diff --git a/.github/workflows/_build_artifacts.yml b/.github/workflows/_build_artifacts.yml index 621f336fb..3f988ae66 100644 --- a/.github/workflows/_build_artifacts.yml +++ b/.github/workflows/_build_artifacts.yml @@ -72,7 +72,7 @@ jobs: APPLICATION_NAME=api GIT_SHA=${{ inputs.sha }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: ref: ${{ inputs.sha }} - name: Set up Docker Buildx @@ -152,7 +152,7 @@ jobs: ARTIFACT_PATH: ${{ matrix.artifact }}_${{ matrix.version }}_${{ matrix.arch }}.exe RELEASE_NAME: ${{ matrix.release_name }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: ref: ${{ inputs.sha }} - uses: ./.github/actions/setup-rust @@ -281,7 +281,7 @@ jobs: gateway_image: ${{ steps.image-name.outputs.gateway_image }} http_test_server_image: ${{ steps.image-name.outputs.http-test-server_image }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: ref: ${{ inputs.sha }} - uses: ./.github/actions/ghcr-docker-login @@ -470,7 +470,7 @@ jobs: version: 1.0.6 - name: http-test-server steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: ref: ${{ inputs.sha }} - uses: ./.github/actions/ghcr-docker-login diff --git a/.github/workflows/_codeql.yml b/.github/workflows/_codeql.yml index ea4027d65..61080e3bd 100644 --- a/.github/workflows/_codeql.yml +++ b/.github/workflows/_codeql.yml @@ -29,7 +29,7 @@ jobs: # working-directory: 'swift/apple' steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Initialize CodeQL uses: github/codeql-action/init@v3 with: diff --git a/.github/workflows/_elixir.yml b/.github/workflows/_elixir.yml index c6d16df57..9456afc9d 100644 --- a/.github/workflows/_elixir.yml +++ b/.github/workflows/_elixir.yml @@ -15,7 +15,7 @@ jobs: POSTGRES_HOST: localhost GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-postgres - uses: ./.github/actions/setup-elixir with: @@ -53,7 +53,7 @@ jobs: MIX_ENV: dev GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-elixir id: setup-beam with: @@ -90,7 +90,7 @@ jobs: MIX_ENV: test GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-elixir with: mix_env: ${{ env.MIX_ENV }} @@ -120,7 +120,7 @@ jobs: POSTGRES_HOST: localhost GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-postgres - uses: ./.github/actions/setup-elixir with: @@ -173,7 +173,7 @@ jobs: - 8200:8200/tcp options: --cap-add=IPC_LOCK steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-postgres - uses: nanasess/setup-chromedriver@e93e57b843c0c92788f22483f1a31af8ee48db25 # v2.3.0 - run: | diff --git a/.github/workflows/_integration_tests.yml b/.github/workflows/_integration_tests.yml index 31660d38f..590b33286 100644 --- a/.github/workflows/_integration_tests.yml +++ b/.github/workflows/_integration_tests.yml @@ -124,7 +124,7 @@ jobs: # Too noisy can cause flaky tests due to the amount of data rust_log: debug steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/ghcr-docker-login with: github_token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/_kotlin.yml b/.github/workflows/_kotlin.yml index 02d9c0ad4..267dfe5ef 100644 --- a/.github/workflows/_kotlin.yml +++ b/.github/workflows/_kotlin.yml @@ -16,7 +16,7 @@ jobs: # Android SDK tools hardware accel is available only on Linux runners runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-android with: sccache_azure_connection_string: ${{ secrets.SCCACHE_AZURE_CONNECTION_STRING }} @@ -64,7 +64,7 @@ jobs: build-command: "./gradlew assembleRelease" output-path: app/build/outputs/apk/release/app-release.apk steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-tags: true # Otherwise we cannot embed the correct version into the build. - uses: ./.github/actions/setup-android @@ -124,7 +124,7 @@ jobs: runs-on: ubuntu-24.04 name: build-debug steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-android with: sccache_azure_connection_string: ${{ secrets.SCCACHE_AZURE_CONNECTION_STRING }} diff --git a/.github/workflows/_rust.yml b/.github/workflows/_rust.yml index b56808811..3305d41ae 100644 --- a/.github/workflows/_rust.yml +++ b/.github/workflows/_rust.yml @@ -26,7 +26,7 @@ jobs: runs-on: [ubuntu-24.04, macos-14, windows-2022] runs-on: ${{ matrix.runs-on }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-rust id: setup-rust with: @@ -75,7 +75,7 @@ jobs: ] runs-on: ${{ matrix.runs-on }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-rust id: setup-rust with: @@ -138,7 +138,7 @@ jobs: fuzz-target: [ip_packet] runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-rust id: setup-rust with: @@ -166,7 +166,7 @@ jobs: - { runs-on: ubuntu-24.04, test: token-path-linux.sh } runs-on: ${{ matrix.runs-on }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-rust with: sccache_azure_connection_string: ${{ secrets.SCCACHE_AZURE_CONNECTION_STRING }} diff --git a/.github/workflows/_static-analysis.yml b/.github/workflows/_static-analysis.yml index 8db9628ae..8f7d86799 100644 --- a/.github/workflows/_static-analysis.yml +++ b/.github/workflows/_static-analysis.yml @@ -34,7 +34,7 @@ jobs: version-check: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Check version is up to date run: | ./scripts/bump-versions.sh @@ -51,7 +51,7 @@ jobs: link-check: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: lycheeverse/lychee-action@82202e5e9c2f4ef1a55a3d02563e1cb6041e5332 # v2.4.1 with: fail: true @@ -60,13 +60,13 @@ jobs: actionlint: runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: raven-actions/actionlint@3a24062651993d40fed1019b58ac6fbdfbf276cc # v2.0.1 global-linter: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 with: python-version: "3.11" diff --git a/.github/workflows/_swift.yml b/.github/workflows/_swift.yml index 5fca72f24..f3effa90c 100644 --- a/.github/workflows/_swift.yml +++ b/.github/workflows/_swift.yml @@ -61,7 +61,7 @@ jobs: # mark:next-apple-version release-name: macos-client-1.5.9 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-tags: true # Otherwise we cannot embed the correct version into the build. - uses: ./.github/actions/setup-rust diff --git a/.github/workflows/_tauri.yml b/.github/workflows/_tauri.yml index 704907594..0a7a79c1c 100644 --- a/.github/workflows/_tauri.yml +++ b/.github/workflows/_tauri.yml @@ -43,7 +43,7 @@ jobs: static-analysis: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-node with: npmjs-token: ${{ secrets.NPMJS_TOKEN }} @@ -66,7 +66,7 @@ jobs: working-directory: ./rust/gui-client # The Windows client ignores RUST_LOG because it uses a settings file instead steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/setup-node with: npmjs-token: ${{ secrets.NPMJS_TOKEN }} @@ -135,7 +135,7 @@ jobs: TARGET_DIR: ../target UPLOAD_SCRIPT: ../../scripts/build/tauri-upload-${{ matrix.os }}.sh steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-tags: true # Otherwise we cannot embed the correct version into the build. - uses: ./.github/actions/setup-node diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 5e6caac1b..b59405ef5 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -25,7 +25,7 @@ jobs: outputs: jobs_to_run: ${{ steps.plan.outputs.jobs_to_run }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Plan jobs to run id: plan run: | @@ -118,7 +118,7 @@ jobs: needs: planner runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Wait for all jobs to complete timeout-minutes: 60 env: @@ -308,7 +308,7 @@ jobs: - direct - relayed steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: ./.github/actions/ghcr-docker-login with: github_token: ${{ secrets.GITHUB_TOKEN }} @@ -404,7 +404,7 @@ jobs: pull-requests: write checks: write steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - uses: bencherdev/bencher@main - name: Download performance test results uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0 diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index db72d8749..f20022c91 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -26,7 +26,7 @@ jobs: # Needed to upload artifacts to a release packages: write steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Login to GitHub Container Registry uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0 with: @@ -96,7 +96,7 @@ jobs: - tag_prefix: android-client component: android-client steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: token: ${{ secrets.RELEASE_PR_BOT_GITHUB_TOKEN }} - if: ${{ startsWith(inputs.release_name || github.event.release.name, matrix.tag_prefix) }} diff --git a/.github/workflows/sentry.yml b/.github/workflows/sentry.yml index a1e6322bc..fab34a116 100644 --- a/.github/workflows/sentry.yml +++ b/.github/workflows/sentry.yml @@ -28,7 +28,7 @@ jobs: - component: android-client projects: android-client steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-depth: 0 - uses: ./.github/actions/create-sentry-release diff --git a/.github/workflows/website-links.yml b/.github/workflows/website-links.yml index dade9cba0..226ee91da 100644 --- a/.github/workflows/website-links.yml +++ b/.github/workflows/website-links.yml @@ -11,7 +11,7 @@ jobs: permissions: issues: write # required for peter-evans/create-issue-from-file steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Check links on website id: lychee