Skip to content

Updated megalinter and gpg import actions to avoid the use of save-state and set-output #1802

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
J12934 merged 4 commits into from
Jul 12, 2023
Merged

Updated megalinter and gpg import actions to avoid the use of save-state and set-output #1802

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
35e5b29
Updates crazy-max/ghaction-import-gpg action to v5 to avoid the use o…
Ilyesbdlala Jul 11, 2023
2ff194a
Updates megalinter@v5 action to v7 to avoid the use of `save-state` a…
Ilyesbdlala Jul 11, 2023
9d21d9c
Updated actions/checkout and actions/upload-artifcat from v2 to v3
Ilyesbdlala Jul 11, 2023
d7d06dd
Updated the name of the megalinter report artifcat in v7
Ilyesbdlala Jul 11, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
26 changes: 13 additions & 13 deletions .github/workflows/ci.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ jobs:
name: "Configuration"
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3

- name: Install nvm and Node.js
run: |
Expand All @@ -46,7 +46,7 @@ jobs:
tar czf nvm-node.tar.gz -C $HOME .nvm

- name: Upload nvm and Node.js
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: nvm-node
path: ./nvm-node.tar.gz
Expand All @@ -63,7 +63,7 @@ jobs:
matrix:
unit: ["persistence-defectdojo"]
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3
- uses: actions/setup-java@v1
with:
java-version: "17" # The JDK version to make available on the path.
Expand All @@ -85,7 +85,7 @@ jobs:
component: ["operator", "lurker"]
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Go Setup
uses: actions/setup-go@v2
Expand All @@ -107,7 +107,7 @@ jobs:
run: make docker-export-${{ matrix.component }}

- name: Upload Image As Artifact
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: ${{ matrix.component }}-image
path: ./operator/${{ matrix.component }}.tar
Expand All @@ -120,7 +120,7 @@ jobs:
runs-on: ubuntu-20.04
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Go Setup
uses: actions/setup-go@v2
Expand All @@ -146,7 +146,7 @@ jobs:
run: make docker-export

- name: Upload Image As Artifact
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: auto-discovery-image
path: ./auto-discovery/kubernetes/auto-discovery-kubernetes.tar
Expand All @@ -159,7 +159,7 @@ jobs:
needs: nvm-setup
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Setup Python Version
uses: actions/setup-python@v4
Expand Down Expand Up @@ -192,7 +192,7 @@ jobs:
run: make docker-export

- name: Upload Image As Artifact
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: auto-discovery-pull-secret-extractor
path: ./auto-discovery/kubernetes/pull-secret-extractor/auto-discovery-secret-extractor.tar
Expand Down Expand Up @@ -225,7 +225,7 @@ jobs:
- hook-sdk
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Build Image
working-directory: ./${{ matrix.sdk }}/nodejs
Expand All @@ -236,7 +236,7 @@ jobs:
run: make docker-export-sdk

- name: Upload Artifact
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: ${{ matrix.sdk }}-image
path: ./${{ matrix.sdk }}/nodejs/${{ matrix.sdk }}.tar
Expand Down Expand Up @@ -279,7 +279,7 @@ jobs:
- zap
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Download nvm and Node.js
uses: actions/download-artifact@v2
Expand Down Expand Up @@ -411,7 +411,7 @@ jobs:
runs-on: ubuntu-20.04
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Download nvm and Node.js
uses: actions/download-artifact@v2
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/helm-charts-release.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ jobs:
name: Package and Publish
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3
- name: "Install yq"
run: |
sudo snap install yq
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/helm-docs.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,13 +13,13 @@ jobs:
runs-on: ubuntu-latest
if: github.repository == 'secureCodeBox/secureCodeBox'
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3
with:
ref: ${{ github.head_ref }}
token: ${{ secrets.PAT_WITH_ADMIN }} ## Placeholder for PAT with Admin Access.

- name: Import GPG key
uses: crazy-max/ghaction-import-gpg@v3
uses: crazy-max/ghaction-import-gpg@v5
with:
gpg-private-key: ${{ secrets.GPG_COMMITS_PRIVATE_KEY }}
passphrase: ${{ secrets.GPG_COMMITS_PASSPHRASE }}
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/mega-linter.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ jobs:
steps:
# Git Checkout
- name: Checkout Code
uses: actions/checkout@v2
uses: actions/checkout@v3
with:
token: ${{ secrets.PAT || secrets.GITHUB_TOKEN }}
fetch-depth: 0
Expand All @@ -36,7 +36,7 @@ jobs:
id: ml
# You can override MegaLinter flavor used to have faster performances
# More info at https://megalinter.github.io/flavors/
uses: megalinter/megalinter@v5
uses: oxsecurity/megalinter@v7
env:
# All available variables are described in documentation
# https://megalinter.github.io/configuration/
Expand All @@ -47,9 +47,9 @@ jobs:
# Upload MegaLinter artifacts
- name: Archive production artifacts
if: ${{ success() }} || ${{ failure() }}
uses: actions/upload-artifact@v2
uses: actions/upload-artifact@v3
with:
name: MegaLinter reports
path: |
report
megalinter-reports
mega-linter.log
20 changes: 10 additions & 10 deletions .github/workflows/release-build.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ jobs:
component: ["operator", "lurker"]
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -79,7 +79,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -126,7 +126,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -179,7 +179,7 @@ jobs:
- hook-sdk
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -231,7 +231,7 @@ jobs:
- update-field-hook
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -285,7 +285,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -350,7 +350,7 @@ jobs:

steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -428,7 +428,7 @@ jobs:

steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Set ENV Var with Scanner Version
uses: mikefarah/yq@v4.4.1
Expand Down Expand Up @@ -499,7 +499,7 @@ jobs:
- zap-advanced
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Docker Meta
id: docker_meta
Expand Down Expand Up @@ -559,7 +559,7 @@ jobs:
- old-wordpress
steps:
- name: Checkout
uses: actions/checkout@v2
uses: actions/checkout@v3

- name: Set ENV Var with Demo-Target Version
uses: mikefarah/yq@v4.4.1
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/scb-bot.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,10 +41,10 @@ jobs:
- zap-advanced
# missing scanners are : nmap, nikto
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3

- name: Import GPG key
uses: crazy-max/ghaction-import-gpg@v3
uses: crazy-max/ghaction-import-gpg@v5
with:
gpg-private-key: ${{ secrets.GPG_COMMITS_PRIVATE_KEY }}
passphrase: ${{ secrets.GPG_COMMITS_PASSPHRASE }}
Expand Down