chore(deps): bump actions/checkout from 3 to 4

.github/workflows/deployment-test.yaml

@@ -56,7 +56,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: test-prepare
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/run-deployment-test
         name: "Run deployment test using KinD and Helm"
         with:
@@ -80,7 +80,7 @@ jobs:
     needs: test-prepare
     steps:
       - name: Checkout
-        uses: actions/checkout@v3.5.2
+        uses: actions/checkout@v4
       - uses: ./.github/actions/run-deployment-test
         name: "Run deployment test using KinD and Helm"
         with:
@@ -107,7 +107,7 @@ jobs:
       needs.secret-presence.outputs.AZURE_KV_CREDS
     steps:
       - name: Checkout
-        uses: actions/checkout@v3.3.0
+        uses: actions/checkout@v4
       - name: "Login to AZ CLI"
         run: |
           az login --service-principal -u="${{ secrets.AZURE_CLIENT_ID }}" --password="${{ secrets.AZURE_CLIENT_SECRET }}" --tenant="${{ secrets.AZURE_TENANT_ID }}"

.github/workflows/draft-new-release.yaml

@@ -37,7 +37,7 @@ jobs:
       pages: write
       pull-requests: write
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - name: Create release branch
         run: git checkout -b release/${{ github.event.inputs.version }}
       - name: Initialize mandatory git config

.github/workflows/helm-lint.yaml

@@ -44,7 +44,7 @@ jobs:
       ##############
       ### Set-Up ###
       ##############
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
       - name: helm (setup)

.github/workflows/kics.yml

@@ -40,7 +40,7 @@ jobs:
       security-events: write
 
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - name: KICS scan
         uses: checkmarx/kics-github-action@v1.5

.github/workflows/publish-docker.yaml

@@ -54,7 +54,7 @@ jobs:
       contents: write
       packages: write
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/publish-docker-image
         name: Publish ${{ matrix.variant.img }}
         with:

.github/workflows/publish-maven.yaml

@@ -42,7 +42,7 @@ jobs:
       packages: write
     steps:
       # Set-Up
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-java
 
       # Import GPG Key

.github/workflows/publish-new-release.yml

@@ -70,7 +70,7 @@ jobs:
           echo "RELEASE_VERSION=${{ needs.release-version.outputs.RELEASE_VERSION }}" >> $GITHUB_ENV
 
       # Set-Up
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-java
 
       # Import GPG Key
@@ -107,7 +107,7 @@ jobs:
                    { dir: edc-dataplane,    img: edc-dataplane-hashicorp-vault } ]
 
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - name: Export RELEASE_VERSION env
         run: |
           echo "RELEASE_VERSION=${{ needs.release-version.outputs.RELEASE_VERSION }}" >> $GITHUB_ENV
@@ -136,7 +136,7 @@ jobs:
       - name: Export RELEASE_VERSION env
         run: |
           echo "RELEASE_VERSION=${{ needs.release-version.outputs.RELEASE_VERSION }}" >> $GITHUB_ENV
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
       - name: Install Helm
@@ -179,7 +179,7 @@ jobs:
       - name: Export RELEASE_VERSION env
         run: |
           echo "RELEASE_VERSION=${{ needs.release-version.outputs.RELEASE_VERSION }}" >> $GITHUB_ENV
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
         with:
           # 0 to fetch the full history due to upcoming merge of releases into main branch
           fetch-depth: 0

.github/workflows/publish-swaggerhub.yaml

@@ -49,7 +49,7 @@ jobs:
       SWAGGERHUB_API_KEY: ${{ secrets.SWAGGERHUB_API_KEY }}
       SWAGGERHUB_USER: ${{ secrets.SWAGGERHUB_USER }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Setup JDK 17
         uses: actions/setup-java@v3.12.0

.github/workflows/publish.yaml

@@ -82,7 +82,7 @@ jobs:
     permissions:
       contents: write
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/publish-docker-image
         name: Publish ${{ matrix.variant.img }}
         with:
@@ -106,7 +106,7 @@ jobs:
       needs.secret-presence.outputs.HAS_OSSRH && github.event_name != 'pull_request' && github.ref != 'refs/heads/releases'
     steps:
       # Set-Up
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       # Import GPG Key
       - uses: ./.github/actions/import-gpg-key

.github/workflows/trivy.yml

@@ -55,7 +55,7 @@ jobs:
       contents: read
       security-events: write
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - name: Run Trivy vulnerability scanner in repo mode
         uses: aquasecurity/trivy-action@master
         with:
@@ -90,7 +90,7 @@ jobs:
           - edc-dataplane-azure-vault
           - edc-dataplane-hashicorp-vault
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
         ## This step will fail if the docker images is not found
       - name: "Check if image exists"

