kozorizki/gaphor
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #3523 from gaphor/dependabot/github_actions/github-action-updates-cb4bdfe96f

Browse Source 
Bump the github-action-updates group with 5 updates
This commit is contained in:
Arjan Molenaar 2024-10-08 13:27:58 +02:00 committed by GitHub
commit 97a7b58a03
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
6 changed files with 24 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/codeql-analysis.yml vendored
View File

@ -24,7 +24,7 @@ jobs:
egress-policy: audit egress-policy: audit
- name: Checkout repository - name: Checkout repository
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Set up Python - name: Set up Python
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0 uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
with: with:
@ -42,8 +42,8 @@ jobs:
run: | run: |
poetry install --no-interaction poetry install --no-interaction
- name: Initialize CodeQL - name: Initialize CodeQL
uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10 uses: github/codeql-action/init@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
with: with:
languages: python languages: python
- name: Perform CodeQL Analysis - name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10 uses: github/codeql-action/analyze@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12

2
.github/workflows/dependency-review.yml vendored
View File

@ -22,6 +22,6 @@ jobs:
egress-policy: audit egress-policy: audit
- name: 'Checkout Repository' - name: 'Checkout Repository'
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: 'Dependency Review' - name: 'Dependency Review'
uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4 uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4

22
.github/workflows/full-build.yml vendored
View File

@ -42,7 +42,7 @@ jobs:
github.com:443 github.com:443
pypi.org:443 pypi.org:443
objects.githubusercontent.com objects.githubusercontent.com
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Set up Python - name: Set up Python
@ -82,13 +82,13 @@ jobs:
mutter dbus-x11 gtk4 gobject-introspection-devel mutter dbus-x11 gtk4 gobject-introspection-devel
cairo-gobject-devel gtksourceview5-devel libadwaita-devel cairo-devel cairo-gobject-devel gtksourceview5-devel libadwaita-devel cairo-devel
python${{ matrix.python_version }}-devel python${{ matrix.python_version }}-devel
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Set ownership of checkout directory - name: Set ownership of checkout directory
run: chown -R $(id -u):$(id -g) $PWD run: chown -R $(id -u):$(id -g) $PWD
- name: Use Python Dependency Cache - name: Use Python Dependency Cache
uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
with: with:
path: ~/.cache/pip path: ~/.cache/pip
key: ${{ runner.os }}-python${{ matrix.python-version }}-${{ hashFiles('**/poetry.lock') }}-39 key: ${{ runner.os }}-python${{ matrix.python-version }}-${{ hashFiles('**/poetry.lock') }}-39
@ -115,13 +115,13 @@ jobs:
run: poetry build run: poetry build
- name: Upload gaphor-${{ steps.install.outputs.version }}.tar.gz - name: Upload gaphor-${{ steps.install.outputs.version }}.tar.gz
if: ${{ matrix.python_version == env.python_version }} if: ${{ matrix.python_version == env.python_version }}
uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
with: with:
name: gaphor-${{ steps.install.outputs.version }}.tar.gz name: gaphor-${{ steps.install.outputs.version }}.tar.gz
path: dist/gaphor-${{ steps.install.outputs.version }}.tar.gz path: dist/gaphor-${{ steps.install.outputs.version }}.tar.gz
- name: Upload gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl - name: Upload gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl
if: ${{ matrix.python_version == env.python_version }} if: ${{ matrix.python_version == env.python_version }}
uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
with: with:
name: gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl name: gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl
path: dist/gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl path: dist/gaphor-${{ steps.install.outputs.version }}-py3-none-any.whl
@ -139,11 +139,11 @@ jobs:
with: with:
egress-policy: audit egress-policy: audit
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Use Python Dependency Cache - name: Use Python Dependency Cache
uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
with: with:
path: ~/.cache/pip path: ~/.cache/pip
key: ${{ runner.os }}-${{ hashFiles('**/poetry.lock') }}-22.04 key: ${{ runner.os }}-${{ hashFiles('**/poetry.lock') }}-22.04
@ -174,7 +174,7 @@ jobs:
artifact-intel: ${{ steps.output.outputs.artifact-intel }} artifact-intel: ${{ steps.output.outputs.artifact-intel }}
artifact-arm: ${{ steps.output.outputs.artifact-arm }} artifact-arm: ${{ steps.output.outputs.artifact-arm }}
steps: steps:
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Install macOS Dependencies - name: Install macOS Dependencies
@ -258,7 +258,7 @@ jobs:
if: "!contains(github.event.head_commit.message, 'skip ci')" if: "!contains(github.event.head_commit.message, 'skip ci')"
steps: steps:
- name: GTK binaries get from cache - name: GTK binaries get from cache
uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
id: cache id: cache
with: with:
path: C:\gtk\** path: C:\gtk\**
@ -278,7 +278,7 @@ jobs:
Write-Output "XDG_DATA_HOME=$HOME\.local\share" >> $env:GITHUB_ENV Write-Output "XDG_DATA_HOME=$HOME\.local\share" >> $env:GITHUB_ENV
Write-Output "C:\gtk\bin" >> $env:GITHUB_PATH Write-Output "C:\gtk\bin" >> $env:GITHUB_PATH
choco install graphviz -y choco install graphviz -y
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Set up Python - name: Set up Python
@ -372,7 +372,7 @@ jobs:
name: ${{ needs.linux-wheel.outputs.wheel }} name: ${{ needs.linux-wheel.outputs.wheel }}
path: dist path: dist
- name: Publish package distributions to PyPI - name: Publish package distributions to PyPI
uses: pypa/gh-action-pypi-publish@897895f1e160c830e369f9779632ebc134688e1b # release/v1 uses: pypa/gh-action-pypi-publish@f7600683efdcb7656dec5b29656edb7bc586e597 # release/v1
trigger-website-version-update: trigger-website-version-update:
name: Trigger version update on gaphor/gaphor.github.io name: Trigger version update on gaphor/gaphor.github.io

