Skip to content

Commit 47152b4

Browse files
Miqueasherthpierce
authored and
jj22ee
committed
Update 3p actions from VID to CSHA (#1205)
This pr updates 3p actions from VID to CSHA for remaining files. References: https://github.com/actions/checkout https://github.com/actions/setup-python https://github.com/actions/setup-java https://github.com/actions/setup-node https://github.com/actions/cache https://github.com/actions/upload-artifact https://github.com/actions/setup-node https://github.com/aws-actions/configure-aws-credentials https://github.com/actions/download-artifact https://github.com/aws-actions/aws-secretsmanager-get-secrets https://github.com/docker/login-action https://github.com/docker/setup-buildx-action https://github.com/docker/build-push-action https://github.com/docker/setup-qemu-action https://github.com/gradle/actions/blob/f8140229023a7015c7ce4df6f7c390a3cace8f83/docs/deprecation-upgrade-guide.md#using-the-action-to-execute-gradle-via-the-arguments-parameter-is-deprecated https://github.com/github/codeql-action https://github.com/hashicorp/setup-terraform https://github.com/codecov/codecov-action https://github.com/burrunan/gradle-cache-action https://github.com/JasonEtco/create-an-issue https://github.com/benchmark-action/github-action-benchmark By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. --------- Co-authored-by: Thomas Pierce <[email protected]>
1 parent c3aec08 commit 47152b4

21 files changed

+107
-115
lines changed

.github/actions/cpUtility-testing/action.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -25,28 +25,28 @@ runs:
2525
using: "composite"
2626
steps:
2727
- name: Set up QEMU
28-
uses: docker/setup-qemu-action@v3
28+
uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 #3.6.0
2929

3030
- name: Set up Docker Buildx
31-
uses: docker/setup-buildx-action@v3
31+
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 #v3.11.1
3232
with:
3333
driver-opts: image=moby/buildkit:v0.15.1
3434

3535
- name: Configure AWS Credentials
36-
uses: aws-actions/configure-aws-credentials@v4
36+
uses: aws-actions/configure-aws-credentials@a03048d87541d1d9fcf2ecf528a4a65ba9bd7838 #v5.0.0
3737
with:
3838
role-to-assume: ${{ inputs.snapshot-ecr-role }}
3939
aws-region: ${{ inputs.aws-region }}
4040

4141
- name: Login to private staging ecr
42-
uses: docker/login-action@v3
42+
uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 #v3.5.0
4343
with:
4444
registry: ${{ inputs.image_registry }}
4545
env:
4646
AWS_REGION: ${{ inputs.aws-region }}
4747

4848
- name: Build image for testing
49-
uses: docker/build-push-action@v5
49+
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 #v6.18.0
5050
with:
5151
push: false
5252
build-args: "ADOT_JAVA_VERSION=${{ inputs.adot-java-version }}"
@@ -60,7 +60,7 @@ runs:
6060
run: .github/scripts/test-adot-javaagent-image.sh "${{ inputs.image_uri_with_tag }}" "${{ inputs.adot-java-version }}"
6161

6262
- name: Build and push image
63-
uses: docker/build-push-action@v5
63+
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 #v6.18.0
6464
with:
6565
push: true
6666
build-args: "ADOT_JAVA_VERSION=${{ inputs.adot-java-version }}"

.github/actions/image_scan/action.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ runs:
2626
run: docker logout public.ecr.aws
2727

2828
- name: Run Trivy vulnerability scanner on image
29-
uses: aquasecurity/trivy-action@master
29+
uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 #v0.33.1
3030
with:
3131
image-ref: ${{ inputs.image-ref }}
3232
severity: ${{ inputs.severity }}

.github/actions/patch-dependencies/action.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -64,14 +64,14 @@ runs:
6464
shell: bash
6565

6666
- name: Build opentelemetry-java with tests
67-
uses: gradle/gradle-build-action@v2
67+
uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa #v2
6868
if: ${{ env.patch_otel_java == 'true' && inputs.run_tests != 'false' }}
6969
with:
7070
arguments: build publishToMavenLocal
7171
build-root-directory: opentelemetry-java
7272

