diff --git a/.github/workflows/PRBuild.yaml b/.github/workflows/PRBuild.yaml index 4db043c..cc365e2 100644 --- a/.github/workflows/PRBuild.yaml +++ b/.github/workflows/PRBuild.yaml @@ -31,15 +31,15 @@ jobs: with: go-version: stable - name: Set up QEMU - uses: docker/setup-qemu-action@v3 + uses: docker/setup-qemu-action@v4.0.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4.0.0 with: driver-opts: | image=moby/buildkit:master network=host - name: Docker Login - uses: docker/login-action@v3 + uses: docker/login-action@v4.1.0 with: registry: ghcr.io username: ${{ github.actor }} @@ -60,7 +60,7 @@ jobs: echo "IS_PR_BUILD=true" >> $GITHUB_ENV - name: Docker Login - uses: docker/login-action@v3 + uses: docker/login-action@v4.1.0 with: registry: ghcr.io username: ${{ github.actor }} @@ -78,7 +78,7 @@ jobs: git tag -f -a pr-${PR_NUM} -m "PR Release" - name: Build/Push container with goreleaser - uses: goreleaser/goreleaser-action@v6 + uses: goreleaser/goreleaser-action@v7.2.2 env: GITHUB_TOKEN: ${{ github.token }} with: diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index b407bbd..fb89475 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -25,15 +25,15 @@ jobs: with: go-version: stable - name: Set up QEMU - uses: docker/setup-qemu-action@v3 + uses: docker/setup-qemu-action@v4.0.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4.0.0 with: driver-opts: | image=moby/buildkit:master network=host - name: Docker Login - uses: docker/login-action@v3 + uses: docker/login-action@v4.1.0 with: registry: ghcr.io username: ${{ github.actor }} @@ -54,7 +54,7 @@ jobs: echo "IS_PR_BUILD=false" >> $GITHUB_ENV - name: Release with goreleaser - uses: goreleaser/goreleaser-action@v6 + uses: goreleaser/goreleaser-action@v7.2.2 env: GITHUB_TOKEN: ${{ github.token }} with: @@ -72,11 +72,11 @@ jobs: node process.js echo "digest=$(cat digest.txt)" >> $GITHUB_OUTPUT - name: Attest Binaries - uses: actions/attest-build-provenance@v1 + uses: actions/attest-build-provenance@v4.1.0 with: subject-path: dist/**/fru-tracker* - name: generate build provenance - uses: actions/attest-build-provenance@v1 + uses: actions/attest-build-provenance@v4.1.0 with: subject-name: ghcr.io/openchami/fru-tracker subject-digest: ${{ steps.process_goreleaser_output.outputs.digest }} diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 728428f..476ffda 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -43,7 +43,7 @@ jobs: persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1 + uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3 with: results_file: results.sarif results_format: sarif @@ -68,7 +68,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: SARIF file path: results.sarif @@ -77,6 +77,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v3.35.5 with: sarif_file: results.sarif diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 2e4247d..0dbb265 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -17,7 +17,7 @@ jobs: run-stale: runs-on: ubuntu-latest steps: - - uses: actions/stale@v9 + - uses: actions/stale@v10.2.0 with: days-before-stale: 35 days-before-close: 7 diff --git a/.goreleaser.yaml b/.goreleaser.yaml index 8b8de36..98f3f34 100644 --- a/.goreleaser.yaml +++ b/.goreleaser.yaml @@ -65,7 +65,9 @@ dockers: goos: linux goarch: amd64 image_templates: - - "ghcr.io/openchami/fru-tracker:{{ .Version }}-amd64" + - "ghcr.io/openchami/fru-tracker:{{ .Tag }}-amd64" + - "ghcr.io/openchami/fru-tracker:v{{ .Major }}.{{ .Minor }}-amd64" + - "ghcr.io/openchami/fru-tracker:v{{ .Major }}-amd64" - "ghcr.io/openchami/fru-tracker:latest-amd64" dockerfile: Dockerfile use: buildx @@ -79,9 +81,17 @@ dockers: - "--label=org.opencontainers.image.licenses=MIT" docker_manifests: - - name_template: "ghcr.io/openchami/fru-tracker:{{ .Version }}" + - name_template: "ghcr.io/openchami/fru-tracker:{{ .Tag }}" image_templates: - - "ghcr.io/openchami/fru-tracker:{{ .Version }}-amd64" + - "ghcr.io/openchami/fru-tracker:{{ .Tag }}-amd64" + + - name_template: "ghcr.io/openchami/fru-tracker:v{{ .Major }}.{{ .Minor }}" + image_templates: + - "ghcr.io/openchami/fru-tracker:v{{ .Major }}.{{ .Minor }}-amd64" + + - name_template: "ghcr.io/openchami/fru-tracker:v{{ .Major }}" + image_templates: + - "ghcr.io/openchami/fru-tracker:v{{ .Major }}-amd64" - name_template: "ghcr.io/openchami/fru-tracker:latest" image_templates: @@ -103,7 +113,7 @@ release: #### Docker ```bash - docker pull ghcr.io/openchami/fru-tracker:{{ .Version }} + docker pull ghcr.io/openchami/fru-tracker:{{ .Tag }} ``` #### Go Install