actions/gha-workflows
4
1
Fork 0
Code Issues Pull Requests Actions Packages Releases Activity

Compare commits

base: actions:f2bf54d8d741d6b6fa5a9205463d6d44222fe879
Branches Tags
actions:main
...
compare: actions:d7b6e6ba46c93075d196c3b3c86a322d5a920c79
Branches Tags
actions:main

3 Commits
f2bf54d8d7 ... d7b6e6ba46

Author SHA1 Message Date
Renovate [BOT]
d7b6e6ba46 chore(deps): update actions/checkout action to v5 2025-08-29 18:39:36 +00:00
Renovate [BOT]
cdc2daf1d1 chore(deps): update sonarsource/sonarqube-scan-action action to v5.3.1 (#31) 
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [SonarSource/sonarqube-scan-action](https://github.com/SonarSource/sonarqube-scan-action) | action | patch | `v5.3.0` -> `v5.3.1` |

---

### Release Notes

<details>
<summary>SonarSource/sonarqube-scan-action (SonarSource/sonarqube-scan-action)</summary>

### [`v5.3.1`](https://github.com/SonarSource/sonarqube-scan-action/releases/tag/v5.3.1)

[Compare Source](https://github.com/SonarSource/sonarqube-scan-action/compare/v5.3.0...v5.3.1)

##### What's Changed

- Fix the scanner-update script by [@&#8203;henryju](https://github.com/henryju) in [#&#8203;194](https://github.com/SonarSource/sonarqube-scan-action/pull/194)
- SQSCANGHA-100 NO-JIRA Bump actions/checkout from 4 to 5 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;197](https://github.com/SonarSource/sonarqube-scan-action/pull/197)
- SQSCANGHA-101 Add more input injection tests by [@&#8203;aleksandra-bozhinoska-sonarsource](https://github.com/aleksandra-bozhinoska-sonarsource) in [#&#8203;200](https://github.com/SonarSource/sonarqube-scan-action/pull/200)
- pin actions/cache to a full-length commit SHA by [@&#8203;daantimmer](https://github.com/daantimmer) in [#&#8203;199](https://github.com/SonarSource/sonarqube-scan-action/pull/199)

##### New Contributors

- [@&#8203;daantimmer](https://github.com/daantimmer) made their first contribution in [#&#8203;199](https://github.com/SonarSource/sonarqube-scan-action/pull/199)

**Full Changelog**: <https://github.com/SonarSource/sonarqube-scan-action/compare/v5...v5.3.1>

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS44OC4yIiwidXBkYXRlZEluVmVyIjoiNDEuODguMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=-->

Reviewed-on: #31
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
 2025-08-29 20:18:29 +02:00
Renovate [BOT]
7621301358 chore(deps): update actions/attest-build-provenance action to v3 (#30) 
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) | action | major | `v2` -> `v3` |

---

### Release Notes

<details>
<summary>actions/attest-build-provenance (actions/attest-build-provenance)</summary>

### [`v3`](https://github.com/actions/attest-build-provenance/compare/v2...v3)

[Compare Source](https://github.com/actions/attest-build-provenance/compare/v2...v3)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS44OC4yIiwidXBkYXRlZEluVmVyIjoiNDEuODguMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=-->

Reviewed-on: #30
Co-authored-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
Co-committed-by: Renovate [BOT] <renovate-bot@git.tainton.uk>
 2025-08-29 20:18:03 +02:00
18 changed files with 31 additions and 31 deletions
Expand all files Collapse all files

2
.gitea/workflows/build-push-docker.yml
View File

@@ -43,7 +43,7 @@ jobs:
REPO: ${{ gitea.repository }} REPO: ${{ gitea.repository }}
- name: Check out repository - name: Check out repository
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
ref: ${{ inputs.release }} ref: ${{ inputs.release }}

2
.gitea/workflows/changelog.yaml
View File

@@ -19,7 +19,7 @@ jobs:
clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }} clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }}
steps: steps:
- name: Check out repository - name: Check out repository
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0

4
.gitea/workflows/ci-docker.yml
View File

@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -24,7 +24,7 @@ jobs:
no-fail: true no-fail: true
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python-poetry-with-docker.yml
View File

@@ -20,7 +20,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -66,7 +66,7 @@ jobs:
sed -i 's@${{ gitea.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ gitea.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python-poetry.yml
View File

@@ -20,7 +20,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -57,7 +57,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python-uv-with-docker.yml
View File

