PR for latest versions of tools #33
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: PR for latest versions of tools | |
on: | |
schedule: | |
- cron: "0 8 * * *" # 3 AM EST | |
workflow_dispatch: | |
permissions: | |
contents: read | |
jobs: | |
update-bootstrap-tools: | |
runs-on: ubuntu-latest | |
if: github.repository == 'anchore/grype' # only run for main repo | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 #v4.2.2 | |
- name: Bootstrap environment | |
uses: ./.github/actions/bootstrap | |
with: | |
bootstrap-apt-packages: "" | |
compute-fingerprints: "false" | |
go-dependencies: false | |
- name: "Update tool versions" | |
id: latest-versions | |
run: | | |
make update-tools | |
make list-tools | |
export NO_COLOR=1 | |
delimiter="$(openssl rand -hex 8)" | |
{ | |
echo "status<<${delimiter}" | |
make list-tool-updates | |
echo "${delimiter}" | |
} >> $GITHUB_OUTPUT | |
{ | |
echo "### Tool version status" | |
echo "\`\`\`" | |
make list-tool-updates | |
echo "\`\`\`" | |
} >> $GITHUB_STEP_SUMMARY | |
- uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a #v2.1.0 | |
id: generate-token | |
with: | |
app_id: ${{ secrets.TOKEN_APP_ID }} | |
private_key: ${{ secrets.TOKEN_APP_PRIVATE_KEY }} | |
- uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f #v7.0.5 | |
with: | |
signoff: true | |
delete-branch: true | |
branch: auto/latest-tools | |
labels: dependencies | |
commit-message: 'chore(deps): update tools to latest versions' | |
title: 'chore(deps): update tools to latest versions' | |
body: | | |
``` | |
${{ steps.latest-versions.outputs.status }} | |
``` | |
This is an auto-generated pull request to update all of the tools to the latest versions. | |
token: ${{ steps.generate-token.outputs.token }} |