diff --git a/.github/workflows/anchore-syft.yml b/.github/workflows/anchore-syft.yml index 4b687532..88ed735d 100644 --- a/.github/workflows/anchore-syft.yml +++ b/.github/workflows/anchore-syft.yml @@ -24,7 +24,7 @@ jobs: Anchore-Build-Scan: permissions: contents: write # required to upload to the Dependency submission API - runs-on: ubuntu-latest + runs-on: ubuntu-24.04 steps: - name: Checkout the code uses: actions/checkout@v4 diff --git a/.github/workflows/auto-approve-and-merge.yml b/.github/workflows/auto-approve-and-merge.yml index d095b3cf..d1425d9b 100644 --- a/.github/workflows/auto-approve-and-merge.yml +++ b/.github/workflows/auto-approve-and-merge.yml @@ -10,11 +10,9 @@ jobs: approve: name: Auto-approve dependabot PRs if: github.event.pull_request.user.login == 'dependabot[bot]' && contains(github.event.pull_request.labels.*.name, 'dependencies') - runs-on: ubuntu-20.04 + runs-on: ubuntu-24.04 steps: - - uses: hmarr/auto-approve-action@v2 - with: - github-token: "${{ secrets.GITHUB_TOKEN }}" + - uses: hmarr/auto-approve-action@v4 - name: Enable auto-merge for Dependabot PRs run: gh pr merge --auto --merge "$PR_URL" env: diff --git a/.github/workflows/create-draft-release.yml b/.github/workflows/create-draft-release.yml index 2c09947c..2461d867 100644 --- a/.github/workflows/create-draft-release.yml +++ b/.github/workflows/create-draft-release.yml @@ -6,16 +6,15 @@ on: jobs: create_release_draft: - runs-on: ubuntu-latest + runs-on: ubuntu-24.04 steps: - name: Checkout the Vulcan Repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Get current release version id: current_version - uses: actions/github-script@v6 + uses: actions/github-script@v7 with: - github-token: ${{ secrets.GITHUB_TOKEN }} script: | const repo = context.repo; const default_tag = 'v2.0.0'; @@ -54,9 +53,8 @@ jobs: - name: Create release draft id: create_release - uses: actions/github-script@v6 + uses: actions/github-script@v7 with: - github-token: ${{ secrets.GITHUB_TOKEN }} script: | const repo = context.repo; const newVersion = process.env.NEW_VERSION; diff --git a/.github/workflows/push-to-docker.yml b/.github/workflows/push-to-docker.yml index 56017976..3e7c5a87 100644 --- a/.github/workflows/push-to-docker.yml +++ b/.github/workflows/push-to-docker.yml @@ -10,18 +10,18 @@ on: jobs: docker: - runs-on: ubuntu-latest + runs-on: ubuntu-24.04 if: ${{ (github.event_name == 'workflow_run' && github.event.workflow_run.conclusion == 'success') || github.event_name == 'release' }} steps: - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v2 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Checkout the Vulcan Repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Set tag based on event type run: | if [[ "${{ github.event_name }}" == "workflow_run" ]]; then @@ -32,7 +32,7 @@ jobs: echo "TAG=$TAG" >> $GITHUB_ENV - name: Build and push id: docker_build - uses: docker/build-push-action@v3 + uses: docker/build-push-action@v6 with: context: . push: true diff --git a/.github/workflows/run-tests.yml b/.github/workflows/run-tests.yml index fa463783..c7dd3a94 100644 --- a/.github/workflows/run-tests.yml +++ b/.github/workflows/run-tests.yml @@ -13,7 +13,7 @@ on: jobs: test: if: ${{ (github.event_name == 'workflow_run' && github.event.workflow_run.conclusion == 'success') || github.event_name == 'push' || github.event_name == 'pull_request' }} - runs-on: ubuntu-latest + runs-on: ubuntu-24.04 services: db: @@ -34,10 +34,10 @@ jobs: - 389:10389 steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Setup Ruby uses: ruby/setup-ruby@v1 - - uses: actions/setup-node@v1 + - uses: actions/setup-node@v4 with: node-version: '14' - name: Cache ruby gems