From 5327459480da1cfa94fc150a765afa55241b7dc9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Jun 2026 03:43:20 +0000 Subject: [PATCH] chore(deps): bump the github-actions group with 6 updates Bumps the github-actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [docker/login-action](https://github.com/docker/login-action) | `4.1.0` | `4.2.0` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `6.0.0` | `6.0.1` | | [chainguard-dev/actions](https://github.com/chainguard-dev/actions) | `1.6.19` | `1.6.21` | | [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `4.0.0` | `4.1.0` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `4.0.0` | `4.1.0` | | [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `7.2.1` | `7.2.2` | Updates `docker/login-action` from 4.1.0 to 4.2.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v4.1.0...v4.2.0) Updates `codecov/codecov-action` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2...e79a6962e0d4c0c17b229090214935d2e33f8354) Updates `chainguard-dev/actions` from 1.6.19 to 1.6.21 - [Release notes](https://github.com/chainguard-dev/actions/releases) - [Commits](https://github.com/chainguard-dev/actions/compare/c69a264ec2a5934c3186c618f368fc1c86f16cff...05fbd381f7c158bd33c9bbf3a28f67852269fdf8) Updates `docker/setup-qemu-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/ce360397dd3f832beb865e1373c09c0e9f86d70a...06116385d9baf250c9f4dcb4858b16962ea869c3) Updates `docker/setup-buildx-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd...d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5) Updates `goreleaser/goreleaser-action` from 7.2.1 to 7.2.2 - [Release notes](https://github.com/goreleaser/goreleaser-action/releases) - [Commits](https://github.com/goreleaser/goreleaser-action/compare/1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8...5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: codecov/codecov-action dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: chainguard-dev/actions dependency-version: 1.6.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: docker/setup-qemu-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: goreleaser/goreleaser-action dependency-version: 7.2.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/build-test.yaml | 34 +++++++++++++------------- .github/workflows/lint.yaml | 4 +-- .github/workflows/nightly.yaml | 6 ++--- .github/workflows/release-windows.yaml | 2 +- .github/workflows/release.yaml | 6 ++--- .github/workflows/security.yaml | 4 +-- 6 files changed, 28 insertions(+), 28 deletions(-) diff --git a/.github/workflows/build-test.yaml b/.github/workflows/build-test.yaml index fbe15151d1..94ab33c822 100644 --- a/.github/workflows/build-test.yaml +++ b/.github/workflows/build-test.yaml @@ -58,7 +58,7 @@ jobs: steps: - uses: "actions/checkout@v6" - uses: "authzed/actions/setup-go@main" - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 with: username: "${{ env.DOCKERHUB_PUBLIC_USER }}" password: "${{ env.DOCKERHUB_PUBLIC_ACCESS_TOKEN }}" @@ -80,7 +80,7 @@ jobs: - name: "Unit tests with coverage" run: "go run mage.go test:unitCover" - name: "Coverage" - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -108,14 +108,14 @@ jobs: steps: - uses: "actions/checkout@v6" - uses: "authzed/actions/setup-go@main" - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 with: username: "${{ env.DOCKERHUB_PUBLIC_USER }}" password: "${{ env.DOCKERHUB_PUBLIC_ACCESS_TOKEN }}" - name: "Integration tests with coverage" run: "go run mage.go test:integrationCover" - name: "Coverage" - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -136,7 +136,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -149,7 +149,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -170,7 +170,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -183,7 +183,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -205,7 +205,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -218,7 +218,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -240,7 +240,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -253,7 +253,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -279,7 +279,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -292,7 +292,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -318,7 +318,7 @@ jobs: - uses: "authzed/actions/setup-go@main" if: | needs.paths-filter.outputs.codechange == 'true' - - uses: "docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121" # v4.1.0 + - uses: "docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee" # v4.2.0 if: | needs.paths-filter.outputs.codechange == 'true' with: @@ -331,7 +331,7 @@ jobs: - name: "Coverage" if: | needs.paths-filter.outputs.codechange == 'true' - uses: "codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2" # v6.0.0 + uses: "codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354" # v6.0.1 with: files: "./coverage.txt" token: "${{ secrets.CODECOV_TOKEN }}" @@ -415,7 +415,7 @@ jobs: - uses: "authzed/actions/setup-go@main" - name: "Generate Protos" run: "go run mage.go gen:proto" - - uses: "chainguard-dev/actions/nodiff@c69a264ec2a5934c3186c618f368fc1c86f16cff" # main + - uses: "chainguard-dev/actions/nodiff@05fbd381f7c158bd33c9bbf3a28f67852269fdf8" # main with: path: "" fixup-command: "go run mage.go gen:proto" diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index cf2578b069..95fcda8dea 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -35,7 +35,7 @@ jobs: - uses: "authzed/actions/setup-go@main" - name: "Generate docs" run: "go run mage.go gen:docs" - - uses: "chainguard-dev/actions/nodiff@c69a264ec2a5934c3186c618f368fc1c86f16cff" # main + - uses: "chainguard-dev/actions/nodiff@05fbd381f7c158bd33c9bbf3a28f67852269fdf8" # main with: path: "" fixup-command: "mage gen:docs" @@ -47,7 +47,7 @@ jobs: - uses: "authzed/actions/setup-go@main" - name: "Lint Everything" run: "go run mage.go lint:all" - - uses: "chainguard-dev/actions/nodiff@c69a264ec2a5934c3186c618f368fc1c86f16cff" # main + - uses: "chainguard-dev/actions/nodiff@05fbd381f7c158bd33c9bbf3a28f67852269fdf8" # main with: path: "" fixup-command: "go run mage.go lint:all" diff --git a/.github/workflows/nightly.yaml b/.github/workflows/nightly.yaml index 39eb458184..35ab3aee8a 100644 --- a/.github/workflows/nightly.yaml +++ b/.github/workflows/nightly.yaml @@ -28,9 +28,9 @@ jobs: quayio_token: "${{ secrets.QUAYIO_PASSWORD }}" github_token: "${{ secrets.GITHUB_TOKEN }}" dockerhub_token: "${{ secrets.DOCKERHUB_ACCESS_TOKEN }}" - - uses: "docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a" # v4.0.0 - - uses: "docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd" # v4.0.0 - - uses: "goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8" # v7.2.1 + - uses: "docker/setup-qemu-action@06116385d9baf250c9f4dcb4858b16962ea869c3" # v4.1.0 + - uses: "docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5" # v4.1.0 + - uses: "goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89" # v7.2.2 with: distribution: "goreleaser-pro" version: "2.15.2" diff --git a/.github/workflows/release-windows.yaml b/.github/workflows/release-windows.yaml index 6495193eec..566b0d6a86 100644 --- a/.github/workflows/release-windows.yaml +++ b/.github/workflows/release-windows.yaml @@ -27,7 +27,7 @@ jobs: quayio_token: "${{ secrets.QUAYIO_PASSWORD }}" github_token: "${{ secrets.GITHUB_TOKEN }}" dockerhub_token: "${{ secrets.DOCKERHUB_ACCESS_TOKEN }}" - - uses: "goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8" # v7.2.1 + - uses: "goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89" # v7.2.2 with: distribution: "goreleaser-pro" # NOTE: keep in sync with goreleaser version in other job. diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 949e0d7796..7d0ad41923 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -37,9 +37,9 @@ jobs: quayio_token: "${{ secrets.QUAYIO_PASSWORD }}" github_token: "${{ secrets.GITHUB_TOKEN }}" dockerhub_token: "${{ secrets.DOCKERHUB_ACCESS_TOKEN }}" - - uses: "docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a" # v4.0.0 - - uses: "docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd" # v4.0.0 - - uses: "goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8" # v7.2.1 + - uses: "docker/setup-qemu-action@06116385d9baf250c9f4dcb4858b16962ea869c3" # v4.1.0 + - uses: "docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5" # v4.1.0 + - uses: "goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89" # v7.2.2 with: distribution: "goreleaser-pro" # NOTE: keep in sync with goreleaser version in other job. diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml index 23b94fe0d7..fd89ebefc5 100644 --- a/.github/workflows/security.yaml +++ b/.github/workflows/security.yaml @@ -51,7 +51,7 @@ jobs: # trivy does not flag an old SpiceDB version fetch-depth: 0 - uses: "authzed/actions/setup-go@main" - - uses: "docker/login-action@v4.1.0" # v3.7.0 + - uses: "docker/login-action@v4.2.0" # v3.7.0 with: username: "${{ env.DOCKERHUB_PUBLIC_USER }}" password: "${{ env.DOCKERHUB_PUBLIC_ACCESS_TOKEN }}" @@ -71,7 +71,7 @@ jobs: env: TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db" TRIVY_JAVA_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-java-db" - - uses: "goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8" # v7.2.1 + - uses: "goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89" # v7.2.2 id: "goreleaser" with: distribution: "goreleaser-pro"