From cb0eb281cf862d7c001dab90c6f60b5ffc1acdb6 Mon Sep 17 00:00:00 2001 From: Denis Krivenko Date: Mon, 25 May 2026 22:58:10 +0200 Subject: [PATCH 1/3] [CI] Add ASF allowlist check workflow --- .github/workflows/asf-allowlist-check.yml | 45 +++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 .github/workflows/asf-allowlist-check.yml diff --git a/.github/workflows/asf-allowlist-check.yml b/.github/workflows/asf-allowlist-check.yml new file mode 100644 index 00000000000..4dab7d3117e --- /dev/null +++ b/.github/workflows/asf-allowlist-check.yml @@ -0,0 +1,45 @@ +# +# Licensed to the Apache Software Foundation (ASF) under one or more +# contributor license agreements. See the NOTICE file distributed with +# this work for additional information regarding copyright ownership. +# The ASF licenses this file to You under the Apache License, Version 2.0 +# (the "License"); you may not use this file except in compliance with +# the License. You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +name: ASF Allowlist Check + +on: + workflow_dispatch: + pull_request: + branches: + - master + - branch-* + paths: + - ".github/**" + push: + branches: + - master + - branch-* + paths: + - ".github/**" + +permissions: + contents: read + +jobs: + asf-allowlist-check: + runs-on: ubuntu-24.04 + steps: + - uses: actions/checkout@v6 + with: + persist-credentials: false + - uses: apache/infrastructure-actions/allowlist-check@main From aa8e87bb4c3fdae4151b43def1ab98f182e12f8d Mon Sep 17 00:00:00 2001 From: Denis Krivenko Date: Tue, 26 May 2026 22:21:10 +0200 Subject: [PATCH 2/3] Replace 'Horizontal Tab' symbol with space --- .github/workflows/publish-snapshot-docker.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/publish-snapshot-docker.yml b/.github/workflows/publish-snapshot-docker.yml index 0764bb8cc46..d7ad090e69c 100644 --- a/.github/workflows/publish-snapshot-docker.yml +++ b/.github/workflows/publish-snapshot-docker.yml @@ -40,7 +40,7 @@ jobs: username: ${{ secrets.DOCKERHUB_USER }} password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Build and Push Kyuubi Docker Image - uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0 + uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0 with: # build cache on Github Actions, See: https://docs.docker.com/build/cache/backends/gha/#using-dockerbuild-push-action cache-from: type=gha From 8736a34144b0419f9309cad0413940dce2763956 Mon Sep 17 00:00:00 2001 From: Denis Krivenko Date: Sat, 30 May 2026 23:53:00 +0200 Subject: [PATCH 3/3] Use ubuntu-slim runner for ASF Allowlist Check --- .github/workflows/asf-allowlist-check.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/asf-allowlist-check.yml b/.github/workflows/asf-allowlist-check.yml index 4dab7d3117e..2dab3de3aaa 100644 --- a/.github/workflows/asf-allowlist-check.yml +++ b/.github/workflows/asf-allowlist-check.yml @@ -37,7 +37,7 @@ permissions: jobs: asf-allowlist-check: - runs-on: ubuntu-24.04 + runs-on: ubuntu-slim steps: - uses: actions/checkout@v6 with: