Skip to content

Commit 0ecc1c1

Browse files
committed
upgrading actions, dependabot
1 parent ba3d258 commit 0ecc1c1

17 files changed

Lines changed: 106 additions & 101 deletions

.github/dependabot.yml

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,13 @@
1+
version: 2
2+
updates:
3+
- package-ecosystem: github-actions
4+
directory: /
5+
schedule:
6+
interval: weekly
7+
cooldown:
8+
default-days: 3
9+
groups:
10+
github-actions-minor:
11+
update-types:
12+
- minor
13+
- patch

.github/workflows/build-for-heroku.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -47,13 +47,13 @@ jobs:
4747
runs-on: ubuntu-latest
4848
timeout-minutes: 10
4949
steps:
50-
- uses: actions/checkout@v3.3.0
50+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
5151

5252
- name: Install Heroku CLI
5353
if: ${{ env.ACT }}
5454
run: curl https://cli-assets.heroku.com/install-ubuntu.sh | sh
5555

56-
- uses: akhileshns/heroku-deploy@v3.12.13 # This is the action
56+
- uses: akhileshns/heroku-deploy@1b080913896a5d6d44a18e9e208f8eb1fee9b0f7 # v3.15.15
5757
with:
5858
heroku_api_key: ${{secrets.HEROKU_API_KEY}}
5959
heroku_app_name: ${{ inputs.heroku_app_name }} # Must be unique in Heroku

.github/workflows/caprover-configure-app.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -96,13 +96,13 @@ jobs:
9696
name: ${{ inputs.caproverAppName }}
9797
url: ${{ inputs.deployTargetUrl || env.defaultDeployTargetUrl }}
9898
steps:
99-
- uses: actions/checkout@v3
99+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
100100

101-
- uses: cardinalby/export-env-action@2.2.0
101+
- uses: cardinalby/export-env-action@4f48c4676cf6ed6f46e30899ee987ce695da7c80 # 2.2.3
102102
with:
103103
envFile: ${{ inputs.envFile }}
104104

105-
- uses: oven-sh/setup-bun@v1
105+
- uses: oven-sh/setup-bun@0c5077e51419868618aeaa5fe8019c62421857d6 # v2.2.0
106106
with:
107107
bun-version: ${{ env.BUN_VERSION }}
108108

@@ -158,7 +158,7 @@ jobs:
158158
- name: Enable SSL 🔒
159159
run: bunx caprover api --path=/user/apps/appDefinitions/enablebasedomainssl --method=POST --data='{"appName":"${{ inputs.caproverAppName }}"}'
160160

161-
- uses: sarisia/actions-status-discord@v1
161+
- uses: sarisia/actions-status-discord@eb045afee445dc055c18d3d90bd0f244fd062708 # v1.16.0
162162
if: ${{ inputs.discordWebhook }}
163163
with:
164164
webhook: ${{ inputs.discordWebhook }}

.github/workflows/caprover-deploy.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -41,12 +41,12 @@ jobs:
4141
name: ${{ inputs.caproverAppName }}
4242
url: ${{ inputs.deployTargetUrl || env.defaultDeployTargetUrl }}
4343
steps:
44-
- uses: actions/checkout@v3
45-
- uses: cardinalby/export-env-action@2.2.0
44+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
45+
- uses: cardinalby/export-env-action@4f48c4676cf6ed6f46e30899ee987ce695da7c80 # 2.2.3
4646
with:
4747
envFile: ${{ inputs.envFile }}
4848

49-
- uses: oven-sh/setup-bun@v1
49+
- uses: oven-sh/setup-bun@0c5077e51419868618aeaa5fe8019c62421857d6 # v2.2.0
5050
with:
5151
bun-version: ${{ env.BUN_VERSION }}
5252

@@ -59,7 +59,7 @@ jobs:
5959
CAPROVER_IMAGE_NAME: ${{ inputs.caproverImageName }}
6060
CAPROVER_APP: ${{ inputs.caproverAppName }}
6161

