diff --git a/.github/workflows/actions.yml b/.github/workflows/actions.yml index ee20cb09ca179..64895c1402cc0 100644 --- a/.github/workflows/actions.yml +++ b/.github/workflows/actions.yml @@ -15,12 +15,12 @@ jobs: timeout-minutes: 10 steps: - uses: linkerd/dev/actions/setup-tools@v43 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: just-dev lint-actions devcontainer-versions: runs-on: ubuntu-22.04 steps: - uses: linkerd/dev/actions/setup-tools@v43 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: just-dev check-action-images diff --git a/.github/workflows/choco.yml b/.github/workflows/choco.yml index 953dd8b0f8aae..8645785b502c9 100644 --- a/.github/workflows/choco.yml +++ b/.github/workflows/choco.yml @@ -13,7 +13,7 @@ jobs: timeout-minutes: 10 runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: devblackops/github-action-psscriptanalyzer@854038567344559afaaa8ccb7a014452b99d86ee env: # https://github.com/devblackops/github-action-psscriptanalyzer/pull/3/files diff --git a/.github/workflows/codecov.yml b/.github/workflows/codecov.yml index b00e4b73b412b..255d32d1cc011 100644 --- a/.github/workflows/codecov.yml +++ b/.github/workflows/codecov.yml @@ -16,7 +16,7 @@ jobs: container: image: golang:1.22 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: go install gotest.tools/gotestsum@v0.4.2 - run: gotestsum -- -cover -coverprofile=coverage.out -v -mod=readonly ./... - uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238 @@ -31,7 +31,7 @@ jobs: container: image: node:20-stretch steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Yarn setup shell: bash run: bin/scurl -o- https://yarnpkg.com/install.sh | bash -s -- --version 1.21.1 --network-concurrency 1 @@ -54,7 +54,7 @@ jobs: image: docker://rust:1.76.0 options: --security-opt seccomp=unconfined steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - shell: bash run: mkdir -p target && cd target && bin/scurl -v https://github.com/xd009642/tarpaulin/releases/download/0.27.3/cargo-tarpaulin-x86_64-unknown-linux-musl.tar.gz | tar zxvf - && chmod 755 cargo-tarpaulin - run: target/cargo-tarpaulin tarpaulin --workspace --out Xml diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 527bfb60e1196..5ff9edd2d4e2a 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -40,7 +40,7 @@ jobs: with: go-version: "1.22" - name: Checkout - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Initialize # Unpinned action version so that we automatically get analyzer updates. diff --git a/.github/workflows/devcontainer.yml b/.github/workflows/devcontainer.yml index 6ce7fbe47e8a0..efb1485b98205 100644 --- a/.github/workflows/devcontainer.yml +++ b/.github/workflows/devcontainer.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-rust steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - shell: bash run: | # Extract current Rust version from the toolchain file. @@ -40,5 +40,5 @@ jobs: runs-on: ubuntu-22.04 steps: - uses: linkerd/dev/actions/setup-tools@v43 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: just-dev pull-dev-image diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml index 0b39cb69bb5f2..80cbcdf954ccf 100644 --- a/.github/workflows/go.yml +++ b/.github/workflows/go.yml @@ -8,7 +8,7 @@ jobs: meta: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: tj-actions/changed-files@c3a1bb2c992d77180ae65be6ae6c166cf40f857c id: changed with: @@ -31,7 +31,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-go steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just go-lint --verbose --timeout=10m @@ -42,7 +42,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-go steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just go-fmt @@ -53,7 +53,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-go steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just go-fetch - run: just go-test diff --git a/.github/workflows/helm.yml b/.github/workflows/helm.yml index 7dae7415b52c2..e471ee9de47d6 100644 --- a/.github/workflows/helm.yml +++ b/.github/workflows/helm.yml @@ -17,6 +17,6 @@ jobs: timeout-minutes: 5 steps: - uses: linkerd/dev/actions/setup-tools@v43 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: helm-docs - run: git diff --exit-code -- **/charts/**/README.md diff --git a/.github/workflows/integration.yml b/.github/workflows/integration.yml index 29bfdd9f74cb6..ffc05061e61ca 100644 --- a/.github/workflows/integration.yml +++ b/.github/workflows/integration.yml @@ -25,7 +25,7 @@ jobs: meta: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - id: tag run: echo "tag=$(CI_FORCE_CLEAN=1 bin/root-tag)" >> "$GITHUB_OUTPUT" - uses: tj-actions/changed-files@c3a1bb2c992d77180ae65be6ae6c166cf40f857c @@ -66,7 +66,7 @@ jobs: runs-on: ubuntu-22.04 timeout-minutes: 15 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: ./.github/actions/docker-build id: build with: @@ -104,7 +104,7 @@ jobs: - proxy timeout-minutes: 20 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: ./.github/actions/docker-build id: build env: @@ -135,7 +135,7 @@ jobs: runs-on: ubuntu-22.04 timeout-minutes: 15 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" @@ -170,7 +170,7 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - uses: olix0r/cargo-action-fmt/setup@9269f3aa1ff01775d95efc97037e2cbdb41d9684 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 with: pattern: image-archives-* @@ -228,7 +228,7 @@ jobs: - web timeout-minutes: 15 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: ./.github/actions/docker-build id: build with: @@ -262,7 +262,7 @@ jobs: runs-on: ubuntu-22.04 timeout-minutes: 15 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" @@ -287,7 +287,7 @@ jobs: runs-on: ubuntu-22.04 timeout-minutes: 30 