Skip to content

Commit aa3d89d

Browse files
renovate[bot]renovate[bot]
authored
chore(deps): update all github actions (#267)
This PR contains the following updates: | Package | Type | Update | Change | OpenSSF | |---|---|---|---|---| | [actions/checkout](https://redirect.github.com/actions/checkout) | action | patch | `v5.0.0` -> `v5.0.1` | [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/actions/checkout/badge)](https://securityscorecards.dev/viewer/?uri=github.com/actions/checkout) | | [anchore/scan-action](https://redirect.github.com/anchore/scan-action) | action | minor | `v7.1.0` -> `v7.2.0` | [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/anchore/scan-action/badge)](https://securityscorecards.dev/viewer/?uri=github.com/anchore/scan-action) | --- ### Release Notes <details> <summary>actions/checkout (actions/checkout)</summary> ### [`v5.0.1`](https://redirect.github.com/actions/checkout/compare/v5.0.0...v5.0.1) [Compare Source](https://redirect.github.com/actions/checkout/compare/v5.0.0...v5.0.1) </details> <details> <summary>anchore/scan-action (anchore/scan-action)</summary> ### [`v7.2.0`](https://redirect.github.com/anchore/scan-action/releases/tag/v7.2.0) [Compare Source](https://redirect.github.com/anchore/scan-action/compare/v7.1.0...v7.2.0) #### New in scan-action v7.2.0 - chore(deps): update Grype to v0.104.0 ([#&#8203;541](https://redirect.github.com/anchore/scan-action/issues/541)) \[\[[anchore-actions-token-generator\[bot\]](https://redirect.github.com/apps/anchore-actions-token-generator)]\(<https://github.com/>[anchore-actions-token-generator\[bot\]](https://redirect.github.com/apps/anchore-actions-token-generator))] - chore(deps-dev): bump tar from 7.5.1 to 7.5.2 ([#&#8203;538](https://redirect.github.com/anchore/scan-action/issues/538)) \[\[[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)]\(<https://github.com/>[dependabot\[bot\]](https://redirect.github.com/apps/dependabot))] - chore(deps-dev): bump eslint from 9.38.0 to 9.39.0 ([#&#8203;539](https://redirect.github.com/anchore/scan-action/issues/539)) \[\[[dependabot\[bot\]](https://redirect.github.com/apps/dependabot)]\(<https://github.com/>[dependabot\[bot\]](https://redirect.github.com/apps/dependabot))] </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - Only on Sunday and Saturday ( * * * * 0,6 ) in timezone Europe/Dublin. 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/BSStudio/bss-web-file-api). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNzMuMSIsInVwZGF0ZWRJblZlciI6IjQxLjE3My4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent ed70b03 commit aa3d89d

File tree

5 files changed

+10
-10
lines changed

5 files changed

+10
-10
lines changed

.github/workflows/docker.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
name: Lint Dockerfile
1919
runs-on: ubuntu-latest
2020
steps:
21-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
21+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2222
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
2323

2424
build:
@@ -31,7 +31,7 @@ jobs:
3131
id-token: write
3232
security-events: write
3333
steps:
34-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
34+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
3535
- uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
3636
with:
3737
registry: ghcr.io
@@ -70,7 +70,7 @@ jobs:
7070
*.cache-from=type=gha
7171
*.cache-to=type=gha,mode=max
7272
73-
- uses: anchore/scan-action@568b89d27fc18c60e56937bff480c91c772cd993 # v7.1.0
73+
- uses: anchore/scan-action@3aaf50d765cfcceafa51d322ccb790e40f6cd8c5 # v7.2.0
7474
id: scan
7575
if: ${{ github.event_name != 'pull_request' && github.event_name != 'merge_group' }}
7676
with:

.github/workflows/integration.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
permissions:
1818
id-token: write
1919
steps:
20-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
20+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2121
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
2222
with:
2323
python-version-file: "pyproject.toml"

.github/workflows/python.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
runs-on: ubuntu-24.04-arm
1616
timeout-minutes: 5
1717
steps:
18-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
18+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
1919
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
2020
with:
2121
python-version-file: "pyproject.toml"
@@ -28,7 +28,7 @@ jobs:
2828
permissions:
2929
id-token: write
3030
steps:
31-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
31+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
3232
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
3333
with:
3434
python-version-file: "pyproject.toml"
@@ -43,7 +43,7 @@ jobs:
4343
runs-on: ubuntu-24.04-arm
4444
timeout-minutes: 5
4545
steps:
46-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
46+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
4747
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
4848
with:
4949
python-version-file: "pyproject.toml"
@@ -56,7 +56,7 @@ jobs:
5656
runs-on: ubuntu-24.04-arm
5757
timeout-minutes: 5
5858
steps:
59-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
59+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
6060
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
6161
with:
6262
python-version-file: "pyproject.toml"

.github/workflows/release.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ jobs:
2222
permission-issues: write # to be able to comment on released issues
2323
permission-pull-requests: write # to be able to comment on released pull requests
2424

25-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
25+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
2626
with:
2727
token: ${{ steps.release-token.outputs.token }}
2828
fetch-depth: 0

.github/workflows/scorecard.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@ jobs:
3636

3737
steps:
3838
- name: "Checkout code"
39-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
39+
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
4040
with:
4141
persist-credentials: false
4242

0 commit comments

Comments
 (0)