CICD-3007: upgrade actions to node 20 (#44)

orcasecurity · Jun 13, 2024 · 71210fd · 71210fd
1 parent c74c9fa
commit 71210fd
Show file tree

Hide file tree

Showing 4 changed files with 9 additions and 9 deletions.
diff --git a/.github/workflows/test-iac-action-sarif.yaml b/.github/workflows/test-iac-action-sarif.yaml
@@ -13,7 +13,7 @@ jobs:
     permissions:
       security-events: write
     steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # ratchet:actions/checkout@v3
+      - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # ratchet:actions/checkout@v4
       - name: Scan IaC
         id: orcasecurity_iac_scan
         uses: ./
@@ -25,7 +25,7 @@ jobs:
           output: "results/"
           console_output: "cli"
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@ceaec5c11a131e0d282ff3b6f095917d234caace # ratchet:github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # ratchet:github/codeql-action/upload-sarif@v3
         if: ${{ always() && steps.orcasecurity_iac_scan.outputs.exit_code != 1 }}
         with:
           sarif_file: results/iac.sarif

diff --git a/.github/workflows/test-iac-action.yaml b/.github/workflows/test-iac-action.yaml
@@ -9,7 +9,7 @@ jobs:
   iac_scan_job:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # ratchet:actions/checkout@v3
+      - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # ratchet:actions/checkout@v4
       - name: Scan IaC
         uses: ./
         with:
@@ -19,7 +19,7 @@ jobs:
           format: "json"
           output: "results/"
           console_output: "cli"
-      - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # ratchet:actions/upload-artifact@v3
+      - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # ratchet:actions/upload-artifact@v4
         if: always()
         with:
           name: orca-results

diff --git a/README.md b/README.md
@@ -44,7 +44,7 @@ jobs:
     steps:
       # Checkout your repository under $GITHUB_WORKSPACE, so your job can access it
       - name: Checkout Repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Run Orca IaC Scan
         uses: orcasecurity/shiftleft-iac-action@v1
@@ -116,7 +116,7 @@ jobs:
       PROJECT_KEY: <project key> # Set the desired project to run the cli scanning with
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
 
       - name: Run Orca IaC Scan
         id: orcasecurity_iac_scan
@@ -129,7 +129,7 @@ jobs:
           output:
             "results/"
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         if: ${{ always() && steps.orcasecurity_iac_scan.outputs.exit_code != 1 }}
         with:
           sarif_file: results/iac.sarif

diff --git a/action.yaml b/action.yaml
@@ -116,5 +116,5 @@ inputs:
     required: false
 
 outputs:
-    exit_code:
-      description: "The status of the scan"
+  exit_code:
+    description: "The status of the scan"