From 5724231eb8185fd525013df14801d41d751671f1 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 23 Sep 2024 08:05:47 +0100 Subject: [PATCH 1/2] Renovate Update actions/checkout digest to 6d193bf (#2787) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/_build-and-push.yml | 2 +- .github/workflows/_codecov.yml | 2 +- .github/workflows/_ecr-scanning.yml | 2 +- .github/workflows/_lint-terraform.yml | 2 +- .github/workflows/_node-build.yml | 2 +- .github/workflows/_node-test.yml | 2 +- .github/workflows/_run-behat-tests.yml | 2 +- .github/workflows/_run-terraform.yml | 2 +- .github/workflows/_seed-database.yml | 2 +- .github/workflows/_slack-notification.yml | 2 +- .github/workflows/path-to-live.yml | 6 +++--- .github/workflows/pull-request-path.yml | 2 +- .github/workflows/scheduled-codeql-analysis.yml | 2 +- .github/workflows/scheduled-tfsec.yml | 2 +- .github/workflows/scheduled-workspace-cleanup.yml | 2 +- .github/workflows/trivy_scan_alert_report.yml | 2 +- .github/workflows/workflow-deploy-ref-to-env.yml | 2 +- 17 files changed, 19 insertions(+), 19 deletions(-) diff --git a/.github/workflows/_build-and-push.yml b/.github/workflows/_build-and-push.yml index 45e657ca99..efa277eaf2 100644 --- a/.github/workflows/_build-and-push.yml +++ b/.github/workflows/_build-and-push.yml @@ -76,7 +76,7 @@ jobs: run_integration_tests: 'false' artifact_to_dl: '' steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc - name: cache node modules id: cache-npm diff --git a/.github/workflows/_codecov.yml b/.github/workflows/_codecov.yml index bea421b783..570ba30250 100644 --- a/.github/workflows/_codecov.yml +++ b/.github/workflows/_codecov.yml @@ -15,7 +15,7 @@ jobs: code_coverage: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: download artifact for front tests id: download-artifact-front-tests uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e diff --git a/.github/workflows/_ecr-scanning.yml b/.github/workflows/_ecr-scanning.yml index 33b5a9de17..9a4593af33 100644 --- a/.github/workflows/_ecr-scanning.yml +++ b/.github/workflows/_ecr-scanning.yml @@ -15,7 +15,7 @@ jobs: ecr-scan-results: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: configure AWS credentials ECR scan results uses: aws-actions/configure-aws-credentials@a78e788c51463a506fbaaec784bab37f73afb4e8 # pin@v1.7.0 diff --git a/.github/workflows/_lint-terraform.yml b/.github/workflows/_lint-terraform.yml index 902de04f3e..8e505b0eb0 100644 --- a/.github/workflows/_lint-terraform.yml +++ b/.github/workflows/_lint-terraform.yml @@ -21,7 +21,7 @@ jobs: - folder: 'environment' - folder: 'account' steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: Set Terraform version working-directory: ./terraform/${{ matrix.folder }} diff --git a/.github/workflows/_node-build.yml b/.github/workflows/_node-build.yml index cbf21d0737..d74f97aa26 100644 --- a/.github/workflows/_node-build.yml +++ b/.github/workflows/_node-build.yml @@ -11,7 +11,7 @@ jobs: build-web: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - uses: actions/setup-node@c2ac33f2c62f978d6c944d9648125a294e56dc0b # pin@v3.6.0 with: node-version-file: '.nvmrc' diff --git a/.github/workflows/_node-test.yml b/.github/workflows/_node-test.yml index 5e45a4f5f3..6d6d4f7560 100644 --- a/.github/workflows/_node-test.yml +++ b/.github/workflows/_node-test.yml @@ -11,7 +11,7 @@ jobs: unit-test: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - uses: actions/setup-node@c2ac33f2c62f978d6c944d9648125a294e56dc0b # pin@v3.6.0 with: node-version-file: '.nvmrc' diff --git a/.github/workflows/_run-behat-tests.yml b/.github/workflows/_run-behat-tests.yml index 22e72981f7..55f080b809 100644 --- a/.github/workflows/_run-behat-tests.yml +++ b/.github/workflows/_run-behat-tests.yml @@ -16,7 +16,7 @@ jobs: build-web: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: install python uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # pin@v4.2.0 diff --git a/.github/workflows/_run-terraform.yml b/.github/workflows/_run-terraform.yml index 24e253b416..fd45bac641 100644 --- a/.github/workflows/_run-terraform.yml +++ b/.github/workflows/_run-terraform.yml @@ -58,7 +58,7 @@ jobs: echo "admin-tag=$(echo ${TAG})" >> $GITHUB_OUTPUT fi - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 with: fetch-depth: '0' diff --git a/.github/workflows/_seed-database.yml b/.github/workflows/_seed-database.yml index 981e2511ba..f88e6e529b 100644 --- a/.github/workflows/_seed-database.yml +++ b/.github/workflows/_seed-database.yml @@ -10,7 +10,7 @@ jobs: terraform_workflow: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 with: fetch-depth: '0' diff --git a/.github/workflows/_slack-notification.yml b/.github/workflows/_slack-notification.yml index 1b6ee3a9c2..e387411daf 100644 --- a/.github/workflows/_slack-notification.yml +++ b/.github/workflows/_slack-notification.yml @@ -28,7 +28,7 @@ jobs: send-slack-notification: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: install python uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # pin@v4.2.0 diff --git a/.github/workflows/path-to-live.yml b/.github/workflows/path-to-live.yml index dfae3c9b38..328b695aca 100644 --- a/.github/workflows/path-to-live.yml +++ b/.github/workflows/path-to-live.yml @@ -34,7 +34,7 @@ jobs: short_sha: ${{ steps.variables.outputs.short_sha }} semver_tag: ${{ steps.semver_tag.outputs.created_tag }} steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: extract variables for workflow id: variables run: | @@ -90,7 +90,7 @@ jobs: - workflow_variables runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: download artifact for front tests uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -200,7 +200,7 @@ jobs: needs: - terraform_apply_production steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 with: fetch-depth: '0' - name: download cluster_config diff --git a/.github/workflows/pull-request-path.yml b/.github/workflows/pull-request-path.yml index 9fc0dc2608..c3568419a1 100644 --- a/.github/workflows/pull-request-path.yml +++ b/.github/workflows/pull-request-path.yml @@ -41,7 +41,7 @@ jobs: short_sha: ${{ steps.variables.outputs.short_sha }} specific_path: ${{ steps.variables.outputs.path }} steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 with: fetch-depth: 2 - name: get changed files in the admin folder diff --git a/.github/workflows/scheduled-codeql-analysis.yml b/.github/workflows/scheduled-codeql-analysis.yml index a5d63d9847..d3693d9eb2 100644 --- a/.github/workflows/scheduled-codeql-analysis.yml +++ b/.github/workflows/scheduled-codeql-analysis.yml @@ -30,7 +30,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/scheduled-tfsec.yml b/.github/workflows/scheduled-tfsec.yml index 637d58050b..8124246754 100644 --- a/.github/workflows/scheduled-tfsec.yml +++ b/.github/workflows/scheduled-tfsec.yml @@ -13,7 +13,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 with: persist-credentials: false diff --git a/.github/workflows/scheduled-workspace-cleanup.yml b/.github/workflows/scheduled-workspace-cleanup.yml index 43fbc8f749..1721c82502 100644 --- a/.github/workflows/scheduled-workspace-cleanup.yml +++ b/.github/workflows/scheduled-workspace-cleanup.yml @@ -22,7 +22,7 @@ jobs: terraform_environment_cleanup: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: Set Terraform version working-directory: ./terraform/environment diff --git a/.github/workflows/trivy_scan_alert_report.yml b/.github/workflows/trivy_scan_alert_report.yml index a2e61a4924..15fa058828 100644 --- a/.github/workflows/trivy_scan_alert_report.yml +++ b/.github/workflows/trivy_scan_alert_report.yml @@ -12,7 +12,7 @@ jobs: trivy_scan_alert_report: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v3 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: install python uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # pin@v4.2.0 diff --git a/.github/workflows/workflow-deploy-ref-to-env.yml b/.github/workflows/workflow-deploy-ref-to-env.yml index 47412466c7..1bf8c3fdca 100644 --- a/.github/workflows/workflow-deploy-ref-to-env.yml +++ b/.github/workflows/workflow-deploy-ref-to-env.yml @@ -53,7 +53,7 @@ jobs: short_sha: ${{ steps.variables.outputs.short_sha }} specific_path: ${{ steps.variables.outputs.path }} steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # pin@v4 + - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v4 with: fetch-depth: 2 ref: ${{ inputs.git_ref }} From aaa4641c14c9a28dbc8afcc4c48d4f5004bc62ca Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 23 Sep 2024 09:34:02 +0100 Subject: [PATCH 2/2] Renovate Update actions/download-artifact digest to fa0a91b (#2788) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/_build-and-push.yml | 2 +- .github/workflows/_codecov.yml | 6 +++--- .github/workflows/_run-behat-tests.yml | 2 +- .github/workflows/_seed-database.yml | 2 +- .github/workflows/_slack-notification.yml | 2 +- .github/workflows/path-to-live.yml | 8 ++++---- 6 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/_build-and-push.yml b/.github/workflows/_build-and-push.yml index efa277eaf2..fd349c10f2 100644 --- a/.github/workflows/_build-and-push.yml +++ b/.github/workflows/_build-and-push.yml @@ -112,7 +112,7 @@ jobs: (inputs.specific_path == 'all' || inputs.specific_path == matrix.svc_prefix) - name: download artifact - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: ${{ matrix.artifact_to_dl }} path: service-${{ matrix.svc_prefix }}/web/dist diff --git a/.github/workflows/_codecov.yml b/.github/workflows/_codecov.yml index 570ba30250..989380dff2 100644 --- a/.github/workflows/_codecov.yml +++ b/.github/workflows/_codecov.yml @@ -18,7 +18,7 @@ jobs: - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: download artifact for front tests id: download-artifact-front-tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 continue-on-error: true with: name: service-front @@ -26,7 +26,7 @@ jobs: if: inputs.specific_path == 'all' - name: download artifact for api tests id: download-artifact-api-tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 continue-on-error: true with: name: service-api @@ -34,7 +34,7 @@ jobs: if: inputs.specific_path == 'all' - name: download artifact for admin tests id: download-artifact-admin-tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 continue-on-error: true with: name: service-admin diff --git a/.github/workflows/_run-behat-tests.yml b/.github/workflows/_run-behat-tests.yml index 55f080b809..d44366f91f 100644 --- a/.github/workflows/_run-behat-tests.yml +++ b/.github/workflows/_run-behat-tests.yml @@ -47,7 +47,7 @@ jobs: working-directory: tests/smoke - name: download cluster_config - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: environment_config_file_${{ inputs.workspace }} path: terraform/environment diff --git a/.github/workflows/_seed-database.yml b/.github/workflows/_seed-database.yml index f88e6e529b..c477bea12a 100644 --- a/.github/workflows/_seed-database.yml +++ b/.github/workflows/_seed-database.yml @@ -24,7 +24,7 @@ jobs: role-session-name: OPGUseAnLPASeedGithubAction - name: download cluster_config - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: environment_config_file_${{ inputs.workspace }} path: terraform/environment diff --git a/.github/workflows/_slack-notification.yml b/.github/workflows/_slack-notification.yml index e387411daf..e5ba975fc3 100644 --- a/.github/workflows/_slack-notification.yml +++ b/.github/workflows/_slack-notification.yml @@ -40,7 +40,7 @@ jobs: run: pip install -r scripts/pipeline/requirements.txt - name: download cluster_config - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: environment_config_file_${{ inputs.workspace }} path: /tmp diff --git a/.github/workflows/path-to-live.yml b/.github/workflows/path-to-live.yml index 328b695aca..06ffa9ecc0 100644 --- a/.github/workflows/path-to-live.yml +++ b/.github/workflows/path-to-live.yml @@ -92,17 +92,17 @@ jobs: steps: - uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc # pin@v3 - name: download artifact for front tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: service-front path: service-front - name: download artifact for api tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: service-api path: service-api - name: download artifact for api tests - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: service-admin path: service-admin @@ -204,7 +204,7 @@ jobs: with: fetch-depth: '0' - name: download cluster_config - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: name: environment_config_file_production path: terraform/environment