From 2aeae6f7fd940b2dc3ffc0f6e243c354afb115aa Mon Sep 17 00:00:00 2001 From: Victor Morales Date: Sat, 6 Jul 2024 08:58:52 -0700 Subject: [PATCH] Replace dependabot for custom script --- .github/dependabot.yml | 16 ---------------- .github/workflows/diagram.yml | 6 +++--- .github/workflows/distros.yml | 6 +++--- .github/workflows/lint.yml | 14 +++++++------- .github/workflows/on-demand_ci.yml | 12 ++++++------ .github/workflows/rebase.yml | 4 ++-- .github/workflows/scheduled_ci.yml | 4 ++-- .github/workflows/spell.yml | 8 ++++---- .github/workflows/update.yml | 14 +++++--------- ci/update_versions.sh | 8 ++++++++ 10 files changed, 40 insertions(+), 52 deletions(-) delete mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index 351ef4a..0000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,16 +0,0 @@ ---- -# SPDX-license-identifier: Apache-2.0 -############################################################################## -# Copyright (c) 2021 -# All rights reserved. This program and the accompanying materials -# are made available under the terms of the Apache License, Version 2.0 -# which accompanies this distribution, and is available at -# http://www.apache.org/licenses/LICENSE-2.0 -############################################################################## - -version: 2 -updates: - - package-ecosystem: "github-actions" - directory: "/" - schedule: - interval: "daily" diff --git a/.github/workflows/diagram.yml b/.github/workflows/diagram.yml index 7503261..580ec51 100644 --- a/.github/workflows/diagram.yml +++ b/.github/workflows/diagram.yml @@ -25,14 +25,14 @@ jobs: pull-requests: write # for technote-space/create-pr-action to create a PR runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Update diagram - uses: githubocto/repo-visualizer@0.9.1 + uses: githubocto/repo-visualizer@a999615bdab757559bf94bda1fe6eef232765f85 # refs/tags/0.9.1 with: excluded_paths: "ignore,.github" output_file: codebase-structure.svg should_push: false - - uses: technote-space/create-pr-action@v2.1.4 + - uses: technote-space/create-pr-action@91114507cf92349bec0a9a501c2edf1635427bc5 # refs/tags/v2.1.4 with: COMMIT_MESSAGE: 'Upgrade documentation diagram' COMMIT_NAME: 'electrocucaracha bot' diff --git a/.github/workflows/distros.yml b/.github/workflows/distros.yml index 3b91ddf..dab3e3a 100644 --- a/.github/workflows/distros.yml +++ b/.github/workflows/distros.yml @@ -22,14 +22,14 @@ jobs: contents: write # for technote-space/create-pr-action to push code pull-requests: write # for technote-space/create-pr-action to create a PR steps: - - uses: actions/checkout@v4.1.7 - - uses: actions/cache@v4.0.2 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # refs/tags/v4.0.2 with: path: ~/.vagrant.d/boxes key: ${{ runner.os }}-vagrant-${{ hashFiles('distros_supported.yml') }} - name: Install vagrant tool run: brew install vagrant - - uses: technote-space/create-pr-action@v2.1.4 + - uses: technote-space/create-pr-action@91114507cf92349bec0a9a501c2edf1635427bc5 # refs/tags/v2.1.4 with: EXECUTE_COMMANDS: | ./ci/update_distros.sh diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 41dd5c4..41f0529 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -19,9 +19,9 @@ jobs: name: Count Lines of Code runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Setup Go - uses: actions/setup-go@v5.0.1 + uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # refs/tags/v5.0.1 with: go-version: '>=1.20.0' - name: Install dependencies @@ -32,16 +32,16 @@ jobs: name: Check documentation external links runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Check broken links - uses: gaurav-nelson/github-action-markdown-link-check@1.0.15 + uses: gaurav-nelson/github-action-markdown-link-check@499c1e7f3637c131334fa8e937c45144f79d72d2 # refs/tags/v1 check-super-linter: name: Check syntax (super-linter) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Run super-linter validation - uses: github/super-linter@v5.0.0 + uses: github/super-linter@4e51915f4a812abf59fed160bb14595c0a38a9e7 # refs/tags/v6 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} LINTER_RULES_PATH: / @@ -49,7 +49,7 @@ jobs: name: Check syntax (tox) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Install tox run: pip install tox - name: Run tox lint validation diff --git a/.github/workflows/on-demand_ci.yml b/.github/workflows/on-demand_ci.yml index 7623934..5af9c36 100644 --- a/.github/workflows/on-demand_ci.yml +++ b/.github/workflows/on-demand_ci.yml @@ -32,8 +32,8 @@ jobs: outputs: scripts: ${{ steps.filter.outputs.scripts }} steps: - - uses: actions/checkout@v4.1.7 - - uses: dorny/paths-filter@v3.0.2 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # refs/tags/v3.0.2 if: ${{ !env.ACT }} id: filter with: @@ -47,9 +47,9 @@ jobs: needs: changes runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Run the sh-checker - uses: luizm/action-sh-checker@v0.8.0 + uses: luizm/action-sh-checker@c6edb3de93e904488b413636d96c6a56e3ad671a # refs/tags/v0.8.