ci: pin GHA deps correctly for renovate (#3229)

keptn · Mar 11, 2024 · dd7b5bd · dd7b5bd
1 parent 8f212f5
commit dd7b5bd
Show file tree

Hide file tree

Showing 19 changed files with 81 additions and 81 deletions.
diff --git a/.github/actions/deploy-keptn-on-cluster/action.yml b/.github/actions/deploy-keptn-on-cluster/action.yml
@@ -30,20 +30,20 @@ runs:
  using: "composite"
  steps:
  - name: Set up Go 1.x
- uses: actions/setup-go@v5
+ uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5
  with:
  go-version: ${{ env.GO_VERSION }}
  cache: true
  cache-dependency-path: '**/go.sum'
  check-latest: true
 
  - name: Download artifacts
- uses: actions/download-artifact@v4
+ uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4
  with:
  path: ~/download/artifacts
 
  - name: "Create single kind Cluster"
- uses: helm/kind-action@v1.9.0
+ uses: helm/kind-action@99576bfa6ddf9a8e612d83b513da5a75875caced # v1.9.0
  with:
  cluster_name: ${{ inputs.cluster-name }}
  version: ${{ inputs.kind-version }}

diff --git a/.github/workflows/CI.yaml b/.github/workflows/CI.yaml
@@ -43,11 +43,11 @@ jobs:
 
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Extract branch name
  id: extract_branch
- uses: keptn/gh-action-extract-branch-name@6ca4fe061da10c66b2d7341fd1fb12962ad911b2 # pin@main
+ uses: keptn/gh-action-extract-branch-name@6ca4fe061da10c66b2d7341fd1fb12962ad911b2
 
  - name: Get current date and time
  id: get_datetime
@@ -91,10 +91,10 @@ jobs:
  folder: "keptn-cert-manager/"
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Set up Go 1.x
- uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # pin@v5
+ uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5
  with:
  go-version: ${{ env.GO_VERSION }}
  cache: true
@@ -106,7 +106,7 @@ jobs:
  run: make unit-test
 
  - name: Report code coverage
- uses: codecov/codecov-action@54bcd8715eee62d40e33596ef5e8f0f48dbbccab # pin@v4
+ uses: codecov/codecov-action@54bcd8715eee62d40e33596ef5e8f0f48dbbccab # v4
  with:
  flags: ${{ matrix.config.name }}
  token: ${{ secrets.CODECOV_TOKEN }}
@@ -138,21 +138,21 @@ jobs:
  folder: "keptn-cert-manager/"
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Cache build tools
  id: cache-build-tools
- uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # pin@v4
+ uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # v4
  with:
  path: ./${{ matrix.config.folder }}bin
  key: build-tools-${{ github.ref_name }}
 
  - name: Set up Docker Buildx
  id: buildx
- uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # pin@v3
+ uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3
 
  - name: Build Docker Image
- uses: docker/build-push-action@4a13e500e55cf31b7a5d59a38ab2040ab0f42f56 # pin@v5
+ uses: docker/build-push-action@4a13e500e55cf31b7a5d59a38ab2040ab0f42f56 # v5
  with:
  context: ${{ matrix.config.folder }}
  platforms: linux/amd64,linux/arm64
@@ -172,7 +172,7 @@ jobs:
  outputs: type=oci,dest=/tmp/${{ matrix.config.name }}-image.tar
 
  - name: Upload image as artifact
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: ${{ matrix.config.name }}-image.tar
  path: /tmp/${{ matrix.config.name }}-image.tar
@@ -188,7 +188,7 @@ jobs:
  run: echo "" > tag
 
  - name: Upload tag for tests
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: dev-${{ env.DATETIME }}
  path: tag
@@ -247,10 +247,10 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out keptn repo
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Check out helm-charts repo
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
  with:
  repository: 'keptn/lifecycle-toolkit-charts'
  path: ./helm-charts-repository
@@ -272,7 +272,7 @@ jobs:
  run: rsync -av --delete --exclude='charts/*.tgz' ./${{ matrix.config.path }}/ ./helm-charts-repository/charts/${{ matrix.config.name }}/
 
  - name: Create Pull Request
- uses: peter-evans/create-pull-request@a4f52f8033a6168103c2538976c07b467e8163bc # pin@v6
+ uses: peter-evans/create-pull-request@a4f52f8033a6168103c2538976c07b467e8163bc # v6
  with:
  token: ${{ secrets.KEPTN_BOT_TOKEN }}
  path: ./helm-charts-repository

diff --git a/.github/workflows/component-test.yml b/.github/workflows/component-test.yml
@@ -19,10 +19,10 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Set up Go 1.x
- uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # pin@v5
+ uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5
  with:
  go-version: ${{ env.GO_VERSION }}
  cache: true
@@ -34,7 +34,7 @@ jobs:
  run: make component-test
 
  - name: Report code coverage
- uses: codecov/codecov-action@54bcd8715eee62d40e33596ef5e8f0f48dbbccab # pin@v4
+ uses: codecov/codecov-action@54bcd8715eee62d40e33596ef5e8f0f48dbbccab # v4
  with:
  flags: component-tests
  token: ${{ secrets.CODECOV_TOKEN }}
diff --git a/.github/workflows/e2e-test.yml b/.github/workflows/e2e-test.yml
@@ -29,7 +29,7 @@ jobs:
  folder: "scheduler/"
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Setup cluster
  uses: ./.github/actions/deploy-keptn-on-cluster
@@ -47,7 +47,7 @@ jobs:
 
