From 0f3863fb0d646201ac7e28823a56a07801ade1a2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 13 Jan 2025 17:09:47 +0000 Subject: [PATCH] chore(deps): update github actions --- .github/workflows/katana.yml | 40 ++++++++++++++++++------------------ 1 file changed, 20 insertions(+), 20 deletions(-) diff --git a/.github/workflows/katana.yml b/.github/workflows/katana.yml index 6cfe2e3b2..cf968c97e 100644 --- a/.github/workflows/katana.yml +++ b/.github/workflows/katana.yml @@ -25,7 +25,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Cancel Stale Jobs - uses: styfle/cancel-workflow-action@85880fa0301c86cca9da44039ee3bb12d3bedbfa # pin@0.12.1 + uses: styfle/cancel-workflow-action@bdaa46e4662006504ca6b0cfb7488010126dc98c # pin@0.12.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} @@ -34,7 +34,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Validate Gradle wrapper @@ -46,7 +46,7 @@ jobs: if: github.event_name == 'pull_request' steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Common Steps @@ -56,14 +56,14 @@ jobs: - name: Assemble Katana run: ./gradlew assembleDebug --no-daemon --stacktrace - name: Upload debug artifacts - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # pin@v4.5.0 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # pin@v4.5.0 with: name: Katana v${{ github.run_number }} path: | ${{ vars.ANDROID_DEBUG_APK }} retention-days: 7 - name: Upload compose reports artifact - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # pin@v4.5.0 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # pin@v4.5.0 if: always() with: name: compose-reports @@ -80,7 +80,7 @@ jobs: security-events: write steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Common Steps @@ -90,7 +90,7 @@ jobs: - name: Run detekt run: ./gradlew detektAll lintDebug --no-daemon --stacktrace - name: Upload static reports artifact - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # pin@v4.5.0 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # pin@v4.5.0 with: name: static-report path: | @@ -98,7 +98,7 @@ jobs: **/build/reports/lint-results-debug.xml retention-days: 1 - name: Analyze detekt report - uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # pin@v3.28.0 + uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # pin@v3.28.1 with: sarif_file: build/reports/detekt/detekt.sarif checkout_path: ${{ github.workspace }} @@ -108,7 +108,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Common Steps @@ -118,7 +118,7 @@ jobs: - name: Run unit tests run: ./gradlew :koverXmlReport :koverVerify --no-daemon --stacktrace - name: Upload tests reports artifact - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # pin@v4.5.0 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # pin@v4.5.0 with: name: tests-reports path: | @@ -126,7 +126,7 @@ jobs: **/build/reports/tests/testDebugUnitTest retention-days: 7 - name: Upload report to Codecov - uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303 # pin@v5.1.2 + uses: codecov/codecov-action@adfacf2d276b158264c48ff298490fbdf13e4fb6 # pin@v5.1.2 with: token: ${{ secrets.CODECOV_TOKEN }} files: build/reports/kover/report.xml @@ -140,7 +140,7 @@ jobs: needs: [ static-analysis, unit-tests ] steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Common Steps @@ -148,7 +148,7 @@ jobs: with: gradle-encryption-key: ${{ secrets.GRADLE_ENCRYPTION_KEY }} - name: Decode keystore - uses: timheuer/base64-to-file@784a1a4a994315802b7d8e2084e116e783d157be # pin@v1.2.4 + uses: timheuer/base64-to-file@604a8926a81a2da120d09b06bb76da9bba5aee6e # pin@v1.2.4 with: fileDir: . fileName: ${{ secrets.SIGNING_FILE }} @@ -169,7 +169,7 @@ jobs: SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }} run: ./gradlew assembleBeta -Pkatana.flavor=beta --no-daemon --stacktrace - name: Publish beta APK to TestApp.io - uses: testappio/github-action@57d81be5051e10ea7c07da5730b2eaae1b9b1fa1 # pin@v5 + uses: testappio/github-action@8fa3853470e3c8c278f928c04d0691400d25fd4a # pin@v5 with: api_token: ${{ secrets.TESTAPPIO_API_TOKEN }} app_id: ${{ secrets.TESTAPPIO_APP_ID }} @@ -188,7 +188,7 @@ jobs: gitReleaseNotes: true debug: false - name: Create Sentry release - uses: getsentry/action-release@e769183448303de84c5a06aaaddf9da7be26d6c7 # pin@v1.7.0 + uses: getsentry/action-release@6dca92ad5e7f1bd3c5e1ad8576ba1976b18e8446 # pin@v1.7.0 env: SENTRY_PROJECT: ${{ vars.SENTRY_ANDROID_BETA_PROJECT }} SENTRY_ORG: ${{ vars.SENTRY_ORG }} @@ -204,7 +204,7 @@ jobs: needs: [ static-analysis, unit-tests ] steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v4.2.2 + uses: actions/checkout@cbb722410c2e876e24abbe8de2cc27693e501dcb # pin@v4.2.2 with: fetch-depth: 0 - name: Common Steps @@ -212,7 +212,7 @@ jobs: with: gradle-encryption-key: ${{ secrets.GRADLE_ENCRYPTION_KEY }} - name: Decode keystore - uses: timheuer/base64-to-file@784a1a4a994315802b7d8e2084e116e783d157be # pin@v1.2.4 + uses: timheuer/base64-to-file@604a8926a81a2da120d09b06bb76da9bba5aee6e # pin@v1.2.4 with: fileDir: . fileName: ${{ secrets.SIGNING_FILE }} @@ -228,7 +228,7 @@ jobs: SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }} run: ./gradlew assembleRelease bundleRelease -Pkatana.flavor=release --no-daemon --stacktrace - name: Publish production AAB to Google Play - uses: r0adkll/upload-google-play@935ef9c68bb393a8e6116b1575626a7f5be3a7fb # pin@v1.1.3 + uses: r0adkll/upload-google-play@23e7aaf6cf6f9b3120ff3a386f194e31fbec4c4e # pin@v1.1.3 with: serviceAccountJsonPlainText: ${{ secrets.GOOGLE_PLAY_SERVICE_ACCOUNT }} packageName: dev.alvr.katana @@ -237,7 +237,7 @@ jobs: status: completed mappingFile: app/build/outputs/mapping/release/mapping.txt - name: Create Sentry release - uses: getsentry/action-release@e769183448303de84c5a06aaaddf9da7be26d6c7 # pin@v1.7.0 + uses: getsentry/action-release@6dca92ad5e7f1bd3c5e1ad8576ba1976b18e8446 # pin@v1.7.0 env: SENTRY_PROJECT: ${{ vars.SENTRY_ANDROID_RELEASE_PROJECT }} SENTRY_ORG: ${{ vars.SENTRY_ORG }} @@ -246,7 +246,7 @@ jobs: environment: production version: ${{ github.ref }} - name: Create Release - uses: softprops/action-gh-release@7b4da11513bf3f43f9999e90eabced41ab8bb048 # pin@v2.2.0 + uses: softprops/action-gh-release@c43d7637b9b9ce3e953168c325d27253a5d48d8e # pin@v2.2.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: