chore(deps): update gitlab runner support dependencies (#114)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | minor | `v4.1.7` -> `v4.2.1` |
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | digest | `692973e` -> `eef6144` |
|
[actions/upload-artifact](https://redirect.github.com/actions/upload-artifact)
| action | minor | `v4.3.4` -> `v4.4.3` |
|
[defenseunicorns/uds-common](https://redirect.github.com/defenseunicorns/uds-common)
| | major | `v0.10.0` -> `v1.1.2` |
|
[defenseunicorns/uds-common](https://redirect.github.com/defenseunicorns/uds-common)
| action | major | `v0.10.0` -> `v1.1.2` |
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | minor | `v3.25.15` -> `v3.26.13` |
| random | required_provider | patch | `3.6.2` -> `3.6.3` |
|
[terraform-aws-modules/vpc/aws](https://registry.terraform.io/modules/terraform-aws-modules/vpc/aws)
([source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc))
| module | minor | `5.1.1` -> `5.14.0` |

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v4.2.1`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v421)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.2.0...v4.2.1)

- Check out other refs/\* by commit if provided, fall back to ref by
[@&#8203;orhantoy](https://redirect.github.com/orhantoy) in
[https://github.com/actions/checkout/pull/1924](https://redirect.github.com/actions/checkout/pull/1924)

###
[`v4.2.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v420)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.7...v4.2.0)

- Add Ref and Commit outputs by
[@&#8203;lucacome](https://redirect.github.com/lucacome) in
[https://github.com/actions/checkout/pull/1180](https://redirect.github.com/actions/checkout/pull/1180)
- Dependency updates by
[@&#8203;dependabot-](https://redirect.github.com/dependabot-)
[https://github.com/actions/checkout/pull/1777](https://redirect.github.com/actions/checkout/pull/1777),
[https://github.com/actions/checkout/pull/1872](https://redirect.github.com/actions/checkout/pull/1872)

</details>

<details>
<summary>actions/upload-artifact (actions/upload-artifact)</summary>

###
[`v4.4.3`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.3)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.2...v4.4.3)

##### What's Changed

- Undo indirect dependency updates from
[#&#8203;627](https://redirect.github.com/actions/upload-artifact/issues/627)
by [@&#8203;joshmgross](https://redirect.github.com/joshmgross) in
[https://github.com/actions/upload-artifact/pull/632](https://redirect.github.com/actions/upload-artifact/pull/632)

**Full Changelog**:
actions/upload-artifact@v4.4.2...v4.4.3

###
[`v4.4.2`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.2)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.1...v4.4.2)

##### What's Changed

- Bump `@actions/artifact` to 2.1.11 by
[@&#8203;robherley](https://redirect.github.com/robherley) in
[https://github.com/actions/upload-artifact/pull/627](https://redirect.github.com/actions/upload-artifact/pull/627)
    -   Includes fix for relative symlinks not resolving properly

**Full Changelog**:
actions/upload-artifact@v4.4.1...v4.4.2

###
[`v4.4.1`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.1)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.0...v4.4.1)

##### What's Changed

- Add a section about hidden files by
[@&#8203;joshmgross](https://redirect.github.com/joshmgross) in
[https://github.com/actions/upload-artifact/pull/607](https://redirect.github.com/actions/upload-artifact/pull/607)
- Add workflow file for publishing releases to immutable action package
by [@&#8203;Jcambass](https://redirect.github.com/Jcambass) in
[https://github.com/actions/upload-artifact/pull/621](https://redirect.github.com/actions/upload-artifact/pull/621)
- Update
[@&#8203;actions/artifact](https://redirect.github.com/actions/artifact)
to latest version, includes symlink and timeout fixes by
[@&#8203;robherley](https://redirect.github.com/robherley) in
[https://github.com/actions/upload-artifact/pull/625](https://redirect.github.com/actions/upload-artifact/pull/625)

##### New Contributors

- [@&#8203;Jcambass](https://redirect.github.com/Jcambass) made their
first contribution in
[https://github.com/actions/upload-artifact/pull/621](https://redirect.github.com/actions/upload-artifact/pull/621)

**Full Changelog**:
actions/upload-artifact@v4.4.0...v4.4.1

###
[`v4.4.0`](https://redirect.github.com/actions/upload-artifact/compare/v4.3.6...v4.4.0)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.3.6...v4.4.0)

###
[`v4.3.6`](https://redirect.github.com/actions/upload-artifact/compare/v4.3.5...v4.3.6)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.3.5...v4.3.6)

###
[`v4.3.5`](https://redirect.github.com/actions/upload-artifact/compare/v4.3.4...v4.3.5)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.3.4...v4.3.5)

</details>

<details>
<summary>defenseunicorns/uds-common
(defenseunicorns/uds-common)</summary>

###
[`v1.1.1`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.1.1)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v1.1.0...v1.1.1)

##### Bug Fixes

- lint:deps producing unwanted file
([#&#8203;297](https://redirect.github.com/defenseunicorns/uds-common/issues/297))
([94db603](https://redirect.github.com/defenseunicorns/uds-common/commit/94db6033619ea5b62d00de52961bd7b5fa969517))
- timeout too short on test workflows - allow adjustment on test/publish
([#&#8203;314](https://redirect.github.com/defenseunicorns/uds-common/issues/314))
([6ac1587](https://redirect.github.com/defenseunicorns/uds-common/commit/6ac1587f0553ed91e1f0a2f662e59dd0839d10a7))

