Skip to content

Commit d803fc1

Browse files
renovate[bot]renovate[bot]
authored
deps: update github actions
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent 40e195d commit d803fc1

File tree

9 files changed

+21
-21
lines changed

9 files changed

+21
-21
lines changed

.github/workflows/CI.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -168,7 +168,7 @@ jobs:
168168
outputs: type=oci,dest=/tmp/${{ matrix.config.name }}-image.tar
169169

170170
- name: Upload image as artifact
171-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
171+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
172172
with:
173173
name: ${{ matrix.config.name }}-image.tar
174174
path: /tmp/${{ matrix.config.name }}-image.tar
@@ -184,7 +184,7 @@ jobs:
184184
run: echo "" > tag
185185

186186
- name: Upload tag for tests
187-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
187+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
188188
with:
189189
name: dev-${{ env.DATETIME }}
190190
path: tag
@@ -306,7 +306,7 @@ jobs:
306306
run: rsync -av --delete --exclude='charts/*.tgz' ./${{ matrix.config.path }}/ ./helm-charts-repository/charts/${{ matrix.config.name }}/
307307

308308
- name: Create Pull Request
309-
uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5
309+
uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v7.0.8
310310
with:
311311
token: ${{ secrets.KEPTN_BOT_TOKEN }}
312312
path: ./helm-charts-repository

.github/workflows/e2e-test.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ jobs:
4545

4646
- name: Upload ${{ matrix.config.name }} cluster logs
4747
if: always()
48-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
48+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
4949
with:
5050
name: logs-e2e-tests-${{ matrix.config.name }}
5151
path: .github/scripts/logs

.github/workflows/integration-test-component.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
uses: ./.github/actions/deploy-prometheus-on-cluster
3939

4040
- name: Install Chainsaw
41-
uses: kyverno/action-install-chainsaw@d311eacde764f806c9658574ff64c9c3b21f8397 # v0.2.11
41+
uses: kyverno/action-install-chainsaw@6354895e0f99ab23d3e38d85cf5c71b5dc21d727 # v0.2.13
4242

4343
- name: Run Integration Tests ${{ inputs.type }}
4444
working-directory: .
@@ -51,7 +51,7 @@ jobs:
5151

5252
- name: Upload cluster logs
5353
if: failure()
54-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
54+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
5555
with:
5656
name: logs-integration-tests-${{ inputs.type }}
5757
path: .github/scripts/logs

.github/workflows/integration-test.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ jobs:
3939
uses: ./.github/actions/deploy-prometheus-on-cluster
4040

4141
- name: Install Chainsaw
42-
uses: kyverno/action-install-chainsaw@d311eacde764f806c9658574ff64c9c3b21f8397 # v0.2.11
42+
uses: kyverno/action-install-chainsaw@6354895e0f99ab23d3e38d85cf5c71b5dc21d727 # v0.2.13
4343

4444
- name: Run Integration Tests
4545
working-directory: .
@@ -52,7 +52,7 @@ jobs:
5252

5353
- name: Upload cluster logs
5454
if: failure()
55-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
55+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
5656
with:
5757
name: logs-integration-tests-${{ inputs.cert-manager-io-enabled }}
5858
path: .github/scripts/logs

.github/workflows/load-test.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ jobs:
5757

5858
- name: Upload results
5959
if: always()
60-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
60+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6161
with:
6262
name: load-tests-results
6363
path: ./collected-metrics
@@ -69,7 +69,7 @@ jobs:
6969

7070
- name: Upload cluster logs
7171
if: failure()
72-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
72+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
7373
with:
7474
name: logs-load-tests
7575
path: .github/scripts/logs

.github/workflows/release.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -162,7 +162,7 @@ jobs:
162162
password: ${{ secrets.GITHUB_TOKEN }}
163163

164164
- name: Set up Cosign
165-
uses: sigstore/cosign-installer@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a # v3.8.1
165+
uses: sigstore/cosign-installer@3454372f43399081ed03b604cb2d021dabca52bb # v3.8.2
166166

167167
- name: Clean up image tag
168168
id: clean-image-tag
@@ -215,7 +215,7 @@ jobs:
215215
output-file: ./sbom-${{ matrix.config.name }}.spdx.json
216216

217217
- name: Attach SBOM to release
218-
uses: softprops/action-gh-release@c95fe1489396fe8a9eb87c0abf8aa5b2ef267fda # v2.2.1
218+
uses: softprops/action-gh-release@da05d552573ad5aba039eaac05058a918a7bf631 # v2.2.2
219219
with:
220220
tag_name: ${{ matrix.config.tagName }}
221221
files: ./sbom-${{ matrix.config.name }}.spdx.json
@@ -234,7 +234,7 @@ jobs:
234234
${{ env.IMAGE_NAME }}@${{ env.IMAGE_DIGEST }}
235235
236236
- name: Upload verification log as artifact
237-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
237+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
238238
with:
239239
name: cosign-attest-verification-log
240240
path: ./cosign-attest-output.json

.github/workflows/scorecard.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
persist-credentials: false
3939

4040
- name: "Run analysis"
41-
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
41+
uses: ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde # v2.4.2
4242
with:
4343
results_file: results.sarif
4444
results_format: sarif
@@ -60,14 +60,14 @@ jobs:
6060
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
6161
# format to the repository Actions tab.
6262
- name: "Upload artifact"
63-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
63+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6464
with:
6565
name: SARIF file
6666
path: results.sarif
6767
retention-days: 5
6868

6969
# Upload the results to GitHub's code scanning dashboard.
7070
- name: "Upload to code-scanning"
71-
uses: github/codeql-action/upload-sarif@6bb031afdd8eb862ea3fc1848194185e076637e5 # v3.28.11
71+
uses: github/codeql-action/upload-sarif@5378192d256ef1302a6980fffe5ca04426d43091 # v3.28.21
7272
with:
7373
sarif_file: results.sarif

.github/workflows/security-scans.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -65,14 +65,14 @@ jobs:
6565
path: ./dist
6666

6767
- name: Upload tag
68-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
68+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6969
with:
7070
name: tag
7171
path: |
7272
./dist/dev-*/
7373
7474
- name: Upload images
75-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
75+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
7676
with:
7777
name: images
7878
path: |
@@ -148,7 +148,7 @@ jobs:
148148
149149
- name: KICS Scan
150150
if: matrix.tool == 'kics'
151-
uses: Checkmarx/kics-github-action@94469746ec2c43de89a42fb9d2a80070f5d25b16 # v2.1.3
151+
uses: Checkmarx/kics-github-action@c11ca46d31795a2f186f1af610d121e3bcd647a0 # v2.1.14
152152
with:
153153
path: scans
154154
config_path: .github/kics-config.yml
@@ -157,7 +157,7 @@ jobs:
157157

158158
- name: Upload KICS results
159159
if: always() && matrix.tool == 'kics'
160-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
160+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
161161
with:
162162
name: kics-results
163163
path: results.json

.github/workflows/spell-checker.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,7 @@ jobs:
2929
steps:
3030
- name: check-spelling
3131
id: spelling
32-
uses: check-spelling/check-spelling@67debf50669c7fc76fc8f5d7f996384535a72b77 # v0.0.24
32+
uses: check-spelling/check-spelling@c635c2f3f714eec2fcf27b643a1919b9a811ef2e # v0.0.25
3333
with:
3434
suppress_push_for_open_pull_request: ${{ github.actor != 'dependabot[bot]' && github.actor != 'renovate[bot]' && 1 }}
3535
checkout: true

0 commit comments

Comments
 (0)