases,
  the draft is a nice way to see a high-level delta since the last
  release.

  • .github/ReleaseDrafter.yml - Single reusable workflow to maintain
    a release draft as pull requests complete.
  • .github/ReleaseDraft.yml - Configuration file for the
    ReleaseDrafter workflow. Defines label meanings for releases and
    how releases should be drafted.
  • .sync/workflows/leaf/release-draft.yml - A leaf workflow that can
    be synced to repos to trigger the reusable workflow in Mu DevOps.

  Project Mu repos can easily opt into consistent release drafting by
  including this leaf workflow via file sync.

  ---

  I decided to allow dependabot changes into release and just not include
  file sync changes since those are dev ops related and already tracked in
  the mu_devops releases where they're more relevant.
  

  
  

  ---

  
  

Full Changelog: v1.0.0...v1.1.0