diff --git a/.github/workflows/email-check.yaml b/.github/workflows/email-check.yaml index 4b6fb0237ba3b..deb7beefe529a 100644 --- a/.github/workflows/email-check.yaml +++ b/.github/workflows/email-check.yaml @@ -15,7 +15,7 @@ jobs: if: github.repository == 'intel/llvm' steps: - name: Fetch LLVM sources - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.pull_request.head.sha }} @@ -40,7 +40,7 @@ jobs: [{"body" : "$COMMENT"}] EOF - - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: workflow-args diff --git a/.github/workflows/pr-code-format.yml b/.github/workflows/pr-code-format.yml index 2abfafa42e0ec..21d559b0640e4 100644 --- a/.github/workflows/pr-code-format.yml +++ b/.github/workflows/pr-code-format.yml @@ -21,13 +21,13 @@ jobs: if: (github.repository == 'llvm/llvm-project' || github.repository == 'intel/llvm') && !contains(github.event.pull_request.labels.*.name, 'disable-lint') steps: - name: Fetch LLVM sources - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 2 - name: Get changed files id: changed-files - uses: step-security/changed-files@60967b822d3001fa82242f8d6b4ed46bc3600a68 # v47.0.1 + uses: step-security/changed-files@2e07db73e5ccdb319b9a6c7766bd46d39d304bad # v47.0.5 with: separator: "," skip_initial_fetch: true @@ -37,7 +37,7 @@ jobs: # We need to pull the script from the main branch, so that we ensure # we get the latest version of this script. - name: Fetch code formatting utils - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: repository: ${{ github.repository }} ref: ${{ github.base_ref }} @@ -54,12 +54,12 @@ jobs: echo "$CHANGED_FILES" - name: Install clang-format - uses: aminya/setup-cpp@1f17f92d6a52bfcb1a25348e2c526c2e5cbb1134 # v1.8.0 + uses: aminya/setup-cpp@8170d66c458f4a045220b7b0966c10940bb2a15d # v1.8.1 with: clangformat: true - name: Setup Python env - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 + uses: actions/setup-python@ece7cb06caefa5fff74198d8649806c4678c61a1 # v6.3.0 with: python-version: '3.11' cache: 'pip' @@ -83,7 +83,7 @@ jobs: --end-rev HEAD \ --changed-files "$CHANGED_FILES" - - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: workflow-args diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 825dd05ccd298..50b758bf94f77 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -31,7 +31,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -57,6 +57,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9 + uses: github/codeql-action/upload-sarif@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0 with: sarif_file: results.sarif diff --git a/.github/workflows/sycl-aws.yml b/.github/workflows/sycl-aws.yml index c0d66779d70cc..a05de14141bf3 100644 --- a/.github/workflows/sycl-aws.yml +++ b/.github/workflows/sycl-aws.yml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-latest environment: aws steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: devops/actions/aws-ec2 ref: ${{ inputs.ref || github.sha }} diff --git a/.github/workflows/sycl-bandit.yml b/.github/workflows/sycl-bandit.yml index 0f55e69345897..342b4bcfecd4b 100644 --- a/.github/workflows/sycl-bandit.yml +++ b/.github/workflows/sycl-bandit.