diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index c5eb667..337653e 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -14,8 +14,8 @@ jobs: name: Generate eBPF Object runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/checkout@v6 # v4.2.2 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - name: Install toolchain @@ -23,7 +23,7 @@ jobs: - name: Generate BPF run: make generate - name: Upload BPF object - uses: actions/upload-artifact@v4 # v4.6.1 + uses: actions/upload-artifact@v7 # v4.6.1 with: name: procscope-bpf-object path: internal/tracer/procscope_bpfel.o @@ -37,12 +37,12 @@ jobs: matrix: go-version: ['1.26.2'] steps: - - uses: actions/checkout@v4 # v4.2.2 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/checkout@v6 # v4.2.2 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: ${{ matrix.go-version }} - name: Download BPF object - uses: actions/download-artifact@v4 # v4.1.9 + uses: actions/download-artifact@v8 # v4.1.9 with: name: procscope-bpf-object path: internal/tracer @@ -65,12 +65,12 @@ jobs: name: Lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/checkout@v6 # v4.2.2 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - name: golangci-lint - uses: golangci/golangci-lint-action@v6 # v6.1.1 + uses: golangci/golangci-lint-action@v9 # v6.1.1 continue-on-error: true with: version: v1.64.5 @@ -79,8 +79,8 @@ jobs: name: Vulnerability Check runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/checkout@v6 # v4.2.2 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - name: Install govulncheck @@ -93,12 +93,12 @@ jobs: needs: generate-bpf runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/checkout@v6 # v4.2.2 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - name: Download BPF object - uses: actions/download-artifact@v4 # v4.1.9 + uses: actions/download-artifact@v8 # v4.1.9 with: name: procscope-bpf-object path: internal/tracer @@ -113,7 +113,7 @@ jobs: - name: Lint Debian Package run: lintian ./procscope_*.deb || true - name: Upload Debian Package - uses: actions/upload-artifact@v4 # v4.6.1 + uses: actions/upload-artifact@v7 # v4.6.1 with: name: procscope-deb path: ./procscope_*.deb @@ -127,9 +127,9 @@ jobs: steps: - name: Install dependencies run: pacman -Syu --noconfirm git go nodejs - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 - name: Download BPF object - uses: actions/download-artifact@v4 # v4.1.9 + uses: actions/download-artifact@v8 # v4.1.9 with: name: procscope-bpf-object path: internal/tracer @@ -139,7 +139,7 @@ jobs: chown -R builduser:builduser . su builduser -c "cd arch && makepkg -sf" - name: Upload Arch Package - uses: actions/upload-artifact@v4 # v4.6.1 + uses: actions/upload-artifact@v7 # v4.6.1 with: name: procscope-pkg-tar-zst path: arch/*.pkg.tar.zst diff --git a/.github/workflows/growth-automation.yml b/.github/workflows/growth-automation.yml index e2f6f7a..7910b6f 100644 --- a/.github/workflows/growth-automation.yml +++ b/.github/workflows/growth-automation.yml @@ -16,11 +16,11 @@ jobs: contents: write issues: write steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 with: fetch-depth: 0 - - uses: actions/setup-python@v5 # v5.5.0 + - uses: actions/setup-python@v6 # v5.5.0 with: python-version: '3.11' diff --git a/.github/workflows/packaging-quality.yml b/.github/workflows/packaging-quality.yml index 55d54fc..4e31ba0 100644 --- a/.github/workflows/packaging-quality.yml +++ b/.github/workflows/packaging-quality.yml @@ -29,7 +29,7 @@ jobs: - name: Install deps run: pacman -Syu --noconfirm git go nodejs namcap - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 - name: Validate .SRCINFO is in sync run: | @@ -50,7 +50,7 @@ jobs: name: Debian metadata validation runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 - name: Install packaging tools run: | diff --git a/.github/workflows/release-preflight.yml b/.github/workflows/release-preflight.yml index 5b539e4..9a4eb29 100644 --- a/.github/workflows/release-preflight.yml +++ b/.github/workflows/release-preflight.yml @@ -19,11 +19,11 @@ jobs: name: Validate release packaging consistency runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 with: fetch-depth: 0 - - uses: actions/setup-python@v5 # v5.5.0 + - uses: actions/setup-python@v6 # v5.5.0 with: python-version: '3.11' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f0ef3f3..a2a3277 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -15,15 +15,15 @@ jobs: permissions: contents: write steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 with: fetch-depth: 0 - - uses: actions/setup-go@v5 # v5.3.0 + - uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - - uses: actions/setup-python@v5 # v5.5.0 + - uses: actions/setup-python@v6 # v5.5.0 with: python-version: '3.11' @@ -32,7 +32,7 @@ jobs: python scripts/release_preflight.py --tag "${GITHUB_REF_NAME}" - name: Run GoReleaser - uses: goreleaser/goreleaser-action@v6 # v6.4.0 + uses: goreleaser/goreleaser-action@v7 # v6.4.0 with: version: '~> v2' args: release --clean diff --git a/.github/workflows/security-suite.yml b/.github/workflows/security-suite.yml index a621d00..f3d9dc1 100644 --- a/.github/workflows/security-suite.yml +++ b/.github/workflows/security-suite.yml @@ -26,13 +26,13 @@ jobs: matrix: language: ['go'] steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 - name: Setup Go - uses: actions/setup-go@v5 # v5.3.0 + uses: actions/setup-go@v6 # v5.3.0 with: go-version: '1.26.2' - name: Initialize CodeQL - uses: github/codeql-action/init@v3 # v3.28.10 + uses: github/codeql-action/init@v4 # v3.28.10 with: languages: ${{ matrix.language }} - name: Install toolchain @@ -42,7 +42,7 @@ jobs: - name: Build run: make build - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 # v3.28.10 + uses: github/codeql-action/analyze@v4 # v3.28.10 dependency-review: name: Dependency Review @@ -52,7 +52,7 @@ jobs: contents: read pull-requests: write steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 - uses: actions/dependency-review-action@v4 # v4.9.1 scorecard: @@ -65,7 +65,7 @@ jobs: contents: read actions: read steps: - - uses: actions/checkout@v4 # v4.2.2 + - uses: actions/checkout@v6 # v4.2.2 with: persist-credentials: false - name: Run analysis @@ -75,6 +75,6 @@ jobs: results_format: sarif publish_results: true - name: Upload SARIF - uses: github/codeql-action/upload-sarif@v3 # v3.28.10 + uses: github/codeql-action/upload-sarif@v4 # v3.28.10 with: sarif_file: results.sarif