Merge pull request #51 from drcgjung/feature/6-release-ready

feature: make repository release ready

.github/workflows/build.yml

@@ -131,7 +131,7 @@ jobs:
  # Create SemVer or ref tags dependent of trigger event
  - name: Docker Meta AAS Bridge
  id: meta-aas
- uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+ uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 # v5.5.1
  with:
  images: |
  ${{ steps.set-docker-repo.outputs.REPO }}/aas-bridge
@@ -143,12 +143,12 @@ jobs:
  type=semver,pattern={{version}}
  type=semver,pattern={{major}}
  type=semver,pattern={{major}}.{{minor}}
- type=raw,value=0.13.6-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
+ type=raw,value=1.13.7-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
  type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'main') }}
 
  # build in any case, but push only main and version tag settings
  - name: AAS Bridge Container Build and Push
- uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0
+ uses: docker/build-push-action@1a162644f9a7e87d8f4b053101d1d9a712edc18c # v6.3.0
  with:
  context: sparql-aas/.
  file: sparql-aas/src/main/docker/Dockerfile
@@ -160,7 +160,7 @@ jobs:
  # Important step to push image description to DockerHub - since this is version independent, we always take it from main
  - name: Update Docker Hub description for AAS Bridge
  if: ${{ steps.set-docker-repo.outputs.REPO == 'docker.io' && github.ref == 'refs/heads/main' }}
- uses: peter-evans/dockerhub-description@dc67fad7001ef9e8e3c124cb7a64e16d0a63d864 # v3.4.2
+ uses: peter-evans/dockerhub-description@e98e4d1628a5f3be2be7c231e50981aee98723ae # v4.0.0
  with:
  readme-filepath: sparql-aas/README.md
  username: ${{ secrets.DOCKER_HUB_USER }}

.github/workflows/codeql.yml

@@ -63,7 +63,7 @@ jobs:
 
  # Initializes the CodeQL tools for scanning.
  - name: Initialize CodeQL
- uses: github/codeql-action/init@8a470fddafa5cbb6266ee11b37ef4d8aae19c571
+ uses: github/codeql-action/init@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
  with:
  languages: ${{ matrix.language }}
  # If you wish to specify custom queries, you can do so here or in a config file.
@@ -100,4 +100,4 @@ jobs:
  # ./location_of_script_within_repo/buildscript.sh
 
  - name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@8a470fddafa5cbb6266ee11b37ef4d8aae19c571
+ uses: github/codeql-action/analyze@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11

.github/workflows/helm-chart-lint.yml

@@ -79,7 +79,7 @@ jobs:
  cache: 'maven'
 
  # Set-Up Python
- - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4.7.1
+ - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
  with:
  python-version: 3.9
 
@@ -100,7 +100,7 @@ jobs:
 
  # Preparing a kind cluster to install and test charts on
  - name: Create kind cluster
- uses: container-tools/kind-action@0fc957b58d9a5bc9ca57a1b419324a2074c7653b # v2.0.3
+ uses: container-tools/kind-action@0ad70e2299366b0e1552c7240f4e4567148f723e # v2.0.4
  with:
  # upgrade version, default (v0.17.0) uses node image v1.21.1 and doesn't work with more recent node image versions
  version: v0.20.0

.github/workflows/trivy.yml

@@ -57,7 +57,7 @@ jobs:
  steps:
  - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
  - name: Run Trivy vulnerability scanner in repo mode
- uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
+ uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
  with:
  scan-type: "config"
  # ignore-unfixed: true
@@ -67,7 +67,7 @@ jobs:
  output: "trivy-results-config.sarif"
  severity: "CRITICAL,HIGH"
  - name: Upload Trivy scan results to GitHub Security tab
- uses: github/codeql-action/upload-sarif@689fdc5193eeb735ecb2e52e819e3382876f93f4 # v2.22.6
+ uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
  if: always()
  with:
  sarif_file: "trivy-results-config.sarif"
@@ -122,7 +122,7 @@ jobs:
  # the next two steps will only execute if the image exists check was successful
  - name: Run Trivy vulnerability scanner
  if: success() && steps.imageCheck.outcome != 'failure'
- uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
+ uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
  with:
  image-ref: "${{ steps.set-docker-repo.outputs.REPO }}/${{ matrix.image }}:${{ needs.git-sha7.outputs.value }}"
  format: "sarif"
@@ -133,6 +133,6 @@ jobs:
 
  - name: Upload Trivy scan results to GitHub Security tab
  if: success() && steps.imageCheck.outcome != 'failure'
- uses: github/codeql-action/upload-sarif@689fdc5193eeb735ecb2e52e819e3382876f93f4 # v2.22.6
+ uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
  with:
  sarif_file: "trivy-results-${{ matrix.image }}.sarif"

.gitignore

@@ -1,4 +1,4 @@
-# Copyright (c) 2022,2023 Contributors to the Eclipse Foundation
+# Copyright (c) 2022,2024 Contributors to the Eclipse Foundation
 #
 # See the NOTICE file(s) distributed with this work for additional
 # information regarding copyright ownership.

CHANGELOG.md

@@ -25,9 +25,19 @@ All notable changes to this product will be documented in this file.
 
 # Released
 
+## [1.13.7] - 2024-07-15
+
+### Added
+
+### Changed
+
+- KA-AAS: Upgrade to FAAAST 1.0.1 and AAS 3.0, Switch from Json-Based to XSLT-Based Stylesheets.
+
+### Removed
+
 # Unreleased
 
-## [0.10.5] - 
+## [0.10.5] - 2023-12
 
 ### Added