diff --git a/.github/workflows/backend_tests.yml b/.github/workflows/backend_tests.yml index 23d174686..a8e44a1c5 100644 --- a/.github/workflows/backend_tests.yml +++ b/.github/workflows/backend_tests.yml @@ -19,14 +19,14 @@ jobs: steps: - name: Checkout - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' diff --git a/.github/workflows/branch-deploy.yml b/.github/workflows/branch-deploy.yml index a16cd10fe..26a727867 100644 --- a/.github/workflows/branch-deploy.yml +++ b/.github/workflows/branch-deploy.yml @@ -15,7 +15,7 @@ jobs: if: ${{ github.event.label.name == 'status/feature_testing' || github.event.label.name == 'status/feature_testing_public' }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} @@ -27,7 +27,7 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -40,10 +40,10 @@ jobs: export VERSION=$(./mvnw -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec) echo "version=${VERSION}" >> $GITHUB_OUTPUT - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 + uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 - name: Cache Docker layers uses: actions/cache@d4323d4df104b026a6aa633fdb11d772146be0bf # https://github.com/actions/cache/releases/tag/v4.3.0 with: @@ -52,14 +52,14 @@ jobs: restore-keys: | ${{ runner.os }}-buildx- - name: Configure AWS credentials for Kafka-UI account - uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 + uses: aws-actions/configure-aws-credentials@61815dcd50bd041e203e49132bacad1fd04d2708 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} aws-region: eu-central-1 - name: Login to Amazon ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@9238dd443b7a5941caf19ffbe68be34d4dbd61df # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 + uses: aws-actions/amazon-ecr-login@d63b14614fe5d7fc5e5e52c523dea4e876816cc4 # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 - name: Build and push id: docker_build_and_push uses: docker/build-push-action@471d1dc4e07e5cdedd4c2171150001c434f0b7a4 # https://github.com/docker/build-push-action/releases/tag/v6.18.0 diff --git a/.github/workflows/branch-remove.yml b/.github/workflows/branch-remove.yml index 5ff9c1afe..abdc6e480 100644 --- a/.github/workflows/branch-remove.yml +++ b/.github/workflows/branch-remove.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest if: ${{ (github.event.label.name == 'status/feature_testing' || github.event.label.name == 'status/feature_testing_public') || (github.event.action == 'closed' && (contains(github.event.pull_request.labels.*.name, 'status/feature_testing') || contains(github.event.pull_request.labels.*.name, 'status/feature_testing_public'))) }} steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} - name: clone diff --git a/.github/workflows/build-public-image.yml b/.github/workflows/build-public-image.yml index e00716dc3..2650d954c 100644 --- a/.github/workflows/build-public-image.yml +++ b/.github/workflows/build-public-image.yml @@ -15,7 +15,7 @@ jobs: if: ${{ github.event.label.name == 'status/image_testing' }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} @@ -25,7 +25,7 @@ jobs: tag='${{ github.event.pull_request.number }}' echo "tag=${tag}" >> $GITHUB_OUTPUT - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -38,10 +38,10 @@ jobs: export VERSION=$(./mvnw -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec) echo "version=${VERSION}" >> $GITHUB_OUTPUT - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 + uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 - name: Cache Docker layers uses: actions/cache@d4323d4df104b026a6aa633fdb11d772146be0bf # https://github.com/actions/cache/releases/tag/v4.3.0 with: @@ -50,13 +50,13 @@ jobs: restore-keys: | ${{ runner.os }}-buildx- - name: Configure AWS Credentials - uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 + uses: aws-actions/configure-aws-credentials@61815dcd50bd041e203e49132bacad1fd04d2708 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 with: aws-region: us-east-1 role-to-assume: ${{ secrets.AWS_ROLE }} - name: Login to Amazon ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@9238dd443b7a5941caf19ffbe68be34d4dbd61df # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 + uses: aws-actions/amazon-ecr-login@d63b14614fe5d7fc5e5e52c523dea4e876816cc4 # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 with: registry-type: 'public' - name: Build and push @@ -72,7 +72,7 @@ jobs: cache-from: type=local,src=/tmp/.buildx-cache cache-to: type=local,dest=/tmp/.buildx-cache - name: make comment with private deployment link - uses: peter-evans/create-or-update-comment@71345be0265236311c031f5c7866368bd1eff043 # infered from @v4 + uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 # infered from @v4 with: issue-number: ${{ github.event.pull_request.number }} body: | diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 114a3b295..23d5a8e7b 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -38,24 +38,24 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} - name: Initialize CodeQL - uses: github/codeql-action/init@1a7989f3955e0c69f0e0ccc14aee54a387a0fd31 # infered from @v3 + uses: github/codeql-action/init@1b0b941e1fbd5cb8122c5ebdf087be9d02534840 # infered from @v3 with: languages: ${{ matrix.language }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' cache: 'gradle' - name: Autobuild - uses: github/codeql-action/autobuild@bed2a47f201e917459bc40343380c570a730ff06 # https://github.com/github/codeql-action/releases/tag/v4.31.7 + uses: github/codeql-action/autobuild@1b0b941e1fbd5cb8122c5ebdf087be9d02534840 # https://github.com/github/codeql-action/releases/tag/v4.31.7 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@86b04fb0e47484f7282357688f21d5d0e32175fe # https://github.com/github/codeql-action/releases/tag/v4.31.7 + uses: github/codeql-action/analyze@1b0b941e1fbd5cb8122c5ebdf087be9d02534840 # https://github.com/github/codeql-action/releases/tag/v4.31.7 diff --git a/.github/workflows/cve_checks.yml b/.github/workflows/cve_checks.yml index 67ea5ff39..92980b22c 100644 --- a/.github/workflows/cve_checks.yml +++ b/.github/workflows/cve_checks.yml @@ -18,12 +18,12 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -39,10 +39,10 @@ jobs: -Pversion=latest - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 + uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 - name: Cache Docker layers uses: actions/cache@d4323d4df104b026a6aa633fdb11d772146be0bf # https://github.com/actions/cache/releases/tag/v4.3.0 @@ -68,7 +68,7 @@ jobs: cache-to: type=local,dest=/tmp/.buildx-cache - name: Run CVE checks - uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 # https://github.com/aquasecurity/trivy-action/releases/tag/0.33.1 + uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # https://github.com/aquasecurity/trivy-action/releases/tag/0.33.1 with: image-ref: "ghcr.io/kafbat/kafka-ui:latest" format: "table" diff --git a/.github/workflows/delete-public-image.yml b/.github/workflows/delete-public-image.yml index 388ec2902..123fc0d2f 100644 --- a/.github/workflows/delete-public-image.yml +++ b/.github/workflows/delete-public-image.yml @@ -15,14 +15,14 @@ jobs: tag='${{ github.event.pull_request.number }}' echo "tag=${tag}" >> $GITHUB_OUTPUT - name: Configure AWS credentials for Kafka-UI account - uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 + uses: aws-actions/configure-aws-credentials@61815dcd50bd041e203e49132bacad1fd04d2708 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} aws-region: us-east-1 - name: Login to Amazon ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@9238dd443b7a5941caf19ffbe68be34d4dbd61df # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 + uses: aws-actions/amazon-ecr-login@d63b14614fe5d7fc5e5e52c523dea4e876816cc4 # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 with: registry-type: 'public' - name: Remove from ECR diff --git a/.github/workflows/docker_build.yml b/.github/workflows/docker_build.yml index 6f2fd6897..4469a29c3 100644 --- a/.github/workflows/docker_build.yml +++ b/.github/workflows/docker_build.yml @@ -18,23 +18,23 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} - name: Download artifacts - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # https://github.com/actions/download-artifact/releases/tag/v4 + uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # https://github.com/actions/download-artifact/releases/tag/v4 with: name: kafbat-ui-${{ inputs.version }} path: api/build/libs - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 + uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 - name: Cache Docker layers uses: actions/cache@d4323d4df104b026a6aa633fdb11d772146be0bf # https://github.com/actions/cache/releases/tag/v4.3.0 @@ -49,7 +49,7 @@ jobs: # Also containerd is one of the option to allow preserving provenance attestations: # https://docs.docker.com/build/attestations/#creating-attestations - name: Setup docker with containerd - uses: docker/setup-docker-action@efe9e3891a4f7307e689f2100b33a155b900a608 # https://github.com/docker/setup-docker-action/releases/tag/v4.6.0 + uses: docker/setup-docker-action@e61617a16c407a86262fb923c35a616ddbe070b3 # https://github.com/docker/setup-docker-action/releases/tag/v4.6.0 with: daemon-config: | { @@ -81,7 +81,7 @@ jobs: docker image save kafka-ui:temp > /tmp/image.tar - name: Upload docker image - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # https://github.com/actions/upload-artifact/releases/tag/v4 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # https://github.com/actions/upload-artifact/releases/tag/v4 with: name: image path: /tmp/image.tar diff --git a/.github/workflows/docker_publish.yml b/.github/workflows/docker_publish.yml index 327a55d76..7e9f63f65 100644 --- a/.github/workflows/docker_publish.yml +++ b/.github/workflows/docker_publish.yml @@ -26,14 +26,14 @@ jobs: steps: - name: Download docker image - uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # https://github.com/actions/download-artifact/releases/tag/v4 + uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # https://github.com/actions/download-artifact/releases/tag/v4 with: name: image path: /tmp # setup containerd to preserve provenance attestations :https://docs.docker.com/build/attestations/#creating-attestations - name: Setup docker with containerd - uses: docker/setup-docker-action@efe9e3891a4f7307e689f2100b33a155b900a608 # https://github.com/docker/setup-docker-action/releases/tag/v4.6.0 + uses: docker/setup-docker-action@e61617a16c407a86262fb923c35a616ddbe070b3 # https://github.com/docker/setup-docker-action/releases/tag/v4.6.0 with: daemon-config: | { @@ -48,7 +48,7 @@ jobs: - name: Login to docker.io if: matrix.registry == 'docker.io' - uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # https://github.com/docker/login-action/releases/tag/v3.6.0 + uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # https://github.com/docker/login-action/releases/tag/v3.6.0 with: registry: ${{ matrix.registry }} username: ${{ secrets.DOCKERHUB_USERNAME }} @@ -56,7 +56,7 @@ jobs: - name: Login to ghcr.io if: matrix.registry == 'ghcr.io' - uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # https://github.com/docker/login-action/releases/tag/v3.6.0 + uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # https://github.com/docker/login-action/releases/tag/v3.6.0 with: registry: ${{ matrix.registry }} username: ${{ github.actor }} @@ -64,7 +64,7 @@ jobs: - name: Configure AWS credentials if: matrix.registry == 'ecr' - uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 + uses: aws-actions/configure-aws-credentials@61815dcd50bd041e203e49132bacad1fd04d2708 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 with: aws-region: us-east-1 # This region only for public ECR role-to-assume: ${{ secrets.AWS_ROLE }} @@ -72,7 +72,7 @@ jobs: - name: Login to public ECR if: matrix.registry == 'ecr' id: login-ecr-public - uses: aws-actions/amazon-ecr-login@9238dd443b7a5941caf19ffbe68be34d4dbd61df # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 + uses: aws-actions/amazon-ecr-login@d63b14614fe5d7fc5e5e52c523dea4e876816cc4 # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 with: registry-type: public diff --git a/.github/workflows/e2e-playwright-run.yml b/.github/workflows/e2e-playwright-run.yml index 369eb7ff7..7521eb2cb 100644 --- a/.github/workflows/e2e-playwright-run.yml +++ b/.github/workflows/e2e-playwright-run.yml @@ -17,19 +17,19 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} ref: ${{ inputs.sha }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' cache: 'gradle' - name: Set up Node.js - uses: actions/setup-node@3235b876344d2a9aa001b8d1453c930bba69e610 # https://github.com/actions/setup-node/releases/tag/v3.9.1 + uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # https://github.com/actions/setup-node/releases/tag/v6.1.0 with: node-version: 18 cache-dependency-path: ./e2e-playwright/package-lock.json @@ -72,7 +72,7 @@ jobs: - name: Upload report if: failure() - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # https://github.com/actions/upload-artifact/releases/tag/v4 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # https://github.com/actions/upload-artifact/releases/tag/v4 with: name: playwright-results