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Clone the git repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Install Bandit run: pip install bandit bandit-sarif-formatter @@ -35,6 +35,6 @@ jobs: run: | bandit -c devops/bandit.config -r . --exit-zero -f sarif -o bandit_results.sarif - - uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4 + - uses: github/codeql-action/upload-sarif@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0 with: sarif_file: bandit_results.sarif diff --git a/.github/workflows/sycl-blender-build-and-test.yml b/.github/workflows/sycl-blender-build-and-test.yml index 357f39f3af2f1..09bf92f823112 100644 --- a/.github/workflows/sycl-blender-build-and-test.yml +++ b/.github/workflows/sycl-blender-build-and-test.yml @@ -32,7 +32,7 @@ jobs: options: ${{ contains(inputs.runner, 'Linux') && '-u 1001 --device=/dev/dri -v /dev/dri/by-path:/dev/dri/by-path --privileged --cap-add SYS_ADMIN' || '' }} name: Build and Test Blender on ${{ contains(inputs.runner, 'Windows') && 'Windows' || 'Linux' }} steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ diff --git a/.github/workflows/sycl-clang-tidy.yml b/.github/workflows/sycl-clang-tidy.yml index 17055c983ad7b..be668e29eec06 100644 --- a/.github/workflows/sycl-clang-tidy.yml +++ b/.github/workflows/sycl-clang-tidy.yml @@ -25,7 +25,7 @@ jobs: image: ghcr.io/intel/llvm/sycl_ubuntu2404_nightly:latest options: -u 1001:1001 steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions diff --git a/.github/workflows/sycl-containers.yaml b/.github/workflows/sycl-containers.yaml index 8695c1c6b8589..32ceb45513f98 100644 --- a/.github/workflows/sycl-containers.yaml +++ b/.github/workflows/sycl-containers.yaml @@ -58,7 +58,7 @@ jobs: build_args: "" steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 2 - name: Build and Push Container @@ -94,7 +94,7 @@ jobs: tag: latest steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 2 - name: Build and Push Container @@ -127,7 +127,7 @@ jobs: tag: latest steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 2 - name: Build and Push Container diff --git a/.github/workflows/sycl-coverity.yml b/.github/workflows/sycl-coverity.yml index 7fcea8b05eea8..1d7729c854fdd 100644 --- a/.github/workflows/sycl-coverity.yml +++ b/.github/workflows/sycl-coverity.yml @@ -28,7 +28,7 @@ jobs: options: -u 1001:1001 steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions diff --git a/.github/workflows/sycl-detect-changes.yml b/.github/workflows/sycl-detect-changes.yml index 1153603b85da6..d0f5572bd2cfe 100644 --- a/.github/workflows/sycl-detect-changes.yml +++ b/.github/workflows/sycl-detect-changes.yml @@ -24,7 +24,7 @@ jobs: echo "changed_file_cnt=${{ github.event.pull_request.changed_files }}" >> $GITHUB_OUTPUT - name: Check file changes - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 + uses: dorny/paths-filter@7b450fff21473bca461d4b92ce414b9d0420d706 if: steps.changed_files.outputs.changed_file_cnt < 500 id: changes with: diff --git a/.github/workflows/sycl-docs.yml b/.github/workflows/sycl-docs.yml index 710d74bde7f81..fa05fc439c564 100644 --- a/.github/workflows/sycl-docs.yml +++ b/.github/workflows/sycl-docs.yml @@ -39,7 +39,7 @@ jobs: runs-on: ubuntu-latest if: github.repository == 'intel/llvm' steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: path: repo - name: Install deps diff --git a/.github/workflows/sycl-linux-build.yml b/.github/workflows/sycl-linux-build.yml index 830363e163795..36c0030137779 100644 --- a/.github/workflows/sycl-linux-build.yml +++ b/.github/workflows/sycl-linux-build.yml @@ -172,7 +172,7 @@ jobs: echo "Unsupported extension" exit 1 fi - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions diff --git a/.github/workflows/sycl-linux-precommit-aws.yml b/.github/workflows/sycl-linux-precommit-aws.yml index bc0eafe88b26b..bcc98749d86ab 100644 --- a/.github/workflows/sycl-linux-precommit-aws.yml +++ b/.github/workflows/sycl-linux-precommit-aws.yml @@ -48,7 +48,7 @@ jobs: runs-on: ubuntu-latest environment: aws steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: devops/actions/aws-ec2 - run: npm install ./devops/actions/aws-ec2 @@ -115,7 +115,7 @@ jobs: runs-on: ubuntu-latest environment: aws steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: devops/actions/aws-ec2 - run: npm install ./devops/actions/aws-ec2 diff --git a/.github/workflows/sycl-linux-precommit.yml b/.github/workflows/sycl-linux-precommit.yml index 523611829e5c7..5211de6e114d1 100644 --- a/.github/workflows/sycl-linux-precommit.yml +++ b/.github/workflows/sycl-linux-precommit.yml @@ -78,7 +78,7 @@ jobs: image: ghcr.io/intel/llvm/sycl_ubuntu2404_nightly:latest options: -u 1001:1001 steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ @@ -128,7 +128,7 @@ jobs: FILTER_6_2: ${{ steps.result.outputs.FILTER_6_2 }} FILTER_6_3: ${{ steps.result.outputs.FILTER_6_3 }} steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ diff --git a/.github/workflows/sycl-linux-run-tests.yml b/.github/workflows/sycl-linux-run-tests.yml index d26014cfe1b7f..871a0fcf8254e 100644 --- a/.github/workflows/sycl-linux-run-tests.yml +++ b/.github/workflows/sycl-linux-run-tests.yml @@ -248,7 +248,7 @@ jobs: options: ${{ inputs.image_options }} env: ${{ fromJSON(inputs.env) }} steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops diff --git a/.github/workflows/sycl-macos-build-and-test.yml b/.github/workflows/sycl-macos-build-and-test.yml index a925457f94c4f..24a1ecda12fec 100644 --- a/.github/workflows/sycl-macos-build-and-test.yml +++ b/.github/workflows/sycl-macos-build-and-test.yml @@ -31,11 +31,11 @@ jobs: steps: - name: Install dependencies run: brew install ccache ninja hwloc zstd - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.build_ref }} path: src - - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 + - uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: build_cache_${{ inputs.build_cache_suffix }} key: sycl-${{ runner.os }}-${{ inputs.build_cache_suffix }}-${{ github.sha }} diff --git a/.github/workflows/sycl-nightly.yml b/.github/workflows/sycl-nightly.yml index 938e3ff1dd488..d55fd08122e66 100644 --- a/.github/workflows/sycl-nightly.yml +++ b/.github/workflows/sycl-nightly.yml @@ -16,7 +16,7 @@ jobs: if: github.repository == 'intel/llvm' && false container: ghcr.io/intel/llvm/ubuntu2404_build steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | sycl/test/abi @@ -465,7 +465,7 @@ jobs: with: name: sycl_windows_default - name: Sign with sigstore/cosign - uses: sigstore/gh-action-sigstore-python@a5caf349bc536fbef3668a10ed7f5cd309a4b53d # v3.2.0 + uses: sigstore/gh-action-sigstore-python@5b79a39c381910c090341a2c9b0bf022c8b387e1 # v3.4.0 with: inputs: sycl_linux.tar.gz sycl_windows.tar.gz - name: Compute tag @@ -478,7 +478,7 @@ jobs: echo "TAG=${{ needs.get_date.outputs.date }}-${GITHUB_SHA::7}" >> "$GITHUB_OUTPUT" fi - name: Upload binaries - uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0 + uses: softprops/action-gh-release@718ea10b132b3b2eba29c1007bb80653f286566b # v3.0.1 with: files: | sycl_linux.tar.gz @@ -498,7 +498,7 @@ jobs: packages: write needs: ubuntu2204_build steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: sycl_linux_default diff --git a/.github/workflows/sycl-prebuilt-e2e-container.yml b/.github/workflows/sycl-prebuilt-e2e-container.yml index 15891fc59f6f2..146004355c6b1 100644 --- a/.github/workflows/sycl-prebuilt-e2e-container.yml +++ b/.github/workflows/sycl-prebuilt-e2e-container.yml @@ -45,13 +45,13 @@ jobs: packages: write if: always() steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ - name: Checkout E2E tests - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || github.sha }} path: llvm @@ -99,7 +99,7 @@ jobs: image: ghcr.io/${{ github.repository }}/sycl_prebuilt_tests:${{ inputs.ref || github.ref_name }} options: -u 1001 --device=/dev/dri -v /dev/dri/by-path:/dev/dri/by-path --privileged --cap-add SYS_ADMIN steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops diff --git a/.github/workflows/sycl-pytorch-build-and-test.yml b/.github/workflows/sycl-pytorch-build-and-test.yml index 08634e72a2080..34c6c8ad3e386 100644 --- a/.github/workflows/sycl-pytorch-build-and-test.yml +++ b/.github/workflows/sycl-pytorch-build-and-test.yml @@ -34,7 +34,7 @@ jobs: CMAKE_POLICY_VERSION_MINIMUM: '3.5' steps: - name: Checkout devops scripts - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ @@ -58,7 +58,7 @@ jobs: rm $TOOLCHAIN_ARTIFACT_FILENAME - name: Checkout PyTorch - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: repository: pytorch/pytorch ref: ${{ inputs.pytorch_ref }} @@ -98,7 +98,7 @@ jobs: options: -u 1001 --device=/dev/dri -v /dev/dri/by-path:/dev/dri/by-path --privileged --cap-add SYS_ADMIN steps: - name: Checkout devops scripts - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/ @@ -128,7 +128,7 @@ jobs: path: dist - name: Checkout PyTorch - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: repository: pytorch/pytorch ref: ${{ inputs.pytorch_ref }} diff --git a/.github/workflows/sycl-rel-container.yaml b/.github/workflows/sycl-rel-container.yaml index bbeeaef50983b..fb9d7e272a4b9 100644 --- a/.github/workflows/sycl-rel-container.yaml +++ b/.github/workflows/sycl-rel-container.yaml @@ -20,7 +20,7 @@ jobs: packages: write steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: devops diff --git a/.github/workflows/sycl-stale-issues.yml b/.github/workflows/sycl-stale-issues.yml index ec0983164b9f2..f311fe2ed4512 100644 --- a/.github/workflows/sycl-stale-issues.yml +++ b/.github/workflows/sycl-stale-issues.yml @@ -14,7 +14,7 @@ jobs: pull-requests: write # for actions/stale to close stale PRs runs-on: ubuntu-latest steps: - - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0 + - uses: actions/stale@1e223db275d687790206a7acac4d1a11bd6fe629 # v10.4.0 with: stale-issue-message: 'This issue is stale because it has been open 180 days with no activity. Remove stale label or comment or this will be automatically closed in 30 days.' close-issue-message: 'This issue was closed because it has been stalled for 30 days with no activity. Please, re-open if the issue still exists.' diff --git a/.github/workflows/sycl-sync-main.yml b/.github/workflows/sycl-sync-main.yml index d9e7e3a5bc6a8..2cf828245b135 100644 --- a/.github/workflows/sycl-sync-main.yml +++ b/.github/workflows/sycl-sync-main.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest if: github.repository == 'intel/llvm' steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # persist-credentials: false allows us to use our own credentials for # pushing to the repository. Otherwise, the default github actions token diff --git a/.github/workflows/sycl-trivy.yml b/.github/workflows/sycl-trivy.yml index ef2929bb904a1..b0562fa32a4a1 100644 --- a/.github/workflows/sycl-trivy.yml +++ b/.github/workflows/sycl-trivy.yml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: devops diff --git a/.github/workflows/sycl-update-gpu-driver.yml b/.github/workflows/sycl-update-gpu-driver.yml index cddd78343abeb..1d07cfa56ffd8 100644 --- a/.github/workflows/sycl-update-gpu-driver.yml +++ b/.github/workflows/sycl-update-gpu-driver.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest if: github.repository == 'intel/llvm' steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Update dependencies file run: | version="$(python3 devops/scripts/update_drivers.py linux)" diff --git a/.github/workflows/sycl-windows-build.yml b/.github/workflows/sycl-windows-build.yml index d2ff6df42e5c9..02a63e60ef001 100644 --- a/.github/workflows/sycl-windows-build.yml +++ b/.github/workflows/sycl-windows-build.yml @@ -114,7 +114,7 @@ jobs: $exitCode = $LASTEXITCODE Remove-Item -Path "windows_detect_hung_tests.ps1" exit $exitCode - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions diff --git a/.github/workflows/sycl-windows-run-tests.yml b/.github/workflows/sycl-windows-run-tests.yml index c9a499b060f19..e629cbd2f3943 100644 --- a/.github/workflows/sycl-windows-run-tests.yml +++ b/.github/workflows/sycl-windows-run-tests.yml @@ -94,7 +94,7 @@ jobs: $exitCode = $LASTEXITCODE Remove-Item -Path "windows_detect_hung_tests.ps1" exit $exitCode - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions @@ -112,7 +112,7 @@ jobs: echo "C:\Program Files\Git\usr\bin" | Out-File -FilePath $env:GITHUB_PATH -Encoding utf8 -Append - name: Register cleanup after job is finished uses: ./devops/actions/cleanup - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 if: inputs.tests_selector == 'e2e' with: path: llvm diff --git a/.github/workflows/sycl-yarpgen.yml b/.github/workflows/sycl-yarpgen.yml index df0a5735951b2..d6750f92dcce2 100644 --- a/.github/workflows/sycl-yarpgen.yml +++ b/.github/workflows/sycl-yarpgen.yml @@ -29,7 +29,7 @@ jobs: options: -u 1001 --device=/dev/dri -v /dev/dri/by-path:/dev/dri/by-path --privileged --cap-add SYS_ADMIN steps: - name: Checkout actions/source-tbb - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: | devops/actions/source-tbb @@ -78,7 +78,7 @@ jobs: - name: Pack results run: tar -czf yarpgen_results.tar.gz yarpgen/testing - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: yarpgen_results path: yarpgen_results.tar.gz diff --git a/.github/workflows/sycl-zizmor.yml b/.github/workflows/sycl-zizmor.yml index b6ac427a28056..5b325c4276d40 100644 --- a/.github/workflows/sycl-zizmor.yml +++ b/.github/workflows/sycl-zizmor.yml @@ -32,7 +32,7 @@ jobs: security-events: write steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout-cone-mode: false sparse-checkout: | @@ -40,4 +40,4 @@ jobs: devops/actions/**/*.yml - name: Run zizmor - uses: zizmorcore/zizmor-action@135698455da5c3b3e55f73f4419e481ab68cdd95 # v0.4.1 + uses: zizmorcore/zizmor-action@192e21d79ab29983730a13d1382995c2307fbcaa # v0.5.7 diff --git a/.github/workflows/ur-build-hw.yml b/.github/workflows/ur-build-hw.yml index b34761780b288..f61793b4fb628 100644 --- a/.github/workflows/ur-build-hw.yml +++ b/.github/workflows/ur-build-hw.yml @@ -73,12 +73,12 @@ jobs: # - downloading DPC++ should be integrated somehow; most likely use nightly release. # - name: Checkout LLVM - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 # for some reason it's required to re-configure python for venv to work properly. - name: Set up Python 3.12 if: ${{ inputs.docker_image == 'ghcr.io/intel/llvm/ubuntu2404_intel_drivers:latest' }} - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.0.0 + uses: actions/setup-python@ece7cb06caefa5fff74198d8649806c4678c61a1 # v6.0.0 with: python-version: '3.12' diff --git a/.github/workflows/ur-build-offload.yml b/.github/workflows/ur-build-offload.yml index 4494b5b124353..08bd230be40a7 100644 --- a/.github/workflows/ur-build-offload.yml +++ b/.github/workflows/ur-build-offload.yml @@ -22,14 +22,14 @@ jobs: steps: - name: Checkout LLVM-project - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: repository: llvm/llvm-project persist-credentials: false path: llvm-project - name: Checkout LLVM - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: path: llvm persist-credentials: false diff --git a/.github/workflows/ur-precommit.yml b/.github/workflows/ur-precommit.yml index 403ac4d285826..145df59752e48 100644 --- a/.github/workflows/ur-precommit.yml +++ b/.github/workflows/ur-precommit.yml @@ -117,9 +117,9 @@ jobs: steps: - name: Checkout LLVM - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.1.0 + - uses: actions/setup-python@ece7cb06caefa5fff74198d8649806c4678c61a1 # v6.1.0 with: python-version: "3.10" diff --git a/.github/workflows/ur-source-checks.yml b/.github/workflows/ur-source-checks.yml index e3fe20d4b8b10..d9e2f2f35a058 100644 --- a/.github/workflows/ur-source-checks.yml +++ b/.github/workflows/ur-source-checks.yml @@ -19,9 +19,9 @@ jobs: # - split into separate jobs for each OS # - name: Checkout LLVM - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - - uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.1.0 + - uses: actions/setup-python@ece7cb06caefa5fff74198d8649806c4678c61a1 # v6.1.0 with: python-version: 3.9 diff --git a/devops/actions/build_container/action.yml b/devops/actions/build_container/action.yml index 6a418553c5e23..b874953b5a724 100644 --- a/devops/actions/build_container/action.yml +++ b/devops/actions/build_container/action.yml @@ -26,15 +26,15 @@ runs: using: "composite" steps: - name: Login to GitHub Container Registry - uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0 + uses: docker/login-action@af1e73f918a031802d376d3c8bbc3fe56130a9b0 # v4.4.0 with: registry: ghcr.io username: ${{ inputs.username }} password: ${{ inputs.password }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1 + uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0 - name: Build and Push Container - uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0 + uses: docker/build-push-action@53b7df96c91f9c12dcc8a07bcb9ccacbed38856a # v7.3.0 with: push: ${{ inputs.push }} tags: ${{ inputs.tags }} diff --git a/devops/actions/cached_checkout/action.yml b/devops/actions/cached_checkout/action.yml index 771026cbc20f6..1c4c2941a7184 100644 --- a/devops/actions/cached_checkout/action.yml +++ b/devops/actions/cached_checkout/action.yml @@ -39,7 +39,7 @@ runs: - name: Checkout env: GIT_ALTERNATE_OBJECT_DIRECTORIES: ${{ inputs.cache_path }}/${{ inputs.repository }}/.git/objects - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false repository: ${{ inputs.repository }} diff --git a/devops/actions/run-tests/benchmark/action.yml b/devops/actions/run-tests/benchmark/action.yml index 126b47b32c825..72ef863280598 100644 --- a/devops/actions/run-tests/benchmark/action.yml +++ b/devops/actions/run-tests/benchmark/action.yml @@ -203,7 +203,7 @@ runs: fi echo "CR_BUILD_REF=${CR_BUILD_REF}" >> $GITHUB_OUTPUT - name: Checkout results repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ steps.establish_outputs.outputs.BENCHMARK_RESULTS_BRANCH }} path: ${{ steps.establish_outputs.outputs.BENCHMARK_RESULTS_REPO_PATH }} diff --git a/devops/actions/run-tests/linux/e2e/action.yml b/devops/actions/run-tests/linux/e2e/action.yml index c9f11c5324694..3751e7fb9a01c 100644 --- a/devops/actions/run-tests/linux/e2e/action.yml +++ b/devops/actions/run-tests/linux/e2e/action.yml @@ -25,7 +25,7 @@ runs: steps: - name: Checkout E2E tests if: ${{ !(inputs.testing_mode == 'run-only' && inputs.binaries_artifact == 'in-container') }} - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: path: llvm ref: ${{ inputs.ref || github.sha }} diff --git a/devops/actions/run-tests/windows/e2e/action.yml b/devops/actions/run-tests/windows/e2e/action.yml index f22bb0f65185c..c8e44b54cc3d9 100644 --- a/devops/actions/run-tests/windows/e2e/action.yml +++ b/devops/actions/run-tests/windows/e2e/action.yml @@ -26,7 +26,7 @@ runs: using: "composite" steps: - name: Checkout E2E tests - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: path: llvm ref: ${{ inputs.ref || github.sha }}