Skip to content

Commit bbb313e

Browse files
build(deps): bump the github-actions group across 1 directory with 5 updates (#1888)
Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github/codeql-action](https://github.com/github/codeql-action) | `4.35.3` | `4.36.0` | | [docker/login-action](https://github.com/docker/login-action) | `4.1.0` | `4.2.0` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `6.0.0` | `6.1.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `7.1.0` | `7.2.0` | | [SonarSource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action) | `8.0.0` | `8.1.0` | Updates `github/codeql-action` from 4.35.3 to 4.36.0 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@e46ed2c...7211b7c) Updates `docker/login-action` from 4.1.0 to 4.2.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@4907a6d...650006c) Updates `docker/metadata-action` from 6.0.0 to 6.1.0 - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@030e881...80c7e94) Updates `docker/build-push-action` from 7.1.0 to 7.2.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@bcafcac...f9f3042) Updates `SonarSource/sonarqube-scan-action` from 8.0.0 to 8.1.0 - [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases) - [Commits](SonarSource/sonarqube-scan-action@59db25f...7006c44) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/login-action dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/metadata-action dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/build-push-action dependency-version: 7.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: SonarSource/sonarqube-scan-action dependency-version: 8.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 54018ae commit bbb313e

4 files changed

Lines changed: 15 additions & 15 deletions

File tree

.github/workflows/codeql.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ jobs:
4040

4141
# Initializes the CodeQL tools for scanning.
4242
- name: Initialize CodeQL
43-
uses: github/codeql-action/init@e46ed2cbd01164d986452f91f178727624ae40d7 # v4
43+
uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4
4444
with:
4545
languages: ${{ matrix.language }}
4646
build-mode: ${{ matrix.build-mode }}
@@ -63,6 +63,6 @@ jobs:
6363
exit 1
6464
6565
- name: Perform CodeQL Analysis
66-
uses: github/codeql-action/analyze@e46ed2cbd01164d986452f91f178727624ae40d7 # v4
66+
uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4
6767
with:
6868
category: "/language:${{matrix.language}}"

.github/workflows/main.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -70,7 +70,7 @@ jobs:
7070

7171
- name: Log in to the Container registry
7272
if: steps.changed_webui_files.outputs.any_changed == 'true'
73-
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
73+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0
7474
with:
7575
registry: ${{ env.REGISTRY }}
7676
username: ${{ github.actor }}
@@ -79,7 +79,7 @@ jobs:
7979
- name: Extract metadata (tags, labels) for Docker
8080
if: steps.changed_webui_files.outputs.any_changed == 'true'
8181
id: meta
82-
uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0
82+
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6.1.0
8383
with:
8484
images: |
8585
${{ env.REGISTRY }}/${{ github.repository_owner }}/${{ env.WEBUI_IMAGE }}
@@ -91,7 +91,7 @@ jobs:
9191
9292
- name: Build and push Web UI Image
9393
if: steps.changed_webui_files.outputs.any_changed == 'true'
94-
uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
94+
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
9595
with:
9696
context: webui
9797
push: ${{ github.repository_owner == 'eclipse-openvsx' &&
@@ -135,7 +135,7 @@ jobs:
135135

136136
- name: Log in to the Container registry
137137
if: steps.changed_server_files.outputs.any_changed == 'true'
138-
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
138+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0
139139
with:
140140
registry: ${{ env.REGISTRY }}
141141
username: ${{ github.actor }}
@@ -144,7 +144,7 @@ jobs:
144144
- name: Extract metadata (tags, labels) for Docker
145145
if: steps.changed_server_files.outputs.any_changed == 'true'
146146
id: meta
147-
uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0
147+
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6.1.0
148148
with:
149149
images: |
150150
${{ env.REGISTRY }}/${{ github.repository_owner }}/${{ env.SERVER_IMAGE }}
@@ -156,7 +156,7 @@ jobs:
156156
157157
- name: Build and push Server Image
158158
if: steps.changed_server_files.outputs.any_changed == 'true'
159-
uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
159+
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
160160
with:
161161
context: server
162162
push: ${{ github.repository_owner == 'eclipse-openvsx' &&

.github/workflows/release.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -43,15 +43,15 @@ jobs:
4343
persist-credentials: false
4444

4545
- name: Log in to the Container registry
46-
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
46+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0
4747
with:
4848
registry: ${{ env.REGISTRY }}
4949
username: ${{ github.actor }}
5050
password: ${{ secrets.GITHUB_TOKEN }}
5151

5252
- name: Extract metadata (tags, labels) for Docker
5353
id: meta
54-
uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0
54+
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6.1.0
5555
with:
5656
images: |
5757
${{ env.REGISTRY }}/${{ github.repository_owner }}/${{ env.WEBUI_IMAGE }}
@@ -61,7 +61,7 @@ jobs:
6161
org.opencontainers.image.title=OpenVSX WebUI
6262
6363
- name: Build and push Web UI Image
64-
uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
64+
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
6565
with:
6666
context: webui
6767
push: true
@@ -89,15 +89,15 @@ jobs:
8989
run: server/gradlew --no-daemon -p server check
9090

9191
- name: Log in to the Container registry
92-
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0
92+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0
9393
with:
9494
registry: ${{ env.REGISTRY }}
9595
username: ${{ github.actor }}
9696
password: ${{ secrets.GITHUB_TOKEN }}
9797

9898
- name: Extract metadata (tags, labels) for Docker
9999
id: meta
100-
uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0
100+
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6.1.0
101101
with:
102102
images: |
103103
${{ env.REGISTRY }}/${{ github.repository_owner }}/${{ env.SERVER_IMAGE }}
@@ -107,7 +107,7 @@ jobs:
107107
org.opencontainers.image.title=OpenVSX Server
108108
109109
- name: Build and push Server Image
110-
uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1.0
110+
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
111111
with:
112112
context: server
113113
push: true

.github/workflows/sonar.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -36,6 +36,6 @@ jobs:
3636
- name: Copy server libraries
3737
run: find ~/.gradle/caches -type f -name '*.jar' -exec cp {} server/libraries \;
3838
- name: SonarCloud Scan
39-
uses: SonarSource/sonarqube-scan-action@59db25f34e16620e48ab4bb9e4a5dce155cb5432 # v8.0.0
39+
uses: SonarSource/sonarqube-scan-action@7006c4492b2e0ee0f816d36501671557c97f5995 # v8.1.0
4040
env:
4141
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

0 commit comments

Comments
 (0)