From 435a346f08fd20c597b5996f3cb26a2cc9c249c0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jul 2024 07:02:27 +0000
Subject: [PATCH] chore(deps): bump the gha group across 1 directory with 6
 updates

Bumps the gha group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/setup-go](https://github.com/actions/setup-go) | `4` | `5` |
| [docker/build-push-action](https://github.com/docker/build-push-action) | `5` | `6` |
| [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.16.0` | `0.24.0` |
| [actions/cache](https://github.com/actions/cache) | `3` | `4` |
| [docker/login-action](https://github.com/docker/login-action) | `2` | `3` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `5` | `6` |



Updates `actions/setup-go` from 4 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

Updates `docker/build-push-action` from 5 to 6
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v5...v6)

Updates `aquasecurity/trivy-action` from 0.16.0 to 0.24.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.16.0...0.24.0)

Updates `actions/cache` from 3 to 4
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3...v4)

Updates `docker/login-action` from 2 to 3
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2...v3)

Updates `goreleaser/goreleaser-action` from 5 to 6
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gha
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/build.yaml   | 10 +++++-----
 .github/workflows/release.yaml | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 14878efa..db240388 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -25,7 +25,7 @@ jobs:
           go_version_file: go.mod
 
       - name: Setup Go
-        uses: actions/setup-go@v4
+        uses: actions/setup-go@v5
         with:
           go-version-file: go.mod
 
@@ -59,7 +59,7 @@ jobs:
         uses: docker/setup-buildx-action@v3
 
       - name: Build and tag dev image
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile.dev
@@ -69,7 +69,7 @@ jobs:
           push: false
 
       - name: Run Trivy vulnerability scanner on the dev image
-        uses: aquasecurity/trivy-action@0.16.0
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           image-ref: 'controlplane/simulator:dev'
           format: 'table'
@@ -79,7 +79,7 @@ jobs:
           trivyignores: './.trivy-config/.trivyignore'
 
       - name: Build and tag simulator image
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile
@@ -88,7 +88,7 @@ jobs:
           push: false
 
       - name: Run Trivy vulnerability scanner on simulator image
-        uses: aquasecurity/trivy-action@0.16.0
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           image-ref: controlplane/simulator:${{ github.sha }}
           format: 'table'
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 96c75428..abd5247f 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -14,7 +14,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Cache container layers
-        uses: actions/cache@v3
+        uses: actions/cache@v4
         with:
           path: /tmp/.buildx-cache
           key: ${{ runner.os }}${{ matrix.containers.suffix }}-buildx-${{ github.sha }}
@@ -33,13 +33,13 @@ jobs:
         uses: docker/setup-buildx-action@v3
 
       - name: Login to Docker Hub
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
 
       - name: Build and tag dev image
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile.dev
@@ -49,7 +49,7 @@ jobs:
           push: false
 
       - name: Run Trivy vulnerability scanner on the dev image
-        uses: aquasecurity/trivy-action@0.16.0
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           image-ref: 'controlplane/simulator:dev'
           format: 'table'
@@ -59,7 +59,7 @@ jobs:
           trivyignores: './.trivy-config/.trivyignore'
 
       - name: Build and tag simulator image
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile
@@ -68,7 +68,7 @@ jobs:
           push: false
 
       - name: Run Trivy vulnerability scanner on simulator image
-        uses: aquasecurity/trivy-action@0.16.0
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           image-ref: controlplane/simulator:${{ github.ref_name }}
           format: 'table'
@@ -83,7 +83,7 @@ jobs:
           platforms: linux/amd64,linux/arm64
 
       - name: Build and push dev image ## should use cache image from the previous step
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile.dev
@@ -98,7 +98,7 @@ jobs:
           docker images ls
 
       - name: Build and push simulator image ## should use cache image from the previous step
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         with:
           context: .
           file: ./Dockerfile
@@ -119,7 +119,7 @@ jobs:
           fetch-depth: 0
 
       - name: Setup Go
-        uses: actions/setup-go@v4
+        uses: actions/setup-go@v5
         with:
           go-version-file: go.mod
 
@@ -127,7 +127,7 @@ jobs:
 
       - uses: anchore/sbom-action/download-syft@v0
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@v5
+        uses: goreleaser/goreleaser-action@v6
         with:
           distribution: goreleaser
           args: release --clean