##### Miscellaneous

- add if to only run the clean runner task on ubuntu-latest
([#&#8203;309](https://redirect.github.com/defenseunicorns/uds-common/issues/309))
([10377e8](https://redirect.github.com/defenseunicorns/uds-common/commit/10377e875c105c69b2233cf8f0703c1951b2ebf1))
- adds check for addlicense
([#&#8203;303](https://redirect.github.com/defenseunicorns/uds-common/issues/303))
([4fef014](https://redirect.github.com/defenseunicorns/uds-common/commit/4fef014b93368ac2b2cff8b01a6ab997db12a660))
- **deps:** update uds common support dependencies
([#&#8203;305](https://redirect.github.com/defenseunicorns/uds-common/issues/305))
([429058f](https://redirect.github.com/defenseunicorns/uds-common/commit/429058f7a8a3e670ef59c0d385a4b58f90a31387))
- **deps:** update uds common support dependencies to v0.29.1
([#&#8203;313](https://redirect.github.com/defenseunicorns/uds-common/issues/313))
([bd27cc8](https://redirect.github.com/defenseunicorns/uds-common/commit/bd27cc8f5b08940626276ca338c9bf864bc5f054))
- **docs:** fix overwritten requirement for metadata
([#&#8203;296](https://redirect.github.com/defenseunicorns/uds-common/issues/296))
([07fd1d3](https://redirect.github.com/defenseunicorns/uds-common/commit/07fd1d330374a79f0ff3278d972155ef80d83313))
- improve task checks/linting and allow more options on test/publish
([#&#8203;311](https://redirect.github.com/defenseunicorns/uds-common/issues/311))
([894a2ce](https://redirect.github.com/defenseunicorns/uds-common/commit/894a2ce4d9c26015cc4842644c20eb92a9acd2a3))
- make yamllint easier to run locally
([#&#8203;312](https://redirect.github.com/defenseunicorns/uds-common/issues/312))
([f44b244](https://redirect.github.com/defenseunicorns/uds-common/commit/f44b244c96f948e1193244067307642b6e9953cb))
- update uds-package-requirements.md
([#&#8203;306](https://redirect.github.com/defenseunicorns/uds-common/issues/306))
([b7a6f09](https://redirect.github.com/defenseunicorns/uds-common/commit/b7a6f097014733e03b2f0b763e4654f3d3c89f78))

###
[`v1.1.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.1.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v1.0.0...v1.1.0)

##### ⚠ BREAKING CHANGES

- update the license to AGPLv3 or Commercial
([#&#8203;286](https://redirect.github.com/defenseunicorns/uds-common/issues/286))

##### Bug Fixes

- modified jq command
([#&#8203;292](https://redirect.github.com/defenseunicorns/uds-common/issues/292))
([d566e86](https://redirect.github.com/defenseunicorns/uds-common/commit/d566e86c5a78f2124116113ea3ed35695caec5be))
- simplify git command for flavor checks
([#&#8203;290](https://redirect.github.com/defenseunicorns/uds-common/issues/290))
([72c4e35](https://redirect.github.com/defenseunicorns/uds-common/commit/72c4e35d5f9f6ed877c184cf748e67a77e4fa771))
- upgrade test not cloning in private repos
([#&#8203;295](https://redirect.github.com/defenseunicorns/uds-common/issues/295))
([1dde808](https://redirect.github.com/defenseunicorns/uds-common/commit/1dde808b943c554edcd401fb814d504ee74117c0))

##### Miscellaneous

- **badging:** include unicorn flavor suggstion for bronze
([#&#8203;288](https://redirect.github.com/defenseunicorns/uds-common/issues/288))
([f668b06](https://redirect.github.com/defenseunicorns/uds-common/commit/f668b06f1597efd3c701a47ce28de1d8f298b1b8))
- **deps:** update support-deps to v4.4.3
([#&#8203;282](https://redirect.github.com/defenseunicorns/uds-common/issues/282))
([13d35ef](https://redirect.github.com/defenseunicorns/uds-common/commit/13d35ef9831c71cc217ef43f2c13562f40a3ec5b))
- **deps:** update uds common package dependencies to v1.27.2
([#&#8203;229](https://redirect.github.com/defenseunicorns/uds-common/issues/229))
([5b6a722](https://redirect.github.com/defenseunicorns/uds-common/commit/5b6a7223469bddf79be079baab1e3333a01c71e5))
- disable stale PR rebasing for renovate
([#&#8203;284](https://redirect.github.com/defenseunicorns/uds-common/issues/284))
([27ca69e](https://redirect.github.com/defenseunicorns/uds-common/commit/27ca69e53d980672b655b03ee854d2e7ea0462dc))
- have addlicense ignore gitignored files
([#&#8203;294](https://redirect.github.com/defenseunicorns/uds-common/issues/294))
([1bf662e](https://redirect.github.com/defenseunicorns/uds-common/commit/1bf662e890a238bf49234e9768d5fa7078d4fdb3))
- make all Maru references local includes
([#&#8203;287](https://redirect.github.com/defenseunicorns/uds-common/issues/287))
([727db0f](https://redirect.github.com/defenseunicorns/uds-common/commit/727db0fae26a4397361bab84de18dd253a755c79))
- update the license to AGPLv3 or Commercial
([#&#8203;286](https://redirect.github.com/defenseunicorns/uds-common/issues/286))
([2a9ca00](https://redirect.github.com/defenseunicorns/uds-common/commit/2a9ca00409f3bb513d2f256bcf1a91146b94d514))

###
[`v1.0.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.0.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.13.1...v1.0.0)

##### ⚠ BREAKING CHANGES

- remove with.assessment_results from oscal tasks
([#&#8203;276](https://redirect.github.com/defenseunicorns/uds-common/issues/276))
- update the publish task to avoid name collision
([#&#8203;267](https://redirect.github.com/defenseunicorns/uds-common/issues/267))
- **task:** add optional config input to create, deploy package and
bundle tasks
([#&#8203;262](https://redirect.github.com/defenseunicorns/uds-common/issues/262))
- add shell linting to uds-common linting
([#&#8203;258](https://redirect.github.com/defenseunicorns/uds-common/issues/258))
- update uds common gh actions to use uds run conditionals
([#&#8203;254](https://redirect.github.com/defenseunicorns/uds-common/issues/254))

