From 6ba5c6f1ca27734aa35d2e6a5112b3f8010a2a72 Mon Sep 17 00:00:00 2001 From: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> Date: Sat, 11 Jan 2025 15:43:52 -0500 Subject: [PATCH] [fix](build): fix indentation (#661) * [fix](build): fix indentation Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): version upgrade Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> * [improve](build): bundle_cache: false, cache_version:6 Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> --------- Signed-off-by: Ralph Hightower <32745442+RalphHightower@users.noreply.github.com> --- .github/workflows/NewYearUpdateCopyright.yml | 2 +- .github/workflows/ci.yaml | 18 +++++++++--------- .github/workflows/codeql.yml | 16 ++++++++-------- .github/workflows/dependency-review.yml | 20 +++++++++----------- .github/workflows/jekyll.yml | 8 ++++---- .github/workflows/permission_advisor.yml | 4 ++-- .github/workflows/readme-checker.yml | 4 ++-- .github/workflows/release-please.yml | 2 +- .github/workflows/release.yml | 4 ++-- .github/workflows/scorecard.yml | 6 +++--- .github/workflows/semantic-release.yml | 2 +- .github/workflows/test.yml | 6 +++--- 12 files changed, 45 insertions(+), 47 deletions(-) diff --git a/.github/workflows/NewYearUpdateCopyright.yml b/.github/workflows/NewYearUpdateCopyright.yml index 91e326eb..ff1ad88d 100644 --- a/.github/workflows/NewYearUpdateCopyright.yml +++ b/.github/workflows/NewYearUpdateCopyright.yml @@ -13,7 +13,7 @@ jobs: issues: write steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 7c89469d..71551b0a 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -20,8 +20,8 @@ jobs: JEKYLL_VERSION: ${{ matrix.jekyll }} steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 - with: + uses: step-security/harden-runner@v2.10.3 + with: disable-sudo: true egress-policy: block allowed-endpoints: > @@ -30,12 +30,12 @@ jobs: api.securityscorecards.dev:443 github.com:443 - - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - - name: Set Up Ruby 3.3.6 - uses: ruby/setup-ruby@2a18b06812b0e15bb916e1df298d3e740422c47e # v1.203.0 - with: + - name: Checkout Repository + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - name: Set Up Ruby 3.3.6 + uses: ruby/setup-ruby@2a18b06812b0e15bb916e1df298d3e740422c47e # v1.203.0 + with: ruby-version: 3.3.6 bundler-cache: true - - name: Run tests - run: script/cibuild + - name: Run tests + run: script/cibuild diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index b998a9f9..14b065eb 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -37,28 +37,28 @@ jobs: strategy: fail-fast: false matrix: - language: ["ruby"] + language: ["ruby","github-actions"] # CodeQL supports [ $supported-codeql-languages ] # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: disable-sudo: true egress-policy: block allowed-endpoints: > - api.github.com:443 - github.com:443 - objects.githubusercontent.com:443 - uploads.github.com:443 + api.github.com:443 + github.com:443 + objects.githubusercontent.com:443 + uploads.github.com:443 - name: Checkout repository uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0 + uses: github/codeql-action/init@v2.20.1 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -68,7 +68,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0 + uses: github/codeql-action/autobuild@v2.20.1 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 4f94e746..d79d277a 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -17,19 +17,17 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@446798f8213ac2e75931c1b0769676d927801858 # v2.10.0 + uses: step-security/harden-runner@v2.10.3 with: - disable-sudo: true - egress-policy: block - allowed-endpoints: > - api.deps.dev:443 - api.github.com:443 - api.securityscorecards.dev:443 - github.com:443 + disable-sudo: true + egress-policy: block + allowed-endpoints: > + api.deps.dev:443 + api.github.com:443 + api.securityscorecards.dev:443 + github.com:443 - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 - egress-policy: audit - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: 'Checkout Repository' - name: 'Dependency Review' diff --git a/.github/workflows/jekyll.yml b/.github/workflows/jekyll.yml index 78b6efb4..61bcbc72 100644 --- a/.github/workflows/jekyll.yml +++ b/.github/workflows/jekyll.yml @@ -32,7 +32,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: disable-sudo: true egress-policy: block @@ -49,8 +49,8 @@ jobs: uses: ruby/setup-ruby@4a9ddd6f338a97768b8006bf671dfbad383215f4 # v1.207.0 with: ruby-version: '3.3.6' # Not needed with a .ruby-version file - bundler-cache: true # runs 'bundle install' and caches installed gems automatically - cache-version: 1 # Increment this number if you need to re-download cached gems + bundler-cache: false # runs 'bundle install' and caches installed gems automatically + cache-version: 6 # Increment this number if you need to re-download cached gems - name: Setup Pages id: pages uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.0.0 @@ -74,7 +74,7 @@ jobs: needs: build steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/permission_advisor.yml b/.github/workflows/permission_advisor.yml index eb3fad15..a73e42d8 100644 --- a/.github/workflows/permission_advisor.yml +++ b/.github/workflows/permission_advisor.yml @@ -22,11 +22,11 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit - - uses: GitHubSecurityLab/actions-permissions/advisor@aecef454fc649f347a1796348ded6c5d21a14d87 # v1.0.2-beta4 + - uses: GitHubSecurityLab/actions-permissions/advisor@v1.0.2-beta5 with: name: ${{ inputs.name }} count: ${{ inputs.count }} diff --git a/.github/workflows/readme-checker.yml b/.github/workflows/readme-checker.yml index 2f09ee1a..5b35329a 100644 --- a/.github/workflows/readme-checker.yml +++ b/.github/workflows/readme-checker.yml @@ -9,14 +9,14 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit - name: Checkout uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Checking markdown - uses: DavidAnson/markdownlint-cli2-action@eb5ca3ab411449c66620fe7f1b3c9e10547144b0 # v18.0.0 + uses: DavidAnson/markdownlint-cli2-action@v19.0.0 with: globs: | *.md diff --git a/.github/workflows/release-please.yml b/.github/workflows/release-please.yml index 29ba0f57..92a0b999 100644 --- a/.github/workflows/release-please.yml +++ b/.github/workflows/release-please.yml @@ -25,7 +25,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 99f56738..687d853d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,12 +19,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - - uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0 + - uses: actions/setup-node@v4.1.0 with: cache: npm node-version: lts/* diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index e7cd653b..176aa598 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -15,7 +15,7 @@ jobs: id-token: write steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit @@ -31,12 +31,12 @@ jobs: results_format: sarif publish_results: true - name: Upload artifact - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 + uses: actions/upload-artifact@v4.6.0 with: name: SARIF file path: results.sarif retention-days: 5 - name: Upload to code-scanning - uses: github/codeql-action/upload-sarif@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2.20.0 + uses: github/codeql-action/upload-sarif@v2.20.1 with: sarif_file: results.sarif diff --git a/.github/workflows/semantic-release.yml b/.github/workflows/semantic-release.yml index b6cb68b3..8b5932c8 100644 --- a/.github/workflows/semantic-release.yml +++ b/.github/workflows/semantic-release.yml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 8eb30804..435ab191 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -34,7 +34,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit @@ -57,7 +57,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.e with: egress-policy: audit @@ -84,7 +84,7 @@ jobs: if: ${{ !cancelled() }} steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@v2.10.3 with: egress-policy: audit