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" @@ -321,7 +321,7 @@ jobs: - uses: extractions/setup-just@dd310ad5a97d8e7b41793f8ef055398d51ad4de6 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" diff --git a/.github/workflows/js.yml b/.github/workflows/js.yml index 498e1120d4005..9c4273526b771 100644 --- a/.github/workflows/js.yml +++ b/.github/workflows/js.yml @@ -19,7 +19,7 @@ jobs: env: NODE_ENV: test steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Yarn setup shell: bash run: | diff --git a/.github/workflows/markdown.yml b/.github/workflows/markdown.yml index e76c0cb6b64df..d605beaa6be45 100644 --- a/.github/workflows/markdown.yml +++ b/.github/workflows/markdown.yml @@ -14,7 +14,7 @@ jobs: timeout-minutes: 5 runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: DavidAnson/markdownlint-cli2-action@db43aef879112c3119a410d69f66701e0d530809 with: globs: | diff --git a/.github/workflows/proto.yml b/.github/workflows/proto.yml index b9ed923b083c4..28691f76110e9 100644 --- a/.github/workflows/proto.yml +++ b/.github/workflows/proto.yml @@ -18,6 +18,6 @@ jobs: container: ghcr.io/linkerd/dev:v43-go steps: - run: apt update && apt install -y unzip - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: bin/protoc-diff diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index a534fd7295fc1..e3315d9c567e5 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -21,7 +21,7 @@ jobs: tag: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: echo "tag=$(CI_FORCE_CLEAN=1 bin/root-tag)" >> "$GITHUB_OUTPUT" id: tag outputs: @@ -48,7 +48,7 @@ jobs: # policy-controller docker builds have occasionally hit a 30-minute timeout. timeout-minutes: 45 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Set tag run: echo 'TAG=${{ needs.tag.outputs.tag }}' >> "$GITHUB_ENV" - uses: ./.github/actions/docker-build @@ -95,7 +95,7 @@ jobs: needs: [docker_build] steps: - name: Checkout code - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" @@ -127,7 +127,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout code - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed with: go-version: "1.22" @@ -156,7 +156,7 @@ jobs: steps: - name: Checkout code if: startsWith(github.ref, 'refs/tags/stable') - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Chocolatey - update nuspec if: startsWith(github.ref, 'refs/tags/stable') run: | @@ -186,7 +186,7 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # - name: Download choco package # if: startsWith(github.ref, 'refs/tags/stable') # uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 @@ -234,7 +234,7 @@ jobs: if: startsWith(github.ref, 'refs/tags/stable') || startsWith(github.ref, 'refs/tags/edge') runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Set install target for stable if: startsWith(github.ref, 'refs/tags/stable') run: echo "INSTALL=install" >> "$GITHUB_ENV" @@ -262,7 +262,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout code - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Log into GCP uses: "google-github-actions/auth@8254fb75a33b976a221574d287e93919e6a36f70" with: diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml index 133177bb713f2..1b197ae88bee9 100644 --- a/.github/workflows/rust.yml +++ b/.github/workflows/rust.yml @@ -35,7 +35,7 @@ jobs: # Prevent sudden announcement of a new advisory from failing Ci. continue-on-error: ${{ matrix.checks == 'advisories' }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - uses: EmbarkStudios/cargo-deny-action@3f4a782664881cf5725d0ffd23969fcce89fd868 with: command: check ${{ matrix.checks }} @@ -45,7 +45,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-rust steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just rs-check-fmt @@ -54,7 +54,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-rust steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just rs-fetch - run: just rs-clippy @@ -65,7 +65,7 @@ jobs: runs-on: ubuntu-22.04 container: ghcr.io/linkerd/dev:v43-rust steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just rs-fetch - run: just rs-check-dirs @@ -76,7 +76,7 @@ jobs: timeout-minutes: 15 container: ghcr.io/linkerd/dev:v43-rust steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: git config --global --add safe.directory "$PWD" # actions/runner#2033 - run: just rs-fetch - run: just rs-test-build @@ -87,7 +87,7 @@ jobs: runs-on: ubuntu-22.04 timeout-minutes: 2 steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - shell: bash run: | toolchain_version="$(./bin/rust-toolchain-version)" diff --git a/.github/workflows/shell.yml b/.github/workflows/shell.yml index 438ba36cf443d..bc9261712c474 100644 --- a/.github/workflows/shell.yml +++ b/.github/workflows/shell.yml @@ -17,5 +17,5 @@ jobs: runs-on: ubuntu-22.04 steps: - uses: linkerd/dev/actions/setup-tools@v43 - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - run: just sh-lint diff --git a/.github/workflows/sync-proxy.yml b/.github/workflows/sync-proxy.yml index 6710614c01bd5..86a5734f0585b 100644 --- a/.github/workflows/sync-proxy.yml +++ b/.github/workflows/sync-proxy.yml @@ -64,7 +64,7 @@ jobs: env: VERSION: ${{ needs.meta.outputs.name }} steps: - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 with: token: ${{ secrets.LINKERD2_PROXY_GITHUB_TOKEN || github.token }} - name: Check if proxy version has changed @@ -98,7 +98,7 @@ jobs: git config --global --add safe.directory "$PWD" # actions/runner#2033 git config --global user.name "$GITHUB_USERNAME" git config --global user.email "$GITHUB_USERNAME"@users.noreply.github.com - - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 with: token: ${{ secrets.LINKERD2_PROXY_GITHUB_TOKEN || github.token }} - name: Commit proxy version