diff --git a/.github/workflows/__greetings.yml b/.github/workflows/__greetings.yml index f0c5734..5134597 100644 --- a/.github/workflows/__greetings.yml +++ b/.github/workflows/__greetings.yml @@ -10,7 +10,7 @@ permissions: {} jobs: greetings: - uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 permissions: contents: read issues: write diff --git a/.github/workflows/__main-ci.yml b/.github/workflows/__main-ci.yml index 0afefb2..aebafa0 100644 --- a/.github/workflows/__main-ci.yml +++ b/.github/workflows/__main-ci.yml @@ -35,7 +35,7 @@ jobs: release: needs: ci if: github.event_name != 'schedule' - uses: hoverkraft-tech/ci-github-publish/.github/workflows/release-actions.yml@5358acdb08b912114974ecc06a057cda8d391aa5 # 0.17.0 + uses: hoverkraft-tech/ci-github-publish/.github/workflows/release-actions.yml@55f6193fb7a9eaab81f5db18aa0c3400971d87b3 # 0.17.3 permissions: contents: read with: diff --git a/.github/workflows/__need-fix-to-issue.yml b/.github/workflows/__need-fix-to-issue.yml index 3c41690..505adb9 100644 --- a/.github/workflows/__need-fix-to-issue.yml +++ b/.github/workflows/__need-fix-to-issue.yml @@ -18,7 +18,7 @@ permissions: {} jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 permissions: contents: read issues: write diff --git a/.github/workflows/__semantic-pull-request.yml b/.github/workflows/__semantic-pull-request.yml index 48df6a5..062d192 100644 --- a/.github/workflows/__semantic-pull-request.yml +++ b/.github/workflows/__semantic-pull-request.yml @@ -12,7 +12,7 @@ permissions: {} jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 permissions: contents: write pull-requests: write diff --git a/.github/workflows/__shared-ci.yml b/.github/workflows/__shared-ci.yml index 316defd..1d4eae0 100644 --- a/.github/workflows/__shared-ci.yml +++ b/.github/workflows/__shared-ci.yml @@ -7,7 +7,7 @@ permissions: {} jobs: linter: - uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 permissions: contents: read statuses: write diff --git a/.github/workflows/__stale.yml b/.github/workflows/__stale.yml index c66ed4d..fa4e1a0 100644 --- a/.github/workflows/__stale.yml +++ b/.github/workflows/__stale.yml @@ -8,7 +8,7 @@ permissions: {} jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 permissions: issues: write pull-requests: write diff --git a/.github/workflows/__test-action-dependencies-cache.yml b/.github/workflows/__test-action-dependencies-cache.yml index f7f46c5..912d746 100644 --- a/.github/workflows/__test-action-dependencies-cache.yml +++ b/.github/workflows/__test-action-dependencies-cache.yml @@ -28,7 +28,7 @@ jobs: steps: # jscpd:ignore-start - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - id: setup-node uses: ./actions/setup-node diff --git a/.github/workflows/__test-action-get-package-manager.yml b/.github/workflows/__test-action-get-package-manager.yml index 1f82edc..a9b28cd 100644 --- a/.github/workflows/__test-action-get-package-manager.yml +++ b/.github/workflows/__test-action-get-package-manager.yml @@ -42,7 +42,7 @@ jobs: install-command: yarn install --frozen-lockfile run-script-command: yarn steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - id: get-package-manager uses: ./actions/get-package-manager diff --git a/.github/workflows/__test-action-has-installed-dependencies.yml b/.github/workflows/__test-action-has-installed-dependencies.yml index 7ceb5d7..7e733b3 100644 --- a/.github/workflows/__test-action-has-installed-dependencies.yml +++ b/.github/workflows/__test-action-has-installed-dependencies.yml @@ -30,7 +30,7 @@ jobs: package-manager: yarn lock-file: yarn.lock steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - id: setup-node uses: ./actions/setup-node diff --git a/.github/workflows/__test-action-setup-node.yml b/.github/workflows/__test-action-setup-node.yml index 5e5082c..a908dd3 100644 --- a/.github/workflows/__test-action-setup-node.yml +++ b/.github/workflows/__test-action-setup-node.yml @@ -34,7 +34,7 @@ jobs: lock-file: yarn.lock run-script-command: yarn steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - run: echo "lts/*" > .nvmrc working-directory: ${{ matrix.working-directory }} diff --git a/.github/workflows/__test-workflow-continuous-integration.yml b/.github/workflows/__test-workflow-continuous-integration.yml index 4cdb897..98cd58b 100644 --- a/.github/workflows/__test-workflow-continuous-integration.yml +++ b/.github/workflows/__test-workflow-continuous-integration.yml @@ -28,7 +28,7 @@ jobs: runs-on: ubuntu-latest needs: act-without-container steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-without-container.outputs.build-artifact-id }} @@ -63,7 +63,7 @@ jobs: packages: write issues: read pull-requests: read - uses: hoverkraft-tech/ci-github-container/.github/workflows/docker-build-images.yml@0d92511a38c93e30ae0f8b82346116946987a9ca # 0.30.0 + uses: hoverkraft-tech/ci-github-container/.github/workflows/docker-build-images.yml@d706f273f42e4b4b0caf1b3a385cb8b9cb058fa0 # 0.30.2 with: sign: false images: | @@ -104,7 +104,7 @@ jobs: runs-on: ubuntu-latest needs: act-with-container steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-with-container.outputs.build-artifact-id }} @@ -152,7 +152,7 @@ jobs: runs-on: ubuntu-latest needs: act-with-container-advanced steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: artifact-ids: ${{ needs.act-with-container-advanced.outputs.build-artifact-id }} diff --git a/.github/workflows/continuous-integration.yml b/.github/workflows/continuous-integration.yml index acd3498..0f4f49e 100644 --- a/.github/workflows/continuous-integration.yml +++ b/.github/workflows/continuous-integration.yml @@ -293,11 +293,11 @@ jobs: security-events: write runs-on: *ci-runner steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 - - uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 + - uses: github/codeql-action/init@fe4161a26a8629af62121b670040955b330f9af2 # v4.31.6 with: languages: ${{ inputs.code-ql }} - - uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5 + - uses: github/codeql-action/analyze@fe4161a26a8629af62121b670040955b330f9af2 # v4.31.6 dependency-review: name: 🛡️ Dependency Review @@ -306,7 +306,7 @@ jobs: contents: read runs-on: *ci-runner steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 - uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 setup: @@ -334,7 +334,7 @@ jobs: steps: - name: Checkout repository if: inputs.container == '' - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 - id: working-directory uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0 @@ -460,11 +460,11 @@ jobs: packages: read id-token: write # Needed for getting local workflow actions steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: inputs.container == '' - id: local-workflow-actions - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: actions-path: actions @@ -500,7 +500,7 @@ jobs: path-mapping: ${{ needs.prepare.outputs.path-mapping || '' }} # jscpd:ignore-start - - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: always() && steps.local-workflow-actions.outputs.repository with: actions-path: actions @@ -523,11 +523,11 @@ jobs: outputs: artifact-id: ${{ steps.build.outputs.artifact-id }} steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: needs.setup.outputs.build-commands && inputs.container == '' - id: local-workflow-actions - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: actions-path: actions @@ -543,7 +543,7 @@ jobs: build-artifact: ${{ needs.setup.outputs.build-artifact }} # jscpd:ignore-start - - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: always() && steps.local-workflow-actions.outputs.repository with: actions-path: actions @@ -566,7 +566,7 @@ jobs: packages: read id-token: write # Needed for getting local workflow actions steps: - - uses: hoverkraft-tech/ci-github-common/actions/checkout@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/checkout@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: inputs.container == '' - if: needs.build.outputs.artifact-id && inputs.container == '' @@ -576,7 +576,7 @@ jobs: path: "/" - id: local-workflow-actions - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: actions-path: actions @@ -618,7 +618,7 @@ jobs: github-token: ${{ secrets.github-token || github.token }} # jscpd:ignore-start - - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + - uses: hoverkraft-tech/ci-github-common/actions/local-workflow-actions@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 if: always() && steps.local-workflow-actions.outputs.repository with: actions-path: actions diff --git a/actions/lint/action.yml b/actions/lint/action.yml index 48f30fc..74a38ff 100644 --- a/actions/lint/action.yml +++ b/actions/lint/action.yml @@ -103,7 +103,7 @@ runs: - name: 📊 Parse lint reports if: always() - uses: hoverkraft-tech/ci-github-common/actions/parse-ci-reports@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/parse-ci-reports@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: working-directory: ${{ inputs.working-directory }} report-paths: ${{ inputs.report-file || 'auto:lint' }} diff --git a/actions/setup-node/action.yml b/actions/setup-node/action.yml index 8327671..6218dc9 100644 --- a/actions/setup-node/action.yml +++ b/actions/setup-node/action.yml @@ -135,7 +135,7 @@ runs: package_json_file: ${{ inputs.working-directory }}/package.json run_install: false - - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 + - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 with: node-version-file: ${{ steps.get-node-version-file.outputs.node-version-file }} cache: ${{ steps.get-package-manager.outputs.cache-dependency-path != '' && steps.get-package-manager.outputs.package-manager || '' }} diff --git a/actions/test/action.yml b/actions/test/action.yml index 6f632c7..231cf36 100644 --- a/actions/test/action.yml +++ b/actions/test/action.yml @@ -126,7 +126,7 @@ runs: - name: 📊 Parse coverage reports if: always() && inputs.coverage == 'github' id: parse-coverage-reports - uses: hoverkraft-tech/ci-github-common/actions/parse-ci-reports@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/parse-ci-reports@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: working-directory: ${{ inputs.working-directory }} report-name: "Coverage Results" @@ -136,7 +136,7 @@ runs: - name: 📊 Add coverage PR comment if: always() && inputs.coverage == 'github' && github.event_name == 'pull_request' && steps.parse-coverage-reports.outputs.markdown - uses: hoverkraft-tech/ci-github-common/actions/create-or-update-comment@2d3c39a47c6af3b9d57a230bcaf57d03093e96db # 0.31.2 + uses: hoverkraft-tech/ci-github-common/actions/create-or-update-comment@5ac504609f6ef35c5ac94bd8199063aa32104721 # 0.31.3 with: title: "Code Coverage Report" body: ${{ steps.parse-coverage-reports.outputs.markdown }}