Skip to content

Commit a1f19b7

Browse files
dargudear-googledargudear-google
authored
Merge branch 'kubernetes-sigs:main' into rotation
2 parents 935b2e8 + 9783f7e commit a1f19b7

33 files changed

+126
-96
lines changed

.github/dependabot.yml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,7 @@ updates:
77
commit-message:
88
prefix: "chore"
99
labels:
10+
- "area/dependency"
1011
- "ok-to-test"
1112

1213
- package-ecosystem: "gomod"
@@ -16,6 +17,7 @@ updates:
1617
commit-message:
1718
prefix: "chore"
1819
labels:
20+
- "area/dependency"
1921
- "ok-to-test"
2022

2123
- package-ecosystem: docker
@@ -25,6 +27,7 @@ updates:
2527
commit-message:
2628
prefix: "chore"
2729
labels:
30+
- "area/dependency"
2831
- "ok-to-test"
2932

3033
- package-ecosystem: docker
@@ -34,6 +37,7 @@ updates:
3437
commit-message:
3538
prefix: "chore"
3639
labels:
40+
- "area/dependency"
3741
- "ok-to-test"
3842

3943
- package-ecosystem: docker
@@ -43,6 +47,7 @@ updates:
4347
commit-message:
4448
prefix: "chore"
4549
labels:
50+
- "area/dependency"
4651
- "ok-to-test"
4752

4853
- package-ecosystem: gomod
@@ -52,4 +57,5 @@ updates:
5257
commit-message:
5358
prefix: "chore"
5459
labels:
60+
- "area/dependency"
5561
- "ok-to-test"

.github/workflows/chart.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -16,13 +16,13 @@ permissions:
1616

1717
jobs:
1818
deploy:
19-
runs-on: ubuntu-20.04
19+
runs-on: ubuntu-latest
2020
steps:
2121
- name: Harden Runner
22-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
22+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2323
with:
2424
egress-policy: audit
25-
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
25+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
2626
with:
2727
submodules: true
2828
fetch-depth: 0

.github/workflows/codecov.yaml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -14,16 +14,16 @@ jobs:
1414
runs-on: ubuntu-latest
1515
steps:
1616
- name: Harden Runner
17-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
17+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
1818
with:
1919
egress-policy: audit
2020

21-
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
22-
- uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
21+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
22+
- uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
2323
with:
2424
go-version: "^1.20"
2525
- name: Run tests
2626
run: make go-test
27-
- uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303
27+
- uses: codecov/codecov-action@ad3126e916f78f00edff4ed0317cf185271ccc2d
2828
with:
2929
files: ./cover.out

.github/workflows/codeql.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -21,20 +21,20 @@ jobs:
2121

2222
steps:
2323
- name: Harden Runner
24-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
24+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2525
with:
2626
egress-policy: audit
2727

2828
- name: Checkout repository
29-
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
29+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
3030

3131
- name: Initialize CodeQL
32-
uses: github/codeql-action/init@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
32+
uses: github/codeql-action/init@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
3333
with:
3434
languages: go
3535

3636
- name: Autobuild
37-
uses: github/codeql-action/autobuild@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
37+
uses: github/codeql-action/autobuild@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
3838

3939
- name: Perform CodeQL Analysis
40-
uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
40+
uses: github/codeql-action/analyze@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17

.github/workflows/create-release.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,15 +9,15 @@ permissions:
99

1010
jobs:
1111
create-release:
12-
runs-on: ubuntu-20.04
12+
runs-on: ubuntu-latest
1313
steps:
1414
- name: Harden Runner
15-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
15+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
1616
with:
1717
egress-policy: audit
1818

1919
- name: Checkout
20-
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
20+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
2121
with:
2222
fetch-depth: 0
2323
- name: Goreleaser

.github/workflows/dependency-review.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -17,11 +17,11 @@ jobs:
1717
runs-on: ubuntu-latest
1818
steps:
1919
- name: Harden Runner
20-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
20+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2121
with:
2222
egress-policy: audit
2323

2424
- name: 'Checkout Repository'
25-
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
25+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
2626
- name: 'Dependency Review'
27-
uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
27+
uses: actions/dependency-review-action@38ecb5b593bf0eb19e335c03f97670f792489a8b # v4.7.0

.github/workflows/e2e.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -32,11 +32,11 @@ jobs:
3232
KUBERNETES_VERSION: ["v1.30.10", "v1.31.6", "v1.32.3"]
3333
steps:
3434
- name: Harden Runner
35-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
35+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
3636
with:
3737
egress-policy: audit
3838
- name: Checkout
39-
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
39+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
4040
with:
4141
submodules: true
4242
fetch-depth: 0
@@ -45,7 +45,7 @@ jobs:
4545
with:
4646
bats-version: 1.4.1
4747
- name: Setup Kind
48-
uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
48+
uses: engineerd/setup-kind@71e45b960fc8dd50b4aeabf6eb6ef2ca0920b4c1 # v0.6.2
4949
with:
5050
version: "v0.27.0"
5151
image: "kindest/node:${{ matrix.KUBERNETES_VERSION }}"

.github/workflows/markdown-link-check.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -22,11 +22,11 @@ jobs:
2222
runs-on: ubuntu-latest
2323
steps:
2424
- name: Harden Runner
25-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
25+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2626
with:
2727
egress-policy: audit
28-
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
29-
- uses: gaurav-nelson/github-action-markdown-link-check@1b916f2cf6c36510a6059943104e3c42ce6c16bc # v1.0.16
28+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
29+
- uses: gaurav-nelson/github-action-markdown-link-check@3c3b66f1f7d0900e37b71eca45b63ea9eedfce31 # v1.0.17
3030
with:
3131
# this will only show errors in the output
3232
use-quiet-mode: 'yes'

.github/workflows/scan-vulns.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -19,11 +19,11 @@ jobs:
1919
timeout-minutes: 15
2020
steps:
2121
- name: Harden Runner
22-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
22+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2323
with:
2424
egress-policy: audit
2525

26-
- uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
26+
- uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
2727
with:
2828
go-version: "1.21"
2929
check-latest: true

.github/workflows/scorecards.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -31,17 +31,17 @@ jobs:
3131

3232
steps:
3333
- name: Harden Runner
34-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
34+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
3535
with:
3636
egress-policy: audit
3737

3838
- name: "Checkout code"
39-
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.0.0
39+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.0.0
4040
with:
4141
persist-credentials: false
4242

4343
- name: "Run analysis"
44-
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
44+
uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1
4545
with:
4646
results_file: results.sarif
4747
results_format: sarif
@@ -63,14 +63,14 @@ jobs:
6363
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
6464
# format to the repository Actions tab.
6565
- name: "Upload artifact"
66-
uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
66+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
6767
with:
6868
name: SARIF file
6969
path: results.sarif
7070
retention-days: 5
7171

7272
# Upload the results to GitHub's code scanning dashboard.
7373
- name: "Upload to code-scanning"
74-
uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
74+
uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
7575
with:
7676
sarif_file: results.sarif

0 commit comments

Comments
 (0)