From 7f7725c8fef72c37768e9123d1abab1dde793d66 Mon Sep 17 00:00:00 2001 From: Sascha Grunert Date: Wed, 11 Sep 2024 09:30:28 +0200 Subject: [PATCH] Update and pin GitHub actions Signed-off-by: Sascha Grunert --- .github/dependabot.yml | 31 ++++++++++++++++++++++--------- .github/workflows/ci.yml | 26 +++++++++++++------------- .github/workflows/cross.yml | 4 ++-- .github/workflows/gh-pages.yml | 6 +++--- .github/workflows/label.yml | 4 ++-- .github/workflows/release.yml | 6 +++--- 6 files changed, 45 insertions(+), 32 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 5ce991affb..9dcc084dde 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,11 +1,24 @@ version: 2 updates: -- package-ecosystem: cargo - directory: "/" - schedule: - interval: daily - time: "11:00" - open-pull-requests-limit: 10 - allow: - - dependency-type: direct - - dependency-type: indirect + - package-ecosystem: cargo + directory: "/" + schedule: + interval: daily + time: "11:00" + open-pull-requests-limit: 10 + allow: + - dependency-type: direct + - dependency-type: indirect + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: daily + open-pull-requests-limit: 10 + labels: + - "kind/test" + groups: + actions: + update-types: + - "major" + - "minor" + - "patch" diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index ff8e25f237..1b021db407 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -11,11 +11,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate lockfile run: cargo generate-lockfile - name: Setup Cache - uses: actions/cache@v2 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry @@ -28,11 +28,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate lockfile run: cargo generate-lockfile - name: Setup Cache - uses: actions/cache@v2 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry @@ -45,11 +45,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate lockfile run: cargo generate-lockfile - name: Setup Cache - uses: actions/cache@v2 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry @@ -63,7 +63,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Rustfmt run: cargo fmt && git diff --exit-code @@ -71,9 +71,9 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Select Nighly Toolchain - uses: actions-rs/toolchain@v1 + uses: actions-rs/toolchain@16499b5e05bf2e26879000db0c1d13f7e13fa3af # v1.0.7 with: toolchain: nightly override: true @@ -81,7 +81,7 @@ jobs: shell: bash run: rustup component add rustfmt - name: Unit tests with all features - uses: actions-rs/cargo@v1 + uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # v1.0.3 with: command: test args: --all-features --no-fail-fast @@ -90,7 +90,7 @@ jobs: RUSTFLAGS: '-Zprofile -Ccodegen-units=1 -Cinline-threshold=0 -Clink-dead-code -Coverflow-checks=off -Zpanic_abort_tests' RUSTDOCFLAGS: '-Zprofile -Ccodegen-units=1 -Cinline-threshold=0 -Clink-dead-code -Coverflow-checks=off -Zpanic_abort_tests' - name: Unit tests with default features - uses: actions-rs/cargo@v1 + uses: actions-rs/cargo@844f36862e911db73fe0815f00a4a2602c279505 # v1.0.3 with: command: test args: --no-fail-fast @@ -99,8 +99,8 @@ jobs: RUSTFLAGS: '-Zprofile -Ccodegen-units=1 -Cinline-threshold=0 -Clink-dead-code -Coverflow-checks=off -Zpanic_abort_tests' RUSTDOCFLAGS: '-Zprofile -Ccodegen-units=1 -Cinline-threshold=0 -Clink-dead-code -Coverflow-checks=off -Zpanic_abort_tests' - name: Coverage - uses: actions-rs/grcov@v0.1 + uses: actions-rs/grcov@770fa904bcbfc50da498080d1511da7388e6ddc6 # v0.1.6 with: config: .github/grcov.yml - name: Upload Results - uses: codecov/codecov-action@v2 + uses: codecov/codecov-action@e28ff129e5465c2c0dcc6f003fc735cb6ae0c673 # v4.5.0 diff --git a/.github/workflows/cross.yml b/.github/workflows/cross.yml index 59b881cd30..619ec3e48d 100644 --- a/.github/workflows/cross.yml +++ b/.github/workflows/cross.yml @@ -23,11 +23,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate lockfile run: cargo generate-lockfile - name: Setup Cache - uses: actions/cache@v4 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry diff --git a/.github/workflows/gh-pages.yml b/.github/workflows/gh-pages.yml index bec0f90d07..64701f3e10 100644 --- a/.github/workflows/gh-pages.yml +++ b/.github/workflows/gh-pages.yml @@ -10,11 +10,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate lockfile run: cargo generate-lockfile - name: Setup Cache - uses: actions/cache@v2 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry @@ -24,7 +24,7 @@ jobs: - name: Build Documentation run: cargo doc --all-features - name: Deploy Documentation - uses: peaceiris/actions-gh-pages@v3 + uses: peaceiris/actions-gh-pages@4f9cc6602d3f66b9c108549d475ec49e8ef4d45e # v4.0.0 with: deploy_key: ${{ secrets.ACTIONS_DEPLOY_KEY }} publish_branch: gh-pages diff --git a/.github/workflows/label.yml b/.github/workflows/label.yml index a582b85acb..5de8452588 100644 --- a/.github/workflows/label.yml +++ b/.github/workflows/label.yml @@ -2,7 +2,7 @@ name: 🏷️ Pull Request Labels on: pull_request: - types: [opened, labeled, unlabeled, synchronize] + types: [ opened, labeled, unlabeled, synchronize ] jobs: label: runs-on: ubuntu-latest @@ -10,7 +10,7 @@ jobs: issues: write pull-requests: write steps: - - uses: mheap/github-action-required-labels@v5 + - uses: mheap/github-action-required-labels@d25134c992b943fb6ad00c25ea00eb5988c0a9dd # 5.4.2 with: mode: exactly count: 1 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9ebf1bd3bd..a105dca11d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -2,7 +2,7 @@ name: Release on: push: - tags: ["v[0-9]+.[0-9]+.[0-9]+*"] + tags: [ "v[0-9]+.[0-9]+.[0-9]+*" ] jobs: publish: @@ -11,9 +11,9 @@ jobs: env: CARGO_REGISTRY_TOKEN: ${{ secrets.CARGO_REGISTRY_TOKEN }} steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Setup Cache - uses: actions/cache@v2 + uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 with: path: | ~/.cargo/registry