From 328e0718b4dc129b2f6dae783175791175c5bc02 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Aug 2024 08:48:58 +0000 Subject: [PATCH] Bump the github-actions group with 10 updates Bumps the github-actions group with 10 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [actions/setup-go](https://github.com/actions/setup-go) | `4` | `5` | | [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) | `4.0.0` | `6.1.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `4` | `6` | | [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.19.0` | `0.24.0` | | [dorny/paths-filter](https://github.com/dorny/paths-filter) | `2` | `3` | | [ad-m/github-push-action](https://github.com/ad-m/github-push-action) | `0.6.0` | `0.8.0` | | [azure/setup-helm](https://github.com/azure/setup-helm) | `3` | `4` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `5` | `6` | | [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `1` | `2` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `actions/setup-go` from 4 to 5 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) Updates `golangci/golangci-lint-action` from 4.0.0 to 6.1.0 - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](https://github.com/golangci/golangci-lint-action/compare/3cfe3a4abbb849e10058ce4af15d205b6da42804...aaa42aa0628b4ae2578232a66b541047968fac86) Updates `docker/build-push-action` from 4 to 6 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v4...v6) Updates `aquasecurity/trivy-action` from 0.19.0 to 0.24.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.19.0...0.24.0) Updates `dorny/paths-filter` from 2 to 3 - [Release notes](https://github.com/dorny/paths-filter/releases) - [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md) - [Commits](https://github.com/dorny/paths-filter/compare/v2...v3) Updates `ad-m/github-push-action` from 0.6.0 to 0.8.0 - [Release notes](https://github.com/ad-m/github-push-action/releases) - [Commits](https://github.com/ad-m/github-push-action/compare/v0.6.0...v0.8.0) Updates `azure/setup-helm` from 3 to 4 - [Release notes](https://github.com/azure/setup-helm/releases) - [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md) - [Commits](https://github.com/azure/setup-helm/compare/v3...v4) Updates `peter-evans/create-pull-request` from 5 to 6 - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](https://github.com/peter-evans/create-pull-request/compare/v5...v6) Updates `softprops/action-gh-release` from 1 to 2 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](https://github.com/softprops/action-gh-release/compare/v1...v2) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: dorny/paths-filter dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: ad-m/github-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: azure/setup-helm dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/build-test.yaml | 16 ++++++++-------- .github/workflows/helm-docs.yaml | 6 +++--- .github/workflows/helm-test.yaml | 12 ++++++------ .github/workflows/release.yaml | 22 +++++++++++----------- 4 files changed, 28 insertions(+), 28 deletions(-) diff --git a/.github/workflows/build-test.yaml b/.github/workflows/build-test.yaml index eb3695eb..a490134a 100644 --- a/.github/workflows/build-test.yaml +++ b/.github/workflows/build-test.yaml @@ -18,13 +18,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Setup Golang - uses: actions/setup-go@v4 + uses: actions/setup-go@v5 with: go-version-file: go.mod - name: Run golangci-lint - uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # v4.0.0 + uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86 # v6.1.0 with: version: v1.54 args: --timeout 10m --exclude SA5011 --verbose --issues-exit-code=0 @@ -45,9 +45,9 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v3 # v3.5.3 + uses: actions/checkout@v4 # v3.5.3 - name: Setup Go - uses: actions/setup-go@v4 + uses: actions/setup-go@v5 with: go-version-file: go.mod @@ -83,7 +83,7 @@ jobs: name: Build Images steps: - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Set up QEMU uses: docker/setup-qemu-action@v3 @@ -93,7 +93,7 @@ jobs: platforms: ${{ matrix.platform }} - name: Build Images - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v6 