4
.github/workflows/gvsbuild-updater.yml vendored
View File

@ -27,7 +27,7 @@ jobs:
files.pythonhosted.org:443 files.pythonhosted.org:443
github.com:443 github.com:443
pypi.org:443 pypi.org:443
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: main ref: main
- name: Set up Python - name: Set up Python
@ -62,7 +62,7 @@ jobs:
allowed-endpoints: > allowed-endpoints: >
api.github.com:443 api.github.com:443
github.com:443 github.com:443
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: main ref: main
- name: Update version - name: Update version

8
.github/workflows/hypothesis-test.yml vendored
View File

@ -23,19 +23,19 @@ jobs:
mutter dbus-x11 gtk4 gobject-introspection-devel mutter dbus-x11 gtk4 gobject-introspection-devel
cairo-gobject-devel gtksourceview5-devel libadwaita-devel cairo-devel cairo-gobject-devel gtksourceview5-devel libadwaita-devel cairo-devel
python${{ env.python_version }}-devel python${{ env.python_version }}-devel
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
ref: ${{ github.event.pull_request.head.sha }} ref: ${{ github.event.pull_request.head.sha }}
- name: Set ownership of checkout directory - name: Set ownership of checkout directory
run: chown -R $(id -u):$(id -g) $PWD run: chown -R $(id -u):$(id -g) $PWD
- name: Use Python Dependency Cache - name: Use Python Dependency Cache
uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
with: with:
path: ~/.cache/pip path: ~/.cache/pip
key: ${{ runner.os }}-${{ hashFiles('**/poetry.lock') }}-39 key: ${{ runner.os }}-${{ hashFiles('**/poetry.lock') }}-39
- name: Use Hypothesis Cache - name: Use Hypothesis Cache
id: restore-cache id: restore-cache
uses: actions/cache/restore@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache/restore@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
with: with:
path: .hypothesis path: .hypothesis
key: ${{ runner.os }}-hypothesis key: ${{ runner.os }}-hypothesis
@ -58,7 +58,7 @@ jobs:
filename: .github/hypothesis-test-failed.md filename: .github/hypothesis-test-failed.md
update_existing: true update_existing: true
- name: Save cache - name: Save cache
uses: actions/cache/save@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 uses: actions/cache/save@2cdf405574d6ef1f33a1d12acccd3ae82f47b3f2 # v4.1.0
if: always() if: always()
with: with:
path: .hypothesis path: .hypothesis

6
.github/workflows/scorecard.yml vendored
View File

@ -27,7 +27,7 @@ jobs:
egress-policy: audit egress-policy: audit
- name: "Checkout code" - name: "Checkout code"
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with: with:
persist-credentials: false persist-credentials: false
@ -39,13 +39,13 @@ jobs:
publish_results: true publish_results: true
- name: "Upload artifact" - name: "Upload artifact"
uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
with: with:
name: SARIF file name: SARIF file
path: results.sarif path: results.sarif
retention-days: 5 retention-days: 5
- name: "Upload to code-scanning" - name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10 uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
with: with:
sarif_file: results.sarif sarif_file: results.sarif