Skip to content

Commit 1baad62

Browse files
renovate[bot]renovate[bot]
authored
deps: update github actions
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent d6fd74d commit 1baad62

8 files changed

+19
-19
lines changed

.github/workflows/CI.yaml

+3-3
Original file line numberDiff line numberDiff line change
@@ -168,7 +168,7 @@ jobs:
168168
outputs: type=oci,dest=/tmp/${{ matrix.config.name }}-image.tar
169169

170170
- name: Upload image as artifact
171-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
171+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
172172
with:
173173
name: ${{ matrix.config.name }}-image.tar
174174
path: /tmp/${{ matrix.config.name }}-image.tar
@@ -184,7 +184,7 @@ jobs:
184184
run: echo "" > tag
185185

186186
- name: Upload tag for tests
187-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
187+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
188188
with:
189189
name: dev-${{ env.DATETIME }}
190190
path: tag
@@ -306,7 +306,7 @@ jobs:
306306
run: rsync -av --delete --exclude='charts/*.tgz' ./${{ matrix.config.path }}/ ./helm-charts-repository/charts/${{ matrix.config.name }}/
307307

308308
- name: Create Pull Request
309-
uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5
309+
uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v7.0.8
310310
with:
311311
token: ${{ secrets.KEPTN_BOT_TOKEN }}
312312
path: ./helm-charts-repository

.github/workflows/e2e-test.yml

+1-1
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ jobs:
4545

4646
- name: Upload ${{ matrix.config.name }} cluster logs
4747
if: always()
48-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
48+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
4949
with:
5050
name: logs-e2e-tests-${{ matrix.config.name }}
5151
path: .github/scripts/logs

.github/workflows/integration-test-component.yml

+2-2
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
uses: ./.github/actions/deploy-prometheus-on-cluster
3939

4040
- name: Install Chainsaw
41-
uses: kyverno/action-install-chainsaw@d311eacde764f806c9658574ff64c9c3b21f8397 # v0.2.11
41+
uses: kyverno/action-install-chainsaw@f2b47b97dc889c12702113753d713f01ec268de5 # v0.2.12
4242

4343
- name: Run Integration Tests ${{ inputs.type }}
4444
working-directory: .
@@ -51,7 +51,7 @@ jobs:
5151

5252
- name: Upload cluster logs
5353
if: failure()
54-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
54+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
5555
with:
5656
name: logs-integration-tests-${{ inputs.type }}
5757
path: .github/scripts/logs

.github/workflows/integration-test.yml

+2-2
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ jobs:
3939
uses: ./.github/actions/deploy-prometheus-on-cluster
4040

4141
- name: Install Chainsaw
42-
uses: kyverno/action-install-chainsaw@d311eacde764f806c9658574ff64c9c3b21f8397 # v0.2.11
42+
uses: kyverno/action-install-chainsaw@f2b47b97dc889c12702113753d713f01ec268de5 # v0.2.12
4343

4444
- name: Run Integration Tests
4545
working-directory: .
@@ -52,7 +52,7 @@ jobs:
5252

5353
- name: Upload cluster logs
5454
if: failure()
55-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
55+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
5656
with:
5757
name: logs-integration-tests-${{ inputs.cert-manager-io-enabled }}
5858
path: .github/scripts/logs

.github/workflows/load-test.yml

+2-2
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ jobs:
5757

5858
- name: Upload results
5959
if: always()
60-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
60+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6161
with:
6262
name: load-tests-results
6363
path: ./collected-metrics
@@ -69,7 +69,7 @@ jobs:
6969

7070
- name: Upload cluster logs
7171
if: failure()
72-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
72+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
7373
with:
7474
name: logs-load-tests
7575
path: .github/scripts/logs

.github/workflows/release.yml

+2-2
Original file line numberDiff line numberDiff line change
@@ -215,7 +215,7 @@ jobs:
215215
output-file: ./sbom-${{ matrix.config.name }}.spdx.json
216216

217217
- name: Attach SBOM to release
218-
uses: softprops/action-gh-release@c95fe1489396fe8a9eb87c0abf8aa5b2ef267fda # v2.2.1
218+
uses: softprops/action-gh-release@da05d552573ad5aba039eaac05058a918a7bf631 # v2.2.2
219219
with:
220220
tag_name: ${{ matrix.config.tagName }}
221221
files: ./sbom-${{ matrix.config.name }}.spdx.json
@@ -234,7 +234,7 @@ jobs:
234234
${{ env.IMAGE_NAME }}@${{ env.IMAGE_DIGEST }}
235235
236236
- name: Upload verification log as artifact
237-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
237+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
238238
with:
239239
name: cosign-attest-verification-log
240240
path: ./cosign-attest-output.json

.github/workflows/scorecard.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
persist-credentials: false
3939

4040
- name: "Run analysis"
41-
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
41+
uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1
4242
with:
4343
results_file: results.sarif
4444
results_format: sarif
@@ -60,14 +60,14 @@ jobs:
6060
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
6161
# format to the repository Actions tab.
6262
- name: "Upload artifact"
63-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
63+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6464
with:
6565
name: SARIF file
6666
path: results.sarif
6767
retention-days: 5
6868

6969
# Upload the results to GitHub's code scanning dashboard.
7070
- name: "Upload to code-scanning"
71-
uses: github/codeql-action/upload-sarif@6bb031afdd8eb862ea3fc1848194185e076637e5 # v3.28.11
71+
uses: github/codeql-action/upload-sarif@45775bd8235c68ba998cffa5171334d58593da47 # v3.28.15
7272
with:
7373
sarif_file: results.sarif

.github/workflows/security-scans.yml

+4-4
Original file line numberDiff line numberDiff line change
@@ -65,14 +65,14 @@ jobs:
6565
path: ./dist
6666

6767
- name: Upload tag
68-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
68+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6969
with:
7070
name: tag
7171
path: |
7272
./dist/dev-*/
7373
7474
- name: Upload images
75-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
75+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
7676
with:
7777
name: images
7878
path: |
@@ -148,7 +148,7 @@ jobs:
148148
149149
- name: KICS Scan
150150
if: matrix.tool == 'kics'
151-
uses: Checkmarx/kics-github-action@94469746ec2c43de89a42fb9d2a80070f5d25b16 # v2.1.3
151+
uses: Checkmarx/kics-github-action@09100f0152c975eb238c67030f9fd1418acb3666 # v2.1.6
152152
with:
153153
path: scans
154154
config_path: .github/kics-config.yml
@@ -157,7 +157,7 @@ jobs:
157157

158158
- name: Upload KICS results
159159
if: always() && matrix.tool == 'kics'
160-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
160+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
161161
with:
162162
name: kics-results
163163
path: results.json

0 commit comments

Comments
 (0)