path: ./e2e-playwright/test-results/ diff --git a/.github/workflows/frontend_tests.yml b/.github/workflows/frontend_tests.yml index 403805da5..2becc4835 100644 --- a/.github/workflows/frontend_tests.yml +++ b/.github/workflows/frontend_tests.yml @@ -14,19 +14,19 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: # Disabling shallow clone is recommended for improving relevancy of reporting fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} - - uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # https://github.com/pnpm/action-setup/releases/tag/v4.2.0 + - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # https://github.com/pnpm/action-setup/releases/tag/v4.2.0 with: version: 9.15.4 - name: Install node - uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # https://github.com/actions/setup-node/releases/tag/v4 + uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # https://github.com/actions/setup-node/releases/tag/v4 with: node-version: "22.12.0" cache: "pnpm" diff --git a/.github/workflows/infra_discord_hook.yml b/.github/workflows/infra_discord_hook.yml index 77921d9c3..b178c2db4 100644 --- a/.github/workflows/infra_discord_hook.yml +++ b/.github/workflows/infra_discord_hook.yml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Notify Discord on Failure - uses: Ilshidur/action-discord@0c4b27844ba47cb1c7bee539c8eead5284ce9fa9 # https://github.com/Ilshidur/action-discord/releases/tag/0.3.2 + uses: Ilshidur/action-discord@d2594079a10f1d6739ee50a2471f0ca57418b554 # https://github.com/Ilshidur/action-discord/releases/tag/0.4.0 with: args: ${{ inputs.message }} env: diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index de7f22649..9c1f89c9e 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -20,13 +20,13 @@ jobs: steps: - name: Checkout - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -43,7 +43,7 @@ jobs: -Pversion=$version - name: Upload jar - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # https://github.com/actions/upload-artifact/releases/tag/v4 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # https://github.com/actions/upload-artifact/releases/tag/v4 with: name: kafbat-ui-${{ steps.build.outputs.version }} path: api/build/libs/api-${{ steps.build.outputs.version }}.jar diff --git a/.github/workflows/md-links.yml b/.github/workflows/md-links.yml index 51925679c..0f199f892 100644 --- a/.github/workflows/md-links.yml +++ b/.github/workflows/md-links.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: token: ${{ github.token }} - name: Check URLs in files diff --git a/.github/workflows/release-serde-api.yml b/.github/workflows/release-serde-api.yml index 776beb803..ad2336c98 100644 --- a/.github/workflows/release-serde-api.yml +++ b/.github/workflows/release-serde-api.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: fetch-depth: 0 token: ${{ github.token }} @@ -20,7 +20,7 @@ jobs: git config user.email github-actions@github.com - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ddf9ba5f5..a7543caed 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -15,7 +15,7 @@ jobs: outputs: version: ${{steps.build.outputs.version}} steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }} @@ -26,7 +26,7 @@ jobs: git config user.email github-actions@github.com - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -43,14 +43,14 @@ jobs: -Pversion=$version - name: Upload files to a GitHub release - uses: svenstaro/upload-release-action@04733e069f2d7f7f0b4aebc4fbdbce8613b03ccd # https://github.com/svenstaro/upload-release-action/releases/tag/2.9.0 + uses: svenstaro/upload-release-action@6b7fa9f267e90b50a19fef07b3596790bb941741 # https://github.com/svenstaro/upload-release-action/releases/tag/2.11.3 with: repo_token: ${{ secrets.GITHUB_TOKEN }} file: api/build/libs/api-${{ steps.build.outputs.version }}.jar tag: ${{ github.event.release.tag_name }} - name: Archive JAR - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # https://github.com/actions/upload-artifact/releases/tag/v4 + uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # https://github.com/actions/upload-artifact/releases/tag/v4 with: name: kafbat-ui-${{ steps.build.outputs.version }} path: api/build/libs/api-${{ steps.build.outputs.version }}.jar @@ -81,7 +81,7 @@ jobs: needs: release steps: - name: Repository Dispatch - uses: peter-evans/repository-dispatch@ff45666b9427631e3450c54a1bcbee4d9ff4d7c0 # https://github.com/peter-evans/repository-dispatch/releases/tag/v3 + uses: peter-evans/repository-dispatch@28959ce8df70de7be546dd1250a005dd32156697 # https://github.com/peter-evans/repository-dispatch/releases/tag/v3 with: token: ${{ secrets.CHARTS_ACTIONS_TOKEN }} repository: kafbat/helm-charts diff --git a/.github/workflows/separate_env_public_create.yml b/.github/workflows/separate_env_public_create.yml index da44661f8..5cf4891c5 100644 --- a/.github/workflows/separate_env_public_create.yml +++ b/.github/workflows/separate_env_public_create.