ci: bump the github-actions group across 1 directory with 30 updates #463

Original file line number	Diff line number	Diff line change
Expand Up		@@ -52,7 +52,7 @@ jobs:
		if: ${{ github.event_name == 'pull_request_target' && !github.event.pull_request.draft }}
		steps:
		- name: release-labels
	uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
	uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0
		with:
		# This script ensures PR title and labels are in sync:
		#
Expand Down

8 changes: 4 additions & 4 deletions .github/workflows/docker-base.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -38,15 +38,15 @@ jobs:
		if: github.repository_owner == 'coder'
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Docker login
	uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
	uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
		with:
		registry: ghcr.io
		username: ${{ github.actor }}
Expand All		@@ -60,7 +60,7 @@ jobs:

		# This uses OIDC authentication, so no auth variables are required.
		- name: Build base Docker image via depot.dev
	uses: depot/build-push-action@2583627a84956d07561420dcc1d0eb1f2af3fac0 # v1.15.0
	uses: depot/build-push-action@9785b135c3c76c33db102e45be96a25ab55cd507 # v1.16.2
		with:
		project: wl5hnrrkns
		context: base-build-context
Expand Down

4 changes: 2 additions & 2 deletions .github/workflows/docs-ci.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -23,12 +23,12 @@ jobs:
		runs-on: ubuntu-latest
		steps:
		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Setup Node
		uses: ./.github/actions/setup-node

	- uses: tj-actions/changed-files@cf79a64fed8a943fb1073260883d08fe0dfb4e56 # v45.0.7
	- uses: tj-actions/changed-files@dbf178ceecb9304128c8e0648591d71208c6e2c9 # v45.0.7
		id: changed-files
		with:
		files: \|
Expand Down

18 changes: 9 additions & 9 deletions .github/workflows/dogfood.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -27,15 +27,15 @@ jobs:
		runs-on: ${{ github.repository_owner == 'coder' && 'depot-ubuntu-22.04-4' \|\| 'ubuntu-latest' }}
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Setup Nix
	uses: nixbuild/nix-quick-install-action@63ca48f939ee3b8d835f4126562537df0fee5b91 # v32
	uses: nixbuild/nix-quick-install-action@2c9db80fb984ceb1bcaa77cdda3fdf8cfba92035 # v34
		with:
		# Pinning to 2.28 here, as Nix gets a "error: [json.exception.type_error.302] type must be array, but is string"
		# on version 2.29 and above.
Expand All		@@ -62,7 +62,7 @@ jobs:

		- name: Get branch name
		id: branch-name
	uses: tj-actions/branch-names@dde14ac574a8b9b1cedc59a1cf312788af43d8d8 # v8.2.1
	uses: tj-actions/branch-names@5250492686b253f06fa55861556d1027b067aeb5 # v9.0.2

		- name: "Branch name to Docker tag name"
		id: docker-tag-name
Expand All		@@ -80,13 +80,13 @@ jobs:

		- name: Login to DockerHub
		if: github.ref == 'refs/heads/main'
	uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
	uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
		with:
		username: ${{ secrets.DOCKERHUB_USERNAME }}
		password: ${{ secrets.DOCKERHUB_PASSWORD }}

		- name: Build and push Non-Nix image
	uses: depot/build-push-action@2583627a84956d07561420dcc1d0eb1f2af3fac0 # v1.15.0
	uses: depot/build-push-action@9785b135c3c76c33db102e45be96a25ab55cd507 # v1.16.2
		with:
		project: b4q6ltmpzh
		token: ${{ secrets.DEPOT_TOKEN }}
Expand Down Expand Up		@@ -118,18 +118,18 @@ jobs:
		runs-on: ubuntu-latest
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Setup Terraform
		uses: ./.github/actions/setup-tf

		- name: Authenticate to Google Cloud
	uses: google-github-actions/auth@ba79af03959ebeac9769e648f473a284504d9193 # v2.1.10
	uses: google-github-actions/auth@7c6bc770dae815cd3e89ee6cdf493a5fab2cc093 # v3.0.0
		with:
		workload_identity_provider: projects/573722524737/locations/global/workloadIdentityPools/github/providers/github
		service_account: coder-ci@coder-dogfood.iam.gserviceaccount.com
Expand Down

