Skip to content

Commit

Permalink
chore(deps): pin dependencies by renovate (#27353)
Browse files Browse the repository at this point in the history
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [EndBug/label-sync](https://redirect.github.com/EndBug/label-sync) |
action | pinDigest | -> `5207415` |
| [actions/cache](https://redirect.github.com/actions/cache) | action |
digest | `0c45773` -> `2cdf405` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | digest | `692973e` -> `eef6144` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | digest | `ac59398` -> `f43a0e5` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | minor | `v3.3.0` -> `v3.6.0` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | pinDigest | -> `ee0669b` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | pinDigest | -> `50fbc62` |
|
[actions/setup-python](https://redirect.github.com/actions/setup-python)
| action | digest | `d27e3f3` -> `65d7f2d` |
|
[actions/setup-python](https://redirect.github.com/actions/setup-python)
| action | pinDigest | -> `0f07f7f` |
| [actions/stale](https://redirect.github.com/actions/stale) | action |
pinDigest | -> `f7176fd` |
|
[actions/upload-artifact](https://redirect.github.com/actions/upload-artifact)
| action | pinDigest | -> `3446296` |
| [anchore/sbom-action](https://redirect.github.com/anchore/sbom-action)
| action | minor | `v0.14.3` -> `v0.17.2` |
| [azohra/shell-linter](https://redirect.github.com/azohra/shell-linter)
| action | minor | `v0.3.0` -> `v0.6.0` |
|
[docker/build-push-action](https://redirect.github.com/docker/build-push-action)
| action | digest | `0565240` -> `ca052bb` |
|
[docker/build-push-action](https://redirect.github.com/docker/build-push-action)
| action | pinDigest | -> `ac9327e` |
| [docker/login-action](https://redirect.github.com/docker/login-action)
| action | digest | `343f7c4` -> `9780b0c` |
| [docker/login-action](https://redirect.github.com/docker/login-action)
| action | pinDigest | -> `dd4fa06` |
|
[docker/metadata-action](https://redirect.github.com/docker/metadata-action)
| action | digest | `96383f4` -> `8e5442c` |
|
[docker/setup-buildx-action](https://redirect.github.com/docker/setup-buildx-action)
| action | digest | `f95db51` -> `c47758b` |
|
[docker/setup-buildx-action](https://redirect.github.com/docker/setup-buildx-action)
| action | pinDigest | -> `f211e3e` |
|
[docker/setup-qemu-action](https://redirect.github.com/docker/setup-qemu-action)
| action | digest | `6882732` -> `49b3bc8` |
|
[docker/setup-qemu-action](https://redirect.github.com/docker/setup-qemu-action)
| action | pinDigest | -> `27d0a4f` |
| ghcr.io/truenas/middleware | container | pinDigest |  -> `f6d1c7a` |
| ixsystems/catalog_validation | container | pinDigest |  -> `ec05445` |
|
[pascalgn/size-label-action](https://redirect.github.com/pascalgn/size-label-action)
| action | minor | `v0.4.3` -> `v0.5.4` |
|
[peaceiris/actions-label-commenter](https://redirect.github.com/peaceiris/actions-label-commenter)
| action | pinDigest | -> `f0dbbef` |
|
[peter-evans/create-pull-request](https://redirect.github.com/peter-evans/create-pull-request)
| action | pinDigest | -> `18f7dc0` |
| [pre-commit/action](https://redirect.github.com/pre-commit/action) |
action | patch | `v3.0.0` -> `v3.0.1` |
| tccr.io/truecharts/catalog_validation | container | pinDigest | ->
`35d6b97` |

---

> [!WARNING]
> Some dependencies could not be looked up. Check the Dependency
Dashboard for more information.

