AdguardTeam
diff --git a/‎.codecov.yml‎
Lines changed: 0 additions & 8 deletions b/‎.codecov.yml‎
Lines changed: 0 additions & 8 deletions
diff --git a/‎.gitattributes‎
Lines changed: 1 addition & 1 deletion b/‎.gitattributes‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/CODEOWNERS‎
Lines changed: 1 addition & 0 deletions b/‎.github/CODEOWNERS‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎.github/workflows/build.yaml‎
Lines changed: 11 additions & 41 deletions b/‎.github/workflows/build.yaml‎
Lines changed: 11 additions & 41 deletions
diff --git a/‎.github/workflows/docker.yaml‎
Lines changed: 13 additions & 34 deletions b/‎.github/workflows/docker.yaml‎
Lines changed: 13 additions & 34 deletions
diff --git a/‎.github/workflows/lint.yaml‎
Lines changed: 6 additions & 36 deletions b/‎.github/workflows/lint.yaml‎
Lines changed: 6 additions & 36 deletions
diff --git a/‎.github/workflows/mirror.yaml‎
Lines changed: 24 additions & 0 deletions b/‎.github/workflows/mirror.yaml‎
Lines changed: 24 additions & 0 deletions
@@ -1 +1 @@
-vendor/** binary
+* text=auto eol=lf
@@ -0,0 +1 @@
+* @AdGuardSoftwareLimited/go
@@ -1,3 +1,4 @@
+# TODO(a.garipov):  Refactor this workflow.
 name: Build
 # Permissions are disabled for all the jobs by default, and then overridden for
 # specific jobs if needed.  This is a recommended practice for security reasons,
@@ -6,16 +7,18 @@ name: Build
 # See https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#permissions.
 'permissions': {}
 'env':
-  'GO_VERSION': '1.26.3'
+  'GO_VERSION': '1.26.4'
 'on':
   'push':
     'tags':
       - 'v*'
     'branches':
       - '*'
-  'pull_request':
+  'pull_request': null
 jobs:
   tests:
+    'if': |
+      ${{ github.repository_owner != 'AdGuardSoftwareLimited' }}
     'permissions':
       'contents': 'read'
     runs-on: ${{ matrix.os }}
@@ -32,21 +35,14 @@ jobs:
           #
           # See https://github.com/actions/checkout/issues/485#issuecomment-934422611.
           'persist-credentials': false
-      - uses: actions/setup-go@v2
+      - uses: actions/setup-go@v6
         with:
           go-version: '${{ env.GO_VERSION }}'
       - name: Run tests
-        env:
-          CI: "1"
-        run: |-
-          make test
-      - name: Upload coverage
-        uses: codecov/codecov-action@v1
-        if: "success() && matrix.os == 'ubuntu-latest'"
-        with:
-          token: ${{ secrets.CODECOV_TOKEN }}
-          file: ./coverage.txt
+        run: 'make test'
   build:
+    'if': |
+      ${{ github.repository_owner != 'AdGuardSoftwareLimited' }}
     needs:
       - tests
     'permissions':
@@ -60,7 +56,7 @@ jobs:
           #
           # See https://github.com/actions/checkout/issues/485#issuecomment-934422611.
           'persist-credentials': false
-      - uses: actions/setup-go@v2
+      - uses: actions/setup-go@v6
         with:
           go-version: '${{ env.GO_VERSION }}'
       - name: Build release
@@ -83,36 +79,10 @@ jobs:
           prerelease: false
       - name: Upload
         if: startsWith(github.ref, 'refs/tags/v')
-        uses: xresloader/upload-to-github-release@v1.3.12
+        uses: xresloader/upload-to-github-release@v1.6.2
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:
           file: "build/dnsproxy-*.tar.gz;build/dnsproxy-*.zip"
           tags: true
           draft: false
-  notify:
-    needs:
-      - build
-    if: |
-      ${{ always() &&
-        (
-          github.event_name == 'push' ||
-          github.event.pull_request.head.repo.full_name == github.repository
-        )
-      }}
-    'permissions':
-      # Required by workflow-conclusion-action to check workflow status.
-      'actions': 'read'
-      'contents': 'read'
-    runs-on: ubuntu-latest
-    steps:
-      - name: Conclusion
-        uses: technote-space/workflow-conclusion-action@v1
-      - name: Send Slack notif
-        uses: 8398a7/action-slack@v3
-        with:
-          status: ${{ env.WORKFLOW_CONCLUSION }}
-          fields: workflow, repo, message, commit, author, eventName,ref
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
@@ -1,3 +1,4 @@
+# TODO(a.garipov):  Refactor this workflow.
 'name': Docker
 # Permissions are disabled for all the jobs by default, and then overridden for
 # specific jobs if needed.  This is a recommended practice for security reasons,
@@ -6,7 +7,7 @@
 # See https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#permissions.
 'permissions': {}
 'env':
-  'GO_VERSION': '1.26.3'
+  'GO_VERSION': '1.26.4'
 'on':
   'push':
     'tags':
@@ -16,6 +17,8 @@
       - 'master'
 'jobs':
   'docker':
+    'if': |
+      ${{ github.repository_owner != 'AdGuardSoftwareLimited' }}
     'permissions':
       'contents': 'read'
     'runs-on': 'ubuntu-latest'
