From 3ac31cb82037eb39a760091b478adb86b964616f Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 28 Nov 2023 14:27:11 +0000 Subject: [PATCH] chore(deps): update all non-major github action dependencies --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/cypress.yml | 2 +- .github/workflows/delete-ecs-task-defs.yml | 4 ++-- .github/workflows/docker-vulnerability-scan.yml | 4 ++-- .github/workflows/eslint.yml | 4 ++-- .github/workflows/jest.yml | 2 +- .github/workflows/pr-review-client-deploy.yml | 2 +- .github/workflows/pr-review-sync-env-vars.yml | 2 +- .github/workflows/prod-build-push-container.yml | 4 ++-- .github/workflows/prod-deploy.yml | 8 ++++---- .github/workflows/release_generator.yml | 4 ++-- .github/workflows/staging-build-push-container.yml | 4 ++-- .github/workflows/staging-deploy.yml | 8 ++++---- 13 files changed, 27 insertions(+), 27 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 6c11be1470..1f8539daa6 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -31,7 +31,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5 + uses: github/codeql-action/init@66b90a5db151a8042fa97405c6cf843bbe433f7b # v2.22.7 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -42,7 +42,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5 + uses: github/codeql-action/autobuild@66b90a5db151a8042fa97405c6cf843bbe433f7b # v2.22.7 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -56,4 +56,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5 + uses: github/codeql-action/analyze@66b90a5db151a8042fa97405c6cf843bbe433f7b # v2.22.7 diff --git a/.github/workflows/cypress.yml b/.github/workflows/cypress.yml index b4a40fbee6..a503d631ec 100644 --- a/.github/workflows/cypress.yml +++ b/.github/workflows/cypress.yml @@ -43,7 +43,7 @@ jobs: - name: Checkout uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1.2.0 - name: Node.JS 18 - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3.8.1 + uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 with: node-version: 18 diff --git a/.github/workflows/delete-ecs-task-defs.yml b/.github/workflows/delete-ecs-task-defs.yml index 5c4e5c3b87..156c49a2b2 100644 --- a/.github/workflows/delete-ecs-task-defs.yml +++ b/.github/workflows/delete-ecs-task-defs.yml @@ -24,10 +24,10 @@ jobs: steps: - name: Checkout - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Configure AWS credentials using OIDC - uses: aws-actions/configure-aws-credentials@8c3f20df09ac63af7b3ae3d7c91f105f857d8497 # v4.0.0 + uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1 with: role-to-assume: arn:aws:iam::${{ matrix.account }}:role/platform-forms-client-apply role-session-name: ECSTaskDefDelete diff --git a/.github/workflows/docker-vulnerability-scan.yml b/.github/workflows/docker-vulnerability-scan.yml index a83e4330d1..92f7ea3945 100644 --- a/.github/workflows/docker-vulnerability-scan.yml +++ b/.github/workflows/docker-vulnerability-scan.yml @@ -14,7 +14,7 @@ jobs: steps: - name: Configure Staging AWS credentials id: aws-form-viewer - uses: aws-actions/configure-aws-credentials@fbaaea849082b09c6da098c397edb77cf7d2875a + uses: aws-actions/configure-aws-credentials@7ca194810a339d88e7c8d84405d963c9b2b5044f with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -22,7 +22,7 @@ jobs: - name: Login to Staging Amazon ECR id: login-ecr-staging - uses: aws-actions/amazon-ecr-login@99fe8befaecdc063ad51266ca32e2983e58efd9e + uses: aws-actions/amazon-ecr-login@008362efad0aaacc7df7adcc6933ace405f0fbf8 - name: Docker vulnerability scan uses: cds-snc/security-tools/.github/actions/docker-scan@eecd7a02a0294b379411c126b61e5c29e253676a # v2.1.4 diff --git a/.github/workflows/eslint.yml b/.github/workflows/eslint.yml index 13d90f51dc..14939926be 100644 --- a/.github/workflows/eslint.yml +++ b/.github/workflows/eslint.yml @@ -11,7 +11,7 @@ jobs: steps: - uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1.2.0 - name: Node.JS 18 - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3.8.1 + uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 with: node-version: 18 @@ -46,7 +46,7 @@ jobs: steps: - uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1.2.0 - name: Node.JS 18 - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3.8.1 + uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 with: node-version: 18 diff --git a/.github/workflows/jest.yml b/.github/workflows/jest.yml index c5b8dce10c..bd7c671c97 100644 --- a/.github/workflows/jest.yml +++ b/.github/workflows/jest.yml @@ -10,7 +10,7 @@ jobs: steps: - uses: actions/checkout@50fbc622fc4ef5163becd7fab6573eac35f8462e # v1.2.0 - name: Node.JS 18 - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3.8.1 + uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2 with: node-version: 18 diff --git a/.github/workflows/pr-review-client-deploy.yml b/.github/workflows/pr-review-client-deploy.yml index 1ad9b86b7f..ffd79d84ec 100644 --- a/.github/workflows/pr-review-client-deploy.yml +++ b/.github/workflows/pr-review-client-deploy.yml @@ -55,7 +55,7 @@ jobs: - name: Login to ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@2fc7aceee09e9e4a7105c0d060c656fad0b4f63d # v1.7.0 + uses: aws-actions/amazon-ecr-login@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7 # v1.7.1 - name: Build Docker image run: | diff --git a/.github/workflows/pr-review-sync-env-vars.yml b/.github/workflows/pr-review-sync-env-vars.yml index bee267aab8..7ca3f8b4b4 100644 --- a/.github/workflows/pr-review-sync-env-vars.yml +++ b/.github/workflows/pr-review-sync-env-vars.yml @@ -18,7 +18,7 @@ jobs: uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@fbaaea849082b09c6da098c397edb77cf7d2875a + uses: aws-actions/configure-aws-credentials@7ca194810a339d88e7c8d84405d963c9b2b5044f with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} diff --git a/.github/workflows/prod-build-push-container.yml b/.github/workflows/prod-build-push-container.yml index b0e474d086..1ebff9a691 100644 --- a/.github/workflows/prod-build-push-container.yml +++ b/.github/workflows/prod-build-push-container.yml @@ -28,7 +28,7 @@ jobs: - name: Configure Production AWS credentials id: aws-form-viewer - uses: aws-actions/configure-aws-credentials@fbaaea849082b09c6da098c397edb77cf7d2875a + uses: aws-actions/configure-aws-credentials@7ca194810a339d88e7c8d84405d963c9b2b5044f with: aws-access-key-id: ${{ secrets.PROD_AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.PROD_AWS_SECRET_ACCESS_KEY }} @@ -36,7 +36,7 @@ jobs: - name: Login to Production Amazon ECR id: login-ecr-production - uses: aws-actions/amazon-ecr-login@99fe8befaecdc063ad51266ca32e2983e58efd9e + uses: aws-actions/amazon-ecr-login@008362efad0aaacc7df7adcc6933ace405f0fbf8 - name: Tag Images for Production env: diff --git a/.github/workflows/prod-deploy.yml b/.github/workflows/prod-deploy.yml index 0398ebfb45..7504d012f4 100644 --- a/.github/workflows/prod-deploy.yml +++ b/.github/workflows/prod-deploy.yml @@ -35,7 +35,7 @@ jobs: uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 - name: Configure AWS credentials using OIDC - uses: aws-actions/configure-aws-credentials@8c3f20df09ac63af7b3ae3d7c91f105f857d8497 # v4.0.0 + uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1 with: role-to-assume: arn:aws:iam::957818836222:role/platform-forms-client-apply role-session-name: ECSDeploy @@ -44,7 +44,7 @@ jobs: - name: Login to Amazon ECR id: login-ecr # v1 as of Jan 28 2021 - uses: aws-actions/amazon-ecr-login@99fe8befaecdc063ad51266ca32e2983e58efd9e + uses: aws-actions/amazon-ecr-login@008362efad0aaacc7df7adcc6933ace405f0fbf8 - name: Download Form Viewer task definition id: download-taskdef-form-viewer @@ -55,7 +55,7 @@ jobs: - name: Render image for form viewer service id: taskdef-form-viewer # v1.0.10 - uses: aws-actions/amazon-ecs-render-task-definition@b70251e5cba1361c684621e82026bd765b9aab7f + uses: aws-actions/amazon-ecs-render-task-definition@11e794c887074ceb05d9a786ae537ca13dfacd82 