chore: bump chainsaw (#137)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

.github/dependabot.yml

@@ -1,14 +1,14 @@
 version: 2
 updates:
-- package-ecosystem: gomod
-  directory: /
-  schedule:
-    interval: daily
-  labels:
-  - bot
-- package-ecosystem: github-actions
-  directory: /
-  schedule:
-    interval: daily
-  labels:
-  - bot
+  - package-ecosystem: gomod
+    directory: /
+    schedule:
+      interval: daily
+    labels:
+      - bot
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: daily
+    labels:
+      - bot

.github/workflows/check-actions.yaml

@@ -7,10 +7,10 @@ permissions: {}
 on:
   pull_request:
     branches:
-    - main
+      - main
   push:
     branches:
-    - main
+      - main
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
@@ -20,12 +20,12 @@ jobs:
   check-actions:
     runs-on: ubuntu-latest
     steps:
-    - name: Checkout
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-    - name: Ensure SHA pinned actions
-      uses: zgosalvez/github-actions-ensure-sha-pinned-actions@ed00f72a3ca5b6eff8ad4d3ffdcacedb67a21db1 # v3.0.15
-      with:
-        # slsa-github-generator requires using a semver tag for reusable workflows. 
-        # See: https://github.com/slsa-framework/slsa-github-generator#referencing-slsa-builders-and-generators
-        allowlist: |
-          slsa-framework/slsa-github-generator
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Ensure SHA pinned actions
+        uses: zgosalvez/github-actions-ensure-sha-pinned-actions@ed00f72a3ca5b6eff8ad4d3ffdcacedb67a21db1 # v3.0.15
+        with:
+          # slsa-github-generator requires using a semver tag for reusable workflows.
+          # See: https://github.com/slsa-framework/slsa-github-generator#referencing-slsa-builders-and-generators
+          allowlist: |
+            slsa-framework/slsa-github-generator

.github/workflows/codeql.yaml

@@ -7,10 +7,10 @@ permissions: {}
 on:
   pull_request:
     branches:
-    - main
+      - main
   push:
     branches:
-    - main
+      - main
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
@@ -35,10 +35,10 @@ jobs:
           output: trivy-results.sarif
           severity: CRITICAL,HIGH,MEDIUM
           scanners: vuln,secret
-          exit-code: '0'
+          exit-code: "0"
           vuln-type: os,library
         env:
-          TRIVY_DB_REPOSITORY: 'public.ecr.aws/aquasecurity/trivy-db:2'
+          TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db:2"
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
         with:

.github/workflows/docs-main.yaml

@@ -7,7 +7,7 @@ permissions: {}
 on:
   push:
     branches:
-    - main
+      - main
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
@@ -19,16 +19,16 @@ jobs:
     permissions:
       contents: write
     steps:
-    - name: Checkout
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-    - name: Build site
-      run: |
-        set -e
-        make codegen-mkdocs
-    - name: Deploy site
-      run: |
-        set -e
-        git fetch origin gh-pages --depth=1
-        git config user.name ci-bot
-        git config user.email ci-bot@example.com
-        mike deploy -F ./website/mkdocs.yaml --push --update-aliases main dev
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Build site
+        run: |
+          set -e
+          make codegen-mkdocs
+      - name: Deploy site
+        run: |
+          set -e
+          git fetch origin gh-pages --depth=1
+          git config user.name ci-bot
+          git config user.email ci-bot@example.com
+          mike deploy -F ./website/mkdocs.yaml --push --update-aliases main dev

.github/workflows/docs-release.yaml

@@ -7,33 +7,33 @@ permissions: {}
 on:
   push:
     tags:
-    - 'docs-v*'
+      - docs-v*
 
 jobs:
   docs:
     runs-on: ubuntu-latest
     permissions:
       contents: write
     steps:
-    - name: Parse semver string
-      id: semver 
-      uses: booxmedialtd/ws-action-parse-semver@7784200024d6b3fc01253e617ec0168daf603de3 # v1.4.7
-      with:
-        input_string: ${{ github.ref_name }}
-        version_extractor_regex: '^docs-v(.*)$'
-    - name: Checkout
-      if: ${{ steps.semver.outputs.prerelease == '' }}
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-    - name: Build site
-      if: ${{ steps.semver.outputs.prerelease == '' }}
-      run: |
-        set -e
-        make codegen-mkdocs
-    - name: Deploy site
-      if: ${{ steps.semver.outputs.prerelease == '' }}
-      run: |
-        set -e
-        git fetch origin gh-pages --depth=1
-        git config user.name ci-bot
-        git config user.email ci-bot@example.com
-        mike deploy -F ./website/mkdocs.yaml --push --update-aliases ${{ steps.semver.outputs.fullversion }} latest
+      - name: Parse semver string
+        id: semver
+        uses: booxmedialtd/ws-action-parse-semver@7784200024d6b3fc01253e617ec0168daf603de3 # v1.4.7
+        with:
+          input_string: ${{ github.ref_name }}
+          version_extractor_regex: ^docs-v(.*)$
+      - name: Checkout
+        if: ${{ steps.semver.outputs.prerelease == '' }}
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Build site
+        if: ${{ steps.semver.outputs.prerelease == '' }}
+        run: |
+          set -e
+          make codegen-mkdocs
+      - name: Deploy site
+        if: ${{ steps.semver.outputs.prerelease == '' }}
+        run: |
+          set -e
+          git fetch origin gh-pages --depth=1
+          git config user.name ci-bot
+          git config user.email ci-bot@example.com
+          mike deploy -F ./website/mkdocs.yaml --push --update-aliases ${{ steps.semver.outputs.fullversion }} latest