with: context: . platforms: ${{ matrix.platform }} @@ -104,7 +104,7 @@ jobs: cache-to: type=gha,mode=max - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@0.19.0 + uses: aquasecurity/trivy-action@0.24.0 with: image-ref: 'quay.io/jetstack/version-checker:${{github.sha}}' format: 'table' diff --git a/.github/workflows/helm-docs.yaml b/.github/workflows/helm-docs.yaml index 43b0095d..dad06356 100644 --- a/.github/workflows/helm-docs.yaml +++ b/.github/workflows/helm-docs.yaml @@ -19,12 +19,12 @@ jobs: contents: write pull-requests: write steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: ref: ${{ github.event.pull_request.head.ref }} repository: ${{ github.event.pull_request.head.repo.full_name }} - name: Check for values.yaml changes - uses: dorny/paths-filter@v2 + uses: dorny/paths-filter@v3 id: filter with: filters: | @@ -43,7 +43,7 @@ jobs: cd deploy/charts/version-checker helm-docs - name: Check for README.md changes - uses: dorny/paths-filter@v2 + uses: dorny/paths-filter@v3 id: filter-readme with: base: HEAD diff --git a/.github/workflows/helm-test.yaml b/.github/workflows/helm-test.yaml index 3690b321..43dd2089 100644 --- a/.github/workflows/helm-test.yaml +++ b/.github/workflows/helm-test.yaml @@ -20,9 +20,9 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - - uses: azure/setup-helm@v3 + - uses: azure/setup-helm@v4 - run: helm lint deploy/charts/version-checker @@ -31,9 +31,9 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - - uses: azure/setup-helm@v3 + - uses: azure/setup-helm@v4 with: token: ${{ github.token }} @@ -56,8 +56,8 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Install Kyverno CLI uses: kyverno/action-install-cli@v0.2.0 - - uses: azure/setup-helm@v3 + - uses: azure/setup-helm@v4 - run: kyverno apply -p https://github.com/kyverno/policies/pod-security/restricted --git-branch main --resource <(helm template deploy/charts/version-checker/) diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index f83b42cb..73626298 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -21,7 +21,7 @@ jobs: pull-requests: write contents: write steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - uses: bhowell2/github-substring-action@1.0.2 id: release_number with: @@ -49,7 +49,7 @@ jobs: include: "Makefile" regex: true - name: Detect any Local Changes - uses: dorny/paths-filter@v2 + uses: dorny/paths-filter@v3 id: filter with: base: HEAD @@ -67,7 +67,7 @@ jobs: git commit -a -m "Bump versions to ${{steps.release_number.outputs.substring}} " - name: Push changes if: steps.filter.outputs.versions == 'true' - uses: ad-m/github-push-action@v0.6.0 + uses: ad-m/github-push-action@v0.8.0 with: github_token: ${{ secrets.GITHUB_TOKEN }} branch: ${{ github.ref_name }} @@ -87,19 +87,19 @@ jobs: runs-on: ubuntu-latest steps: # Checkout our Repo - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: path: version-checker - name: checkout jetstack-charts - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: token: ${{ secrets.JETSTACK_CHARTS_PAT }} repository: jetstack/jetstack-charts ref: main path: jetstack-charts - - uses: azure/setup-helm@v3 + - uses: azure/setup-helm@v4 with: token: ${{ github.token }} @@ -109,7 +109,7 @@ jobs: - name: Creating PR if: startsWith(github.ref, 'refs/tags/') - uses: peter-evans/create-pull-request@v5 + uses: peter-evans/create-pull-request@v6 with: token: ${{ secrets.JETSTACK_CHARTS_PAT }} title: "Release version-checker ${{github.ref_name }}" @@ -125,7 +125,7 @@ jobs: docker-release: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up QEMU uses: docker/setup-qemu-action@v3 @@ -142,7 +142,7 @@ jobs: password: ${{ secrets.QUAY_ROBOT_TOKEN }} - name: Build and push (if applicable) - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v6 with: context: . platforms: linux/amd64,linux/arm64 @@ -158,10 +158,10 @@ jobs: contents: write runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Create Release / Change Logs - uses: softprops/action-gh-release@v1 + uses: softprops/action-gh-release@v2 with: draft: ${{ !startsWith(github.ref, 'refs/tags/') }} prerelease: ${{ contains('-rc', github.ref_name) || !startsWith(github.ref, 'refs/tags/') }}