From e7279200c06a19fa33aeaf8c5a3ba7d567b67abf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 May 2024 17:32:51 +0000 Subject: [PATCH] Bump the github-actions group across 1 directory with 12 updates Bumps the github-actions group with 12 updates in the / directory: | Package | From | To | | --- | --- | --- | | [step-security/harden-runner](https://github.com/step-security/harden-runner) | `2.5.1` | `2.7.1` | | [actions/checkout](https://github.com/actions/checkout) | `3.5.3` | `4.1.4` | | [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action) | `1.5.5` | `1.6.3` | | [docker/login-action](https://github.com/docker/login-action) | `3.0.0` | `3.1.0` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `5.0.0` | `5.5.1` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `5.0.0` | `5.3.0` | | [peter-evans/dockerhub-description](https://github.com/peter-evans/dockerhub-description) | `3.4.2` | `4.0.0` | | [fsfe/reuse-action](https://github.com/fsfe/reuse-action) | `2` | `3` | | [github/codeql-action](https://github.com/github/codeql-action) | `2.22.5` | `3.25.3` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `3.1.2` | `4.3.3` | | [crate-ci/typos](https://github.com/crate-ci/typos) | `1.16.21` | `1.21.0` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `3` | `4` | Updates `step-security/harden-runner` from 2.5.1 to 2.7.1 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/v2.5.1...a4aa98b93cab29d9b1101a6143fb8bce00e2eac4) Updates `actions/checkout` from 3.5.3 to 4.1.4 - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v3.5.3...v4.1.4) Updates `EmbarkStudios/cargo-deny-action` from 1.5.5 to 1.6.3 - [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases) - [Commits](https://github.com/embarkstudios/cargo-deny-action/compare/1e59595bed8fc55c969333d08d7817b36888f0c5...3f4a782664881cf5725d0ffd23969fcce89fd868) Updates `docker/login-action` from 3.0.0 to 3.1.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/343f7c4344506bcbf9b4de18042ae17996df046d...e92390c5fb421da1463c202d546fed0ec5c39f20) Updates `docker/metadata-action` from 5.0.0 to 5.5.1 - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](https://github.com/docker/metadata-action/compare/96383f45573cb7f253c731d3b3ab81c87ef81934...8e5442c4ef9f78752691e2d8f8d19755c6f78e81) Updates `docker/build-push-action` from 5.0.0 to 5.3.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/0565240e2d4ab88bba5387d719585280857ece09...2cdde995de11925a030ce8070c3d77a52ffcf1c0) Updates `peter-evans/dockerhub-description` from 3.4.2 to 4.0.0 - [Release notes](https://github.com/peter-evans/dockerhub-description/releases) - [Commits](https://github.com/peter-evans/dockerhub-description/compare/dc67fad7001ef9e8e3c124cb7a64e16d0a63d864...e98e4d1628a5f3be2be7c231e50981aee98723ae) Updates `fsfe/reuse-action` from 2 to 3 - [Release notes](https://github.com/fsfe/reuse-action/releases) - [Commits](https://github.com/fsfe/reuse-action/compare/v2...v3) Updates `github/codeql-action` from 2.22.5 to 3.25.3 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/74483a38d39275f33fcff5f35b679b5ca4a26a99...d39d31e687223d841ef683f52467bd88e9b21c14) Updates `actions/upload-artifact` from 3.1.2 to 4.3.3 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v3.1.2...65462800fd760344b1a7b4382951275a0abb4808) Updates `crate-ci/typos` from 1.16.21 to 1.21.0 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](https://github.com/crate-ci/typos/compare/47dd2976043bd5c76a33aa9300b328a176a1d6f7...d503507db9c5d116c79135435b149cd0f27d726e) Updates `codecov/codecov-action` from 3 to 4 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v3...v4) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: EmbarkStudios/cargo-deny-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/metadata-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: peter-evans/dockerhub-description dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: fsfe/reuse-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: crate-ci/typos dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/audit.yml | 10 ++++----- .github/workflows/benchmark pullrequest.yml | 4 ++-- .github/workflows/benchmark.yml | 4 ++-- .github/workflows/docker-image.yml | 12 +++++------ .github/workflows/reuse.yaml | 4 ++-- .github/workflows/rust-clippy.yml | 6 +++--- .github/workflows/scorecards.yml | 8 +++---- .github/workflows/spell-check.yml | 6 +++--- .github/workflows/tests.yml | 24 ++++++++++----------- 9 files changed, 39 insertions(+), 39 deletions(-) diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml index e2941890..7b05eaa7 100644 --- a/.github/workflows/audit.yml +++ b/.github/workflows/audit.yml @@ -24,7 +24,7 @@ jobs: checks: write steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -36,7 +36,7 @@ jobs: static.rust-lang.org:443 index.crates.io:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - uses: Swatinem/rust-cache@81d053bdb0871dcd3f10763c8cc60d0adc41762b - uses: actions-rs/audit-check@35b7b53b1e25b55642157ac01b4adceb5b9ebef3 with: @@ -54,7 +54,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -67,7 +67,7 @@ jobs: static.rust-lang.org:443 index.crates.io:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 - - uses: EmbarkStudios/cargo-deny-action@1e59595bed8fc55c969333d08d7817b36888f0c5 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b + - uses: EmbarkStudios/cargo-deny-action@3f4a782664881cf5725d0ffd23969fcce89fd868 with: command: check ${{ matrix.checks }} diff --git a/.github/workflows/benchmark pullrequest.yml b/.github/workflows/benchmark pullrequest.yml index 82d4dc25..e46aa42c 100644 --- a/.github/workflows/benchmark pullrequest.yml +++ b/.github/workflows/benchmark pullrequest.yml @@ -36,11 +36,11 @@ jobs: - 5432:5432 steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b with: set-safe-directory: true - run: rustup default nightly diff --git a/.github/workflows/benchmark.yml b/.github/workflows/benchmark.yml index e683c4e4..976db30d 100644 --- a/.github/workflows/benchmark.yml +++ b/.github/workflows/benchmark.yml @@ -36,11 +36,11 @@ jobs: - 5432:5432 steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b with: set-safe-directory: true - run: rustup default nightly diff --git a/.github/workflows/docker-image.yml b/.github/workflows/docker-image.yml index c5a198da..f38103ac 100644 --- a/.github/workflows/docker-image.yml +++ b/.github/workflows/docker-image.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -39,26 +39,26 @@ jobs: static.rust-lang.org:443 index.crates.io:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - name: Log in to Docker Hub - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d + uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_PASSWORD }} - name: Extract metadata (tags, labels) for Docker id: meta - uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 + uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 with: images: mtrnord/erooster - name: Build and push - uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 + uses: docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0 with: context: . push: true tags: ${{ steps.meta.outputs.tags }} labels: ${{ steps.meta.outputs.labels }} - name: Update repo description - uses: peter-evans/dockerhub-description@dc67fad7001ef9e8e3c124cb7a64e16d0a63d864 + uses: peter-evans/dockerhub-description@e98e4d1628a5f3be2be7c231e50981aee98723ae with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_PASSWORD }} diff --git a/.github/workflows/reuse.yaml b/.github/workflows/reuse.yaml index 571e475d..84d025a8 100644 --- a/.github/workflows/reuse.yaml +++ b/.github/workflows/reuse.yaml @@ -10,6 +10,6 @@ jobs: test: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.1.4 - name: REUSE Compliance Check - uses: fsfe/reuse-action@v2 \ No newline at end of file + uses: fsfe/reuse-action@v3 \ No newline at end of file diff --git a/.github/workflows/rust-clippy.yml b/.github/workflows/rust-clippy.yml index 56cd55db..a199e76e 100644 --- a/.github/workflows/rust-clippy.yml +++ b/.github/workflows/rust-clippy.yml @@ -24,7 +24,7 @@ jobs: security-events: write steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -39,7 +39,7 @@ jobs: index.crates.io:443 - name: Checkout code - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - name: Install Rust toolchain uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af #@v1 @@ -61,7 +61,7 @@ jobs: continue-on-error: true - name: Upload analysis results to GitHub - uses: github/codeql-action/upload-sarif@74483a38d39275f33fcff5f35b679b5ca4a26a99 + uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 with: sarif_file: rust-clippy-results.sarif wait-for-processing: true diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index f8b38084..fc7a1cb3 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -29,7 +29,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -50,7 +50,7 @@ jobs: index.crates.io:443 - name: "Checkout code" - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # tag=v3.0.0 + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # tag=v3.0.0 with: persist-credentials: false @@ -74,7 +74,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # tag=v3.1.3 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # tag=v4.3.3 with: name: SARIF file path: results.sarif @@ -82,6 +82,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@74483a38d39275f33fcff5f35b679b5ca4a26a99 # tag=v1.0.26 + uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # tag=v1.0.26 with: sarif_file: results.sarif diff --git a/.github/workflows/spell-check.yml b/.github/workflows/spell-check.yml index a77c3851..1a127352 100644 --- a/.github/workflows/spell-check.yml +++ b/.github/workflows/spell-check.yml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -29,9 +29,9 @@ jobs: env: USER: runner - name: Checkout Actions Repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v2 + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v2 - name: Check spelling - uses: crate-ci/typos@47dd2976043bd5c76a33aa9300b328a176a1d6f7 # master + uses: crate-ci/typos@d503507db9c5d116c79135435b149cd0f27d726e # master with: config: ${{github.workspace}}/_typos.toml diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 06cdead2..7dfc2733 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -29,7 +29,7 @@ jobs: static.crates.io:443 static.rust-lang.org:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af with: profile: minimal @@ -68,11 +68,11 @@ jobs: - 5432:5432 steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - name: Install Rust run: rustup toolchain install nightly --component llvm-tools-preview - uses: Swatinem/rust-cache@81d053bdb0871dcd3f10763c8cc60d0adc41762b @@ -110,7 +110,7 @@ jobs: cargo +nightly llvm-cov report --html env: RUST_BACKTRACE: "1" - - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce + - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 with: name: coverage-report path: target/llvm-cov/html/ @@ -120,7 +120,7 @@ jobs: cargo +nightly llvm-cov --no-report --features "jaeger" --workspace cargo +nightly llvm-cov report --lcov --output-path lcov.info - name: Upload coverage to Codecov - uses: codecov/codecov-action@v3 + uses: codecov/codecov-action@v4 with: token: ${{ secrets.CODECOV_TOKEN }} files: lcov.info @@ -134,11 +134,11 @@ jobs: options: --user root steps: - name: Harden Runner - uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - name: Install Rust run: rustup toolchain install nightly --component llvm-tools-preview - uses: Swatinem/rust-cache@81d053bdb0871dcd3f10763c8cc60d0adc41762b @@ -176,7 +176,7 @@ jobs: cargo +nightly llvm-cov report --html env: RUST_BACKTRACE: "1" - - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 with: name: coverage-report path: target/llvm-cov/html/ @@ -186,7 +186,7 @@ jobs: cargo +nightly llvm-cov --no-report --features "jaeger" --workspace --features sqlite --no-default-features cargo +nightly llvm-cov report --lcov --output-path lcov.info - name: Upload coverage to Codecov - uses: codecov/codecov-action@v3 + uses: codecov/codecov-action@v4 with: token: ${{ secrets.CODECOV_TOKEN }} files: lcov.info @@ -197,7 +197,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 + uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 with: egress-policy: block allowed-endpoints: > @@ -211,7 +211,7 @@ jobs: index.crates.io:443 static.crates.io:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b - uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af with: profile: minimal