##### Features

- **task:** add optional config input to create, deploy package and
bundle tasks
([#&#8203;262](https://redirect.github.com/defenseunicorns/uds-common/issues/262))
([3d3e9cb](https://redirect.github.com/defenseunicorns/uds-common/commit/3d3e9cb82e6664a4250782e6ae3a4e1112cfe5be))
- update uds common gh actions to use uds run conditionals
([#&#8203;254](https://redirect.github.com/defenseunicorns/uds-common/issues/254))
([c9d92f0](https://redirect.github.com/defenseunicorns/uds-common/commit/c9d92f0481d147e362d359447b487ab1c1560f31))

##### Bug Fixes

- add runner.arch to upload-artifacts name
([#&#8203;269](https://redirect.github.com/defenseunicorns/uds-common/issues/269))
([4abe414](https://redirect.github.com/defenseunicorns/uds-common/commit/4abe414fa5460bc9e98b53f2e830b41e2e01cf26))
- add test artifact uploads to callable workflows
([#&#8203;275](https://redirect.github.com/defenseunicorns/uds-common/issues/275))
([02e5c07](https://redirect.github.com/defenseunicorns/uds-common/commit/02e5c072465f1b06a05760fd4d1d12e070c22155))
- broken hyperlink in guide.md
([#&#8203;272](https://redirect.github.com/defenseunicorns/uds-common/issues/272))
([6b152a4](https://redirect.github.com/defenseunicorns/uds-common/commit/6b152a4905ce4b8d212519e3fff4ff99dbaf7e50))
- refactor top level tasks
([#&#8203;277](https://redirect.github.com/defenseunicorns/uds-common/issues/277))
([b7f6894](https://redirect.github.com/defenseunicorns/uds-common/commit/b7f68947d4082a7cb3128271476f65c61b3a9261))
- remove with.assessment_results from oscal tasks
([#&#8203;276](https://redirect.github.com/defenseunicorns/uds-common/issues/276))
([bb8bb4b](https://redirect.github.com/defenseunicorns/uds-common/commit/bb8bb4b4df897b8aa747f5fe6e3ddd3fa40017b9))
- test/publish workflow upload and default behavior
([#&#8203;279](https://redirect.github.com/defenseunicorns/uds-common/issues/279))
([1851a1c](https://redirect.github.com/defenseunicorns/uds-common/commit/1851a1cb3f532f83a70c09e8bb513fcc6bb64bd1))
- update publish permissions
([#&#8203;263](https://redirect.github.com/defenseunicorns/uds-common/issues/263))
([2e57869](https://redirect.github.com/defenseunicorns/uds-common/commit/2e57869b41d1f523ca37b2a3da035a580fc7d6d0))
- update the publish task to avoid name collision
([#&#8203;267](https://redirect.github.com/defenseunicorns/uds-common/issues/267))
([6a176ff](https://redirect.github.com/defenseunicorns/uds-common/commit/6a176ffd18ece28b759eb4e20f2e082ff0e079fb))

##### Miscellaneous

- add an ADR to document workflow/job names
([#&#8203;260](https://redirect.github.com/defenseunicorns/uds-common/issues/260))
([0685c7c](https://redirect.github.com/defenseunicorns/uds-common/commit/0685c7cac904ebe5f746770f9488210498d4463d))
- add shell linting to uds-common linting
([#&#8203;258](https://redirect.github.com/defenseunicorns/uds-common/issues/258))
([82e9137](https://redirect.github.com/defenseunicorns/uds-common/commit/82e9137642cb5dc0ba41cb33ad1ae44258549d19))
- correct the release workflow path on README
([#&#8203;265](https://redirect.github.com/defenseunicorns/uds-common/issues/265))
([62c9a5f](https://redirect.github.com/defenseunicorns/uds-common/commit/62c9a5f0a14a8215d5d7e55e1b11d0d77003c8e1))
- **deps:** update uds common support dependencies
([#&#8203;250](https://redirect.github.com/defenseunicorns/uds-common/issues/250))
([c828932](https://redirect.github.com/defenseunicorns/uds-common/commit/c82893264fffadfd0d84ca239a9459e6e55b9635))
- **docs:** restructure and introduce metadata guidelines
([#&#8203;266](https://redirect.github.com/defenseunicorns/uds-common/issues/266))
([6828f10](https://redirect.github.com/defenseunicorns/uds-common/commit/6828f10932a65d5fbbaf5994e2c23ddd1cd27255))
- refactor and improve badge verification task
([#&#8203;249](https://redirect.github.com/defenseunicorns/uds-common/issues/249))
([82e63be](https://redirect.github.com/defenseunicorns/uds-common/commit/82e63be82766a2e550a847af904b2d738c9d3478))
- update practices around maintaining the UDS Common framework
([#&#8203;253](https://redirect.github.com/defenseunicorns/uds-common/issues/253))
([a733122](https://redirect.github.com/defenseunicorns/uds-common/commit/a7331224f153532361d32d0b02de6cbe7361ffe3))
- update the codeowners for the repo
([#&#8203;264](https://redirect.github.com/defenseunicorns/uds-common/issues/264))
([6359020](https://redirect.github.com/defenseunicorns/uds-common/commit/6359020fa85b88f3360d0813f3da1d5e1f51134c))
- **deps:** update uds common support dependencies
([#&#8203;278](https://redirect.github.com/defenseunicorns/uds-common/issues/278))
([e71432f](https://redirect.github.com/defenseunicorns/uds-common/commit/e71432f261fa03b60c7bf5845e749476390e104b))

###
[`v0.13.1`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.13.1)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.13.0...v0.13.1)

##### Bug Fixes

- allow dependent bundle commands to be run on upgrade tests
([#&#8203;241](https://redirect.github.com/defenseunicorns/uds-common/issues/241))
([093def2](https://redirect.github.com/defenseunicorns/uds-common/commit/093def2f245709084c079aaf529a604d8ca5b6c2))