.github/workflows/ko-publish.yaml

@@ -7,7 +7,7 @@ permissions: {}
 on:
   push:
     branches:
-    - main
+      - main
 
 jobs:
   ko-publish:
@@ -16,17 +16,17 @@ jobs:
       packages: write
     runs-on: ubuntu-latest
     steps:
-    - name: Checkout
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-    - name: Setup Go
-      uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
-      with:
-        go-version-file: go.mod
-        cache-dependency-path: go.sum
-    - name: Run ko
-      run: |
-        set -e
-        REGISTRY=ghcr.io \
-        REGISTRY_USERNAME=${{ github.actor }} \
-        REGISTRY_PASSWORD=${{ secrets.GITHUB_TOKEN }} \
-        make publish-ko
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Setup Go
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        with:
+          go-version-file: go.mod
+          cache-dependency-path: go.sum
+      - name: Run ko
+        run: |
+          set -e
+          REGISTRY=ghcr.io \
+          REGISTRY_USERNAME=${{ github.actor }} \
+          REGISTRY_PASSWORD=${{ secrets.GITHUB_TOKEN }} \
+          make publish-ko

.github/workflows/lint.yaml

@@ -7,10 +7,10 @@ permissions: {}
 on:
   pull_request:
     branches:
-    - main
+      - main
   push:
     branches:
-    - main
+      - main
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.ref }}
@@ -20,15 +20,15 @@ jobs:
   required:
     runs-on: ubuntu-latest
     steps:
-    - name: Checkout
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-    - name: Setup Go
-      uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
-      with:
-        go-version-file: go.mod
-        cache-dependency-path: go.sum
-    - name: golangci-lint
-      uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v3.7.1
-      with:
-        skip-cache: true
-        args: --timeout 5m
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Setup Go
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        with:
+          go-version-file: go.mod
+          cache-dependency-path: go.sum
+      - name: golangci-lint
+        uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v3.7.1
+        with:
+          skip-cache: true
+          args: --timeout 5m

.github/workflows/semantics-pr.yaml

@@ -23,9 +23,9 @@ name: Semantic PR Validation
 on:
   pull_request_target:
     types:
-    - opened
-    - edited
-    - synchronize
+      - opened
+      - edited
+      - synchronize
 
 defaults:
   run:
@@ -35,59 +35,59 @@ jobs:
   semantics-pr:
     runs-on: ubuntu-latest
     steps:
-    - name: Validate Pull Request
-      uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-      with:
-        # Configure which types are allowed.
-        # Default: https://github.com/commitizen/conventional-commit-types
-        types: |
-          feat
-          fix
-          build
-          chore
-          ci
-          docs
-          perf
-          refactor
-          revert
-          style
-          test
-          revert
-          release
-        # Configure which scopes are allowed.
-        scopes: |
-          api
-          client
-          commands
-          config
-          data
-          deps
-          discovery
-          internal
-          report
-          resource
-          runner
-          operations
-          processors
-          test
-          utils
-          validation
-          version
-          docs
-          release
-          testdata
-        ignoreLabels: |
-          bot
-          ignore-semantic-pull-request
-        # Configure that a scope must always be provided.
-        requireScope: false
-        # When using "Squash and merge" on a PR with only one commit, GitHub
-        # will suggest using that commit message instead of the PR title for the
-        # merge commit, and it's easy to commit this by mistake. Enable this option
-        # to also validate the commit message for one commit PRs.
-        validateSingleCommit: true
-        # Related to `validateSingleCommit` you can opt-in to validate that the PR
-        # title matches a single commit to avoid confusion.
-        validateSingleCommitMatchesPrTitle: true
+      - name: Validate Pull Request
+        uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          # Configure which types are allowed.
+          # Default: https://github.com/commitizen/conventional-commit-types
+          types: |
+            feat
+            fix
+            build
+            chore
+            ci
+            docs
+            perf
+            refactor
+            revert
+            style
+            test
+            revert
+            release
+          # Configure which scopes are allowed.
+          scopes: |
+            api
+            client
+            commands
+            config
+            data
+            deps
+            discovery
+            internal
+            report
+            resource
+            runner
+            operations
+            processors
+            test
+            utils
+            validation
+            version
+            docs
+            release
+            testdata
+          ignoreLabels: |
+            bot
+            ignore-semantic-pull-request
+          # Configure that a scope must always be provided.
+          requireScope: false
+          # When using "Squash and merge" on a PR with only one commit, GitHub
+          # will suggest using that commit message instead of the PR title for the
+          # merge commit, and it's easy to commit this by mistake. Enable this option
+          # to also validate the commit message for one commit PRs.
+          validateSingleCommit: true
+          # Related to `validateSingleCommit` you can opt-in to validate that the PR
+          # title matches a single commit to avoid confusion.
+          validateSingleCommitMatchesPrTitle: true