GCM 2.7.0 #2238

mjcheetham · 2026-01-14T09:51:49Z

Changes:

Documentation updates & fixes
Fix Generic provider refresh token refresh logic (fix(generic): save new refresh_token value #1838)
Version bump to 2.7.0 (VERSION: bump to 2.7 for next release #2177)
CODEOWNERS (CODEOWNERS: add CODEOWNERS file #2053)
Allow unsafe remotes via config (Add control over use of unsafe remotes #1721)
Drop no longer needed GitLab OAuth params (Omit GitLab client secret #1538)
No-op credential storage option (Add no-op credential storage option #1740)
Fixes to CI & build
Use Azure Pipelines for official builds
- Add Azure Pipelines build YAML #2054
- (Re-)introduce release builds with Azure Pipelines #2176
Fix TRACE2 logging (Fix a few issues with TRACE2 output #1909)
Linux ARM and ARM64 support
- add support for Linux arm64 and Linux arm #1633
- Add linux-arm64 builds to official releases #2232
Windows ARM64 and x64 support (Add support for Windows x64 and arm64 builds #2230)
Linux install-from-source bug fixes
Support Oracle Linux vis install-from-source (Support Oracle Linux in install-from-source.sh #2212)
macOS enterprise defaults (Add support for macOS enterprise deployable default settings #1811)
Actions dependency updates

Secret is superfluous for GitLab PKCE https://docs.gitlab.com/ee/api/oauth2.html#authorization-code-with-proof-key-for-code-exchange-pkce

Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 16.0.0 to 17.0.0. - [Release notes](https://github.com/davidanson/markdownlint-cli2-action/releases) - [Commits](DavidAnson/markdownlint-cli2-action@b4c9fea...db43aef) --- updated-dependencies: - dependency-name: DavidAnson/markdownlint-cli2-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Update the version notation because since the release of git-credential-manager version 2.5.0, the sdk version required for installation is .NET 8.

Update the version notation because since the release of git-credential-manager version 2.5.0, the sdk version required for installation is .NET 8. Fix: #1703

Add a new setting that allows users to express an explicit consent to using unsafe remote URLs (such as those using HTTP rather than HTTPS).

Note that we only emit a warning for the generic host provider rather than failing-fast like the other providers do. This is because we never blocked HTTP remotes previously in the generic provider (which is often used for localhost, custom hosts, etc) and don't want to break any existing scenarios or scripts. The new option can be used to dismiss this warning message.

The links to FreeDesktop's Secret Service specifications has changed, it would seem. Signed-off-by: Johannes Schindelin <[email protected]>

The links to FreeDesktop's Secret Service specifications has changed, it would seem.

Today, all the custom host providers (Azure Repos, Bitbucket, GitHub, GitLab) block the use of HTTP (unencrypted) remote URLs and error out. Only the generic host provider permits HTTP remotes. From #1694, we learn that a common use case for self/corporate hosted Git servers is to use HTTP remotes. Even if this is **_not recommended_**, GCM should not outright block these. Instead, we now add an option, `GCM_ALLOW_UNSAFE_REMOTES` or `credential.allowUnsafeRemotes`, for the user to explicitly set to allow the use of these unsafe remotes. For the generic host provider we only print a warning when using HTTP remotes to reduce the churn for existing users who rely on GCM for HTTP remotes.

Secret is superfluous for GitLab PKCE https://docs.gitlab.com/ee/api/oauth2.html#authorization-code-with-proof-key-for-code-exchange-pkce

