From aca8838328b0792aed8a7cd771174a3dc044920d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Dec 2024 10:12:01 +0000 Subject: [PATCH] Bump the github-actions-version-updates group across 1 directory with 2 updates Bumps the github-actions-version-updates group with 2 updates in the /.github/workflows directory: [fsfe/reuse-action](https://github.com/fsfe/reuse-action) and [mikefarah/yq](https://github.com/mikefarah/yq). Updates `fsfe/reuse-action` from 4 to 5 - [Release notes](https://github.com/fsfe/reuse-action/releases) - [Commits](https://github.com/fsfe/reuse-action/compare/v4...v5) Updates `mikefarah/yq` from 4.44.3 to 4.44.6 - [Release notes](https://github.com/mikefarah/yq/releases) - [Changelog](https://github.com/mikefarah/yq/blob/master/release_notes.txt) - [Commits](https://github.com/mikefarah/yq/compare/v4.44.3...v4.44.6) --- updated-dependencies: - dependency-name: fsfe/reuse-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-version-updates - dependency-name: mikefarah/yq dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-version-updates ... Signed-off-by: dependabot[bot] --- .github/workflows/license-check.yaml | 2 +- .github/workflows/release-build.yaml | 6 +++--- .github/workflows/scb-bot.yaml | 6 +++--- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/license-check.yaml b/.github/workflows/license-check.yaml index 365dc8f4a7..80da879ffc 100644 --- a/.github/workflows/license-check.yaml +++ b/.github/workflows/license-check.yaml @@ -19,6 +19,6 @@ jobs: uses: actions/checkout@v4 - name: REUSE Compliance Check - uses: fsfe/reuse-action@v4 + uses: fsfe/reuse-action@v5 with: args: --include-submodules lint diff --git a/.github/workflows/release-build.yaml b/.github/workflows/release-build.yaml index becaae41ab..c1d6631e28 100644 --- a/.github/workflows/release-build.yaml +++ b/.github/workflows/release-build.yaml @@ -431,7 +431,7 @@ jobs: uses: actions/checkout@v4 - name: Set ENV Var with Scanner Version - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 # Notice: The current version of the scanner is provided via the Chart.yaml to ensure # there is only one place to edit the version of a scanner with: @@ -439,7 +439,7 @@ jobs: # extract the supported cpu architectures from the Chart.yaml - name: Set ENV Var with Supported Platforms - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 with: cmd: echo supportedPlatforms=$(yq e .annotations.supported-platforms scanners/${{ matrix.scanner }}/Chart.yaml) >> $GITHUB_ENV @@ -562,7 +562,7 @@ jobs: uses: actions/checkout@v4 - name: Set ENV Var with Demo-Target Version - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 # Notice: The current version of the demo-target is provided via the Chart.yaml to ensure # there is only one place to edit the version of a scanner with: diff --git a/.github/workflows/scb-bot.yaml b/.github/workflows/scb-bot.yaml index 07a1b5e33a..b524f83f54 100644 --- a/.github/workflows/scb-bot.yaml +++ b/.github/workflows/scb-bot.yaml @@ -62,14 +62,14 @@ jobs: # Fetching scanner version from local chart .appVersion attribute # this would look like 1.1.1 or v1.1.1 depending on the corresponding Docker image tag - name: Fetch local scanner version - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 with: cmd: echo local=$(yq e .appVersion scanners/${{ matrix.scanner }}/Chart.yaml) >> $GITHUB_ENV # Fetching scanner version API from local chart .annotations.versionApi attribute # This would look like https://api.github.com/repos/OWASP/Amass/releases/latest - name: Fetch scanner's version API - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 with: cmd: echo versionApi=$(yq e .annotations.versionApi scanners/${{ matrix.scanner }}/Chart.yaml) >> $GITHUB_ENV @@ -144,7 +144,7 @@ jobs: - name: Upgrade Scanner Helm Chart if: ${{ env.release != env.local && env.prExists == 0 && env.release != null}} - uses: mikefarah/yq@v4.44.3 + uses: mikefarah/yq@v4.44.6 with: # appVersion value in chart is replaced with release value. Empty lines are deleted in the process cmd: yq e --inplace '.appVersion = "${{env.release}}"' ./scanners/${{ matrix.scanner }}/Chart.yaml