diff --git a/.github/workflows/backport.yaml b/.github/workflows/backport.yaml index fe5aa0781664..dfe17faa58ec 100644 --- a/.github/workflows/backport.yaml +++ b/.github/workflows/backport.yaml @@ -17,7 +17,7 @@ jobs: ) steps: - name: Backport Action - uses: sqren/backport-github-action@v9.2.2 + uses: sqren/backport-github-action@v9.5.1 with: github_token: ${{ secrets.GITHUB_TOKEN }} auto_backport_label_prefix: backport- diff --git a/.github/workflows/pr-dependabot.yaml b/.github/workflows/pr-dependabot.yaml index 6a33ffbba95f..f4d7737ec879 100644 --- a/.github/workflows/pr-dependabot.yaml +++ b/.github/workflows/pr-dependabot.yaml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code into the Go module directory - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 - name: Calculate go version id: vars run: echo "go_version=$(make go-version)" >> $GITHUB_OUTPUT @@ -27,7 +27,7 @@ jobs: uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # tag=v5.0.2 with: go-version: ${{ steps.vars.outputs.go_version }} - - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # tag=v4.0.2 + - uses: actions/cache@3624ceb22c1c5a301c8db4169662070a689d9ea8 # tag=v4.1.1 name: Restore go cache with: path: | diff --git a/.github/workflows/pr-golangci-lint.yaml b/.github/workflows/pr-golangci-lint.yaml index 9fb188962ff6..ab18c9891d15 100644 --- a/.github/workflows/pr-golangci-lint.yaml +++ b/.github/workflows/pr-golangci-lint.yaml @@ -19,7 +19,7 @@ jobs: - test - hack/tools steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 - name: Calculate go version id: vars run: echo "go_version=$(make go-version)" >> $GITHUB_OUTPUT @@ -28,7 +28,7 @@ jobs: with: go-version: ${{ steps.vars.outputs.go_version }} - name: golangci-lint - uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86 # tag=v6.1.0 + uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # tag=v6.1.1 with: version: v1.59.0 args: --out-format=colored-line-number diff --git a/.github/workflows/pr-md-link-check.yaml b/.github/workflows/pr-md-link-check.yaml index 98c1d50be883..f3d4fa1a970a 100644 --- a/.github/workflows/pr-md-link-check.yaml +++ b/.github/workflows/pr-md-link-check.yaml @@ -14,7 +14,7 @@ jobs: name: Broken Links runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # tag=v1 with: use-quiet-mode: 'yes' diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index a1ce6d2a8ff1..f39e7b26a671 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -17,12 +17,12 @@ jobs: release_tag: ${{ steps.release-version.outputs.release_version }} steps: - name: Checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 with: fetch-depth: 0 - name: Get changed files id: changed-files - uses: tj-actions/changed-files@c65cd883420fd2eb864698a825fc4162dd94482c # tag=v44.5.7 + uses: tj-actions/changed-files@c3a1bb2c992d77180ae65be6ae6c166cf40f857c # tag=v45.0.3 - name: Get release version id: release-version run: | @@ -87,7 +87,7 @@ jobs: env: RELEASE_TAG: ${{needs.push_release_tags.outputs.release_tag}} - name: checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 with: fetch-depth: 0 ref: ${{ env.RELEASE_TAG }} diff --git a/.github/workflows/spectro-dev-build.yaml b/.github/workflows/spectro-dev-build.yaml index 3257f8e213d6..b2bd76d3beb0 100644 --- a/.github/workflows/spectro-dev-build.yaml +++ b/.github/workflows/spectro-dev-build.yaml @@ -17,13 +17,13 @@ jobs: SPECTRO_VERSION: ${{ github.event.inputs.release_version }} steps: - - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to private registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ${{ secrets.REGISTRY_URL }} username: ${{ secrets.REGISTRY_USERNAME }} diff --git a/.github/workflows/spectro-release.yaml b/.github/workflows/spectro-release.yaml index bcad3de12077..09ec5d030e99 100644 --- a/.github/workflows/spectro-release.yaml +++ b/.github/workflows/spectro-release.yaml @@ -17,7 +17,7 @@ jobs: SPECTRO_VERSION: ${{ github.event.inputs.release_version }} steps: - - uses: mukunku/tag-exists-action@v1.2.0 + uses: mukunku/tag-exists-action@v1.6.0 id: checkTag with: tag: spectro-v${{ github.event.inputs.release_version }} @@ -27,13 +27,13 @@ jobs: echo "Tag already exists for spectro-v${{ github.event.inputs.release_version }}..." exit 1 - - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to private registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ${{ secrets.REGISTRY_URL }} username: ${{ secrets.REGISTRY_USERNAME }} diff --git a/.github/workflows/weekly-md-link-check.yaml b/.github/workflows/weekly-md-link-check.yaml index 56887047ae36..825a5a37ca4e 100644 --- a/.github/workflows/weekly-md-link-check.yaml +++ b/.github/workflows/weekly-md-link-check.yaml @@ -17,7 +17,7 @@ jobs: branch: [ main, release-1.8, release-1.7 ] runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 with: ref: ${{ matrix.branch }} - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # tag=v1 diff --git a/.github/workflows/weekly-security-scan.yaml b/.github/workflows/weekly-security-scan.yaml index 846a5020bb65..ec8b8890a47c 100644 --- a/.github/workflows/weekly-security-scan.yaml +++ b/.github/workflows/weekly-security-scan.yaml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 with: ref: ${{ matrix.branch }} - name: Calculate go version diff --git a/.github/workflows/weekly-test-release.yaml b/.github/workflows/weekly-test-release.yaml index 0723d738054e..7467aea64764 100644 --- a/.github/workflows/weekly-test-release.yaml +++ b/.github/workflows/weekly-test-release.yaml @@ -20,7 +20,7 @@ jobs: branch: [ main, release-1.8, release-1.7 ] runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # tag=v4.2.1 with: ref: ${{ matrix.branch }} fetch-depth: 0