Skip to content

Commit

Permalink
chore(deps): update workflows (#1101)
Browse files Browse the repository at this point in the history 
[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[actions/download-artifact](https://github.com/actions/download-artifact)
| action | patch | `v4.1.7` -> `v4.1.8` |
|
[actions/upload-artifact](https://github.com/actions/upload-artifact)
| action | patch | `v4.3.3` -> `v4.3.4` |
|
[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action)
| action | digest | `d70bba7` -> `4fd8129` |
|
[docker/setup-qemu-action](https://github.com/docker/setup-qemu-action)
| action | digest | `6882732` -> `5927c83` |
| [ruby/setup-ruby](https://github.com/ruby/setup-ruby) | action |
minor | `v1.183.0` -> `v1.185.0` |

---

### Release Notes

<details>
<summary>actions/download-artifact (actions/download-artifact)</summary>

###
[`v4.1.8`](https://github.com/actions/download-artifact/releases/tag/v4.1.8)

[Compare
Source](https://github.com/actions/download-artifact/compare/v4.1.7...v4.1.8)

#### What's Changed

- Update
[@&#8203;actions/artifact](https://github.com/actions/artifact)
version, bump dependencies by
[@&#8203;robherley](https://github.com/robherley) in
[actions/download-artifact#341

**Full Changelog**:
actions/download-artifact@v4...v4.1.8

</details>

<details>
<summary>actions/upload-artifact (actions/upload-artifact)</summary>

###
[`v4.3.4`](https://github.com/actions/upload-artifact/releases/tag/v4.3.4)

[Compare
Source](https://github.com/actions/upload-artifact/compare/v4.3.3...v4.3.4)

##### What's Changed

- Update
[@&#8203;actions/artifact](https://github.com/actions/artifact)
version, bump dependencies by
[@&#8203;robherley](https://github.com/robherley) in
[actions/upload-artifact#584

**Full Changelog**:
actions/upload-artifact@v4.3.3...v4.3.4

</details>

<details>
<summary>ruby/setup-ruby (ruby/setup-ruby)</summary>

###
[`v1.185.0`](https://github.com/ruby/setup-ruby/releases/tag/v1.185.0)

[Compare
Source](https://github.com/ruby/setup-ruby/compare/v1.184.0...v1.185.0)

##### What's Changed

- Removed macos-arm-oss from GitHub Actions by
[@&#8203;hsbt](https://github.com/hsbt) in
[ruby/setup-ruby#617

**Full Changelog**:
ruby/setup-ruby@v1.184.0...v1.185.0

###
[`v1.184.0`](https://github.com/ruby/setup-ruby/releases/tag/v1.184.0)

[Compare
Source](https://github.com/ruby/setup-ruby/compare/v1.183.0...v1.184.0)

##### What's Changed

- Add jruby-9.4.8.0 by
[@&#8203;ruby-builder-bot](https://github.com/ruby-builder-bot) in
[ruby/setup-ruby#616

