diff --git a/.github/workflows/build_and_push.yml b/.github/workflows/build_and_push.yml index a76ead8..2f78910 100644 --- a/.github/workflows/build_and_push.yml +++ b/.github/workflows/build_and_push.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Check out code - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: token: ${{ secrets.WRITE_PACKAGE_TOKEN }} @@ -30,7 +30,7 @@ jobs: password: ${{ secrets.WRITE_PACKAGE_TOKEN }} - name: Checkout the Gitops repository - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: fiaisis/gitops token: ${{ secrets.GITOPS_STAGING_EDIT_TOKEN }} @@ -59,12 +59,12 @@ jobs: tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}/jobcreator:${{ github.sha }} - name: Edit the YAML jobcreator.yml file for staging for jobwatcher - uses: mikefarah/yq@v4.53.2 + uses: mikefarah/yq@v4.53.3 with: cmd: yq e -i '.spec.template.spec.containers[] |= (select(.name == "jobcreator") | .env[] |= select(.name == "WATCHER_SHA").value = "${{ steps.remove_sha256_watcher.outputs.digest }}")' './components/jobcreator/envs/staging/jobcreator.yml' - name: Edit the YAML jobcreator.yml file for staging for jobcreator - uses: mikefarah/yq@v4.53.2 + uses: mikefarah/yq@v4.53.3 with: cmd: yq e -i '.spec.template.spec.containers[] |= select(.name == "jobcreator").image = "ghcr.io/fiaisis/jobcreator@${{ steps.jobcreator_build.outputs.digest }}"' './components/jobcreator/envs/staging/jobcreator.yml' diff --git a/.github/workflows/formatting_and_linting.yml b/.github/workflows/formatting_and_linting.yml index 7a3cc59..a99e10c 100644 --- a/.github/workflows/formatting_and_linting.yml +++ b/.github/workflows/formatting_and_linting.yml @@ -11,13 +11,13 @@ jobs: steps: - name: Checkout project if: github.actor != 'dependabot[bot]' - uses: actions/checkout@ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493 # v4.1.7 + uses: actions/checkout@b9e0990d219a03df7633c93f6f005a8fecbcab22 # v4.1.7 with: token: ${{ secrets.COMMIT_TOKEN }} - name: Checkout project (dependabot) if: github.actor == 'dependabot[bot]' - uses: actions/checkout@ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493 # v4.1.7 + uses: actions/checkout@b9e0990d219a03df7633c93f6f005a8fecbcab22 # v4.1.7 - name: Set up Python uses: actions/setup-python@v6 @@ -25,7 +25,7 @@ jobs: python-version: 3.12 - name: Set up cache for Python dependencies - uses: actions/cache@v5 + uses: actions/cache@v6 with: path: ~/.cache/pip key: ${{ runner.os }}-pip-${{ hashFiles('**/pyproject.toml') }} diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 8754986..a2d99c5 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -6,7 +6,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout project - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Set up python uses: actions/setup-python@v6 @@ -23,7 +23,7 @@ jobs: run: pytest ./job_creator --random-order --random-order-bucket=global --ignore=test/database/test_db_updater_integration.py --cov --cov-report=xml - name: Upload coverage - uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 + uses: codecov/codecov-action@fb8b3582c8e4def4969c97caa2f19720cb33a72f # v7.0.0 with: token: ${{ secrets.CODECOV_TOKEN }} @@ -31,7 +31,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout project - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Set up python uses: actions/setup-python@v6 @@ -48,6 +48,6 @@ jobs: run: pytest ./job_watcher --random-order --random-order-bucket=global --ignore=test/database/test_db_updater_integration.py --cov --cov-report=xml - name: Upload coverage - uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 + uses: codecov/codecov-action@fb8b3582c8e4def4969c97caa2f19720cb33a72f # v7.0.0 with: token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index f76510b..7c1ac2a 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -31,7 +31,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Build Docker image uses: docker/build-push-action@v7