From 25550225a7af72fc121c05fd610bee98abaffc8c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Jan 2024 15:48:47 +0000 Subject: [PATCH] build(deps): bump the ci group with 5 updates Bumps the ci group with 5 updates: | Package | From | To | | --- | --- | --- | | [Azure/login](https://github.com/azure/login) | `1.6.0` | `1.6.1` | | [actions/cache](https://github.com/actions/cache) | `3.3.3` | `4.0.0` | | [google-github-actions/auth](https://github.com/google-github-actions/auth) | `2.0.1` | `2.1.0` | | [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud) | `2.0.1` | `2.1.0` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.1.0` | `4.2.0` | Updates `Azure/login` from 1.6.0 to 1.6.1 - [Release notes](https://github.com/azure/login/releases) - [Commits](https://github.com/azure/login/compare/e15b166166a8746d1a47596803bd8c1b595455cf...cb79c773a3cfa27f31f25eb3f677781210c9ce3d) Updates `actions/cache` from 3.3.3 to 4.0.0 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/e12d46a63a90f2fae62d114769bbf2a179198b5c...13aacd865c20de90d75de3b17ebe84f7a17d57d2) Updates `google-github-actions/auth` from 2.0.1 to 2.1.0 - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](https://github.com/google-github-actions/auth/compare/f6de81663f7788d05bd15bcce18f0e57f23f0846...5a50e581162a13f4baa8916d01180d2acbc04363) Updates `google-github-actions/setup-gcloud` from 2.0.1 to 2.1.0 - [Release notes](https://github.com/google-github-actions/setup-gcloud/releases) - [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/main/CHANGELOG.md) - [Commits](https://github.com/google-github-actions/setup-gcloud/compare/5a5f7b85fca43e76e53463acaa9d408a03c98d3a...98ddc00a17442e89a24bbf282954a3b65ce6d200) Updates `actions/upload-artifact` from 4.1.0 to 4.2.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1eb3cb2b3e0f29609092a73eb033bb759a334595...694cdabd8bdb0f10b2cea11669e1bf5453eed0a6) --- updated-dependencies: - dependency-name: Azure/login dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: google-github-actions/setup-gcloud dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci ... Signed-off-by: dependabot[bot] --- .github/workflows/integration-azure.yaml | 2 +- .github/workflows/integration-cleanup.yaml | 8 ++++---- .github/workflows/integration-gcp.yaml | 4 ++-- .github/workflows/ossf.yaml | 2 +- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/integration-azure.yaml b/.github/workflows/integration-azure.yaml index 69545d43..92feff3d 100644 --- a/.github/workflows/integration-azure.yaml +++ b/.github/workflows/integration-azure.yaml @@ -30,7 +30,7 @@ jobs: go-version: 1.20.x cache-dependency-path: oci/tests/integration/go.sum - name: Authenticate to Azure - uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.4.6 + uses: Azure/login@cb79c773a3cfa27f31f25eb3f677781210c9ce3d # v1.4.6 with: creds: '{"clientId":"${{ secrets.OCI_E2E_AZ_ARM_CLIENT_ID }}","clientSecret":"${{ secrets.OCI_E2E_AZ_ARM_CLIENT_SECRET }}","subscriptionId":"${{ secrets.OCI_E2E_AZ_ARM_SUBSCRIPTION_ID }}","tenantId":"${{ secrets.OCI_E2E_AZ_ARM_TENANT_ID }}"}' - name: Setup QEMU diff --git a/.github/workflows/integration-cleanup.yaml b/.github/workflows/integration-cleanup.yaml index 6ae1b879..f314808b 100644 --- a/.github/workflows/integration-cleanup.yaml +++ b/.github/workflows/integration-cleanup.yaml @@ -34,7 +34,7 @@ jobs: run: echo "GCRGC_VERSION=${GCRGC_VERSION}" >> $GITHUB_ENV - name: Cache gcrgc id: cache-gcrgc - uses: actions/cache@e12d46a63a90f2fae62d114769bbf2a179198b5c # v3.3.3 + uses: actions/cache@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # v4.0.0 with: path: ~/.local/bin/gcrgc key: gcrgc-${{ env.GCRGC_VERSION }} @@ -45,11 +45,11 @@ jobs: wget https://github.com/graillus/gcrgc/releases/download/v${GCRGC_VERSION}/gcrgc_${GCRGC_VERSION}_linux_amd64.tar.gz -O - | tar xz mv gcrgc ~/.local/bin/ - name: Authenticate to Google Cloud - uses: google-github-actions/auth@f6de81663f7788d05bd15bcce18f0e57f23f0846 # v2.0.1 + uses: google-github-actions/auth@5a50e581162a13f4baa8916d01180d2acbc04363 # v2.1.0 with: credentials_json: '${{ secrets.CLEANUP_E2E_GOOGLE_CREDENTIALS }}' - name: Setup gcloud - uses: google-github-actions/setup-gcloud@5a5f7b85fca43e76e53463acaa9d408a03c98d3a # v2.0.1 + uses: google-github-actions/setup-gcloud@98ddc00a17442e89a24bbf282954a3b65ce6d200 # v2.1.0 - name: Run gcrgc # Cleanup all the GCR repositories in the project. They are not tracked # by terraform used to provision test infra and are left behind. @@ -74,7 +74,7 @@ jobs: go-version: 1.20.x cache-dependency-path: ./tools/reaper/go.sum - name: Authenticate to Azure - uses: Azure/login@e15b166166a8746d1a47596803bd8c1b595455cf # v1.4.6 + uses: Azure/login@cb79c773a3cfa27f31f25eb3f677781210c9ce3d # v1.4.6 with: creds: '{"clientId":"${{ secrets.CLEANUP_E2E_AZ_ARM_CLIENT_ID }}","clientSecret":"${{ secrets.CLEANUP_E2E_AZ_ARM_CLIENT_SECRET }}","subscriptionId":"${{ secrets.CLEANUP_E2E_AZ_ARM_SUBSCRIPTION_ID }}","tenantId":"${{ secrets.CLEANUP_E2E_AZ_ARM_TENANT_ID }}"}' - name: Run reaper diff --git a/.github/workflows/integration-gcp.yaml b/.github/workflows/integration-gcp.yaml index 4dbb707e..11bd4fbd 100644 --- a/.github/workflows/integration-gcp.yaml +++ b/.github/workflows/integration-gcp.yaml @@ -30,13 +30,13 @@ jobs: go-version: 1.20.x cache-dependency-path: oci/tests/integration/go.sum - name: Authenticate to Google Cloud - uses: google-github-actions/auth@f6de81663f7788d05bd15bcce18f0e57f23f0846 # v2.0.1 + uses: google-github-actions/auth@5a50e581162a13f4baa8916d01180d2acbc04363 # v2.1.0 id: 'auth' with: credentials_json: '${{ secrets.OCI_E2E_GOOGLE_CREDENTIALS }}' token_format: 'access_token' - name: Setup gcloud - uses: google-github-actions/setup-gcloud@5a5f7b85fca43e76e53463acaa9d408a03c98d3a # v2.0.1 + uses: google-github-actions/setup-gcloud@98ddc00a17442e89a24bbf282954a3b65ce6d200 # v2.1.0 - name: Setup QEMU uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0 - name: Setup Docker Buildx diff --git a/.github/workflows/ossf.yaml b/.github/workflows/ossf.yaml index bffcc51d..2d325c87 100644 --- a/.github/workflows/ossf.yaml +++ b/.github/workflows/ossf.yaml @@ -42,7 +42,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0 + uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0 with: name: SARIF file path: results.sarif