@@ -28,7 +31,7 @@
           # See https://github.com/actions/checkout/issues/485#issuecomment-934422611.
           'persist-credentials': false
       - 'name': 'Set up Go'
-        'uses': 'actions/setup-go@v3'
+        'uses': 'actions/setup-go@v6'
         'with':
           'go-version': '${{ env.GO_VERSION }}'
       - 'name': 'Set up Go modules cache'
@@ -51,37 +54,13 @@
           set -e -u -x
 
           docker login \
-            -u="${DOCKER_USER}" \
-            -p="${DOCKER_PASSWORD}"
+              -u="${DOCKER_USER}" \
+              -p="${DOCKER_PASSWORD}" \
+              ;
 
           make \
-            DOCKER_IMAGE_NAME="adguard/dnsproxy" \
-            DOCKER_PUSH="1" \
-            VERBOSE="1" \
-            docker
-  'notify':
-    'needs':
-      - 'docker'
-    'if': |
-      ${{ always() &&
-        (
-          github.event_name == 'push' ||
-          github.event.pull_request.head.repo.full_name == github.repository
-        )
-      }}
-    'permissions':
-      # Required by workflow-conclusion-action to check workflow status.
-      'actions': 'read'
-      'contents': 'read'
-    'runs-on': ubuntu-latest
-    'steps':
-      - 'name': Conclusion
-        'uses': technote-space/workflow-conclusion-action@v1
-      - 'name': Send Slack notif
-        'uses': 8398a7/action-slack@v3
-        'with':
-          'status': ${{ env.WORKFLOW_CONCLUSION }}
-          'fields': workflow, repo, message, commit, author, eventName,ref
-        'env':
-          'GITHUB_TOKEN': ${{ secrets.GITHUB_TOKEN }}
-          'SLACK_WEBHOOK_URL': ${{ secrets.SLACK_WEBHOOK_URL }}
+              DOCKER_IMAGE_NAME='adguard/dnsproxy' \
+              DOCKER_PUSH='1' \
+              VERBOSE='1' \
+              docker \
+              ;
@@ -1,3 +1,4 @@
+# TODO(a.garipov):  Refactor this workflow.
 'name': 'lint'
 # Permissions are disabled for all the jobs by default, and then overridden for
 # specific jobs if needed.  This is a recommended practice for security reasons,
@@ -6,16 +7,18 @@
 # See https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#permissions.
 'permissions': {}
 'env':
-  'GO_VERSION': '1.26.3'
+  'GO_VERSION': '1.26.4'
 'on':
   'push':
     'tags':
       - 'v*'
     'branches':
       - '*'
-  'pull_request':
+  'pull_request': null
 'jobs':
   'go-lint':
+    'if': |
+      ${{ github.repository_owner != 'AdGuardSoftwareLimited' }}
     'permissions':
       'contents': 'read'
     'runs-on': 'ubuntu-latest'
@@ -27,41 +30,8 @@
           # See https://github.com/actions/checkout/issues/485#issuecomment-934422611.
           'persist-credentials': false
       - 'name': 'Set up Go'
-        'uses': 'actions/setup-go@v3'
+        'uses': 'actions/setup-go@v6'
         'with':
           'go-version': '${{ env.GO_VERSION }}'
       - 'name': 'run-lint'
         'run': 'make go-deps go-lint'
-  'notify':
-    'needs':
-      - 'go-lint'
-    # Secrets are not passed to workflows that are triggered by a pull request
-    # from a fork.
-    #
-    # Use always() to signal to the runner that this job must run even if the
-    # previous ones failed.
-    'if': |
-      ${{
-        always() &&
-        github.repository_owner == 'AdguardTeam' &&
-        (
-          github.event_name == 'push' ||
-          github.event.pull_request.head.repo.full_name == github.repository
-        )
-      }}
-    'permissions':
-      # Required by workflow-conclusion-action to check workflow status.
-      'actions': 'read'
-      'contents': 'read'
-    'runs-on': 'ubuntu-latest'
-    'steps':
-      - 'name': 'Conclusion'
-        'uses': 'technote-space/workflow-conclusion-action@v1'
-      - 'name': 'Send Slack notif'
-        'uses': '8398a7/action-slack@v3'
-        'with':
-          'status': '${{ env.WORKFLOW_CONCLUSION }}'
-          'fields': 'workflow, repo, message, commit, author, eventName, ref'
-        'env':
-          'GITHUB_TOKEN': '${{ secrets.GITHUB_TOKEN }}'
-          'SLACK_WEBHOOK_URL': '${{ secrets.SLACK_WEBHOOK_URL }}'
@@ -0,0 +1,24 @@
+'jobs':
+  'mirror':
+    'if': |
+      ${{ github.repository_owner == 'AdGuardSoftwareLimited' }}
+    'permissions':
+      'actions': 'write'
+      'contents': 'read'
+      'id-token': 'write'
+    'uses': 'AdGuardSoftwareLimited/actions/.github/workflows/mirror.yml@master'
+    'with':
+      'disable_workflows_source': 'build.yaml docker.yaml lint.yaml'
+      'disable_workflows_target': 'mirror.yaml private.yaml'
+      'target_repo': 'git@github.com:AdguardTeam/dnsproxy.git'
+      'team': 'go'
+'name': 'Mirror'
+'on':
+  'push':
+    'branches': ['master']
+# Permissions are disabled for all the jobs by default, and then overridden for
+# specific jobs if needed.  This is a recommended practice for security reasons,
+# and also allows to avoid mistakes with permissions when creating new jobs.
+#
+# See https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#permissions.
+'permissions': {}