Bumps [lycheeverse/lychee-action](https://github.com/lycheeverse/lychee-action) from 1.9.3 to 2.0.0. - [Release notes](https://github.com/lycheeverse/lychee-action/releases) - [Commits](lycheeverse/lychee-action@c053181...7da8ec1) --- updated-dependencies: - dependency-name: lycheeverse/lychee-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [lycheeverse/lychee-action](https://github.com/lycheeverse/lychee-action) from 1.9.3 to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lycheeverse/lychee-action/releases">lycheeverse/lychee-action's releases</a>.</em></p> <blockquote> <h2>Version 2.0.0</h2> <h2>Breaking Changes</h2> <p><strong>Note:</strong> This release improves the action's robustness by changing default behaviors. Changes are only required if you want to opt out of the new failure conditions. Most users won't need to modify their existing configurations.</p> <h3>Fail pipeline on error by default</h3> <p>We've changed the default behavior: pipelines will now fail on broken links automatically. This addresses user feedback that not failing on broken links was unexpected (see [issue <a href="https://redirect.github.com/lycheeverse/lychee-action/issues/71">#71</a>](<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/71">lycheeverse/lychee-action#71</a>)).</p> <p><strong>What you need to do:</strong></p> <ul> <li>Update to version 2 of this action to apply this change.</li> <li>Users of the <code>lychee-action@master</code> branch don't need to make any changes, as <code>fail: true</code> has been the default there for a while.</li> <li>If you prefer the old behavior, explicitly set <code>fail</code> to <code>false</code> when updating:</li> </ul> <pre lang="yaml"><code>- name: Link Checker id: lychee uses: lycheeverse/lychee-action@v2 with: fail: false # Don't fail action on broken links </code></pre> <h3>Fail pipeline if no links were found</h3> <p>Similar to the above change, we now fail the pipeline if no links are found during a run. This helps warn users about potential configuration issues.</p> <p><strong>What you need to do:</strong></p> <ul> <li>If you expect links to be found in your pipeline run, you don't need to do anything.</li> <li>If you expect no links in your pipeline run, you can opt out like this:</li> </ul> <pre lang="yaml"><code>- name: Link Checker id: lychee uses: lycheeverse/lychee-action@v2 with: failIfEmpty: false # Don't fail action if no links were found </code></pre> <p>For a more detailed description of the technical aspects behind these changes, please see the full changelog below.</p> <h2>What's Changed</h2> <ul> <li>feat: change to use the full version tag with v-* prefix by <a href="https://github.com/kemingy"><code>@kemingy</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/204">lycheeverse/lychee-action#204</a></li> <li>Add <code>failIfEmpty</code> argument (fixes <a href="https://redirect.github.com/lycheeverse/lychee-action/issues/84">#84</a>) by <a href="https://github.com/mre"><code>@mre</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/86">lycheeverse/lychee-action#86</a></li> <li>Fail pipeline on error by default (fixes <a href="https://redirect.github.com/lycheeverse/lychee-action/issues/71">#71</a>) by <a href="https://github.com/mre"><code>@mre</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/85">lycheeverse/lychee-action#85</a></li> <li>Exit in case output is set in args and action input by <a href="https://github.com/mre"><code>@mre</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/227">lycheeverse/lychee-action#227</a></li> <li>v1 will automatically use latest version by <a href="https://github.com/jacobdalamb"><code>@jacobdalamb</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/228">lycheeverse/lychee-action#228</a></li> <li>Remove unneeded text by <a href="https://github.com/jacobdalamb"><code>@jacobdalamb</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/229">lycheeverse/lychee-action#229</a></li> <li>Clarify README.md defaults by <a href="https://github.com/paddyroddy"><code>@paddyroddy</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/230">lycheeverse/lychee-action#230</a></li> <li>Adjust for new asset naming scheme by <a href="https://github.com/dscho"><code>@dscho</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/234">lycheeverse/lychee-action#234</a></li> <li>Test various lychee versions by <a href="https://github.com/mre"><code>@mre</code></a> in <a href="https://redirect.github.com/lycheeverse/lychee-action/pull/235">lycheeverse/lychee-action#235</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lycheeverse/lychee-action/commit/7da8ec1fc4e01b5a12062ac6c589c10a4ce70d67"><code>7da8ec1</code></a> Test latest lychee version tag (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/236">#236</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/6cba5a96c25bf6571c0dc0d1521a2ddbae78ea59"><code>6cba5a9</code></a> Bump version to 0.16.x, respect new tag names (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/249">#249</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/e71a9a10faeb8c75aa21760b2f706f7831adadc7"><code>e71a9a1</code></a> Split up steps in action (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/248">#248</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/897f08a07f689df1a43076f4374af272f66a6dd1"><code>897f08a</code></a> action.yml: fix failing CI (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/246">#246</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/22c8e46b8f296cda676f8f92c634c4a87b436779"><code>22c8e46</code></a> Set exit_code correctly as output (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/245">#245</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/5047c2a4052946424ce139fe111135f6d7c0fe0b"><code>5047c2a</code></a> README: update actions/cache to v4 (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/243">#243</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/64c64dfc7ad14257a2001ef393627d334a516a1f"><code>64c64df</code></a> Remove dots from table (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/242">#242</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/c38ba4f281730ee0d64e6963f49b708e01567b86"><code>c38ba4f</code></a> Bump peter-evans/create-issue-from-file from v4 to v5 (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/241">#241</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/d4128702eae98bbc5ecf74df0165a8156c80920a"><code>d412870</code></a> Better cleanup of old lychee assets (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/237">#237</a>)</li> <li><a href="https://github.com/lycheeverse/lychee-action/commit/2a0b365aceb34a89a196d96fbf23ec6c29274854"><code>2a0b365</code></a> Test various lychee versions (<a href="https://redirect.github.com/lycheeverse/lychee-action/issues/235">#235</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lycheeverse/lychee-action/compare/c053181aa0c3d17606addfe97a9075a32723548a...7da8ec1fc4e01b5a12062ac6c589c10a4ce70d67">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lycheeverse/lychee-action&package-manager=github_actions&previous-version=1.9.3&new-version=2.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

