Merge remote-tracking branch 'origin/main' into upgrade/sts/3008.0

nataliafit · nataliafit · commit 3e2596bd5fe8 · 2026-05-27T15:28:05.000+02:00
diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml
@@ -96,7 +96,7 @@ jobs:
             --name registry registry:2
 
       - name: Build docker-salt-master Base Image
-        uses: docker/build-push-action@v7
+        uses: docker/build-push-action@v7.1.0
         with:
           file: ./Dockerfile
           platforms: linux/amd64,linux/arm64
@@ -110,7 +110,7 @@ jobs:
           cache-to: type=gha,mode=max,scope=build-and-test-base
 
       - name: Build docker-salt-master SaltGUI Image
-        uses: docker/build-push-action@v7
+        uses: docker/build-push-action@v7.1.0
         with:
           file: ./Dockerfile.gui
           platforms: linux/amd64,linux/arm64
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -99,20 +99,20 @@ jobs:
         uses: docker/setup-buildx-action@v4
 
       - name: Login to Docker Container Registry
-        uses: docker/login-action@v4
+        uses: docker/login-action@v4.1.0
         with:
           username: ${{ github.repository_owner }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
       - name: Login to GitHub Container Registry
-        uses: docker/login-action@v4
+        uses: docker/login-action@v4.1.0
         with:
           registry: ghcr.io
           username: ${{ github.repository_owner }}
           password: ${{ secrets.CR_PAT }}
 
       - name: Login to Quay.io Container Registry
-        uses: docker/login-action@v4
+        uses: docker/login-action@v4.1.0
         with:
           registry: quay.io
           username: ${{ secrets.QUAYIO_USERNAME }}
@@ -131,7 +131,7 @@ jobs:
           registry-type: public
 
       - name: Build and Publish Base Image
-        uses: docker/build-push-action@v7
+        uses: docker/build-push-action@v7.1.0
         with:
           context: .
           file: ./Dockerfile
@@ -149,7 +149,7 @@ jobs:
           tags: ${{ needs.metadata.outputs.tags }}
 
       - name: Build and Publish SaltGUI Image
-        uses: docker/build-push-action@v7
+        uses: docker/build-push-action@v7.1.0
         with:
           context: .
           file: ./Dockerfile.gui
diff --git a/.github/workflows/security-analysis.yml b/.github/workflows/security-analysis.yml
@@ -86,7 +86,7 @@ jobs:
         uses: docker/setup-buildx-action@v4
 
       - name: Build docker-salt-master Base Image
-        uses: docker/build-push-action@v7
+        uses: docker/build-push-action@v7.1.0
         with:
           context: .
           file: ./Dockerfile
@@ -110,6 +110,6 @@ jobs:
           severity: "CRITICAL,HIGH"
 
       - name: Upload Trivy Scan Results to GitHub Security Tab
-        uses: github/codeql-action/upload-sarif@v4.35.4
+        uses: github/codeql-action/upload-sarif@v4.35.5
         with:
           sarif_file: "trivy-results.sarif"