.github/workflows/veracode.yaml

@@ -42,7 +42,7 @@ jobs:
   verify-formatting:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
       - uses: ./.github/actions/setup-java
@@ -66,7 +66,7 @@ jobs:
                    { dir: edc-dataplane,    name: edc-dataplane-hashicorp-vault } ]
     steps:
       # Set-Up
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-java
       # Build
       - name: Build ${{ matrix.variant.name }}

.github/workflows/verify.yaml

@@ -31,7 +31,7 @@ jobs:
   verify-license-headers:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
       - name: "Check for files without a license header"
         run: |-
           # checks all java, yaml, kts and sql files for an Apache 2.0 license header
@@ -46,7 +46,7 @@ jobs:
   verify-helm-docs:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - uses: addnab/docker-run-action@v3
         with:
@@ -69,7 +69,7 @@ jobs:
   verify-formatting:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - uses: ./.github/actions/setup-java
       - name: Run Checkstyle
@@ -79,7 +79,7 @@ jobs:
   markdown-lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - name: Install mardkdownlint
         run: npm install -g markdownlint-cli2
@@ -92,7 +92,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ verify-formatting, verify-license-headers ]
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - uses: ./.github/actions/setup-java
 
@@ -103,7 +103,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ verify-formatting, verify-license-headers ]
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - uses: ./.github/actions/setup-java
 
@@ -114,7 +114,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ verify-formatting, verify-license-headers ]
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - uses: ./.github/actions/setup-java
 
@@ -125,7 +125,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ verify-formatting, verify-license-headers ]
     steps:
-      - uses: actions/checkout@v3.5.2
+      - uses: actions/checkout@v4
 
       - uses: ./.github/actions/setup-java
 
@@ -146,7 +146,7 @@ jobs:
           POSTGRES_PASSWORD: password
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-java
 
       - name: Run Postgresql E2E tests
@@ -157,10 +157,10 @@ jobs:
     needs: [ verify-formatting, verify-license-headers ]
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-java
 
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Starting MIW, Keycloak and Postgres Servers
         run: |
           cd edc-tests/miw-tests/src/test/resources/docker-environment

