Skip to content

Commit 262e407

Browse files
dependabot[bot]dependabot[bot]
authored
GitHub Actions: Bump the github-actions-dependency group with 9 updates (#1352)
Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 7ad9fe8 commit 262e407

12 files changed

Lines changed: 34 additions & 34 deletions

.github/workflows/clamav.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -50,7 +50,7 @@ jobs:
5050
project-folder: .
5151
- name: Upload ClamAV Scan Report
5252
if: always()
53-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
53+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
5454
with:
5555
name: ${{ env.CLAMAV_ARTIFACT_NAME }}
5656
path: ${{ env.SANITIZED_CLAMAV_REPORT_PATH }}

.github/workflows/codeql.yml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -90,14 +90,14 @@ jobs:
9090
persist-credentials: false
9191

9292
- name: "Initialize CodeQL build mode"
93-
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
93+
uses: github/codeql-action/init@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
9494
with:
9595
languages: ${{ matrix.language }}
9696
build-mode: none
9797
source-root: .
9898

9999
- name: "Perform CodeQL analysis"
100-
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
100+
uses: github/codeql-action/analyze@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
101101
with:
102102
category: "/language:${{matrix.language}}"
103103

@@ -109,7 +109,7 @@ jobs:
109109
outputDir: codeql-report-${{ matrix.language }}
110110

111111
- name: "GitHub Upload Release Artifacts"
112-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
112+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
113113
with:
114114
name: codeql-report-${{ matrix.language }}
115115
path: ./codeql-report-${{ matrix.language }}/report.pdf
@@ -132,16 +132,16 @@ jobs:
132132
persist-credentials: false
133133

134134
- name: "Initialize CodeQL"
135-
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
135+
uses: github/codeql-action/init@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
136136
with:
137137
languages: ${{ matrix.language }}
138138
dependency-caching: true
139139

140140
- name: "Autobuild"
141-
uses: github/codeql-action/autobuild@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
141+
uses: github/codeql-action/autobuild@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
142142

143143
- name: "Perform CodeQL Analysis"
144-
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
144+
uses: github/codeql-action/analyze@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
145145
with:
146146
category: "/language:${{ matrix.language }}"
147147

@@ -153,7 +153,7 @@ jobs:
153153
outputDir: codeql-report-${{ matrix.language }}
154154

155155
- name: "GitHub Upload Release Artifacts"
156-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
156+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
157157
with:
158158
name: codeql-report-${{ matrix.language }}
159159
path: ./codeql-report-${{ matrix.language }}/report.pdf

.github/workflows/coverity.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -111,7 +111,7 @@ jobs:
111111
https://scan.coverity.com/builds?project=${{ secrets.COVERITY_PROJECT }}
112112
113113
- name: Upload coverity results
114-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
114+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
115115
with:
116116
name: coverity-results-${{ github.run_id }}
117117
path: ./scenescape-coverity.tgz

.github/workflows/gitleaks.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -58,7 +58,7 @@ jobs:
5858
gitleaks dir . -v -c ci/.gitleaks.toml --baseline-path ci/gitleaks_baselines/gitleaks.json -r gitleaks.json
5959
- name: Upload Gitleaks Report
6060
if: always()
61-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
61+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
6262
with:
6363
name: gitleaks-report
6464
path: gitleaks.json

.github/workflows/renovate.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -33,13 +33,13 @@ jobs:
3333

3434
- name: "Get token"
3535
id: get-github-app-token
36-
uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0
36+
uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3.1.1
3737
with:
3838
app-id: ${{ secrets.RENOVATE_APP_ID }}
3939
private-key: ${{ secrets.RENOVATE_APP_PEM }}
4040

4141
- name: "Self-hosted Renovate"
42-
uses: renovatebot/github-action@3633cede7d4d4598438e654eac4a695e46004420 # v46.1.7
42+
uses: renovatebot/github-action@f66d8679fcfcfa051abde6e7a623007173bf5164 # v46.1.12
4343
with:
4444
configurationFile: .github/renovate.json5
4545
token: "${{ steps.get-github-app-token.outputs.token }}"

.github/workflows/scorecard.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -55,11 +55,11 @@ jobs:
5555
repo_token: ${{ secrets.SYS_EMF_GH_TOKEN }}
5656
publish_results: true
5757
- name: "Upload Scorecard Results"
58-
uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
58+
uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
5959
with:
6060
sarif_file: scorecard-results.sarif
6161
- name: "Upload Scorecard Results"
62-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
62+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
6363
with:
6464
name: scorecard-results
6565
path: scorecard-results.sarif