Bumps [lycheeverse/lychee-action](https://github.com/lycheeverse/lychee-action) from 2.0.0 to 2.0.2. - [Release notes](https://github.com/lycheeverse/lychee-action/releases) - [Commits](lycheeverse/lychee-action@7da8ec1...7cd0af4) --- updated-dependencies: - dependency-name: lycheeverse/lychee-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Add a null/no-op credential store option that, as the name suggests, does nothing. This can be useful if the user wants to use another credential helper, configured in-front of GCM via Git, to store credentials. Example config: ```ini [credential] credentialStore = none helper = /bin/my-awesome-helper helper = /usr/local/bin/git-credential-manager ``` In this example, the `my-awesome-helper` will be consulted first to retrieve existing credentials before GCM, and will be asked to store any credentials generated by GCM.

Add a null/no-op credential store option that, as the name suggests, does nothing. This can be useful if the user wants to use another credential helper, configured in-front of GCM via Git, to store credentials. Example config: ```ini [credential] credentialStore = none helper = /bin/my-awesome-helper helper = /usr/local/bin/git-credential-manager ``` In this example, the `my-awesome-helper` will be consulted first to retrieve existing credentials before GCM, and will be asked to store any credentials generated by GCM. Fixes #1283

There used to be two separate images, `tgagor/centos` and `tgagor/centos-stream`, relating to the CentOS and the CentOS Stream distribution, respectively. However, CentOS ceased to exist, and CentOS Stream is the only remaining actively-maintained project of the two. As per https://hub.docker.com/r/tgagor/centos-stream: Moved to new repo I created new repo for both stream and non stream, variants. I push some images here, but it's better to switch to: https://hub.docker.com/r/tgagor/centos Essentially, the CentOS Stream images are now available as `tgagor/centos`. So let's drop the `tgagor/centos-stream` one. Signed-off-by: Johannes Schindelin <[email protected]>

There used to be two separate images, `tgagor/centos` and `tgagor/centos-stream`, relating to the CentOS and the CentOS Stream distribution, respectively. However, CentOS ceased to exist, and CentOS Stream is the only remaining actively-maintained project of the two. As per https://hub.docker.com/r/tgagor/centos-stream: Moved to new repo I created new repo for both stream and non stream, variants. I push some images here, but it's better to switch to: https://hub.docker.com/r/tgagor/centos Essentially, the CentOS Stream images are now available as `tgagor/centos`. So let's drop the `tgagor/centos-stream` one.

The `which` executable must often be installed because it is missing from many a Docker image. Therefore, it won't _really_ work if one checks `which which` to figure out whether `which` is installed. Let's avoid this by using `type`, which is a shell builtin for most shells. The `type` utility is specified in the POSIX standard, as per https://pubs.opengroup.org/onlinepubs/9699919799/utilities/type.html, yet neither command-line options nor output is standardized. The only thing we _can_ rely on is the exit status. Note: _Technically_, this poses a change of behavior, as `which` resolves only to executables that are on the `PATH` while `type` will also happily report shell builtins. However, this is a net improvement: If running the script in, say, BusyBox, where many of the common utilities (including `which`!) are shell builtins, we would like to avoid forcefully installing the packages without need. Signed-off-by: Johannes Schindelin <[email protected]>

…sh work The dotnet-install.sh script expects `awk` to be present, which is not installed by default in Mariner Linux. Signed-off-by: Johannes Schindelin <[email protected]>

This seems to be necessary to avoid problems with the `curl` calls when `dotnet-install.sh` tries to download the `dotnet-sdk` TAR archive: dotnet-install: Attempting to download using aka.ms link https://dotnetcli.azureedge.net/dotnet/Sdk/8.0.403/dotnet-sdk-8.0.403-linux-x64.tar.gz curl: (60) SSL certificate problem: unable to get local issuer certificate More details here: https://curl.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above. Signed-off-by: Johannes Schindelin <[email protected]>

These currently work, too, and we probably want to keep it that way. Signed-off-by: Johannes Schindelin <[email protected]>

After dropping the now-obsolete `tgagor/centos-stream` value from the matrix in #1746, let's now instead add the "somewhat" supported Mariner Linux and Arch Linux to the testing matrix.

