From 9988647dfa1206e85caa87b8df5c318d1d4b8de6 Mon Sep 17 00:00:00 2001 From: Jan Macku Date: Mon, 2 Oct 2023 16:10:06 +0200 Subject: [PATCH] deps: add comment with pinned version --- .github/workflows/deploy-production.yml | 12 ++++++------ .github/workflows/deploy-release.yml | 12 ++++++------ .github/workflows/deploy-test.yml | 12 ++++++------ .github/workflows/differential-shellcheck.yml | 4 ++-- .github/workflows/issue-labeler.yml | 6 +++--- .github/workflows/linter.yml | 4 ++-- .github/workflows/publish-release.yml | 4 ++-- .github/workflows/release-drafter.yml | 2 +- .github/workflows/scorecard-analysis.yml | 8 ++++---- .github/workflows/unit-test.yml | 12 ++++++------ 10 files changed, 38 insertions(+), 38 deletions(-) diff --git a/.github/workflows/deploy-production.yml b/.github/workflows/deploy-production.yml index c68df28a..304435d6 100644 --- a/.github/workflows/deploy-production.yml +++ b/.github/workflows/deploy-production.yml @@ -33,7 +33,7 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: fetch-depth: 0 @@ -43,11 +43,11 @@ jobs: echo "BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> "${GITHUB_ENV}" - name: Setup BuildX - uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 + uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0 - name: Login to GitHub Container Registry if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }} - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d + uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 with: registry: ${{ env.REGISTRY }} username: ${{ github.repository }} @@ -55,7 +55,7 @@ jobs: - name: Start deployment if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }} - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 id: deployment with: step: start @@ -64,7 +64,7 @@ jobs: - name: Build Docker image - ${{ matrix.images.image-id }} if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }} - uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 + uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0 with: context: . file: ./Dockerfile @@ -79,7 +79,7 @@ jobs: - name: Update deployment status if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/main' }} - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 with: step: finish token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/deploy-release.yml b/.github/workflows/deploy-release.yml index 2b0878c9..8ee162e2 100644 --- a/.github/workflows/deploy-release.yml +++ b/.github/workflows/deploy-release.yml @@ -39,7 +39,7 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Get current date run: | @@ -47,10 +47,10 @@ jobs: echo "BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> "${GITHUB_ENV}" - name: Setup BuildX - uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 + uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0 - name: Login to GitHub Container Registry - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d + uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 with: registry: ${{ env.REGISTRY }} username: ${{ github.repository }} @@ -70,7 +70,7 @@ jobs: echo "MAJOR_VERSION=${RELEASE_VERSION%%.*}" >> "${GITHUB_ENV}" - name: Start deployment - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 id: deployment with: step: start @@ -78,7 +78,7 @@ jobs: env: ${{ matrix.images.deployment-environment-identifier }} - name: Build Docker image - ${{ matrix.images.image-id }} - uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 + uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0 with: context: . file: ./Dockerfile @@ -94,7 +94,7 @@ jobs: ${{ env.REGISTRY }}/${{ github.repository }}:${{ matrix.images.container-image-id-prefix }}${{ env.RELEASE_VERSION }} - name: Update deployment status - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 if: always() with: step: finish diff --git a/.github/workflows/deploy-test.yml b/.github/workflows/deploy-test.yml index e0fd84be..aad29ba5 100644 --- a/.github/workflows/deploy-test.yml +++ b/.github/workflows/deploy-test.yml @@ -41,7 +41,7 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Get current date run: | @@ -49,17 +49,17 @@ jobs: echo "BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> "${GITHUB_ENV}" - name: Set up Docker - uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 + uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0 - name: Login to GitHub Container Registry - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d + uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 with: registry: ${{ env.REGISTRY }} username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Start deployment - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 id: deployment with: step: start @@ -67,7 +67,7 @@ jobs: env: ${{ matrix.images.deployment-environment-identifier }} - name: Build and Push Container - uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 + uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0 with: context: . file: ${{ matrix.images.dockerfile }} @@ -81,7 +81,7 @@ jobs: ${{ env.REGISTRY }}/${{ github.repository }}/${{ matrix.images.tag }}:latest - name: Update deployment status - uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 + uses: bobheadxi/deployments@88ce5600046c82542f8246ac287d0a53c461bca3 # v1.4.0 if: always() with: step: finish diff --git a/.github/workflows/differential-shellcheck.yml b/.github/workflows/differential-shellcheck.yml index 46e9f8ca..c4074caa 100644 --- a/.github/workflows/differential-shellcheck.yml +++ b/.github/workflows/differential-shellcheck.yml @@ -25,7 +25,7 @@ jobs: run: echo "$GITHUB_CONTEXT" - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: fetch-depth: 0 @@ -45,7 +45,7 @@ jobs: - if: ${{ always() }} name: Upload artifact with defects in SARIF format - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 with: name: Differential ShellCheck SARIF path: ${{ steps.ShellCheck.outputs.sarif }} diff --git a/.github/workflows/issue-labeler.yml b/.github/workflows/issue-labeler.yml index afb1b1f5..b5824697 100644 --- a/.github/workflows/issue-labeler.yml +++ b/.github/workflows/issue-labeler.yml @@ -20,16 +20,16 @@ jobs: template: [ issue-template.yml ] steps: - - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Parse issue form - uses: stefanbuck/github-issue-parser@c1a559d78bfb8dd05216dab9ffd2b91082ff5324 + uses: stefanbuck/github-issue-parser@c1a559d78bfb8dd05216dab9ffd2b91082ff5324 # v3.0.1 id: issue-parser with: template-path: .github/ISSUE_TEMPLATE/${{ matrix.template }} - name: Set labels based on type input - uses: redhat-plumbers-in-action/advanced-issue-labeler@71bcf99aef4b9ea844db9a43755e8ac02c8e661e + uses: redhat-plumbers-in-action/advanced-issue-labeler@71bcf99aef4b9ea844db9a43755e8ac02c8e661e # v2.0.6 with: issue-form: ${{ steps.issue-parser.outputs.jsonString }} token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 68dfb4d9..b9e50a35 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -19,12 +19,12 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: fetch-depth: 0 - name: Lint Code Base - uses: github/super-linter@45fc0d88288beee4701c62761281edfee85655d7 + uses: github/super-linter@45fc0d88288beee4701c62761281edfee85655d7 # v5.0.0 env: VALIDATE_ALL_CODEBASE: false DEFAULT_BRANCH: main diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml index 71e7967c..42222ab9 100644 --- a/.github/workflows/publish-release.yml +++ b/.github/workflows/publish-release.yml @@ -18,10 +18,10 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Update tag - uses: Actions-R-Us/actions-tagger@330ddfac760021349fef7ff62b372f2f691c20fb + uses: Actions-R-Us/actions-tagger@330ddfac760021349fef7ff62b372f2f691c20fb # v2.0.3 with: publish_latest_tag: false token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release-drafter.yml b/.github/workflows/release-drafter.yml index e5b27447..5b084122 100644 --- a/.github/workflows/release-drafter.yml +++ b/.github/workflows/release-drafter.yml @@ -19,6 +19,6 @@ jobs: pull-requests: write steps: - - uses: release-drafter/release-drafter@65c5fb495d1e69aa8c08a3317bc44ff8aabe9772 + - uses: release-drafter/release-drafter@65c5fb495d1e69aa8c08a3317bc44ff8aabe9772 # v5.24.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/scorecard-analysis.yml b/.github/workflows/scorecard-analysis.yml index 5488e91e..08bce55d 100644 --- a/.github/workflows/scorecard-analysis.yml +++ b/.github/workflows/scorecard-analysis.yml @@ -28,12 +28,12 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: persist-credentials: false - name: Run analysis - uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 + uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # v2.2.0 with: results_file: results.sarif results_format: sarif @@ -52,7 +52,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: Upload artifact - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 with: name: SARIF file path: results.sarif @@ -60,6 +60,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: Upload to code-scanning - uses: github/codeql-action/upload-sarif@ddccb873888234080b77e9bc2d4764d5ccaaccf9 + uses: github/codeql-action/upload-sarif@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.14.6 with: sarif_file: results.sarif diff --git a/.github/workflows/unit-test.yml b/.github/workflows/unit-test.yml index d9aca613..7650ece9 100644 --- a/.github/workflows/unit-test.yml +++ b/.github/workflows/unit-test.yml @@ -20,11 +20,11 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: submodules: recursive - - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 + - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1 id: filter with: filters: | @@ -44,7 +44,7 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: submodules: recursive @@ -63,7 +63,7 @@ jobs: bats test/*.bats - name: Codecov - 1st attempt - uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d + uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # v3.1.4 id: upload_code_coverage_report continue-on-error: true with: @@ -76,7 +76,7 @@ jobs: - name: Codecov - 2nd attempt if: steps.upload_code_coverage_report.outcome == 'failure' - uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d + uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # v3.1.4 with: fail_ci_if_error: true verbose: true @@ -89,7 +89,7 @@ jobs: steps: - name: Repository checkout - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: submodules: recursive