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v3.6.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v360)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.5.3...v3.6.0)

- [Fix: Mark test scripts with Bash'isms to be run via
Bash](https://redirect.github.com/actions/checkout/pull/1377)
- [Add option to fetch tags even if fetch-depth >
0](https://redirect.github.com/actions/checkout/pull/579)

###
[`v3.5.3`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v353)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.5.2...v3.5.3)

- [Fix: Checkout fail in self-hosted runners when faulty submodule are
checked-in](https://redirect.github.com/actions/checkout/pull/1196)
- [Fix typos found by
codespell](https://redirect.github.com/actions/checkout/pull/1287)
- [Add support for sparse
checkouts](https://redirect.github.com/actions/checkout/pull/1369)

###
[`v3.5.2`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v352)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.5.1...v3.5.2)

- [Fix api endpoint for
GHES](https://redirect.github.com/actions/checkout/pull/1289)

###
[`v3.5.1`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v351)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.5.0...v3.5.1)

- [Fix slow checkout on
Windows](https://redirect.github.com/actions/checkout/pull/1246)

###
[`v3.5.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v350)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.4.0...v3.5.0)

- [Add new public key for
known_hosts](https://redirect.github.com/actions/checkout/pull/1237)

###
[`v3.4.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v340)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v3.3.0...v3.4.0)

- [Upgrade codeql actions to
v2](https://redirect.github.com/actions/checkout/pull/1209)
- [Upgrade
dependencies](https://redirect.github.com/actions/checkout/pull/1210)
- [Upgrade
@&#8203;actions/io](https://redirect.github.com/actions/checkout/pull/1225)

</details>

<details>
<summary>anchore/sbom-action (anchore/sbom-action)</summary>

###
[`v0.17.2`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.17.2)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.17.1...v0.17.2)

#### Changes in v0.17.2

- Update Syft to v1.11.1
([#&#8203;485](https://redirect.github.com/anchore/sbom-action/issues/485))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.17.1`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.17.1)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.17.0...v0.17.1)

#### Changes in v0.17.1

- chore(deps): update Syft to v1.11.0
([#&#8203;483](https://redirect.github.com/anchore/sbom-action/issues/483))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.17.0`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.17.0)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.16.1...v0.17.0)

#### Changes in v0.17.0

- chore(deps): update Syft to v1.9.0
([#&#8203;479](https://redirect.github.com/anchore/sbom-action/issues/479))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.16.1`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.16.1)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.16.0...v0.16.1)

#### Changes in v0.16.1

- fix: workaround windows install issue
([#&#8203;477](https://redirect.github.com/anchore/sbom-action/issues/477))
\[[willmurphyscode](https://redirect.github.com/willmurphyscode)]
- fix: allow users to properly use the file input over the default path
value
([#&#8203;471](https://redirect.github.com/anchore/sbom-action/issues/471))
\[[komish](https://redirect.github.com/komish)]
- chore(deps): update Syft to v1.5.0
([#&#8203;470](https://redirect.github.com/anchore/sbom-action/issues/470))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]
- docs: notes for matrix and required permissions
([#&#8203;469](https://redirect.github.com/anchore/sbom-action/issues/469))
\[[kzantow](https://redirect.github.com/kzantow)]
- chore(deps): bump actions/checkout from 4.1.5 to 4.1.6
([#&#8203;466](https://redirect.github.com/anchore/sbom-action/issues/466))
\[[dependabot](https://redirect.github.com/dependabot)]

###
[`v0.16.0`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.16.0):
v0.16

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.11...v0.16.0)

#### Changes in v0.16.0

- Update Syft to v1.4.1
([#&#8203;465](https://redirect.github.com/anchore/sbom-action/issues/465))
- Update GitHub artifact client
([#&#8203;463](https://redirect.github.com/anchore/sbom-action/issues/463))
\[[kzantow](https://redirect.github.com/kzantow)]

NOTE: if you are using this action within a *matrix build* and see
failures attempting to upload artifacts with duplicate names, you will
need to set the `artifact-name` to be unique based on the matrix
properties ([an example
here](https://redirect.github.com/anchore/sbom-action/blob/main/.github/workflows/test.yml#L36)).
This is due to a change to use a newer GitHub API which no longer allows
artifacts with duplicate names.