.github/workflows/tests-all.yml

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -73,14 +73,14 @@ jobs:
7373
system-prune: "true"
7474

7575
- name: "Log in to GHCR"
76-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
76+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
7777
with:
7878
registry: ghcr.io
7979
username: ${{ github.actor }}
8080
password: ${{ secrets.GITHUB_TOKEN }}
8181

8282
- name: "Log in to DockerHub"
83-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
83+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
8484
with:
8585
username: scenescape
8686
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -134,14 +134,14 @@ jobs:
134134
system-prune: "true"
135135

136136
- name: "Log in to GHCR"
137-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
137+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
138138
with:
139139
registry: ghcr.io
140140
username: ${{ github.actor }}
141141
password: ${{ secrets.GITHUB_TOKEN }}
142142

143143
- name: "Log in to DockerHub"
144-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
144+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
145145
with:
146146
username: scenescape
147147
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -195,14 +195,14 @@ jobs:
195195
system-prune: "true"
196196

197197
- name: "Log in to GHCR"
198-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
198+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
199199
with:
200200
registry: ghcr.io
201201
username: ${{ github.actor }}
202202
password: ${{ secrets.GITHUB_TOKEN }}
203203

204204
- name: "Log in to DockerHub"
205-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
205+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
206206
with:
207207
username: scenescape
208208
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -256,14 +256,14 @@ jobs:
256256
system-prune: "true"
257257

258258
- name: "Log in to GHCR"
259-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
259+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
260260
with:
261261
registry: ghcr.io
262262
username: ${{ github.actor }}
263263
password: ${{ secrets.GITHUB_TOKEN }}
264264

265265
- name: "Log in to DockerHub"
266-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
266+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
267267
with:
268268
username: scenescape
269269
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -317,14 +317,14 @@ jobs:
317317
system-prune: "true"
318318

319319
- name: "Log in to GHCR"
320-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
320+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
321321
with:
322322
registry: ghcr.io
323323
username: ${{ github.actor }}
324324
password: ${{ secrets.GITHUB_TOKEN }}
325325

326326
- name: "Log in to DockerHub"
327-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
327+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
328328
with:
329329
username: scenescape
330330
password: ${{ secrets.DOCKERHUB_TOKEN }}

.github/workflows/tests-bat.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -136,14 +136,14 @@ jobs:
136136
system-prune: "true"
137137

138138
- name: "Log in to GHCR"
139-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
139+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
140140
with:
141141
registry: ghcr.io
142142
username: ${{ github.actor }}
143143
password: ${{ secrets.GITHUB_TOKEN }}
144144

145145
- name: "Log in to DockerHub"
146-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
146+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
147147
with:
148148
username: scenescape
149149
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -192,14 +192,14 @@ jobs:
192192
check-latest: true
193193

194194
- name: "Log in to GHCR"
195-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
195+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
196196
with:
197197
registry: ghcr.io
198198
username: ${{ github.actor }}
199199
password: ${{ secrets.GITHUB_TOKEN }}
200200

201201
- name: "Log in to DockerHub"
202-
uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0
202+
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
203203
with:
204204
username: scenescape
205205
password: ${{ secrets.DOCKERHUB_TOKEN }}

.github/workflows/tracker-service.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -154,7 +154,7 @@ jobs:
154154
conan profile detect --force
155155
156156
- name: "Cache Conan packages"
157-
uses: actions/cache@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
157+
uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5
158158
with:
159159
path: ~/.conan2
160160
key: conan-${{ runner.os }}-${{ hashFiles('tracker/conanfile.txt') }}
@@ -171,7 +171,7 @@ jobs:
171171
run: make -C tracker test-unit-coverage
172172

173173
- name: "Upload coverage reports"
174-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
174+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
175175
with:
176176
name: coverage-reports
177177
path: |
@@ -216,7 +216,7 @@ jobs:
216216
uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0
217217

218218
- name: "Build Docker image"
219-
uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0
219+
uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
220220
with:
221221
context: .
222222
file: tracker/Dockerfile

.github/workflows/trivy.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -94,7 +94,7 @@ jobs:
9494
with:
9595
persist-credentials: false
9696
- name: Run Trivy Critical Filesystem Scan
97-
uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # 0.34.1
97+
uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # 0.34.1
9898
with:
9999
version: "v0.69.2"
100100
scan-type: "fs"

0 commit comments

Comments
 (0)