…17.0.0 (#1701) Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 16.0.0 to 17.0.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/db43aef879112c3119a410d69f66701e0d530809"><code>db43aef</code></a> Update to version 17.0.0.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/c0decc52d0580a7db65978b488e88b2e982dcc68"><code>c0decc5</code></a> Bump <code>@stylistic/eslint-plugin</code> from 2.7.2 to 2.8.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/dd2171bb17e4e8be26ba4b078cb3b3451cb53586"><code>dd2171b</code></a> Bump eslint from 9.9.1 to 9.10.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/85b2286968ab3823bb5d56184e6a94028473c34b"><code>85b2286</code></a> Bump <code>@eslint/js</code> from 9.9.1 to 9.10.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/95aa6ed6ed1971cb448159598e93e5f1254d8be7"><code>95aa6ed</code></a> Freshen generated index.js file.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/476aead54e918015314bf6ed07cefcf2b09a34c6"><code>476aead</code></a> Bump markdownlint-cli2 from 0.13.0 to 0.14.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/da0291d977e0e4217eccc5b8db340a1de274444a"><code>da0291d</code></a> Freshen generated index.js file.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/235535bdb74489d92a3edf79656a22fca01f4eb2"><code>235535b</code></a> Add <code>@stylistic/eslint-plugin</code> to ESLint configuration.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/20384985f19cd0ee4ff23fc17757f0c92288786d"><code>2038498</code></a> Bump eslint from 9.9.0 to 9.9.1</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/ea9d2c1e2e2328af3ff4bf76bcc15c71ea175c25"><code>ea9d2c1</code></a> Bump <code>@eslint/js</code> from 9.9.0 to 9.9.1</li> <li>Additional commits viewable in <a href="https://github.com/davidanson/markdownlint-cli2-action/compare/b4c9feab76d8025d1e83c653fa3990936df0e6c8...db43aef879112c3119a410d69f66701e0d530809">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=DavidAnson/markdownlint-cli2-action&package-manager=github_actions&previous-version=16.0.0&new-version=17.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [azure/trusted-signing-action](https://github.com/azure/trusted-signing-action) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/azure/trusted-signing-action/releases) - [Commits](Azure/trusted-signing-action@v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: azure/trusted-signing-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/setup-dotnet](https://github.com/actions/setup-dotnet) from 4.0.1 to 4.1.0. - [Release notes](https://github.com/actions/setup-dotnet/releases) - [Commits](actions/setup-dotnet@v4.0.1...v4.1.0) --- updated-dependencies: - dependency-name: actions/setup-dotnet dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Signed-off-by: Matthew John Cheetham <[email protected]>

Bump the version number to 2.7 ready for the next release of GCM.

Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 20.0.0 to 21.0.0. - [Release notes](https://github.com/davidanson/markdownlint-cli2-action/releases) - [Commits](DavidAnson/markdownlint-cli2-action@992badc...30a0e04) --- updated-dependencies: - dependency-name: DavidAnson/markdownlint-cli2-action dependency-version: 21.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