###
[`v0.15.11`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.11)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.10...v0.15.11)

#### Changes in v0.15.11

- chore(deps): update Syft to v1.3.0
([#&#8203;456](https://redirect.github.com/anchore/sbom-action/issues/456))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]
- chore: remove outdated snapshot workflow
([#&#8203;457](https://redirect.github.com/anchore/sbom-action/issues/457))
\[[spiffcs](https://redirect.github.com/spiffcs)]
- fix: don't pass in a separate env. This makes it impossible to pass
env vars via the action context to syft.
([#&#8203;455](https://redirect.github.com/anchore/sbom-action/issues/455))
\[[iNoahNothing](https://redirect.github.com/iNoahNothing)]

###
[`v0.15.10`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.10)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.9...v0.15.10)

#### Changes in v0.15.10

- Update Syft to v1.1.0
([#&#8203;454](https://redirect.github.com/anchore/sbom-action/issues/454))
- Bump Node to v20 on download-syft/publish-sbom actions
([#&#8203;448](https://redirect.github.com/anchore/sbom-action/issues/448))
\[[ViacheslavKudinov](https://redirect.github.com/ViacheslavKudinov)]

###
[`v0.15.9`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.9)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.8...v0.15.9)

#### Changes in v0.15.9

- reduce syft debug level
([#&#8203;446](https://redirect.github.com/anchore/sbom-action/issues/446))
\[[kzantow](https://redirect.github.com/kzantow)]
- update Syft to v0.105.0
([#&#8203;442](https://redirect.github.com/anchore/sbom-action/issues/442))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.8`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.8)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.7...v0.15.8)

#### Changes in v0.15.8

- Update Syft to v0.103.1
([#&#8203;441](https://redirect.github.com/anchore/sbom-action/issues/441))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.7`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.7)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.6...v0.15.7)

#### Changes in v0.15.7

- chore: migrate action to use node v20.11.0 (Iron) FROM node v16.x.x
([#&#8203;440](https://redirect.github.com/anchore/sbom-action/issues/440))
\[[spiffcs](https://redirect.github.com/spiffcs)]

###
[`v0.15.6`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.6)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.5...v0.15.6)

#### Changes in v0.15.6

- chore(deps): update Syft to v0.102.0
([#&#8203;438](https://redirect.github.com/anchore/sbom-action/issues/438))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.5`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.5)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.4...v0.15.5)

#### Changes in v0.15.5

- chore(deps): update Syft to v0.101.1
([#&#8203;437](https://redirect.github.com/anchore/sbom-action/issues/437))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.4`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.4)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.3...v0.15.4)

#### Changes in v0.15.4

- chore(deps): update Syft to v0.101.0
([#&#8203;436](https://redirect.github.com/anchore/sbom-action/issues/436))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.3`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.3)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.2...v0.15.3)

#### Changes in v0.15.3

- chore(deps): update Syft to v0.100.0
([#&#8203;435](https://redirect.github.com/anchore/sbom-action/issues/435))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]

###
[`v0.15.2`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.2)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.1...v0.15.2)

#### Changes in v0.15.2

- chore(deps): update Syft to v0.99.0
([#&#8203;432](https://redirect.github.com/anchore/sbom-action/issues/432))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]
- chore: fix github-script invocation in update-snapshots workflow
([#&#8203;433](https://redirect.github.com/anchore/sbom-action/issues/433))
\[[willmurphyscode](https://redirect.github.com/willmurphyscode)]

###
[`v0.15.1`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.1)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.15.0...v0.15.1)

#### Changes in v0.15.1

- chore(deps): update Syft to v0.98.0
([#&#8203;431](https://redirect.github.com/anchore/sbom-action/issues/431))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]
- Add config input
([#&#8203;430](https://redirect.github.com/anchore/sbom-action/issues/430))
\[[eyakubovich](https://redirect.github.com/eyakubovich)]
- chore: pin and upgrade gh actions
([#&#8203;429](https://redirect.github.com/anchore/sbom-action/issues/429))
\[[willmurphyscode](https://redirect.github.com/willmurphyscode)]

###
[`v0.15.0`](https://redirect.github.com/anchore/sbom-action/releases/tag/v0.15.0)

[Compare
Source](https://redirect.github.com/anchore/sbom-action/compare/v0.14.3...v0.15.0)

#### Changes in v0.14.4

##### Breaking Changes

- Previously, running on Windows required WSL. Now, running on Windows
expects to be run on native windows
([#&#8203;426](https://redirect.github.com/anchore/sbom-action/issues/426))
\[[willmurphyscode](https://redirect.github.com/willmurphyscode)].