62-
- uses: sarisia/actions-status-discord@v1
62+
- uses: sarisia/actions-status-discord@eb045afee445dc055c18d3d90bd0f244fd062708 # v1.16.0
6363
if: ${{ inputs.discordWebhook }}
6464
with:
6565
webhook: ${{ inputs.discordWebhook }}

.github/workflows/deploy-to-heroku.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -43,13 +43,13 @@ jobs:
4343
runs-on: ubuntu-latest
4444
timeout-minutes: 10
4545
steps:
46-
- uses: actions/checkout@v3.3.0
46+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
4747

4848
- name: Install Heroku CLI
4949
if: ${{ env.ACT }}
5050
run: curl https://cli-assets.heroku.com/install-ubuntu.sh | sh
5151

52-
- uses: akhileshns/heroku-deploy@v3.12.13 # This is the action
52+
- uses: akhileshns/heroku-deploy@1b080913896a5d6d44a18e9e208f8eb1fee9b0f7 # v3.15.15
5353
with:
5454
heroku_api_key: ${{secrets.HEROKU_API_KEY}}
5555
heroku_app_name: ${{ inputs.heroku_app_name }} # Must be unique in Heroku

.github/workflows/docker-build.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -28,21 +28,21 @@ jobs:
2828
runs-on: ubuntu-latest
2929
timeout-minutes: 10
3030
steps:
31-
- uses: actions/checkout@v3
32-
- uses: cardinalby/export-env-action@2.2.0
31+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
32+
- uses: cardinalby/export-env-action@4f48c4676cf6ed6f46e30899ee987ce695da7c80 # 2.2.3
3333
with:
3434
envFile: ${{ inputs.envFile }}
3535

3636
- name: Log in to the Container registry
37-
uses: docker/login-action@v2
37+
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0
3838
with:
3939
registry: ghcr.io
4040
username: ${{ github.actor }}
4141
password: ${{ secrets.github-token }}
4242

43-
- uses: docker/setup-buildx-action@v2
43+
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
4444

45-
- uses: docker/build-push-action@v4
45+
- uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
4646
env:
4747
baseImage: BASE_IMAGE=oven/bun:${{ env.BUN_VERSION || 'latest' }}-slim
4848
with:
@@ -53,7 +53,7 @@ jobs:
5353
cache-to: type=gha,mode=max
5454
tags: ${{ inputs.dockerImageTags }}
5555

56-
- uses: sarisia/actions-status-discord@v1
56+
- uses: sarisia/actions-status-discord@eb045afee445dc055c18d3d90bd0f244fd062708 # v1.16.0
5757
if: ${{ failure() && inputs.discordWebhook }}
5858
with:
5959
webhook: ${{ inputs.discordWebhook }}

.github/workflows/eas-build-local.yml

Lines changed: 8 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -60,8 +60,7 @@ on:
6060
pnpm_version:
6161
required: false
6262
type: string
63-
default: "8"
64-
description: If using pnpm - which version to use
63+
description: If using pnpm - which version to use (defaults to the packageManager field in package.json)
6564
google_service_account_key_path:
6665
required: false
6766
type: string
@@ -98,31 +97,31 @@ jobs:
9897
# Steps represent a sequence of tasks that will be executed as part of the job
9998
steps:
10099
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
101-
- uses: actions/checkout@v3
100+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
102101
if: ${{ !inputs.checkout_ref }}
103102

104-
- uses: actions/checkout@v3
103+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
105104
if: ${{ inputs.checkout_ref }}
106105
with:
107106
ref: ${{ inputs.checkout_ref }}
108107

109108
# as required by expo 50
110-
- uses: actions/setup-java@v4
109+
- uses: actions/setup-java@ad2b38190b15e4d6bdf0c97fb4fca8412226d287 # v5.3.0
111110
with:
112111
distribution: zulu
113112
java-version: ${{ inputs.java_version }}
114113

115-
- uses: pnpm/action-setup@v2
114+
- uses: pnpm/action-setup@0ebf47130e4866e96fce0953f49152a61190b271 # v6.0.9
116115
if: ${{ inputs.package_manager == 'pnpm' }}
117116
with:
118117
version: ${{ inputs.pnpm_version }}
119118

120-
- uses: oven-sh/setup-bun@v1
119+
- uses: oven-sh/setup-bun@0c5077e51419868618aeaa5fe8019c62421857d6 # v2.2.0
121120
if: ${{ inputs.package_manager == 'bun' }}
122121
with:
123122
bun-version: ${{ inputs.bun_version }}
124123

125-
- uses: actions/setup-node@v3
124+
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
126125
if: ${{ inputs.package_manager != 'bun' }}
127126
with:
128127
node-version-file: .nvmrc
@@ -144,7 +143,7 @@ jobs:
144143
working-directory: ${{ inputs.working_directory }}
145144

146145
- name: Expo GitHub Action
147-
uses: expo/expo-github-action@v8
146+
uses: expo/expo-github-action@eab7a230208c952974db8c3245cfd78402c7b385 # 9.0.0
148147
id: expo-init
149148
with:
150149
# Your Expo username, for authentication.

.github/workflows/eas-build.yml

Lines changed: 7 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -60,8 +60,7 @@ on:
6060
pnpm_version:
6161
required: false
6262
type: string
63-
default: "8"
64-
description: If using pnpm - which version to use
63+
description: If using pnpm - which version to use (defaults to the packageManager field in package.json)
6564
nodeModulePaths:
6665
required: false
6766
type: string
@@ -106,25 +105,25 @@ jobs:
106105
# Steps represent a sequence of tasks that will be executed as part of the job
107106
steps:
108107
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
109-
- uses: actions/checkout@v3
108+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
110109
if: ${{ !inputs.checkout_ref }}
111110

112-
- uses: actions/checkout@v3
111+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
113112
if: ${{ inputs.checkout_ref }}
114113
with:
115114
ref: ${{ inputs.checkout_ref }}
116115

117-
- uses: pnpm/action-setup@v2
116+
- uses: pnpm/action-setup@0ebf47130e4866e96fce0953f49152a61190b271 # v6.0.9
118117
if: ${{ inputs.package_manager == 'pnpm' }}
119118
with:
120119
version: ${{ inputs.pnpm_version }}
121120

122-
- uses: oven-sh/setup-bun@v1
121+
- uses: oven-sh/setup-bun@0c5077e51419868618aeaa5fe8019c62421857d6 # v2.2.0
123122
if: ${{ inputs.package_manager == 'bun' }}
124123
with:
125124
bun-version: ${{ inputs.bun_version }}
126125

127-
- uses: actions/setup-node@v3
126+
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
128127
if: ${{ inputs.package_manager != 'bun' }}
129128
with:
130129
node-version-file: .nvmrc
@@ -146,7 +145,7 @@ jobs:
146145
working-directory: ${{ inputs.working_directory }}
147146

148147
- name: Expo GitHub Action
149-
uses: expo/expo-github-action@v8
148+
uses: expo/expo-github-action@eab7a230208c952974db8c3245cfd78402c7b385 # 9.0.0
150149
id: expo-init
151150
with:
152151
# Your Expo username, for authentication.

.github/workflows/expo-preview.yml

Lines changed: 8 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -37,8 +37,7 @@ on:
3737
pnpm_version:
3838
required: false
3939
type: string
40-
default: "8"
41-
description: If using pnpm - which version to use
40+
description: If using pnpm - which version to use (defaults to the packageManager field in package.json)
4241
secrets:
4342
EXPO_TOKEN:
4443
required: true
@@ -59,14 +58,14 @@ jobs:
5958
# Steps represent a sequence of tasks that will be executed as part of the job
6059
steps:
6160
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
62-
- uses: actions/checkout@v3
61+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
6362

64-
- uses: pnpm/action-setup@v2
63+
- uses: pnpm/action-setup@0ebf47130e4866e96fce0953f49152a61190b271 # v6.0.9
6564
if: ${{ inputs.package_manager == 'pnpm' }}
6665
with:
6766
version: ${{ inputs.pnpm_version }}
6867

