Skip to content

Commit 72cbe0d

Browse files
committed
chore(deps): update all non-major dependencies
1 parent c0fa420 commit 72cbe0d

File tree

7 files changed

+26
-26
lines changed

7 files changed

+26
-26
lines changed

.github/workflows/codeql.yml

+5-5
Original file line numberDiff line numberDiff line change
@@ -41,7 +41,7 @@ jobs:
4141

4242
steps:
4343
- name: Harden Runner
44-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
44+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
4545
with:
4646
disable-sudo: true
4747
egress-policy: block
@@ -53,11 +53,11 @@ jobs:
5353
objects.githubusercontent.com:443
5454
5555
- name: Checkout repository
56-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
56+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
5757

5858
# Initializes the CodeQL tools for scanning.
5959
- name: Initialize CodeQL
60-
uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
60+
uses: github/codeql-action/init@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
6161
with:
6262
languages: ${{ matrix.language }}
6363
# If you wish to specify custom queries, you can do so here or in a config file.
@@ -67,7 +67,7 @@ jobs:
6767
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
6868
# If this step fails, then you should remove it and run the build manually (see below)
6969
- name: Autobuild
70-
uses: github/codeql-action/autobuild@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
70+
uses: github/codeql-action/autobuild@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
7171

7272
# ℹ️ Command-line programs to run using the OS shell.
7373
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -80,6 +80,6 @@ jobs:
8080
# ./location_of_script_within_repo/buildscript.sh
8181

8282
- name: Perform CodeQL Analysis
83-
uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
83+
uses: github/codeql-action/analyze@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
8484
with:
8585
category: "/language:${{matrix.language}}"

.github/workflows/conformance.yml

+5-5
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ jobs:
2222
runs-on: ${{ matrix.platform }}
2323
steps:
2424
- name: Harden Runner
25-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
25+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2626
with:
2727
disable-sudo: true
2828
egress-policy: block
@@ -36,20 +36,20 @@ jobs:
3636
storage.googleapis.com:443
3737
3838
- name: Checkout code
39-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
39+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
4040

4141
- name: Setup Python
42-
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
42+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
4343
with:
4444
python-version: ${{ matrix.python }}
4545

4646
- name: Install the framework
4747
run: python -m pip install -e .
4848

4949
- name: Setup Go
50-
uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
50+
uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
5151
with:
52-
go-version: '1.20'
52+
go-version: '1.24'
5353

5454
- name: Run HTTP conformance tests
5555
uses: GoogleCloudPlatform/functions-framework-conformance/action@72a4f36b10f1c6435ab1a86a9ea24bda464cc262 # v1.8.6

.github/workflows/dependency-review.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -17,14 +17,14 @@ jobs:
1717
runs-on: ubuntu-latest
1818
steps:
1919
- name: Harden Runner
20-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
20+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
2121
with:
2222
disable-sudo: true
2323
egress-policy: block
2424
allowed-endpoints: >
2525
api.github.com:443
2626
github.com:443
2727
- name: 'Checkout Repository'
28-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
28+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
2929
- name: 'Dependency Review'
30-
uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
30+
uses: actions/dependency-review-action@ce3cf9537a52e8119d91fd484ab5b8a807627bf8 # v4.6.0

.github/workflows/lint.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,7 @@ jobs:
1212
runs-on: ubuntu-latest
1313
steps:
1414
- name: Harden Runner
15-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
15+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
1616
with:
1717
disable-sudo: true
1818
egress-policy: block
@@ -21,9 +21,9 @@ jobs:
2121
github.com:443
2222
pypi.org:443
2323
24-
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
24+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
2525
- name: Setup Python
26-
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
26+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
2727
- name: Install tox
2828
run: python -m pip install tox
2929
- name: Lint

.github/workflows/release.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -13,16 +13,16 @@ jobs:
1313
runs-on: ubuntu-latest
1414
steps:
1515
- name: Harden Runner
16-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
16+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
1717
with:
1818
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
1919

2020
- name: Checkout
21-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
21+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
2222
with:
2323
ref: ${{ github.event.release.tag_name }}
2424
- name: Install Python
25-
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
25+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
2626
- name: Install build dependencies
2727
run: python -m pip install -U setuptools build wheel
2828
- name: Build distributions

.github/workflows/scorecard.yml

+4-4
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ jobs:
2626

2727
steps:
2828
- name: Harden Runner
29-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
29+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
3030
with:
3131
disable-sudo: true
3232
egress-policy: block
@@ -47,12 +47,12 @@ jobs:
4747
4848
4949
- name: "Checkout code"
50-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
50+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
5151
with:
5252
persist-credentials: false
5353

5454
- name: "Run analysis"
55-
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
55+
uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1
5656
with:
5757
results_file: results.sarif
5858
results_format: sarif
@@ -64,6 +64,6 @@ jobs:
6464

6565
# Upload the results to GitHub's code scanning dashboard.
6666
- name: "Upload to code-scanning"
67-
uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
67+
uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17
6868
with:
6969
sarif_file: results.sarif

.github/workflows/unit.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -41,7 +41,7 @@ jobs:
4141
runs-on: ${{ matrix.platform }}
4242
steps:
4343
- name: Harden Runner
44-
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
44+
uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
4545
with:
4646
disable-sudo: true
4747
egress-policy: block
@@ -56,9 +56,9 @@ jobs:
5656
registry-1.docker.io:443
5757
5858
- name: Checkout
59-
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
59+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
6060
- name: Use Python ${{ matrix.python }}
61-
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
61+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
6262
with:
6363
python-version: ${{ matrix.python }}
6464
- name: Install tox

0 commit comments

Comments
 (0)