From 30b718a1a519ac3e675df7f3c630f540572af787 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 20 May 2024 16:04:15 +0000 Subject: [PATCH] chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#314) --- .github/workflows/demo.yml | 6 +++--- .github/workflows/sarifdemo.yml | 4 ++-- .github/workflows/test.yml | 6 +++--- .github/workflows/update-grype-release.yml | 2 +- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/demo.yml b/.github/workflows/demo.yml index b055ca25..19c4196f 100644 --- a/.github/workflows/demo.yml +++ b/.github/workflows/demo.yml @@ -6,7 +6,7 @@ jobs: test-image: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - uses: ./ with: image: "alpine:latest" @@ -15,7 +15,7 @@ jobs: test-directory: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - uses: ./ with: path: "tests/fixtures/npm-project" @@ -25,7 +25,7 @@ jobs: sbom: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - uses: ./ with: sbom: tests/fixtures/test_sbom.spdx.json diff --git a/.github/workflows/sarifdemo.yml b/.github/workflows/sarifdemo.yml index 192f3702..531fb56f 100644 --- a/.github/workflows/sarifdemo.yml +++ b/.github/workflows/sarifdemo.yml @@ -7,7 +7,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the code - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - name: Run the local Scan Action with SARIF generation enabled id: scan uses: ./ @@ -30,7 +30,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the code - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - name: Run the local Scan Action with SARIF generation enabled id: scan uses: ./ diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 17336b8f..a2f2f071 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -11,7 +11,7 @@ jobs: build: # make sure build/ci work properly and there is no faked build ncc built scripts runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - run: npm ci - run: npm run audit - run: npm run build @@ -27,7 +27,7 @@ jobs: ports: - 5000:5000 steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - name: Build images run: | for distro in alpine centos debian; do @@ -48,7 +48,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 with: path: ./ diff --git a/.github/workflows/update-grype-release.yml b/.github/workflows/update-grype-release.yml index 18301a34..bcf27f4b 100644 --- a/.github/workflows/update-grype-release.yml +++ b/.github/workflows/update-grype-release.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest if: github.repository == 'anchore/scan-action' steps: - - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 + - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 - name: Get latest Grype version id: latest-version env: