diff --git a/.github/workflows/chart-release-identityhub.yaml b/.github/workflows/chart-release-identityhub.yaml index 89a64aa..002e253 100644 --- a/.github/workflows/chart-release-identityhub.yaml +++ b/.github/workflows/chart-release-identityhub.yaml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-depth: 0 diff --git a/.github/workflows/chart-release-issuerservice.yaml b/.github/workflows/chart-release-issuerservice.yaml index cc26acf..700a5d7 100644 --- a/.github/workflows/chart-release-issuerservice.yaml +++ b/.github/workflows/chart-release-issuerservice.yaml @@ -40,7 +40,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: fetch-depth: 0 diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml index 64ccaa4..1808675 100644 --- a/.github/workflows/codeql.yaml +++ b/.github/workflows/codeql.yaml @@ -56,7 +56,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/dash-scan.yml b/.github/workflows/dash-scan.yml index 8fd7715..fc19143 100644 --- a/.github/workflows/dash-scan.yml +++ b/.github/workflows/dash-scan.yml @@ -37,7 +37,7 @@ jobs: check-dependencies: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-java - name: generate dependency list diff --git a/.github/workflows/dast-scan.yaml b/.github/workflows/dast-scan.yaml index c0665e4..cb703f6 100644 --- a/.github/workflows/dast-scan.yaml +++ b/.github/workflows/dast-scan.yaml @@ -31,7 +31,7 @@ jobs: name: OWASP ZAP API Scan steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-memory-runtime - name: Fetch SI TOKEN @@ -95,7 +95,7 @@ jobs: runs-on: ubuntu-latest name: OWASP ZAP FULL Scan steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-memory-runtime - name: Generating report skeletons diff --git a/.github/workflows/deployment-test.yaml b/.github/workflows/deployment-test.yaml index 364b4e3..d3aa3b0 100644 --- a/.github/workflows/deployment-test.yaml +++ b/.github/workflows/deployment-test.yaml @@ -41,7 +41,7 @@ jobs: # runs-on: ubuntu-latest # needs: test-prepare # steps: -# - uses: actions/checkout@v4 +# - uses: actions/checkout@v5 # - uses: ./.github/actions/run-deployment-test # name: "Run deployment test using KinD and Helm" # with: @@ -70,7 +70,7 @@ jobs: "v1.29.8" ] steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: ./.github/actions/run-deployment-test name: "Run deployment test using KinD and Helm" with: @@ -101,7 +101,7 @@ jobs: "v1.29.8" ] steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: ./.github/actions/run-deployment-test name: "Run deployment test using KinD and Helm" with: @@ -132,7 +132,7 @@ jobs: "v1.29.8" ] steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: ./.github/actions/run-deployment-test name: "Run deployment test using KinD and Helm" with: @@ -168,7 +168,7 @@ jobs: "v1.29.8" ] steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: ./.github/actions/run-deployment-test name: "Run deployment test using KinD and Helm" with: diff --git a/.github/workflows/helm-lint.yaml b/.github/workflows/helm-lint.yaml index 05a4272..f5e1fe4 100644 --- a/.github/workflows/helm-lint.yaml +++ b/.github/workflows/helm-lint.yaml @@ -46,7 +46,7 @@ jobs: ############## ### Set-Up ### ############## - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: fetch-depth: 0 - uses: ./.github/actions/setup-helm diff --git a/.github/workflows/kics.yml b/.github/workflows/kics.yml index 49a97dd..10abcc8 100644 --- a/.github/workflows/kics.yml +++ b/.github/workflows/kics.yml @@ -42,7 +42,7 @@ jobs: security-events: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: KICS scan uses: checkmarx/kics-github-action@v1.5 diff --git a/.github/workflows/publish-new-snapshot.yaml b/.github/workflows/publish-new-snapshot.yaml index 95adfac..cf498e0 100644 --- a/.github/workflows/publish-new-snapshot.yaml +++ b/.github/workflows/publish-new-snapshot.yaml @@ -67,7 +67,7 @@ jobs: outputs: VERSION: ${{ steps.get-version.outputs.VERSION }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: "Get version" id: get-version run: | diff --git a/.github/workflows/scan-pr-title.yaml b/.github/workflows/scan-pr-title.yaml index 67353fc..dd6926b 100644 --- a/.github/workflows/scan-pr-title.yaml +++ b/.github/workflows/scan-pr-title.yaml @@ -34,7 +34,7 @@ jobs: runs-on: ubuntu-latest continue-on-error: false steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: deepakputhraya/action-pr-title@master with: # Match pull request titles conventional commit syntax (https://www.conventionalcommits.org/en/v1.0.0/) @@ -57,7 +57,7 @@ jobs: runs-on: ubuntu-latest continue-on-error: false steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: agilepathway/label-checker@v1.6.61 with: any_of: api,bug,build,dependencies,documentation,enhancement,no-changelog,refactoring diff --git a/.github/workflows/secrets-scan.yml b/.github/workflows/secrets-scan.yml index e964454..ebf0fc1 100644 --- a/.github/workflows/secrets-scan.yml +++ b/.github/workflows/secrets-scan.yml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: fetch-depth: 0 # Ensure full clone for pull request workflows diff --git a/.github/workflows/trigger-docker-publish.yaml b/.github/workflows/trigger-docker-publish.yaml index 6ba5a69..150e4c7 100644 --- a/.github/workflows/trigger-docker-publish.yaml +++ b/.github/workflows/trigger-docker-publish.yaml @@ -62,7 +62,7 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Log inputs run: | echo "Input Version: ${{ inputs.docker_tag }}, Input namespace: ${{ inputs.namespace}}" diff --git a/.github/workflows/trigger-maven-publish.yaml b/.github/workflows/trigger-maven-publish.yaml index d2a6906..393e046 100644 --- a/.github/workflows/trigger-maven-publish.yaml +++ b/.github/workflows/trigger-maven-publish.yaml @@ -43,7 +43,7 @@ jobs: contents: read steps: # Set-Up - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-java # Import GPG Key diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 6237be7..ccbdbe3 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -57,7 +57,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Run Trivy vulnerability scanner in repo mode uses: aquasecurity/trivy-action@0.31.0 with: @@ -89,7 +89,7 @@ jobs: - edc-controlplane-postgresql-hashicorp-vault - edc-dataplane-hashicorp-vault steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 ## This step will fail if the docker images is not found - name: "Check if image exists" diff --git a/.github/workflows/upgradeability-test.yaml b/.github/workflows/upgradeability-test.yaml index 5074fb0..4892c42 100644 --- a/.github/workflows/upgradeability-test.yaml +++ b/.github/workflows/upgradeability-test.yaml @@ -43,7 +43,7 @@ jobs: needs: [ test-prepare ] steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: ./.github/actions/setup-helm - uses: ./.github/actions/setup-kubectl diff --git a/.github/workflows/verify.yaml b/.github/workflows/verify.yaml index fce157f..fef1730 100644 --- a/.github/workflows/verify.yaml +++ b/.github/workflows/verify.yaml @@ -28,7 +28,7 @@ jobs: Checkstyle: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-java - name: Run Checkstyle @@ -38,7 +38,7 @@ jobs: Javadoc: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-java - name: Run Javadoc run: ./gradlew javadoc @@ -46,7 +46,7 @@ jobs: Unit-Tests: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: ./.github/actions/setup-java - name: 'Unit and system tests' run: ./gradlew test @@ -54,7 +54,7 @@ jobs: Integration-Tests: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: eclipse-edc/.github/.github/actions/setup-build@main - name: Component Tests @@ -63,7 +63,7 @@ jobs: Postgresql-Integration-Tests: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: eclipse-edc/.github/.github/actions/setup-build@main - name: Postgresql Tests