From 7a2e68bab3b643969f3201d381cac0fe709239eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 15:08:37 +0000 Subject: [PATCH] build(deps): bump the all-actions group with 7 updates Bumps the all-actions group with 7 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [github/codeql-action](https://github.com/github/codeql-action) | `1` | `3` | | [docker/login-action](https://github.com/docker/login-action) | `1.10.0` | `3.1.0` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `3.3.0` | `5.5.1` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `2.5.0` | `5.3.0` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `1` | `4` | | [google-github-actions/release-please-action](https://github.com/google-github-actions/release-please-action) | `2` | `4` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `github/codeql-action` from 1 to 3 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v1...v3) Updates `docker/login-action` from 1.10.0 to 3.1.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/f054a8b539a109f9f41c372932f1ae047eff08c9...e92390c5fb421da1463c202d546fed0ec5c39f20) Updates `docker/metadata-action` from 3.3.0 to 5.5.1 - [Release notes](https://github.com/docker/metadata-action/releases) - [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md) - [Commits](https://github.com/docker/metadata-action/compare/98669ae865ea3cffbcbaa878cf57c20bbf1c6c38...8e5442c4ef9f78752691e2d8f8d19755c6f78e81) Updates `docker/build-push-action` from 2.5.0 to 5.3.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/ad44023a93711e3deb337508980b4b5e9bcdc5dc...2cdde995de11925a030ce8070c3d77a52ffcf1c0) Updates `codecov/codecov-action` from 1 to 4 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v1...v4) Updates `google-github-actions/release-please-action` from 2 to 4 - [Release notes](https://github.com/google-github-actions/release-please-action/releases) - [Changelog](https://github.com/google-github-actions/release-please-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/google-github-actions/release-please-action/compare/v2...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: docker/metadata-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: google-github-actions/release-please-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/continuous-deployment.yml | 6 +++--- .github/workflows/continuous-integration.yml | 4 ++-- .github/workflows/repolinter.yml | 2 +- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 470451a5..c11fa9ee 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -24,12 +24,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Initialize CodeQL - uses: github/codeql-action/init@v1 + uses: github/codeql-action/init@v3 with: languages: ${{ matrix.language }} - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 + uses: github/codeql-action/analyze@v3 diff --git a/.github/workflows/continuous-deployment.yml b/.github/workflows/continuous-deployment.yml index adac60ee..1cd73585 100644 --- a/.github/workflows/continuous-deployment.yml +++ b/.github/workflows/continuous-deployment.yml @@ -26,7 +26,7 @@ jobs: uses: actions/checkout@v4 - name: Log in to the Container registry - uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9 + uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 with: registry: ghcr.io username: ${{ github.actor }} @@ -34,7 +34,7 @@ jobs: - name: Extract metadata (tags, labels) for Docker id: meta - uses: docker/metadata-action@98669ae865ea3cffbcbaa878cf57c20bbf1c6c38 + uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 with: images: ${{ env.IMAGE_NAME }} tags: | @@ -43,7 +43,7 @@ jobs: type=raw,value=${{ inputs.tag }},enable=${{ github.event_name == 'workflow_dispatch' }} - name: Build and push Docker image - uses: docker/build-push-action@ad44023a93711e3deb337508980b4b5e9bcdc5dc + uses: docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0 with: context: . file: ./packages/rest/Dockerfile diff --git a/.github/workflows/continuous-integration.yml b/.github/workflows/continuous-integration.yml index af44b647..2a3b8f85 100644 --- a/.github/workflows/continuous-integration.yml +++ b/.github/workflows/continuous-integration.yml @@ -90,7 +90,7 @@ jobs: - name: Run tests run: yarn test --coverage - - uses: codecov/codecov-action@v1 + - uses: codecov/codecov-action@v4 if: always() package-finder: @@ -126,7 +126,7 @@ jobs: matrix: package: ${{fromJson(needs.package-finder.outputs.packages)}} steps: - - uses: google-github-actions/release-please-action@v2 + - uses: google-github-actions/release-please-action@v4 id: release-please with: path: packages/${{ matrix.package }} diff --git a/.github/workflows/repolinter.yml b/.github/workflows/repolinter.yml index f33a30eb..c1df9dcc 100644 --- a/.github/workflows/repolinter.yml +++ b/.github/workflows/repolinter.yml @@ -12,6 +12,6 @@ jobs: container: ghcr.io/todogroup/repolinter:v0.10.1 steps: - name: Checkout Code - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Lint Repo run: bundle exec /app/bin/repolinter.js --rulesetUrl https://raw.githubusercontent.com/hyperledger-labs/hyperledger-community-management-tools/master/repo_structure/repolint.json