@@ -19,7 +19,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -63,7 +63,7 @@ jobs:
run: uv cache prune --ci run: uv cache prune --ci
- name: SonarQube Scan - name: SonarQube Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }} SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python-with-docker.yml
View File

@@ -17,7 +17,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -58,7 +58,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python.yml
View File

@@ -17,7 +17,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -51,7 +51,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/create-release.yml
View File

@@ -19,7 +19,7 @@ jobs:
clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }} clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }}
steps: steps:
- name: Check out repository - name: Check out repository
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
@@ -72,7 +72,7 @@ jobs:
needs: get_next_release needs: get_next_release
steps: steps:
- name: Check out repository - name: Check out repository
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0

2
.gitea/workflows/docker-compose-deploy.yml
View File

@@ -35,7 +35,7 @@ jobs:
url_title: 'View Logs' url_title: 'View Logs'
- name: "[ON RUNNER] Checkout the repo" - name: "[ON RUNNER] Checkout the repo"
uses: actions/checkout@v4 uses: actions/checkout@v5
- name: "[ON RUNNER] Set project variables" - name: "[ON RUNNER] Set project variables"
run: | run: |

2
.gitea/workflows/release-with-tag.yaml
View File

@@ -19,7 +19,7 @@ jobs:
clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }} clean_changelog: ${{ steps.get_next_version.outputs.clean_changelog }}
steps: steps:
- name: Check out repository - name: Check out repository
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0

4
.github/workflows/build-push-attest-docker.yml vendored
View File

@@ -24,7 +24,7 @@ jobs:
success: ${{ steps.set_flag.outputs.success }} success: ${{ steps.set_flag.outputs.success }}
steps: steps:
- name: Check out the repo - name: Check out the repo
uses: actions/checkout@v4 uses: actions/checkout@v5
with: with:
ref: ${{ inputs.release }} ref: ${{ inputs.release }}
@@ -59,7 +59,7 @@ jobs:
ghcr.io/${{ github.repository }}:${{ inputs.release }} ghcr.io/${{ github.repository }}:${{ inputs.release }}
- name: Generate artifact attestation - name: Generate artifact attestation
uses: actions/attest-build-provenance@v2 uses: actions/attest-build-provenance@v3
with: with:
subject-name: ghcr.io/${{ github.repository }} subject-name: ghcr.io/${{ github.repository }}
subject-digest: ${{ steps.push.outputs.digest }} subject-digest: ${{ steps.push.outputs.digest }}

4
.github/workflows/ci-docker.yml vendored
View File

@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.1.0 - uses: hadolint/hadolint-action@v3.1.0
@@ -22,7 +22,7 @@ jobs:
format: sonarqube format: sonarqube
no-fail: true no-fail: true
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.github/workflows/ci-python-poetry-with-docker.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
PYTHON_VERSION=${{ inputs.python-version }} PYTHON_VERSION=${{ inputs.python-version }}
echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.1.0 - uses: hadolint/hadolint-action@v3.1.0
@@ -49,7 +49,7 @@ jobs:
poetry run coverage xml poetry run coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.github/workflows/ci-python-poetry.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
PYTHON_VERSION=${{ inputs.python-version }} PYTHON_VERSION=${{ inputs.python-version }}
echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
@@ -41,7 +41,7 @@ jobs:
poetry run coverage xml poetry run coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.github/workflows/ci-python-with-docker.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
PYTHON_VERSION=${{ inputs.python-version }} PYTHON_VERSION=${{ inputs.python-version }}
echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.1.0 - uses: hadolint/hadolint-action@v3.1.0
@@ -50,7 +50,7 @@ jobs:
coverage xml coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.github/workflows/ci-python.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
PYTHON_VERSION=${{ inputs.python-version }} PYTHON_VERSION=${{ inputs.python-version }}
echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITHUB_OUTPUT
- name: Check out repository code - name: Check out repository code
uses: actions/checkout@v4.3.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
@@ -44,7 +44,7 @@ jobs:
coverage xml coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v5.3.0 uses: SonarSource/sonarqube-scan-action@v5.3.1
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

2
.github/workflows/create-release.yml vendored
View File

@@ -17,7 +17,7 @@ jobs:
release_name: ${{ steps.tag_version.outputs.new_tag }} release_name: ${{ steps.tag_version.outputs.new_tag }}
success: ${{ steps.set_flag.outputs.success }} success: ${{ steps.set_flag.outputs.success }}
steps: steps:
- uses: actions/checkout@v4 - uses: actions/checkout@v5
with: with:
fetch-depth: 0 fetch-depth: 0