##### Other Changes

- pin and upgrade actions/checkout
([#&#8203;428](https://redirect.github.com/anchore/sbom-action/issues/428))
\[[willmurphyscode](https://redirect.github.com/willmurphyscode)]
- chore(deps): update Syft to v0.97.1
([#&#8203;427](https://redirect.github.com/anchore/sbom-action/issues/427))
\[[anchore-actions-token-generator](https://redirect.github.com/anchore-actions-token-generator)]
- add oss community board auto-add workflow
([#&#8203;421](https://redirect.github.com/anchore/sbom-action/issues/421))
\[[wagoodman](https://redirect.github.com/wagoodman)]

</details>

<details>
<summary>azohra/shell-linter (azohra/shell-linter)</summary>

###
[`v0.6.0`](https://redirect.github.com/azohra/shell-linter/releases/tag/v0.6.0):
Shell Linter v0.6.0

[Compare
Source](https://redirect.github.com/azohra/shell-linter/compare/v0.5.0...v0.6.0)

-   Added support for excluding files and folders from Shellcheck scan
- Upgraded the Shellcheck version used in the Shell-linter action to
v0.7.2 to support the updated error/warning codes
- Improved performance by adding `-x` to shellcheck to follow sourced
files that are not specified as input

###
[`v0.5.0`](https://redirect.github.com/azohra/shell-linter/releases/tag/v0.5.0):
Shell Linter v0.5.0

[Compare
Source](https://redirect.github.com/azohra/shell-linter/compare/v0.4.0...v0.5.0)

- Improved performance by only scanning the Shellcheck-supported scripts
(sh/bash/dsh/ksh)
-   Added templates for bug reports, feature requests and pull requests
- Improved code coverage by adding more unit tests and integration tests

###
[`v0.4.0`](https://redirect.github.com/azohra/shell-linter/releases/tag/v0.4.0):
Shell Linter v0.4.0

[Compare
Source](https://redirect.github.com/azohra/shell-linter/compare/v0.3.0...v0.4.0)

-   Added support for ShellCheck severity mode
- The default behavior is set to `style` which considers errors with all
severity levels
-   Improved tagging
    -   The latest stable version can be fetched by using `@latest`

</details>

<details>
<summary>pascalgn/size-label-action
(pascalgn/size-label-action)</summary>

###
[`v0.5.4`](https://redirect.github.com/pascalgn/size-label-action/releases/tag/v0.5.4):
Release 0.5.4

[Compare
Source](https://redirect.github.com/pascalgn/size-label-action/compare/v0.5.3...v0.5.4)

#### What's Changed

- Add HTTPS proxy support by
[@&#8203;donovanmuller](https://redirect.github.com/donovanmuller) in
[https://github.com/pascalgn/size-label-action/pull/28](https://redirect.github.com/pascalgn/size-label-action/pull/28)

#### New Contributors

- [@&#8203;donovanmuller](https://redirect.github.com/donovanmuller)
made their first contribution in
[https://github.com/pascalgn/size-label-action/pull/28](https://redirect.github.com/pascalgn/size-label-action/pull/28)

**Full Changelog**:
pascalgn/size-label-action@v0.5.3...v0.5.4

###
[`v0.5.3`](https://redirect.github.com/pascalgn/size-label-action/releases/tag/v0.5.3):
Release 0.5.3

[Compare
Source](https://redirect.github.com/pascalgn/size-label-action/compare/v0.5.2...v0.5.3)

#### What's Changed

- fix: Use list pull request files api by
[@&#8203;levsa](https://redirect.github.com/levsa) in
[https://github.com/pascalgn/size-label-action/pull/54](https://redirect.github.com/pascalgn/size-label-action/pull/54)

