diff --git a/.github/workflows/_container.yml b/.github/workflows/_container.yml index cdfc9a7d8..f513ca83c 100644 --- a/.github/workflows/_container.yml +++ b/.github/workflows/_container.yml @@ -57,7 +57,7 @@ jobs: - name: Create tags for publishing image id: meta - uses: docker/metadata-action@v5 + uses: docker/metadata-action@v5.6.1 with: images: ghcr.io/${{ github.repository }} tags: | @@ -85,10 +85,10 @@ jobs: needs: build_container steps: - name: checkout repo - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: install helm - uses: Azure/setup-helm@v3 + uses: Azure/setup-helm@v4 with: token: ${{ secrets.GITHUB_TOKEN }} id: install @@ -98,7 +98,7 @@ jobs: echo ${{ secrets.GITHUB_TOKEN }} | helm registry login ${{ env.GCR_IMAGE }} --username ${{ github.repository_owner }} --password-stdin - name: Extract metadata (tags, labels) for Docker id: meta - uses: docker/metadata-action@57396166ad8aefe6098280995947635806a0e6ea + uses: docker/metadata-action@906ecf0fc0a80f9110f79d9e6c04b1080f4a2621 with: images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} tags: | diff --git a/.github/workflows/_release.yml b/.github/workflows/_release.yml index 81b626438..c77168299 100644 --- a/.github/workflows/_release.yml +++ b/.github/workflows/_release.yml @@ -23,7 +23,7 @@ jobs: - name: Create GitHub Release # We pin to the SHA, not the tag, for security reasons. # https://docs.github.com/en/actions/learn-github-actions/security-hardening-for-github-actions#using-third-party-actions - uses: softprops/action-gh-release@e7a8f85e1c67a31e6ed99a94b41bd0b71bbee6b8 # v2.0.9 + uses: softprops/action-gh-release@7b4da11513bf3f43f9999e90eabced41ab8bb048 # v2.2.0 with: prerelease: ${{ contains(github.ref_name, 'a') || contains(github.ref_name, 'b') || contains(github.ref_name, 'rc') }} files: "*" diff --git a/.github/workflows/_test.yml b/.github/workflows/_test.yml index f652d4145..552b29d08 100644 --- a/.github/workflows/_test.yml +++ b/.github/workflows/_test.yml @@ -54,7 +54,7 @@ jobs: run: tox -e tests - name: Upload coverage to Codecov - uses: codecov/codecov-action@v4 + uses: codecov/codecov-action@v5 with: name: ${{ inputs.python-version }}/${{ inputs.runs-on }} files: cov.xml diff --git a/.github/workflows/asyncapi.yml b/.github/workflows/asyncapi.yml index 443a2196c..613b0e945 100644 --- a/.github/workflows/asyncapi.yml +++ b/.github/workflows/asyncapi.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: check asyncapi.yaml file uses: WaleedAshraf/asyncapi-github-action@v0.0.10 with: diff --git a/.github/workflows/backstage.yml b/.github/workflows/backstage.yml index 00a488241..0c3408040 100644 --- a/.github/workflows/backstage.yml +++ b/.github/workflows/backstage.yml @@ -10,8 +10,8 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: check catalog-info.yaml file - uses: RoadieHQ/backstage-entity-validator@v0.3.11 + uses: RoadieHQ/backstage-entity-validator@v0.5.0 with: path: "./catalog-info.yaml" diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index aa0bd93d1..4e4f92491 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -21,7 +21,7 @@ jobs: - name: SonarCloud Scan # Skip SonarCloud Scan if the pull request is from a forked repository if: ${{ github.event.pull_request.head.repo.full_name == github.repository }} - uses: sonarsource/sonarcloud-github-action@v3.0.0 + uses: sonarsource/sonarcloud-github-action@v4.0.0 env: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_ORG_KEY: ${{ secrets.SONAR_ORG_KEY }}