From a4b99a76d05369f9a52df57a4b6652c80308dc81 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 24 Oct 2024 16:45:41 -0700 Subject: [PATCH] Bump the actions group across 1 directory with 2 updates (#8734) Bumps the actions group with 2 updates in the / directory: [actions/checkout](https://github.com/actions/checkout) and [rtCamp/action-slack-notify](https://github.com/rtcamp/action-slack-notify). Updates `actions/checkout` from 4.2.1 to 4.2.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871...11bd71901bbe5b1630ceea73d27597364c9af683) Updates `rtCamp/action-slack-notify` from 2.3.0 to 2.3.2 - [Release notes](https://github.com/rtcamp/action-slack-notify/releases) - [Commits](https://github.com/rtcamp/action-slack-notify/compare/4e5fb42d249be6a45a298f3c9543b111b02f7907...c33737706dea87cd7784c687dadc9adf1be59990) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: rtCamp/action-slack-notify dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/auto-review-merge.yaml | 4 ++-- .github/workflows/bigquery-ingestion.yaml | 4 ++-- .github/workflows/build-and-publish-osv.yaml | 4 ++-- .github/workflows/build-and-publish-secdb.yaml | 4 ++-- .github/workflows/build-and-publish-yaml.yaml | 4 ++-- .github/workflows/lint.yaml | 4 ++-- .github/workflows/validate.yaml | 4 ++-- 7 files changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/auto-review-merge.yaml b/.github/workflows/auto-review-merge.yaml index a043ad24a..07758d384 100644 --- a/.github/workflows/auto-review-merge.yaml +++ b/.github/workflows/auto-review-merge.yaml @@ -23,7 +23,7 @@ jobs: egress-policy: audit - name: Check out repository code - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: octo-sts/action@6177b4481c00308b3839969c3eca88c96a91775f # v1.0.0 id: octo-sts @@ -53,7 +53,7 @@ jobs: egress-policy: audit - name: Check out repository code - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - run: | ./scripts/review-prs.sh ${{ github.repository }} diff --git a/.github/workflows/bigquery-ingestion.yaml b/.github/workflows/bigquery-ingestion.yaml index babf0a461..afa85cf2e 100644 --- a/.github/workflows/bigquery-ingestion.yaml +++ b/.github/workflows/bigquery-ingestion.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - id: auth name: 'Authenticate to Google Cloud' @@ -44,7 +44,7 @@ jobs: gcloud run jobs execute --region us-central1 cve-advisory-cron - name: Post failure notice to Slack - uses: rtCamp/action-slack-notify@4e5fb42d249be6a45a298f3c9543b111b02f7907 # ratchet:rtCamp/action-slack-notify@v2.3.0 + uses: rtCamp/action-slack-notify@c33737706dea87cd7784c687dadc9adf1be59990 # ratchet:rtCamp/action-slack-notify@v2.3.2 if: ${{ failure() }} env: SLACK_ICON: http://github.com/chainguard-dev.png?size=48 diff --git a/.github/workflows/build-and-publish-osv.yaml b/.github/workflows/build-and-publish-osv.yaml index f2449bca5..17c625672 100644 --- a/.github/workflows/build-and-publish-osv.yaml +++ b/.github/workflows/build-and-publish-osv.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-osv@main # main @@ -38,7 +38,7 @@ jobs: gcs_apk_directory_name: os - name: Post failure notice to Slack - uses: rtCamp/action-slack-notify@4e5fb42d249be6a45a298f3c9543b111b02f7907 # ratchet:rtCamp/action-slack-notify@v2.3.0 + uses: rtCamp/action-slack-notify@c33737706dea87cd7784c687dadc9adf1be59990 # ratchet:rtCamp/action-slack-notify@v2.3.2 if: ${{ failure() }} env: SLACK_ICON: http://github.com/chainguard-dev.png?size=48 diff --git a/.github/workflows/build-and-publish-secdb.yaml b/.github/workflows/build-and-publish-secdb.yaml index 6d97364d7..8400e8c8b 100644 --- a/.github/workflows/build-and-publish-secdb.yaml +++ b/.github/workflows/build-and-publish-secdb.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-secdb@main # main @@ -38,7 +38,7 @@ jobs: gcs_apk_directory_name: os - name: Post failure notice to Slack - uses: rtCamp/action-slack-notify@4e5fb42d249be6a45a298f3c9543b111b02f7907 # ratchet:rtCamp/action-slack-notify@v2.3.0 + uses: rtCamp/action-slack-notify@c33737706dea87cd7784c687dadc9adf1be59990 # ratchet:rtCamp/action-slack-notify@v2.3.2 if: ${{ failure() }} env: SLACK_ICON: http://github.com/chainguard-dev.png?size=48 diff --git a/.github/workflows/build-and-publish-yaml.yaml b/.github/workflows/build-and-publish-yaml.yaml index 03d803f5d..4f6612fdd 100644 --- a/.github/workflows/build-and-publish-yaml.yaml +++ b/.github/workflows/build-and-publish-yaml.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-yaml@main # main @@ -38,7 +38,7 @@ jobs: gcs_apk_directory_name: os - name: Post failure notice to Slack - uses: rtCamp/action-slack-notify@4e5fb42d249be6a45a298f3c9543b111b02f7907 # ratchet:rtCamp/action-slack-notify@v2.3.0 + uses: rtCamp/action-slack-notify@c33737706dea87cd7784c687dadc9adf1be59990 # ratchet:rtCamp/action-slack-notify@v2.3.2 if: ${{ failure() }} env: SLACK_ICON: http://github.com/chainguard-dev.png?size=48 diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index f3f7c70b9..85859103d 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/wolfictl-lint@main # main @@ -46,7 +46,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: reviewdog/action-misspell@ef8b22c1cca06c8d306fc6be302c3dab0f6ca12f # v1.23.0 with: diff --git a/.github/workflows/validate.yaml b/.github/workflows/validate.yaml index acc4efea2..9e8f41025 100644 --- a/.github/workflows/validate.yaml +++ b/.github/workflows/validate.yaml @@ -25,13 +25,13 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 0 path: './wolfi-advisories' - name: 'Clone Wolfi packages repository' - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: repository: 'wolfi-dev/os' fetch-depth: 0