Skip to content

Commit 572438b

Browse files
renovate[bot]renovate[bot]
authored
Update github actions
1 parent 86fc231 commit 572438b

11 files changed

Lines changed: 30 additions & 30 deletions

.github/workflows/build-pull-request.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -17,17 +17,17 @@ jobs:
1717
name: Build
1818
runs-on: ubuntu-latest
1919
steps:
20-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
20+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2121

2222
- id: setup-java-17
2323
name: Setup Java 17
24-
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
24+
uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5.2.0
2525
with:
2626
distribution: temurin
2727
java-version: 17
2828

2929
- name: Set up gradle
30-
uses: gradle/actions/setup-gradle@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5.0.0
30+
uses: gradle/actions/setup-gradle@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2
3131

3232
- name: Build
3333
run: ./gradlew build

.github/workflows/build.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -15,16 +15,16 @@ jobs:
1515
# skipping release branches because the versions in those branches are not snapshots
1616
if: github.ref_name == 'main' && github.repository == 'open-telemetry/opentelemetry-proto-java'
1717
steps:
18-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
18+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
1919

2020
- name: Set up JDK for running Gradle
21-
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
21+
uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5.2.0
2222
with:
2323
distribution: temurin
2424
java-version: 17
2525

2626
- name: Set up gradle
27-
uses: gradle/actions/setup-gradle@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5.0.0
27+
uses: gradle/actions/setup-gradle@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2
2828

2929
- name: Build and publish snapshots
3030
run: ./gradlew assemble publishToSonatype

.github/workflows/codeql.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -27,24 +27,24 @@ jobs:
2727
- language: java
2828
runs-on: ubuntu-latest
2929
steps:
30-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
30+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
3131
with:
3232
# the nebula plugin used in this repo needs the tags
3333
fetch-depth: 0
3434

3535
- name: Set up Java 17
3636
if: matrix.language == 'java'
37-
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
37+
uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5.2.0
3838
with:
3939
distribution: temurin
4040
java-version: 17
4141

4242
- name: Set up gradle
4343
if: matrix.language == 'java'
44-
uses: gradle/actions/setup-gradle@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5.0.0
44+
uses: gradle/actions/setup-gradle@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2
4545

4646
- name: Initialize CodeQL
47-
uses: github/codeql-action/init@16140ae1a102900babc80a33c44059580f687047 # v4.30.9
47+
uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
4848
with:
4949
languages: ${{ matrix.language }}
5050
# using "linked" helps to keep up with the latest Kotlin support
@@ -59,6 +59,6 @@ jobs:
5959
run: ./gradlew assemble --no-build-cache --no-daemon
6060

6161
- name: Perform CodeQL analysis
62-
uses: github/codeql-action/analyze@16140ae1a102900babc80a33c44059580f687047 # v4.30.9
62+
uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
6363
with:
6464
category: "/language:${{matrix.language}}"

.github/workflows/fossa.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -12,9 +12,9 @@ jobs:
1212
fossa:
1313
runs-on: ubuntu-latest
1414
steps:
15-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
15+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
1616

17-
- uses: fossas/fossa-action@3ebcea1862c6ffbd5cf1b4d0bd6b3fe7bd6f2cac # v1.7.0
17+
- uses: fossas/fossa-action@c414b9ad82eaad041e47a7cf62a4f02411f427a0 # v1.8.0
1818
with:
1919
api-key: ${{secrets.FOSSA_API_KEY}}
2020
team: OpenTelemetry

.github/workflows/gradle-wrapper-validation.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,6 +11,6 @@ jobs:
1111
gradle-wrapper-validation:
1212
runs-on: ubuntu-latest
1313
steps:
14-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
14+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
1515

16-
- uses: gradle/actions/wrapper-validation@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5.0.0
16+
- uses: gradle/actions/wrapper-validation@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2

.github/workflows/issue-management-feedback-label.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
github.event.comment.user.login == github.event.issue.user.login
1919
runs-on: ubuntu-latest
2020
steps:
21-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
21+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2222

2323
- name: Remove labels
2424
env:

.github/workflows/issue-management-stale-action.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
# Action #1: Handle issues/PRs awaiting author feedback
2121
# - After 7 days inactive: Adds "stale" label + warning comment
2222
# - After 7 more days inactive: Closes
23-
- uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10.1.0
23+
- uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
2424
with:
2525
only-labels: "needs author feedback"
2626
days-before-stale: 7
@@ -38,7 +38,7 @@ jobs:
3838
# - Targets: Issues with "enhancement" label (but NOT "needs author feedback")
3939
# - After 365 days inactive: Adds "stale" label + closes immediately (no warning period)
4040
# - Skips: Issues with "needs author feedback" to avoid conflicts with Action #1
41-
- uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10.1.0
41+
- uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
4242
with:
4343
only-labels: "enhancement"
4444
# Skip issues that need author feedback (handled by the first action with 7+7 day policy)
@@ -55,7 +55,7 @@ jobs:
5555
# Action #3: Handle stale PRs
5656
# - After 180 days inactive: Adds "stale" label + warning comment
5757
# - After 14 more days inactive: Closes
58-
- uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10.1.0
58+
- uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
5959
with:
6060
days-before-issue-stale: -1
6161
days-before-issue-close: -1

.github/workflows/ossf-scorecard.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@ jobs:
1919
# Needed for GitHub OIDC token if publish_results is true
2020
id-token: write
2121
steps:
22-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
22+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2323
with:
2424
persist-credentials: false
2525

@@ -42,6 +42,6 @@ jobs:
4242
# Upload the results to GitHub's code scanning dashboard (optional).
4343
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
4444
- name: "Upload to code-scanning"
45-
uses: github/codeql-action/upload-sarif@16140ae1a102900babc80a33c44059580f687047 # v4.30.9
45+
uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
4646
with:
4747
sarif_file: results.sarif

.github/workflows/prepare-release-branch.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ jobs:
99
prereqs:
1010
runs-on: ubuntu-latest
1111
steps:
12-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
12+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
1313

1414
- name: Verify prerequisites
1515
run: |
@@ -25,7 +25,7 @@ jobs:
2525
needs:
2626
- prereqs
2727
steps:
28-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
28+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2929

3030
- name: Create release branch
3131
run: |
@@ -53,7 +53,7 @@ jobs:
5353
- name: Use CLA approved bot
5454
run: .github/scripts/use-cla-approved-bot.sh
5555

56-
- uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
56+
- uses: actions/create-github-app-token@fee1f7d63c2ff003460e3d139729b119787bc349 # v2.2.2
5757
id: otelbot-token
5858
with:
5959
app-id: ${{ vars.OTELBOT_APP_ID }}

.github/workflows/release-build.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -17,20 +17,20 @@ jobs:
1717
name: Build
1818
runs-on: ubuntu-latest
1919
steps:
20-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
20+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2121
with:
2222
# the nebula plugin used in this repo needs the tags
2323
fetch-depth: 0
2424

2525
- id: setup-java-17
2626
name: Setup Java 17
27-
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
27+
uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5.2.0
2828
with:
2929
distribution: temurin
3030
java-version: 17
3131

3232
- name: Set up gradle
33-
uses: gradle/actions/setup-gradle@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5.0.0
33+
uses: gradle/actions/setup-gradle@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2
3434

3535
- name: Build
3636
run: >

0 commit comments

Comments
 (0)