From 763caeed76a07b5b3822d1a161727fe3d5e6e5e0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 25 Nov 2024 23:30:47 +0000 Subject: [PATCH] Bump the github-actions group with 3 updates Bumps the github-actions group with 3 updates: [bridgecrewio/checkov-action](https://github.com/bridgecrewio/checkov-action), [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) and [updatecli/updatecli-action](https://github.com/updatecli/updatecli-action). Updates `bridgecrewio/checkov-action` from 12.2913.0 to 12.2920.0 - [Release notes](https://github.com/bridgecrewio/checkov-action/releases) - [Commits](https://github.com/bridgecrewio/checkov-action/compare/06270f7ecf3b18a0a85f1f3356f141bc01872ca6...5ae57a8860ce0657cb09591f5b8b8d9ead999a68) Updates `zgosalvez/github-actions-ensure-sha-pinned-actions` from 3.0.16 to 3.0.17 - [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases) - [Commits](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/compare/38608ef4fb69adae7f1eac6eeb88e67b7d083bfd...5d6ac37a4cef8b8df67f482a8e384987766f0213) Updates `updatecli/updatecli-action` from 2.70.0 to 2.71.0 - [Release notes](https://github.com/updatecli/updatecli-action/releases) - [Commits](https://github.com/updatecli/updatecli-action/compare/704a64517239e0993c5e3bf6749a063b8f950d9f...cb631ef5547ed05db3db64bb2ad42a6cc36e3097) --- updated-dependencies: - dependency-name: bridgecrewio/checkov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: updatecli/updatecli-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/checkov.yml | 2 +- .github/workflows/pre-commit.yaml | 2 +- .github/workflows/updatecli.yaml | 4 ++-- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml index 801ee655..c6d48ccd 100644 --- a/.github/workflows/checkov.yml +++ b/.github/workflows/checkov.yml @@ -18,7 +18,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Run checkov - uses: bridgecrewio/checkov-action@06270f7ecf3b18a0a85f1f3356f141bc01872ca6 # v12.2913.0 + uses: bridgecrewio/checkov-action@5ae57a8860ce0657cb09591f5b8b8d9ead999a68 # v12.2920.0 with: config_file: .checkov.yml output_format: cli,sarif diff --git a/.github/workflows/pre-commit.yaml b/.github/workflows/pre-commit.yaml index 088f4fd6..6767bafc 100644 --- a/.github/workflows/pre-commit.yaml +++ b/.github/workflows/pre-commit.yaml @@ -17,7 +17,7 @@ jobs: contents: write steps: - name: Ensure SHA pinned actions - uses: zgosalvez/github-actions-ensure-sha-pinned-actions@38608ef4fb69adae7f1eac6eeb88e67b7d083bfd # v3.0.16 + uses: zgosalvez/github-actions-ensure-sha-pinned-actions@5d6ac37a4cef8b8df67f482a8e384987766f0213 # v3.0.17 with: allowlist: | Alfresco/alfresco-build-tools/ diff --git a/.github/workflows/updatecli.yaml b/.github/workflows/updatecli.yaml index eb26c24a..6e160ca6 100644 --- a/.github/workflows/updatecli.yaml +++ b/.github/workflows/updatecli.yaml @@ -37,7 +37,7 @@ jobs: password: ${{ secrets.QUAY_PASSWORD }} - name: Install Updatecli - uses: updatecli/updatecli-action@704a64517239e0993c5e3bf6749a063b8f950d9f # v2.70.0 + uses: updatecli/updatecli-action@cb631ef5547ed05db3db64bb2ad42a6cc36e3097 # v2.71.0 - run: updatecli apply env: @@ -81,7 +81,7 @@ jobs: password: ${{ secrets.QUAY_PASSWORD }} - name: Install Updatecli - uses: updatecli/updatecli-action@704a64517239e0993c5e3bf6749a063b8f950d9f # v2.70.0 + uses: updatecli/updatecli-action@cb631ef5547ed05db3db64bb2ad42a6cc36e3097 # v2.71.0 - name: Checkout updatecli configs uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2