7373
- name: Build opentelemetry-java
74-
uses: gradle/gradle-build-action@v2
74+
uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa #v2
7575
if: ${{ env.patch_otel_java == 'true' && inputs.run_tests == 'false' }}
7676
with:
7777
arguments: publishToMavenLocal
@@ -83,14 +83,14 @@ runs:
8383
shell: bash
8484

8585
- name: Build opentelemetry-java-contrib with tests
86-
uses: gradle/gradle-build-action@v2
86+
uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa #v2
8787
if: ${{ env.patch_otel_java_contrib == 'true' && inputs.run_tests != 'false' }}
8888
with:
8989
arguments: build publishToMavenLocal
9090
build-root-directory: opentelemetry-java-contrib
9191

9292
- name: Build opentelemetry-java-contrib
93-
uses: gradle/gradle-build-action@v2
93+
uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa #v2
9494
if: ${{ env.patch_otel_java_contrib == 'true' && inputs.run_tests == 'false' }}
9595
with:
9696
arguments: publishToMavenLocal

.github/workflows/codeql-analysis.yml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -52,11 +52,10 @@ jobs:
5252

5353
- uses: gradle/actions/wrapper-validation@ed408507eac070d1f99cc633dbcf757c94c7933a # v4.4.3
5454

55-
- name: Setup Gradle
56-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #4.4.3
57-
5855
- name: Manually build to avoid autobuild failures
59-
run: ./gradlew build
56+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
57+
with:
58+
arguments: build
6059

6160
- name: Perform CodeQL Analysis
6261
uses: github/codeql-action/analyze@16df4fbc19aea13d921737861d6c622bf3cefe23 #v3.30.3

.github/workflows/daily-scan.yml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -50,11 +50,10 @@ jobs:
5050
- name: Publish patched dependencies to maven local
5151
uses: ./.github/actions/patch-dependencies
5252

53-
- name: Setup Gradle
54-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #4.4.3
55-
5653
- name: Build JAR
57-
run: ./gradlew assemble -PlocalDocker=true
54+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
55+
with:
56+
arguments: assemble -PlocalDocker=true
5857

5958
# See http://jeremylong.github.io/DependencyCheck/dependency-check-cli/ for installation explanation
6059
- name: Install and run dependency scan

.github/workflows/docker-build-smoke-tests-fake-backend.yml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -49,8 +49,7 @@ jobs:
4949
with:
5050
registry: public.ecr.aws
5151

52-
- name: Setup Gradle
53-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #4.4.3
54-
5552
- name: Build and push docker image
56-
run: ./gradlew :smoke-tests:fakebackend:jib
53+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
54+
with:
55+
arguments: :smoke-tests:fakebackend:jib

.github/workflows/e2e-tests-app-with-java-agent.yml

Lines changed: 3 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -64,11 +64,10 @@ jobs:
6464
with:
6565
registry: public.ecr.aws
6666

67-
- name: Setup Gradle
68-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #4.4.3
69-
7067
- name: Build and push agent and testing docker images with Gradle
71-
run: ./gradlew jib
68+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70
69+
with:
70+
arguments: jib
7271
env:
7372
COMMIT_HASH: ${{ inputs.image_tag }}
7473

.github/workflows/e2e-tests-with-operator.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -71,7 +71,7 @@ jobs:
7171
registry: public.ecr.aws
7272

7373
- name: Build and push Sample-Apps without Auto-Instrumentation Agent
74-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #v4.4.3
74+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70
7575

7676
- name: Build and push Sample-Apps with Auto-Instrumentation Agent
7777
run: jibBuildWithoutAgent

.github/workflows/main-build.yml

Lines changed: 6 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -89,11 +89,10 @@ jobs:
8989
with:
9090
registry: public.ecr.aws
9191

92-
- name: Setup Gradle
93-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #4.4.3
94-
9592
- name: Build snapshot with Gradle
96-
run: ./gradlew build integrationTests snapshot --stacktrace -PenableCoverage=true -PlocalDocker=true
93+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
94+
with:
95+
arguments: build integrationTests snapshot --stacktrace -PenableCoverage=true -PlocalDocker=true
9796
env:
9897
PUBLISH_TOKEN_USERNAME: ${{ secrets.PUBLISH_TOKEN_USERNAME }}
9998
PUBLISH_TOKEN_PASSWORD: ${{ secrets.PUBLISH_TOKEN_PASSWORD }}
@@ -222,11 +221,10 @@ jobs:
222221
- name: Pull base image of Contract Tests Sample Apps
223222
run: docker pull public.ecr.aws/docker/library/amazoncorretto:23-alpine
224223

