From 269e7c2851db26e62f1c7feea5c3ed7443340ed9 Mon Sep 17 00:00:00 2001 From: Zachary Hill Date: Fri, 25 Oct 2024 13:06:50 -0600 Subject: [PATCH] updated github actions (#53) * updated github actions * updated all gh actions releases --- .github/workflows/build.yml | 8 ++++---- .github/workflows/release.yml | 2 +- .github/workflows/scheduled_tfsec_security_scan.yml | 4 ++-- .github/workflows/test.yml | 12 +++++------- 4 files changed, 12 insertions(+), 14 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 30ada565..58a294ec 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -12,10 +12,10 @@ jobs: steps: - name: HashiCorp - Setup Terraform - uses: hashicorp/setup-terraform@v2 + uses: hashicorp/setup-terraform@v3 - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: ref: ${{ github.event.pull_request.head.ref }} @@ -30,7 +30,7 @@ jobs: run: terraform fmt -recursive - name: Build terraform docs - uses: terraform-docs/gh-actions@main + uses: terraform-docs/gh-actions@v1 with: config-file: ./modules/.terraform-docs.yml find-dir: ./modules @@ -45,6 +45,6 @@ jobs: run: sudo chown runner:docker -R .git - name: Git stage all, commit, and push - uses: stefanzweifel/git-auto-commit-action@v4 + uses: stefanzweifel/git-auto-commit-action@v5 with: commit_message: Continuous Integration - terraform fmt and terraform-docs diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f2de3bf7..41ace56b 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -12,4 +12,4 @@ jobs: - name: Checkout uses: actions/checkout@v4 - name: Create release - uses: softprops/action-gh-release@v1 \ No newline at end of file + uses: softprops/action-gh-release@v2 \ No newline at end of file diff --git a/.github/workflows/scheduled_tfsec_security_scan.yml b/.github/workflows/scheduled_tfsec_security_scan.yml index e7bf614c..3a871e0a 100644 --- a/.github/workflows/scheduled_tfsec_security_scan.yml +++ b/.github/workflows/scheduled_tfsec_security_scan.yml @@ -17,7 +17,7 @@ jobs: steps: - name: Clone repo - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run tfsec scan with SARIF output uses: aquasecurity/tfsec-sarif-action@master @@ -26,7 +26,7 @@ jobs: full_repo_scan: true - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: # Path to SARIF file relative to the root of the repository sarif_file: tfsec.sarif diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 726907a4..862f0b4b 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -13,12 +13,12 @@ jobs: steps: - name: HashiCorp - Setup Terraform - uses: hashicorp/setup-terraform@v2 + uses: hashicorp/setup-terraform@v3 with: cli_config_credentials_token: ${{ secrets.TF_API_TOKEN }} - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Terraform version id: version @@ -35,7 +35,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run tfsec and write pull request comments uses: aquasecurity/tfsec-pr-commenter-action@main @@ -49,7 +49,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: # Full git history is needed to get a proper # list of changed files within `super-linter` @@ -57,11 +57,9 @@ jobs: # Run Linter against code base - name: Run linter against all changed files - uses: github/super-linter/slim@v4 + uses: super-linter/super-linter@v7 env: - DEFAULT_BRANCH: main GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - MULTI_STATUS: true VALIDATE_MARKDOWN: false VALIDATE_NATURAL_LANGUAGE: false VALIDATE_TERRAFORM_TERRASCAN: false