From 80d93a4774c5dec2c4bd2b0429655ef4e2a4a441 Mon Sep 17 00:00:00 2001
From: David An <davidan@broadinstitute.org>
Date: Thu, 14 Mar 2024 11:28:07 -0400
Subject: [PATCH] update github actions (#1307)

---
 .github/workflows/dependency-graph.yml                     | 2 +-
 .github/workflows/orch-build-tag-publish-and-run-tests.yml | 4 ++--
 .github/workflows/pr-labeler.yml                           | 2 +-
 .github/workflows/trivy.yml                                | 2 +-
 .github/workflows/unittest.yml                             | 7 ++++---
 5 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/dependency-graph.yml b/.github/workflows/dependency-graph.yml
index 893b0fa41..579b9234e 100644
--- a/.github/workflows/dependency-graph.yml
+++ b/.github/workflows/dependency-graph.yml
@@ -10,7 +10,7 @@ jobs:
     name: Update Dependency Graph
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: scalacenter/sbt-dependency-submission@v2
         with:
           ## Optional: Define the working directory of your build.
diff --git a/.github/workflows/orch-build-tag-publish-and-run-tests.yml b/.github/workflows/orch-build-tag-publish-and-run-tests.yml
index 6e4464888..74db8949e 100644
--- a/.github/workflows/orch-build-tag-publish-and-run-tests.yml
+++ b/.github/workflows/orch-build-tag-publish-and-run-tests.yml
@@ -24,7 +24,7 @@ jobs:
     outputs:
       tag: ${{ steps.tag.outputs.tag }}
     steps:
-      - uses: 'actions/checkout@v3'
+      - uses: 'actions/checkout@v4'
 
       - name: Bump the tag to a new version
         uses: databiosphere/github-actions/actions/bumper@bumper-0.0.6
@@ -54,7 +54,7 @@ jobs:
 
       # Install gcloud, `setup-gcloud` automatically picks up authentication from `auth`.
       - name: 'Set up Cloud SDK'
-        uses: 'google-github-actions/setup-gcloud@v1'
+        uses: 'google-github-actions/setup-gcloud@v2'
 
       - name: Explicitly auth Docker for Artifact Registry
         run: gcloud auth configure-docker $GOOGLE_DOCKER_REPOSITORY --quiet      
diff --git a/.github/workflows/pr-labeler.yml b/.github/workflows/pr-labeler.yml
index 37c870fca..0f7b9645a 100644
--- a/.github/workflows/pr-labeler.yml
+++ b/.github/workflows/pr-labeler.yml
@@ -7,7 +7,7 @@ jobs:
   pr-labeler:
     runs-on: ubuntu-latest
     steps:
-      - uses: TimonVS/pr-labeler-action@v3
+      - uses: TimonVS/pr-labeler-action@v5
         with:
           configuration-path: .github/pr-labeler.yml # optional, .github/pr-labeler.yml is the default value
         env:
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
index 30c1dac5c..5ab4fee20 100644
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@@ -6,7 +6,7 @@ jobs:
     name: DSP AppSec Trivy check
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
 
       # The Dockerfile copies this, so it needs to exist for the build to succeed
       - run: touch FireCloud-Orchestration.jar
diff --git a/.github/workflows/unittest.yml b/.github/workflows/unittest.yml
index 9d5ae6b8c..352c9de90 100644
--- a/.github/workflows/unittest.yml
+++ b/.github/workflows/unittest.yml
@@ -14,17 +14,18 @@ jobs:
 
     steps:
 
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
 
     # coursier cache action caches both coursier and sbt caches
     - name: coursier-cache-action
       uses: coursier/cache-action@v6
 
     - name: Set up JDK 17
-      uses: actions/setup-java@v2
+      uses: actions/setup-java@v4
       with:
         distribution: 'temurin'
         java-version: 17
+        cache: 'sbt'
 
     - name: Run tests
       env:
@@ -34,5 +35,5 @@ jobs:
         FIRE_CLOUD_ID: 123
       run: sbt clean coverage test coverageReport
 
-    - uses: codecov/codecov-action@v3
+    - uses: codecov/codecov-action@v4
       if: ${{ always() }}