##### Miscellaneous

- **deps:** update uds common support dependencies
([#&#8203;237](https://redirect.github.com/defenseunicorns/uds-common/issues/237))
([eac2f68](https://redirect.github.com/defenseunicorns/uds-common/commit/eac2f686deacb898a6383fcc73c861293db52b9c))
- modify helm matches to handle git and helm
([#&#8203;238](https://redirect.github.com/defenseunicorns/uds-common/issues/238))
([803d9fe](https://redirect.github.com/defenseunicorns/uds-common/commit/803d9fed89bd890c1203c618a1e3fda1bd495cbd))

###
[`v0.13.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.13.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.12.0...v0.13.0)

##### Features

- add action for assisting with badge verification and migrate to nginx
([#&#8203;191](https://redirect.github.com/defenseunicorns/uds-common/issues/191))
([79a5edf](https://redirect.github.com/defenseunicorns/uds-common/commit/79a5edfe7f5d9a4d1611289dbadf643c07850081))
- add options support to setup to set vars and other flags on uds-core
([#&#8203;235](https://redirect.github.com/defenseunicorns/uds-common/issues/235))
([4336357](https://redirect.github.com/defenseunicorns/uds-common/commit/433635708b47c3f420990582a6a813a710d44423))

##### Bug Fixes

- mandate yamllint at least 1.30.0 to guarantee features in use
([#&#8203;224](https://redirect.github.com/defenseunicorns/uds-common/issues/224))
([61929ac](https://redirect.github.com/defenseunicorns/uds-common/commit/61929ac82c3e4b635a5e1673975ab29964001ce4))

##### Miscellaneous

- add uds-marketplace to codeowners
([#&#8203;225](https://redirect.github.com/defenseunicorns/uds-common/issues/225))
([ff9a8d9](https://redirect.github.com/defenseunicorns/uds-common/commit/ff9a8d943f4e7e926d243dabecfe0c585e946ba0))
- **deps:** update uds common nginx package
([#&#8203;223](https://redirect.github.com/defenseunicorns/uds-common/issues/223))
([688197c](https://redirect.github.com/defenseunicorns/uds-common/commit/688197cfcfdf2e14c222f82c59d27904fd1753bb))
- **deps:** update uds common support dependencies
([#&#8203;216](https://redirect.github.com/defenseunicorns/uds-common/issues/216))
([a597644](https://redirect.github.com/defenseunicorns/uds-common/commit/a597644480afb2e8c1685ca067a7e838c6f14570))
- **deps:** update uds common support dependencies
([#&#8203;221](https://redirect.github.com/defenseunicorns/uds-common/issues/221))
([bd6459f](https://redirect.github.com/defenseunicorns/uds-common/commit/bd6459f057c236a6ca28e8fc6ec9af2821be9c00))
- **deps:** update uds common support dependencies
([#&#8203;228](https://redirect.github.com/defenseunicorns/uds-common/issues/228))
([b34e017](https://redirect.github.com/defenseunicorns/uds-common/commit/b34e01747bc81b098b63cdf2a820dd644a7c6725))
- **deps:** update uds common support dependencies
([#&#8203;236](https://redirect.github.com/defenseunicorns/uds-common/issues/236))
([ba37ec2](https://redirect.github.com/defenseunicorns/uds-common/commit/ba37ec2db2d56afd2b7e63c00bd19eebd1dd8ddc))
- **renovate:** prefer opentofu registry for providers
([#&#8203;230](https://redirect.github.com/defenseunicorns/uds-common/issues/230))
([443fd0f](https://redirect.github.com/defenseunicorns/uds-common/commit/443fd0f1401ea496d5f39b43383d910f9f737871))

###
[`v0.12.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.12.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.11.2...v0.12.0)

##### ⚠ BREAKING CHANGES

- changed latest-package behavior
([#&#8203;206](https://redirect.github.com/defenseunicorns/uds-common/issues/206))

> \[!NOTE]
> As part of this change please migrate to using the [test-deploy
callable
workflow](https://redirect.github.com/defenseunicorns/uds-common/blob/d48167a5f999dc5ffd91e6b5878ab158e55f1a6c/.github/workflows/test-deploy.yaml)

##### Features

- changed latest-package behavior
([#&#8203;206](https://redirect.github.com/defenseunicorns/uds-common/issues/206))
([eb0253c](https://redirect.github.com/defenseunicorns/uds-common/commit/eb0253c3174ec6553b00c52022aa0818049a8036))

##### Bug Fixes

- upgrade version tests
([#&#8203;215](https://redirect.github.com/defenseunicorns/uds-common/issues/215))
([d48167a](https://redirect.github.com/defenseunicorns/uds-common/commit/d48167a5f999dc5ffd91e6b5878ab158e55f1a6c))

##### Miscellaneous

- **deps:** update uds common support dependencies
([#&#8203;210](https://redirect.github.com/defenseunicorns/uds-common/issues/210))
([822dac4](https://redirect.github.com/defenseunicorns/uds-common/commit/822dac4452e6815aadcf09f487406ff258756a0c))
- **deps:** update uds common support dependencies
([#&#8203;213](https://redirect.github.com/defenseunicorns/uds-common/issues/213))
([7eb8a12](https://redirect.github.com/defenseunicorns/uds-common/commit/7eb8a123684bca1c3a7490f5d35ae7ae4598db60))

###
[`v0.11.2`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.11.2)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.11.1...v0.11.2)

##### Miscellaneous

- refine package selection logic for publishing
([#&#8203;207](https://redirect.github.com/defenseunicorns/uds-common/issues/207))
([7e1c03a](https://redirect.github.com/defenseunicorns/uds-common/commit/7e1c03abede1d4a3f91bb122fe5fff6abbb73311))

###
[`v0.11.1`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.11.1)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.11.0...v0.11.1)

