From a21df70d243f1293e39a0d446e8d09b20900946f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Jun 2024 06:46:11 +0000 Subject: [PATCH] chore(deps): bump the gha group across 1 directory with 5 updates Bumps the gha group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/setup-go](https://github.com/actions/setup-go) | `4` | `5` | | [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.16.0` | `0.22.0` | | [actions/cache](https://github.com/actions/cache) | `3` | `4` | | [docker/login-action](https://github.com/docker/login-action) | `2` | `3` | | [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `5` | `6` | Updates `actions/setup-go` from 4 to 5 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) Updates `aquasecurity/trivy-action` from 0.16.0 to 0.22.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.16.0...0.22.0) Updates `actions/cache` from 3 to 4 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3...v4) Updates `docker/login-action` from 2 to 3 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v2...v3) Updates `goreleaser/goreleaser-action` from 5 to 6 - [Release notes](https://github.com/goreleaser/goreleaser-action/releases) - [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gha - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha - dependency-name: goreleaser/goreleaser-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha ... Signed-off-by: dependabot[bot] --- .github/workflows/build.yaml | 6 +++--- .github/workflows/release.yaml | 12 ++++++------ 2 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 14878efa..6b14cc66 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -25,7 +25,7 @@ jobs: go_version_file: go.mod - name: Setup Go - uses: actions/setup-go@v4 + uses: actions/setup-go@v5 with: go-version-file: go.mod @@ -69,7 +69,7 @@ jobs: push: false - name: Run Trivy vulnerability scanner on the dev image - uses: aquasecurity/trivy-action@0.16.0 + uses: aquasecurity/trivy-action@0.22.0 with: image-ref: 'controlplane/simulator:dev' format: 'table' @@ -88,7 +88,7 @@ jobs: push: false - name: Run Trivy vulnerability scanner on simulator image - uses: aquasecurity/trivy-action@0.16.0 + uses: aquasecurity/trivy-action@0.22.0 with: image-ref: controlplane/simulator:${{ github.sha }} format: 'table' diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 96c75428..ed5039d2 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Cache container layers - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: /tmp/.buildx-cache key: ${{ runner.os }}${{ matrix.containers.suffix }}-buildx-${{ github.sha }} @@ -33,7 +33,7 @@ jobs: uses: docker/setup-buildx-action@v3 - name: Login to Docker Hub - uses: docker/login-action@v2 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} @@ -49,7 +49,7 @@ jobs: push: false - name: Run Trivy vulnerability scanner on the dev image - uses: aquasecurity/trivy-action@0.16.0 + uses: aquasecurity/trivy-action@0.22.0 with: image-ref: 'controlplane/simulator:dev' format: 'table' @@ -68,7 +68,7 @@ jobs: push: false - name: Run Trivy vulnerability scanner on simulator image - uses: aquasecurity/trivy-action@0.16.0 + uses: aquasecurity/trivy-action@0.22.0 with: image-ref: controlplane/simulator:${{ github.ref_name }} format: 'table' @@ -119,7 +119,7 @@ jobs: fetch-depth: 0 - name: Setup Go - uses: actions/setup-go@v4 + uses: actions/setup-go@v5 with: go-version-file: go.mod @@ -127,7 +127,7 @@ jobs: - uses: anchore/sbom-action/download-syft@v0 - name: Run GoReleaser - uses: goreleaser/goreleaser-action@v5 + uses: goreleaser/goreleaser-action@v6 with: distribution: goreleaser args: release --clean