diff --git a/.github/workflows/base-image.yml b/.github/workflows/base-image.yml index 7af12fa..066a8d2 100644 --- a/.github/workflows/base-image.yml +++ b/.github/workflows/base-image.yml @@ -14,7 +14,7 @@ jobs: build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: google-github-actions/auth@v3 with: diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 60bd798..66fec10 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -13,7 +13,7 @@ jobs: analyze: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: github/codeql-action/init@v4 with: diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index 515ef4f..ab1b358 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -18,7 +18,7 @@ jobs: outputs: digest: ${{ steps.digest.outputs.digest }} steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: google-github-actions/auth@v3 with: diff --git a/.github/workflows/terraform.yml b/.github/workflows/terraform.yml index 9c56e2e..7e8fd91 100644 --- a/.github/workflows/terraform.yml +++ b/.github/workflows/terraform.yml @@ -21,14 +21,14 @@ jobs: if: github.event_name == 'pull_request' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: google-github-actions/auth@v3 with: workload_identity_provider: projects/129850122606/locations/global/workloadIdentityPools/github-pool/providers/github-provider service_account: casecomp-deploy@casecomp-495718.iam.gserviceaccount.com - - uses: hashicorp/setup-terraform@v3 + - uses: hashicorp/setup-terraform@v4 with: terraform_version: ${{ env.TF_VERSION }} @@ -85,14 +85,14 @@ jobs: if: (github.event_name == 'push' && github.ref == 'refs/heads/main') || github.event_name == 'workflow_dispatch' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: google-github-actions/auth@v3 with: workload_identity_provider: projects/129850122606/locations/global/workloadIdentityPools/github-pool/providers/github-provider service_account: casecomp-deploy@casecomp-495718.iam.gserviceaccount.com - - uses: hashicorp/setup-terraform@v3 + - uses: hashicorp/setup-terraform@v4 with: terraform_version: ${{ env.TF_VERSION }} diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 0043b9c..da3c42a 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -13,7 +13,7 @@ jobs: unit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: actions/setup-node@v5 with: node-version: 24 @@ -21,9 +21,10 @@ jobs: - run: node test/unit-test.js smoke: + continue-on-error: true runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: actions/setup-node@v5 with: node-version: 24 @@ -48,7 +49,7 @@ jobs: audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: actions/setup-node@v5 with: node-version: 24 @@ -61,7 +62,7 @@ jobs: secrets: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: fetch-depth: 0 - uses: gitleaks/gitleaks-action@v2 @@ -71,7 +72,7 @@ jobs: scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Generate SBOM (Syft) uses: anchore/sbom-action@v0 @@ -81,7 +82,7 @@ jobs: output-file: sbom.spdx.json - name: Vulnerability scan (Grype) - uses: anchore/scan-action@v6 + uses: anchore/scan-action@v7 id: grype with: sbom: sbom.spdx.json @@ -90,7 +91,7 @@ jobs: add-cpes-if-none: true - name: Upload SBOM - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v7 with: name: sbom-${{ github.sha }} path: sbom.spdx.json @@ -98,7 +99,7 @@ jobs: - name: Upload Grype report if: always() && steps.grype.outputs.sarif != '' - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v7 with: name: grype-sarif-${{ github.sha }} path: ${{ steps.grype.outputs.sarif }}