##### Bug Fixes

- renovate ghcr host docker type
([#&#8203;201](https://redirect.github.com/defenseunicorns/uds-common/issues/201))
([9c298e0](https://redirect.github.com/defenseunicorns/uds-common/commit/9c298e08417ce928dbbf4356c23182f8b1a62ffb))
- renovate typo token/password
([#&#8203;202](https://redirect.github.com/defenseunicorns/uds-common/issues/202))
([5d7ea03](https://redirect.github.com/defenseunicorns/uds-common/commit/5d7ea03815929a662c529b2078bdf895d8f3ac1b))
- update renovate creds
([#&#8203;200](https://redirect.github.com/defenseunicorns/uds-common/issues/200))
([1c6eb24](https://redirect.github.com/defenseunicorns/uds-common/commit/1c6eb24f37b4059589a70c9addeffb80895d450b))

##### Miscellaneous

- add renovate support for org ghcr packages
([#&#8203;199](https://redirect.github.com/defenseunicorns/uds-common/issues/199))
([2c5de9c](https://redirect.github.com/defenseunicorns/uds-common/commit/2c5de9cc41cad9d1e02faf39c0cad364933f335f))
- **deps:** update uds common support dependencies
([#&#8203;195](https://redirect.github.com/defenseunicorns/uds-common/issues/195))
([04b6409](https://redirect.github.com/defenseunicorns/uds-common/commit/04b64091ba0528463713f66d8167572a533e0c3d))
- fix codeowners
([#&#8203;196](https://redirect.github.com/defenseunicorns/uds-common/issues/196))
([856ef22](https://redirect.github.com/defenseunicorns/uds-common/commit/856ef221b39e65070e966942b42e79d408f59b76))

###
[`v0.11.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v0.11.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.10.0...v0.11.0)

##### Features

- add support for uds-core snapshots
([#&#8203;193](https://redirect.github.com/defenseunicorns/uds-common/issues/193))
([7a39915](https://redirect.github.com/defenseunicorns/uds-common/commit/7a39915ceff7a1a9e319846042ab74390fda6f2b))

##### Miscellaneous

- **deps:** update uds common support dependencies
([#&#8203;187](https://redirect.github.com/defenseunicorns/uds-common/issues/187))
([a0bbfb0](https://redirect.github.com/defenseunicorns/uds-common/commit/a0bbfb043e670a175fbdc44585e2bbb5b695acf7))

</details>

<details>
<summary>github/codeql-action (github/codeql-action)</summary>

###
[`v3.26.13`](https://redirect.github.com/github/codeql-action/compare/v3.26.12...v3.26.13)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.12...v3.26.13)

###
[`v3.26.12`](https://redirect.github.com/github/codeql-action/compare/v3.26.11...v3.26.12)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.11...v3.26.12)

###
[`v3.26.11`](https://redirect.github.com/github/codeql-action/compare/v3.26.10...v3.26.11)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.10...v3.26.11)

###
[`v3.26.10`](https://redirect.github.com/github/codeql-action/compare/v3.26.9...v3.26.10)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.9...v3.26.10)

###
[`v3.26.9`](https://redirect.github.com/github/codeql-action/compare/v3.26.8...v3.26.9)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.8...v3.26.9)

###
[`v3.26.8`](https://redirect.github.com/github/codeql-action/compare/v3.26.7...v3.26.8)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.7...v3.26.8)

###
[`v3.26.7`](https://redirect.github.com/github/codeql-action/compare/v3.26.6...v3.26.7)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.6...v3.26.7)

###
[`v3.26.6`](https://redirect.github.com/github/codeql-action/compare/v3.26.5...v3.26.6)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.5...v3.26.6)

###
[`v3.26.5`](https://redirect.github.com/github/codeql-action/compare/v3.26.4...v3.26.5)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.4...v3.26.5)

###
[`v3.26.4`](https://redirect.github.com/github/codeql-action/compare/v3.26.3...v3.26.4)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.3...v3.26.4)

###
[`v3.26.3`](https://redirect.github.com/github/codeql-action/compare/v3.26.2...v3.26.3)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.2...v3.26.3)

###
[`v3.26.2`](https://redirect.github.com/github/codeql-action/compare/v3.26.1...v3.26.2)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.1...v3.26.2)

###
[`v3.26.1`](https://redirect.github.com/github/codeql-action/compare/v3.26.0...v3.26.1)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.0...v3.26.1)

###
[`v3.26.0`](https://redirect.github.com/github/codeql-action/compare/v3.25.15...v3.26.0)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.25.15...v3.26.0)

</details>

<details>
<summary>terraform-aws-modules/terraform-aws-vpc
(terraform-aws-modules/vpc/aws)</summary>

###
[`v5.14.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5140-2024-10-18)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.13.0...v5.14.0)

##### Features

- Add outputs for the full list of subnets created and their attributes
([#&#8203;1116](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1116))
([e212245](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/e2122450fa816fb844e987485f2b8804606576dd))

##### Bug Fixes

- Update CI workflow versions to latest
([#&#8203;1125](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1125))
([b1f2125](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/b1f2125bf1015bfc3900feda290ade8bd0a7b871))

###
[`v5.13.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5130-2024-08-16)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.12.1...v5.13.0)

##### Features

- Add support for `ip_address_type` for VPC endpoint
([#&#8203;1096](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1096))
([d868303](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/d868303bd78b8c56cf76e2495672d42b256a1387))

###
[`v5.12.1`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5121-2024-08-09)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.12.0...v5.12.1)

##### Bug Fixes

- Update flow log ARNs to use partition from aws_partition data source
([#&#8203;1112](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1112))
([72cde38](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/72cde38fb5c500323858bb44eaed2924c7f826f9))

###
[`v5.12.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5120-2024-08-03)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.11.0...v5.12.0)

##### Features

- Restrict flow log policy to use log group ARNs
([#&#8203;1088](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1088))
([9256722](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/92567225dc73ef939b86a241b9607cb13329fb75))

###
[`v5.11.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5110-2024-08-03)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.10.0...v5.11.0)

##### Features

- Add route to `0.0.0.0/0` & `::/0` (when IPv6 is enabled) on all public
route tables
([#&#8203;1100](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1100))
([b3e7803](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/b3e78033bbee8346341a523f78f762ade41eb93b))

###
[`v5.10.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#5100-2024-08-02)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.9.0...v5.10.0)

##### Features

- Added ipv6\_address_preferred_lease_time parameter to
aws_vpc_dhcp_options resource
([#&#8203;1105](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1105))
([3adb594](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/3adb594bc794468c80a99c5c1808056a88767f45))

###
[`v5.9.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#590-2024-07-05)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.8.1...v5.9.0)

##### Features

- Allow custom VPC Flow Log IAM Role name and IAM Policy name
([#&#8203;1089](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1089))
([f8cd168](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/f8cd1681837c8c4a24af6fe73035724a03e1e66e))

###
[`v5.8.1`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#581-2024-04-26)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.8.0...v5.8.1)

##### Bug Fixes

- Do not replace NAT gateways when additional subnets are added
([#&#8203;1055](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1055))
([cf18c37](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/cf18c37591f860908e2223b4f488787e8a5f74f3))

###
[`v5.8.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#580-2024-04-25)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.7.2...v5.8.0)

##### Features

- Add support for multiple route tables to public and intra subnets
([#&#8203;1051](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1051))
([da05f24](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/da05f24c5c603a31d320d5ad92493bb39fea9f3d))

###
[`v5.7.2`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#572-2024-04-24)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.7.1...v5.7.2)

##### Bug Fixes

- Create private_ipv6\_egress routes only when having at least one
private subnet
([#&#8203;1062](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1062))
([8701204](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/8701204c28a0ff984c5ade71400c6208c6953bfc))

###
[`v5.7.1`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#571-2024-04-06)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.7.0...v5.7.1)

##### Bug Fixes

- Create the same number of IPv6 egress only gateway routes as the
number of NAT gateways that are enabled/created
([#&#8203;1059](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1059))
([77df552](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/77df552a8aa43bb3711243a3a5ef3e29f70a4068))

###
[`v5.7.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#570-2024-03-22)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.6.0...v5.7.0)

##### Features

- Allow setting vpc endpoints as an input for each endpoint
([#&#8203;1056](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1056))
([9163310](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/9163310db647ed98094319980bd8eef72bee492b))

###
[`v5.6.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#560-2024-03-14)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.3...v5.6.0)

##### Features

- Support VPC flow log cloudwatch log group class
([#&#8203;1053](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1053))
([e2970fd](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/e2970fd747bbf5d0b1539f7bbbdced56977a1bdf))

###
[`v5.5.3`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#553-2024-03-06)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.2...v5.5.3)

##### Bug Fixes

- Update CI workflow versions to remove deprecated runtime warnings
([#&#8203;1052](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1052))
([3b5b7f1](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/3b5b7f1fea768c6c933ea1ce2f8ee11250fa94cb))

#####
[5.5.2](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.1...v5.5.2)
(2024-02-09)

##### Bug Fixes

- Added create_before_destroy to aws_customer_gateway
([#&#8203;1036](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1036))
([5f5df57](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/5f5df571925895ad1fdf5a3bd04e539aa13f5a1d))

#####
[5.5.1](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.0...v5.5.1)
(2024-01-13)

##### Bug Fixes

- Correct VPC endpoint private DNS resolver `for_each` key
([#&#8203;1029](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1029))
([a837be1](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/a837be12882c8f74984620752937b4806da2d6d4))

###
[`v5.5.2`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#552-2024-02-09)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.1...v5.5.2)

###
[`v5.5.1`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#551-2024-01-13)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.5.0...v5.5.1)

###
[`v5.5.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#550-2024-01-09)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.4.0...v5.5.0)

##### Features

- Add support for `dns_options` on VPC endpoints
([#&#8203;1023](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1023))
([32f853f](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/32f853f4c099ad134d9c739d585c42a7c06a797b))

###
[`v5.4.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#540-2023-12-11)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.3.0...v5.4.0)

##### Features

- Add Cross Account Flow Support
([#&#8203;1014](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1014))
([6e25437](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/6e25437b16955b9393348d91965ead2f755fb2e0))

###
[`v5.3.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#530-2023-12-11)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.2.0...v5.3.0)

##### Features

- Add NAT gateway interface ids output
([#&#8203;1006](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1006))
([898bbaf](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/898bbaf46ba8ebad54983d63fa9e8eac6456903b))

###
[`v5.2.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#520-2023-11-18)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.1.2...v5.2.0)

##### Features

- Add `skip_destroy` to vpc flow log cloudwatch log group
([#&#8203;1009](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/1009))
([abe2c0f](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/abe2c0fcd23f1adfcb6e3a7739811e2482e2d197))

#####
[5.1.2](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.1.1...v5.1.2)
(2023-09-07)

##### Bug Fixes

- The number of intra subnets should not influence the number of NAT
gateways provisioned
([#&#8203;968](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/968))
([1e36f9f](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/1e36f9f8a01eb26be83d8e1ce2227a6890390b0e))

#####
[5.1.1](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.1.0...v5.1.1)
(2023-07-25)

##### Bug Fixes

- Ensure database route table output works
([#&#8203;926](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/926))
([e4c48d4](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/commit/e4c48d4675718d5bd8c72c6b934c70c0f4bf1670)),
closes
[#&#8203;857](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/issues/857)

###
[`v5.1.2`](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/blob/HEAD/CHANGELOG.md#512-2023-09-07)

[Compare
Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-vpc/compare/v5.1.1...v5.1.2)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "after 7am and before 9am every
weekday" in timezone America/New_York, Automerge - At any time (no
schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab-runner).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40NDAuNyIsInVwZGF0ZWRJblZlciI6IjM4LjEyMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJzdXBwb3J0LWRlcHMiXX0=-->

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Wayne Starr <[email protected]>
Co-authored-by: Wayne Starr <[email protected]>

