From 75f76058f3c4c52450d679040613c976359b84aa Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:40:14 +0100 Subject: [PATCH 1/6] Revert "build(deps): bump actions/checkout in /.github/actions/artifact-extract (#9131)" This reverts commit 3837d19b5888c7fa20bcfa1dbf44d8d1e2e6505d. --- .github/actions/artifact-extract/action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/actions/artifact-extract/action.yml b/.github/actions/artifact-extract/action.yml index 8094503e610..4f6b245f2c0 100644 --- a/.github/actions/artifact-extract/action.yml +++ b/.github/actions/artifact-extract/action.yml @@ -24,7 +24,7 @@ runs: using: "composite" steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - run: echo "Artifact Extract" shell: bash - name: Download artifact From abfa80682e5b7fc84c109cadfb6f7acbad98c39f Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:40:26 +0100 Subject: [PATCH 2/6] Revert "build(deps): bump actions/github-script from 6.4.1 to 7.0.1 (#9127)" This reverts commit e47b1100d182df3b4c4989556512a363649074a1. --- .github/workflows/package_dispatch.yml | 2 +- .github/workflows/pull-request.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/package_dispatch.yml b/.github/workflows/package_dispatch.yml index 49378d9a111..97a03d0d151 100644 --- a/.github/workflows/package_dispatch.yml +++ b/.github/workflows/package_dispatch.yml @@ -9,7 +9,7 @@ jobs: if: github.event.registry_package.package_type == 'npm' && github.event.registry_package.name == 'adf-core' steps: - name: Dispatch event to monorepo - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # v6.4.1 with: github-token: ${{ secrets.PAT_WRITE_PKG }} retries: 3 diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index a53bf4ec52d..92b32bd6e80 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -462,7 +462,7 @@ jobs: fetch-depth: 1 - name: PR contains forbidden labels id: pr-forbidden - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # v6.4.1 with: script: | const issueHasLabels = require('./scripts/github/update/check-issue-has-label.js'); From 4bdaf392093233be98af318188de673fcc2f0916 Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:40:37 +0100 Subject: [PATCH 3/6] Revert "build(deps): bump actions/checkout from 3.6.0 to 4.1.1 (#9128)" This reverts commit da018aadb978780a6fd47ddf4345c7fca3f01d04. --- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/cron-e2e.yml | 2 +- .github/workflows/git-tag.yml | 2 +- .github/workflows/pull-request.yml | 18 +++++++++--------- .github/workflows/rebase.yml | 2 +- .github/workflows/release-branch.yml | 6 +++--- .github/workflows/release.yml | 10 +++++----- 7 files changed, 21 insertions(+), 21 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index b51373ae106..e20c7cf217e 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -22,7 +22,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: # We must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head. diff --git a/.github/workflows/cron-e2e.yml b/.github/workflows/cron-e2e.yml index cb35c569a41..372f5618115 100644 --- a/.github/workflows/cron-e2e.yml +++ b/.github/workflows/cron-e2e.yml @@ -73,7 +73,7 @@ jobs: runs-on: ubuntu-latest name: Initialize artifacts steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - uses: ./.github/actions/artifact-initialize with: artifact-name: global-e2e-result diff --git a/.github/workflows/git-tag.yml b/.github/workflows/git-tag.yml index fff9032acdb..d05932503fd 100644 --- a/.github/workflows/git-tag.yml +++ b/.github/workflows/git-tag.yml @@ -96,7 +96,7 @@ jobs: GITHUB_TOKEN: $BOT_GITHUB_TOKEN steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - id: set-dryrun uses: ./.github/actions/enable-dryrun with: diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 92b32bd6e80..28aaed14e9a 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -116,7 +116,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 @@ -199,7 +199,7 @@ jobs: needs: [check-if-pr-is-approved, pre-checks] steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all tags and branches - uses: ./.github/actions/setup @@ -235,7 +235,7 @@ jobs: exclude: "insights,core,extensions,content-services,process-services,eslint-plugin-eslint-angular,js-api" steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all tags and branches - uses: ./.github/actions/setup @@ -252,7 +252,7 @@ jobs: needs: [setup] steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all tags and branches - uses: ./.github/actions/setup @@ -267,7 +267,7 @@ jobs: needs: [setup] steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all tags and branches - uses: ./.github/actions/setup @@ -284,7 +284,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all - uses: ./.github/actions/setup @@ -427,7 +427,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 # Fetch all history for all - uses: ./.github/actions/setup @@ -457,7 +457,7 @@ jobs: steps: - id: checkoutRepo name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 1 - name: PR contains forbidden labels @@ -484,7 +484,7 @@ jobs: name: Final Results needs: [check-if-pr-is-approved, pre-checks, setup, unit-tests, lint, build-libs, e2e, e2e-storybook] steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - name: Log e2e result id: e2e-result if: ${{ github.event_name == 'schedule' }} diff --git a/.github/workflows/rebase.yml b/.github/workflows/rebase.yml index a49303f723c..4481c9ec487 100644 --- a/.github/workflows/rebase.yml +++ b/.github/workflows/rebase.yml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the latest code - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 - name: Automatic Rebase diff --git a/.github/workflows/release-branch.yml b/.github/workflows/release-branch.yml index ad96dd3b6fb..b3e642e1238 100644 --- a/.github/workflows/release-branch.yml +++ b/.github/workflows/release-branch.yml @@ -87,7 +87,7 @@ jobs: echo "Set TAG with name: ${TAG_NPM}" echo "TAG_NPM=${TAG_NPM}" >> $GITHUB_ENV - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 - uses: ./.github/actions/setup @@ -110,7 +110,7 @@ jobs: packages: write steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 - uses: ./.github/actions/setup @@ -153,5 +153,5 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - uses: ./.github/actions/npm-check-bundle diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 7a7f6be08d6..9b61c871cfe 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -88,7 +88,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 - uses: ./.github/actions/setup @@ -109,7 +109,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 1 - run: git fetch --all @@ -135,7 +135,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 1 - run: git fetch --all @@ -165,7 +165,7 @@ jobs: packages: write steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 with: fetch-depth: 0 - uses: ./.github/actions/setup @@ -209,7 +209,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - uses: ./.github/actions/npm-check-bundle finalize: From a184c39fc7c28113d5910b9776db39ebe0a671a8 Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:41:41 +0100 Subject: [PATCH 4/6] Revert "build(deps): bump Alfresco/alfresco-build-tools (#9139)" This reverts commit f2764d0638156b96a3f1e795a56e85478f354a17. --- .github/actions/setup/action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/actions/setup/action.yml b/.github/actions/setup/action.yml index 19f2294ca5d..222227dc804 100644 --- a/.github/actions/setup/action.yml +++ b/.github/actions/setup/action.yml @@ -26,7 +26,7 @@ runs: cache-dependency-path: package-lock.json - name: get latest tag sha id: tag-sha - uses: Alfresco/alfresco-build-tools/.github/actions/git-latest-tag@b88340ccab0e8f2351eb1e056235f5671cfc5aab # v5.6.0 + uses: Alfresco/alfresco-build-tools/.github/actions/git-latest-tag@d3b4d2e2e08dc33a5d1d60138e9e5989a3dd264c # v1.29.0 # CACHE - name: Node Modules cache id: node-modules-cache From 901bc6b280ae4304c40723ed1c9123d15542fb08 Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:42:14 +0100 Subject: [PATCH 5/6] Revert "build(deps): bump Alfresco/alfresco-build-tools from 1.36.0 to 5.4.0 (#9138)" This reverts commit 76eca4998541a0d390aba2889b22aa87b8c945c8. --- .github/workflows/pull-request.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 28aaed14e9a..43a4399e67a 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -121,10 +121,10 @@ jobs: fetch-depth: 0 - name: Get branch name - uses: Alfresco/alfresco-build-tools/.github/actions/get-branch-name@b88340ccab0e8f2351eb1e056235f5671cfc5aab # v5.6.0 + uses: Alfresco/alfresco-build-tools/.github/actions/get-branch-name@7b0536b4e403e95365d83695c9ab3119b885ce36 # v1.36.0 - name: Save commit message - uses: Alfresco/alfresco-build-tools/.github/actions/get-commit-message@b88340ccab0e8f2351eb1e056235f5671cfc5aab # v5.6.0 + uses: Alfresco/alfresco-build-tools/.github/actions/get-commit-message@7b0536b4e403e95365d83695c9ab3119b885ce36 # v1.36.0 - name: ci:force flag parser shell: bash From baeb08d2ce116bf72b3c377c734c9c79e7abea02 Mon Sep 17 00:00:00 2001 From: Amedeo Lepore Date: Wed, 13 Dec 2023 17:45:18 +0100 Subject: [PATCH 6/6] Revert "build(deps): bump actions/setup-node from 3.8.2 to 4.0.0 (#9149)" This reverts commit 167a5be810cbdced686919b443b7f4362d7036c6. --- .github/workflows/git-tag.yml | 2 +- .github/workflows/release-branch.yml | 4 ++-- .github/workflows/release.yml | 4 ++-- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/git-tag.yml b/.github/workflows/git-tag.yml index d05932503fd..a7f3c07e112 100644 --- a/.github/workflows/git-tag.yml +++ b/.github/workflows/git-tag.yml @@ -102,7 +102,7 @@ jobs: with: dry-run-flag: ${{ inputs.dry-run-flag }} - name: install NPM - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0 + uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 with: node-version-file: '.nvmrc' - name: "Release tag" diff --git a/.github/workflows/release-branch.yml b/.github/workflows/release-branch.yml index b3e642e1238..314160246ab 100644 --- a/.github/workflows/release-branch.yml +++ b/.github/workflows/release-branch.yml @@ -128,7 +128,7 @@ jobs: ./scripts/update-version.sh -gnu || exit 1; npx nx affected:build $NX_CALCULATION_FLAGS --prod --exclude="demoshell" --skip-nx-cache npx nx affected $NX_CALCULATION_FLAGS --target=pretheme - - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0 + - uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 name: release libraries GH registry with: node-version-file: '.nvmrc' @@ -137,7 +137,7 @@ jobs: - run: npx nx affected --target=npm-publish $NX_CALCULATION_FLAGS --tag=branch|| exit 1 env: NODE_AUTH_TOKEN: ${{ secrets.PAT_WRITE_PKG }} - - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0 + - uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 name: release libraries Npm registry with: node-version-file: '.nvmrc' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9b61c871cfe..9f83a1e8004 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -183,7 +183,7 @@ jobs: ./scripts/github/build/bumpversion.sh npx nx affected:build $NX_CALCULATION_FLAGS --prod --exclude="demoshell" --skip-nx-cache npx nx affected $NX_CALCULATION_FLAGS --target=pretheme - - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0 + - uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 name: release libraries GH registry with: node-version-file: '.nvmrc' @@ -192,7 +192,7 @@ jobs: - run: npx nx affected --target=npm-publish $NX_CALCULATION_FLAGS --tag=$TAG_NPM || exit 1 env: NODE_AUTH_TOKEN: ${{ secrets.PAT_WRITE_PKG }} - - uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0 + - uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 name: release libraries Npm registry with: node-version-file: '.nvmrc'