diff --git a/.github/workflows/analysis.yml b/.github/workflows/analysis.yml index 9daa7be2..9f293c61 100644 --- a/.github/workflows/analysis.yml +++ b/.github/workflows/analysis.yml @@ -52,7 +52,7 @@ jobs: - uses: actions/checkout@v4 - name: Run Trivy vulnerability scanner in repo mode - uses: aquasecurity/trivy-action@0.14.0 + uses: aquasecurity/trivy-action@0.24.0 with: format: "sarif" output: "trivy-results.sarif" @@ -100,7 +100,7 @@ jobs: path: ~/.local key: poetry-${{ hashFiles('**/pyproject.toml') }} - - uses: snok/install-poetry@v1.3.4 + - uses: snok/install-poetry@v1.4.1 with: version: 1.2.2 virtualenvs-create: true diff --git a/.github/workflows/merge.yml b/.github/workflows/merge.yml index 9df90e1d..b8232b84 100644 --- a/.github/workflows/merge.yml +++ b/.github/workflows/merge.yml @@ -36,7 +36,7 @@ jobs: # https://github.com/bcgov-nr/action-deployer-openshift deploy-test: name: Deploy (test) - uses: bcgov/quickstart-openshift-helpers/.github/workflows/.deployer.yml@v0.4.0 + uses: bcgov/quickstart-openshift-helpers/.github/workflows/.deployer.yml@v0.8.0 secrets: oc_namespace: ${{ secrets.OC_NAMESPACE }} oc_token: ${{ secrets.OC_TOKEN }} diff --git a/.github/workflows/pr-close.yml b/.github/workflows/pr-close.yml index 4909d81c..930b6771 100644 --- a/.github/workflows/pr-close.yml +++ b/.github/workflows/pr-close.yml @@ -12,7 +12,7 @@ concurrency: jobs: cleanup: name: Cleanup and Images - uses: bcgov/quickstart-openshift-helpers/.github/workflows/.pr-close.yml@v0.4.0 + uses: bcgov/quickstart-openshift-helpers/.github/workflows/.pr-close.yml@v0.8.0 secrets: oc_namespace: ${{ secrets.OC_NAMESPACE }} oc_token: ${{ secrets.OC_TOKEN }} diff --git a/.github/workflows/pr-open.yml b/.github/workflows/pr-open.yml index 16e51fba..dace1a19 100644 --- a/.github/workflows/pr-open.yml +++ b/.github/workflows/pr-open.yml @@ -16,7 +16,7 @@ jobs: name: Conventional Commits runs-on: ubuntu-22.04 steps: - - uses: amannn/action-semantic-pull-request@v5.4.0 + - uses: amannn/action-semantic-pull-request@v5.5.3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} @@ -31,7 +31,7 @@ jobs: pull-requests: write timeout-minutes: 1 steps: - - uses: bcgov-nr/action-pr-description-add@v1.1.0 + - uses: bcgov-nr/action-pr-description-add@v1.1.2 with: add_markdown: | --- @@ -103,7 +103,7 @@ jobs: build_context: ./frontend/hydro_alerting timeout-minutes: 10 steps: - - uses: bcgov-nr/action-builder-ghcr@v2.0.1 + - uses: bcgov-nr/action-builder-ghcr@v2.2.0 with: keep_versions: 50 package: ${{ matrix.package }} @@ -122,7 +122,7 @@ jobs: packages: write timeout-minutes: 10 steps: - - uses: bcgov-nr/action-builder-ghcr@v2.0.1 + - uses: bcgov-nr/action-builder-ghcr@v2.2.0 with: keep_versions: 10 package: alembicmigrations @@ -150,7 +150,7 @@ jobs: deploys: name: Deploys needs: [builds] - uses: bcgov/quickstart-openshift-helpers/.github/workflows/.deployer.yml@v0.4.0 + uses: bcgov/quickstart-openshift-helpers/.github/workflows/.deployer.yml@v0.8.0 secrets: oc_namespace: ${{ secrets.OC_NAMESPACE }} oc_token: ${{ secrets.OC_TOKEN }} diff --git a/.github/workflows/scheduled.yml b/.github/workflows/scheduled.yml index b485e137..823599e1 100644 --- a/.github/workflows/scheduled.yml +++ b/.github/workflows/scheduled.yml @@ -20,7 +20,7 @@ jobs: name: [backend, frontend] steps: - name: ZAP Scan - uses: zaproxy/action-full-scan@v0.8.0 + uses: zaproxy/action-full-scan@v0.11.0 with: allow_issue_writing: true artifact_name: "zap_${{ matrix.name }}"