From 30b22cd17f6068a311c33acf85edd3352fd97ad5 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 18 Jan 2023 17:04:46 +0100 Subject: [PATCH] Update GitHub action dependencies (#1007) Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> --- .github/actions/build_ko/action.yml | 2 +- .github/actions/build_micro_service/action.yml | 4 ++-- .github/actions/build_micro_service_ko/action.yml | 2 +- .github/actions/build_operator/action.yml | 8 ++++---- .github/actions/e2e_kbench/action.yml | 2 +- .github/workflows/build-apko-image.yml | 2 +- .github/workflows/build-ccm-gcp.yml | 4 ++-- .../workflows/build-constellation-node-operator-ko.yml | 2 +- .github/workflows/build-gcp-guest-agent.yml | 4 ++-- .github/workflows/build-joinservice-image-ko.yml | 4 ++-- .github/workflows/build-keyservice-image-ko.yml | 6 +++--- .github/workflows/build-verification-service-ko.yml | 4 ++-- .github/workflows/codeql.yml | 2 +- .github/workflows/scorecard.yml | 8 ++++---- 14 files changed, 27 insertions(+), 27 deletions(-) diff --git a/.github/actions/build_ko/action.yml b/.github/actions/build_ko/action.yml index 0777579e41..82cfd85449 100644 --- a/.github/actions/build_ko/action.yml +++ b/.github/actions/build_ko/action.yml @@ -51,7 +51,7 @@ runs: uses: ./.github/actions/pseudo_version - name: Set up ko - uses: imjasonh/setup-ko@9a31684920a610d5dbe8012888714d64706f9787 # tag=v0.6 + uses: imjasonh/setup-ko@ace48d793556083a76f1e3e6068850c1f4a369aa # v0.6 - name: Build and upload ko container image id: build diff --git a/.github/actions/build_micro_service/action.yml b/.github/actions/build_micro_service/action.yml index 70936d71d0..6da9fa6a3f 100644 --- a/.github/actions/build_micro_service/action.yml +++ b/.github/actions/build_micro_service/action.yml @@ -37,7 +37,7 @@ runs: - name: Docker metadata id: meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea # tag=v4.1.1 + uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 with: images: | ghcr.io/${{ github.repository }}/${{ inputs.name }} @@ -57,7 +57,7 @@ runs: - name: Build and push container image id: build-micro-service - uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # tag=v3.2.0 + uses: docker/build-push-action@37abcedcc1da61a57767b7588cb9d03eb57e28b3 # v3.3.0 with: context: . file: ${{ inputs.dockerfile }} diff --git a/.github/actions/build_micro_service_ko/action.yml b/.github/actions/build_micro_service_ko/action.yml index c122b05779..a34ee5080b 100644 --- a/.github/actions/build_micro_service_ko/action.yml +++ b/.github/actions/build_micro_service_ko/action.yml @@ -58,7 +58,7 @@ runs: - name: Download ko Container Data id: download_container_data - uses: actions/download-artifact@v2 + uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 with: name: container_data_ko path: CONTAINER_DATA_KO diff --git a/.github/actions/build_operator/action.yml b/.github/actions/build_operator/action.yml index 96e747ecf2..e8275c5dea 100644 --- a/.github/actions/build_operator/action.yml +++ b/.github/actions/build_operator/action.yml @@ -46,7 +46,7 @@ runs: - name: Docker metadata id: meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea # tag=v4.1.1 + uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 with: images: | ghcr.io/${{ github.repository }}/${{ inputs.name }} @@ -58,7 +58,7 @@ runs: - name: Build and push container image id: build-image - uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # tag=v3.2.0 + uses: docker/build-push-action@37abcedcc1da61a57767b7588cb9d03eb57e28b3 # v3.3.0 with: context: . file: ${{ inputs.sourceDir }}/Dockerfile @@ -92,7 +92,7 @@ runs: - name: Docker metadata for bundle id: bundle-meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea # tag=v4.1.1 + uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 with: images: | ghcr.io/${{ github.repository }}/${{ inputs.name }}-bundle @@ -104,7 +104,7 @@ runs: - name: Build and push bundle image id: build-image-bundle - uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # tag=v3.2.0 + uses: docker/build-push-action@37abcedcc1da61a57767b7588cb9d03eb57e28b3 # v3.3.0 with: context: ${{ inputs.sourceDir }} file: ${{ inputs.sourceDir }}/bundle.Dockerfile diff --git a/.github/actions/e2e_kbench/action.yml b/.github/actions/e2e_kbench/action.yml index 3c14dcb8cb..2925a7899b 100644 --- a/.github/actions/e2e_kbench/action.yml +++ b/.github/actions/e2e_kbench/action.yml @@ -14,7 +14,7 @@ runs: steps: - name: Setup python - uses: actions/setup-python@5ccb29d8773c3f3f653e1705f474dfaa8a06a912 # v4.4.0 + uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4.5.0 with: python-version: "3.10" diff --git a/.github/workflows/build-apko-image.yml b/.github/workflows/build-apko-image.yml index 8cbae40faa..ed5eab385d 100644 --- a/.github/workflows/build-apko-image.yml +++ b/.github/workflows/build-apko-image.yml @@ -16,7 +16,7 @@ jobs: steps: - name: Check out repository id: checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: ref: ${{ github.head_ref }} diff --git a/.github/workflows/build-ccm-gcp.yml b/.github/workflows/build-ccm-gcp.yml index 3a35cdfa59..04e3500e62 100644 --- a/.github/workflows/build-ccm-gcp.yml +++ b/.github/workflows/build-ccm-gcp.yml @@ -24,7 +24,7 @@ jobs: - name: Docker meta id: meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea # tag=v4.1.1 + uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 with: images: | ${{ env.REGISTRY }}/edgelesssys/cloud-provider-gcp @@ -62,7 +62,7 @@ jobs: - name: Build and push container image id: build - uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # tag=v3.2.0 + uses: docker/build-push-action@37abcedcc1da61a57767b7588cb9d03eb57e28b3 # v3.3.0 with: context: . push: true diff --git a/.github/workflows/build-constellation-node-operator-ko.yml b/.github/workflows/build-constellation-node-operator-ko.yml index c1a669e739..a1f08aa4dd 100644 --- a/.github/workflows/build-constellation-node-operator-ko.yml +++ b/.github/workflows/build-constellation-node-operator-ko.yml @@ -16,7 +16,7 @@ jobs: steps: - name: Check out repository id: checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: ref: ${{ github.head_ref }} diff --git a/.github/workflows/build-gcp-guest-agent.yml b/.github/workflows/build-gcp-guest-agent.yml index 959762cf0e..4ba7a6a6ef 100644 --- a/.github/workflows/build-gcp-guest-agent.yml +++ b/.github/workflows/build-gcp-guest-agent.yml @@ -31,7 +31,7 @@ jobs: - name: Docker meta id: meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea # tag=v4.1.1 + uses: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96 # v4.3.0 with: images: | ${{ env.REGISTRY }}/edgelesssys/gcp-guest-agent @@ -54,7 +54,7 @@ jobs: - name: Build and push container image id: build - uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # tag=v3.2.0 + uses: docker/build-push-action@37abcedcc1da61a57767b7588cb9d03eb57e28b3 # v3.3.0 with: context: ./guest-agent file: ./constellation/3rdparty/gcp-guest-agent/Dockerfile diff --git a/.github/workflows/build-joinservice-image-ko.yml b/.github/workflows/build-joinservice-image-ko.yml index 6b6134bb17..f10c0f3218 100644 --- a/.github/workflows/build-joinservice-image-ko.yml +++ b/.github/workflows/build-joinservice-image-ko.yml @@ -18,12 +18,12 @@ jobs: steps: - name: Check out repository id: checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: ref: ${{ github.head_ref }} - name: Setup Go environment - uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # tag=v3.3.1 + uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0 with: go-version: "1.19.5" diff --git a/.github/workflows/build-keyservice-image-ko.yml b/.github/workflows/build-keyservice-image-ko.yml index b8ca10b0d2..000cef52c2 100644 --- a/.github/workflows/build-keyservice-image-ko.yml +++ b/.github/workflows/build-keyservice-image-ko.yml @@ -18,17 +18,17 @@ jobs: steps: - name: Check out repository id: checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: ref: ${{ github.head_ref }} - name: Setup Go environment - uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # tag=v3.3.1 + uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0 with: go-version: "1.19.5" - name: Set up ko - uses: imjasonh/setup-ko@9a31684920a610d5dbe8012888714d64706f9787 # tag=v0.6 + uses: imjasonh/setup-ko@ace48d793556083a76f1e3e6068850c1f4a369aa # v0.6 - name: Build and upload KeyService container image id: build-and-upload diff --git a/.github/workflows/build-verification-service-ko.yml b/.github/workflows/build-verification-service-ko.yml index 3b106e85bb..8b20b70fc8 100644 --- a/.github/workflows/build-verification-service-ko.yml +++ b/.github/workflows/build-verification-service-ko.yml @@ -16,12 +16,12 @@ jobs: steps: - name: Check out repository id: checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # tag=v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: ref: ${{ github.head_ref }} - name: Setup Go environment - uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # tag=v3.3.1 + uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0 with: go-version: "1.19.5" diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index b27342248c..3f14e66b8e 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -23,7 +23,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 - name: Setup Go environment if: matrix.language == 'go' diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 99f08a4a77..c6c087cc83 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -20,25 +20,25 @@ jobs: steps: - name: Checkout - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.1.0 + uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 with: persist-credentials: false - name: Run analysis - uses: ossf/scorecard-action@99c53751e09b9529366343771cc321ec74e9bd3d # v2.0.6 + uses: ossf/scorecard-action@e38b1902ae4f44df626f11ba0734b14fb91f8f86 # v2.1.2 with: results_file: results.sarif results_format: sarif publish_results: true - name: Upload artifact - uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.1.0 + uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2 with: name: SARIF file path: results.sarif retention-days: 5 - name: Upload to code-scanning - uses: github/codeql-action/upload-sarif@807578363a7869ca324a79039e6db9c843e0e100 # v2.1.27 + uses: github/codeql-action/upload-sarif@515828d97454b8354517688ddc5b48402b723750 # v2.1.38 with: sarif_file: results.sarif