From b4f7947184ed45e72283a37aeaf214e38c35bc63 Mon Sep 17 00:00:00 2001 From: Doug Fawley Date: Tue, 7 May 2024 11:30:30 -0700 Subject: [PATCH] github: remove dependabot (#7208) --- .github/dependabot.yml | 18 ------------------ .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/coverage.yml | 6 +++--- .github/workflows/lock.yml | 2 +- .github/workflows/release.yml | 6 +++--- .github/workflows/stale.yml | 2 +- .github/workflows/testing.yml | 8 ++++---- 7 files changed, 15 insertions(+), 33 deletions(-) delete mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index a07833292f1d..000000000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,18 +0,0 @@ -# To get started with Dependabot version updates, you'll need to specify which -# package ecosystems to update and where the package manifests are located. -# Please see the documentation for all configuration options: -# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates - -version: 2 -updates: - - package-ecosystem: "github-actions" - directory: "/" - schedule: - interval: "monthly" - groups: - github-actions: - patterns: - - "*" - ignore: - - dependency-name: "*" - update-types: ["version-update:semver-major"] diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index b67bc0a29d5e..237137af092f 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -25,13 +25,13 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@v4 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@a82bad71823183e5b120ab52d521460ecb0585fe # v2.24.9 + uses: github/codeql-action/init@v2 with: languages: go - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@a82bad71823183e5b120ab52d521460ecb0585fe # v2.24.9 + uses: github/codeql-action/analyze@v2 diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index 5324b1191433..d68931b94560 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -9,10 +9,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Install checkout - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@v4 - name: Install checkout - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 + uses: actions/setup-go@v5 with: go-version: "stable" @@ -20,4 +20,4 @@ jobs: run: go test -coverprofile=coverage.out -coverpkg=./... ./... - name: Upload coverage to Codecov - uses: codecov/codecov-action@ab904c41d6ece82784817410c45d8b8c02684457 # v3.1.6 + uses: codecov/codecov-action@v3 diff --git a/.github/workflows/lock.yml b/.github/workflows/lock.yml index ff0d743c77d7..901db8585567 100644 --- a/.github/workflows/lock.yml +++ b/.github/workflows/lock.yml @@ -15,7 +15,7 @@ jobs: issues: write pull-requests: write steps: - - uses: dessant/lock-threads@1bf7ec25051fe7c00bdd17e6a7cf3d7bfb7dc771 # v5.0.1 + - uses: dessant/lock-threads@v5 with: github-token: ${{ github.token }} issue-inactive-days: 180 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 7fcee0563342..bfc6e1f79516 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -25,10 +25,10 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@v4 - name: Set up Go - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 + uses: actions/setup-go@v5 - name: Download dependencies run: | @@ -57,7 +57,7 @@ jobs: echo "name=${PACKAGE_NAME}" >> $GITHUB_OUTPUT - name: Upload asset - uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1.0.2 + uses: actions/upload-release-asset@v1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index bcb44e003bac..f9bae4c0796a 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -16,7 +16,7 @@ jobs: pull-requests: write steps: - - uses: actions/stale@1160a2240286f5da8ec72b1c0816ce2481aabf84 # v8.0.0 + - uses: actions/stale@v8 with: repo-token: ${{ secrets.GITHUB_TOKEN }} days-before-stale: 6 diff --git a/.github/workflows/testing.yml b/.github/workflows/testing.yml index 648712f4698c..68f031312aa2 100644 --- a/.github/workflows/testing.yml +++ b/.github/workflows/testing.yml @@ -22,11 +22,11 @@ jobs: steps: # Setup the environment. - name: Setup Go - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 + uses: actions/setup-go@v5 with: go-version: '1.22' - name: Checkout repo - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@v4 # Run the vet-proto checks. - name: vet-proto @@ -83,12 +83,12 @@ jobs: run: echo "${{ matrix.grpcenv }}" >> $GITHUB_ENV - name: Setup Go - uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0 + uses: actions/setup-go@v5 with: go-version: ${{ matrix.goversion }} - name: Checkout repo - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@v4 # Only run vet for 'vet' runs. - name: Run vet.sh