diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml index a458633d..bb5441a3 100644 --- a/.github/workflows/labeler.yml +++ b/.github/workflows/labeler.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Get token id: get_token - uses: actions/create-github-app-token@v2 + uses: actions/create-github-app-token@v3 with: app-id: ${{ secrets.OBS_AUTOMATION_APP_ID }} private-key: ${{ secrets.OBS_AUTOMATION_APP_PEM }} diff --git a/.github/workflows/release-mockopampserver.yml b/.github/workflows/release-mockopampserver.yml index 83604336..14ee2246 100644 --- a/.github/workflows/release-mockopampserver.yml +++ b/.github/workflows/release-mockopampserver.yml @@ -34,13 +34,13 @@ jobs: package-manager-cache: false # Multiple steps to push a docker image. - - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0 + - uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 with: # NOTE: disable the cache poisoning vector attack cache-binary: false - id: docker-meta - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: ${{ env.DOCKER_IMAGE_NAME }} flavor: | @@ -52,14 +52,14 @@ jobs: org.opencontainers.image.vendor=Elastic org.opencontainers.image.title=mockopampserver org.opencontainers.image.description=A mock OpAMP server, for dev and testing - - uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0 + - uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push Docker image id: docker-push - uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2 + uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0 with: context: ${{ env.PKGDIR }} platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/release-mockotlpserver.yml b/.github/workflows/release-mockotlpserver.yml index 6a968ff4..9ff064c0 100644 --- a/.github/workflows/release-mockotlpserver.yml +++ b/.github/workflows/release-mockotlpserver.yml @@ -34,13 +34,13 @@ jobs: package-manager-cache: false # Push a Docker image. - - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0 + - uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 with: # NOTE: disable the cache poisoning vector attack cache-binary: false - id: docker-meta - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: ${{ env.DOCKER_IMAGE_NAME }} flavor: | @@ -52,14 +52,14 @@ jobs: org.opencontainers.image.vendor=Elastic org.opencontainers.image.title=mockotlpserver org.opencontainers.image.description=A mock OTLP server, for dev and testing - - uses: docker/login-action@v3 + - uses: docker/login-action@v4 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push Docker image id: docker-push - uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2 + uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0 with: context: ${{ env.PKGDIR }} platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e7f4ece6..e4868e95 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -41,13 +41,13 @@ jobs: # Setup a Docker "buildx" builder container, used by "build-push-action" # below for multi-platform image builds. Notes on multi-platform images: # https://github.com/elastic/apm-agent-nodejs/issues/4038#issuecomment-2130406402 - - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0 + - uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 with: # NOTE: disable the cache poisoning vector attack cache-binary: false - name: Log in to the Elastic Container registry - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 + uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0 with: registry: ${{ secrets.ELASTIC_DOCKER_REGISTRY }} username: ${{ secrets.ELASTIC_DOCKER_USERNAME }} @@ -55,7 +55,7 @@ jobs: - name: Extract metadata (tags, labels) id: docker-meta - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: ${{ env.DOCKER_IMAGE_NAME }} flavor: | @@ -72,7 +72,7 @@ jobs: - name: Build and Push Docker Image id: docker-push - uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2 + uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0 with: context: . platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/slack-lite.yml b/.github/workflows/slack-lite.yml index 971ea0ff..0aa25e6d 100644 --- a/.github/workflows/slack-lite.yml +++ b/.github/workflows/slack-lite.yml @@ -119,7 +119,7 @@ jobs: f.write("payload={}".format(json.dumps(payload))) - name: Post Slack message - uses: slackapi/slack-github-action@v2.1.1 + uses: slackapi/slack-github-action@v3.0.1 with: method: chat.postMessage token: ${{ secrets.SLACK_BOT_TOKEN }}