69-
- uses: actions/setup-node@v3
68+
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
7069
with:
7170
node-version-file: .nvmrc
7271
cache: ${{ inputs.package_manager }}
@@ -87,7 +86,7 @@ jobs:
8786
working-directory: ${{ inputs.working_directory }}
8887

8988
- name: Expo GitHub Action
90-
uses: expo/expo-github-action@v8
89+
uses: expo/expo-github-action@eab7a230208c952974db8c3245cfd78402c7b385 # 9.0.0
9190
with:
9291
# Your Expo username, for authentication.
9392
token: ${{ secrets.EXPO_TOKEN }}
@@ -98,7 +97,7 @@ jobs:
9897

9998
- name: Find Metro cache
10099
id: metro-cache-dir-path
101-
uses: actions/github-script@v4
100+
uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0
102101
with:
103102
result-encoding: string
104103
script: |
@@ -107,7 +106,7 @@ jobs:
107106
return path.join(os.tmpdir(), 'metro-cache');
108107
109108
- name: Restore Metro cache
110-
uses: actions/cache@v2
109+
uses: actions/cache@2c8a9bd7457de244a408f35966fab2fb45fda9c8 # v6.0.0
111110
with:
112111
path: ${{ steps.metro-cache-dir-path.outputs.result }}
113112
key: ${{ runner.os }}-metro-cache-${{ matrix.app }}-${{ github.ref }}
@@ -123,7 +122,7 @@ jobs:
123122
SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
124123
SENTRY_DEPLOY_ENV: ${{ inputs.expo_release_channel }}
125124

126-
- uses: marocchino/sticky-pull-request-comment@v2
125+
- uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4
127126
with:
128127
recreate: true
129128
message: |

.github/workflows/expo-publish.yml

Lines changed: 7 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -28,8 +28,7 @@ on:
2828
pnpm_version:
2929
required: false
3030
type: string
31-
default: "8"
32-
description: If using pnpm - which version to use
31+
description: If using pnpm - which version to use (defaults to the packageManager field in package.json)
3332
secrets:
3433
EXPO_TOKEN:
3534
description: The Expo token to use for publishing
@@ -51,15 +50,15 @@ jobs:
5150
# Steps represent a sequence of tasks that will be executed as part of the job
5251
steps:
5352
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
54-
- uses: actions/checkout@v3
53+
- uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
5554
id: checkout
5655

57-
- uses: pnpm/action-setup@v2
56+
- uses: pnpm/action-setup@0ebf47130e4866e96fce0953f49152a61190b271 # v6.0.9
5857
if: ${{ inputs.package_manager == 'pnpm' }}
5958
with:
6059
version: ${{ inputs.pnpm_version }}
6160

62-
- uses: actions/setup-node@v3
61+
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
6362
with:
6463
node-version-file: .nvmrc
6564
cache: ${{ inputs.package_manager }}
@@ -80,7 +79,7 @@ jobs:
8079
working-directory: ${{ inputs.working_directory }}
8180

8281
- name: Expo GitHub Action
83-
uses: expo/expo-github-action@v8
82+
uses: expo/expo-github-action@eab7a230208c952974db8c3245cfd78402c7b385 # 9.0.0
8483
id: expo-init
8584
with:
8685
# Your Expo username, for authentication.
@@ -92,7 +91,7 @@ jobs:
9291

9392
- name: Find Metro cache
9493
id: metro-cache-dir-path
95-
uses: actions/github-script@v4
94+
uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0
9695
with:
9796
result-encoding: string
9897
script: |
@@ -101,7 +100,7 @@ jobs:
101100
return path.join(os.tmpdir(), 'metro-cache');
102101
103102
- name: Restore Metro cache
104-
uses: actions/cache@v2
103+
uses: actions/cache@2c8a9bd7457de244a408f35966fab2fb45fda9c8 # v6.0.0
105104
with:
106105
path: ${{ steps.metro-cache-dir-path.outputs.result }}
107106
key: ${{ runner.os }}-metro-cache-${{ matrix.app }}-${{ github.ref }}

0 commit comments

Comments
 (0)