From a02a7a99bc00544bee1a872689b50c7415500632 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 26 Sep 2023 22:12:42 +0200 Subject: [PATCH] chore: bump actions/checkout from 4.0.0 to 4.1.0 (#5592) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/3df4ab11eba7bda6032a0b82a6bb43b11571feac...8ade135a41bc03ea155e62e844d188df1ea18608) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/build.yml | 10 +++++----- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yaml | 2 +- .github/workflows/jekyll-gh-pages.yml | 2 +- .github/workflows/nightly.yml | 6 +++--- .github/workflows/pipenv-update.yml | 2 +- .github/workflows/pr-test.yml | 12 ++++++------ .github/workflows/security-shared.yml | 6 +++--- 8 files changed, 21 insertions(+), 21 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index ca6c9062b51..78a451c399d 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -48,7 +48,7 @@ jobs: os: [ubuntu-latest, macos-latest, windows-latest] runs-on: ${{ matrix.os }} steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ matrix.python }} @@ -96,7 +96,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ env.PYTHON_VERSION }} @@ -127,7 +127,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: Set up Python ${{ env.PYTHON_VERSION }} uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: @@ -164,7 +164,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: token: ${{ secrets.GH_PAT_SECRET }} - name: Import GPG key @@ -311,7 +311,7 @@ jobs: runs-on: [self-hosted, public, linux, x64] environment: release steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: update checkov release run: | curl -X POST "https://jenkins-webhook.bridgecrew.cloud/buildByToken/build?job=Open-Source/upgrade-checkov&token=${{ secrets.BC_JENKINS_TOKEN }}" diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index b70906758d2..c31733bbd58 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -34,7 +34,7 @@ jobs: security-events: write steps: - name: Checkout repository - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: Set up Python uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: diff --git a/.github/workflows/coverage.yaml b/.github/workflows/coverage.yaml index 98bb4522f1e..06bd7a203f9 100644 --- a/.github/workflows/coverage.yaml +++ b/.github/workflows/coverage.yaml @@ -17,7 +17,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: token: ${{ secrets.GH_PAT_SECRET }} - name: Import GPG key diff --git a/.github/workflows/jekyll-gh-pages.yml b/.github/workflows/jekyll-gh-pages.yml index 2c16810728e..971c3c0b2cc 100644 --- a/.github/workflows/jekyll-gh-pages.yml +++ b/.github/workflows/jekyll-gh-pages.yml @@ -27,7 +27,7 @@ jobs: runs-on: [self-hosted, public, linux, x64] steps: - name: Checkout - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: Setup Pages uses: actions/configure-pages@f156874f8191504dae5b037505266ed5dda6c382 # v3 - name: Build with Jekyll diff --git a/.github/workflows/nightly.yml b/.github/workflows/nightly.yml index 11caa325d4f..474093c1599 100644 --- a/.github/workflows/nightly.yml +++ b/.github/workflows/nightly.yml @@ -16,7 +16,7 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: fetch-depth: 0 token: ${{ secrets.GH_PAT_SECRET }} @@ -90,7 +90,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} @@ -130,7 +130,7 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/pipenv-update.yml b/.github/workflows/pipenv-update.yml index c7e50a14a0c..78dd8a003ff 100644 --- a/.github/workflows/pipenv-update.yml +++ b/.github/workflows/pipenv-update.yml @@ -16,7 +16,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: ref: ${{ github.head_ref }} token: ${{ secrets.GH_PAT_SECRET }} diff --git a/.github/workflows/pr-test.yml b/.github/workflows/pr-test.yml index a3cd6cc84e2..555a4bff09d 100644 --- a/.github/workflows/pr-test.yml +++ b/.github/workflows/pr-test.yml @@ -18,7 +18,7 @@ jobs: pull-requests: read steps: - name: Checkout code - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: Install Node.js uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3 with: @@ -34,7 +34,7 @@ jobs: env: PYTHON_VERSION: "3.8" steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ env.PYTHON_VERSION }} @@ -58,7 +58,7 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 30 steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - name: Set up Python ${{ matrix.python }} uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: @@ -103,7 +103,7 @@ jobs: os: [ubuntu-latest, macos-latest, windows-latest] runs-on: ${{ matrix.os }} steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ matrix.python }} @@ -153,7 +153,7 @@ jobs: working-directory: ./performance_tests runs-on: [self-hosted, public, linux, x64] steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ env.PYTHON_VERSION }} @@ -198,7 +198,7 @@ jobs: PYTHON_VERSION: "3.8" WORKING_DIRECTORY: ./dogfood_tests steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 - uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4 with: python-version: ${{ env.PYTHON_VERSION }} diff --git a/.github/workflows/security-shared.yml b/.github/workflows/security-shared.yml index 26e09592c5f..0daf55e3a1f 100644 --- a/.github/workflows/security-shared.yml +++ b/.github/workflows/security-shared.yml @@ -14,7 +14,7 @@ jobs: bandit: runs-on: [self-hosted, public, linux, x64] steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: ref: ${{ github.event.pull_request.head.sha }} - name: security test @@ -24,7 +24,7 @@ jobs: trufflehog-secrets: runs-on: [self-hosted, public, linux, x64] steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: ref: ${{ github.event.pull_request.head.sha }} - name: detect secrets @@ -34,7 +34,7 @@ jobs: checkov-secrets: runs-on: [self-hosted, public, linux, x64] steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v3 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3 with: ref: ${{ github.event.pull_request.head.sha }} - name: Scan for secrets