…21.0.0 (#2183) Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 20.0.0 to 21.0.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/30a0e04f1870d58f8d717450cc6134995f993c63"><code>30a0e04</code></a> Update to version 21.0.0.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/6d4a055237f335b06e764242f92b0e062e7f962d"><code>6d4a055</code></a> Freshen generated index.js file.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/d9bf3fbe881bee5546336aecf1561f44a68b7c9f"><code>d9bf3fb</code></a> Bump markdownlint-cli2 from 0.18.1 to 0.19.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/29b4789128417bf7fb32869380e9f0a08c651f13"><code>29b4789</code></a> Bump <code>@eslint/js</code> from 9.39.0 to 9.39.1</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/6d600f113b4028d3f120127c298e7597378f2e0a"><code>6d600f1</code></a> Bump eslint from 9.39.0 to 9.39.1</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/15b21a00afd06ccde3744388f16cbd483012b12d"><code>15b21a0</code></a> Bump <code>@eslint/js</code> from 9.38.0 to 9.39.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/b259d54d28dff7c01582c0f8fc57b7c3c98ac831"><code>b259d54</code></a> Bump eslint from 9.38.0 to 9.39.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/451cad2cde7304d9c243aaaf2e894d74b428c4be"><code>451cad2</code></a> Bump eslint-plugin-unicorn from 61.0.2 to 62.0.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/c076bbe50e2ba547b66eb496a32a9ea20950d138"><code>c076bbe</code></a> Bump <code>@stylistic/eslint-plugin</code> from 5.4.0 to 5.5.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/ef464f44a295de1b4c0e9d7337cf31667890dc28"><code>ef464f4</code></a> Bump <code>@eslint/js</code> from 9.37.0 to 9.38.0</li> <li>Additional commits viewable in <a href="https://github.com/davidanson/markdownlint-cli2-action/compare/992badcdf24e3b8eb7e87ff9287fe931bcb00c6e...30a0e04f1870d58f8d717450cc6134995f993c63">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=DavidAnson/markdownlint-cli2-action&package-manager=github_actions&previous-version=20.0.0&new-version=21.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/setup-dotnet](https://github.com/actions/setup-dotnet) from 5.0.0 to 5.0.1. - [Release notes](https://github.com/actions/setup-dotnet/releases) - [Commits](actions/setup-dotnet@v5.0.0...v5.0.1) --- updated-dependencies: - dependency-name: actions/setup-dotnet dependency-version: 5.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/setup-dotnet](https://github.com/actions/setup-dotnet) from 5.0.0 to 5.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-dotnet/releases">actions/setup-dotnet's releases</a>.</em></p> <blockquote> <h2>v5.0.1</h2> <h2>What's Changed</h2> <ul> <li>Upgrade typescript from 5.4.2 to 5.9.2 and document breaking changes in v5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-dotnet/pull/624">actions/setup-dotnet#624</a></li> <li>Upgrade eslint-plugin-jest from 27.9.0 to 29.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-dotnet/pull/648">actions/setup-dotnet#648</a></li> <li>Upgrade actions/publish-action from 0.3.0 to 0.4.0 and update macos-13 to macos-15-intel by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-dotnet/pull/665">actions/setup-dotnet#665</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-dotnet/compare/v5...v5.0.1">https://github.com/actions/setup-dotnet/compare/v5...v5.0.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/setup-dotnet/commit/2016bd2012dba4e32de620c46fe006a3ac9f0602"><code>2016bd2</code></a> Bump actions/publish-action from 0.3.0 to 0.4.0 and update macos-13 to macos-...</li> <li><a href="https://github.com/actions/setup-dotnet/commit/21e81f65ddb80069d5591297dcd4703c0d9824d2"><code>21e81f6</code></a> Bump eslint-plugin-jest from 27.9.0 to 29.0.1 (<a href="https://redirect.github.com/actions/setup-dotnet/issues/648">#648</a>)</li> <li><a href="https://github.com/actions/setup-dotnet/commit/740310365d5065c44c30d213e7963107ebfd22d5"><code>7403103</code></a> Bump typescript from 5.4.2 to 5.9.2 (<a href="https://redirect.github.com/actions/setup-dotnet/issues/624">#624</a>)</li> <li>See full diff in <a href="https://github.com/actions/setup-dotnet/compare/v5.0.0...v5.0.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-dotnet&package-manager=github_actions&previous-version=5.0.0&new-version=5.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 21.0.0 to 22.0.0. - [Release notes](https://github.com/davidanson/markdownlint-cli2-action/releases) - [Commits](DavidAnson/markdownlint-cli2-action@30a0e04...07035fd) --- updated-dependencies: - dependency-name: DavidAnson/markdownlint-cli2-action dependency-version: 22.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

…22.0.0 (#2211) Bumps [DavidAnson/markdownlint-cli2-action](https://github.com/davidanson/markdownlint-cli2-action) from 21.0.0 to 22.0.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/07035fd053f7be764496c0f8d8f9f41f98305101"><code>07035fd</code></a> Update to version 22.0.0.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/d74d6a504e5f2a200a3b9a5af7c74fbbc3f1d0a3"><code>d74d6a5</code></a> Freshen generated index.js file.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/ecaf45cd0e2080a3cf1c433606dacea8d4b8cf55"><code>ecaf45c</code></a> Bump markdownlint-cli2 from 0.19.1 to 0.20.0</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/e4bf40dee69f036098589e4b9dbb433098fda5d3"><code>e4bf40d</code></a> Freshen generated index.js file.</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/ae047c4d45a8e75f5c1aa0dc7b8d71a102fc8769"><code>ae047c4</code></a> Bump markdownlint-cli2 from 0.19.0 to 0.19.1</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/db7ea3f7fb64b40888e1a1bb732dbc804f305023"><code>db7ea3f</code></a> Bump actions/checkout from 5 to 6</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/bfd3fdc8e281653c43afbfbf5f4b31bf25ba1109"><code>bfd3fdc</code></a> Bump <code>@stylistic/eslint-plugin</code> from 5.6.0 to 5.6.1</li> <li><a href="https://github.com/DavidAnson/markdownlint-cli2-action/commit/43dc18c80bec558d5f444fc9f507792390450296"><code>43dc18c</code></a> Bump <code>@stylistic/eslint-plugin</code> from 5.5.0 to 5.6.0</li> <li>See full diff in <a href="https://github.com/davidanson/markdownlint-cli2-action/compare/30a0e04f1870d58f8d717450cc6134995f993c63...07035fd053f7be764496c0f8d8f9f41f98305101">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=DavidAnson/markdownlint-cli2-action&package-manager=github_actions&previous-version=21.0.0&new-version=22.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

Added 'ol' to the list of supported distributions for installation. Oracle Linux /etc/os-release output: $ docker run -it oraclelinux:9 cat /etc/os-release NAME="Oracle Linux Server" VERSION="9.7" ID="ol" ID_LIKE="fedora" VERSION_ID="9.7" PLATFORM_ID="platform:el9" This confirms: ID="ol" ID_LIKE="fedora" Since Oracle Linux is RHEL-compatible and part of the Fedora/RHEL family, handling it under the same case block (fedora | centos | rhel | ol) is appropriate and consistent with existing logic.

Added 'ol' to the list of supported distributions for installation. Oracle Linux /etc/os-release output: ```sh $ docker run -it oraclelinux:9 cat /etc/os-release NAME="Oracle Linux Server" VERSION="9.7" ID="ol" ID_LIKE="fedora" VERSION_ID="9.7" PLATFORM_ID="platform:el9" This confirms: ``` ID="ol" ID_LIKE="fedora" Since Oracle Linux is RHEL-compatible and part of the Fedora/RHEL family, handling it under the same case block (fedora | centos | rhel | ol) is appropriate and consistent with existing logic.

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 5 to 6. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v5...v6) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 5 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>v6 - What's new</h2> <blockquote> <p>[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (<code>runs.using: node24</code>) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.</p> </blockquote> <h3>Node.js 24</h3> <p>This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.</p> <h2>What's Changed</h2> <ul> <li>Upload Artifact Node 24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/719">actions/upload-artifact#719</a></li> <li>fix: update <code>@actions/artifact</code> for Node.js 24 punycode deprecation by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/744">actions/upload-artifact#744</a></li> <li>prepare release v6.0.0 for Node.js 24 support by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/745">actions/upload-artifact#745</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0">https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f"><code>b7c566a</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/745">#745</a> from actions/upload-artifact-v6-release</li> <li><a href="https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b"><code>e516bc8</code></a> docs: correct description of Node.js 24 support in README</li> <li><a href="https://github.com/actions/upload-artifact/commit/ddc45ed9bca9b38dbd643978d88e3981cdc91415"><code>ddc45ed</code></a> docs: update README to correct action name for Node.js 24 support</li> <li><a href="https://github.com/actions/upload-artifact/commit/615b319bd27bb32c3d64dca6b6ed6974d5fbe653"><code>615b319</code></a> chore: release v6.0.0 for Node.js 24 support</li> <li><a href="https://github.com/actions/upload-artifact/commit/017748b48f8610ca8e6af1222f4a618e84a9c703"><code>017748b</code></a> Merge pull request <a href="https://redirect.github.com/actions/upload-artifact/issues/744">#744</a> from actions/fix-storage-blob</li> <li><a href="https://github.com/actions/upload-artifact/commit/38d4c7997f5510fcc41fc4aae2a6b97becdbe7fc"><code>38d4c79</code></a> chore: rebuild dist</li> <li><a href="https://github.com/actions/upload-artifact/commit/7d27270e0cfd253e666c44abac0711308d2d042f"><code>7d27270</code></a> chore: add missing license cache files for <code>@actions/core</code>, <code>@actions/io</code>, and mi...</li> <li><a href="https://github.com/actions/upload-artifact/commit/5f643d3c9475505ccaf26d686ffbfb71a8387261"><code>5f643d3</code></a> chore: update license files for <code>@actions/artifact</code><a href="https://github.com/5"><code>@5</code></a>.0.1 dependencies</li> <li><a href="https://github.com/actions/upload-artifact/commit/1df1684032c88614064493e1a0478fcb3583e1d0"><code>1df1684</code></a> chore: update package-lock.json with <code>@actions/artifact</code><a href="https://github.com/5"><code>@5</code></a>.0.1</li> <li><a href="https://github.com/actions/upload-artifact/commit/b5b1a918401ee270935b6b1d857ae66c85f3be6f"><code>b5b1a91</code></a> fix: update <code>@actions/artifact</code> to ^5.0.0 for Node.js 24 punycode fix</li> <li>Additional commits viewable in <a href="https://github.com/actions/upload-artifact/compare/v5...v6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=5&new-version=6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

The build process already supports ARM64 for Linux, so let's extend the official build process to also produce these binaries. Signed-off-by: Matthew John Cheetham <[email protected]>

Detect the runtime (linux-x64/linux-arm64/etc) from the current host architecture if not specified via the `--runtime` argument. We had already been doing this in the script, but after we already `die`-d when `--runtime` was missing! Oops. Let's move this auto-detection logic up-front, and also no longer rely on `dpkg-architecture` to determine the host arch; we can use `uname -m` instead. Signed-off-by: Matthew John Cheetham <[email protected]>

Detect the runtime (linux-x64/linux-arm64/etc) from the current host architecture if not specified via the `--runtime` argument. We had already been doing this in the script, but after we already `die`-d when `--runtime` was missing! Oops. Let's move this auto-detection logic up-front, and also no longer rely on `dpkg-architecture` to determine the host arch; we can use `uname -m` instead.

…nts (#2218) Currently, this searchQuery only returns one account even when there are multiple of them. Adding this flag will result in retrieving all the accounts and does not interrupt the previous flow.

The build process already supports ARM64 for Linux, so let's extend the official build process to also produce these binaries. Note that we have already been performing [CI builds on GitHub of `linux-arm64`](https://github.com/git-ecosystem/git-credential-manager/blob/1b3f77efe12efffaadac7c5a218822896e657a39/.github/workflows/continuous-integration.yml#L59), so this is just about extending the official build pipeline.

Previously, GCM was only built for x86 on Windows. This commit adds support for building for and on Windows x64 and arm64. It builds the host architecture by default and supports explicitly specifying the target architecture. Signed-off-by: Dennis Ameling <[email protected]>

Co-authored-by: Matthew John Cheetham <[email protected]>

Successor of #1846 Currently, GCM is only offered as an x86 build for Windows. On arm64, this results in poor performance because the code has to be fully emulated. Luckily, `dotnet` fully supports `win-arm64` nowadays. Even the .NET Framework [supports](https://devblogs.microsoft.com/dotnet/announcing-dotnet-framework-481/) it! [Here's some more details](dotnet/core#7709). This PR follows the same logic as #1633, which added support for Linux arm64. The main `git-credential-manager.exe` executable now becomes native, while the DLLs remain `Any CPU`. This allows for .NET Framework to run natively on arm64. I also added `win-x64` while at it. Confirmed to work correctly both on x64 and arm64 for GitHub operations. <img src="https://github.com/user-attachments/assets/4e1d772d-5593-42e4-ab7d-3779940864d1" width="200" /> ### x64 ![Schermafbeelding 2025-02-27 154529](https://github.com/user-attachments/assets/f09b7b72-f642-40c6-a051-763eddf3a653) ### arm64 ![image](https://github.com/user-attachments/assets/9b28c611-024a-4715-bd9a-28ca89652032) Also confirmed to correctly generate the installers for Windows arm64. The system-wide installer also correctly installs into the 64-bit `C:\Program Files\Git Credential Manager` folder: <img width="1123" height="811" alt="image" src="https://github.com/user-attachments/assets/33cff543-4a7a-4d15-9bd3-888bac9b4df3" />

dscho · 2026-01-14T10:00:29Z

Wow, what a lot of changes! Do we want to announce in the release notes of this new release that their ownership has changed? And not only the ownership, but also the ownership model, where the core GCM team now only owns the core of GCM, but the different backends like GitHub, GitLab, et cetera, are owned by the respective product owners...

dscho

Thank you, and all the contributors of the many, many changes in this new release!!!

mjcheetham · 2026-01-14T10:22:13Z

Wow, what a lot of changes!

Yep! It's been exactly one year since the last release.

Do we want to announce in the release notes of this new release that their ownership has changed? And not only the ownership, but also the ownership model, where the core GCM team now only owns the core of GCM, but the different backends like GitHub, GitLab, et cetera, are owned by the respective product owners...

