Skip to content

Commit 7fb025d

Browse files
ci(deps): bump the github-actions-minor-patch group across 1 directory with 4 updates (#42)
Bumps the github-actions-minor-patch group with 4 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action), [google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml](https://github.com/google/osv-scanner-action), [google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml](https://github.com/google/osv-scanner-action) and [relizaio/rearm-actions](https://github.com/relizaio/rearm-actions). Updates `github/codeql-action` from 3.35.2 to 3.35.4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@ce64ddc...7fd177f) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml` from 2.3.5 to 2.3.8 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@c518547...9a49870) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml` from 2.3.5 to 2.3.8 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@c518547...9a49870) Updates `relizaio/rearm-actions` from 1.3.1 to 1.4.0 - [Release notes](https://github.com/relizaio/rearm-actions/releases) - [Commits](relizaio/rearm-actions@3545b39...46f1e94) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 3.35.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-minor-patch - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml dependency-version: 2.3.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-minor-patch - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml dependency-version: 2.3.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-minor-patch - dependency-name: relizaio/rearm-actions dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent c68c444 commit 7fb025d

4 files changed

Lines changed: 9 additions & 9 deletions

File tree

.github/workflows/codeql-analysis.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -24,10 +24,10 @@ jobs:
2424
- name: Checkout Repository
2525
uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # tag=v4.3.1
2626
- name: Initialize CodeQL
27-
uses: github/codeql-action/init@ce64ddcb0d8d890d2df4a9d1c04ff297367dea2a # tag=v2.11.2
27+
uses: github/codeql-action/init@7fd177fa680c9881b53cdab4d346d32574c9f7f4 # tag=v2.11.2
2828
with:
2929
languages: "go"
3030
- name: Run Autobuild
31-
uses: github/codeql-action/autobuild@ce64ddcb0d8d890d2df4a9d1c04ff297367dea2a # tag=v2.11.2
31+
uses: github/codeql-action/autobuild@7fd177fa680c9881b53cdab4d346d32574c9f7f4 # tag=v2.11.2
3232
- name: Perform Analysis
33-
uses: github/codeql-action/analyze@ce64ddcb0d8d890d2df4a9d1c04ff297367dea2a # tag=v2.11.2
33+
uses: github/codeql-action/analyze@7fd177fa680c9881b53cdab4d346d32574c9f7f4 # tag=v2.11.2

.github/workflows/osv-scanner-pr.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,4 +13,4 @@ permissions:
1313

1414
jobs:
1515
scan-pr:
16-
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@c51854704019a247608d928f370c98740469d4b5" #v2.3.5
16+
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@9a498708959aeaef5ef730655706c5a1df1edbc2" #v2.3.8

.github/workflows/osv-scanner-schedule.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,4 +11,4 @@ permissions:
1111

1212
jobs:
1313
scan-scheduled:
14-
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@c51854704019a247608d928f370c98740469d4b5" #v2.3.5
14+
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@9a498708959aeaef5ef730655706c5a1df1edbc2" #v2.3.8

.github/workflows/rearm.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -63,15 +63,15 @@ jobs:
6363

6464
- id: setup-rearm
6565
name: setup-rearm
66-
uses: relizaio/rearm-actions/setup-cli@3545b39e587d69a2ca339e3c4fee2f0fd67dd18b # v1.3.1
66+
uses: relizaio/rearm-actions/setup-cli@46f1e94352761205d85e8a26d32dc0d618687b6d # v1.4.0
6767

6868
- name: Display rearm version
6969
shell: bash
7070
run: rearm version
7171

7272
- id: init
7373
name: Initialize ReARM Flow
74-
uses: relizaio/rearm-actions/initialize@3545b39e587d69a2ca339e3c4fee2f0fd67dd18b # v1.3.1
74+
uses: relizaio/rearm-actions/initialize@46f1e94352761205d85e8a26d32dc0d618687b6d # v1.4.0
7575
with:
7676
rearm_api_id: ${{ secrets.REARM_COMPONENT_API_ID }}
7777
rearm_api_key: ${{ secrets.REARM_COMPONENT_API_KEY }}
@@ -82,7 +82,7 @@ jobs:
8282

8383
- name: Generate and sign SBOMs
8484
id: sbom
85-
uses: relizaio/rearm-actions/sbom-sign-scan@3545b39e587d69a2ca339e3c4fee2f0fd67dd18b # v1.3.1
85+
uses: relizaio/rearm-actions/sbom-sign-scan@46f1e94352761205d85e8a26d32dc0d618687b6d # v1.4.0
8686
with:
8787
enable_sbom: true
8888
deliverable_type: FILE
@@ -100,7 +100,7 @@ jobs:
100100
echo "REARM_BUILD_LIFECYCLE=ASSEMBLED" >> $GITHUB_ENV
101101
102102
- name: Submit metadata to ReARM and Finalize
103-
uses: relizaio/rearm-actions/finalize@3545b39e587d69a2ca339e3c4fee2f0fd67dd18b # v1.3.1
103+
uses: relizaio/rearm-actions/finalize@46f1e94352761205d85e8a26d32dc0d618687b6d # v1.4.0
104104
with:
105105
rearm_api_id: ${{ secrets.REARM_COMPONENT_API_ID }}
106106
rearm_api_key: ${{ secrets.REARM_COMPONENT_API_KEY }}

0 commit comments

Comments
 (0)