#### New Contributors

- [@&#8203;levsa](https://redirect.github.com/levsa) made their first
contribution in
[https://github.com/pascalgn/size-label-action/pull/54](https://redirect.github.com/pascalgn/size-label-action/pull/54)

**Full Changelog**:
pascalgn/size-label-action@v0.5.2...v0.5.3

###
[`v0.5.2`](https://redirect.github.com/pascalgn/size-label-action/releases/tag/v0.5.2):
Release 0.5.2

[Compare
Source](https://redirect.github.com/pascalgn/size-label-action/compare/v0.5.1...v0.5.2)

#### What's Changed

- feat: use GITHUB_API_URL as baseUrl for octokit by
[@&#8203;fty4](https://redirect.github.com/fty4) in
[https://github.com/pascalgn/size-label-action/pull/43](https://redirect.github.com/pascalgn/size-label-action/pull/43)
- feat: add sizeLabel GITHUB_OUTPUT for further reuse in other jobs by
[@&#8203;mat3e](https://redirect.github.com/mat3e) in
[https://github.com/pascalgn/size-label-action/pull/44](https://redirect.github.com/pascalgn/size-label-action/pull/44)

#### New Contributors

- [@&#8203;fty4](https://redirect.github.com/fty4) made their first
contribution in
[https://github.com/pascalgn/size-label-action/pull/43](https://redirect.github.com/pascalgn/size-label-action/pull/43)
- [@&#8203;mat3e](https://redirect.github.com/mat3e) made their first
contribution in
[https://github.com/pascalgn/size-label-action/pull/44](https://redirect.github.com/pascalgn/size-label-action/pull/44)

**Full Changelog**:
pascalgn/size-label-action@v0.5.1...v0.5.2

###
[`v0.5.1`](https://redirect.github.com/pascalgn/size-label-action/releases/tag/v0.5.1):
Release 0.5.1

[Compare
Source](https://redirect.github.com/pascalgn/size-label-action/compare/v0.5.0...v0.5.1)

Switched to Node 20

###
[`v0.5.0`](https://redirect.github.com/pascalgn/size-label-action/releases/tag/v0.5.0):
Release 0.5.0

[Compare
Source](https://redirect.github.com/pascalgn/size-label-action/compare/v0.4.3...v0.5.0)

</details>

<details>
<summary>pre-commit/action (pre-commit/action)</summary>

###
[`v3.0.1`](https://redirect.github.com/pre-commit/action/releases/tag/v3.0.1):
pre-commit/[email protected]

[Compare
Source](https://redirect.github.com/pre-commit/action/compare/v3.0.0...v3.0.1)

##### Misc

-   Update actions/cache to v4
-
[#&#8203;190](https://redirect.github.com/pre-commit/action/issues/190)
PR by [@&#8203;SukiCZ](https://redirect.github.com/SukiCZ).
-
[#&#8203;189](https://redirect.github.com/pre-commit/action/issues/189)
issue by [@&#8203;bakerkj](https://redirect.github.com/bakerkj).

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Renovate
Bot](https://redirect.github.com/renovatebot/renovate).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMTAuMiIsInVwZGF0ZWRJblZlciI6IjM4LjExMC4yIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImF1dG9tZXJnZSJdfQ==-->
  • Loading branch information
truecharts-admin authored Oct 7, 2024
1 parent 26b34d5 commit eba292e
Show file tree
Hide file tree
Showing 32 changed files with 73 additions and 73 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/charts-lint.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -22,13 +22,13 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout [master]
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: master