with: task-definition: form_viewer.json container-name: ${{ steps.download-taskdef-form-viewer.outputs.container_name }} @@ -71,7 +71,7 @@ jobs: - name: Deploy image for Form Viewer timeout-minutes: 10 # v1.4.11 - uses: aws-actions/amazon-ecs-deploy-task-definition@37ec59d6c3e314c12279ab3e75395e72da65f1c6 + uses: aws-actions/amazon-ecs-deploy-task-definition@47d7844ea25e76ab61792242e985f3a48e8c08c6 with: task-definition: ${{ steps.taskdef-form-viewer.outputs.task-definition }} service: form-viewer diff --git a/.github/workflows/release_generator.yml b/.github/workflows/release_generator.yml index 95ea613343..e7e6319224 100644 --- a/.github/workflows/release_generator.yml +++ b/.github/workflows/release_generator.yml @@ -13,13 +13,13 @@ jobs: release-please: runs-on: ubuntu-latest steps: - - uses: actions/create-github-app-token@49ce228ea7cddec9f88dd09c5b7740dbac82d7ba # v1.2.1 + - uses: actions/create-github-app-token@e995b4e40ace2eb5bf13137d9abe242c98f3aab6 # v1.6.0 id: sre_app_token with: app_id: ${{ secrets.SRE_APP_ID }} private_key: ${{ secrets.SRE_APP_PRIVATE_KEY }} - - uses: google-github-actions/release-please-action@ca6063f4ed81b55db15b8c42d1b6f7925866342d # v3.7.11 + - uses: google-github-actions/release-please-action@db8f2c60ee802b3748b512940dde88eabd7b7e01 # v3.7.13 with: command: manifest token: ${{ steps.sre_app_token.outputs.token }} diff --git a/.github/workflows/staging-build-push-container.yml b/.github/workflows/staging-build-push-container.yml index 2a2f6b7dad..0a1a699257 100644 --- a/.github/workflows/staging-build-push-container.yml +++ b/.github/workflows/staging-build-push-container.yml @@ -30,7 +30,7 @@ jobs: - name: Configure Staging AWS credentials id: aws-form-viewer - uses: aws-actions/configure-aws-credentials@fbaaea849082b09c6da098c397edb77cf7d2875a + uses: aws-actions/configure-aws-credentials@7ca194810a339d88e7c8d84405d963c9b2b5044f with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -38,7 +38,7 @@ jobs: - name: Login to Staging Amazon ECR id: login-ecr-staging - uses: aws-actions/amazon-ecr-login@99fe8befaecdc063ad51266ca32e2983e58efd9e + uses: aws-actions/amazon-ecr-login@008362efad0aaacc7df7adcc6933ace405f0fbf8 - name: Tag Images for Staging env: diff --git a/.github/workflows/staging-deploy.yml b/.github/workflows/staging-deploy.yml index 7c2616ea1f..3400f56474 100644 --- a/.github/workflows/staging-deploy.yml +++ b/.github/workflows/staging-deploy.yml @@ -35,7 +35,7 @@ jobs: uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0 - name: Configure AWS credentials using OIDC - uses: aws-actions/configure-aws-credentials@8c3f20df09ac63af7b3ae3d7c91f105f857d8497 # v4.0.0 + uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1 with: role-to-assume: arn:aws:iam::687401027353:role/platform-forms-client-apply role-session-name: ECSDeploy @@ -44,7 +44,7 @@ jobs: - name: Login to Amazon ECR id: login-ecr # v1 as of Jan 28 2021 - uses: aws-actions/amazon-ecr-login@99fe8befaecdc063ad51266ca32e2983e58efd9e + uses: aws-actions/amazon-ecr-login@008362efad0aaacc7df7adcc6933ace405f0fbf8 - name: Download Form Viewer task definition id: download-taskdef-form-viewer @@ -55,7 +55,7 @@ jobs: - name: Render image for form viewer service id: taskdef-form-viewer # v1.0.10 - uses: aws-actions/amazon-ecs-render-task-definition@b70251e5cba1361c684621e82026bd765b9aab7f + uses: aws-actions/amazon-ecs-render-task-definition@11e794c887074ceb05d9a786ae537ca13dfacd82 with: task-definition: form_viewer.json container-name: ${{ steps.download-taskdef-form-viewer.outputs.container_name }} @@ -71,7 +71,7 @@ jobs: - name: Deploy image for Form Viewer timeout-minutes: 10 # v1.4.11 - uses: aws-actions/amazon-ecs-deploy-task-definition@0342da9e16bb9778f51d0ee54eef53a3b236f70d + uses: aws-actions/amazon-ecs-deploy-task-definition@47d7844ea25e76ab61792242e985f3a48e8c08c6 with: task-definition: ${{ steps.taskdef-form-viewer.outputs.task-definition }} service: form-viewer