diff --git a/.github/workflows/__greetings.yml b/.github/workflows/__greetings.yml index fdec99d..b3846ab 100644 --- a/.github/workflows/__greetings.yml +++ b/.github/workflows/__greetings.yml @@ -13,4 +13,4 @@ permissions: jobs: greetings: - uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 diff --git a/.github/workflows/__need-fix-to-issue.yml b/.github/workflows/__need-fix-to-issue.yml index f4effa6..6e99b09 100644 --- a/.github/workflows/__need-fix-to-issue.yml +++ b/.github/workflows/__need-fix-to-issue.yml @@ -24,7 +24,7 @@ concurrency: jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 with: manual-commit-ref: ${{ inputs.manual-commit-ref }} manual-base-ref: ${{ inputs.manual-base-ref }} diff --git a/.github/workflows/__semantic-pull-request.yml b/.github/workflows/__semantic-pull-request.yml index 864189b..3db9d0e 100644 --- a/.github/workflows/__semantic-pull-request.yml +++ b/.github/workflows/__semantic-pull-request.yml @@ -12,7 +12,7 @@ permissions: {} jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 permissions: contents: write pull-requests: write diff --git a/.github/workflows/__shared-ci.yml b/.github/workflows/__shared-ci.yml index f7b709a..37dda4a 100644 --- a/.github/workflows/__shared-ci.yml +++ b/.github/workflows/__shared-ci.yml @@ -7,7 +7,7 @@ permissions: {} jobs: linter: - uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 permissions: contents: read statuses: write diff --git a/.github/workflows/__stale.yml b/.github/workflows/__stale.yml index e1e90dd..4f99233 100644 --- a/.github/workflows/__stale.yml +++ b/.github/workflows/__stale.yml @@ -10,4 +10,4 @@ permissions: jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 diff --git a/.github/workflows/__test-action-dependencies-cache.yml b/.github/workflows/__test-action-dependencies-cache.yml index 46eb628..f7f46c5 100644 --- a/.github/workflows/__test-action-dependencies-cache.yml +++ b/.github/workflows/__test-action-dependencies-cache.yml @@ -28,7 +28,7 @@ jobs: steps: # jscpd:ignore-start - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - id: setup-node uses: ./actions/setup-node diff --git a/.github/workflows/__test-action-get-package-manager.yml b/.github/workflows/__test-action-get-package-manager.yml index ca0ba3c..1f82edc 100644 --- a/.github/workflows/__test-action-get-package-manager.yml +++ b/.github/workflows/__test-action-get-package-manager.yml @@ -42,7 +42,7 @@ jobs: install-command: yarn install --frozen-lockfile run-script-command: yarn steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - id: get-package-manager uses: ./actions/get-package-manager diff --git a/.github/workflows/__test-action-has-installed-dependencies.yml b/.github/workflows/__test-action-has-installed-dependencies.yml index cbd51ed..7ceb5d7 100644 --- a/.github/workflows/__test-action-has-installed-dependencies.yml +++ b/.github/workflows/__test-action-has-installed-dependencies.yml @@ -30,7 +30,7 @@ jobs: package-manager: yarn lock-file: yarn.lock steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - id: setup-node uses: ./actions/setup-node diff --git a/.github/workflows/__test-action-setup-node.yml b/.github/workflows/__test-action-setup-node.yml index 2b46bad..5e5082c 100644 --- a/.github/workflows/__test-action-setup-node.yml +++ b/.github/workflows/__test-action-setup-node.yml @@ -34,7 +34,7 @@ jobs: lock-file: yarn.lock run-script-command: yarn steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - run: echo "lts/*" > .nvmrc working-directory: ${{ matrix.working-directory }} diff --git a/.github/workflows/__test-workflow-continuous-integration.yml b/.github/workflows/__test-workflow-continuous-integration.yml index a3f4f38..d26cd59 100644 --- a/.github/workflows/__test-workflow-continuous-integration.yml +++ b/.github/workflows/__test-workflow-continuous-integration.yml @@ -27,7 +27,7 @@ jobs: runs-on: ubuntu-latest needs: act-without-container steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-without-container.outputs.build-artifact-id }} @@ -101,7 +101,7 @@ jobs: runs-on: ubuntu-latest needs: act-with-container steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-with-container.outputs.build-artifact-id }} @@ -148,7 +148,7 @@ jobs: runs-on: ubuntu-latest needs: act-with-container-advanced steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-with-container-advanced.outputs.build-artifact-id }} diff --git a/.github/workflows/continuous-integration.yml b/.github/workflows/continuous-integration.yml index d2565c6..671dff9 100644 --- a/.github/workflows/continuous-integration.yml +++ b/.github/workflows/continuous-integration.yml @@ -230,11 +230,11 @@ jobs: security-events: write runs-on: ${{ inputs.runs-on && fromJson(inputs.runs-on) || 'ubuntu-latest' }} steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 - - uses: github/codeql-action/init@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 + - uses: github/codeql-action/init@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4 with: languages: ${{ inputs.code-ql }} - - uses: github/codeql-action/analyze@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 + - uses: github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4.31.4 dependency-review: name: 🛡️ Dependency Review @@ -243,7 +243,7 @@ jobs: contents: read runs-on: ${{ inputs.runs-on && fromJson(inputs.runs-on) || 'ubuntu-latest' }} steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 - uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 setup: @@ -267,7 +267,7 @@ jobs: build-artifact: ${{ steps.build-variables.outputs.artifact }} steps: - if: needs.prepare.outputs.container-image == null - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 - id: build-variables if: inputs.build != '' @@ -382,12 +382,12 @@ jobs: # FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659 id-token: write steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 if: needs.prepare.outputs.container-image == null - id: oidc uses: ChristopherHX/oidc@73eee1ff03fdfce10eda179f617131532209edbd # v3 - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: path: ./self-workflow repository: ${{ steps.oidc.outputs.job_workflow_repo_name_and_owner }} @@ -438,14 +438,14 @@ jobs: outputs: artifact-id: ${{ steps.build.outputs.artifact-id }} steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 if: needs.setup.outputs.build-commands && needs.prepare.outputs.container-image == null # FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659 - id: oidc if: needs.setup.outputs.build-commands uses: ChristopherHX/oidc@73eee1ff03fdfce10eda179f617131532209edbd # v3 - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 if: needs.setup.outputs.build-commands with: path: ./self-workflow @@ -484,7 +484,7 @@ jobs: # FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659 id-token: write steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 if: needs.prepare.outputs.container-image == null - if: needs.build.outputs.artifact-id && needs.prepare.outputs.container-image == null @@ -496,7 +496,7 @@ jobs: # FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659 - id: oidc uses: ChristopherHX/oidc@73eee1ff03fdfce10eda179f617131532209edbd # v3 - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: path: ./self-workflow repository: ${{ steps.oidc.outputs.job_workflow_repo_name_and_owner }} diff --git a/actions/test/action.yml b/actions/test/action.yml index 3b0e6aa..739c67e 100644 --- a/actions/test/action.yml +++ b/actions/test/action.yml @@ -168,7 +168,7 @@ runs: - name: 📊 Add coverage PR comment if: always() && steps.get-coverage-report-summary.outputs.summary-content && github.event_name == 'pull_request' - uses: hoverkraft-tech/ci-github-common/actions/create-or-update-comment@753288393de1f3d92f687a6761d236ca800f5306 # 0.28.1 + uses: hoverkraft-tech/ci-github-common/actions/create-or-update-comment@d95c78dc4b10250a07e227d3ddf33b0ea093e28d # 0.29.0 with: title: "Code Coverage Report" body: ${{ steps.get-coverage-report-summary.outputs.summary-content }}