From ec7f37c72f93c500a5c328abc11fed9e3f5669b6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 22 Jan 2025 16:13:57 +0000 Subject: [PATCH] Bump the github-actions group with 6 updates Bumps the github-actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [gaurav-nelson/github-action-markdown-link-check](https://github.com/gaurav-nelson/github-action-markdown-link-check) | `1.0.15` | `1.0.16` | | [anchore/scan-action](https://github.com/anchore/scan-action) | `5.3.0` | `6.0.0` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.27.5` | `3.28.2` | | [actions/stale](https://github.com/actions/stale) | `f69122271d990fd11f5594ccff2296f00ff59b49` | `5bef64f19d7facfb25b37b414482c7164d639639` | | [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `3.2.0` | `3.3.0` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.7.1` | `3.8.0` | Updates `gaurav-nelson/github-action-markdown-link-check` from 1.0.15 to 1.0.16 - [Release notes](https://github.com/gaurav-nelson/github-action-markdown-link-check/releases) - [Commits](https://github.com/gaurav-nelson/github-action-markdown-link-check/compare/d53a906aa6b22b8979d33bc86170567e619495ec...1b916f2cf6c36510a6059943104e3c42ce6c16bc) Updates `anchore/scan-action` from 5.3.0 to 6.0.0 - [Release notes](https://github.com/anchore/scan-action/releases) - [Changelog](https://github.com/anchore/scan-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/scan-action/compare/869c549e657a088dc0441b08ce4fc0ecdac2bb65...abae793926ec39a78ab18002bc7fc45bbbd94342) Updates `github/codeql-action` from 3.27.5 to 3.28.2 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/f09c1c0a94de965c15400f5634aa42fac8fb8f88...d68b2d4edb4189fd2a5366ac14e72027bd4b37dd) Updates `actions/stale` from f69122271d990fd11f5594ccff2296f00ff59b49 to 5bef64f19d7facfb25b37b414482c7164d639639 - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/stale/compare/f69122271d990fd11f5594ccff2296f00ff59b49...5bef64f19d7facfb25b37b414482c7164d639639) Updates `docker/setup-qemu-action` from 3.2.0 to 3.3.0 - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/49b3bc8e6bdd4a60e6116a5414239cba5943d3cf...53851d14592bedcffcf25ea515637cff71ef929a) Updates `docker/setup-buildx-action` from 3.7.1 to 3.8.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/c47758b77c9736f4b2ef4073d4d51994fabfe349...6524bf65af31da8d45b59e8c27de4bd072b392f5) --- updated-dependencies: - dependency-name: gaurav-nelson/github-action-markdown-link-check dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: anchore/scan-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/stale dependency-type: direct:production dependency-group: github-actions - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/linting.yml | 6 +++--- .github/workflows/periodic.yml | 2 +- .github/workflows/report.yml | 4 ++-- .github/workflows/stale.yml | 2 +- .github/workflows/testing.yml | 4 ++-- 5 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/linting.yml b/.github/workflows/linting.yml index 74bd0fbd..092eb1fd 100644 --- a/.github/workflows/linting.yml +++ b/.github/workflows/linting.yml @@ -72,7 +72,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Run markdown-link-check - uses: gaurav-nelson/github-action-markdown-link-check@d53a906aa6b22b8979d33bc86170567e619495ec + uses: gaurav-nelson/github-action-markdown-link-check@1b916f2cf6c36510a6059943104e3c42ce6c16bc with: config-file: ".markdownlinkcheck.json" check-modified-files-only: "yes" @@ -112,7 +112,7 @@ jobs: - name: Check out the repository uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Run Anchore vulnerability scanner - uses: anchore/scan-action@869c549e657a088dc0441b08ce4fc0ecdac2bb65 + uses: anchore/scan-action@abae793926ec39a78ab18002bc7fc45bbbd94342 id: scan with: path: "." @@ -123,7 +123,7 @@ jobs: run: cat ${{ steps.scan.outputs.sarif }} - name: Upload Anchore scan SARIF report if: always() - uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 + uses: github/codeql-action/upload-sarif@d68b2d4edb4189fd2a5366ac14e72027bd4b37dd with: sarif_file: ${{ steps.scan.outputs.sarif }} diff --git a/.github/workflows/periodic.yml b/.github/workflows/periodic.yml index 1d00517b..8e6d9386 100644 --- a/.github/workflows/periodic.yml +++ b/.github/workflows/periodic.yml @@ -19,7 +19,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Run markdown-link-check - uses: gaurav-nelson/github-action-markdown-link-check@d53a906aa6b22b8979d33bc86170567e619495ec + uses: gaurav-nelson/github-action-markdown-link-check@1b916f2cf6c36510a6059943104e3c42ce6c16bc with: config-file: ".markdownlinkcheck.json" diff --git a/.github/workflows/report.yml b/.github/workflows/report.yml index 6983b7b3..205c76fa 100644 --- a/.github/workflows/report.yml +++ b/.github/workflows/report.yml @@ -20,7 +20,7 @@ jobs: - name: Check out the repository uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Run Anchore vulnerability scanner - uses: anchore/scan-action@869c549e657a088dc0441b08ce4fc0ecdac2bb65 + uses: anchore/scan-action@abae793926ec39a78ab18002bc7fc45bbbd94342 id: scan with: path: "." @@ -28,6 +28,6 @@ jobs: - name: Show Anchore scan SARIF report run: cat ${{ steps.scan.outputs.sarif }} - name: Upload Anchore scan SARIF report - uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 + uses: github/codeql-action/upload-sarif@d68b2d4edb4189fd2a5366ac14e72027bd4b37dd with: sarif_file: ${{ steps.scan.outputs.sarif }} diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 4fd6ef8e..59f5d1f9 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -16,7 +16,7 @@ jobs: issues: write pull-requests: write steps: - - uses: actions/stale@f69122271d990fd11f5594ccff2296f00ff59b49 + - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 with: days-before-issue-stale: 120 days-before-pr-stale: 14 diff --git a/.github/workflows/testing.yml b/.github/workflows/testing.yml index e30ff172..f32d9364 100644 --- a/.github/workflows/testing.yml +++ b/.github/workflows/testing.yml @@ -18,10 +18,10 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Set up QEMU (to support building on non-native architectures) - uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf + uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a - name: Set up buildx - uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 + uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 - name: Restore images from the cache uses: ./gh-actions/restore-images