From af61e07a4c49167ad0b3b6b911f9682b4c8aebbc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 7 May 2024 10:18:27 +0000 Subject: [PATCH] Bump actions/checkout from 4.1.4 to 4.1.5 in the actions group (#4556) Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout). Updates `actions/checkout` from 4.1.4 to 4.1.5 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/0ad4b8fadaa221de15dcec353f45205ec38ea70b...44c2b7a8a4ea60a981eaca3cf939b5f4305c123b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/auto-review-merge.yaml | 4 ++-- .github/workflows/bigquery-ingestion.yaml | 2 +- .github/workflows/build-and-publish-osv.yaml | 2 +- .github/workflows/build-and-publish-secdb.yaml | 2 +- .github/workflows/build-and-publish-yaml.yaml | 2 +- .github/workflows/lint.yaml | 4 ++-- .github/workflows/validate.yaml | 4 ++-- 7 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/auto-review-merge.yaml b/.github/workflows/auto-review-merge.yaml index bad385313..947991787 100644 --- a/.github/workflows/auto-review-merge.yaml +++ b/.github/workflows/auto-review-merge.yaml @@ -23,7 +23,7 @@ jobs: egress-policy: audit - name: Check out repository code - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - uses: octo-sts/action@6177b4481c00308b3839969c3eca88c96a91775f # v1.0.0 id: octo-sts @@ -53,7 +53,7 @@ jobs: egress-policy: audit - name: Check out repository code - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - run: | ./scripts/review-prs.sh ${{ github.repository }} diff --git a/.github/workflows/bigquery-ingestion.yaml b/.github/workflows/bigquery-ingestion.yaml index 37aa53a3d..9802a681c 100644 --- a/.github/workflows/bigquery-ingestion.yaml +++ b/.github/workflows/bigquery-ingestion.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - id: auth name: 'Authenticate to Google Cloud' diff --git a/.github/workflows/build-and-publish-osv.yaml b/.github/workflows/build-and-publish-osv.yaml index 5ecb175f5..6efbbf395 100644 --- a/.github/workflows/build-and-publish-osv.yaml +++ b/.github/workflows/build-and-publish-osv.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-osv@main # main diff --git a/.github/workflows/build-and-publish-secdb.yaml b/.github/workflows/build-and-publish-secdb.yaml index 138faedbc..e966068a2 100644 --- a/.github/workflows/build-and-publish-secdb.yaml +++ b/.github/workflows/build-and-publish-secdb.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-secdb@main # main diff --git a/.github/workflows/build-and-publish-yaml.yaml b/.github/workflows/build-and-publish-yaml.yaml index d8a49fb21..dc827a554 100644 --- a/.github/workflows/build-and-publish-yaml.yaml +++ b/.github/workflows/build-and-publish-yaml.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/build-and-publish-yaml@main # main diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index f1d0b1423..abd0c1e88 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -25,7 +25,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 # this need to point to main to always get the latest action - uses: wolfi-dev/actions/wolfictl-lint@main # main @@ -46,7 +46,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - uses: reviewdog/action-misspell@5bd7be2fc7ae56a517184f5c4bbcf2fd7afe3927 # v1.17.0 with: diff --git a/.github/workflows/validate.yaml b/.github/workflows/validate.yaml index ff692a287..9be939a08 100644 --- a/.github/workflows/validate.yaml +++ b/.github/workflows/validate.yaml @@ -25,13 +25,13 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: fetch-depth: 0 path: './wolfi-advisories' - name: 'Clone Wolfi packages repository' - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: repository: 'wolfi-dev/os' fetch-depth: 0