diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml index 42220222f1..00fabb91b2 100644 --- a/.github/workflows/audit.yml +++ b/.github/workflows/audit.yml @@ -24,7 +24,7 @@ jobs: audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Setup uses: ./tools/github-actions/setup - name: Audit diff --git a/.github/workflows/clean-cache.yml b/.github/workflows/clean-cache.yml index bfd08e6fc4..7ebd8f2a06 100644 --- a/.github/workflows/clean-cache.yml +++ b/.github/workflows/clean-cache.yml @@ -18,7 +18,7 @@ jobs: # Needed to delete cache from action actions: write steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Clean Branch Cache uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 env: diff --git a/.github/workflows/code-check.yml b/.github/workflows/code-check.yml index 2ccc4bb135..e8e46e923e 100644 --- a/.github/workflows/code-check.yml +++ b/.github/workflows/code-check.yml @@ -30,7 +30,7 @@ jobs: runs-on: ubuntu-latest continue-on-error: true steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: gaurav-nelson/github-action-markdown-link-check@d53a906aa6b22b8979d33bc86170567e619495ec # v1.0.15 with: base-branch: 'main' @@ -46,7 +46,7 @@ jobs: env: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: ${{ inputs.affected && '0' || '1' }} - name: Setup @@ -86,7 +86,7 @@ jobs: env: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: ${{ inputs.affected && '0' || '1' }} - name: Setup diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 5781e2126e..3ef53b70e5 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -46,7 +46,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/deploy-showcase.yml b/.github/workflows/deploy-showcase.yml index c2dc61664b..0d522b9cdb 100644 --- a/.github/workflows/deploy-showcase.yml +++ b/.github/workflows/deploy-showcase.yml @@ -31,7 +31,7 @@ jobs: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} steps: - name: Checkout - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/setup - name: build run: yarn nx build showcase diff --git a/.github/workflows/documentation.yml b/.github/workflows/documentation.yml index f7dafc79f5..33c2c231cc 100644 --- a/.github/workflows/documentation.yml +++ b/.github/workflows/documentation.yml @@ -35,7 +35,7 @@ jobs: build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/setup - name: Generate doc run: yarn doc:generate @@ -60,7 +60,7 @@ jobs: name: azure-static-webapp url: ${{ steps.deploy.outputs.static_web_app_url }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: ${{ inputs.artifactName }} diff --git a/.github/workflows/e2e-tests.yml b/.github/workflows/e2e-tests.yml index eb752e866c..f04bb20234 100644 --- a/.github/workflows/e2e-tests.yml +++ b/.github/workflows/e2e-tests.yml @@ -26,7 +26,7 @@ jobs: env: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/download-build-output - uses: ./tools/github-actions/setup - run: yarn playwright install diff --git a/.github/workflows/it-tests.yml b/.github/workflows/it-tests.yml index 60d99a124d..01e2b7c132 100644 --- a/.github/workflows/it-tests.yml +++ b/.github/workflows/it-tests.yml @@ -26,7 +26,7 @@ jobs: env: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/download-build-output - uses: ./tools/github-actions/setup - name: Setup verdaccio once for all tests @@ -63,7 +63,7 @@ jobs: ENFORCED_PACKAGE_MANAGER: ${{ matrix.packageManager }} PREPARE_TEST_ENV_TYPE: ${{ matrix.testEnvironment }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/download-build-output - uses: ./tools/github-actions/setup - shell: bash diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index b5af45fe53..2ea7cbff29 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -27,7 +27,7 @@ jobs: yarn_lock_check: runs-on: ubuntu-latest steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/setup env: YARN_ENABLE_HARDENED_MODE: 1 @@ -39,7 +39,7 @@ jobs: NX_CLOUD_ACCESS_TOKEN: ${{ secrets.NX_CLOUD_ACCESS_TOKEN }} NX_SKIP_NX_CACHE: ${{ github.event_name == 'push' && startsWith(github.ref, 'refs/heads/release') }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./tools/github-actions/setup - uses: ./.github/actions/setup-java with: @@ -58,7 +58,7 @@ jobs: nextVersionTag: ${{ steps.newVersion.outputs.nextVersionTag }} isPreRelease: ${{ contains( steps.newVersion.outputs.nextVersionTag, '-' ) || github.event_name == 'pull_request' || github.event_name == 'merge_group'}} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4 with: node-version: 20 diff --git a/.github/workflows/md-external-links-check.yml b/.github/workflows/md-external-links-check.yml index fd6bbe7c67..465bd8de05 100644 --- a/.github/workflows/md-external-links-check.yml +++ b/.github/workflows/md-external-links-check.yml @@ -10,7 +10,7 @@ jobs: markdown-link-check: runs-on: ubuntu-latest steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: gaurav-nelson/github-action-markdown-link-check@d53a906aa6b22b8979d33bc86170567e619495ec # v1.0.15 with: use-quiet-mode: 'yes' @@ -21,7 +21,7 @@ jobs: needs: [markdown-link-check] if: failure() steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Create an issue uses: JasonEtco/create-an-issue@1b14a70e4d8dc185e5cc76d3bec9eab20257b2c5 # v2.9.2 env: diff --git a/.github/workflows/pr-labels.yml b/.github/workflows/pr-labels.yml index ba2614b7e3..7901a25587 100644 --- a/.github/workflows/pr-labels.yml +++ b/.github/workflows/pr-labels.yml @@ -15,7 +15,7 @@ jobs: pull-requests: write issues: write steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 0 - name: Setup diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 580f632b19..6b9773ab40 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -63,7 +63,7 @@ jobs: # Needed to publish with provenance id-token: write steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 2 ref: ${{ inputs.gitRef }} @@ -92,7 +92,7 @@ jobs: APP_PATH: 'apps/github-cascading-app/dist' environment: 'cascading-app' steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 2 - uses: ./tools/github-actions/download-build-output @@ -125,7 +125,7 @@ jobs: environment: ${{inputs.isPullRequest && 'development' || 'production'}} needs: [publish] steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 2 - uses: ./tools/github-actions/download-build-output diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index c8ae59d007..9d5b231b89 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -31,7 +31,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false diff --git a/packages/@o3r/pipeline/schematics/ng-add/templates/github/__dot__github/workflows/main.yml b/packages/@o3r/pipeline/schematics/ng-add/templates/github/__dot__github/workflows/main.yml index 2bc1f6b76f..d5733c4393 100644 --- a/packages/@o3r/pipeline/schematics/ng-add/templates/github/__dot__github/workflows/main.yml +++ b/packages/@o3r/pipeline/schematics/ng-add/templates/github/__dot__github/workflows/main.yml @@ -19,7 +19,7 @@ jobs: build: runs-on: <%= runner %> steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./.github/actions/setup - name: Build run: <%= packageManager %> run build @@ -27,7 +27,7 @@ jobs: unit-tests: runs-on: <%= runner %> steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./.github/actions/setup - name: Unit tests run: <%= packageManager %> run test @@ -35,7 +35,7 @@ jobs: lint: runs-on: <%= runner %> steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - uses: ./.github/actions/setup - name: Lint run: <%= packageManager %> run lint @@ -47,7 +47,7 @@ jobs: outputs: nextVersionTag: ${{ steps.new-version.outputs.nextVersionTag }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: New version if: github.event_name != 'merge_group' id: new-version