diff --git a/.github/ghadocs/examples/1_environment-variables.md b/.github/ghadocs/examples/1_environment-variables.md index 69270e4..77e4eed 100644 --- a/.github/ghadocs/examples/1_environment-variables.md +++ b/.github/ghadocs/examples/1_environment-variables.md @@ -4,7 +4,7 @@ ```yaml steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.2.2 - uses: hoverkraft-tech/compose-action@v1.5.1 with: compose-file: "./docker/docker-compose.yml" diff --git a/.github/workflows/__check-action.yml b/.github/workflows/__check-action.yml index afdec5b..590f6f8 100644 --- a/.github/workflows/__check-action.yml +++ b/.github/workflows/__check-action.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-latest name: Test with services steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -33,7 +33,7 @@ jobs: runs-on: ubuntu-latest name: Test compose action steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -45,7 +45,7 @@ jobs: runs-on: ubuntu-latest name: Test with compose flags steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -62,7 +62,7 @@ jobs: runs-on: ubuntu-latest name: Test with env steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -83,7 +83,7 @@ jobs: runs-on: ubuntu-latest name: Test with multiple compose files steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -108,7 +108,7 @@ jobs: runs-on: ubuntu-latest name: Test with cwd steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -131,7 +131,7 @@ jobs: runs-on: ubuntu-latest name: Test with absolute path steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -153,7 +153,7 @@ jobs: runs-on: ubuntu-latest name: Test with --abort-on-container-exit steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -165,7 +165,7 @@ jobs: runs-on: ubuntu-latest name: Test with --attach-dependencies and service failure steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Act uses: ./ @@ -184,7 +184,7 @@ jobs: env: DOCKER_COMPOSE_VERSION: "2.29.0" steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: "Arrange: ensure original docker compose version is not the expected one" run: | @@ -216,10 +216,10 @@ jobs: runs-on: ubuntu-latest name: Test with compose version latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: "Arrange: retrieve latest version of docker compose" - uses: actions/github-script@v7 + uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 with: script: | const dockerComposeVersion = (await github.rest.repos.getLatestRelease({ @@ -259,10 +259,10 @@ jobs: runs-on: ubuntu-latest name: Test with docker context steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Set up Docker - uses: docker/setup-docker-action@v4 + uses: docker/setup-docker-action@b60f85385d03ac8acfca6d9996982511d8620a19 # v4.3.0 with: context: test-context diff --git a/.github/workflows/__check-dist.yml b/.github/workflows/__check-dist.yml index add3df7..73072ed 100644 --- a/.github/workflows/__check-dist.yml +++ b/.github/workflows/__check-dist.yml @@ -11,8 +11,8 @@ jobs: name: Check dist runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 - - uses: hoverkraft-tech/ci-github-nodejs/actions/setup-node@0.9.0 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: hoverkraft-tech/ci-github-nodejs/actions/setup-node@0c281f43dd49fcdec089c67ee99819620d634046 # 0.10.0 - name: Build dist/ Directory id: package @@ -33,7 +33,7 @@ jobs: - if: ${{ failure() && steps.diff.outcome == 'failure' }} name: Upload Artifact id: upload - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: dist path: dist/ diff --git a/.github/workflows/__check-nodejs.yml b/.github/workflows/__check-nodejs.yml index bc4028e..ce4765d 100644 --- a/.github/workflows/__check-nodejs.yml +++ b/.github/workflows/__check-nodejs.yml @@ -10,7 +10,7 @@ permissions: jobs: test-nodejs: - uses: hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml@0.9.0 + uses: hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml@0c281f43dd49fcdec089c67ee99819620d634046 # 0.10.0 permissions: id-token: write security-events: write diff --git a/.github/workflows/__shared-ci.yml b/.github/workflows/__shared-ci.yml index f877190..be56bab 100644 --- a/.github/workflows/__shared-ci.yml +++ b/.github/workflows/__shared-ci.yml @@ -6,13 +6,13 @@ on: permissions: contents: read packages: read - statuses: write security-events: write + statuses: write id-token: write jobs: linter: - uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@0.18.0 + uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 with: linter-env: | FILTER_REGEX_EXCLUDE=dist/**/* diff --git a/.github/workflows/greetings.yml b/.github/workflows/greetings.yml index c598ae9..29a194d 100644 --- a/.github/workflows/greetings.yml +++ b/.github/workflows/greetings.yml @@ -13,4 +13,4 @@ permissions: jobs: greetings: - uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@0.18.0 + uses: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 diff --git a/.github/workflows/main-ci.yml b/.github/workflows/main-ci.yml index 721f595..ffec014 100644 --- a/.github/workflows/main-ci.yml +++ b/.github/workflows/main-ci.yml @@ -5,11 +5,17 @@ on: branches: [main] tags: ["*"] + workflow_dispatch: + + schedule: + - cron: "25 8 * * 1" + permissions: contents: read packages: read - statuses: write security-events: write + statuses: write + # FIXME: This is a workaround for having workflow ref. See https://github.com/orgs/community/discussions/38659 id-token: write concurrency: @@ -21,23 +27,24 @@ jobs: uses: ./.github/workflows/__shared-ci.yml secrets: inherit - generate-readme: + release: needs: ci + if: github.event_name != 'schedule' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 - - uses: bitflight-devops/github-action-readme-generator@v1.8.0 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: bitflight-devops/github-action-readme-generator@f750ff0ac8a4b68a3c2d622cc50a5ad20bcebaa1 # v1.8.0 with: - owner: hoverkraft-tech - repo: compose-action + owner: ${{ github.repository_owner }} + repo: ${{ github.event.repository.name }} - - uses: actions/create-github-app-token@v1 + - uses: actions/create-github-app-token@af35edadc00be37caa72ed9f3e6d5f7801bfdf09 # v1.11.7 id: generate-token with: app-id: ${{ vars.CI_BOT_APP_ID }} private-key: ${{ secrets.CI_BOT_APP_PRIVATE_KEY }} - - uses: hoverkraft-tech/ci-github-common/actions/create-and-merge-pull-request@0.18.0 + - uses: hoverkraft-tech/ci-github-common/actions/create-and-merge-pull-request@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 with: github-token: ${{ steps.generate-token.outputs.token }} branch: docs/actions-workflows-documentation-update diff --git a/.github/workflows/need-fix-to-issue.yml b/.github/workflows/need-fix-to-issue.yml index a7df137..6e502c6 100644 --- a/.github/workflows/need-fix-to-issue.yml +++ b/.github/workflows/need-fix-to-issue.yml @@ -21,7 +21,7 @@ permissions: jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@0.18.0 + uses: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 with: manual-commit-ref: ${{ inputs.manual-commit-ref }} manual-base-ref: ${{ inputs.manual-base-ref }} diff --git a/.github/workflows/release-new-action-version.yml b/.github/workflows/release-new-action-version.yml index ea68487..8f9d265 100644 --- a/.github/workflows/release-new-action-version.yml +++ b/.github/workflows/release-new-action-version.yml @@ -24,6 +24,6 @@ jobs: runs-on: ubuntu-latest steps: - name: Update the ${{ env.TAG_NAME }} tag - uses: actions/publish-action@v0.3.0 + uses: actions/publish-action@f784495ce78a41bac4ed7e34a73f0034015764bb # v0.3.0 with: source-tag: ${{ env.TAG_NAME }} diff --git a/.github/workflows/semantic-pull-request.yml b/.github/workflows/semantic-pull-request.yml index 3cbba82..bec6557 100644 --- a/.github/workflows/semantic-pull-request.yml +++ b/.github/workflows/semantic-pull-request.yml @@ -13,4 +13,4 @@ permissions: jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@0.18.0 + uses: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 6b885ef..cce488c 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -10,4 +10,4 @@ permissions: jobs: main: - uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@0.18.0 + uses: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml@edc1e53751a82ce335e7c3208a32b6ee03856a9f # 0.20.0 diff --git a/README.md b/README.md index 463a230..b1c0917 100644 --- a/README.md +++ b/README.md @@ -10,11 +10,13 @@ # branding<icon:anchor color:gray-dark> GitHub Action: Docker Compose Action + Release%20by%20tagRelease%20by%20dateCommitOpen%20IssuesDownloads + @@ -128,7 +130,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.2.2 - name: Run docker compose uses: hoverkraft-tech/compose-action@v2.0.1 @@ -147,7 +149,7 @@ jobs: ```yaml steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.2.2 - uses: hoverkraft-tech/compose-action@v2.0.1 with: compose-file: "./docker/docker-compose.yml"