  - name: Upload ${{ matrix.config.name }} cluster logs
  if: always()
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: logs-e2e-tests-${{ matrix.config.name }}
  path: .github/scripts/logs
diff --git a/.github/workflows/github-repo-stats.yml b/.github/workflows/github-repo-stats.yml
@@ -18,7 +18,7 @@ jobs:
  steps:
  - name: run-ghrs
  # Use latest release.
- uses: jgehrcke/github-repo-stats@306db38ad131cab2aa5f2cd3062bf6f8aa78c1aa # pin@v1.4.2
+ uses: jgehrcke/github-repo-stats@306db38ad131cab2aa5f2cd3062bf6f8aa78c1aa # v1.4.2
  with:
  databranch: github-repo-stats
  ghtoken: ${{ secrets.KEPTN_BOT_TOKEN }}
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
@@ -41,15 +41,15 @@ jobs:
  folder: "keptn-cert-manager/"
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
- - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # pin@v5
+ - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5
  with:
  go-version: ${{ env.GO_VERSION }}
  check-latest: true
 
  - name: golangci-lint
- uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # pin@v4
+ uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # v4
  with:
  working-directory: ${{ matrix.config.folder }}
  version: ${{ env.GOLANGCI_LINT_VERSION }}

diff --git a/.github/workflows/htmltest.yaml b/.github/workflows/htmltest.yaml
@@ -25,13 +25,13 @@ jobs:
  # Steps represent a sequence of tasks that will be executed as part of the job
  steps:
  # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
  with:
  submodules: true
  fetch-depth: 0
 
  - name: Cache HTMLTest packages
- uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # pin@v4
+ uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # v4
  with:
  path: |
  tmp/.htmltest

diff --git a/.github/workflows/integration-test.yml b/.github/workflows/integration-test.yml
@@ -30,7 +30,7 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Setup cluster
  uses: ./.github/actions/deploy-keptn-on-cluster
@@ -43,7 +43,7 @@ jobs:
  uses: ./.github/actions/deploy-prometheus-on-cluster
 
  - name: Install Chainsaw
- uses: kyverno/action-install-chainsaw@4932dd3a67eedf380e704f5c294851a2f83c638f # pin@v0.1.8
+ uses: kyverno/action-install-chainsaw@4932dd3a67eedf380e704f5c294851a2f83c638f # v0.1.8
 
  - name: Run Scheduling Gates Integration Tests
  if: inputs.scheduling-gates == 'gates_on' && inputs.allowed-namespaces == 'allowed_ns_off'
@@ -67,7 +67,7 @@ jobs:
 
  - name: Upload cluster logs
  if: failure()
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: logs-integration-tests-${{ inputs.scheduling-gates }}-${{ inputs.allowed-namespaces }}
  path: .github/scripts/logs
diff --git a/.github/workflows/load-test.yml b/.github/workflows/load-test.yml
@@ -24,11 +24,11 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Cache build tools
  id: cache-build-tools
- uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # pin@v4
+ uses: actions/cache@ab5e6d0c87105b4c9c2047343972218f562e4319 # v4
  with:
  path: /usr/local/bin/kube-burner
  key: kube-burner-${{ env.KUBE_BURNER_VERSION }}
@@ -57,7 +57,7 @@ jobs:
 
  - name: Upload results
  if: always()
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: load-tests-results
  path: ./collected-metrics
@@ -69,7 +69,7 @@ jobs:
 
  - name: Upload cluster logs
  if: failure()
- uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # pin@v4
+ uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4
  with:
  name: logs-load-tests
  path: .github/scripts/logs
diff --git a/.github/workflows/markdown-checks.yaml b/.github/workflows/markdown-checks.yaml
@@ -32,8 +32,8 @@ jobs:
  markdown-link-check:
  runs-on: ubuntu-22.04
  steps:
- - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
- - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # pin@v1
+ - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+ - uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # v1
  with:
  config-file: '.github/mlc_config.json'
  use-verbose-mode: true
@@ -45,7 +45,7 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Run TOC generation
  run: |
@@ -72,10 +72,10 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Check out code
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Set up Go 1.x
- uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # pin@v5
+ uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5
  with:
  go-version: ${{ env.GO_VERSION }}
  check-latest: true

diff --git a/.github/workflows/release-examples.yml b/.github/workflows/release-examples.yml
@@ -26,17 +26,17 @@ jobs:
  runs-on: ubuntu-22.04
  steps:
  - name: Checkout
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
 
  - name: Checkout examples repo
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin@v4
+ uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
  with:
  repository: keptn-sandbox/lifecycle-toolkit-examples
  path: ${{ inputs.examples_dir }}
  token: ${{ secrets.KEPTN_BOT_TOKEN }}
 
  - name: Get Latest Release Information
- uses: octokit/request-action@89697eb6635e52c6e1e5559f15b5c91ba5100cb0 # pin@v2.1.9
+ uses: octokit/request-action@89697eb6635e52c6e1e5559f15b5c91ba5100cb0 # v2.1.9
  id: latest_release
  with:
  route: GET /repos/:owner/:repository/releases/latest
@@ -51,7 +51,7 @@ jobs:
 
  - name: Push content
  if: inputs.dry_run != true
- uses: EndBug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 # pin@v9
+ uses: EndBug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 # v9
  with:
  default_author: github_actions
  cwd: ${{ inputs.examples_dir }}