From 07bbc00d01184b087273f62b41686d9d68a0d3fe Mon Sep 17 00:00:00 2001 From: "we-renovate[bot]" <162337394+we-renovate[bot]@users.noreply.github.com> Date: Thu, 26 Sep 2024 06:56:26 +0000 Subject: [PATCH] fix(deps): update all non-major dependencies --- .github/workflows/dockerfile.yml | 4 ++-- .github/workflows/gradle-library.yml | 6 +++--- .github/workflows/gradle-service.yml | 10 +++++----- .github/workflows/play-service.yml | 6 +++--- .github/workflows/sbt-library.yml | 4 ++-- .github/workflows/scan-images.yml | 4 ++-- 6 files changed, 17 insertions(+), 17 deletions(-) diff --git a/.github/workflows/dockerfile.yml b/.github/workflows/dockerfile.yml index 213d1a9..44b4813 100644 --- a/.github/workflows/dockerfile.yml +++ b/.github/workflows/dockerfile.yml @@ -30,7 +30,7 @@ jobs: run: runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - name: Docker meta id: meta @@ -56,7 +56,7 @@ jobs: labels: ${{ steps.meta.outputs.labels }} - name: Vulnerability check - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: image-ref: "${{ inputs.image }}:${{ inputs.tag }}" create-test-report: true diff --git a/.github/workflows/gradle-library.yml b/.github/workflows/gradle-library.yml index 0b98baf..e1548c4 100644 --- a/.github/workflows/gradle-library.yml +++ b/.github/workflows/gradle-library.yml @@ -99,7 +99,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: ref: ${{ inputs.checkout-ref }} submodules: ${{ inputs.submodules }} @@ -113,7 +113,7 @@ jobs: # Build, test and create Docker image # - - uses: actions/setup-java@2dfa2011c5b2a0f1489bf9e433881c92c1631f88 # v4.3.0 + - uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0 with: distribution: temurin java-version: ${{ inputs.java-version }} @@ -183,7 +183,7 @@ jobs: - name: Vulnerability scan if: ${{ !inputs.skip-scan }} - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: junit-test-output: "${{ inputs.multi-module && 'trivy-gha-scan/build/test-results/trivy.xml' || 'build/test-results/trivy.xml' }}" # added to unit test report report-retention-days: 30 diff --git a/.github/workflows/gradle-service.yml b/.github/workflows/gradle-service.yml index 142db0a..7201ac6 100644 --- a/.github/workflows/gradle-service.yml +++ b/.github/workflows/gradle-service.yml @@ -53,7 +53,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: ref: ${{ inputs.checkout-ref }} # fetch-depth 0 is required to fetch all tags (and to determine the version based on tags) @@ -85,7 +85,7 @@ jobs: # Build, test and create Docker image # - - uses: actions/setup-java@2dfa2011c5b2a0f1489bf9e433881c92c1631f88 # v4.3.0 + - uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0 with: distribution: temurin java-version: ${{ inputs.java-version }} @@ -120,7 +120,7 @@ jobs: run: mkdir -p ${{ inputs.multi-module && 'trivy-gha-scan/build/test-results' || 'build/test-results' }} - name: Vulnerability scan - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: image-ref: 'docker.io/${{ inputs.image-tag }}' junit-test-output: "${{ inputs.multi-module && 'trivy-gha-scan/build/test-results/trivy.xml' || 'build/test-results/trivy.xml' }}" # added to unit test report @@ -128,7 +128,7 @@ jobs: report-tag: ${{ inputs.image-tag }} - name: Vulnerability scan (Image 2) - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 if: ${{ inputs.image-tag-2 != '' }} with: image-ref: 'docker.io/${{ inputs.image-tag-2 }}' @@ -137,7 +137,7 @@ jobs: report-tag: ${{ inputs.image-tag-2 }} - name: Vulnerability scan (Image 3) - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 if: ${{ inputs.image-tag-3 != '' }} with: image-ref: 'docker.io/${{ inputs.image-tag-3 }}' diff --git a/.github/workflows/play-service.yml b/.github/workflows/play-service.yml index 45fad8f..20bfb58 100644 --- a/.github/workflows/play-service.yml +++ b/.github/workflows/play-service.yml @@ -49,9 +49,9 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - - uses: actions/setup-java@2dfa2011c5b2a0f1489bf9e433881c92c1631f88 # v4.3.0 + - uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0 with: distribution: temurin java-version: ${{ inputs.java-version }} @@ -98,7 +98,7 @@ jobs: run: mkdir -p ${{ inputs.junit-test-folder }} - name: Vulnerability scan - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: image-ref: 'docker.io/${{ inputs.image-tag }}' junit-test-output: "${{ inputs.junit-test-folder }}/trivy.xml" # added to unit test report diff --git a/.github/workflows/sbt-library.yml b/.github/workflows/sbt-library.yml index 8be1584..106cf38 100644 --- a/.github/workflows/sbt-library.yml +++ b/.github/workflows/sbt-library.yml @@ -35,9 +35,9 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - - uses: actions/setup-java@2dfa2011c5b2a0f1489bf9e433881c92c1631f88 # v4.3.0 + - uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0 with: distribution: temurin java-version: ${{ inputs.java-version }} diff --git a/.github/workflows/scan-images.yml b/.github/workflows/scan-images.yml index d92304c..d9367f2 100644 --- a/.github/workflows/scan-images.yml +++ b/.github/workflows/scan-images.yml @@ -86,7 +86,7 @@ jobs: docker pull ${{ matrix.image }} - name: Vulnerability scan - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: image-ref: ${{ matrix.image }} create-test-report: ${{ inputs.create-test-report }} @@ -176,7 +176,7 @@ jobs: # Scan merged SBOM for an overview, but trivy fails for mixed OS dependencies, so disabled by default - name: Scan merged SBOM if: ${{ inputs.merge-sboms && inputs.scan-merged-sbom }} - uses: wetransform/gha-trivy@8915cc9f5106f6683462a6eec9d093649e50a345 # v2.1.0 + uses: wetransform/gha-trivy@43245e19f1f3debe1caaeb795f6187f36cfa38de # v2.2.0 with: scan-ref: merged/sbom.json create-test-report: false