2 changes: 1 addition & 1 deletion .github/workflows/pr-auto-assign.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -14,7 +14,7 @@ jobs:
		runs-on: ubuntu-latest
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

Expand Down

2 changes: 1 addition & 1 deletion .github/workflows/pr-cleanup.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -19,7 +19,7 @@ jobs:
		packages: write
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

Expand Down

28 changes: 14 additions & 14 deletions .github/workflows/pr-deploy.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -39,12 +39,12 @@ jobs:
		PR_OPEN: ${{ steps.check_pr.outputs.pr_open }}
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Check if PR is open
		id: check_pr
Expand Down Expand Up		@@ -74,12 +74,12 @@ jobs:
		runs-on: "ubuntu-latest"
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
		with:
		fetch-depth: 0

Expand Down Expand Up		@@ -174,12 +174,12 @@ jobs:
		pull-requests: write # needed for commenting on PRs
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Find Comment
	uses: peter-evans/find-comment@3eae4d37986fb5a8592848f6a574fdf654e61f9e # v3.1.0
	uses: peter-evans/find-comment@b30e6a3c0ed37e7c023ccd3f1db5c6c0b0c23aad # v4.0.0
		id: fc
		with:
		issue-number: ${{ needs.get_info.outputs.PR_NUMBER }}
Expand All		@@ -189,7 +189,7 @@ jobs:

		- name: Comment on PR
		id: comment_id
	uses: peter-evans/create-or-update-comment@71345be0265236311c031f5c7866368bd1eff043 # v4.0.0
	uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 # v5.0.0
		with:
		comment-id: ${{ steps.fc.outputs.comment-id }}
		issue-number: ${{ needs.get_info.outputs.PR_NUMBER }}
Expand Down Expand Up		@@ -218,12 +218,12 @@ jobs:
		CODER_IMAGE_TAG: ${{ needs.get_info.outputs.CODER_IMAGE_TAG }}
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
		with:
		fetch-depth: 0

Expand All		@@ -237,7 +237,7 @@ jobs:
		uses: ./.github/actions/setup-sqlc

		- name: GHCR Login
	uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
	uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
		with:
		registry: ghcr.io
		username: ${{ github.actor }}
Expand Down Expand Up		@@ -276,7 +276,7 @@ jobs:
		PR_HOSTNAME: "pr${{ needs.get_info.outputs.PR_NUMBER }}.${{ secrets.PR_DEPLOYMENTS_DOMAIN }}"
		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

Expand Down Expand Up		@@ -325,7 +325,7 @@ jobs:
		kubectl create namespace "pr${{ env.PR_NUMBER }}"

		- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0

		- name: Check and Create Certificate
		if: needs.get_info.outputs.NEW == 'true' \|\| github.event.inputs.deploy == 'true'
Expand Down Expand Up		@@ -474,7 +474,7 @@ jobs:
		echo "Slack notification sent"

		- name: Find Comment
	uses: peter-evans/find-comment@3eae4d37986fb5a8592848f6a574fdf654e61f9e # v3.1.0
	uses: peter-evans/find-comment@b30e6a3c0ed37e7c023ccd3f1db5c6c0b0c23aad # v4.0.0
		id: fc
		with:
		issue-number: ${{ env.PR_NUMBER }}
Expand All		@@ -483,7 +483,7 @@ jobs:
		direction: last

		- name: Comment on PR
	uses: peter-evans/create-or-update-comment@71345be0265236311c031f5c7866368bd1eff043 # v4.0.0
	uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 # v5.0.0
		env:
		STATUS: ${{ needs.get_info.outputs.NEW == 'true' && 'Created' \|\| 'Updated' }}
		with:
Expand Down

2 changes: 1 addition & 1 deletion .github/workflows/release-validation.yaml

Show comments View file Open in desktop

Original file line number	Diff line number	Diff line change
Expand Up		@@ -14,7 +14,7 @@ jobs:

		steps:
		- name: Harden Runner
	uses: step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49 # v2.12.2
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
		with:
		egress-policy: audit

Expand Down

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ci: bump the github-actions group across 1 directory with 30 updates #463

Are you sure you want to change the base?

Uh oh!

ci: bump the github-actions group across 1 directory with 30 updates #463

Filter by extension

Uh oh!

Uh oh!

Diff view

Diff view

There are no files selected for viewing

Uh oh!

Uh oh!

Uh oh!