From ebf61e3e10388a5bd695508567db00cea8e018cd Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Charles-Edouard=20Br=C3=A9t=C3=A9ch=C3=A9?= Date: Mon, 2 Sep 2024 23:01:25 +0200 Subject: [PATCH] chore: update upload/download artifact actions (#10985) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Charles-Edouard Brétéché --- .github/actions/publish-image/action.yaml | 2 +- .github/actions/run-tests/action.yaml | 2 +- .github/workflows/codecov.yaml | 4 ++-- .github/workflows/conformance.yaml | 24 +++++++++---------- .github/workflows/load-testing.yml | 10 ++++---- .github/workflows/nancy.yaml | 4 ++-- .../workflows/report-on-vulnerabilities.yaml | 4 ++-- .github/workflows/scorecard.yaml | 2 +- 8 files changed, 26 insertions(+), 26 deletions(-) diff --git a/.github/actions/publish-image/action.yaml b/.github/actions/publish-image/action.yaml index 368531c186..1f26ddae44 100644 --- a/.github/actions/publish-image/action.yaml +++ b/.github/actions/publish-image/action.yaml @@ -59,7 +59,7 @@ runs: with: version: v1 args: app -licenses -json -output ${{ inputs.sbom-name }}-bom.cdx.json -main ${{ inputs.main-path }} - - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2 + - uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: ${{ inputs.sbom-name }}-bom-cdx path: ${{ inputs.sbom-name }}-bom.cdx.json diff --git a/.github/actions/run-tests/action.yaml b/.github/actions/run-tests/action.yaml index c0b927be10..481408f29b 100644 --- a/.github/actions/run-tests/action.yaml +++ b/.github/actions/run-tests/action.yaml @@ -31,7 +31,7 @@ runs: config: ./scripts/config/kind/default.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster diff --git a/.github/workflows/codecov.yaml b/.github/workflows/codecov.yaml index f3c451665d..9a851c3eb5 100644 --- a/.github/workflows/codecov.yaml +++ b/.github/workflows/codecov.yaml @@ -37,7 +37,7 @@ jobs: - name: Generate Code Coverage Report run: make code-cov-report - name: Upload coverage - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: coverage.out path: coverage.out @@ -52,7 +52,7 @@ jobs: - name: Checkout uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Download coverage - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: coverage.out - name: Upload Report to Codecov diff --git a/.github/workflows/conformance.yaml b/.github/workflows/conformance.yaml index cbd43d0334..32065c712e 100644 --- a/.github/workflows/conformance.yaml +++ b/.github/workflows/conformance.yaml @@ -48,7 +48,7 @@ jobs: set -e VERSION=${{ github.ref_name }} make docker-save-image-all - name: upload images archive - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: kyverno.tar path: kyverno.tar @@ -77,7 +77,7 @@ jobs: set -e VERSION=${{ github.ref_name }} make build-cli - name: upload images archive - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: kubectl-kyverno path: cmd/cli/kubectl-kyverno/kubectl-kyverno @@ -498,7 +498,7 @@ jobs: config: ./scripts/config/kind/vap-v1beta1.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -561,7 +561,7 @@ jobs: config: ./scripts/config/kind/vap-v1beta1.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -625,7 +625,7 @@ jobs: config: ./scripts/config/kind/default.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -688,7 +688,7 @@ jobs: config: ./scripts/config/kind/default.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -760,7 +760,7 @@ jobs: kubectl -n tuf-system get secrets tuf-root -oyaml | sed 's/namespace: .*/namespace: kyverno/' | kubectl create -f - # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -833,7 +833,7 @@ jobs: config: ./scripts/config/kind/default.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -923,7 +923,7 @@ jobs: - name: Install chainsaw uses: kyverno/action-install-chainsaw@82d8e747037f840e0ef9bdd97ecdc617f5535bdc # v0.2.8 - name: Download kyverno CLI archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kubectl-kyverno - name: Install Kyverno CLI @@ -941,7 +941,7 @@ jobs: config: ./scripts/config/kind/default.yaml # deploy kyverno - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -997,7 +997,7 @@ jobs: set -e make kind-create-cluster - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -1041,7 +1041,7 @@ jobs: uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 # install tools - name: Download kyverno CLI archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kubectl-kyverno - name: Install chainsaw diff --git a/.github/workflows/load-testing.yml b/.github/workflows/load-testing.yml index 84e663f049..4b1bc53364 100644 --- a/.github/workflows/load-testing.yml +++ b/.github/workflows/load-testing.yml @@ -35,7 +35,7 @@ jobs: set -e VERSION=${{ github.ref_name }} make docker-save-image-all - name: upload images archive - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: kyverno.tar path: kyverno.tar @@ -88,7 +88,7 @@ jobs: cluster_name: kind config: ./scripts/config/kind/default.yaml - name: Download kyverno images archive - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: kyverno.tar - name: Load kyverno images archive in kind cluster @@ -121,19 +121,19 @@ jobs: kubectl -n kyverno get vpa goldilocks-kyverno-admission-controller -o jsonpath='{.status.recommendation.containerRecommendations[*]}' - name: Archive load test results if: failure() - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: load-test-reports path: load-testing/k6/${{ matrix.test }}.js-${{ matrix.k6-config.vus }}vu-${{ matrix.k6-config.iterations }}it-logs.txt - name: Archive pprof CPU profiles if: failure() - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: pprof-cpu-profiles path: cpu.pprof - name: Archive pprof HEAP profiles if: failure() - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: pprof-heap-profiles path: heap.pprof diff --git a/.github/workflows/nancy.yaml b/.github/workflows/nancy.yaml index ba41bb595a..91c8f76c2b 100644 --- a/.github/workflows/nancy.yaml +++ b/.github/workflows/nancy.yaml @@ -44,7 +44,7 @@ jobs: echo "results=nothing" >> $GITHUB_OUTPUT fi - name: Upload vulnerability scan report - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 if: steps.parse-results.outputs.results == 'found' with: name: nancy-results.json @@ -61,7 +61,7 @@ jobs: - name: Checkout uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Download scan results - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: nancy-results.json - name: Set scan output diff --git a/.github/workflows/report-on-vulnerabilities.yaml b/.github/workflows/report-on-vulnerabilities.yaml index aec28c5023..a074ca8416 100644 --- a/.github/workflows/report-on-vulnerabilities.yaml +++ b/.github/workflows/report-on-vulnerabilities.yaml @@ -78,7 +78,7 @@ jobs: fi - name: Upload vulnerability scan report - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 if: steps.parse-results.outputs.results == 'found' with: name: scan.json @@ -95,7 +95,7 @@ jobs: - name: Checkout uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Download scan - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: scan.json - name: Set scan output diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index 30aa1c67be..196b9fe4bf 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -34,7 +34,7 @@ jobs: repo_token: ${{ secrets.SCORECARD_READ_TOKEN }} publish_results: true - name: Upload artifact - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0 with: name: SARIF file path: results.sarif