From d71b622c3cdbda822e14b338d8457edb2cccc3f5 Mon Sep 17 00:00:00 2001 From: Frederic BIDON Date: Fri, 2 Jan 2026 11:41:38 +0100 Subject: [PATCH] fix: realigned gh-action sha to latest release Signed-off-by: Frederic BIDON --- .github/workflows/auto-merge.yml | 2 +- .github/workflows/bump-release-monorepo.yml | 6 +++--- .github/workflows/bump-release.yml | 4 ++-- .github/workflows/collect-reports.yml | 4 ++-- .github/workflows/contributors.yml | 4 ++-- .github/workflows/go-test-monorepo.yml | 6 +++--- .github/workflows/go-test.yml | 2 +- .github/workflows/prepare-release-monorepo.yml | 6 +++--- .github/workflows/release.yml | 2 +- 9 files changed, 18 insertions(+), 18 deletions(-) diff --git a/.github/workflows/auto-merge.yml b/.github/workflows/auto-merge.yml index 31fc6c9..e5ca923 100644 --- a/.github/workflows/auto-merge.yml +++ b/.github/workflows/auto-merge.yml @@ -81,7 +81,7 @@ jobs: run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/bump-release-monorepo.yml b/.github/workflows/bump-release-monorepo.yml index 185c00a..1f63d75 100644 --- a/.github/workflows/bump-release-monorepo.yml +++ b/.github/workflows/bump-release-monorepo.yml @@ -122,7 +122,7 @@ jobs: - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 bump-release-single: name: Bump release (single module) @@ -158,7 +158,7 @@ jobs: - name: Determine next tag id: bump-release - uses: go-openapi/gh-actions/ci-jobs/next-tag@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/next-tag@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 with: bump-patch: ${{ inputs.bump-patch }} bump-minor: ${{ inputs.bump-minor }} @@ -247,7 +247,7 @@ jobs: - name: Configure bot credentials if: ${{ inputs.enable-tag-signing == 'true' }} - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 # This is using the GPG signature of bot-go-openapi. # # For go-openapi repos (using secrets: inherit): diff --git a/.github/workflows/bump-release.yml b/.github/workflows/bump-release.yml index eb49532..3482d1d 100644 --- a/.github/workflows/bump-release.yml +++ b/.github/workflows/bump-release.yml @@ -102,7 +102,7 @@ jobs: - name: Determine next tag id: bump-release - uses: go-openapi/gh-actions/ci-jobs/next-tag@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/next-tag@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 with: bump-patch: ${{ inputs.bump-patch }} bump-minor: ${{ inputs.bump-minor }} @@ -110,7 +110,7 @@ jobs: - name: Configure bot credentials if: ${{ inputs.enable-tag-signing == 'true' }} - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 # This is using the GPG signature of bot-go-openapi. # # For go-openapi repos (using secrets: inherit): diff --git a/.github/workflows/collect-reports.yml b/.github/workflows/collect-reports.yml index 8292135..ca33d43 100644 --- a/.github/workflows/collect-reports.yml +++ b/.github/workflows/collect-reports.yml @@ -32,7 +32,7 @@ jobs: path: reports/ - name: Install go-junit-report - uses: go-openapi/gh-actions/install/go-junit-report@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/install/go-junit-report@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Convert test reports to a merged JUnit XML # NOTE: codecov test reports only support JUnit format at this moment. See https://docs.codecov.com/docs/test-analytics. @@ -57,7 +57,7 @@ jobs: verbose: true - name: Install go-ctrf-json-reporter - uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Convert test reports to CTRF JSON # description: | diff --git a/.github/workflows/contributors.yml b/.github/workflows/contributors.yml index b05d4c9..2e00b18 100644 --- a/.github/workflows/contributors.yml +++ b/.github/workflows/contributors.yml @@ -83,7 +83,7 @@ jobs: mv contributors.md CONTRIBUTORS.md - name: Configure bot credentials - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 id: bot-credentials # For go-openapi repos (using secrets: inherit): # Falls back to: CI_BOT_APP_ID, CI_BOT_APP_PRIVATE_KEY, CI_BOT_GPG_PRIVATE_KEY, etc. @@ -141,7 +141,7 @@ jobs: run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/go-test-monorepo.yml b/.github/workflows/go-test-monorepo.yml index 829e639..14c08e4 100644 --- a/.github/workflows/go-test-monorepo.yml +++ b/.github/workflows/go-test-monorepo.yml @@ -35,7 +35,7 @@ jobs: - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: golangci-lint [monorepo] # golangci-action v9.1+ has an experimental built-in mono repo detection setup. @@ -91,10 +91,10 @@ jobs: - name: Detect go version capabilities id: detect-go-version - uses: go-openapi/gh-actions/ci-jobs/detect-go-version@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/detect-go-version@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Install gotestsum - uses: go-openapi/gh-actions/install/gotestsum@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/install/gotestsum@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Run unit tests on all modules (go1.25+ with go.work) [monorepo] if: ${{ needs.lint.outputs.is-monorepo == 'true' && steps.detect-go-version.outputs.is-gotestwork-supported == 'true' }} diff --git a/.github/workflows/go-test.yml b/.github/workflows/go-test.yml index 9fc303a..7f6fc58 100644 --- a/.github/workflows/go-test.yml +++ b/.github/workflows/go-test.yml @@ -53,7 +53,7 @@ jobs: cache: true - name: Install gotestsum - uses: go-openapi/gh-actions/install/gotestsum@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/install/gotestsum@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Run unit tests run: > diff --git a/.github/workflows/prepare-release-monorepo.yml b/.github/workflows/prepare-release-monorepo.yml index 126fae7..175d037 100644 --- a/.github/workflows/prepare-release-monorepo.yml +++ b/.github/workflows/prepare-release-monorepo.yml @@ -107,7 +107,7 @@ jobs: - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Update go.mod files for new release env: @@ -160,7 +160,7 @@ jobs: git status --short - name: Configure bot credentials - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 id: bot-credentials # For go-openapi repos (using secrets: inherit): # Falls back to: CI_BOT_APP_ID, CI_BOT_APP_PRIVATE_KEY, CI_BOT_GPG_PRIVATE_KEY, etc. @@ -230,7 +230,7 @@ jobs: run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 0b42411..5e235b8 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -84,7 +84,7 @@ jobs: name: Detect go mono-repo if: ${{ inputs.is-monorepo == 'true' }} id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@0ec18ca1ddc1e2257097ae8d57952733109d80a1 # v1.4.0 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@00f8939fb0771da06b0c115b9e011a7c321e0df4 # v1.4.0 - name: Install git-cliff [monorepo] if: ${{ inputs.is-monorepo == 'true' }}