From 76e1ab92f645423aad14af1f9f8a68427bd9497f Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 11 Nov 2025 04:30:06 +0000 Subject: [PATCH] deps: update github actions Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .../deploy-keptn-on-cluster/action.yml | 4 ++-- .github/workflows/CI.yaml | 18 ++++++++--------- .github/workflows/component-test.yml | 6 +++--- .github/workflows/e2e-test.yml | 4 ++-- .github/workflows/golangci-lint.yml | 6 +++--- .github/workflows/htmltest.yaml | 2 +- .../workflows/integration-test-component.yml | 4 ++-- .github/workflows/integration-test.yml | 4 ++-- .github/workflows/load-test.yml | 6 +++--- .github/workflows/markdown-checks.yaml | 8 ++++---- .github/workflows/release-examples.yml | 4 ++-- .github/workflows/release.yml | 10 +++++----- .github/workflows/scorecard.yml | 6 +++--- .github/workflows/security-scans.yml | 20 +++++++++---------- .github/workflows/stale.yml | 6 +++--- .github/workflows/update-labels.yml | 2 +- .github/workflows/validate-helm-chart.yml | 8 ++++---- .github/workflows/validate-semantic-pr.yml | 2 +- .github/workflows/yaml-checks.yaml | 2 +- 19 files changed, 61 insertions(+), 61 deletions(-) diff --git a/.github/actions/deploy-keptn-on-cluster/action.yml b/.github/actions/deploy-keptn-on-cluster/action.yml index d5fd252411..b1f9739041 100644 --- a/.github/actions/deploy-keptn-on-cluster/action.yml +++ b/.github/actions/deploy-keptn-on-cluster/action.yml @@ -30,7 +30,7 @@ runs: using: "composite" steps: - name: Set up Go 1.x - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -38,7 +38,7 @@ runs: check-latest: true - name: Download artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4 + uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6 with: path: ~/download/artifacts diff --git a/.github/workflows/CI.yaml b/.github/workflows/CI.yaml index f27cea65cd..9a188f7add 100644 --- a/.github/workflows/CI.yaml +++ b/.github/workflows/CI.yaml @@ -42,7 +42,7 @@ jobs: steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Extract branch name id: extract_branch @@ -88,10 +88,10 @@ jobs: folder: "keptn-cert-manager/" steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Go 1.x - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -103,7 +103,7 @@ jobs: run: make unit-test - name: Report code coverage - uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238 # v4.6.0 + uses: codecov/codecov-action@5a1091511ad55cbe89839c7260b706298ca349f7 # v5.5.1 with: flags: ${{ matrix.config.name }} token: ${{ secrets.CODECOV_TOKEN }} @@ -135,7 +135,7 @@ jobs: folder: "keptn-cert-manager/" steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Cache build tools id: cache-build-tools @@ -168,7 +168,7 @@ jobs: outputs: type=oci,dest=/tmp/${{ matrix.config.name }}-image.tar - name: Upload image as artifact - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: ${{ matrix.config.name }}-image.tar path: /tmp/${{ matrix.config.name }}-image.tar @@ -184,7 +184,7 @@ jobs: run: echo "" > tag - name: Upload tag for tests - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: dev-${{ env.DATETIME }} path: tag @@ -281,10 +281,10 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out keptn repo - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Check out helm-charts repo - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: repository: 'keptn/lifecycle-toolkit-charts' path: ./helm-charts-repository diff --git a/.github/workflows/component-test.yml b/.github/workflows/component-test.yml index 02a68b41dd..d7980d69ec 100644 --- a/.github/workflows/component-test.yml +++ b/.github/workflows/component-test.yml @@ -19,10 +19,10 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Go 1.x - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -34,7 +34,7 @@ jobs: run: make component-test - name: Report code coverage - uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238 # v4.6.0 + uses: codecov/codecov-action@5a1091511ad55cbe89839c7260b706298ca349f7 # v5.5.1 with: flags: component-tests token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/e2e-test.yml b/.github/workflows/e2e-test.yml index 88ba1316b9..846e4e5d94 100644 --- a/.github/workflows/e2e-test.yml +++ b/.github/workflows/e2e-test.yml @@ -27,7 +27,7 @@ jobs: folder: "lifecycle-operator/" steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Setup cluster uses: ./.github/actions/deploy-keptn-on-cluster @@ -45,7 +45,7 @@ jobs: - name: Upload ${{ matrix.config.name }} cluster logs if: always() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: logs-e2e-tests-${{ matrix.config.name }} path: .github/scripts/logs diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index a812c05dd6..55a1a42846 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -39,15 +39,15 @@ jobs: folder: "keptn-cert-manager/" steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} check-latest: true - name: golangci-lint - uses: golangci/golangci-lint-action@4696ba8babb6127d732c3c6dde519db15edab9ea # v6 + uses: golangci/golangci-lint-action@0a35821d5c230e903fcfe077583637dea1b27b47 # v9 with: working-directory: ${{ matrix.config.folder }} version: ${{ env.GOLANGCI_LINT_VERSION }} diff --git a/.github/workflows/htmltest.yaml b/.github/workflows/htmltest.yaml index 2eb53a6b2b..e1eed4b365 100644 --- a/.github/workflows/htmltest.yaml +++ b/.github/workflows/htmltest.yaml @@ -25,7 +25,7 @@ jobs: # Steps represent a sequence of tasks that will be executed as part of the job steps: # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: submodules: true fetch-depth: 0 diff --git a/.github/workflows/integration-test-component.yml b/.github/workflows/integration-test-component.yml index 849fcc581c..1a85f2a78c 100644 --- a/.github/workflows/integration-test-component.yml +++ b/.github/workflows/integration-test-component.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Setup cluster uses: ./.github/actions/deploy-keptn-on-cluster @@ -51,7 +51,7 @@ jobs: - name: Upload cluster logs if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: logs-integration-tests-${{ inputs.type }} path: .github/scripts/logs diff --git a/.github/workflows/integration-test.yml b/.github/workflows/integration-test.yml index df9a1c0181..d7d5c8272f 100644 --- a/.github/workflows/integration-test.yml +++ b/.github/workflows/integration-test.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Setup cluster uses: ./.github/actions/deploy-keptn-on-cluster @@ -52,7 +52,7 @@ jobs: - name: Upload cluster logs if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: logs-integration-tests-${{ inputs.cert-manager-io-enabled }} path: .github/scripts/logs diff --git a/.github/workflows/load-test.yml b/.github/workflows/load-test.yml index 40a8ec0983..83d336715b 100644 --- a/.github/workflows/load-test.yml +++ b/.github/workflows/load-test.yml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Cache build tools id: cache-build-tools @@ -57,7 +57,7 @@ jobs: - name: Upload results if: always() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: load-tests-results path: ./collected-metrics @@ -69,7 +69,7 @@ jobs: - name: Upload cluster logs if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: logs-load-tests path: .github/scripts/logs diff --git a/.github/workflows/markdown-checks.yaml b/.github/workflows/markdown-checks.yaml index 8a4801981f..cee2a369e8 100644 --- a/.github/workflows/markdown-checks.yaml +++ b/.github/workflows/markdown-checks.yaml @@ -32,7 +32,7 @@ jobs: markdown-link-check: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # v1 with: config-file: '.github/mlc_config.json' @@ -45,7 +45,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Run TOC generation run: | @@ -72,10 +72,10 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Go 1.x - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} check-latest: true diff --git a/.github/workflows/release-examples.yml b/.github/workflows/release-examples.yml index 4034040197..dbbce25f94 100644 --- a/.github/workflows/release-examples.yml +++ b/.github/workflows/release-examples.yml @@ -26,10 +26,10 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Checkout examples repo - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: repository: keptn-sandbox/lifecycle-toolkit-examples path: ${{ inputs.examples_dir }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3c1022ece2..88626a2a51 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -37,7 +37,7 @@ jobs: BUILD_TIME: ${{ steps.get_datetime.outputs.BUILD_TIME }} steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Extract branch name id: extract_branch @@ -77,7 +77,7 @@ jobs: - name: Create release matrix id: build-matrix - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7 + uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 env: CHANGED_ITEMS: ${{ steps.release.outputs.paths_released }} KEPTN_TAG: ${{ steps.release.outputs.tag_name }} @@ -146,7 +146,7 @@ jobs: DOCKER_BUILD_RECORD_UPLOAD: "false" steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: submodules: recursive @@ -162,7 +162,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Set up Cosign - uses: sigstore/cosign-installer@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a # v3.8.1 + uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad # v4.0.0 - name: Clean up image tag id: clean-image-tag @@ -234,7 +234,7 @@ jobs: ${{ env.IMAGE_NAME }}@${{ env.IMAGE_DIGEST }} - name: Upload verification log as artifact - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: cosign-attest-verification-log path: ./cosign-attest-output.json diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index faa9789782..83e1ab69a9 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -33,7 +33,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: persist-credentials: false @@ -60,7 +60,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: SARIF file path: results.sarif @@ -68,6 +68,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@6bb031afdd8eb862ea3fc1848194185e076637e5 # v3.28.11 + uses: github/codeql-action/upload-sarif@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2 with: sarif_file: results.sarif diff --git a/.github/workflows/security-scans.yml b/.github/workflows/security-scans.yml index 2c5ff8a343..0f203db92d 100644 --- a/.github/workflows/security-scans.yml +++ b/.github/workflows/security-scans.yml @@ -65,14 +65,14 @@ jobs: path: ./dist - name: Upload tag - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: tag path: | ./dist/dev-*/ - name: Upload images - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: images path: | @@ -99,21 +99,21 @@ jobs: steps: - name: Set up Go if: matrix.tool == 'kubeconform' - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: go-version: ${{ env.GO_VERSION }} check-latest: true cache: false - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-depth: 0 submodules: 'true' - name: Download tag id: download_manifests - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4 + uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6 with: name: tag path: tag @@ -157,7 +157,7 @@ jobs: - name: Upload KICS results if: always() && matrix.tool == 'kics' - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 with: name: kics-results path: results.json @@ -219,14 +219,14 @@ jobs: - "certificate-operator" steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-depth: 0 submodules: 'true' - name: Download images id: download_images - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4 + uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6 with: name: images path: images @@ -254,14 +254,14 @@ jobs: - "keptn-cert-manager" steps: - name: Set up Go 1.x - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6 with: cache-dependency-path: ${{ matrix.artifact }}/go.sum go-version: ${{ env.GO_VERSION }} check-latest: true - name: Checkout Code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Install govulncheck run: go install golang.org/x/vuln/cmd/govulncheck@latest diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 82b9fb9213..3b8bd8b944 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -13,7 +13,7 @@ jobs: stale: runs-on: ubuntu-latest steps: - - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9 + - uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10 with: days-before-stale: 60 days-before-close: 7 @@ -30,7 +30,7 @@ jobs: stale-good-first-issues: runs-on: ubuntu-latest steps: - - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9 + - uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10 with: days-before-stale: 21 stale-issue-message: | @@ -42,7 +42,7 @@ jobs: only-issue-labels: 'good first issue' stale-issue-label: 'update-requested' - - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9 + - uses: actions/stale@5f858e3efba33a5ca4407a664cc011ad407f2008 # v10 with: days-before-stale: 28 stale-issue-message: | diff --git a/.github/workflows/update-labels.yml b/.github/workflows/update-labels.yml index 9f0163dfd2..e2e3521bc8 100644 --- a/.github/workflows/update-labels.yml +++ b/.github/workflows/update-labels.yml @@ -14,6 +14,6 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Update Labels - uses: actions/labeler@8558fd74291d67161a8a78ce36a881fa63b766a9 # v5 + uses: actions/labeler@634933edcd8ababfe52f92936142cc22ac488b1b # v6 with: sync-labels: true diff --git a/.github/workflows/validate-helm-chart.yml b/.github/workflows/validate-helm-chart.yml index e5e083ad34..50b97fa17a 100644 --- a/.github/workflows/validate-helm-chart.yml +++ b/.github/workflows/validate-helm-chart.yml @@ -36,12 +36,12 @@ jobs: path: keptn-cert-manager/chart steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Node - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e # v4.3.0 + uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 with: - node-version: 16 + node-version: 24 - name: Install readme generator run: | @@ -73,7 +73,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Check out code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Check if Helm template is up to date run: make helm-test diff --git a/.github/workflows/validate-semantic-pr.yml b/.github/workflows/validate-semantic-pr.yml index 6591be0fdb..4366ceb82d 100644 --- a/.github/workflows/validate-semantic-pr.yml +++ b/.github/workflows/validate-semantic-pr.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Validate Pull Request - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5.5.3 + uses: amannn/action-semantic-pull-request@48f256284bd46cdaab1048c3721360e808335d50 # v6.1.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: diff --git a/.github/workflows/yaml-checks.yaml b/.github/workflows/yaml-checks.yaml index 501ac5d1a0..007d6a3fbd 100644 --- a/.github/workflows/yaml-checks.yaml +++ b/.github/workflows/yaml-checks.yaml @@ -27,7 +27,7 @@ jobs: yamllint: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Lint YAML files run: make yamllint