From de9c4d578f1f05cc16af56fb1df8246a86c56436 Mon Sep 17 00:00:00 2001
From: Tom Page <tom.page@alfresco.com>
Date: Mon, 22 Jul 2024 11:46:34 +0100
Subject: [PATCH] Update dependencies and add dependabot.

---
 .github/dependabot.yml   |  6 ++++++
 .github/workflows/ci.yml | 14 ++++++++------
 action.yml               |  8 ++++----
 3 files changed, 18 insertions(+), 10 deletions(-)
 create mode 100644 .github/dependabot.yml

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..8ac6b8c
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,6 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "monthly"
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 3e93174..524c936 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -18,20 +18,22 @@ jobs:
   pre_commit:
     runs-on: ubuntu-latest
     steps:
-      - uses: Alfresco/alfresco-build-tools/.github/actions/setup-java-build@v1.35.2
+      - uses: Alfresco/alfresco-build-tools/.github/actions/setup-java-build@v5.33.0
       - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
       - id: changed-files
-        uses: tj-actions/changed-files@7fc073d92265804a8d4e4982b637dee053daf6c5 # v42.0.7
-      - name: Store changed files in env
-        run: echo "GITHUB_MODIFIED_FILES=${{ steps.changed-files.outputs.all_changed_files }}" >> $GITHUB_ENV
-      - uses: Alfresco/alfresco-build-tools/.github/actions/pre-commit@v1.35.2
+        uses: Alfresco/alfresco-build-tools/.github/actions/github-list-changes@v5.33.0
+        with:
+          write-list-to-env: true
+      - uses: Alfresco/alfresco-build-tools/.github/actions/pre-commit@v5.33.0
 
   test_scan:
     name: "Run test scan against this repository."
     runs-on: ubuntu-latest
     if: github.event_name == 'pull_request'
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: ./.
         with:
           create-github-annotations: "false"
diff --git a/action.yml b/action.yml
index 62a040a..4fe6644 100644
--- a/action.yml
+++ b/action.yml
@@ -57,12 +57,12 @@ runs:
   using: "composite"
   steps:
     - name: Clone the full history
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
 
     - name: Download ruleset
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         repository: ${{ inputs.pmd-ruleset-repo }}
         ref: ${{ inputs.pmd-ruleset-ref }}
@@ -102,14 +102,14 @@ runs:
       shell: bash
 
     - name: Archive PMD summary
-      uses: actions/upload-artifact@v3
+      uses: actions/upload-artifact@v4
       if: ${{ github.event_name == 'pull_request' }}
       with:
         name: PMD Summary (Human Readable)
         path: ${{ env.PMD_SUMMARY_FILE }}
 
     - name: Create GitHub annotations
-      uses: github/codeql-action/upload-sarif@v2
+      uses: github/codeql-action/upload-sarif@v3
       if: ${{ github.event_name == 'pull_request' && inputs.create-github-annotations == 'true' }}
       with:
         sarif_file: ${{ env.SARIF_REPORT_FILE }}