Skip to content

Commit e155f15

Browse files
ci(deps): bump the github-actions-minor-patch group with 2 updates (#38)
Bumps the github-actions-minor-patch group with 2 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact) and [softprops/action-gh-release](https://github.com/softprops/action-gh-release). Updates `actions/upload-artifact` from 7.0.0 to 7.0.1 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@bbbca2d...043fb46) Updates `softprops/action-gh-release` from 2.6.1 to 2.6.2 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@153bb8e...3bb1273) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-minor-patch - dependency-name: softprops/action-gh-release dependency-version: 2.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 9cb1e67 commit e155f15

3 files changed

Lines changed: 8 additions & 8 deletions

File tree

.github/workflows/build.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ jobs:
3434
go tool cover -func=coverage.out
3535
3636
- name: Upload Coverage Report
37-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
37+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
3838
with:
3939
name: coverage-report
4040
path: coverage.out

.github/workflows/generate-and-scan-sbom.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -70,7 +70,7 @@ jobs:
7070
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
7171

7272
- name: Upload SBOM Artifacts
73-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
73+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
7474
with:
7575
name: unsigned-sbom
7676
path: sbom-validator.${{ needs.setup.outputs.sanitized_branch_name }}.cdx.json
@@ -111,7 +111,7 @@ jobs:
111111
secure_sbom_signing_key_id: ${{ vars.SECURE_SBOM_SIGNING_KEY_ID }}
112112

113113
- name: Upload Signed SBOM
114-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
114+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
115115
with:
116116
name: signed-sbom
117117
path: sbom-validator.${{ needs.setup.outputs.sanitized_branch_name }}.cdx.signed.json
@@ -145,7 +145,7 @@ jobs:
145145
--format json --output osv-scan-report.json || true
146146
147147
- name: Upload OSV Report
148-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
148+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
149149
with:
150150
name: osv-scan-report
151151
path: osv-scan-report.json

.github/workflows/release.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -63,7 +63,7 @@ jobs:
6363
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
6464

6565
- name: Upload SBOM Artifacts
66-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
66+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
6767
with:
6868
name: unsigned-sbom
6969
path: sbom-validator.${{ github.ref_name }}.cdx.json
@@ -105,14 +105,14 @@ jobs:
105105
secure_sbom_signing_key_id: ${{ vars.SECURE_SBOM_SIGNING_KEY_ID }}
106106

107107
- name: Upload Signed SBOM
108-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
108+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
109109
with:
110110
name: signed-sbom
111111
path: sbom-validator.${{ github.ref_name }}.cdx.signed.json
112112
retention-days: 7
113113

114114
- name: Upload Signed SBOM to Release
115-
uses: softprops/action-gh-release@153bb8e04406b158c6c84fc1615b65b24149a1fe # v2.6.1
115+
uses: softprops/action-gh-release@3bb12739c298aeb8a4eeaf626c5b8d85266b0e65 # v2.6.2
116116
with:
117117
files: sbom-validator.${{ github.ref_name }}.cdx.signed.json
118118

@@ -140,7 +140,7 @@ jobs:
140140
--format json --output osv-scan-report.json || true
141141
142142
- name: Upload OSV Report
143-
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
143+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
144144
with:
145145
name: osv-scan-report
146146
path: osv-scan-report.json

0 commit comments

Comments
 (0)