From eafef35f422ae58ef1cecb807dafa9f1cc300360 Mon Sep 17 00:00:00 2001 From: Sebastien Bousquet Date: Thu, 12 Dec 2024 11:11:27 +0100 Subject: [PATCH] ci: upgrade workflow actions version --- .github/workflows/.trivyignore | 5 ++++- .github/workflows/tests.yaml | 6 +++--- .github/workflows/trivy.yaml | 2 +- 3 files changed, 8 insertions(+), 5 deletions(-) diff --git a/.github/workflows/.trivyignore b/.github/workflows/.trivyignore index fab91e1..451b0f2 100644 --- a/.github/workflows/.trivyignore +++ b/.github/workflows/.trivyignore @@ -1,3 +1,6 @@ CVE-2023-52425 CVE-2023-25193 -CVE-2023-45853 \ No newline at end of file +CVE-2023-45853 +CVE-2024-52533 +# need keycloak dependecy update to 26.0.6 +CVE-2024-10039 \ No newline at end of file diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml index 458df65..a382c68 100644 --- a/.github/workflows/tests.yaml +++ b/.github/workflows/tests.yaml @@ -6,16 +6,16 @@ jobs: integration-tests: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4.1.4 - name: Cache Maven # From https://github.com/actions/cache/blob/main/examples.md - uses: actions/cache@v2 + uses: actions/cache@v4.0.2 with: path: ~/.m2/repository key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} restore-keys: | ${{ runner.os }}-maven- - name: Set up JDK 17 - uses: actions/setup-java@v2 + uses: actions/setup-java@v4 with: java-version: '17' distribution: 'adopt' diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml index 0d030a6..5c4ee61 100644 --- a/.github/workflows/trivy.yaml +++ b/.github/workflows/trivy.yaml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v2 + uses: actions/checkout@v4.1.4 - name: Build an image from Dockerfile run: |