Skip to content

Commit 9bd1ab5

Browse files
Update github actions
1 parent 46c4552 commit 9bd1ab5

7 files changed

Lines changed: 13 additions & 13 deletions

File tree

.github/workflows/checks.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -18,15 +18,15 @@ jobs:
1818

1919
steps:
2020
- name: Harden Runner
21-
uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
21+
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
2222
with:
2323
egress-policy: audit
2424
disable-telemetry: true
2525

2626
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2727

2828
- name: Setup Go environment
29-
uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
29+
uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0
3030
with:
3131
cache: true
3232
go-version-file: go.mod

.github/workflows/codeql.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -41,7 +41,7 @@ jobs:
4141

4242
steps:
4343
- name: Harden Runner
44-
uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
44+
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
4545
with:
4646
egress-policy: audit
4747
disable-telemetry: true
@@ -51,15 +51,15 @@ jobs:
5151

5252

5353
- name: Setup Go environment
54-
uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
54+
uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0
5555
with:
5656
cache: true
5757
go-version-file: go.mod
5858
cache-dependency-path: '**/go.sum'
5959

6060
# Initializes the CodeQL tools for scanning.
6161
- name: Initialize CodeQL
62-
uses: github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
62+
uses: github/codeql-action/init@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
6363
with:
6464
languages: ${{ matrix.language }}
6565
# If you wish to specify custom queries, you can do so here or in a config file.
@@ -69,7 +69,7 @@ jobs:
6969
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
7070
# If this step fails, then you should remove it and run the build manually (see below)
7171
- name: Autobuild
72-
uses: github/codeql-action/autobuild@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
72+
uses: github/codeql-action/autobuild@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
7373

7474
# ℹ️ Command-line programs to run using the OS shell.
7575
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -82,6 +82,6 @@ jobs:
8282
# ./location_of_script_within_repo/buildscript.sh
8383

8484
- name: Perform CodeQL Analysis
85-
uses: github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
85+
uses: github/codeql-action/analyze@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
8686
with:
8787
category: "/language:${{matrix.language}}"

.github/workflows/label-pr-size.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -29,4 +29,4 @@ jobs:
2929
runs-on: ubuntu-latest
3030
steps:
3131
- name: Label PR by size
32-
uses: conforma/pr-size-label-action@v1.0.0
32+
uses: conforma/pr-size-label-action@v1.2.0

.github/workflows/publish-schema.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -48,7 +48,7 @@ jobs:
4848
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4949

5050
- name: Setup Go environment
51-
uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
51+
uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0
5252
with:
5353
cache: true
5454
go-version-file: schema/go.mod

.github/workflows/release.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -54,7 +54,7 @@ jobs:
5454
echo "version=$(./hack/next-version.sh)" >> "$GITHUB_ENV"
5555
5656
- name: API Release
57-
uses: softprops/action-gh-release@62c96d0c4e8a889135c1f3a25910db8dbe0e85f7 # v2.3.4
57+
uses: softprops/action-gh-release@3bb12739c298aeb8a4eeaf626c5b8d85266b0e65 # v2.6.2
5858
with:
5959
name: API Release ${{env.version}}
6060
tag_name: ${{env.version}}

.github/workflows/scorecards.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -31,7 +31,7 @@ jobs:
3131

3232
steps:
3333
- name: Harden Runner
34-
uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
34+
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
3535
with:
3636
egress-policy: audit
3737
disable-telemetry: true
@@ -72,6 +72,6 @@ jobs:
7272

7373
# Upload the results to GitHub's code scanning dashboard.
7474
- name: "Upload to code-scanning"
75-
uses: github/codeql-action/upload-sarif@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
75+
uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
7676
with:
7777
sarif_file: results.sarif

.github/workflows/website.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
REPOSITORY: conforma/conforma.github.io
3939
steps:
4040
- name: Harden Runner
41-
uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
41+
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
4242
with:
4343
egress-policy: audit
4444
disable-telemetry: true

0 commit comments

Comments
 (0)