From 71210fd30a0c84de7a0c827609f87fefeb40c07c Mon Sep 17 00:00:00 2001 From: saars-orca <126668434+saars-orca@users.noreply.github.com> Date: Thu, 13 Jun 2024 11:09:51 +0300 Subject: [PATCH] CICD-3007: upgrade actions to node 20 (#44) --- .github/workflows/test-iac-action-sarif.yaml | 4 ++-- .github/workflows/test-iac-action.yaml | 4 ++-- README.md | 6 +++--- action.yaml | 4 ++-- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/test-iac-action-sarif.yaml b/.github/workflows/test-iac-action-sarif.yaml index 187d5d0..75d64e6 100644 --- a/.github/workflows/test-iac-action-sarif.yaml +++ b/.github/workflows/test-iac-action-sarif.yaml @@ -13,7 +13,7 @@ jobs: permissions: security-events: write steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # ratchet:actions/checkout@v3 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # ratchet:actions/checkout@v4 - name: Scan IaC id: orcasecurity_iac_scan uses: ./ @@ -25,7 +25,7 @@ jobs: output: "results/" console_output: "cli" - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@ceaec5c11a131e0d282ff3b6f095917d234caace # ratchet:github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # ratchet:github/codeql-action/upload-sarif@v3 if: ${{ always() && steps.orcasecurity_iac_scan.outputs.exit_code != 1 }} with: sarif_file: results/iac.sarif diff --git a/.github/workflows/test-iac-action.yaml b/.github/workflows/test-iac-action.yaml index b000d40..65cab34 100644 --- a/.github/workflows/test-iac-action.yaml +++ b/.github/workflows/test-iac-action.yaml @@ -9,7 +9,7 @@ jobs: iac_scan_job: runs-on: ubuntu-latest steps: - - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # ratchet:actions/checkout@v3 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # ratchet:actions/checkout@v4 - name: Scan IaC uses: ./ with: @@ -19,7 +19,7 @@ jobs: format: "json" output: "results/" console_output: "cli" - - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # ratchet:actions/upload-artifact@v3 + - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # ratchet:actions/upload-artifact@v4 if: always() with: name: orca-results diff --git a/README.md b/README.md index 0d9b318..39320bc 100644 --- a/README.md +++ b/README.md @@ -44,7 +44,7 @@ jobs: steps: # Checkout your repository under $GITHUB_WORKSPACE, so your job can access it - name: Checkout Repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run Orca IaC Scan uses: orcasecurity/shiftleft-iac-action@v1 @@ -116,7 +116,7 @@ jobs: PROJECT_KEY: # Set the desired project to run the cli scanning with steps: - name: Checkout Repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run Orca IaC Scan id: orcasecurity_iac_scan @@ -129,7 +129,7 @@ jobs: output: "results/" - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 if: ${{ always() && steps.orcasecurity_iac_scan.outputs.exit_code != 1 }} with: sarif_file: results/iac.sarif diff --git a/action.yaml b/action.yaml index 30e838e..a1df951 100644 --- a/action.yaml +++ b/action.yaml @@ -116,5 +116,5 @@ inputs: required: false outputs: - exit_code: - description: "The status of the scan" + exit_code: + description: "The status of the scan"