diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 6c8d563501..c1cd78fe0a 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Get token from Github App id: app_token - uses: actions/create-github-app-token@v3.0.0 + uses: actions/create-github-app-token@v3.1.1 with: app-id: ${{ vars.DEVOPS_GITHUB_APP_ID }} private-key: ${{ secrets.DEVOPS_GITHUB_APP_PEM }} diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml index 838304e93d..c6cca3ba40 100644 --- a/.github/workflows/chromatic.yml +++ b/.github/workflows/chromatic.yml @@ -24,7 +24,7 @@ jobs: - name: Cache node_modules id: node-modules-cache - uses: actions/cache@v5.0.4 + uses: actions/cache@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} @@ -36,7 +36,7 @@ jobs: - name: Run Chromatic if: env.CHROMATIC_PROJECT_TOKEN - uses: chromaui/action@v16.0.0 + uses: chromaui/action@v16.6.0 with: projectToken: ${{ secrets.CHROMATIC_PROJECT_TOKEN }} onlyChanged: true # 👈 Required option to enable TurboSnap diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e92c90076c..75ec3e0cf2 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -17,7 +17,7 @@ jobs: - uses: actions/checkout@v6.0.2 - name: Lookup node_modules cache id: node-modules-cache - uses: actions/cache@v5.0.4 + uses: actions/cache@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} @@ -34,7 +34,7 @@ jobs: - uses: actions/checkout@v6.0.2 - name: Restore node_modules cache id: node-modules-cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} @@ -49,13 +49,13 @@ jobs: - uses: actions/checkout@v6.0.2 - name: Restore node_modules cache id: node-modules-cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} fail-on-cache-miss: true - name: Restore NX cache - uses: actions/cache@v5.0.4 + uses: actions/cache@v5.0.5 with: path: .nx/cache key: nx-lint-${{ github.sha }} @@ -85,7 +85,7 @@ jobs: uses: actions/checkout@v6.0.2 - name: Restore node_modules cache id: node-modules-cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} @@ -132,13 +132,13 @@ jobs: - uses: actions/checkout@v6.0.2 - name: Restore node_modules cache id: node-modules-cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} fail-on-cache-miss: true - name: Restore NX cache - uses: actions/cache@v5.0.4 + uses: actions/cache@v5.0.5 with: path: .nx/cache key: nx-test-${{ matrix.test-suits.key || matrix.test-suits.name }}-${{ github.sha }} @@ -165,13 +165,13 @@ jobs: - uses: actions/checkout@v6.0.2 - name: Restore node_modules cache id: node-modules-cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: node_modules key: node-modules-cache-${{ hashFiles('package-lock.json', '.npmrc') }} fail-on-cache-miss: true - name: Restore NX cache - uses: actions/cache@v5.0.4 + uses: actions/cache@v5.0.5 with: path: .nx/cache key: nx-build-${{ github.sha }} @@ -184,7 +184,7 @@ jobs: npx nx run-many --target=build ./tools/truncate-nx-cache.sh - name: Save build cache - uses: actions/cache/save@v5.0.4 + uses: actions/cache/save@v5.0.5 with: path: dist key: dist-${{ github.sha }} @@ -205,7 +205,7 @@ jobs: steps: - uses: actions/checkout@v6.0.2 - name: Restore build cache - uses: actions/cache/restore@v5.0.4 + uses: actions/cache/restore@v5.0.5 with: path: dist key: dist-${{ github.sha }} @@ -214,7 +214,7 @@ jobs: uses: docker/setup-buildx-action@v4.0.0 - name: Configure AWS credentials if: vars.ECR_REGION - uses: aws-actions/configure-aws-credentials@v6.0.0 + uses: aws-actions/configure-aws-credentials@v6.1.0 with: aws-access-key-id: ${{ secrets.ECR_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.ECR_SECRET_ACCESS_KEY }} @@ -222,7 +222,7 @@ jobs: - name: Login to Amazon ECR id: login-ecr if: vars.ECR_REGION - uses: aws-actions/amazon-ecr-login@v2.1.0 + uses: aws-actions/amazon-ecr-login@v2.1.4 - name: Format image tag parts env: BRANCH: ${{ github.head_ref || github.ref_name }} @@ -234,7 +234,7 @@ jobs: echo SHORT_SHA=${SHA::8} >> "$GITHUB_ENV" - name: Build image if: vars.ECR_REGION - uses: docker/build-push-action@v7.0.0 + uses: docker/build-push-action@v7.1.0 with: context: . file: ./${{ matrix.target.file }} @@ -252,7 +252,7 @@ jobs: cache-to: mode=max,image-manifest=true,oci-mediatypes=true,type=registry,ref=${{ env.REPOSITORY_URI }}:${{ env.SANITIZED_BRANCH }}-${{ matrix.platform }}-cache - name: Build image if: ${{ !vars.ECR_REGION }} - uses: docker/build-push-action@v7.0.0 + uses: docker/build-push-action@v7.1.0 with: context: . file: ./${{ matrix.target.file }} @@ -271,14 +271,14 @@ jobs: needs: build-images steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v6.0.0 + uses: aws-actions/configure-aws-credentials@v6.1.0 with: aws-access-key-id: ${{ secrets.ECR_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.ECR_SECRET_ACCESS_KEY }} aws-region: ${{ vars.ECR_REGION }} - name: Login to Amazon ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@v2.1.0 + uses: aws-actions/amazon-ecr-login@v2.1.4 - name: Format image tag components env: BRANCH: ${{ github.head_ref || github.ref_name }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9f8336b28c..6ae96ec2d2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -25,7 +25,7 @@ jobs: - name: Get next version if: inputs.version == '' id: semver - uses: flatherskevin/semver-action@7ce18d3c29fa36251f492a5121013455741c072c + uses: flatherskevin/semver-action@34b3c537da75de940b75d92ee4c374eaaae2df67 with: incrementLevel: patch source: tags @@ -46,16 +46,16 @@ jobs: - name: Set up Docker Buildx uses: docker/setup-buildx-action@v4.0.0 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v6.0.0 + uses: aws-actions/configure-aws-credentials@v6.1.0 with: aws-access-key-id: ${{ secrets.ECR_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.ECR_SECRET_ACCESS_KEY }} aws-region: ${{ vars.ECR_REGION }} - name: Login to private ECR id: login-private-ecr - uses: aws-actions/amazon-ecr-login@v2.1.0 + uses: aws-actions/amazon-ecr-login@v2.1.4 - name: Login to public ECR - uses: aws-actions/amazon-ecr-login@v2.1.0 + uses: aws-actions/amazon-ecr-login@v2.1.4 env: AWS_REGION: ${{ vars.ECR_PUBLIC_REGION }} with: @@ -94,7 +94,7 @@ jobs: - name: Create a GitHub release id: create-github-release if: inputs.github_release - uses: softprops/action-gh-release@v2.6.1 + uses: softprops/action-gh-release@v3.0.0 with: target_commitish: ${{ github.sha }} tag_name: ${{ env.VERSION }} @@ -109,7 +109,7 @@ jobs: echo "The release was created as a draft." >> $GITHUB_STEP_SUMMARY echo "Please [review and publish it](${RELEASE_URL/\/tags\//\/edit\/})." >> $GITHUB_STEP_SUMMARY - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v6.0.0 + uses: aws-actions/configure-aws-credentials@v6.1.0 with: aws-access-key-id: ${{ secrets.RELEASE_S3_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.RELEASE_S3_SECRET_ACCESS_KEY }} @@ -133,7 +133,7 @@ jobs: steps: - name: Get GitHub App token id: app_token - uses: actions/create-github-app-token@v3.0.0 + uses: actions/create-github-app-token@v3.1.1 with: app-id: ${{ vars.DEVOPS_GITHUB_APP_ID }} private-key: ${{ secrets.DEVOPS_GITHUB_APP_PEM }} @@ -154,7 +154,7 @@ jobs: steps: - name: Get token from Github App id: app_token - uses: actions/create-github-app-token@v3.0.0 + uses: actions/create-github-app-token@v3.1.1 with: app-id: ${{ vars.DEVOPS_GITHUB_APP_ID }} private-key: ${{ secrets.DEVOPS_GITHUB_APP_PEM }} @@ -175,7 +175,7 @@ jobs: steps: - name: Get GitHub App token id: app_token - uses: actions/create-github-app-token@v3.0.0 + uses: actions/create-github-app-token@v3.1.1 with: app-id: ${{ vars.DEVOPS_GITHUB_APP_ID }} private-key: ${{ secrets.DEVOPS_GITHUB_APP_PEM }} diff --git a/.github/workflows/sync-internal.yml b/.github/workflows/sync-internal.yml index db42bd5e16..964273023e 100644 --- a/.github/workflows/sync-internal.yml +++ b/.github/workflows/sync-internal.yml @@ -11,7 +11,7 @@ jobs: steps: - name: Get token from Github App id: app_token - uses: actions/create-github-app-token@v3.0.0 + uses: actions/create-github-app-token@v3.1.1 with: app-id: ${{ vars.DEVOPS_GITHUB_APP_ID }} private-key: ${{ secrets.DEVOPS_GITHUB_APP_PEM }}