- name: Checkout [commit]
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/charts-release.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ jobs:
runs-on: actions-runner-large
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
token: ${{ secrets.BOT_TOKEN }}
fetch-depth: 0
Expand All @@ -30,7 +30,7 @@ jobs:
- name: Cache Changelog
id: cache-changelog
uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4
uses: actions/cache@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4
with:
path: changelog.json.gz
key: ${{ env.CHANGELOG_CACHE_KEY }}
Expand All @@ -53,7 +53,7 @@ jobs:
gzip "$JSON_FILE" --best
- name: Checkout Helm-Staging
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
repository: truecharts/helm-staging
Expand Down Expand Up @@ -87,7 +87,7 @@ jobs:
cd -
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
repository: truecharts/website
Expand Down
14 changes: 7 additions & 7 deletions .github/workflows/charts-test.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -50,7 +50,7 @@ jobs:
detected6: ${{ steps.list-changed.outputs.detected6 }}
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -115,7 +115,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -169,7 +169,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -223,7 +223,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -277,7 +277,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -331,7 +331,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down Expand Up @@ -385,7 +385,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 1
ref: ${{ inputs.checkoutCommit }}
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/containers.build.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ jobs:
matrix: "{\"container\": ${{ steps.reduce.outputs.containers }} }"
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
- uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3
id: filter
with:
Expand All @@ -51,7 +51,7 @@ jobs:
runs-on: ubuntu-24.04
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
- name: hadolint
uses: reviewdog/action-hadolint@73fec8b28091e5082c19df69815dd749d97b882a # v1.46.0
with:
Expand All @@ -77,7 +77,7 @@ jobs:
if: "!contains(github.event.head_commit.message, '[ci-skip]')"
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4

# Define if tests and push should be run against which versions/platforms
- name: Prepare
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/containers.housekeeping.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ jobs:
name: "Housekeeping"
steps:
- name: Checkout branch
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 0
token: ${{ secrets.BOT_TOKEN }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/containers.scarf.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ jobs:
name: "Add to Scarf"
steps:
- name: Checkout branch
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 0
token: ${{ secrets.BOT_TOKEN }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/pr-validate.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:
addedOrModifiedCharts: ${{ steps.collect-changes.outputs.addedOrModifiedCharts }}
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4

- name: Collect changes
id: collect-changes
Expand Down Expand Up @@ -49,7 +49,7 @@ jobs:
head-commit-message: ${{ steps.get_head_commit_message.outputs.headCommitMsg }}
steps:
- name: Get repo
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
ref: ${{ github.event.pull_request.head.sha }}
- name: verbose head git commit message
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/prune.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ jobs:
name: "prune old releases"
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
fetch-depth: 0
- uses: actions/delete-package-versions@e5bc658cc4c965c472efe991f8beea3981499c55 # v5
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/schedule-sync-labels.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
with:
token: ${{ secrets.BOT_TOKEN }}

Expand Down
6 changes: 3 additions & 3 deletions archive/catalog_validation/ix-source/.github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -6,11 +6,11 @@ jobs:
build-deb:
runs-on: ubuntu-latest
container:
image: ixsystems/catalog_validation:latest
image: ixsystems/catalog_validation:latest@sha256:ec054455af9857782d13f0507b0e0378ed0dee83dab11a3e1e5939eebb083522

steps:
- name: Checkout
uses: actions/checkout@v1
uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1

- name: Build deb package
run: >
Expand All @@ -27,7 +27,7 @@ jobs:
run: mv ../*.deb artifacts
if: success()

- uses: actions/upload-artifact@v1
- uses: actions/upload-artifact@3446296876d12d4e3a0f3145a3c87e67bf0a16b5 # v1
with:
name: py-catalog-validation
path: artifacts
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -10,17 +10,17 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Set up QEMU
uses: docker/setup-qemu-action@v1
uses: docker/setup-qemu-action@27d0a4f181a40b142cce983c5393082c365d1480 # v1
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v1
uses: docker/setup-buildx-action@f211e3e9ded2d9377c8cadc4489a4e38014bc4c9 # v1
- name: Login to DockerHub
uses: docker/login-action@v1
uses: docker/login-action@dd4fa0671be5250ee6f50aedf4cb05514abda2c7 # v1
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Build and push
id: docker_build
uses: docker/build-push-action@v2
uses: docker/build-push-action@ac9327eae2b366085ac7f6a2d02df8aa8ead720a # v2
with:
push: true
tags: ixsystems/catalog_validation:latest
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,9 @@ jobs:
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
- name: Set up Python 3.8
uses: actions/setup-python@v1
uses: actions/setup-python@0f07f7f756721ebd886c2462646a35f78a8bc4de # v1
with:
python-version: 3.8
- name: Install dependencies
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -7,10 +7,10 @@ jobs:

runs-on: ubuntu-latest
container:
image: ghcr.io/truenas/middleware:master
image: ghcr.io/truenas/middleware:master@sha256:f6d1c7a932e0745d3bf9928711de0e715d7d130e317931a2498457aec5aa555b

