From 8f4c0161fed52c6b1f7b35bf89da877349f06294 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 Sep 2023 18:39:43 +0000 Subject: [PATCH 1/2] Bump aws-actions/configure-aws-credentials from 2 to 3 Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 2 to 3. - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws-actions/configure-aws-credentials/compare/v2...v3) --- updated-dependencies: - dependency-name: aws-actions/configure-aws-credentials dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/e2e_test.yml | 2 +- .github/workflows/integ_test.yml | 2 +- .github/workflows/publish_release.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/reuse_python_build.yml | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/e2e_test.yml b/.github/workflows/e2e_test.yml index bfe0c2e3..5fd7bf24 100644 --- a/.github/workflows/e2e_test.yml +++ b/.github/workflows/e2e_test.yml @@ -11,7 +11,7 @@ jobs: id-token: write steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v2 + uses: aws-actions/configure-aws-credentials@v3 with: role-to-assume: ${{ secrets.AWS_CODEBUILD_MAINLINE_E2E_ROLE }} aws-region: us-west-2 diff --git a/.github/workflows/integ_test.yml b/.github/workflows/integ_test.yml index 16563aab..a42c018c 100644 --- a/.github/workflows/integ_test.yml +++ b/.github/workflows/integ_test.yml @@ -11,7 +11,7 @@ jobs: id-token: write steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v2 + uses: aws-actions/configure-aws-credentials@v3 with: role-to-assume: ${{ secrets.AWS_CODEBUILD_MAINLINE_INTEG_ROLE }} aws-region: us-west-2 diff --git a/.github/workflows/publish_release.yml b/.github/workflows/publish_release.yml index 4d0a7b2d..0f3ff6a3 100644 --- a/.github/workflows/publish_release.yml +++ b/.github/workflows/publish_release.yml @@ -10,7 +10,7 @@ jobs: id-token: write steps: - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v2 + uses: aws-actions/configure-aws-credentials@v3 with: role-to-assume: ${{ secrets.AWS_CODEBUILD_RELEASE_PUBLISH_ROLE }} aws-region: us-west-2 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9989f3a8..6857862b 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -72,7 +72,7 @@ jobs: with: python-version: '3.9' - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v2 + uses: aws-actions/configure-aws-credentials@v3 with: role-to-assume: ${{ secrets.AWS_CODEARTIFACT_ROLE }} aws-region: us-west-2 diff --git a/.github/workflows/reuse_python_build.yml b/.github/workflows/reuse_python_build.yml index 63d648f7..d567257f 100644 --- a/.github/workflows/reuse_python_build.yml +++ b/.github/workflows/reuse_python_build.yml @@ -38,7 +38,7 @@ jobs: python-version: ${{ matrix.python-version }} - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v2 + uses: aws-actions/configure-aws-credentials@v3 with: role-to-assume: ${{ secrets.AWS_CODEARTIFACT_ROLE }} aws-region: us-west-2 From 9b8ed840a41ebccd0d5d7711288f579b61e61ce9 Mon Sep 17 00:00:00 2001 From: Daniel Neilson <53624638+ddneilson@users.noreply.github.com> Date: Mon, 11 Sep 2023 14:00:45 -0500 Subject: [PATCH 2/2] Apply suggestions from code review --- .github/workflows/e2e_test.yml | 1 + .github/workflows/integ_test.yml | 1 + .github/workflows/publish_release.yml | 1 + .github/workflows/release.yml | 1 + .github/workflows/reuse_python_build.yml | 1 + 5 files changed, 5 insertions(+) diff --git a/.github/workflows/e2e_test.yml b/.github/workflows/e2e_test.yml index 5fd7bf24..571b391a 100644 --- a/.github/workflows/e2e_test.yml +++ b/.github/workflows/e2e_test.yml @@ -15,6 +15,7 @@ jobs: with: role-to-assume: ${{ secrets.AWS_CODEBUILD_MAINLINE_E2E_ROLE }} aws-region: us-west-2 + mask-aws-account-id: true - name: Run CodeBuild uses: aws-actions/aws-codebuild-run-build@v1 with: diff --git a/.github/workflows/integ_test.yml b/.github/workflows/integ_test.yml index a42c018c..44131e1d 100644 --- a/.github/workflows/integ_test.yml +++ b/.github/workflows/integ_test.yml @@ -15,6 +15,7 @@ jobs: with: role-to-assume: ${{ secrets.AWS_CODEBUILD_MAINLINE_INTEG_ROLE }} aws-region: us-west-2 + mask-aws-account-id: true - name: Run CodeBuild uses: aws-actions/aws-codebuild-run-build@v1 with: diff --git a/.github/workflows/publish_release.yml b/.github/workflows/publish_release.yml index 0f3ff6a3..f6faa1de 100644 --- a/.github/workflows/publish_release.yml +++ b/.github/workflows/publish_release.yml @@ -14,6 +14,7 @@ jobs: with: role-to-assume: ${{ secrets.AWS_CODEBUILD_RELEASE_PUBLISH_ROLE }} aws-region: us-west-2 + mask-aws-account-id: true - name: Run CodeBuild uses: aws-actions/aws-codebuild-run-build@v1 with: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6857862b..04420721 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -76,6 +76,7 @@ jobs: with: role-to-assume: ${{ secrets.AWS_CODEARTIFACT_ROLE }} aws-region: us-west-2 + mask-aws-account-id: true - name: Install dependencies run: | CODEARTIFACT_AUTH_TOKEN=$(aws codeartifact get-authorization-token --domain ${{ secrets.CODEARTIFACT_DOMAIN }} --domain-owner ${{ secrets.CODEARTIFACT_ACCOUNT_ID }} --query authorizationToken --output text --region us-west-2) diff --git a/.github/workflows/reuse_python_build.yml b/.github/workflows/reuse_python_build.yml index d567257f..8d42a437 100644 --- a/.github/workflows/reuse_python_build.yml +++ b/.github/workflows/reuse_python_build.yml @@ -42,6 +42,7 @@ jobs: with: role-to-assume: ${{ secrets.AWS_CODEARTIFACT_ROLE }} aws-region: us-west-2 + mask-aws-account-id: true - name: Install Hatch run: |