Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-02-23 08:20:15 -05:00
Code Issues Packages Projects Releases Wiki Activity

deps: update GitHub action dependencies (#1099)

Browse Source 
Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
This commit is contained in:
renovate[bot] 2023-01-27 16:12:26 +01:00 committed by GitHub
parent dcde73b4c4
commit 17ff8c43d7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/build-os-image.yml vendored
View File

@ -637,7 +637,7 @@ jobs:
echo "::endgroup::" echo "::endgroup::"
- name: Create SBOM in SPDX fromat - name: Create SBOM in SPDX fromat
uses: anchore/sbom-action@54e36e45f34bc64728f51adb8044404daca492a6 # v0.13.2 uses: anchore/sbom-action@07978da4bdb4faa726e52dfc6b1bed63d4b56479 # v0.13.3
with: with:
path: image.root.tree path: image.root.tree
artifact-name: sbom.spdx.json artifact-name: sbom.spdx.json
@ -645,7 +645,7 @@ jobs:
format: spdx-json format: spdx-json
- name: Create SBOM in CycloneDX fromat - name: Create SBOM in CycloneDX fromat
uses: anchore/sbom-action@54e36e45f34bc64728f51adb8044404daca492a6 # v0.13.2 uses: anchore/sbom-action@07978da4bdb4faa726e52dfc6b1bed63d4b56479 # v0.13.3
with: with:
path: image.root.tree path: image.root.tree
artifact-name: sbom.cyclonedx.json artifact-name: sbom.cyclonedx.json
@ -653,7 +653,7 @@ jobs:
format: cyclonedx-json format: cyclonedx-json
- name: Create SBOM in Syft fromat - name: Create SBOM in Syft fromat
uses: anchore/sbom-action@54e36e45f34bc64728f51adb8044404daca492a6 # v0.13.2 uses: anchore/sbom-action@07978da4bdb4faa726e52dfc6b1bed63d4b56479 # v0.13.3
with: with:
path: image.root.tree path: image.root.tree
artifact-name: sbom.syft.json artifact-name: sbom.syft.json

6
.github/workflows/codeql.yml vendored
View File

@ -38,7 +38,7 @@ jobs:
go-version: "1.19.5" go-version: "1.19.5"
- name: Initialize CodeQL - name: Initialize CodeQL
uses: github/codeql-action/init@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39 uses: github/codeql-action/init@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
with: with:
languages: ${{ matrix.language }} languages: ${{ matrix.language }}
@ -57,9 +57,9 @@ jobs:
echo "::endgroup::" echo "::endgroup::"
- name: Autobuild - name: Autobuild
uses: github/codeql-action/autobuild@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39 uses: github/codeql-action/autobuild@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
- name: Perform CodeQL Analysis - name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39 uses: github/codeql-action/analyze@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
with: with:
category: "/language:${{ matrix.language }}" category: "/language:${{ matrix.language }}"

2
.github/workflows/scorecard.yml vendored
View File

@ -39,6 +39,6 @@ jobs:
retention-days: 5 retention-days: 5
- name: Upload to code-scanning - name: Upload to code-scanning
uses: github/codeql-action/upload-sarif@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39 uses: github/codeql-action/upload-sarif@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
with: with:
sarif_file: results.sarif sarif_file: results.sarif