Skip to content

Commit 0191ab9

Browse files
030030
authored
build(deps): [#399] Use semantic versioning for plugins in github actions. (#403)
1 parent d2a56e9 commit 0191ab9

File tree

15 files changed

+40
-34
lines changed

15 files changed

+40
-34
lines changed

.github/workflows/dip.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ jobs:
88
runs-on: ubuntu-latest
99
name: Check whether images are up-to-date
1010
steps:
11-
- uses: actions/checkout@v4
11+
- uses: actions/checkout@v4.1.1
1212
with:
1313
fetch-depth: 0
1414
token: ${{ secrets.WORKFLOW_TOKEN }}
@@ -21,7 +21,7 @@ jobs:
2121
- name: Check Alpine
2222
run: ./dip image --name=alpine --regex=^3\.[0-9]+\.[0-9]+$ --updateDockerfile
2323
- name: Set up Go
24-
uses: actions/setup-go@v2
24+
uses: actions/setup-go@v5.0.0
2525
with:
2626
go-version: 1.19.0
2727
- name: Check Golang
@@ -66,7 +66,7 @@ jobs:
6666
sed -i "s|\(releases\/download\/\)\([0-9]\+\.\)\{2\}[0-9]\+|\1${{ env.NEW_TAG }}|g" README.md
6767
sed -i "s|\(n3dr\/releases\/tag\/\)\([0-9]\+\.\)\{2\}[0-9]\+|\1${{ env.NEW_TAG }}|g" ./docs/quickstarts/snippets/n3dr/DOWNLOAD.md
6868
sed -i "s|\(releases\/download\/\)\([0-9]\+\.\)\{2\}[0-9]\+|\1${{ env.NEW_TAG }}|g" ./docs/quickstarts/snippets/n3dr/DOWNLOAD.md
69-
- uses: EndBug/add-and-commit@v9
69+
- uses: EndBug/add-and-commit@v9.1.3
7070
with:
7171
author_name: github-actions[bot]
7272
author_email: 41898282+github-actions[bot]@users.noreply.github.com
@@ -80,7 +80,7 @@ jobs:
8080
tar -xvf /tmp/git-chglog_0.15.1_linux_amd64.tar.gz -C /tmp
8181
chmod +x /tmp/git-chglog
8282
/tmp/git-chglog -o docs/CHANGELOG.md --config configs/chglog/config.yml --next-tag ${{ env.NEW_TAG }}
83-
- uses: EndBug/add-and-commit@v9
83+
- uses: EndBug/add-and-commit@v9.1.3
8484
with:
8585
author_name: github-actions[bot]
8686
author_email: 41898282+github-actions[bot]@users.noreply.github.com

.github/workflows/dive.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ jobs:
66
runs-on: ubuntu-latest
77
name: Analyze image efficiency
88
steps:
9-
- uses: actions/checkout@v4
9+
- uses: actions/checkout@v4.1.1
1010
- name: Build image
1111
run: docker build -t utrecht/n3dr:${{ github.sha }} .
1212
- uses: 030/[email protected]

.github/workflows/docker.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -9,11 +9,11 @@ jobs:
99
runs-on: ubuntu-latest
1010
steps:
1111
- name: Set up QEMU
12-
uses: docker/setup-qemu-action@v1
12+
uses: docker/setup-qemu-action@v3.0.0
1313
- name: Set up Docker Buildx
14-
uses: docker/setup-buildx-action@v1
14+
uses: docker/setup-buildx-action@v3.0.0
1515
- name: Login to DockerHub
16-
uses: docker/login-action@v1
16+
uses: docker/login-action@v3.0.0
1717
with:
1818
username: ${{ secrets.DOCKERHUB_USERNAME }}
1919
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -22,7 +22,7 @@ jobs:
2222
run: echo ::set-output name=version::${GITHUB_REF#refs/tags/}
2323
- name: Build and push
2424
id: docker_build
25-
uses: docker/build-push-action@v2
25+
uses: docker/build-push-action@v5.1.0
2626
with:
2727
push: true
2828
tags: utrecht/n3dr:${{ steps.version.outputs.version }}

.github/workflows/dockle.yml

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,9 +6,11 @@ jobs:
66
runs-on: ubuntu-latest
77
name: Analyze image using dockle
88
steps:
9-
- uses: actions/checkout@v4
9+
- uses: actions/checkout@v4.1.1
1010
- name: Build image
1111
run: docker build -t utrecht/n3dr:${{ github.sha }} .
12-
- uses: hands-lab/dockle-action@v1
12+
- uses: goodwithtech/dockle-action@v0.1.2
1313
with:
1414
image: utrecht/n3dr:${{ github.sha }}
15+
ignore: CIS-DI-0005,CIS-DI-0006
16+
accept-key: libcrypto3,libssl3

