From d32d4d73d30915465d90ed0ad2df4abc8bc5bebf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 1 Dec 2023 08:53:55 +0000 Subject: [PATCH] chore(deps): bump the github-actions group with 13 updates Bumps the github-actions group with 13 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [actions/github-script](https://github.com/actions/github-script) | `6` | `7` | | [contributor-assistant/github-action](https://github.com/contributor-assistant/github-action) | `2.3.0` | `2.3.1` | | [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `2` | `3` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `2` | `3` | | [docker/login-action](https://github.com/docker/login-action) | `2` | `3` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `4.6.0` | `5.2.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `4` | `5` | | [actions/setup-go](https://github.com/actions/setup-go) | `2` | `4` | | [actions/first-interaction](https://github.com/actions/first-interaction) | `1.1.1` | `1.3.0` | | [dessant/lock-threads](https://github.com/dessant/lock-threads) | `4` | `5` | | [actions/setup-node](https://github.com/actions/setup-node) | `3` | `4` | | [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `4` | `5` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `actions/github-script` from 6 to 7 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/v6...v7) Updates `contributor-assistant/github-action` from 2.3.0 to 2.3.1 - [Release notes](https://github.com/contributor-assistant/github-action/releases) - [Commits](https://github.com/contributor-assistant/github-action/compare/v2.3.0...v2.3.1) Updates `docker/setup-qemu-action` from 2 to 3 - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v2...v3) Updates `docker/setup-buildx-action` from 2 to 3 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v3) Updates `docker/login-action` from 2 to 3 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v2...v3) Updates `docker/metadata-action` from 4.6.0 to 5.2.0 - [Release notes](https://github.com/docker/metadata-action/releases) - [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md) - [Commits](https://github.com/docker/metadata-action/compare/v4.6.0...v5.2.0) Updates `docker/build-push-action` from 4 to 5 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v4...v5) Updates `actions/setup-go` from 2 to 4 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v2...v4) Updates `actions/first-interaction` from 1.1.1 to 1.3.0 - [Release notes](https://github.com/actions/first-interaction/releases) - [Commits](https://github.com/actions/first-interaction/compare/v1.1.1...v1.3.0) Updates `dessant/lock-threads` from 4 to 5 - [Release notes](https://github.com/dessant/lock-threads/releases) - [Changelog](https://github.com/dessant/lock-threads/blob/main/CHANGELOG.md) - [Commits](https://github.com/dessant/lock-threads/compare/v4...v5) Updates `actions/setup-node` from 3 to 4 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v3...v4) Updates `goreleaser/goreleaser-action` from 4 to 5 - [Release notes](https://github.com/goreleaser/goreleaser-action/releases) - [Commits](https://github.com/goreleaser/goreleaser-action/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/github-script dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: contributor-assistant/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/metadata-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/first-interaction dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: dessant/lock-threads dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: goreleaser/goreleaser-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-assign-issue.yml | 2 +- .github/workflows/auto-gh-pr.yml | 2 +- .github/workflows/bot-auto-cherry-pick.yml | 2 +- .github/workflows/bot-cherry-pick.yml | 2 +- .github/workflows/check-coverage.yml | 2 +- .github/workflows/cla.yml | 2 +- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/docker-buildx.yml | 60 +++++++++++----------- .github/workflows/e2e-test.yml | 4 +- .github/workflows/golangci-lint.yml | 2 +- .github/workflows/gosec.yml | 2 +- .github/workflows/greetings.yml | 4 +- .github/workflows/link-pr.yml | 2 +- .github/workflows/lock-issue.yml | 2 +- .github/workflows/milestone.yml | 2 +- .github/workflows/opencommit.yml | 4 +- .github/workflows/release.yml | 8 +-- .github/workflows/sync.yml | 2 +- 18 files changed, 53 insertions(+), 53 deletions(-) diff --git a/.github/workflows/auto-assign-issue.yml b/.github/workflows/auto-assign-issue.yml index d87a571..d92fc96 100644 --- a/.github/workflows/auto-assign-issue.yml +++ b/.github/workflows/auto-assign-issue.yml @@ -27,7 +27,7 @@ jobs: issues: write steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Assign the issue run: | diff --git a/.github/workflows/auto-gh-pr.yml b/.github/workflows/auto-gh-pr.yml index f76a0c7..7b30ffb 100644 --- a/.github/workflows/auto-gh-pr.yml +++ b/.github/workflows/auto-gh-pr.yml @@ -30,7 +30,7 @@ jobs: # && github.event.pull_request.merged == true steps: - name: Check out code - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 0 diff --git a/.github/workflows/bot-auto-cherry-pick.yml b/.github/workflows/bot-auto-cherry-pick.yml index 6861872..052bb27 100644 --- a/.github/workflows/bot-auto-cherry-pick.yml +++ b/.github/workflows/bot-auto-cherry-pick.yml @@ -23,7 +23,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Comment cherry-pick command - uses: actions/github-script@v6 + uses: actions/github-script@v7 with: script: | const pr = context.payload.pull_request; diff --git a/.github/workflows/bot-cherry-pick.yml b/.github/workflows/bot-cherry-pick.yml index 2e69e0d..ab89935 100644 --- a/.github/workflows/bot-cherry-pick.yml +++ b/.github/workflows/bot-cherry-pick.yml @@ -23,7 +23,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the latest code - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: token: ${{ secrets.BOT_GITHUB_TOKEN }} fetch-depth: 0 # otherwise, you will fail to push refs to dest repo diff --git a/.github/workflows/check-coverage.yml b/.github/workflows/check-coverage.yml index 7080ef7..c875b7a 100644 --- a/.github/workflows/check-coverage.yml +++ b/.github/workflows/check-coverage.yml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-20.04 steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Setup Golang with cache uses: magnetikonline/action-golang-cache@v4 diff --git a/.github/workflows/cla.yml b/.github/workflows/cla.yml index 3f65828..4d2a160 100644 --- a/.github/workflows/cla.yml +++ b/.github/workflows/cla.yml @@ -41,7 +41,7 @@ jobs: steps: - name: "CLA Assistant" if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target' - uses: contributor-assistant/github-action@v2.3.0 + uses: contributor-assistant/github-action@v2.3.1 env: GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }} PERSONAL_ACCESS_TOKEN: ${{ secrets.REDBOT_GITHUB_TOKEN }} diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index a76979a..d6ff393 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -47,7 +47,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/docker-buildx.yml b/.github/workflows/docker-buildx.yml index 6ca47e9..dcc4cf9 100644 --- a/.github/workflows/docker-buildx.yml +++ b/.github/workflows/docker-buildx.yml @@ -29,13 +29,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Set up QEMU - uses: docker/setup-qemu-action@v2 + uses: docker/setup-qemu-action@v3 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@v3 with: install: true @@ -48,7 +48,7 @@ jobs: ${{ runner.os }}-buildx- - name: Log in to GitHub Container Registry - uses: docker/login-action@v2 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} @@ -87,12 +87,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-api id: meta1 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-api - name: Build and push Docker image for openim-api - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-api/Dockerfile @@ -105,12 +105,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-cmdutils id: meta2 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-cmdutils - name: Build and push Docker image for openim-cmdutils - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-cmdutils/Dockerfile @@ -123,12 +123,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-crontask id: meta3 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-crontask - name: Build and push Docker image for openim-crontask - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-crontask/Dockerfile @@ -141,12 +141,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-msggateway id: meta4 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-msggateway - name: Build and push Docker image for openim-msggateway - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-msggateway/Dockerfile @@ -159,12 +159,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-msgtransfer id: meta5 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-msgtransfer - name: Build and push Docker image for openim-msgtransfer - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-msgtransfer/Dockerfile @@ -177,12 +177,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-push id: meta6 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-push - name: Build and push Docker image for openim-push - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-push/Dockerfile @@ -195,12 +195,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-auth id: meta7 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-auth - name: Build and push Docker image for openim-rpc-auth - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-auth/Dockerfile @@ -213,12 +213,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-conversation id: meta8 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-conversation - name: Build and push Docker image for openim-rpc-conversation - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-conversation/Dockerfile @@ -231,12 +231,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-friend id: meta9 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-friend - name: Build and push Docker image for openim-rpc-friend - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-friend/Dockerfile @@ -249,12 +249,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-group id: meta10 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-group - name: Build and push Docker image for openim-rpc-group - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-group/Dockerfile @@ -267,12 +267,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-msg id: meta11 