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SHFMT_OPTS: -i 4 -s @@ -61,7 +61,7 @@ jobs: needs: changes runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Install ShellSpec run: curl -fsSL https://github.com/shellspec/shellspec/releases/latest/download/shellspec-dist.tar.gz | tar -xz -C .. - name: Run Shellspec @@ -85,7 +85,7 @@ jobs: - os: opensuse_leap provider: virtualbox steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - uses: ./.github/actions/vagrant-setup with: distro: ${{ matrix.os }} diff --git a/.github/workflows/rebase.yml b/.github/workflows/rebase.yml index 5be6821..1024c95 100644 --- a/.github/workflows/rebase.yml +++ b/.github/workflows/rebase.yml @@ -20,11 +20,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the latest code - uses: actions/checkout@v4.1.7 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 with: token: ${{ secrets.GITHUB_TOKEN }} fetch-depth: 0 # otherwise, you will fail to push refs to dest repo - name: Automatic Rebase - uses: cirrus-actions/rebase@1.8 + uses: cirrus-actions/rebase@b87d48154a87a85666003575337e27b8cd65f691 # refs/tags/1.8 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/scheduled_ci.yml b/.github/workflows/scheduled_ci.yml index 7a22625..9319899 100644 --- a/.github/workflows/scheduled_ci.yml +++ b/.github/workflows/scheduled_ci.yml @@ -19,7 +19,7 @@ jobs: check-ubuntu-bionic-baremetal: runs-on: ubuntu-18.04 steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - name: Setup services env: PROVIDER: libvirt @@ -37,7 +37,7 @@ jobs: - os: centos_8 qat: false steps: - - uses: actions/checkout@v4.1.7 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 - uses: ./.github/actions/vagrant-setup with: distro: ${{ matrix.os }} diff --git a/.github/workflows/spell.yml b/.github/workflows/spell.yml index b6ae030..d875979 100644 --- a/.github/workflows/spell.yml +++ b/.github/workflows/spell.yml @@ -24,14 +24,14 @@ jobs: name: Check spelling (reviewdog) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 - - uses: reviewdog/action-misspell@v1.21.0 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: reviewdog/action-misspell@a4e949a18ad1bfe75a5148c3e1230881feeb00da # refs/tags/v1.21.0 with: github_token: ${{ secrets.github_token }} check-spellcheck: name: Check spelling (pyspelling) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 - - uses: igsekor/pyspelling-any@v1.0.4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: igsekor/pyspelling-any@155eb06641bb9259cab59b5126a40be943ecb4f7 # refs/tags/v1.0.4 name: Spellcheck diff --git a/.github/workflows/update.yml b/.github/workflows/update.yml index 31fd20e..3264775 100644 --- a/.github/workflows/update.yml +++ b/.github/workflows/update.yml @@ -12,19 +12,15 @@ name: Scheduled Versions and Dictionary verification # yamllint disable-line rule:truthy on: schedule: - - cron: '0 0 * * *' + - cron: '0 0 * * 5' workflow_dispatch: -permissions: - contents: write # for technote-space/create-pr-action to push code - pull-requests: write # for technote-space/create-pr-action to create a PR - jobs: check-versions: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 - - uses: technote-space/create-pr-action@v2.1.4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: technote-space/create-pr-action@91114507cf92349bec0a9a501c2edf1635427bc5 # refs/tags/v2.1.4 with: EXECUTE_COMMANDS: | ./ci/update_versions.sh @@ -35,8 +31,8 @@ jobs: check-dictionary: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4.1.7 - - uses: technote-space/create-pr-action@v2.1.4 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # refs/tags/v4.1.7 + - uses: technote-space/create-pr-action@91114507cf92349bec0a9a501c2edf1635427bc5 # refs/tags/v2.1.4 with: EXECUTE_COMMANDS: | sudo apt-get update diff --git a/ci/update_versions.sh b/ci/update_versions.sh index 13bcc4c..c8dcbd6 100755 --- a/ci/update_versions.sh +++ b/ci/update_versions.sh @@ -18,3 +18,11 @@ eval "$(curl -fsSL https://raw.githubusercontent.com/electrocucaracha/pkg-mgr_sc sed -i "s|PKG_VAGRANT_VERSION:-.*|PKG_VAGRANT_VERSION:-$PKG_VAGRANT_VERSION}|g" setup.sh sed -i "s/vagrant version.*/vagrant version | awk 'NR==1\{print \$3}')\" != \"$PKG_VAGRANT_VERSION\" \]\]; then/g" validate.sh + +# Update GitHub Action commit hashes +gh_actions=$(grep -r "uses: [a-z\-]*/[\_a-z\-]*@" .github/workflows/ | sed 's/@.*//' | awk -F ': ' '{ print $3 }' | sort | uniq) +for action in $gh_actions; do + commit_hash=$(git ls-remote --tags "https://github.com/$action" | grep 'refs/tags/[v]\?[0-9][0-9\.]*$' | awk '{ print $NF,$0 }' | sort -k1,1 -V | cut -f2- -d' ' | grep -oh '.*refs/tags/[v0-9\.]*$' | tail -1 | awk '{ printf "%s # %s\n",$1,$2 }') + # shellcheck disable=SC2267 + grep -ElRZ "uses: $action@" .github/workflows/ | xargs -0 -l sed -i -e "s|uses: $action@.*|uses: $action@$commit_hash|g" +done