Skip to content

Commit bccf70c

Browse files
authored
Merge pull request #1567 from finos/dependabot/github_actions/github-actions-ee4cbb3667
chore(deps): bump the github-actions group across 1 directory with 10 updates
2 parents f59ebc7 + bffe243 commit bccf70c

14 files changed

Lines changed: 31 additions & 31 deletions

.github/workflows/ci.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ jobs:
2828
with:
2929
egress-policy: audit
3030

31-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
31+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
3232
with:
3333
fetch-depth: 0
3434

@@ -72,7 +72,7 @@ jobs:
7272
run: npm run test:integration
7373

7474
- name: Upload test coverage report
75-
uses: codecov/codecov-action@75cd11691c0faa626561e295848008c8a7dddffe # v5.5.4
75+
uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1
7676
with:
7777
files: ./coverage/lcov.info,./coverage-cli/lcov.info
7878
token: ${{ secrets.CODECOV_TOKEN }}
@@ -81,7 +81,7 @@ jobs:
8181
run: npm run build-ui
8282

8383
- name: Run cypress test
84-
uses: cypress-io/github-action@dace029018fcdf86e0df89a31bc3cfa5b32570d8 # v7.3.0
84+
uses: cypress-io/github-action@948d67d3074f1bbb6379c8bdbb04e95d2f8e593f # v7.4.0
8585
with:
8686
# skip the action's internal npm ci — dependencies are already installed above
8787
install: false
@@ -100,7 +100,7 @@ jobs:
100100
with:
101101
egress-policy: audit
102102

103-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
103+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
104104
with:
105105
fetch-depth: 0
106106

@@ -146,7 +146,7 @@ jobs:
146146
needs: [build-ubuntu, build-windows]
147147
steps:
148148
- name: Harden the runner (Audit all outbound calls)
149-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
149+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
150150
with:
151151
egress-policy: audit
152152

.github/workflows/codeql.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -26,12 +26,12 @@ jobs:
2626

2727
steps:
2828
- name: Harden Runner
29-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2
29+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
3030
with:
3131
egress-policy: audit
3232

3333
- name: Checkout repository
34-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
34+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
3535

3636
- name: Initialize CodeQL
3737
uses: github/codeql-action/init@72c0b0efb7def5141326c5e13760acdda431379d # ratchet:github/codeql-action/init@v4

.github/workflows/dependency-review.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -10,14 +10,14 @@ jobs:
1010
runs-on: ubuntu-latest
1111
steps:
1212
- name: Harden Runner
13-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2
13+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
1414
with:
1515
egress-policy: audit
1616

1717
- name: 'Checkout Repository'
18-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
18+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
1919
- name: Dependency Review
20-
uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4
20+
uses: actions/dependency-review-action@a1d282b36b6f3519aa1f3fc636f609c47dddb294 # v4
2121
with:
2222
comment-summary-in-pr: always
2323
fail-on-severity: high

.github/workflows/docker-publish.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -18,19 +18,19 @@ jobs:
1818

1919
steps:
2020
- name: Harden the runner (Audit all outbound calls)
21-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
21+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
2222
with:
2323
egress-policy: audit
2424

2525
- name: Set up Docker Buildx
26-
uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4
26+
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
2727

2828
- name: Checkout Repository
29-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
29+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
3030

3131
- name: Log in to Docker Hub
3232
if: github.repository_owner == 'finos'
33-
uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4
33+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4
3434
with:
3535
username: finos
3636
password: ${{ secrets.DOCKER_PASSWORD }}

.github/workflows/e2e.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -22,23 +22,23 @@ jobs:
2222

2323
steps:
2424
- name: Harden the runner (Audit all outbound calls)
25-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
25+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
2626
with:
2727
egress-policy: audit
2828

2929
- name: Checkout code
30-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
30+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
3131

3232
- name: Set up Docker Buildx
33-
uses: docker/setup-buildx-action@d91f340399fb2345e3e45f5461e116862b08261d
33+
uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd
3434
with:
3535
install: true
3636

3737
- name: Expose GitHub Runtime for Docker Cache
38-
uses: crazy-max/ghaction-github-runtime@3cb05d89e1f492524af3d41a1c98c83bc3025124 # v3
38+
uses: crazy-max/ghaction-github-runtime@04d248b84655b509d8c44dc1d6f990c879747487 # v4.0.0
3939

4040
- name: Set up Docker Compose
41-
uses: docker/setup-compose-action@e29e0ecd235838be5f2e823f8f512a72dc55f662
41+
uses: docker/setup-compose-action@dd8b913e8081779e7a75dd4ffd066e6ba62a289c
4242

4343
- name: Set up Node.js
4444
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
@@ -101,7 +101,7 @@ jobs:
101101
needs: [e2e]
102102
steps:
103103
- name: Harden the runner (Audit all outbound calls)
104-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2.19.3
104+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
105105
with:
106106
egress-policy: audit
107107

.github/workflows/experimental-inventory-ci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ jobs:
2828
with:
2929
egress-policy: audit
3030

31-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
31+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
3232
with:
3333
fetch-depth: 0
3434

.github/workflows/experimental-inventory-cli-publish.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
with:
1919
egress-policy: audit
2020

21-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
21+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
2222

2323
# Setup .npmrc file to publish to npm
2424
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6

.github/workflows/experimental-inventory-publish.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
with:
1919
egress-policy: audit
2020

21-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
21+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
2222

2323
# Setup .npmrc file to publish to npm
2424
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6

.github/workflows/lint.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ jobs:
1414
runs-on: ubuntu-latest
1515
steps: # list of steps
1616
- name: Harden Runner
17-
uses: step-security/harden-runner@ab7a9404c0f3da075243ca237b5fac12c98deaa5 # v2
17+
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
1818
with:
1919
egress-policy: audit
2020

@@ -24,7 +24,7 @@ jobs:
2424
node-version: ${{ env.NODE_VERSION }}
2525

2626
- name: Code Checkout
27-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
27+
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
2828
with:
2929
fetch-depth: 0
3030

.github/workflows/npm.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
with:
1616
egress-policy: audit
1717

18-
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
18+
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
1919
# Setup .npmrc file to publish to npm
2020
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
2121
with:

0 commit comments

Comments
 (0)