From acc82b205a3a4b43bd108dbd2bedb455a0cb6479 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Wed, 26 Oct 2022 15:48:35 +0200
Subject: [PATCH] Update github actions dependencies (#366)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 .github/actions/constellation_create/action.yml |  4 ++--
 .github/actions/container_sbom/action.yml       |  2 +-
 .github/actions/sonobuoy/action.yml             |  2 +-
 .github/workflows/azure-snp-reporter.yml        |  2 +-
 .github/workflows/build-os-image.yml            | 10 +++++-----
 5 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/actions/constellation_create/action.yml b/.github/actions/constellation_create/action.yml
index 41462241b..9fd63a301 100644
--- a/.github/actions/constellation_create/action.yml
+++ b/.github/actions/constellation_create/action.yml
@@ -129,7 +129,7 @@ runs:
         constellation create -c ${{ inputs.controlNodesCount }} -w ${{ inputs.workerNodesCount }} --name e2e-test -y
       shell: bash
     - name: Upload constellation-state.json
-      uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+      uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
       with:
         name: constellation-state.json
         path: constellation-state.json
@@ -196,7 +196,7 @@ runs:
       continue-on-error: true
       if: ${{ always() }}
     - name: Upload boot logs
-      uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+      uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
       with:
         name: serial-logs
         path: "*.log"
diff --git a/.github/actions/container_sbom/action.yml b/.github/actions/container_sbom/action.yml
index 59f4b7d0b..3e8e93a59 100644
--- a/.github/actions/container_sbom/action.yml
+++ b/.github/actions/container_sbom/action.yml
@@ -18,7 +18,7 @@ runs:
   using: "composite"
   steps:
     - name: Install Cosign
-      uses: sigstore/cosign-installer@7cc35d7fdbe70d4278a0c96779081e6fac665f88 # tag=v2.8.0
+      uses: sigstore/cosign-installer@9becc617647dfa20ae7b1151972e9b3a2c338a2b # tag=v2.8.1
       if: ${{ inputs.cosignPublicKey != '' && inputs.cosignPrivateKey != '' && inputs.cosignPassword != '' }}
     - name: Download syft & grype
       run: |
diff --git a/.github/actions/sonobuoy/action.yml b/.github/actions/sonobuoy/action.yml
index 9cc38ee2b..274e8966b 100644
--- a/.github/actions/sonobuoy/action.yml
+++ b/.github/actions/sonobuoy/action.yml
@@ -30,7 +30,7 @@ runs:
       run: sonobuoy retrieve -x --kubeconfig constellation-admin.conf
       shell: bash
     - name: Upload test results
-      uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+      uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
       with:
         name: "junit_01.xml"
         path: "**/junit_01.xml"
diff --git a/.github/workflows/azure-snp-reporter.yml b/.github/workflows/azure-snp-reporter.yml
index 0a02e826c..9f760cb84 100644
--- a/.github/workflows/azure-snp-reporter.yml
+++ b/.github/workflows/azure-snp-reporter.yml
@@ -41,7 +41,7 @@ jobs:
           outputPath: ${{ github.workspace }}/maa-report.jwt
 
       - name: Upload report JWT
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: maa-report.jwt
           path: "${{ github.workspace }}/maa-report.jwt"
diff --git a/.github/workflows/build-os-image.yml b/.github/workflows/build-os-image.yml
index aa9d7a7ee..12513efc8 100644
--- a/.github/workflows/build-os-image.yml
+++ b/.github/workflows/build-os-image.yml
@@ -43,7 +43,7 @@ jobs:
           outputPath: ${{ github.workspace }}/build/disk-mapper
 
       - name: Upload dependencies
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: dependencies
           path: |
@@ -155,7 +155,7 @@ jobs:
         continue-on-error: true
 
       - name: Upload raw OS image as artifact
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: image-${{ matrix.csp }}
           path: ${{ github.workspace }}/image/mkosi.output.${{ matrix.csp }}/fedora~36/image.raw
@@ -163,7 +163,7 @@ jobs:
         continue-on-error: true
 
       - name: Upload individual OS parts as artifacts
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: parts-${{ matrix.csp }}
           path: |
@@ -178,7 +178,7 @@ jobs:
         continue-on-error: true
 
       - name: Upload manifest as artifact
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: manifest-${{ matrix.csp }}
           path: |
@@ -407,7 +407,7 @@ jobs:
         working-directory: ${{ github.workspace }}/image/measured-boot
 
       - name: Upload expected PCRs as artifact
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # tag=v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # tag=v3.1.1
         with:
           name: pcrs
           path: pcrs-${{ matrix.csp }}.json