diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 8841c5b03..492b47a2d 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -91,5 +91,5 @@ jobs: - uses: actions/setup-go@924ae3a1cded613372ab5595356fb5720e22ba16 # v6.5.0 with: go-version: v1.26.2 - - uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0 + - uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0 - run: make image-local diff --git a/.github/workflows/goreleaser.yaml b/.github/workflows/goreleaser.yaml index 6b6157c24..0cc13f8ce 100644 --- a/.github/workflows/goreleaser.yaml +++ b/.github/workflows/goreleaser.yaml @@ -29,7 +29,7 @@ jobs: run: echo LDFLAGS="$(make ldflags)" >> $GITHUB_ENV - name: Run GoReleaser on tag if: github.event_name != 'pull_request' - uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 + uses: goreleaser/goreleaser-action@f06c13b6b1a9625abc9e6e439d9c05a8f2190e94 # v7.2.3 with: distribution: goreleaser version: latest @@ -39,7 +39,7 @@ jobs: KREW_GITHUB_TOKEN: ${{ secrets.KREW_GITHUB_TOKEN }} - name: Run GoReleaser on pull request if: github.event_name == 'pull_request' - uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 + uses: goreleaser/goreleaser-action@f06c13b6b1a9625abc9e6e439d9c05a8f2190e94 # v7.2.3 with: distribution: goreleaser version: latest diff --git a/.github/workflows/image.yaml b/.github/workflows/image.yaml index be4195b38..28d08689a 100644 --- a/.github/workflows/image.yaml +++ b/.github/workflows/image.yaml @@ -27,7 +27,7 @@ jobs: run: 'git tag -d $(git tag -l | grep -v "^v")' - name: Set up Docker Buildx - uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0 + uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0 # If you notice signing errors, you may need to update the cosign version. - uses: sigstore/cosign-installer@6f9f17788090df1f26f669e9d70d6ae9567deba6 # v4.1.2 @@ -63,7 +63,7 @@ jobs: fi - name: Login to GitHub Container Registry - uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0 + uses: docker/login-action@af1e73f918a031802d376d3c8bbc3fe56130a9b0 # v4.4.0 with: registry: ghcr.io username: ${{ github.actor }} diff --git a/.github/workflows/republish-images.yaml b/.github/workflows/republish-images.yaml index e512018f5..b3063efd9 100644 --- a/.github/workflows/republish-images.yaml +++ b/.github/workflows/republish-images.yaml @@ -62,7 +62,7 @@ jobs: run: 'git tag -d $(git tag -l | grep -v "^v")' - name: Set up Docker Buildx - uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0 + uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0 - uses: sigstore/cosign-installer@6f9f17788090df1f26f669e9d70d6ae9567deba6 # v4.1.2 @@ -73,7 +73,7 @@ jobs: version: 'v3.12.0' - name: Login to GitHub Container Registry - uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0 + uses: docker/login-action@af1e73f918a031802d376d3c8bbc3fe56130a9b0 # v4.4.0 with: registry: ghcr.io username: ${{ github.actor }} @@ -87,7 +87,7 @@ jobs: } >> "$GITHUB_ENV" - name: Build and push konnector image - uses: docker/build-push-action@v6 + uses: docker/build-push-action@v7 id: build-konnector with: context: . @@ -120,7 +120,7 @@ jobs: -a run_attempt=${{ github.run_attempt }} - name: Build and push backend image - uses: docker/build-push-action@v6 + uses: docker/build-push-action@v7 id: build-backend with: context: .