225-
- name: Setup Gradle
226-
uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a #v4.4.3
227-
228224
- name: Build snapshot with Gradle
229-
run: ./gradlew contractTests -PlocalDocker=true
225+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
226+
with:
227+
arguments: contractTests -PlocalDocker=true
230228

231229
application-signals-lambda-layer-build:
232230
runs-on: ubuntu-latest

.github/workflows/nightly-upstream-snapshot-build.yml

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -23,7 +23,7 @@ jobs:
2323
image_name: ${{ steps.imageOutput.outputs.imageName }}
2424

2525
steps:
26-
- uses: actions/checkout@v5
26+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2727
with:
2828
fetch-depth: 0
2929

@@ -34,7 +34,7 @@ jobs:
3434

3535
# cache local patch outputs
3636
- name: Cache local Maven repository
37-
uses: actions/cache@v3
37+
uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
3838
with:
3939
path: |
4040
~/.m2/repository/io/opentelemetry/
@@ -49,18 +49,18 @@ jobs:
4949
- uses: gradle/actions/wrapper-validation@ed408507eac070d1f99cc633dbcf757c94c7933a # v4.4.3
5050

5151
- name: Configure AWS Credentials
52-
uses: aws-actions/configure-aws-credentials@v4
52+
uses: aws-actions/configure-aws-credentials@a03048d87541d1d9fcf2ecf528a4a65ba9bd7838 #v5.0.0
5353
with:
5454
role-to-assume: ${{ secrets.AWS_ASSUME_ROLE_ARN }}
5555
aws-region: ${{ env.AWS_DEFAULT_REGION }}
5656

5757
- name: Log in to AWS ECR
58-
uses: docker/login-action@v3
58+
uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 #v3.5.0
5959
with:
6060
registry: public.ecr.aws
6161

6262
- name: Build snapshot with Gradle
63-
uses: gradle/gradle-build-action@v3
63+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
6464
with:
6565
arguments: build --stacktrace -PenableCoverage=true -PtestUpstreamSnapshots=true
6666
env:
@@ -95,7 +95,7 @@ jobs:
9595
snapshot-ecr-role: ${{ secrets.JAVA_INSTRUMENTATION_SNAPSHOT_ECR }}
9696

9797
- name: Upload to GitHub Actions
98-
uses: actions/upload-artifact@v4
98+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 #v4.6.2
9999
with:
100100
name: aws-opentelemetry-agent.jar
101101
path: otelagent/build/libs/aws-opentelemetry-agent-*.jar
@@ -129,7 +129,7 @@ jobs:
129129
runs-on: ubuntu-latest
130130
needs: build
131131
steps:
132-
- uses: actions/checkout@v5
132+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
133133
with:
134134
fetch-depth: 0
135135
- uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
@@ -139,21 +139,21 @@ jobs:
139139
- uses: gradle/actions/wrapper-validation@ed408507eac070d1f99cc633dbcf757c94c7933a # v4.4.3
140140

141141
- name: Configure AWS Credentials
142-
uses: aws-actions/configure-aws-credentials@v4
142+
uses: aws-actions/configure-aws-credentials@a03048d87541d1d9fcf2ecf528a4a65ba9bd7838 #v5.0.0
143143
with:
144144
role-to-assume: ${{ secrets.AWS_ASSUME_ROLE_ARN }}
145145
aws-region: ${{ env.AWS_DEFAULT_REGION }}
146146

147147
- name: Log in to AWS ECR
148-
uses: docker/login-action@v3
148+
uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 #v3.5.0
149149
with:
150150
registry: public.ecr.aws
151151

152152
- name: Pull base image of Contract Tests Sample Apps
153153
run: docker pull public.ecr.aws/docker/library/amazoncorretto:23-alpine
154154

155155
- name: Build snapshot with Gradle
156-
uses: gradle/gradle-build-action@v3
156+
uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0
157157
with:
158158
arguments: contractTests -PtestUpstreamSnapshots=true -PlocalDocker=true
159159

0 commit comments

Comments
 (0)