I plan to do exactly that.

hickford and others added 30 commits February 23, 2024 22:30

Omit GitLab client secret

f600e92

Secret is superfluous for GitLab PKCE https://docs.gitlab.com/ee/api/oauth2.html#authorization-code-with-proof-key-for-code-exchange-pkce

docs: update required dotnet-sdk version in install.md

bc4dfa9

Update the version notation because since the release of git-credential-manager version 2.5.0, the sdk version required for installation is .NET 8.

docs: update required dotnet-sdk version in install.md (#1713)

b164e4a

Update the version notation because since the release of git-credential-manager version 2.5.0, the sdk version required for installation is .NET 8. Fix: #1703

settings: add allow unsafe remotes option

32d205b

Add a new setting that allows users to express an explicit consent to using unsafe remote URLs (such as those using HTTP rather than HTTPS).

bitbucket: support GCM_ALLOW_UNSAFE_REMOTES option

2fbe3d6

github: support GCM_ALLOW_UNSAFE_REMOTES option

6b87cc7

gitlab: support GCM_ALLOW_UNSAFE_REMOTES option

f2652f3

azrepos: support GCM_ALLOW_UNSAFE_REMOTES option

7a613f3

docs: update Secret Service links

004b19e

The links to FreeDesktop's Secret Service specifications has changed, it would seem. Signed-off-by: Johannes Schindelin <[email protected]>

docs: update Secret Service links (#1722)

2d10c92

The links to FreeDesktop's Secret Service specifications has changed, it would seem.

Omit GitLab client secret (#1538)

1c80d4b

Secret is superfluous for GitLab PKCE https://docs.gitlab.com/ee/api/oauth2.html#authorization-code-with-proof-key-for-code-exchange-pkce

install-from-source(mariner): awk is required to make dotnet-install.…

89adece

…sh work The dotnet-install.sh script expects `awk` to be present, which is not installed by default in Mariner Linux. Signed-off-by: Johannes Schindelin <[email protected]>

ci: also verify that installation works on Mariner and Arch Linux

41a26cf

These currently work, too, and we probably want to keep it that way. Signed-off-by: Johannes Schindelin <[email protected]>

ci: add Mariner and Arch Linux (#1747)

6c916a3

After dropping the now-obsolete `tgagor/centos-stream` value from the matrix in #1746, let's now instead add the "somewhat" supported Mariner Linux and Arch Linux to the testing matrix.

mjcheetham and others added 23 commits November 13, 2025 16:33

VERSION: bump to 2.7 for next release

54da17b

Signed-off-by: Matthew John Cheetham <[email protected]>

VERSION: bump to 2.7 for next release (#2177)

5c8e528

Bump the version number to 2.7 ready for the next release of GCM.

release: add linux-arm64 builds to offical releases

5e53ef6

The build process already supports ARM64 for Linux, so let's extend the official build process to also produce these binaries. Signed-off-by: Matthew John Cheetham <[email protected]>

Fix: Add flag to search query for SecretService to retrieve all accounts

f6fe9ca

Fix: Add flag to search query for SecretService to retrieve all accou…

1b3f77e

…nts (#2218) Currently, this searchQuery only returns one account even when there are multiple of them. Adding this flag will result in retrieving all the accounts and does not interrupt the previous flow.

Apply suggestions from code review

5c321e3

Co-authored-by: Matthew John Cheetham <[email protected]>

mjcheetham requested a review from dscho January 14, 2026 09:52

Merge branch 'release' into main

026bb0f

dscho approved these changes Jan 14, 2026

View reviewed changes

mjcheetham merged commit d1dd8a4 into release Jan 14, 2026
25 checks passed

github-actions bot mentioned this pull request Jan 14, 2026

[New git-credential-manager version] GCM 2.7.0 git-for-windows/git#6038

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

GCM 2.7.0 #2238

GCM 2.7.0 #2238

Uh oh!

mjcheetham commented Jan 14, 2026

Uh oh!

dscho commented Jan 14, 2026

Uh oh!

dscho left a comment

Uh oh!

Uh oh!

mjcheetham commented Jan 14, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

12 participants

GCM 2.7.0 #2238

GCM 2.7.0 #2238

Uh oh!

Conversation

mjcheetham commented Jan 14, 2026

Uh oh!

dscho commented Jan 14, 2026

Uh oh!

dscho left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

mjcheetham commented Jan 14, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

12 participants