**Full Changelog**:
ruby/setup-ruby@v1.183.0...v1.184.0

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "before 6am on monday" in timezone
Australia/Sydney, Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/google/osv-scanner).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40MjEuOSIsInVwZGF0ZWRJblZlciI6IjM3LjQyMS45IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->
  • Loading branch information
@renovate-bot
renovate-bot committed Jul 8, 2024
1 parent b09580d commit 52b7ea6
Show file tree
Hide file tree
Showing 7 changed files with 20 additions and 20 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/checks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,7 +82,7 @@ jobs:
with:
persist-credentials: false
- run: scripts/build_test_images.sh
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: image-fixtures-${{ github.run_number }}-${{ github.run_attempt }}
path: internal/image/fixtures/*.tar
Expand All @@ -103,7 +103,7 @@ jobs:
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
persist-credentials: false
- uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
- uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: image-fixtures-${{ github.run_number }}-${{ github.run_attempt }}
path: internal/image/fixtures/
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/goreleaser.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,8 +31,8 @@ jobs:
with:
go-version-file: .go-version
check-latest: true
- uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3
- uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3
- uses: docker/setup-qemu-action@5927c834f5b4fdf503fca6f4c7eccda82949e1ee # v3
- uses: docker/setup-buildx-action@4fd812986e6c8c2a69e18311145f9371337f27d4 # v3
- name: ghcr-login
uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3
with:
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/osv-scanner-reusable-pr.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -86,21 +86,21 @@ jobs:
# format to the repository Actions tab.
- name: "Upload artifact"
if: "!cancelled()"
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: SARIF file
path: ${{ inputs.results-file-name }}
retention-days: 5
- name: "Upload old scan json results"
if: "!cancelled()"
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: old-json-results
path: old-results.json
retention-days: 5
- name: "Upload new scan json results"
if: "!cancelled()"
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: new-json-results
path: new-results.json
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/osv-scanner-reusable.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,7 @@ jobs:
with:
persist-credentials: false
- name: "Download custom artifact if specified"
uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
if: "${{ inputs.download-artifact != '' }}"
with:
name: "${{ inputs.download-artifact }}"
Expand All @@ -83,7 +83,7 @@ jobs:
# format to the repository Actions tab.
- name: "Upload artifact"
if: "!cancelled()"
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: SARIF file
path: ${{ inputs.results-file-name }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/prerelease-check.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -69,7 +69,7 @@ jobs:
with:
persist-credentials: false
- run: scripts/build_test_images.sh
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: image-fixtures-${{ github.run_number }}-${{ github.run_attempt }}
path: internal/image/fixtures/*.tar
Expand All @@ -91,7 +91,7 @@ jobs:
with:
persist-credentials: false
ref: ${{ inputs.commit }}
- uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
- uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: image-fixtures-${{ github.run_number }}-${{ github.run_attempt }}
path: internal/image/fixtures/
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/scorecards.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,7 @@ jobs:
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: SARIF file
path: results.sarif
Expand Down
16 changes: 8 additions & 8 deletions .github/workflows/semantic.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,7 +49,7 @@ jobs:
- run: python3 scripts/generators/generate-debian-versions.py
- run: git status
- run: stat debian-db.zip
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-debian-versions
path: internal/semantic/fixtures/debian-versions-generated.txt
Expand All @@ -73,7 +73,7 @@ jobs:
extensions: zip
- run: php scripts/generators/generate-packagist-versions.php
- run: git status
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-packagist-versions
path: internal/semantic/fixtures/packagist-versions-generated.txt
Expand All @@ -93,7 +93,7 @@ jobs:
run: pip install packaging==21.3
- run: python3 scripts/generators/generate-pypi-versions.py
- run: git status
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-pypi-versions
path: internal/semantic/fixtures/pypi-versions-generated.txt
Expand All @@ -106,14 +106,14 @@ jobs:
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
persist-credentials: false
- uses: ruby/setup-ruby@1d0e911f615a112e322369596f10ee0b95b010ae # v1.183.0
- uses: ruby/setup-ruby@3a77c29278ae80936b4cb030fefc7d21c96c786f # v1.185.0
with:
ruby-version: "3.1"
- name: setup dependencies
run: gem install rubyzip
- run: ruby scripts/generators/generate-rubygems-versions.rb
- run: git status
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-rubygems-versions
path: internal/semantic/fixtures/rubygems-versions-generated.txt
Expand All @@ -139,7 +139,7 @@ jobs:
-o scripts/generators/lib/maven-artifact-3.8.5.jar
- run: java -cp 'scripts/generators/lib/*' scripts/generators/GenerateMavenVersions.java
- run: git status
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-maven-versions
path: internal/semantic/fixtures/maven-versions-generated.txt
Expand All @@ -157,7 +157,7 @@ jobs:
r-version: "3.5.3"
- run: Rscript scripts/generators/generate-cran-versions.R
- run: git status
- uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
- uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
with:
name: generated-cran-versions
path: internal/semantic/fixtures/cran-versions-generated.txt
Expand All @@ -183,7 +183,7 @@ jobs:
go-version-file: .go-version
cache: true

- uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
- uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
pattern: generated-*-versions
path: internal/semantic/fixtures/
Expand Down

0 comments on commit 52b7ea6

Please sign in to comment.