From 885fe52f3c41a3931cd2a606bfc0578fcc7b60b7 Mon Sep 17 00:00:00 2001 From: Salman Chishti Date: Tue, 17 Mar 2026 15:55:44 +0000 Subject: [PATCH 1/2] Upgrade GitHub Actions for Node 24 compatibility (#561) Signed-off-by: Salman Muin Kayser Chishti <13schishti@gmail.com> --- .github/workflows/code-scanner.yaml | 2 +- .github/workflows/codespell.yaml | 2 +- .github/workflows/e2e.yaml | 8 ++++---- .github/workflows/nightly.yaml | 4 ++-- .github/workflows/pr.yaml | 4 ++-- .github/workflows/release.yaml | 4 ++-- 6 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/code-scanner.yaml b/.github/workflows/code-scanner.yaml index 408346c36..846a7aab3 100644 --- a/.github/workflows/code-scanner.yaml +++ b/.github/workflows/code-scanner.yaml @@ -16,7 +16,7 @@ jobs: code-analysis: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - run: ls -al - name: Scan current project id: scan diff --git a/.github/workflows/codespell.yaml b/.github/workflows/codespell.yaml index 18a7f0e64..d8c5dd3f0 100644 --- a/.github/workflows/codespell.yaml +++ b/.github/workflows/codespell.yaml @@ -17,7 +17,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v6 - name: Codespell uses: codespell-project/actions-codespell@v2 with: diff --git a/.github/workflows/e2e.yaml b/.github/workflows/e2e.yaml index 2dda98c69..c3fca3169 100644 --- a/.github/workflows/e2e.yaml +++ b/.github/workflows/e2e.yaml @@ -16,11 +16,11 @@ jobs: runs-on: ubuntu-22.04 if: ${{ github.event.ref != '' }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Setup Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0 with: go-version: '1.22' - name: Run tests @@ -31,13 +31,13 @@ jobs: runs-on: ubuntu-22.04 if: ${{ github.event.action == 'e2e-command' }} steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: repository: ${{ github.event.client_payload.pull_request.head.repo.full_name }} ref: ${{ github.event.client_payload.pull_request.head.ref }} fetch-depth: 0 - name: Setup Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0 with: go-version: '1.22' - name: Run tests diff --git a/.github/workflows/nightly.yaml b/.github/workflows/nightly.yaml index 6095e2cda..b89fca1e4 100644 --- a/.github/workflows/nightly.yaml +++ b/.github/workflows/nightly.yaml @@ -16,7 +16,7 @@ jobs: with: app-id: ${{ vars.CNOE_GH_WORKFLOW_TOKEN_APP_ID }} private-key: ${{ secrets.CNOE_GH_WORKFLOW_TOKEN_PRIVATE_KEY }} - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: token: ${{ steps.generate-token.outputs.token }} fetch-depth: 0 @@ -44,7 +44,7 @@ jobs: echo "PREVIOUS_NIGHTLY_TAG=$prev_tag" >> $GITHUB_ENV git push --delete origin $prev_tag - name: 'Clean up nightly releases' - uses: actions/github-script@v7 + uses: actions/github-script@v8 with: github-token: ${{ steps.generate-token.outputs.token }} script: | diff --git a/.github/workflows/pr.yaml b/.github/workflows/pr.yaml index c470b4d4b..81c2d9575 100644 --- a/.github/workflows/pr.yaml +++ b/.github/workflows/pr.yaml @@ -8,9 +8,9 @@ jobs: build: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Setup Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0 with: go-version: '1.22' - name: Run tests diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 927d70f0c..0e679402d 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -12,11 +12,11 @@ jobs: release: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - run: git fetch --force --tags - - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + - uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0 with: go-version: '1.22' - name: Set GORELEASER_PREVIOUS_TAG in actual release From e1036dd1e531fa42dfbf1015e4604ad9a891ce96 Mon Sep 17 00:00:00 2001 From: Salman Chishti Date: Tue, 17 Mar 2026 15:58:22 +0000 Subject: [PATCH 2/2] Upgrade GitHub Actions to latest versions (#562) Signed-off-by: Salman Muin Kayser Chishti <13schishti@gmail.com> --- .github/workflows/code-scanner.yaml | 2 +- .github/workflows/nightly.yaml | 2 +- .github/workflows/release.yaml | 4 ++-- .github/workflows/slash-commands.yaml | 4 ++-- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/code-scanner.yaml b/.github/workflows/code-scanner.yaml index 846a7aab3..c22d6116b 100644 --- a/.github/workflows/code-scanner.yaml +++ b/.github/workflows/code-scanner.yaml @@ -20,7 +20,7 @@ jobs: - run: ls -al - name: Scan current project id: scan - uses: anchore/scan-action@v3 + uses: anchore/scan-action@v7 with: fail-build: false path: "." diff --git a/.github/workflows/nightly.yaml b/.github/workflows/nightly.yaml index b89fca1e4..4bfeca8d1 100644 --- a/.github/workflows/nightly.yaml +++ b/.github/workflows/nightly.yaml @@ -12,7 +12,7 @@ jobs: steps: - name: Generate a token id: generate-token - uses: actions/create-github-app-token@v1 + uses: actions/create-github-app-token@v2 with: app-id: ${{ vars.CNOE_GH_WORKFLOW_TOKEN_APP_ID }} private-key: ${{ secrets.CNOE_GH_WORKFLOW_TOKEN_PRIVATE_KEY }} diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 0e679402d..928ee7e88 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -32,14 +32,14 @@ jobs: OUT_FILE=/tmp/idpbuilder make build - name: Generate a homebrew tap update token id: generate-token - uses: actions/create-github-app-token@v1 + uses: actions/create-github-app-token@v2 with: app-id: ${{ vars.CNOE_HOMEBREW_APP_ID }} private-key: ${{ secrets.CNOE_HOMEBREW_PRIVATE_KEY }} repositories: | homebrew-tap - name: GoReleaser - uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0 + uses: goreleaser/goreleaser-action@e435ccd777264be153ace6237001ef4d979d3a7a # v6.4.0 id: run-goreleaser with: version: latest diff --git a/.github/workflows/slash-commands.yaml b/.github/workflows/slash-commands.yaml index d3213bbac..f365b3fc6 100644 --- a/.github/workflows/slash-commands.yaml +++ b/.github/workflows/slash-commands.yaml @@ -10,12 +10,12 @@ jobs: steps: - name: Generate a token id: generate-token - uses: actions/create-github-app-token@v1 + uses: actions/create-github-app-token@v2 with: app-id: ${{ vars.CNOE_GH_WORKFLOW_TOKEN_APP_ID }} private-key: ${{ secrets.CNOE_GH_WORKFLOW_TOKEN_PRIVATE_KEY }} - name: Slash Command Dispatch - uses: peter-evans/slash-command-dispatch@v4 + uses: peter-evans/slash-command-dispatch@v5 with: token: ${{ steps.generate-token.outputs.token }} commands: |