Merge branch 'main' into renovate/docker-metadata-action-5.x

pluralsh · Sep 21, 2023 · 0d74502 · 0d74502
2 parents facac47 + 3a48ac7
commit 0d74502
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 8 deletions.
diff --git a/.github/workflows/build-container.yaml b/.github/workflows/build-container.yaml
@@ -19,7 +19,7 @@ jobs:
       actions: read
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 0 # No shallow clone, we need all history
       - name: Set tag output
@@ -108,7 +108,7 @@ jobs:
           username: [email protected]
           password: ${{ secrets.PLURAL_ACCESS_TOKEN }}
       - name: Build ${{ steps.tag.outputs.app }} image for security scanning
-        uses: docker/build-push-action@v4
+        uses: docker/build-push-action@v5
         with:
           context: ${{ steps.tag.outputs.app }}
           file: "${{ steps.tag.outputs.app }}/Dockerfile"
@@ -134,7 +134,7 @@ jobs:
         with:
           sarif_file: 'trivy-results.sarif'
       - name: Build ${{ steps.tag.outputs.app }} image
-        uses: docker/build-push-action@v4
+        uses: docker/build-push-action@v5
         with:
           context: ${{ steps.tag.outputs.app }}
           file: "${{ steps.tag.outputs.app }}/Dockerfile"
@@ -153,7 +153,7 @@ jobs:
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       - name: Run Trivy vulnerability scanner in IaC mode
         uses: aquasecurity/trivy-action@master
         with:

diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -14,7 +14,7 @@ jobs:
       actions: read
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           fetch-depth: 0 # No shallow clone, we need all history
       - name: Set tag output
@@ -59,7 +59,7 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v2
       - name: Build ${{ steps.tag.outputs.app }} image for security scanning
-        uses: docker/build-push-action@v4
+        uses: docker/build-push-action@v5
         with:
           context: ${{ steps.tag.outputs.app }}
           file: "${{ steps.tag.outputs.app }}/Dockerfile"
@@ -93,7 +93,7 @@ jobs:
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       - name: Run Trivy vulnerability scanner in IaC mode
         uses: aquasecurity/trivy-action@master
         with:
@@ -114,7 +114,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: 'Checkout'
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         fetch-depth: 0
         token: ${{ secrets.PLURAL_BOT_PAT }}