diff --git a/.github/workflows/pr-dependabot.yaml b/.github/workflows/pr-dependabot.yaml index d0c4fafb35..5483ccefbe 100644 --- a/.github/workflows/pr-dependabot.yaml +++ b/.github/workflows/pr-dependabot.yaml @@ -20,12 +20,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code into the Go module directory - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # tag=v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # tag=v6.0.0 - name: Calculate go version id: vars run: echo "go_version=$(make go-version)" >> $GITHUB_OUTPUT - name: Set up Go - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # tag=v6.0.0 + uses: actions/setup-go@4dc6199c7b1a012772edbd06daecab0f50c9053c # tag=v6.1.0 with: go-version: ${{ steps.vars.outputs.go_version }} - uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # tag=v4.3.0 diff --git a/.github/workflows/pr-link-check.yaml b/.github/workflows/pr-link-check.yaml index ad003e6d85..8f3a751e70 100644 --- a/.github/workflows/pr-link-check.yaml +++ b/.github/workflows/pr-link-check.yaml @@ -16,7 +16,7 @@ jobs: steps: - name: Clone repository - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: fetch-depth: 0 ref: ${{github.event.pull_request.head.ref}} diff --git a/.github/workflows/pr-verifer.yml b/.github/workflows/pr-verifer.yml index 28bc30eb88..a333289fcd 100644 --- a/.github/workflows/pr-verifer.yml +++ b/.github/workflows/pr-verifer.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out repository - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: Validate PR Title env: diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 83d77f3376..436623714c 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -20,7 +20,7 @@ jobs: if: github.repository == 'kubernetes-sigs/cluster-api-provider-openstack' steps: - name: Checkout code - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # tag=v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # tag=v6.0.0 with: fetch-depth: 0 - name: Get changed files @@ -90,14 +90,14 @@ jobs: env: RELEASE_TAG: ${{needs.push_release_tags.outputs.release_tag}} - name: checkout code - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # tag=v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # tag=v6.0.0 with: fetch-depth: 0 ref: ${{ env.RELEASE_TAG }} - name: Calculate go version run: echo "go_version=$(make go-version)" >> ${GITHUB_ENV} - name: Set up Go - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # tag=v6.0.0 + uses: actions/setup-go@4dc6199c7b1a012772edbd06daecab0f50c9053c # tag=v6.1.0 with: go-version: ${{ env.go_version }} - name: generate release artifacts diff --git a/.github/workflows/security-scan.yaml b/.github/workflows/security-scan.yaml index 418b8db864..8502b48911 100644 --- a/.github/workflows/security-scan.yaml +++ b/.github/workflows/security-scan.yaml @@ -18,14 +18,14 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # tag=v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # tag=v6.0.0 with: ref: ${{ matrix.branch }} - name: Calculate go version id: vars run: echo "go_version=$(make go-version)" >> $GITHUB_OUTPUT - name: Set up Go - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # tag=v6.0.0 + uses: actions/setup-go@4dc6199c7b1a012772edbd06daecab0f50c9053c # tag=v6.1.0 with: go-version: ${{ steps.vars.outputs.go_version }} - name: Run verify security target diff --git a/.github/workflows/update-golangci-lint.yaml b/.github/workflows/update-golangci-lint.yaml index 0d193d1a31..7bb8f85bb9 100644 --- a/.github/workflows/update-golangci-lint.yaml +++ b/.github/workflows/update-golangci-lint.yaml @@ -18,7 +18,7 @@ jobs: current_version: ${{ steps.check_version.outputs.current_version }} steps: - name: Checkout repository - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: fetch-depth: 0 - name: Get latest golangci-lint version @@ -39,7 +39,7 @@ jobs: sed -i "s/GOLANGCI_LINT_VERSION ?= .*/GOLANGCI_LINT_VERSION ?= ${{ steps.get_version.outputs.latest_version }}/" hack/tools/Makefile - name: Create Pull Request if: ${{ steps.check_version.outputs.current_version != steps.get_version.outputs.latest_version }} - uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # tag=v7.0.8 + uses: peter-evans/create-pull-request@84ae59a2cdc2258d6fa0732dd66352dddae2a412 # tag=v7.0.9 with: commit-message: "This commit updates golangci-lint to version v${{ steps.get_version.outputs.latest_version }}." title: ":seedling: chore: bump golangci-lint to v${{ steps.get_version.outputs.latest_version }}" diff --git a/.github/workflows/yamllint.yaml b/.github/workflows/yamllint.yaml index a4a399bdae..67bf19b5c4 100644 --- a/.github/workflows/yamllint.yaml +++ b/.github/workflows/yamllint.yaml @@ -14,7 +14,7 @@ jobs: - name: Install yamllint run: sudo apt-get update && sudo apt-get install -y yamllint - - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0 + - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: yaml-lint run: yamllint -c .yamllint.yaml .