diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index fff73f81c6..47dc3e8187 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -51,7 +51,7 @@ jobs: uses: actions/setup-go@bfd2fb341f32be7281829126376a12a780ca79fc with: go-version: 1.22.3 - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 # see: https://golangci-lint.run/usage/configuration/#config-file - name: golangci-lint uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1 diff --git a/.github/workflows/changelog_pr.yaml b/.github/workflows/changelog_pr.yaml index 914b8b3d44..474d7aa665 100644 --- a/.github/workflows/changelog_pr.yaml +++ b/.github/workflows/changelog_pr.yaml @@ -20,7 +20,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 - uses: heinrichreimer/github-changelog-generator-action@981f332491452b16b2127a8bbe19358fdde7e60d diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 250f01611f..4dd2a1e627 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -51,11 +51,11 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: Checkout repository - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11 + uses: github/codeql-action/init@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -66,7 +66,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11 + uses: github/codeql-action/autobuild@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -80,4 +80,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11 + uses: github/codeql-action/analyze@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12 diff --git a/.github/workflows/curldemo.yaml b/.github/workflows/curldemo.yaml index 5663b759df..905c446662 100644 --- a/.github/workflows/curldemo.yaml +++ b/.github/workflows/curldemo.yaml @@ -21,7 +21,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 1 - name: Login to Dockerhub diff --git a/.github/workflows/fossa.yml b/.github/workflows/fossa.yml index 6410b533b7..e186e0a6f6 100644 --- a/.github/workflows/fossa.yml +++ b/.github/workflows/fossa.yml @@ -29,7 +29,7 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: Checkout code - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 - name: Run FOSSA scan and upload build data uses: fossa-contrib/fossa-action@cdc5065bcdee31a32e47d4585df72d66e8e941c2 # v3.0.0 diff --git a/.github/workflows/gh-pages.yaml b/.github/workflows/gh-pages.yaml index 265cab9fcd..44a842e18f 100644 --- a/.github/workflows/gh-pages.yaml +++ b/.github/workflows/gh-pages.yaml @@ -21,7 +21,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 - name: Copy new docs to gh-pages diff --git a/.github/workflows/helm_check-values-schema.yaml b/.github/workflows/helm_check-values-schema.yaml index b910ec24d1..0321d7d089 100644 --- a/.github/workflows/helm_check-values-schema.yaml +++ b/.github/workflows/helm_check-values-schema.yaml @@ -22,7 +22,7 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: 'Checkout' - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 - name: 'Check if values.schema.json was updated' run: | VALUES_FILE=chart/k8gb/values.yaml diff --git a/.github/workflows/helm_docs.yaml b/.github/workflows/helm_docs.yaml index f841e486f5..1954e94289 100644 --- a/.github/workflows/helm_docs.yaml +++ b/.github/workflows/helm_docs.yaml @@ -22,7 +22,7 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: Checkout Code - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 - name: Generate docs for helm chart - chart/k8gb/README.md uses: docker://jnorwood/helm-docs@sha256:7e562b49ab6b1dbc50c3da8f2dd6ffa8a5c6bba327b1c6335cc15ce29267979c with: diff --git a/.github/workflows/helm_publish.yaml b/.github/workflows/helm_publish.yaml index bfd57d0cc1..569f5d3d49 100644 --- a/.github/workflows/helm_publish.yaml +++ b/.github/workflows/helm_publish.yaml @@ -16,7 +16,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 - uses: dave-mcconnell/helm-gh-pages-microservices@8478af5f0fd712cc0fb59f2c99e0688f3f591287 diff --git a/.github/workflows/kube-linter.yaml b/.github/workflows/kube-linter.yaml index a0876b3796..cb587ab78e 100644 --- a/.github/workflows/kube-linter.yaml +++ b/.github/workflows/kube-linter.yaml @@ -21,7 +21,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 - name: Create ../results directory for sarif files shell: bash @@ -37,5 +37,5 @@ jobs: output-file: ../results/kube-linter.sarif - name: Upload sarif output to GitHub - uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11 + uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12 continue-on-error: true diff --git a/.github/workflows/olm_pr.yaml b/.github/workflows/olm_pr.yaml index bfd98d209f..b3ac9db010 100644 --- a/.github/workflows/olm_pr.yaml +++ b/.github/workflows/olm_pr.yaml @@ -32,7 +32,7 @@ jobs: with: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 @@ -60,7 +60,7 @@ jobs: rm ./olm/bundle/Dockerfile cp -r ./olm/bundle $GITHUB_WORKSPACE/ - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: repository: ${{ github.event.inputs.upstreamRepo }} path: sandbox diff --git a/.github/workflows/terrascan.yaml b/.github/workflows/terrascan.yaml index cb8a2ad2d7..6854e4a6b0 100644 --- a/.github/workflows/terrascan.yaml +++ b/.github/workflows/terrascan.yaml @@ -23,7 +23,7 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: Checkout repository - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 - name: Run Terrascan id: terrascan uses: accurics/terrascan-action@a4b0f7ec5fb3c4c66b8e76d824d958002f6ce12c @@ -35,6 +35,6 @@ jobs: sarif_upload: true iac_dir: chart/k8gb - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11 + uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12 with: sarif_file: terrascan.sarif diff --git a/.github/workflows/terratest-istiov1beta1.yaml b/.github/workflows/terratest-istiov1beta1.yaml index 0305b04223..4fa527886c 100644 --- a/.github/workflows/terratest-istiov1beta1.yaml +++ b/.github/workflows/terratest-istiov1beta1.yaml @@ -14,7 +14,7 @@ jobs: if: ${{ github.event.label.name == 'istio' }} steps: - name: Checkout - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 @@ -73,7 +73,7 @@ jobs: if: always() uses: ./.github/actions/print-debug - - uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 + - uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1 if: always() with: name: terratest-logs diff --git a/.github/workflows/terratest-more-clusters.yaml b/.github/workflows/terratest-more-clusters.yaml index 4b2bb6df05..87bc83fe46 100644 --- a/.github/workflows/terratest-more-clusters.yaml +++ b/.github/workflows/terratest-more-clusters.yaml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-24.04 if: ${{ github.event.label.name == 'heavy-tests' }} steps: - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 @@ -75,7 +75,7 @@ jobs: if: always() uses: ./.github/actions/print-debug - - uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 + - uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1 if: always() with: name: terratest-logs diff --git a/.github/workflows/terratest.yaml b/.github/workflows/terratest.yaml index 8b9c272042..d6f964282b 100644 --- a/.github/workflows/terratest.yaml +++ b/.github/workflows/terratest.yaml @@ -45,7 +45,7 @@ jobs: if: ${{ needs.skip-check.outputs.should_skip != 'true' }} && !contains( github.event.pull_request.labels.*.name, 'renovate') steps: - name: Checkout - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 @@ -100,7 +100,7 @@ jobs: if: always() uses: ./.github/actions/print-debug - - uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 + - uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1 if: always() with: name: terratest-logs diff --git a/.github/workflows/upgrade-testing.yaml b/.github/workflows/upgrade-testing.yaml index 7e70289c51..93566d9712 100644 --- a/.github/workflows/upgrade-testing.yaml +++ b/.github/workflows/upgrade-testing.yaml @@ -44,7 +44,7 @@ jobs: needs: skip-check if: ${{ needs.skip-check.outputs.should_skip != 'true' }} && !contains( github.event.pull_request.labels.*.name, 'renovate') steps: - - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 + - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 with: fetch-depth: 0 @@ -95,7 +95,7 @@ jobs: if: always() uses: ./.github/actions/print-debug - - uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 + - uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1 if: always() with: name: terratest-logs diff --git a/chart/k8gb/values.yaml b/chart/k8gb/values.yaml index df7cdb4704..b942ce2808 100644 --- a/chart/k8gb/values.yaml +++ b/chart/k8gb/values.yaml @@ -227,7 +227,7 @@ tracing: jaegerImage: # -- if `tracing.deployJaeger==true` this image will be used in the deployment for Jaeger repository: jaegertracing/all-in-one - tag: 1.61.0 + tag: 1.62.0 pullPolicy: Always istio: