Skip to content

Commit b08fbb8

Browse files
dependabot[bot]dependabot[bot]
authored
Bump the minor-patch group across 1 directory with 3 updates
Bumps the minor-patch group with 3 updates in the / directory: [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance), [actions/setup-python](https://github.com/actions/setup-python) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/attest-build-provenance` from 2.1.0 to 2.2.0 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@7668571...520d128) Updates `actions/setup-python` from 5.3.0 to 5.4.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@0b93645...4237552) Updates `docker/build-push-action` from 6.12.0 to 6.13.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@67a2d40...ca877d9) --- updated-dependencies: - dependency-name: actions/attest-build-provenance dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-patch ... Signed-off-by: dependabot[bot] <[email protected]>
1 parent b6036b6 commit b08fbb8

File tree

3 files changed

+5
-5
lines changed

3 files changed

+5
-5
lines changed

.github/workflows/attest.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,6 @@ jobs:
2020
- uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
2121
with:
2222
name: ${{ inputs.artifact }}
23-
- uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # v2.1.0
23+
- uses: actions/attest-build-provenance@520d128f165991a6c774bcb264f323e3d70747f4 # v2.2.0
2424
with:
2525
subject-path: "*"

.github/workflows/build-pyfib.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -15,15 +15,15 @@ jobs:
1515
steps:
1616
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
1717

18-
- uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
18+
- uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0
1919
with:
2020
python-version: "3.x"
2121

2222
- name: Build artifact
2323
run: tar -czf pyfib.tar.gz ./pyfib
2424

2525
- name: Attest build provenance
26-
uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # v2.1.0
26+
uses: actions/attest-build-provenance@520d128f165991a6c774bcb264f323e3d70747f4 # v2.2.0
2727
with:
2828
subject-path: "pyfib.tar.gz"
2929

.github/workflows/ghcr-publish.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -40,15 +40,15 @@ jobs:
4040

4141
- name: Build and push
4242
id: build-and-push
43-
uses: docker/build-push-action@67a2d409c0a876cbe6b11854e3e25193efe4e62d # v6.12.0
43+
uses: docker/build-push-action@ca877d9245402d1537745e0e356eab47c3520991 # v6.13.0
4444
with:
4545
context: .
4646
platforms: 'linux/amd64,linux/arm64'
4747
push: true
4848
tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest
4949

5050
- name: Attest artifact
51-
uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # v2.1.0
51+
uses: actions/attest-build-provenance@520d128f165991a6c774bcb264f323e3d70747f4 # v2.2.0
5252
with:
5353
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
5454
subject-digest: ${{ steps.build-and-push.outputs.digest }}

0 commit comments

Comments
 (0)