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
- name: Setup dependencies
run: |
/usr/bin/install-dev-tools
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -6,11 +6,11 @@ jobs:
build-deb:
runs-on: ubuntu-latest
container:
image: tccr.io/truecharts/catalog_validation:latest
image: tccr.io/truecharts/catalog_validation:latest@sha256:35d6b9765e7f86f064b494c640b60ca485b4a82a12e4851930dd50fca83c6c2e

steps:
- name: Checkout
uses: actions/checkout@v1
uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1

- name: Build deb package
run: >
Expand All @@ -27,7 +27,7 @@ jobs:
run: mv ../*.deb artifacts
if: success()

- uses: actions/upload-artifact@v1
- uses: actions/upload-artifact@3446296876d12d4e3a0f3145a3c87e67bf0a16b5 # v1
with:
name: py-catalog-validation
path: artifacts
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ jobs:
if: "!contains(github.event.head_commit.message, '[ci-skip]')"
steps:
- name: Checkout
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4

# Define if tests and push should be run against which versions/platforms
- name: Prepare
Expand All @@ -42,25 +42,25 @@ jobs:
format: 'YYYYMMDDHHmmss'

- name: Set up QEMU
uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3
uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3
with:
platforms: amd64

- uses: sigstore/cosign-installer@main

- name: Install Syft
uses: anchore/sbom-action/download-syft@78fc58e266e87a38d4194b2137a3d4e9bcaf7ca1 # v0.14.3
uses: anchore/sbom-action/download-syft@61119d458adab75f756bc0b9e4bde25725f86a7a # v0.17.2

- name: Login to Quay
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3
if: github.event_name != 'pull_request'
with:
registry: quay.io
username: ${{ secrets.QUAY_USER }}
password: ${{ secrets.QUAY_SECRET }}

- name: Login to GHCR
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3
if: github.event_name != 'pull_request'
with:
registry: ghcr.io
Expand All @@ -69,7 +69,7 @@ jobs:

- name: Docker meta
id: meta
uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5
uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 # v5
with:
# list of Docker images to use as base name for tags
images: |
Expand All @@ -80,7 +80,7 @@ jobs:
# Install and configure Buildx
- name: Set up Docker Buildx
id: buildx
uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3
uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3
with:
install: true
version: latest
Expand All @@ -89,7 +89,7 @@ jobs:
# Creates a local build to run tests on
- name: Build and Load local test-container
if: ${{ steps.prep.outputs.goss == 'true' }}
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5
uses: docker/build-push-action@ca052bb54ab0790a636c9b5f226502c73d547a25 # v5
with:
build-args: |
CONTAINER_NAME=catalog_validation
Expand All @@ -102,7 +102,7 @@ jobs:
# Push if not a PR, otherwise just test the build process for all requested platforms
- name: Build and Push
id: push
uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5
uses: docker/build-push-action@ca052bb54ab0790a636c9b5f226502c73d547a25 # v5
with:
build-args: |
CONTAINER_NAME=catalog_validation
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,9 @@ jobs:
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
- name: Set up Python 3.8
uses: actions/setup-python@v1
uses: actions/setup-python@0f07f7f756721ebd886c2462646a35f78a8bc4de # v1
with:
python-version: 3.8
- name: Install dependencies
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,9 @@ jobs:
runs-on: ubuntu-latest

steps:
- uses: actions/checkout@v2
- uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
- name: Set up Python 3.8
uses: actions/setup-python@v1
uses: actions/setup-python@0f07f7f756721ebd886c2462646a35f78a8bc4de # v1
with:
python-version: 3.8
- name: Install dependencies
Expand Down
Loading

0 comments on commit eba292e

Please sign in to comment.