diff --git a/.github/workflows/master_merge.yml b/.github/workflows/master_merge.yml index a5aa63e..b521325 100644 --- a/.github/workflows/master_merge.yml +++ b/.github/workflows/master_merge.yml @@ -9,26 +9,26 @@ jobs: build-ckan-2-10: runs-on: ubuntu-20.04 steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-10 @@ -40,10 +40,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.10 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.10 file: ./images/ckan/2.10/Dockerfile @@ -57,10 +57,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.10 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.10 file: ./images/ckan/2.10/Dockerfile.focal @@ -74,26 +74,26 @@ jobs: build-ckan-2-9: runs-on: ubuntu-20.04 steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-9 @@ -105,10 +105,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.9 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.9 file: ./images/ckan/2.9/Dockerfile @@ -122,10 +122,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.9 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.9 file: ./images/ckan/2.9/Dockerfile.focal @@ -139,26 +139,26 @@ jobs: build-ckan-2-8: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-8 @@ -170,10 +170,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.8 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.8 file: ./images/ckan/2.8/Dockerfile @@ -187,10 +187,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.8 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.8 file: ./images/ckan/2.8/Dockerfile.focal @@ -204,26 +204,26 @@ jobs: build-ckan-2-7: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-7 @@ -235,10 +235,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push CKAN 2.7 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.7 file: ./images/ckan/2.7/Dockerfile @@ -252,10 +252,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build CKAN 2.7 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.7 file: ./images/ckan/2.7/Dockerfile.focal @@ -269,26 +269,26 @@ jobs: build-ckan-datapusher: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: /tmp/.buildx-cache-datapusher key: ${{ runner.os }}-buildx-datapusher-${{ github.sha }} @@ -298,10 +298,10 @@ jobs: - name: Get docker tag for datapusher image id: datapusher run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/datapusher/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/datapusher/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push CKAN datapusher - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/datapusher file: ./images/datapusher/Dockerfile @@ -315,26 +315,26 @@ jobs: build-psql-init: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }} - name: Login to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.CR_PAT }} - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: /tmp/.buildx-cache-psql-init key: ${{ runner.os }}-buildx-psql-init-${{ github.sha }} @@ -344,10 +344,10 @@ jobs: - name: Get docker tag for psql-init image id: psql-init run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/psql-init/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/psql-init/Dockerfile)" >> $GITHUB_OUTPUT - name: Build and push psql-init - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/psql-init file: ./images/psql-init/Dockerfile diff --git a/.github/workflows/pr_checks.yml b/.github/workflows/pr_checks.yml index f16959f..0bad5a2 100644 --- a/.github/workflows/pr_checks.yml +++ b/.github/workflows/pr_checks.yml @@ -9,13 +9,13 @@ jobs: build-ckan-2-10: runs-on: ubuntu-20.04 steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-10 @@ -27,10 +27,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile)" >> $GITHUB_OUTPUT - name: Build CKAN 2.10 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.10 file: ./images/ckan/2.10/Dockerfile @@ -42,10 +42,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.10/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build CKAN 2.10 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.10 file: ./images/ckan/2.10/Dockerfile.focal @@ -60,13 +60,13 @@ jobs: build-ckan-2-9: runs-on: ubuntu-20.04 steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-9 @@ -78,10 +78,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile)" >> $GITHUB_OUTPUT - name: Build CKAN 2.9 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.9 file: ./images/ckan/2.9/Dockerfile @@ -93,10 +93,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.9/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build CKAN 2.9 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.9 file: ./images/ckan/2.9/Dockerfile.focal @@ -110,13 +110,13 @@ jobs: build-ckan-2-8: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-8 @@ -128,10 +128,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile)" >> $GITHUB_OUTPUT - name: Build CKAN 2.8 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.8 file: ./images/ckan/2.8/Dockerfile @@ -143,10 +143,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.8/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build CKAN 2.8 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.8 file: ./images/ckan/2.8/Dockerfile.focal @@ -158,13 +158,13 @@ jobs: build-ckan-2-7: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: | /tmp/.buildx-cache-alpine-2-7 @@ -176,10 +176,10 @@ jobs: - name: Get docker tag for Alpine image id: alpine run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile)" >> $GITHUB_OUTPUT - name: Build CKAN 2.7 alpine - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.7 file: ./images/ckan/2.7/Dockerfile @@ -191,10 +191,10 @@ jobs: - name: Get docker tag for Ubuntu image id: ubuntu run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile.focal)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/ckan/2.7/Dockerfile.focal)" >> $GITHUB_OUTPUT - name: Build CKAN 2.7 ubuntu - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/ckan/2.7 file: ./images/ckan/2.7/Dockerfile.focal @@ -206,13 +206,13 @@ jobs: build-ckan-datapusher: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: /tmp/.buildx-cache-datapusher key: ${{ runner.os }}-buildx-datapusher-${{ github.sha }} @@ -222,10 +222,10 @@ jobs: - name: Get docker tag for datapusher image id: datapusher run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/datapusher/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/datapusher/Dockerfile)" >> $GITHUB_OUTPUT - name: Build CKAN datapusher - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/datapusher file: ./images/datapusher/Dockerfile @@ -237,13 +237,13 @@ jobs: build-psql-init: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Cache Docker layers - uses: actions/cache@v2 + uses: actions/cache@v4 with: path: /tmp/.buildx-cache-psql-init key: ${{ runner.os }}-buildx-psql-init-${{ github.sha }} @@ -253,10 +253,10 @@ jobs: - name: Get docker tag for psql-init image id: psql-init run: | - echo "::set-output name=IMAGE_TAG::$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/psql-init/Dockerfile)" + echo "IMAGE_TAG=$(awk -F '=' '/IMAGE_TAG/{print $2}' ./images/psql-init/Dockerfile)" >> $GITHUB_OUTPUT - name: Build psql-init - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v5 with: context: ./images/psql-init file: ./images/psql-init/Dockerfile diff --git a/.github/workflows/trivy_scan.yml b/.github/workflows/trivy_scan.yml index 6f8c917..8bce2d1 100644 --- a/.github/workflows/trivy_scan.yml +++ b/.github/workflows/trivy_scan.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-20.04 steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Run Trivy vulnerability scanner in repo mode uses: aquasecurity/trivy-action@master @@ -26,7 +26,7 @@ jobs: severity: 'CRITICAL' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -37,7 +37,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -51,7 +51,7 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -62,7 +62,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -76,7 +76,7 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -86,7 +86,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -100,7 +100,7 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -110,7 +110,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -124,7 +124,7 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -134,7 +134,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -148,7 +148,7 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' @@ -159,7 +159,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Build an image from Dockerfile run: | @@ -173,6 +173,6 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: sarif_file: 'trivy-results.sarif' \ No newline at end of file