From 920af54465711b0c99ce18d1f27a8fd31b9b600b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 12 Oct 2024 02:02:07 +0000 Subject: [PATCH] chore(deps): update github-actions --- .github/actions/generate-chart-matrix/action.yml | 2 +- .github/workflows/chart-public-files.yaml | 4 ++-- .github/workflows/chart-release-chores.yml | 4 ++-- .github/workflows/chart-release-template.yaml | 4 ++-- .github/workflows/chart-release-update-config.yml | 2 +- .github/workflows/chart-release.yaml | 8 ++++---- .../chart-update-readme-and-golden-files.yaml | 4 ++-- .github/workflows/chart-validate-template.yaml | 2 +- .github/workflows/renovate-config-check.yaml | 2 +- .github/workflows/renovate-post-upgrade.yaml | 4 ++-- .github/workflows/sec-codeql.yml | 8 ++++---- .../workflows/test-integration-cleanup-template.yaml | 2 +- .github/workflows/test-integration-rosa-cleanup.yml | 4 ++-- .github/workflows/test-integration-rosa-template.yaml | 10 +++++----- .github/workflows/test-integration-template.yaml | 4 ++-- .github/workflows/test-unit-template.yml | 6 +++--- .github/workflows/test-version-maintenance.yaml | 2 +- 17 files changed, 36 insertions(+), 36 deletions(-) diff --git a/.github/actions/generate-chart-matrix/action.yml b/.github/actions/generate-chart-matrix/action.yml index 3f0342920e..5ffb0445e3 100644 --- a/.github/actions/generate-chart-matrix/action.yml +++ b/.github/actions/generate-chart-matrix/action.yml @@ -13,7 +13,7 @@ runs: steps: - name: Get changed dirs id: changed-files - uses: tj-actions/changed-files@48d8f15b2aaa3d255ca5af3eba4870f807ce6b3c # v45 + uses: tj-actions/changed-files@c3a1bb2c992d77180ae65be6ae6c166cf40f857c # v45 with: dir_names: "true" - name: Generate matrix diff --git a/.github/workflows/chart-public-files.yaml b/.github/workflows/chart-public-files.yaml index ef541ccbbc..35c9767e53 100644 --- a/.github/workflows/chart-public-files.yaml +++ b/.github/workflows/chart-public-files.yaml @@ -23,10 +23,10 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: ref: gh-pages - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: path: main - name: Copy files diff --git a/.github/workflows/chart-release-chores.yml b/.github/workflows/chart-release-chores.yml index 9ab082a0d8..795701bf22 100644 --- a/.github/workflows/chart-release-chores.yml +++ b/.github/workflows/chart-release-chores.yml @@ -33,7 +33,7 @@ jobs: app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: repository: ${{ github.event.pull_request.head.repo.full_name }} ref: ${{ github.event.pull_request.head.ref }} @@ -49,7 +49,7 @@ jobs: - name: Add Helm repos run: | make helm.repos-add - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4 with: path: | ~/.cache/go-build diff --git a/.github/workflows/chart-release-template.yaml b/.github/workflows/chart-release-template.yaml index a6431f3e7c..fddebfbd72 100644 --- a/.github/workflows/chart-release-template.yaml +++ b/.github/workflows/chart-release-template.yaml @@ -71,7 +71,7 @@ jobs: CHART_NAME: "camunda-platform" steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 ref: ${{ inputs.branch }} @@ -132,7 +132,7 @@ jobs: # Security signature. - name: Install Cosign CLI if: env.PUBLISH_ARTIFACT == 'true' - uses: sigstore/cosign-installer@4959ce089c160fddf62f7b42464195ba1a56d382 # v3.6.0 + uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3.7.0 - name: Sign Helm chart with Cosign if: env.PUBLISH_ARTIFACT == 'true' run: | diff --git a/.github/workflows/chart-release-update-config.yml b/.github/workflows/chart-release-update-config.yml index be8ad23ad4..2c205c584c 100644 --- a/.github/workflows/chart-release-update-config.yml +++ b/.github/workflows/chart-release-update-config.yml @@ -27,7 +27,7 @@ jobs: app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 token: ${{ steps.generate-github-token.outputs.token }} diff --git a/.github/workflows/chart-release.yaml b/.github/workflows/chart-release.yaml index 894c218942..6e78841377 100644 --- a/.github/workflows/chart-release.yaml +++ b/.github/workflows/chart-release.yaml @@ -29,7 +29,7 @@ jobs: id-token: write steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 - name: Install env dependencies @@ -45,7 +45,7 @@ jobs: done echo "Dev comments removed:" git --no-pager diff - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4 with: path: | ~/.cache/go-build @@ -73,7 +73,7 @@ jobs: chartPath="$(ct list-changed | tr '\n' ' ')" \ make helm.dependency-update - name: cosign-installer - uses: sigstore/cosign-installer@4959ce089c160fddf62f7b42464195ba1a56d382 # v3.6.0 + uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3.7.0 - name: Tidy up run: | # Clean up badges from readme to avoid showing them in Artifact Hub. @@ -171,7 +171,7 @@ jobs: issues: write steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: # The verification step happens in the release branch before merging into the "main" branch. fetch-depth: 0 diff --git a/.github/workflows/chart-update-readme-and-golden-files.yaml b/.github/workflows/chart-update-readme-and-golden-files.yaml index f618f2b10a..9246b3bc36 100644 --- a/.github/workflows/chart-update-readme-and-golden-files.yaml +++ b/.github/workflows/chart-update-readme-and-golden-files.yaml @@ -51,7 +51,7 @@ jobs: app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: repository: ${{ github.event.pull_request.head.repo.full_name }} ref: ${{ github.event.pull_request.head.ref }} @@ -68,7 +68,7 @@ jobs: - name: Add Helm repos run: | make helm.repos-add - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4 with: path: | ~/.cache/go-build diff --git a/.github/workflows/chart-validate-template.yaml b/.github/workflows/chart-validate-template.yaml index e96745f225..553a6bfc30 100644 --- a/.github/workflows/chart-validate-template.yaml +++ b/.github/workflows/chart-validate-template.yaml @@ -30,7 +30,7 @@ jobs: steps: # Checkout. - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 ref: "${{ inputs.camunda-helm-git-ref }}" diff --git a/.github/workflows/renovate-config-check.yaml b/.github/workflows/renovate-config-check.yaml index f4fa6a23f5..2bfd8a6461 100644 --- a/.github/workflows/renovate-config-check.yaml +++ b/.github/workflows/renovate-config-check.yaml @@ -17,7 +17,7 @@ jobs: name: Check renovate config runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 - name: Validate renovate config uses: docker://renovate/renovate with: diff --git a/.github/workflows/renovate-post-upgrade.yaml b/.github/workflows/renovate-post-upgrade.yaml index 6db19a196a..b6f87c42d4 100644 --- a/.github/workflows/renovate-post-upgrade.yaml +++ b/.github/workflows/renovate-post-upgrade.yaml @@ -31,7 +31,7 @@ jobs: with: app_id: ${{ secrets.GH_APP_ID_DISTRO_CI }} private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: token: '${{ steps.generate-github-token.outputs.token }}' repository: ${{ github.event.pull_request.head.repo.full_name }} @@ -44,7 +44,7 @@ jobs: run: npm install -g @bitnami/readme-generator-for-helm - name: Install dependencies uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4 with: path: | ~/.cache/go-build diff --git a/.github/workflows/sec-codeql.yml b/.github/workflows/sec-codeql.yml index c5b11dc9e3..fed066534a 100644 --- a/.github/workflows/sec-codeql.yml +++ b/.github/workflows/sec-codeql.yml @@ -44,11 +44,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@3c13be0632d1e2a15d39da6ede780272c022b84f + uses: github/codeql-action/init@ea2cd92c21b192add69983116b8b3222b09da33b with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -62,7 +62,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@3c13be0632d1e2a15d39da6ede780272c022b84f + uses: github/codeql-action/autobuild@ea2cd92c21b192add69983116b8b3222b09da33b # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -75,6 +75,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@3c13be0632d1e2a15d39da6ede780272c022b84f + uses: github/codeql-action/analyze@ea2cd92c21b192add69983116b8b3222b09da33b with: category: "/language:${{ matrix.language }}" diff --git a/.github/workflows/test-integration-cleanup-template.yaml b/.github/workflows/test-integration-cleanup-template.yaml index 19133c1cf5..2c35c8cc89 100644 --- a/.github/workflows/test-integration-cleanup-template.yaml +++ b/.github/workflows/test-integration-cleanup-template.yaml @@ -54,7 +54,7 @@ jobs: - distro: if: false steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: # This is needed to load repo GH composite actions if the workflow triggered by workflow_call. repository: camunda/camunda-platform-helm diff --git a/.github/workflows/test-integration-rosa-cleanup.yml