.github/workflows/go.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -14,9 +14,9 @@ jobs:
1414
- os: windows-latest
1515
shasum: sha512sum
1616
steps:
17-
- uses: actions/checkout@v4
17+
- uses: actions/checkout@v4.1.1
1818
- name: Set up Go
19-
uses: actions/setup-go@v2
19+
uses: actions/setup-go@v5.0.0
2020
with:
2121
go-version: 1.19.0
2222
- name: Unit tests
@@ -27,7 +27,7 @@ jobs:
2727
grep -v internal/app/n3dr/n3drtest |\
2828
grep -v cmd/n3dr)
2929
if: ${{ startsWith(matrix.os, 'ubuntu') }}
30-
- uses: codecov/codecov-action@v3
30+
- uses: codecov/codecov-action@v3.1.4
3131
with:
3232
files: ./coverage.txt
3333
flags: unittests

.github/workflows/gosec.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,9 +7,9 @@ jobs:
77
env:
88
GO111MODULE: 'on'
99
steps:
10-
- uses: actions/checkout@v4
10+
- uses: actions/checkout@v4.1.1
1111
- name: Set up Go
12-
uses: actions/setup-go@v2
12+
uses: actions/setup-go@v5.0.0
1313
with:
1414
go-version: 1.19.0
1515
- name: Download gosec

.github/workflows/hadolint.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ jobs:
66
runs-on: ubuntu-latest
77
name: Analyze image using hadolint
88
steps:
9-
- uses: actions/checkout@v4
9+
- uses: actions/checkout@v4.1.1
1010
- uses: hadolint/[email protected]
1111
with:
1212
dockerfile: Dockerfile

.github/workflows/integration.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -5,9 +5,9 @@ jobs:
55
build:
66
runs-on: ubuntu-latest
77
steps:
8-
- uses: actions/checkout@v4
8+
- uses: actions/checkout@v4.1.1
99
- name: Set up Go
10-
uses: actions/setup-go@v2
10+
uses: actions/setup-go@v5.0.0
1111
with:
1212
go-version: 1.19.0
1313
- name: Install bats

.github/workflows/release.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -15,11 +15,11 @@ jobs:
1515
- os: windows-latest
1616
shasum: sha512sum
1717
steps:
18-
- uses: actions/checkout@v4
18+
- uses: actions/checkout@v4.1.1
1919
with:
2020
ref: main
2121
- name: Set up Go
22-
uses: actions/setup-go@v2
22+
uses: actions/setup-go@v5.0.0
2323
with:
2424
go-version: 1.19.0
2525
- name: Set N3DR deliverable environment variable
@@ -59,14 +59,14 @@ jobs:
5959
if: ${{ startsWith(matrix.os, 'windows') }}
6060
# yamllint enable rule:line-length
6161
- name: Upload binaries to release
62-
uses: svenstaro/upload-release-action@v2
62+
uses: svenstaro/upload-release-action@v2.7.0
6363
with:
6464
repo_token: ${{ secrets.GITHUB_TOKEN }}
6565
file: cmd/n3dr/${{ env.n3dr-deliverable }}
6666
asset_name: ${{ env.n3dr-deliverable }}
6767
tag: ${{ github.ref }}
6868
- name: Upload checksums
69-
uses: svenstaro/upload-release-action@v2
69+
uses: svenstaro/upload-release-action@v2.7.0
7070
with:
7171
repo_token: ${{ secrets.GITHUB_TOKEN }}
7272
file: cmd/n3dr/${{ env.n3dr-deliverable }}.sha512.txt

.github/workflows/snapcraft.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -11,17 +11,17 @@ jobs:
1111
needs: [release]
1212
runs-on: ubuntu-latest
1313
steps:
14-
- uses: actions/checkout@v4
14+
- uses: actions/checkout@v4.1.1
1515
with:
1616
ref: main
17-
- uses: snapcore/action-build@v1
17+
- uses: snapcore/action-build@v1.2.0
1818
with:
1919
path: build/package
2020
id: snapcraft
2121
- run: |
2222
sudo snap install --dangerous ${{ steps.snapcraft.outputs.snap }}
2323
n3dr --version | grep "[0-9]\."
24-
- uses: snapcore/action-publish@v1
24+
- uses: snapcore/action-publish@v1.2.0
2525
env:
2626
SNAPCRAFT_STORE_CREDENTIALS: ${{ secrets.SNAPCRAFT_LOGIN }}
2727
with:

0 commit comments

Comments
 (0)