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} token: ${{ github.token }} @@ -27,7 +27,7 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Set up JDK - uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # https://github.com/actions/setup-java/releases/tag/v4 + uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # https://github.com/actions/setup-java/releases/tag/v4 with: java-version-file: '.java-version' distribution: 'zulu' @@ -40,10 +40,10 @@ jobs: export VERSION=$(./mvnw -q -Dexec.executable=echo -Dexec.args='${project.version}' --non-recursive exec:exec) echo "version=${VERSION}" >> $GITHUB_OUTPUT - name: Set up QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # https://github.com/docker/setup-qemu-action/releases/tag/v3.7.0 - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 + uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # https://github.com/docker/setup-buildx-action/releases/tag/v3.11.1 - name: Cache Docker layers uses: actions/cache@d4323d4df104b026a6aa633fdb11d772146be0bf # https://github.com/actions/cache/releases/tag/v4.3.0 with: @@ -52,14 +52,14 @@ jobs: restore-keys: | ${{ runner.os }}-buildx- - name: Configure AWS credentials for Kafka-UI account - uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 + uses: aws-actions/configure-aws-credentials@61815dcd50bd041e203e49132bacad1fd04d2708 # https://github.com/aws-actions/configure-aws-credentials/releases/tag/v4 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} aws-region: eu-central-1 - name: Login to Amazon ECR id: login-ecr - uses: aws-actions/amazon-ecr-login@9238dd443b7a5941caf19ffbe68be34d4dbd61df # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 + uses: aws-actions/amazon-ecr-login@d63b14614fe5d7fc5e5e52c523dea4e876816cc4 # https://github.com/aws-actions/amazon-ecr-login/releases/tag/v2.0.1 - name: Build and push id: docker_build_and_push uses: docker/build-push-action@471d1dc4e07e5cdedd4c2171150001c434f0b7a4 # https://github.com/docker/build-push-action/releases/tag/v6.18.0 diff --git a/.github/workflows/validate-gradle-wrapper.yml b/.github/workflows/validate-gradle-wrapper.yml index 2812ed33f..4156fe7b3 100644 --- a/.github/workflows/validate-gradle-wrapper.yml +++ b/.github/workflows/validate-gradle-wrapper.yml @@ -14,5 +14,5 @@ jobs: name: "Validate Gradle Wrapper" runs-on: ubuntu-latest steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # https://github.com/actions/checkout/releases/tag/v5.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 - uses: gradle/actions/wrapper-validation@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # https://github.com/gradle/actions/releases/tag/v5.0.0 diff --git a/.github/workflows/welcome-first-time-contributors.yml b/.github/workflows/welcome-first-time-contributors.yml index 9dc362962..76400483f 100644 --- a/.github/workflows/welcome-first-time-contributors.yml +++ b/.github/workflows/welcome-first-time-contributors.yml @@ -14,7 +14,7 @@ jobs: welcome: runs-on: ubuntu-latest steps: - - uses: actions/first-interaction@3c71ce730280171fd1cfb57c00c774f8998586f7 # https://github.com/actions/first-interaction/releases/tag/v1 + - uses: actions/first-interaction@1c4688942c71f71d4f5502a26ea67c331730fa4d # https://github.com/actions/first-interaction/releases/tag/v3.1.0 with: repo-token: ${{ secrets.GITHUB_TOKEN }} issue-message: | diff --git a/.github/workflows/workflow_linter.yml b/.github/workflows/workflow_linter.yml index 399534ed5..cd9a7fdc6 100644 --- a/.github/workflows/workflow_linter.yml +++ b/.github/workflows/workflow_linter.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1e31de5234b9f8995739874a8ce0492dc87873e2 # https://github.com/actions/checkout/releases/tag/v4.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # https://github.com/actions/checkout/releases/tag/v6.0.1 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }}