From 9cfe4ce9360f260c013e92d493b247bab0e49dc5 Mon Sep 17 00:00:00 2001 From: Aaron-Ritter Date: Tue, 30 Jan 2024 11:26:08 +0100 Subject: [PATCH 1/2] ci: update all actions to patch version --- .github/workflows/codeql.yml | 10 +++++----- .github/workflows/detekt.yml | 11 ++++++----- .github/workflows/mobsf.yml | 9 +++++---- 3 files changed, 16 insertions(+), 14 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index fcb9601..c0ce3a3 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -50,17 +50,17 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v4.1.1 - name: Setup JDK 17 - uses: actions/setup-java@v4 + uses: actions/setup-java@v4.0.0 with: java-version: '17' distribution: 'zulu' # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v3.23.1 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -74,7 +74,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@v3.23.1 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -87,6 +87,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v3.23.1 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/detekt.yml b/.github/workflows/detekt.yml index c6ca8ab..6c13785 100644 --- a/.github/workflows/detekt.yml +++ b/.github/workflows/detekt.yml @@ -45,25 +45,26 @@ jobs: steps: # Sets up JDK as a prerequisite to run Gradle - name: Setup Java - uses: actions/setup-java@v4 + uses: actions/setup-java@v4.0.0 with: java-version: '17' distribution: 'zulu' # Sets up the reviewdog cli - name: Setup reviewdog - uses: reviewdog/action-setup@v1 + uses: reviewdog/action-setup@v1.2.0 + - name: Show reviewdog version run: reviewdog -version # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v4.1.1 # Sets up Gradle as a prerequisite to run Detekt - name: Setup Gradle - uses: gradle/gradle-build-action@v2 + uses: gradle/gradle-build-action@v2.12.0 with: gradle-home-cache-cleanup: true @@ -73,7 +74,7 @@ jobs: # Uploads Sarif Report to GitHub - name: Upload SARIF to GitHub - uses: github/codeql-action/upload-sarif@v3 # v3 + uses: github/codeql-action/upload-sarif@v3.23.1 if: success() || failure() with: sarif_file: build/reports/detekt/merge.sarif.json diff --git a/.github/workflows/mobsf.yml b/.github/workflows/mobsf.yml index a51e45f..0fb183f 100644 --- a/.github/workflows/mobsf.yml +++ b/.github/workflows/mobsf.yml @@ -28,17 +28,18 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.1.1 # Sets up the python as a prerequisites for MobSF - name: Setup python - uses: actions/setup-python@v5 + uses: actions/setup-python@v5.0.0 with: python-version: 3.8 # Sets up the reviewdog cli - name: Setup reviewdog - uses: reviewdog/action-setup@v1 + uses: reviewdog/action-setup@v1.2.0 + - name: Show reviewdog version run: reviewdog -version @@ -51,7 +52,7 @@ jobs: # Uploads Sarif Report to GitHub - name: Upload mobsfscan report - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v3.23.1 if: success() || failure() with: sarif_file: mobsf.sarif.json From 5f825fefe2437bb68c36dcc2d993dab5993e8cdb Mon Sep 17 00:00:00 2001 From: Aaron-Ritter Date: Tue, 30 Jan 2024 11:33:23 +0100 Subject: [PATCH 2/2] ci: remove linebreaks --- .github/workflows/detekt.yml | 1 - .github/workflows/mobsf.yml | 1 - 2 files changed, 2 deletions(-) diff --git a/.github/workflows/detekt.yml b/.github/workflows/detekt.yml index 6c13785..ed8ae00 100644 --- a/.github/workflows/detekt.yml +++ b/.github/workflows/detekt.yml @@ -54,7 +54,6 @@ jobs: - name: Setup reviewdog uses: reviewdog/action-setup@v1.2.0 - - name: Show reviewdog version run: reviewdog -version diff --git a/.github/workflows/mobsf.yml b/.github/workflows/mobsf.yml index 0fb183f..3ac5057 100644 --- a/.github/workflows/mobsf.yml +++ b/.github/workflows/mobsf.yml @@ -40,7 +40,6 @@ jobs: - name: Setup reviewdog uses: reviewdog/action-setup@v1.2.0 - - name: Show reviewdog version run: reviewdog -version