Skip to content

Commit eaf4f96

Browse files
chore(deps): bump the github-actions-dependencies group across 3 directories with 6 updates
Bumps the github-actions-dependencies group with 4 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [docker/login-action](https://github.com/docker/login-action), [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) and [actions/create-github-app-token](https://github.com/actions/create-github-app-token). Bumps the github-actions-dependencies group with 1 update in the /actions/docker/sign-images directory: [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer). Bumps the github-actions-dependencies group with 2 updates in the /actions/helm/release-chart directory: [mikefarah/yq](https://github.com/mikefarah/yq) and [appany/helm-oci-chart-releaser](https://github.com/appany/helm-oci-chart-releaser). Updates `actions/checkout` from 4.2.2 to 5.0.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@11bd719...08c6903) Updates `docker/login-action` from 3.4.0 to 3.5.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@74a5d14...184bdaa) Updates `sigstore/cosign-installer` from 3.9.1 to 3.9.2 - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@398d4b0...d58896d) Updates `actions/create-github-app-token` from 2.0.6 to 2.1.1 - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@df432ce...a8d6161) Updates `sigstore/cosign-installer` from 3.9.1 to 3.9.2 - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@398d4b0...d58896d) Updates `sigstore/cosign-installer` from 3.9.1 to 3.9.2 - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@398d4b0...d58896d) Updates `sigstore/cosign-installer` from 3.9.1 to 3.9.2 - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@398d4b0...d58896d) Updates `mikefarah/yq` from 4.46.1 to 4.47.1 - [Release notes](https://github.com/mikefarah/yq/releases) - [Changelog](https://github.com/mikefarah/yq/blob/master/release_notes.txt) - [Commits](mikefarah/yq@1187c95...f03c9dc) Updates `appany/helm-oci-chart-releaser` from 0.4.2 to 0.5.0 - [Release notes](https://github.com/appany/helm-oci-chart-releaser/releases) - [Commits](appany/helm-oci-chart-releaser@dd0551c...d94988c) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-dependencies - dependency-name: docker/login-action dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies - dependency-name: sigstore/cosign-installer dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-dependencies - dependency-name: actions/create-github-app-token dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies - dependency-name: sigstore/cosign-installer dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-dependencies - dependency-name: sigstore/cosign-installer dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-dependencies - dependency-name: sigstore/cosign-installer dependency-version: 3.9.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-dependencies - dependency-name: mikefarah/yq dependency-version: 4.47.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies - dependency-name: appany/helm-oci-chart-releaser dependency-version: 0.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
1 parent 8107787 commit eaf4f96

13 files changed

Lines changed: 27 additions & 27 deletions

.github/workflows/__main-ci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ jobs:
5757
if: github.event_name != 'schedule'
5858
runs-on: ubuntu-latest
5959
steps:
60-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
60+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
6161

6262
- uses: ./actions/helm/generate-docs
6363
with:

.github/workflows/__test-action-docker-build-image.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@ jobs:
1919
packages: write
2020
steps:
2121
- name: Arrange - Checkout
22-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
22+
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2323

2424
- name: Arrange - Ensure token is set
2525
run: |
@@ -138,7 +138,7 @@ jobs:
138138
);
139139
}
140140
141-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
141+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
142142
with:
143143
registry: ghcr.io
144144
username: ${{ github.repository_owner }}
@@ -165,7 +165,7 @@ jobs:
165165
packages: write
166166
steps:
167167
- name: Arrange - Checkout
168-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
168+
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
169169

170170
- name: Arrange - Ensure token is set
171171
run: |
@@ -208,7 +208,7 @@ jobs:
208208
assert.equal(builtImage.tags.length, 1, `"tags" output is not valid`);
209209
assert.equal(builtImage.tags[0], '0.1.0', `"tags" output is not valid`);
210210
211-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
211+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
212212
with:
213213
registry: ghcr.io
214214
username: ${{ github.repository_owner }}

.github/workflows/__test-action-docker-prune-pull-requests-image-tags.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -59,9 +59,9 @@ jobs:
5959
outputs:
6060
deleted-image-tags: ${{ steps.prune-pull-requests-image-tags.outputs.deleted-image-tags }}
6161
steps:
62-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
62+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
6363

64-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
64+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
6565
with:
6666
registry: ghcr.io
6767
username: ${{ github.repository_owner }}
@@ -135,7 +135,7 @@ jobs:
135135
);
136136
assert.equal(packageVersionExists, false, `Package version "${{ needs.setup.outputs.tag }}" has not been deleted`);
137137
138-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
138+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
139139
if: ${{ github.event_name == 'pull_request' }}
140140
with:
141141
registry: ghcr.io
@@ -173,7 +173,7 @@ jobs:
173173
packages: write
174174
if: always()
175175
steps:
176-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
176+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
177177

178178
- id: get-issue-number
179179
if: ${{ github.event_name == 'pull_request' }}

.github/workflows/__test-action-get-image-metadata.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ jobs:
1313
name: Test for "docker/get-image-metadata" action
1414
runs-on: ubuntu-latest
1515
steps:
16-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
16+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1717

1818
- name: Act
1919
id: get-image-metadata
@@ -108,7 +108,7 @@ jobs:
108108
name: Test for "docker/get-image-metadata" action with given tag
109109
runs-on: ubuntu-latest
110110
steps:
111-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
111+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
112112

113113
- name: Act
114114
id: get-image-metadata

.github/workflows/__test-action-get-image-name.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ jobs:
1313
name: Test for "docker/get-image-name" action
1414
runs-on: ubuntu-latest
1515
steps:
16-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
16+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1717

1818
- id: get-image-name
1919
uses: ./actions/docker/get-image-name
@@ -50,7 +50,7 @@ jobs:
5050
name: Test for "docker/get-image-name" action with given repository
5151
runs-on: ubuntu-latest
5252
steps:
53-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
53+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
5454

5555
- id: get-image-name
5656
uses: ./actions/docker/get-image-name

.github/workflows/__test-action-helm-parse-chart-uri.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ jobs:
1313
name: Test for "helm/parse-chart-uri" action
1414
runs-on: ubuntu-latest
1515
steps:
16-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
16+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1717

1818
- name: Act
1919
id: parse-chart-uri

.github/workflows/__test-action-helm-release-chart.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -39,7 +39,7 @@ jobs:
3939
{ "file": "charts/app/values.yaml", "path": ".image.tag", "value": "0.1.0" }
4040
]
4141
steps:
42-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
42+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
4343

4444
- run: |
4545
if [ -z "${{ github.token }}" ]; then

.github/workflows/__test-action-helm-test-chart.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ jobs:
3535
needs: build-test-images
3636
runs-on: ubuntu-latest
3737
steps:
38-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
38+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
3939

4040
- id: test-chart
4141
uses: ./actions/helm/test-chart

.github/workflows/__test-workflow-docker-build-images.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -122,7 +122,7 @@ jobs:
122122
`ghcr.io/hoverkraft-tech/ci-github-container/test-mono-arch:0.1.0@${applicationMonoArchImage.digest}`
123123
);
124124
125-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
125+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
126126
with:
127127
registry: ghcr.io
128128
username: ${{ github.repository_owner }}
@@ -190,7 +190,7 @@ jobs:
190190
assert.equal(annotations[key], value, `Expected annotation not found: ${key}`);
191191
});
192192
193-
- uses: sigstore/cosign-installer@398d4b0eeef1380460a10c8013a76f728fb906ac # v3.9.1
193+
- uses: sigstore/cosign-installer@d58896d6a1865668819e1d91763c7751a165e159 # v3.9.2
194194

195195
- name: Assert - signed multi-arch docker image
196196
uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
@@ -339,7 +339,7 @@ jobs:
339339
for (const image of expectedCreatedImages) {
340340
assert(builtImages[image], `"built-images" output does not contain "${image}" image`);
341341
}
342-
- uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
342+
- uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
343343
with:
344344
registry: ghcr.io
345345
username: ${{ github.repository_owner }}

.github/workflows/docker-build-images.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -349,7 +349,7 @@ jobs:
349349
# FIXME: This is a workaround for having workflow actions. See https://github.com/orgs/community/discussions/38659
350350
- id: oidc
351351
uses: ChristopherHX/oidc@73eee1ff03fdfce10eda179f617131532209edbd # v3
352-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
352+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
353353
with:
354354
path: ./self-workflow
355355
repository: ${{ steps.oidc.outputs.job_workflow_repo_name_and_owner }}
@@ -360,7 +360,7 @@ jobs:
360360
echo "self-workflow" >> .gitignore
361361
echo "self-workflow" >> .dockerignore
362362
363-
- uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2.0.6
363+
- uses: actions/create-github-app-token@a8d616148505b5069dccd32f177bb87d7f39123b # v2.1.1
364364
if: inputs.build-secret-github-app-id
365365
id: generate-token
366366
with:
@@ -427,7 +427,7 @@ jobs:
427427
value: ${{ steps.build.outputs.built-image }}
428428

429429
# FIXME: This is a workaround for having workflow actions. See https://github.com/orgs/community/discussions/38659
430-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
430+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
431431
if: always() && steps.oidc.outputs.job_workflow_repo_name_and_owner
432432
with:
433433
path: ./self-workflow
@@ -485,7 +485,7 @@ jobs:
485485
# FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659
486486
- id: oidc
487487
uses: ChristopherHX/oidc@73eee1ff03fdfce10eda179f617131532209edbd # v3
488-
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
488+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
489489
with:
490490
path: ./self-workflow
491491
repository: ${{ steps.oidc.outputs.job_workflow_repo_name_and_owner }}

0 commit comments

Comments
 (0)