From 58f7b173946f3422f52545bf0434c20cf8467341 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 19 Sep 2023 21:06:48 +0000 Subject: [PATCH] Bump actions/checkout from 2.7.0 to 4.0.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 2.7.0 to 4.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2.7.0...3df4ab11eba7bda6032a0b82a6bb43b11571feac) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql-analysis.yml | 2 +- .../ion-java-performance-regression-detector.yml | 8 ++++---- .github/workflows/ion-test-driver.yml | 6 +++--- .github/workflows/main.yml | 4 ++-- .github/workflows/prepare-release.yml | 4 ++-- .github/workflows/publish-release-artifacts.yml | 4 ++-- .github/workflows/scorecard.yml | 2 +- .github/workflows/test-inspect-version-action.yml | 2 +- 8 files changed, 16 insertions(+), 16 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 0f4b2e1654..97357bbfdc 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -37,7 +37,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/ion-java-performance-regression-detector.yml b/.github/workflows/ion-java-performance-regression-detector.yml index 8671351bc2..0ee52e3941 100644 --- a/.github/workflows/ion-java-performance-regression-detector.yml +++ b/.github/workflows/ion-java-performance-regression-detector.yml @@ -24,7 +24,7 @@ jobs: java-version: 11 - name: Checkout ion-java from the new commit. - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 with: ref: ${{ github.event.pull_request.head.sha }} path: ion-java-new @@ -33,7 +33,7 @@ jobs: run: cd ion-java-new && git submodule init && git submodule update && ./gradlew clean publishToMavenLocal - name: Checkout ion-java-benchmark-cli - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 with: repository: amazon-ion/ion-java-benchmark-cli ref: master @@ -43,7 +43,7 @@ jobs: run: cd ion-java-benchmark-cli && mvn clean install - name: Checkout ion-data-generator - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 with: repository: amazon-ion/ion-data-generator ref: main @@ -86,7 +86,7 @@ jobs: run : rm -r /home/runner/.m2 - name: Checkout the current commit - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 with: repository: amazon-ion/ion-java ref: master diff --git a/.github/workflows/ion-test-driver.yml b/.github/workflows/ion-test-driver.yml index 2a69dd6cc3..9c8e7c6baa 100644 --- a/.github/workflows/ion-test-driver.yml +++ b/.github/workflows/ion-test-driver.yml @@ -13,14 +13,14 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout ion-java - uses: actions/checkout@61b9e3751b92087fd0b06925ba6dd6314e06f089 # master + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # master with: repository: amazon-ion/ion-java ref: master path: ion-java - name: Checkout ion-test-driver - uses: actions/checkout@61b9e3751b92087fd0b06925ba6dd6314e06f089 # master + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # master with: repository: amazon-ion/ion-test-driver ref: master @@ -80,7 +80,7 @@ jobs: needs: ion-test-driver if: ${{ failure() }} steps: - - uses: actions/checkout@61b9e3751b92087fd0b06925ba6dd6314e06f089 # master + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # master - name: Open an issue uses: JasonEtco/create-an-issue@e27dddc79c92bc6e4562f268fffa5ed752639abd # v2.9.1 env: diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 95e5ce74d4..3ff652e57d 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -17,7 +17,7 @@ jobs: upload_reports: true - java: 17 steps: - - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 with: submodules: recursive - uses: gradle/wrapper-validation-action@56b90f209b02bf6d1deae490e9ef18b21a389cd4 # v1.1.0 @@ -46,7 +46,7 @@ jobs: # https://github.com/amazon-ion/ion-java/blob/master/.github/actions/inspect-version/action.yml runs-on: ubuntu-latest steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 - name: Get Project Version run: | echo "PROJECT_VERSION=v$(> $GITHUB_ENV diff --git a/.github/workflows/prepare-release.yml b/.github/workflows/prepare-release.yml index 71c5b93aa4..bbbc4586a0 100644 --- a/.github/workflows/prepare-release.yml +++ b/.github/workflows/prepare-release.yml @@ -43,7 +43,7 @@ jobs: outputs: should_create_draft: ${{ steps.inspect.outputs.is_valid_to_release }} steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 - name: Get project version run: | echo "PROJECT_VERSION=$(> $GITHUB_ENV @@ -64,7 +64,7 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 - name: Create a draft release shell: bash env: diff --git a/.github/workflows/publish-release-artifacts.yml b/.github/workflows/publish-release-artifacts.yml index b55e48c39a..8832cd29b7 100644 --- a/.github/workflows/publish-release-artifacts.yml +++ b/.github/workflows/publish-release-artifacts.yml @@ -29,7 +29,7 @@ jobs: # First, a sanity check to ensure that the library version matches the release version runs-on: ubuntu-latest steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 - name: Validate project version matches tag shell: bash run: | @@ -48,7 +48,7 @@ jobs: steps: # TODO: replace with artifact upload/download -- make sure there's no race condition with other builds also # uploading an artifact. - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 with: submodules: recursive - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc # v2.8.0 diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 6953405a0e..f12fd7c6d1 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -32,7 +32,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.1.0 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.1.0 with: persist-credentials: false diff --git a/.github/workflows/test-inspect-version-action.yml b/.github/workflows/test-inspect-version-action.yml index ed223dfdb6..d802ac335c 100644 --- a/.github/workflows/test-inspect-version-action.yml +++ b/.github/workflows/test-inspect-version-action.yml @@ -52,7 +52,7 @@ jobs: expected: action_failure steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3.6.0 - name: Invoke Action id: inspect continue-on-error: ${{ matrix.expected == 'action_failure' }}