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-msg - name: Build and push Docker image for openim-rpc-msg - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-msg/Dockerfile @@ -285,12 +285,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-third id: meta12 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-third - name: Build and push Docker image for openim-rpc-third - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-third/Dockerfile @@ -303,12 +303,12 @@ jobs: - name: Extract metadata (tags, labels) for Docker openim-rpc-user id: meta13 - uses: docker/metadata-action@v4.6.0 + uses: docker/metadata-action@v5.2.0 with: images: ghcr.io/openimsdk/openim-rpc-user - name: Build and push Docker image for openim-rpc-user - uses: docker/build-push-action@v4 + uses: docker/build-push-action@v5 with: context: . file: ./build/images/openim-rpc-user/Dockerfile diff --git a/.github/workflows/e2e-test.yml b/.github/workflows/e2e-test.yml index 3358fc3..7028003 100644 --- a/.github/workflows/e2e-test.yml +++ b/.github/workflows/e2e-test.yml @@ -31,13 +31,13 @@ jobs: steps: - name: Set up Go 1.21 - uses: actions/setup-go@v2 + uses: actions/setup-go@v4 with: go-version: 1.21 id: go - name: Check out code into the Go module directory - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Create e2e test run: | diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index 7280a3d..67dc5a6 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -23,7 +23,7 @@ jobs: name: lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - uses: actions/setup-go@v4 with: go-version: '1.21' diff --git a/.github/workflows/gosec.yml b/.github/workflows/gosec.yml index 708eca4..b99330c 100644 --- a/.github/workflows/gosec.yml +++ b/.github/workflows/gosec.yml @@ -37,7 +37,7 @@ jobs: GO111MODULE: on steps: - name: Check out code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run Gosec Security Scanner uses: securego/gosec@master with: diff --git a/.github/workflows/greetings.yml b/.github/workflows/greetings.yml index f94f213..a48f593 100644 --- a/.github/workflows/greetings.yml +++ b/.github/workflows/greetings.yml @@ -25,8 +25,8 @@ jobs: check_for_first_interaction: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 - - uses: actions/first-interaction@v1.1.1 + - uses: actions/checkout@v4 + - uses: actions/first-interaction@v1.3.0 with: repo-token: ${{ secrets.BOT_GITHUB_TOKEN }} pr-message: | diff --git a/.github/workflows/link-pr.yml b/.github/workflows/link-pr.yml index 356394f..c61dbe5 100644 --- a/.github/workflows/link-pr.yml +++ b/.github/workflows/link-pr.yml @@ -23,7 +23,7 @@ jobs: linkChecker: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Link Checker id: lychee diff --git a/.github/workflows/lock-issue.yml b/.github/workflows/lock-issue.yml index 6a9aed9..edf2809 100644 --- a/.github/workflows/lock-issue.yml +++ b/.github/workflows/lock-issue.yml @@ -30,7 +30,7 @@ jobs: action: runs-on: ubuntu-latest steps: - - uses: dessant/lock-threads@v4 + - uses: dessant/lock-threads@v5 with: github-token: ${{ secrets.BOT_GITHUB_TOKEN }} issue-inactive-days: '365' diff --git a/.github/workflows/milestone.yml b/.github/workflows/milestone.yml index e0731b2..ecd6465 100644 --- a/.github/workflows/milestone.yml +++ b/.github/workflows/milestone.yml @@ -39,7 +39,7 @@ jobs: statuses: none steps: - - uses: actions/github-script@v6 # v6 + - uses: actions/github-script@v7 # v6 with: script: | if (!context.payload.pull_request.merged) { diff --git a/.github/workflows/opencommit.yml b/.github/workflows/opencommit.yml index a07b5b8..6496bd2 100644 --- a/.github/workflows/opencommit.yml +++ b/.github/workflows/opencommit.yml @@ -27,10 +27,10 @@ jobs: permissions: write-all steps: - name: Setup Node.js Environment - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: '16' - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: fetch-depth: 0 - uses: di-sukharev/opencommit@github-action-v1.0.4 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 62b89e8..ee4b323 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -29,7 +29,7 @@ jobs: goreleaser: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: fetch-depth: 0 - run: git fetch --force --tags @@ -38,7 +38,7 @@ jobs: go-version: stable # More assembly might be required: Docker logins, GPG, etc. It all depends # on your needs. - - uses: goreleaser/goreleaser-action@v4 + - uses: goreleaser/goreleaser-action@v5 with: # either 'goreleaser' (default) or 'goreleaser-pro': distribution: goreleaser @@ -63,14 +63,14 @@ jobs: matrix: format: [ deb, rpm, apk ] steps: - - uses: actions/checkout@v3 # v3 + - uses: actions/checkout@v4 # v3 with: fetch-depth: 0 - uses: arduino/setup-task@e26d8975574116b0097a1161e0fe16ba75d84c1c # v1 with: version: 3.x repo-token: ${{ secrets.GITHUB_TOKEN }} - - uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2 + - uses: docker/setup-qemu-action@326560df218a7ea9cf6ab49bbc88b8b306bb437e # v2 - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3 with: path: | diff --git a/.github/workflows/sync.yml b/.github/workflows/sync.yml index b9e67d4..04d65fa 100644 --- a/.github/workflows/sync.yml +++ b/.github/workflows/sync.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run GitHub File Sync uses: BetaHuhn/repo-file-sync-action@latest