.github/test-infra/asg-iac/config.tf

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 provider "aws" {
   region  = var.region
 
@@ -20,7 +23,7 @@ terraform {
 
     random = {
       source  = "hashicorp/random"
-      version = "3.6.2"
+      version = "3.6.3"
     }
   }
 }

.github/test-infra/asg-iac/irsa.tf

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 data "aws_s3_bucket" "oidc_bucket" {
   bucket = "govcloud-ci-oidc"
 }

.github/test-infra/asg-iac/main.tf

@@ -1,10 +1,13 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 data "aws_availability_zones" "available" {
   state = "available"
 }
 
 module "vpc" {
   source  = "terraform-aws-modules/vpc/aws"
-  version = "5.1.1"
+  version = "5.14.0"
 
   name                 = "${var.name}-vpc"
   cidr                 = "10.0.0.0/16"

.github/test-infra/asg-iac/outputs.tf

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 output "asg_arn" {
   value = aws_autoscaling_group.uds-package-gitlab-runner.arn
   description = "The ARN of the Autoscaling Group"

.github/test-infra/asg-iac/variables.tf

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 variable "runner_ip" {
   description = "Public IP of the GitHub Actions runner"
   type        = string

.github/workflows/ci-docs-shim.yaml

@@ -1,20 +1,21 @@
-name: CI Docs Shim
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
+name: CI Doc Shim
 
 on:
   pull_request:
     branches: [main]
     types: [milestoned, opened, synchronize]
 
 jobs:
-  run-test:
-    name: ${{ matrix.type }} ${{ matrix.flavor }}
-    runs-on: "ubuntu-latest"
-    timeout-minutes: 20
+  validate:
     strategy:
       matrix:
-        flavor: [upstream, registry1]
         type: [install, upgrade]
-    steps:
-      - name: Shim for ${{ matrix.type }} ${{ matrix.flavor }}
-        run: |
-          echo "Documentation-only change detected; marking ${{ matrix.type }} ${{ matrix.flavor }} as successful."
+        flavor: [upstream, registry1]
+    uses: defenseunicorns/uds-common/.github/workflows/callable-ci-docs-shim.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
+    with:
+      flavor: ${{ matrix.flavor }}
+      type: ${{ matrix.type }}
+    secrets: inherit # Inherits all secrets from the parent workflow.

.github/workflows/commitlint.yaml

@@ -1,4 +1,7 @@
-name: Metadata
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
+name: PR Title Check
 
 on:
   pull_request:
@@ -7,5 +10,4 @@ on:
 
 jobs:
   validate:
-    name: Validate
-    uses: defenseunicorns/uds-common/.github/workflows/commitlint.yaml@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
+    uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2

.github/workflows/lint.yaml

@@ -1,36 +1,15 @@
-name: Scan
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
+name: Lint
 
 on:
   # This workflow is triggered on pull requests to the main branch.
   pull_request:
-    branches: [main]
-    types: [milestoned, opened, synchronize]
+    # milestoned is added here as a workaround for release-please not triggering PR workflows (PRs should be added to a milestone to trigger the workflow).
+    types: [milestoned, opened, reopened, synchronize]
 
 jobs:
   validate:
-    runs-on: ubuntu-latest
-    name: Lint
-    permissions:
-      contents: read # Allows reading the repo contents
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-        with:
-          fetch-depth: 0
-
-      - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
-        with:
-          registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
-          registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
-          ghToken: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Install lint deps
-        run: |
-          uds run lint:deps --no-progress
-
-      - name: Lint the repository
-        run: |
-          uds run lint:yaml --no-progress
-          uds run lint:oscal --no-progress --set OSCALFILES=./oscal-component.yaml
+    uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
+    secrets: inherit

.github/workflows/nightly-testing.yaml

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 name: Nightly Testing
 
 on:
@@ -33,14 +36,17 @@ jobs:
     steps:
       - name: Set ENV
         run: |
-          echo "UDS_GITLAB_RUNNER_AUTOSCALING_GROUP=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" >> $GITHUB_ENV
-          echo "UDS_STATE_KEY=tfstate/ci/install/${SHA:0:7}-gitlab-runner-${FLAVOR}-aws.tfstate" >> $GITHUB_ENV
-          echo "TF_VAR_runner_ip=$(curl -s https://api.ipify.org)" >> $GITHUB_ENV
-          echo "TF_VAR_region=${UDS_REGION}" >> $GITHUB_ENV
-          echo "TF_VAR_name=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" >> $GITHUB_ENV
+          printf "%s\n" \
+            "UDS_GITLAB_RUNNER_AUTOSCALING_GROUP=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" \
+            "UDS_STATE_KEY=tfstate/ci/install/${SHA:0:7}-gitlab-runner-${FLAVOR}-aws.tfstate" \
+            "TF_VAR_runner_ip=$(curl -s https://api.ipify.org)" \
+            "TF_VAR_region=${UDS_REGION}" \
+            "TF_VAR_name=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" \
+            >> "$GITHUB_ENV"
+        shell: bash
 
       - name: Checkout repository
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Configure AWS Credentials
         uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # v4
@@ -50,12 +56,20 @@ jobs:
           aws-region: ${{ env.UDS_REGION }}
           role-duration-seconds: 21600
 
-      - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
+      - name: Install UDS CLI
+        uses: defenseunicorns/setup-uds@b987a32bac3baeb67bfb08f5e1544e2f9076ee8a # v1.0.0
         with:
-          registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
-          registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
-          ghToken: ${{ secrets.GITHUB_TOKEN }}
+          # renovate: datasource=github-tags depName=defenseunicorns/uds-cli versioning=semver
+          version: v0.18.0
+
+      - name: Environment setup
+        run: |
+            uds run actions:setup-environment \
+            --set REGISTRY1_USERNAME="${{ secrets.IRON_BANK_ROBOT_USERNAME }}" \
+            --set REGISTRY1_PASSWORD="${{ secrets.IRON_BANK_ROBOT_PASSWORD }}" \
+            --set GH_TOKEN="${{ secrets.GITHUB_TOKEN }}" \
+            --set CHAINGUARD_IDENTITY="${{ secrets.CHAINGUARD_IDENTITY }}"
+        shell: bash
 