DEPENDENCIES

@@ -46,8 +46,8 @@ maven/mavencentral/com.fasterxml.jackson.module/jackson-module-jakarta-xmlbind-a
 maven/mavencentral/com.fasterxml.jackson/jackson-bom/2.14.2, Apache-2.0, approved, #7931
 maven/mavencentral/com.fasterxml.jackson/jackson-bom/2.15.2, Apache-2.0, approved, #7929
 maven/mavencentral/com.fasterxml.woodstox/woodstox-core/6.5.1, Apache-2.0, approved, #7950
-maven/mavencentral/com.github.docker-java/docker-java-api/3.3.0, Apache-2.0, approved, clearlydefined
-maven/mavencentral/com.github.docker-java/docker-java-api/3.3.3, , restricted, clearlydefined
+maven/mavencentral/com.github.docker-java/docker-java-api/3.3.0, Apache-2.0, approved, #10346
+maven/mavencentral/com.github.docker-java/docker-java-api/3.3.3, Apache-2.0, approved, #10346
 maven/mavencentral/com.github.docker-java/docker-java-transport-zerodep/3.3.0, Apache-2.0 AND (Apache-2.0 AND BSD-3-Clause), approved, #7946
 maven/mavencentral/com.github.docker-java/docker-java-transport-zerodep/3.3.3, Apache-2.0 AND (Apache-2.0 AND BSD-3-Clause), approved, #7946
 maven/mavencentral/com.github.docker-java/docker-java-transport/3.3.0, Apache-2.0, approved, #7942
@@ -146,11 +146,11 @@ maven/mavencentral/io.swagger.core.v3/swagger-annotations/2.2.10, Apache-2.0, ap
 maven/mavencentral/io.swagger.core.v3/swagger-core-jakarta/2.2.2, Apache-2.0, approved, #5929
 maven/mavencentral/io.swagger.core.v3/swagger-core/2.2.10, Apache-2.0, approved, #9265
 maven/mavencentral/io.swagger.core.v3/swagger-integration-jakarta/2.2.2, Apache-2.0, approved, clearlydefined
-maven/mavencentral/io.swagger.core.v3/swagger-integration/2.2.10, Apache-2.0, approved, clearlydefined
+maven/mavencentral/io.swagger.core.v3/swagger-integration/2.2.10, Apache-2.0, approved, #10352
 maven/mavencentral/io.swagger.core.v3/swagger-jaxrs2-jakarta/2.2.2, Apache-2.0, approved, clearlydefined
 maven/mavencentral/io.swagger.core.v3/swagger-jaxrs2/2.2.10, Apache-2.0, approved, #9814
 maven/mavencentral/io.swagger.core.v3/swagger-models-jakarta/2.2.2, Apache-2.0, approved, #5919
-maven/mavencentral/io.swagger.core.v3/swagger-models/2.2.10, Apache-2.0, approved, clearlydefined
+maven/mavencentral/io.swagger.core.v3/swagger-models/2.2.10, LicenseRef-scancode-proprietary-license AND Apache-2.0, restricted, #10354
 maven/mavencentral/jakarta.activation/jakarta.activation-api/1.2.1, EPL-2.0 OR BSD-3-Clause OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.jaf
 maven/mavencentral/jakarta.activation/jakarta.activation-api/2.1.0, EPL-2.0 OR BSD-3-Clause OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.jaf
 maven/mavencentral/jakarta.annotation/jakarta.annotation-api/2.1.1, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.ca
@@ -335,7 +335,7 @@ maven/mavencentral/org.eclipse.jetty/jetty-servlet/11.0.15, EPL-2.0 OR Apache-2.
 maven/mavencentral/org.eclipse.jetty/jetty-util/11.0.15, EPL-2.0 OR Apache-2.0, approved, rt.jetty
 maven/mavencentral/org.eclipse.jetty/jetty-webapp/11.0.15, EPL-2.0 OR Apache-2.0, approved, rt.jetty
 maven/mavencentral/org.eclipse.jetty/jetty-xml/11.0.15, EPL-2.0 OR Apache-2.0, approved, rt.jetty
-maven/mavencentral/org.flywaydb/flyway-core/9.22.0, , restricted, clearlydefined
+maven/mavencentral/org.flywaydb/flyway-core/9.22.0, Apache-2.0, approved, #10349
 maven/mavencentral/org.glassfish.hk2.external/aopalliance-repackaged/3.0.4, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.glassfish
 maven/mavencentral/org.glassfish.hk2/hk2-api/3.0.4, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.glassfish
 maven/mavencentral/org.glassfish.hk2/hk2-locator/3.0.4, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.glassfish
@@ -413,15 +413,15 @@ maven/mavencentral/org.slf4j/slf4j-api/2.0.5, MIT, approved, #5915
 maven/mavencentral/org.slf4j/slf4j-api/2.0.7, MIT, approved, #5915
 maven/mavencentral/org.slf4j/slf4j-api/2.0.9, MIT, approved, #5915
 maven/mavencentral/org.testcontainers/database-commons/1.18.3, MIT, approved, clearlydefined
-maven/mavencentral/org.testcontainers/database-commons/1.19.0, , restricted, clearlydefined
+maven/mavencentral/org.testcontainers/database-commons/1.19.0, Apache-2.0, approved, #10345
 maven/mavencentral/org.testcontainers/jdbc/1.18.3, MIT, approved, clearlydefined
-maven/mavencentral/org.testcontainers/jdbc/1.19.0, , restricted, clearlydefined
+maven/mavencentral/org.testcontainers/jdbc/1.19.0, Apache-2.0, approved, #10348
 maven/mavencentral/org.testcontainers/junit-jupiter/1.18.3, MIT, approved, #7941
-maven/mavencentral/org.testcontainers/junit-jupiter/1.19.0, , restricted, clearlydefined
+maven/mavencentral/org.testcontainers/junit-jupiter/1.19.0, None, restricted, #10344
 maven/mavencentral/org.testcontainers/postgresql/1.18.3, MIT, approved, #9332
-maven/mavencentral/org.testcontainers/postgresql/1.19.0, , restricted, clearlydefined
+maven/mavencentral/org.testcontainers/postgresql/1.19.0, None, restricted, #10350
 maven/mavencentral/org.testcontainers/testcontainers/1.18.3, MIT, approved, #7938
-maven/mavencentral/org.testcontainers/testcontainers/1.19.0, , restricted, clearlydefined
+maven/mavencentral/org.testcontainers/testcontainers/1.19.0, None, restricted, #10347
 maven/mavencentral/org.yaml/snakeyaml/1.33, Apache-2.0, approved, clearlydefined
 maven/mavencentral/org.yaml/snakeyaml/2.0, Apache-2.0 AND (Apache-2.0 OR BSD-3-Clause OR EPL-1.0 OR GPL-2.0-or-later OR LGPL-2.1-or-later), approved, #7275
 maven/mavencentral/org.yaml/snakeyaml/2.2, Apache-2.0 AND (Apache-2.0 OR BSD-3-Clause OR EPL-1.0 OR GPL-2.0-or-later OR LGPL-2.1-or-later), approved, #10232