diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e996182c..e58b8940 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -12,7 +12,7 @@ permissions: read-all jobs: build: - uses: miracum/.github/.github/workflows/standard-build.yaml@a4a6c1a49dd35e232eceaa6e583cd9665572d90b # v1.3.0 + uses: miracum/.github/.github/workflows/standard-build.yaml@48246ecaca5f11debf0c5913a8e2b68e7912bc2b # v1.3.2 permissions: contents: read id-token: write @@ -27,7 +27,7 @@ jobs: github-token: ${{ secrets.GITHUB_TOKEN }} lint: - uses: miracum/.github/.github/workflows/standard-lint.yaml@a4a6c1a49dd35e232eceaa6e583cd9665572d90b # v1.3.0 + uses: miracum/.github/.github/workflows/standard-lint.yaml@48246ecaca5f11debf0c5913a8e2b68e7912bc2b # v1.3.2 permissions: contents: read pull-requests: write @@ -41,7 +41,7 @@ jobs: github-token: ${{ secrets.GITHUB_TOKEN }} release: - uses: miracum/.github/.github/workflows/standard-release.yaml@a4a6c1a49dd35e232eceaa6e583cd9665572d90b # v1.3.0 + uses: miracum/.github/.github/workflows/standard-release.yaml@48246ecaca5f11debf0c5913a8e2b68e7912bc2b # v1.3.2 needs: - build permissions: diff --git a/.github/workflows/schedule.yaml b/.github/workflows/schedule.yaml index b5b2d43f..f7de348f 100644 --- a/.github/workflows/schedule.yaml +++ b/.github/workflows/schedule.yaml @@ -10,7 +10,7 @@ permissions: read-all jobs: schedule: - uses: miracum/.github/.github/workflows/standard-schedule.yaml@d38a200cf9fadfca7247faf1acc54407fd876125 # v1.0.3 + uses: miracum/.github/.github/workflows/standard-schedule.yaml@48246ecaca5f11debf0c5913a8e2b68e7912bc2b # v1.3.2 permissions: contents: read issues: write diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index 233bc78c..31a476f5 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -37,7 +37,7 @@ jobs: persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # v2.3.0 + uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1 with: results_file: results.sarif results_format: sarif @@ -67,6 +67,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.21.9 + uses: github/codeql-action/upload-sarif@74483a38d39275f33fcff5f35b679b5ca4a26a99 # v2.22.5 with: sarif_file: results.sarif diff --git a/Dockerfile b/Dockerfile index 48f06d07..126d0d51 100644 --- a/Dockerfile +++ b/Dockerfile @@ -11,7 +11,7 @@ RUN gradle clean build --info && \ awk -F"," '{ instructions += $4 + $5; covered += $5 } END { print covered, "/", instructions, " instructions covered"; print 100*covered/instructions, "% covered" }' build/jacoco/coverage.csv && \ java -Djarmode=layertools -jar build/libs/obds-to-fhir-*.jar extract -FROM gcr.io/distroless/java17-debian11@sha256:dc6e301e2731abe1670877491f0548616c29ff56a3dbef8fcda68113684bd19a +FROM gcr.io/distroless/java17-debian11@sha256:12c7afb1875a0c01f2c0138698e619a1d39a8319fd40e020a6d8349cf5aae043 WORKDIR /opt/obds-to-fhir COPY --from=build /home/gradle/src/dependencies/ ./ diff --git a/build.gradle b/build.gradle index 82a88125..2d72dd38 100644 --- a/build.gradle +++ b/build.gradle @@ -24,7 +24,7 @@ repositories { ext { set('springCloudVersion', "2022.0.4") - set('hapiVersion', "6.8.4") + set('hapiVersion', "6.8.5") } dependencies {