Bump GH Action versions (#66)

Signed-off-by: peterdeme <[email protected]>

.github/workflows/build-binary.yml

@@ -14,7 +14,7 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Mark source directory as safe. # This is some duct tape over the git version in the Go image complaining about this since one of the 1.19.x versions. Feel free to remove once it doesn't break the build anymore. See https://github.com/actions/runner/issues/2033 and https://github.com/actions/checkout/issues/760#issuecomment-1097797031
         run: git config --global --add safe.directory $GITHUB_WORKSPACE

.github/workflows/linting.yml

@@ -10,7 +10,7 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Check formatting using gofmt
         run: gofmt -s -l -d

.github/workflows/preprod-deployment.yml

@@ -22,7 +22,7 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Mark source directory as safe. # This is some duct tape over the git version in the Go image complaining about this since one of the 1.19.x versions. Feel free to remove once it doesn't break the build anymore. See https://github.com/actions/runner/issues/2033 and https://github.com/actions/checkout/issues/760#issuecomment-1097797031
         run: git config --global --add safe.directory $GITHUB_WORKSPACE
@@ -107,17 +107,16 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Download the VCS Agent binary
         uses: actions/download-artifact@v3
         with:
           name: vcs-agent-binary
           path: ./build
-          retention-days: 1
 
       - name: Configure AWS credentials
-        uses: aws-actions/configure-aws-credentials@v2
+        uses: aws-actions/configure-aws-credentials@v4
         if: ${{ github.ref == 'refs/heads/main' }}
         with:
           aws-region: eu-west-1
@@ -144,13 +143,13 @@ jobs:
 
     # This will be needed in the future for adding multi architecture build support
     #  - name: Set up QEMU
-    #    uses: docker/setup-qemu-action@v2
+    #    uses: docker/setup-qemu-action@v3
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v2
+        uses: docker/setup-buildx-action@v3
 
       - name: Build and push the image
-        uses: docker/build-push-action@v3
+        uses: docker/build-push-action@v5
         with:
           context: .
           platforms: linux/amd64

.github/workflows/prod-deployment.yml

@@ -22,7 +22,7 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Mark source directory as safe. # This is some duct tape over the git version in the Go image complaining about this since one of the 1.19.x versions. Feel free to remove once it doesn't break the build anymore. See https://github.com/actions/runner/issues/2033 and https://github.com/actions/checkout/issues/760#issuecomment-1097797031
         run: git config --global --add safe.directory $GITHUB_WORKSPACE
@@ -107,17 +107,16 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Download the VCS Agent binary
         uses: actions/download-artifact@v3
         with:
           name: vcs-agent-binary
           path: ./build
-          retention-days: 1
 
       - name: Configure AWS credentials
-        uses: aws-actions/configure-aws-credentials@v2
+        uses: aws-actions/configure-aws-credentials@v4
         if: ${{ github.ref == 'refs/heads/production' }}
         with:
           aws-region: eu-west-1
@@ -144,13 +143,13 @@ jobs:
 
     # This will be needed in the future for adding multi architecture build support
     #  - name: Set up QEMU
-    #    uses: docker/setup-qemu-action@v2
+    #    uses: docker/setup-qemu-action@v3
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v2
+        uses: docker/setup-buildx-action@v3
 
       - name: Build and push the image
-        uses: docker/build-push-action@v3
+        uses: docker/build-push-action@v5
         with:
           context: .
           platforms: linux/amd64

.github/workflows/prod-pr.yml

@@ -8,7 +8,7 @@ jobs:
   create-pr:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
 
       - name: Set PR template
         id: template
@@ -18,7 +18,7 @@ jobs:
           trim: false
 
       - name: Create Pull Request
-        uses: vsoch/[email protected].13
+        uses: vsoch/[email protected].24
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           PASS_IF_EXISTS: true

.github/workflows/security.yml

@@ -12,7 +12,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4
 
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v1
@@ -34,7 +34,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4
 
       - name: Run GoSec Security Scanner
         uses: securego/gosec@master

.github/workflows/trivy.yml

@@ -19,11 +19,11 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with: { fetch-depth: 0 }
 
       - name: Set up Go
-        uses: actions/setup-go@v3
+        uses: actions/setup-go@v4
         with: { go-version: 1.18 }
 
       - name: parse short SHA
@@ -52,7 +52,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Download build artifacts
         uses: actions/download-artifact@v3
@@ -61,10 +61,10 @@ jobs:
           path: build
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v2
+        uses: docker/setup-buildx-action@v3
 
       - name: Build and push the image
-        uses: docker/build-push-action@v3
+        uses: docker/build-push-action@v5
         with:
           context: .
           push: false

.github/workflows/unit-testing.yml

@@ -10,7 +10,7 @@ jobs:
 
     steps:
       - name: Check out repository code
-        uses: actions/checkout@master
+        uses: actions/checkout@v4
 
       - name: Test the code
         run: go test -race ./...