diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml index 0369f6e1..141f2939 100644 --- a/.github/workflows/chart.yaml +++ b/.github/workflows/chart.yaml @@ -28,7 +28,7 @@ jobs: version: ${{ steps.version.outputs.version }} name: ${{ steps.name.outputs.name }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 @@ -79,18 +79,18 @@ jobs: runs-on: ubuntu-latest-16-cores needs: meta steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 - name: Restore Chart Metadata - uses: actions/download-artifact@v4.2.1 + uses: actions/download-artifact@v5.0.0 with: name: chart-metadata path: ./charts/${{ needs.meta.outputs.name }} - name: Restore CRDs Chart Metadata - uses: actions/download-artifact@v4.2.1 + uses: actions/download-artifact@v5.0.0 with: name: crds-chart-metadata path: ./charts/${{ needs.meta.outputs.name }}-crds @@ -100,7 +100,7 @@ jobs: with: version: ${{ env.HELM_VERSION }} - - uses: actions/setup-python@v5 + - uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} check-latest: true @@ -166,24 +166,24 @@ jobs: runs-on: ubuntu-latest needs: [meta, lint-test] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 - name: Restore Chart Metadata - uses: actions/download-artifact@v4.2.1 + uses: actions/download-artifact@v5.0.0 with: name: chart-metadata path: ./charts/${{ needs.meta.outputs.name }} - name: Restore Chart Values - uses: actions/download-artifact@v4.2.1 + uses: actions/download-artifact@v5.0.0 with: name: chart-values path: ./charts/${{ needs.meta.outputs.name }} - name: Restore CRDs Chart Metadata - uses: actions/download-artifact@v4.2.1 + uses: actions/download-artifact@v5.0.0 with: name: crds-chart-metadata path: ./charts/${{ needs.meta.outputs.name }}-crds @@ -191,14 +191,14 @@ jobs: - id: auth if: github.actor != 'dependabot[bot]' name: Authenticate to Google Cloud - uses: google-github-actions/auth@v2.1.8 + uses: google-github-actions/auth@v3.0.0 with: workload_identity_provider: ${{ secrets.NAIS_IO_WORKLOAD_IDENTITY_PROVIDER }} service_account: ${{ env.SERVICE_ACCOUNT }} token_format: access_token - name: Set up Cloud SDK - uses: google-github-actions/setup-gcloud@v2 + uses: google-github-actions/setup-gcloud@v3 - name: Log in to Google Artifact Registry if: github.actor != 'dependabot[bot]' diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 93710ab5..4b203711 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -53,11 +53,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -71,7 +71,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@v4 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -84,6 +84,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/dependabot-auto-merge.yaml b/.github/workflows/dependabot-auto-merge.yaml index 89510536..e997c331 100644 --- a/.github/workflows/dependabot-auto-merge.yaml +++ b/.github/workflows/dependabot-auto-merge.yaml @@ -12,13 +12,13 @@ jobs: steps: - name: Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@v2.3.0 + uses: dependabot/fetch-metadata@v2.4.0 with: github-token: "${{ secrets.GITHUB_TOKEN }}" - name: Generate token id: app-token - uses: actions/create-github-app-token@v1 + uses: actions/create-github-app-token@v2 with: app-id: ${{ secrets.DEPENDABOT_AUTO_MERGE_APP_ID}} private-key: ${{ secrets.DEPENDABOT_AUTO_MERGE_APP_SECRET }} diff --git a/.github/workflows/image.yml b/.github/workflows/image.yml index 6f7e4ac9..21f6a532 100644 --- a/.github/workflows/image.yml +++ b/.github/workflows/image.yml @@ -28,7 +28,7 @@ jobs: "version": ${{ steps.version.outputs.version }} "name": ${{ steps.name.outputs.name }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 @@ -43,14 +43,14 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Set up Go environment - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: "1.24" cache: false - name: golangci-lint - uses: golangci/golangci-lint-action@v6 + uses: golangci/golangci-lint-action@v8 with: version: latest args: --timeout=5m @@ -60,14 +60,14 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Restore cached binaries uses: actions/cache/restore@v4 with: path: ${{ github.workspace }}/bin key: ${{ runner.os }}-bin-${{ hashFiles('Makefile', 'go.mod') }} - name: Set up Go environment - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: "1.24" - name: Install make @@ -119,7 +119,7 @@ jobs: runs-on: ubuntu-latest-16-cores needs: [meta, lint, build] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: docker/login-action@v3 with: registry: ${{ env.GHCR_REGISTRY }} diff --git a/.github/workflows/protobuf-generation.yml b/.github/workflows/protobuf-generation.yml index 98ab1e91..9f9b2fd9 100644 --- a/.github/workflows/protobuf-generation.yml +++ b/.github/workflows/protobuf-generation.yml @@ -23,7 +23,7 @@ jobs: steps: - name: Checkout PR - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: # Checkout the PR branch with full access to push changes back token: ${{ secrets.GITHUB_TOKEN }} @@ -31,7 +31,7 @@ jobs: fetch-depth: 0 - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: "1.24" diff --git a/.github/workflows/rollout.yaml b/.github/workflows/rollout.yaml index db29c984..6f43ef44 100644 --- a/.github/workflows/rollout.yaml +++ b/.github/workflows/rollout.yaml @@ -21,7 +21,7 @@ jobs: version: ${{ steps.version.outputs.version }} name: ${{ steps.name.outputs.name }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 @@ -68,7 +68,7 @@ jobs: runs-on: ubuntu-latest needs: [meta, rollout-controller] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: git tag and push run: | git tag ${{ needs.meta.outputs.version }}