chore: bump action versions and resolve depreciation warnings (#30)

* chore: bump action versions and resolve depreciation warnings * chore: remove old workflow * fix: change release action and resolve bad reference * chore: use new action for getting app token
ibm-skills-network · Jan 24, 2024 · d821a6d · d821a6d
1 parent 51607c7
commit d821a6d
Show file tree

Hide file tree

Showing 5 changed files with 13 additions and 62 deletions.
diff --git a/.github/workflows/appscan-legacy.yml b/.github/workflows/appscan-legacy.yml
@@ -19,14 +19,14 @@ jobs:
     name: static analysis
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - id: skills-network-bot-app
-      uses: getsentry/action-github-app-token@v1
+      uses: actions/create-github-app-token@v1
       with:
-        app_id: ${{ secrets.skills-network-bot-app-id }}
-        private_key: ${{ secrets.skills-network-bot-private-key }}
+        app-id: ${{ secrets.skills-network-bot-app-id }}
+        private-key: ${{ secrets.skills-network-bot-private-key }}
     - name: download SAST client
       run: |
         curl -sS https://cloud.appscan.com/api/SCX/StaticAnalyzer/SAClientUtil?os=linux -o /tmp/sast-client.zip
@@ -63,7 +63,7 @@ jobs:
               "AssetGroupId": "'"$ASOC_ASSET_GROUP_ID"'",
             }' | jq -r .Id)
         fi
-        echo "::set-output name=APPSCAN_APP_ID::$app_id"
+        echo "APPSCAN_APP_ID=$app_id" >> $GITHUB_OUTPUT
 
     - name: prepare and queue scan
       env:

diff --git a/.github/workflows/deploy-to-k8s.yml b/.github/workflows/deploy-to-k8s.yml
diff --git a/.github/workflows/mirror-github-ibm.yml b/.github/workflows/mirror-github-ibm.yml
@@ -13,7 +13,7 @@ jobs:
     name: mirror
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - uses: pixta-dev/repository-mirroring-action@v1

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -89,10 +89,7 @@ jobs:
 
       - name: Get latest release tag
         id: latest-release
-        uses: fangqiuming/[email protected]
-        with:
-          repository: ${{ github.repository }}
-          token: ${{ github.token }}
+        uses: Lukacs5/[email protected]
         if: ${{ github.event_name == 'schedule' }}
 
         # base release is the release without any security patch suffix
@@ -101,7 +98,7 @@ jobs:
       - name: Get base release tag
         id: base-release
         run: |
-          echo "base-release=$(echo '${{ steps.latest-release.outputs.tag_name }}' | sed -r 's/(-[0-9]{8})$//')" >> $GITHUB_OUTPUT
+          echo "base-release=$(echo '${{ steps.latest-release.outputs.latest-release }}' | sed -r 's/(-[0-9]{8})$//')" >> $GITHUB_OUTPUT
 
       - name: print release tag
         run: |

diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml
@@ -14,16 +14,16 @@ jobs:
     name: static analysis
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - id: skills-network-bot-app
-      uses: getsentry/action-github-app-token@v1
+      uses: actions/create-github-app-token@v1
       with:
-        app_id: ${{ secrets.skills-network-bot-app-id }}
-        private_key: ${{ secrets.skills-network-bot-private-key }}
+        app-id: ${{ secrets.skills-network-bot-app-id }}
+        private-key: ${{ secrets.skills-network-bot-private-key }}
     - name: HCL AppScan CodeSweep
-      uses: HCL-TECH-SOFTWARE/appscan-codesweep-action@v1
+      uses: HCL-TECH-SOFTWARE/appscan-codesweep-action@v2
       with:
         asoc_key: ${{ secrets.asoc-key }}
         asoc_secret: ${{ secrets.asoc-secret }}