actions/gha-workflows
4
1
Fork 0
Code Issues Pull Requests Actions Packages Releases Activity

Compare commits

base: actions:main
Branches Tags
actions:main
..
compare: actions:0ed00d1fc91865a6e1f56d9a76070558232fec2e
Branches Tags
actions:main

1 Commits
main ... 0ed00d1fc9

Author SHA1 Message Date
Renovate [BOT]
0ed00d1fc9 chore(deps): update actions/checkout action to v5 2025-08-11 13:06:13 +00:00
15 changed files with 37 additions and 40 deletions
Expand all files Collapse all files

4
.gitea/workflows/ci-docker.yml
View File

@@ -16,7 +16,7 @@ jobs:
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
@@ -24,7 +24,7 @@ jobs:
no-fail: true no-fail: true
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

6
.gitea/workflows/ci-python-poetry-with-docker.yml
View File

@@ -24,7 +24,7 @@ jobs:
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
@@ -32,7 +32,7 @@ jobs:
no-fail: true no-fail: true
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ inputs.python-version }}" python-version: "${{ inputs.python-version }}"
@@ -66,7 +66,7 @@ jobs:
sed -i 's@${{ gitea.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ gitea.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python-poetry.yml
View File

@@ -25,7 +25,7 @@ jobs:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ inputs.python-version }}" python-version: "${{ inputs.python-version }}"
@@ -57,7 +57,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

6
.gitea/workflows/ci-python-uv-with-docker.yml
View File

@@ -24,7 +24,7 @@ jobs:
fetch-depth: 0 fetch-depth: 0
- name: Run Hadolint - name: Run Hadolint
uses: hadolint/hadolint-action@v3.3.0 uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
@@ -32,7 +32,7 @@ jobs:
no-fail: true no-fail: true
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ vars.PYTHON_VERSION }}" python-version: "${{ vars.PYTHON_VERSION }}"
@@ -63,7 +63,7 @@ jobs:
run: uv cache prune --ci run: uv cache prune --ci
- name: SonarQube Scan - name: SonarQube Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }} SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

6
.gitea/workflows/ci-python-with-docker.yml
View File

@@ -21,7 +21,7 @@ jobs:
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
@@ -29,7 +29,7 @@ jobs:
no-fail: true no-fail: true
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ inputs.python-version }}" python-version: "${{ inputs.python-version }}"
@@ -58,7 +58,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/ci-python.yml
View File

@@ -22,7 +22,7 @@ jobs:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ inputs.python-version }}" python-version: "${{ inputs.python-version }}"
@@ -51,7 +51,7 @@ jobs:
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

4
.gitea/workflows/docker-compose-deploy.yml
View File

@@ -24,7 +24,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: "[ON RUNNER] Notify Build Start" - name: "[ON RUNNER] Notify Build Start"
uses: https://git.tainton.uk/actions/pushover-action@v1.1.4 uses: https://git.tainton.uk/actions/pushover-action@v1.1.3
env: env:
PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }} PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }}
PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }} PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }}
@@ -85,7 +85,7 @@ jobs:
docker compose --env-file .env up --detach docker compose --env-file .env up --detach
- name: "[ON RUNNER] Notify Build End" - name: "[ON RUNNER] Notify Build End"
uses: https://git.tainton.uk/actions/pushover-action@v1.1.4 uses: https://git.tainton.uk/actions/pushover-action@v1.1.3
env: env:
PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }} PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }}
PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }} PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }}

4
.gitea/workflows/docker-compose-remove.yml
View File

@@ -24,7 +24,7 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: "[ON RUNNER] Notify Build Start" - name: "[ON RUNNER] Notify Build Start"
uses: https://git.tainton.uk/actions/pushover-action@v1.1.4 uses: https://git.tainton.uk/actions/pushover-action@v1.1.3
env: env:
PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }} PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }}
PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }} PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }}
@@ -54,7 +54,7 @@ jobs:
rm -rf ${{ env.project_folder }} rm -rf ${{ env.project_folder }}
- name: "[ON RUNNER] Notify Build End" - name: "[ON RUNNER] Notify Build End"
uses: https://git.tainton.uk/actions/pushover-action@v1.1.4 uses: https://git.tainton.uk/actions/pushover-action@v1.1.3
env: env:
PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }} PUSHOVER_APP_TOKEN: ${{ secrets.PUSHOVER_APP_TOKEN }}
PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }} PUSHOVER_USER_TOKEN: ${{ secrets.PUSHOVER_USER_TOKEN }}

2
.github/workflows/build-push-attest-docker.yml vendored
View File

@@ -59,7 +59,7 @@ jobs:
ghcr.io/${{ github.repository }}:${{ inputs.release }} ghcr.io/${{ github.repository }}:${{ inputs.release }}
- name: Generate artifact attestation - name: Generate artifact attestation
uses: actions/attest-build-provenance@v3 uses: actions/attest-build-provenance@v2
with: with:
subject-name: ghcr.io/${{ github.repository }} subject-name: ghcr.io/${{ github.repository }}
subject-digest: ${{ steps.push.outputs.digest }} subject-digest: ${{ steps.push.outputs.digest }}

6
.github/workflows/ci-docker.yml vendored
View File

@@ -15,14 +15,14 @@ jobs:
uses: actions/checkout@v5.0.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
format: sonarqube format: sonarqube
no-fail: true no-fail: true
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
@@ -34,7 +34,7 @@ jobs:
with: with:
args: --sarif-file-output=snyk.sarif --all-projects args: --sarif-file-output=snyk.sarif --all-projects
- name: Upload result to GitHub Code Scanning - name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: snyk.sarif sarif_file: snyk.sarif

8
.github/workflows/ci-python-poetry-with-docker.yml vendored
View File

@@ -25,14 +25,14 @@ jobs:
uses: actions/checkout@v5.0.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
format: sonarqube format: sonarqube
no-fail: true no-fail: true
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ steps.python-version.outputs.value }}" python-version: "${{ steps.python-version.outputs.value }}"
- name: Setup Poetry - name: Setup Poetry
@@ -49,7 +49,7 @@ jobs:
poetry run coverage xml poetry run coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
@@ -61,6 +61,6 @@ jobs:
with: with:
args: --sarif-file-output=snyk.sarif --all-projects args: --sarif-file-output=snyk.sarif --all-projects
- name: Upload result to GitHub Code Scanning - name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: snyk.sarif sarif_file: snyk.sarif

6
.github/workflows/ci-python-poetry.yml vendored
View File

@@ -26,7 +26,7 @@ jobs:
with: with:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ steps.python-version.outputs.value }}" python-version: "${{ steps.python-version.outputs.value }}"
- name: Setup Poetry - name: Setup Poetry
@@ -41,7 +41,7 @@ jobs:
poetry run coverage xml poetry run coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
@@ -53,6 +53,6 @@ jobs:
with: with:
args: --sarif-file-output=snyk.sarif --all-projects args: --sarif-file-output=snyk.sarif --all-projects
- name: Upload result to GitHub Code Scanning - name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: snyk.sarif sarif_file: snyk.sarif

8
.github/workflows/ci-python-with-docker.yml vendored
View File

@@ -25,14 +25,14 @@ jobs:
uses: actions/checkout@v5.0.0 uses: actions/checkout@v5.0.0
with: with:
fetch-depth: 0 fetch-depth: 0
- uses: hadolint/hadolint-action@v3.3.0 - uses: hadolint/hadolint-action@v3.1.0
with: with:
dockerfile: Dockerfile dockerfile: Dockerfile
output-file: hadolint.out output-file: hadolint.out
format: sonarqube format: sonarqube
no-fail: true no-fail: true
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ steps.python-version.outputs.value }}" python-version: "${{ steps.python-version.outputs.value }}"
- name: Update Pip - name: Update Pip
@@ -50,7 +50,7 @@ jobs:
coverage xml coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
@@ -62,6 +62,6 @@ jobs:
with: with:
args: --sarif-file-output=snyk.sarif --all-projects args: --sarif-file-output=snyk.sarif --all-projects
- name: Upload result to GitHub Code Scanning - name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: snyk.sarif sarif_file: snyk.sarif

6
.github/workflows/ci-python.yml vendored
View File

@@ -26,7 +26,7 @@ jobs:
with: with:
fetch-depth: 0 fetch-depth: 0
- name: Setup Python - name: Setup Python
uses: actions/setup-python@v6 uses: actions/setup-python@v5
with: with:
python-version: "${{ steps.python-version.outputs.value }}" python-version: "${{ steps.python-version.outputs.value }}"
- name: Update Pip - name: Update Pip
@@ -44,7 +44,7 @@ jobs:
coverage xml coverage xml
sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml sed -i 's@${{ github.workspace }}@/github/workspace@g' coverage.xml
- name: SonarQube Cloud Scan - name: SonarQube Cloud Scan
uses: SonarSource/sonarqube-scan-action@v6.0.0 uses: SonarSource/sonarqube-scan-action@v5.3.0
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
@@ -56,6 +56,6 @@ jobs:
with: with:
args: --sarif-file-output=snyk.sarif --all-projects args: --sarif-file-output=snyk.sarif --all-projects
- name: Upload result to GitHub Code Scanning - name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: snyk.sarif sarif_file: snyk.sarif

3
renovate.json
View File

@@ -11,9 +11,6 @@
"assigneesFromCodeOwners": false, "assigneesFromCodeOwners": false,
"rebaseWhen": "behind-base-branch", "rebaseWhen": "behind-base-branch",
"rollbackPrs": true, "rollbackPrs": true,
"semanticCommits": "enabled",
"semanticCommitScope": "deps",
"semanticCommitType": "feat",
"labels": [ "labels": [
"type/dependencies" "type/dependencies"
], ],