b/.github/workflows/test-integration-rosa-cleanup.yml index eabddd5cbd..89033db03e 100644 --- a/.github/workflows/test-integration-rosa-cleanup.yml +++ b/.github/workflows/test-integration-rosa-cleanup.yml @@ -27,13 +27,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: ref: ${{ github.head_ref }} fetch-depth: 0 - name: Checkout Repository rosa modules - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: repository: "camunda/camunda-tf-rosa" ref: "main" diff --git a/.github/workflows/test-integration-rosa-template.yaml b/.github/workflows/test-integration-rosa-template.yaml index 8b21272afe..81225723ae 100644 --- a/.github/workflows/test-integration-rosa-template.yaml +++ b/.github/workflows/test-integration-rosa-template.yaml @@ -65,7 +65,7 @@ jobs: outputs: platform-matrix: ${{ steps.matrix.outputs.platform-matrix }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 @@ -101,7 +101,7 @@ jobs: distro: ${{ fromJson(needs.clusters-info.outputs.platform-matrix).distro }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: fetch-depth: 0 @@ -112,7 +112,7 @@ jobs: aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - name: Create ROSA cluster and login - uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@d0471d28cb3eb13cd2212b63cc8e50d457d829c4 # main + uses: camunda/camunda-tf-rosa/.github/actions/rosa-create-cluster@101495429cd06f064f9c90f7cc3298e6fd337e68 # main timeout-minutes: 125 env: AWS_PROFILE: ${{ secrets.DISTRO_CI_AWS_PROFILE }} @@ -135,7 +135,7 @@ jobs: private_key: ${{ secrets.GH_APP_PRIVATE_KEY_DISTRO_CI }} - name: Clone the distribution GitOps repo - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: repository: "camunda/distribution" ref: "main" @@ -281,7 +281,7 @@ jobs: aws configure set aws_access_key_id ${{ secrets.DISTRO_CI_AWS_ACCESS_KEY }} --profile=${{ secrets.DISTRO_CI_AWS_PROFILE }} - name: Delete on-demand ROSA HCP Cluster - uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@d0471d28cb3eb13cd2212b63cc8e50d457d829c4 # main + uses: camunda/camunda-tf-rosa/.github/actions/rosa-delete-cluster@101495429cd06f064f9c90f7cc3298e6fd337e68 # main if: always() timeout-minutes: 125 env: diff --git a/.github/workflows/test-integration-template.yaml b/.github/workflows/test-integration-template.yaml index 7defd262f3..3389d9bd4c 100644 --- a/.github/workflows/test-integration-template.yaml +++ b/.github/workflows/test-integration-template.yaml @@ -110,7 +110,7 @@ jobs: outputs: matrix: ${{ steps.generate-workflow-matrix.outputs.matrix }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: # This is needed if the workflow is triggered by workflow_call. repository: camunda/camunda-platform-helm @@ -160,7 +160,7 @@ jobs: echo "${GITHUB_CONTEXT}" | jq '."extra-values" = ""' echo "Workflow Input - Extra Values:" echo "${GITHUB_CONTEXT}" | jq -r '."extra-values"' - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: # This is needed to load repo GH composite actions if the workflow triggered by workflow_call. repository: camunda/camunda-platform-helm diff --git a/.github/workflows/test-unit-template.yml b/.github/workflows/test-unit-template.yml index 35eabd1c26..05eae9d052 100644 --- a/.github/workflows/test-unit-template.yml +++ b/.github/workflows/test-unit-template.yml @@ -30,7 +30,7 @@ jobs: outputs: unitTestMatrix: ${{ steps.test-type-vars.outputs.unitTestMatrix }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 with: ref: "${{ inputs.camunda-helm-git-ref }}" - name: Get CI unit test matrix @@ -51,10 +51,10 @@ jobs: env: chartPath: "charts/${{ inputs.camunda-helm-dir }}" steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 - name: Install env dependencies uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 # v3 - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4 with: path: | ~/.cache/go-build diff --git a/.github/workflows/test-version-maintenance.yaml b/.github/workflows/test-version-maintenance.yaml index ffc707c006..2fab3d4d40 100644 --- a/.github/workflows/test-version-maintenance.yaml +++ b/.github/workflows/test-version-maintenance.yaml @@ -30,7 +30,7 @@ jobs: outputs: matrix: ${{ steps.generate-chart-versions.outputs.matrix }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4 - name: Generate chart versions id: generate-chart-versions uses: ./.github/actions/generate-chart-matrix