       - name: Setup Tofu
         uses: opentofu/setup-opentofu@12f4debbf681675350b6cd1f0ff8ecfbda62027b # v1.0.4
@@ -75,34 +89,45 @@ jobs:
           aws secretsmanager get-secret-value --secret-id govcloud-ci-oidc-public-key | jq -r '.SecretString' > irsa/signer.key.pub
         timeout-minutes: 20
 
-      - name: NPM setup
-        run: cd tests && npm ci
-
       - name: Test Fleeting Bundle
         run: |
-          pushd .github/test-infra/asg-iac
+          pushd .github/test-infra/asg-iac || exit
           tofu output -raw jumpbox_private_key > ~/.ssh/id_rsa_jump
           chmod 600 ~/.ssh/id_rsa_jump
           ssh -o StrictHostKeyChecking=no -i ~/.ssh/id_rsa_jump \
             -o ServerAliveInterval=60 -o ServerAliveCountMax=3 \
             -R 8080:localhost:443 "ubuntu@$(tofu output -raw jumpbox_public_ip)" \
             'sudo socat TCP-LISTEN:443,reuseaddr,keepalive,nodelay,fork TCP:localhost:8080' > /tmp/debug-tunnel.log 2>&1 &
-          popd
+          popd || exit
 
           UDS_GITLAB_RUNNER_AUTOSCALING_ROLE_ARN=$(cd .github/test-infra/asg-iac && tofu output -raw asg_role_arn) uds run test-fleeting --set FLAVOR=${{ matrix.flavor }} --no-progress
+        shell: bash
         timeout-minutes: 25
         env:
           UDS_K3D_EXTRA_ARGS: --k3s-arg=--kube-apiserver-arg=service-account-key-file=/irsa/signer.key.pub@server:* --k3s-arg=--kube-apiserver-arg=service-account-signing-key-file=/irsa/signer.key@server:* --k3s-arg=--kube-apiserver-arg=api-audiences=kubernetes.svc.default@server:* --k3s-arg=--kube-apiserver-arg=service-account-issuer=https://govcloud-ci-oidc.s3.us-gov-west-1.amazonaws.com@server:* --k3s-arg=--kube-apiserver-arg=audit-log-path=/var/log/kubernetes/audit/audit.log@server:* --volume ${{ github.workspace }}/irsa:/irsa@server:*
 
       - name: Debug Output
-        if: always()
-        uses: defenseunicorns/uds-common/.github/actions/debug-output@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
+        if: ${{ always() }}
+        run: uds run actions:debug-output
+        shell: bash
 
       - name: Save logs
-        if: always()
-        uses: defenseunicorns/uds-common/.github/actions/save-logs@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
+        if: ${{ always() }}
+        run: uds run actions:save-logs
+        shell: bash
+
+      - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+        if: ${{ always() }}
         with:
-          suffix: ${{ matrix.type }}-${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}
+          name: debug-log-nightly-${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}-${{ runner.arch }}
+          path: |
+            /tmp/zarf-*.log
+            /tmp/uds-*.log
+            /tmp/maru-*.log
+            /tmp/debug-*.log
+            /tmp/uds-containerd-logs
+            /tmp/k3d-uds-*.log
+            oscal-assessment-results.yaml
 
       - name: Destroy IAC
         if: always()

.github/workflows/plan-tofu.yaml

@@ -1,3 +1,6 @@
+# Copyright 2024 Defense Unicorns
+# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial
+
 name: Plan Tofu
 
 on:
@@ -37,14 +40,23 @@ jobs:
     steps:
       - name: Set ENV
         run: |
-          echo "UDS_GITLAB_RUNNER_AUTOSCALING_GROUP=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" >> $GITHUB_ENV
-          echo "UDS_STATE_KEY=tfstate/ci/install/${SHA:0:7}-gitlab-runner-${FLAVOR}-aws.tfstate" >> $GITHUB_ENV
-          echo "TF_VAR_runner_ip=$(curl -s https://api.ipify.org)" >> $GITHUB_ENV
-          echo "TF_VAR_region=${UDS_REGION}" >> $GITHUB_ENV
-          echo "TF_VAR_name=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" >> $GITHUB_ENV
+          printf "%s\n" \
+            "UDS_GITLAB_RUNNER_AUTOSCALING_GROUP=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" \
+            "UDS_STATE_KEY=tfstate/ci/install/${SHA:0:7}-gitlab-runner-${FLAVOR}-aws.tfstate" \
+            "TF_VAR_runner_ip=$(curl -s https://api.ipify.org)" \
+            "TF_VAR_region=${UDS_REGION}" \
+            "TF_VAR_name=uds-package-gitlab-runner-ci-${FLAVOR}-${SHA:0:7}" \
+            >> "$GITHUB_ENV"
+        shell: bash
 
       - name: Checkout repository
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+
+      - name: Install UDS CLI
+        uses: defenseunicorns/setup-uds@b987a32bac3baeb67bfb08f5e1544e2f9076ee8a # v1.0.0
+        with:
+          # renovate: datasource=github-tags depName=defenseunicorns/uds-cli versioning=semver
+          version: v0.18.0
 
       - name: Configure AWS Credentials
         uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # v4
@@ -54,13 +66,6 @@ jobs:
           aws-region: ${{ env.UDS_REGION }}
           role-duration-seconds: 21600
 
-      - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@e7c0643d3f9d74ce49c7386b48964d2be646d726 # v0.10.0
-        with:
-          registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
-          registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
-          ghToken: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Setup Tofu
         uses: opentofu/setup-opentofu@12f4debbf681675350b6cd1f0ff8ecfbda62027b # v1.0.4
         with: