From 43a2669dc21f1560f29626a355679ebc9cd8f282 Mon Sep 17 00:00:00 2001 From: Ghassan Maslamani Date: Tue, 15 Mar 2022 23:32:33 +0200 Subject: [PATCH] chore: switch from github/checkout @v2 to @v3 Github checkout v3 is using node-16, so its expected to be more secure than v2. More info: https://github.com/actions/checkout/releases/tag/v3.0.0 --- .github/workflows/ci-static-analysis.yml | 2 +- .github/workflows/docker-publish.yml | 2 +- .github/workflows/js-tests.yml | 2 +- .github/workflows/migrations-check-mysql8.yml | 2 +- .github/workflows/migrations-check.yml | 2 +- .github/workflows/publish-ci-docker-image.yml | 2 +- .github/workflows/pylint-checks.yml | 2 +- .github/workflows/quality-checks.yml | 2 +- .github/workflows/unit-tests.yml | 4 ++-- .github/workflows/verify-dunder-init.yml | 2 +- .github/workflows/verify-gha-unit-tests-count.yml | 2 +- 11 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/ci-static-analysis.yml b/.github/workflows/ci-static-analysis.yml index 0a83b142a74b..5642c363391f 100644 --- a/.github/workflows/ci-static-analysis.yml +++ b/.github/workflows/ci-static-analysis.yml @@ -12,7 +12,7 @@ jobs: os: ['ubuntu-20.04'] steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 - name: Set up Python uses: actions/setup-python@v2 with: diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index e7d9e0c1fa8e..2d16dd842976 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -13,7 +13,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v3 - name: Build and Push docker image env: diff --git a/.github/workflows/js-tests.yml b/.github/workflows/js-tests.yml index 12a78e5ecdec..bdcf106e8ed2 100644 --- a/.github/workflows/js-tests.yml +++ b/.github/workflows/js-tests.yml @@ -20,7 +20,7 @@ jobs: steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 - name: Fetch master to compare coverage run: git fetch --depth=1 origin master diff --git a/.github/workflows/migrations-check-mysql8.yml b/.github/workflows/migrations-check-mysql8.yml index 9ebdf5f978dc..04e2756d7dae 100644 --- a/.github/workflows/migrations-check-mysql8.yml +++ b/.github/workflows/migrations-check-mysql8.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout repo - uses: actions/checkout@v2 + uses: actions/checkout@v3 - name: Setup Python ${{ matrix.python-version }} uses: actions/setup-python@v2 diff --git a/.github/workflows/migrations-check.yml b/.github/workflows/migrations-check.yml index 6e20ac2dd412..a5705fdffc2e 100644 --- a/.github/workflows/migrations-check.yml +++ b/.github/workflows/migrations-check.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout repo - uses: actions/checkout@v2 + uses: actions/checkout@v3 - name: Setup Python ${{ matrix.python-version }} uses: actions/setup-python@v2 diff --git a/.github/workflows/publish-ci-docker-image.yml b/.github/workflows/publish-ci-docker-image.yml index e716c7d15340..0aadc14cf137 100644 --- a/.github/workflows/publish-ci-docker-image.yml +++ b/.github/workflows/publish-ci-docker-image.yml @@ -11,7 +11,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@v3 - name: Configure AWS Credentials uses: aws-actions/configure-aws-credentials@v1 diff --git a/.github/workflows/pylint-checks.yml b/.github/workflows/pylint-checks.yml index c6ddd9a238b9..1fdb974d040d 100644 --- a/.github/workflows/pylint-checks.yml +++ b/.github/workflows/pylint-checks.yml @@ -31,7 +31,7 @@ jobs: name: pylint ${{ matrix.module-name }} steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 - name: Install Required System Packages run: sudo apt-get update && sudo apt-get install libxmlsec1-dev diff --git a/.github/workflows/quality-checks.yml b/.github/workflows/quality-checks.yml index ab171be8df65..9bacb55c7ab6 100644 --- a/.github/workflows/quality-checks.yml +++ b/.github/workflows/quality-checks.yml @@ -19,7 +19,7 @@ jobs: steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: fetch-depth: 2 diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml index 4bb84a6fcc84..db750b2a7d39 100644 --- a/.github/workflows/unit-tests.yml +++ b/.github/workflows/unit-tests.yml @@ -36,7 +36,7 @@ jobs: steps: - name: sync directory owner run: sudo chown runner:runner -R .* - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 # This gives Mongo several chances to start. We started getting flakiness # around 2022-02-15 wherein the start command would sometimes exit with: @@ -95,7 +95,7 @@ jobs: steps: - name: sync directory owner run: sudo chown runner:runner -R .* - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 - name: collect pytest warnings files uses: actions/download-artifact@v2 with: diff --git a/.github/workflows/verify-dunder-init.yml b/.github/workflows/verify-dunder-init.yml index aefc0f53b6f5..c17fd93b207d 100644 --- a/.github/workflows/verify-dunder-init.yml +++ b/.github/workflows/verify-dunder-init.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Check out branch - uses: actions/checkout@v2 + uses: actions/checkout@v3 - name: Ensure git is installed run: | diff --git a/.github/workflows/verify-gha-unit-tests-count.yml b/.github/workflows/verify-gha-unit-tests-count.yml index f327feb8dccd..2d31bae4cc17 100644 --- a/.github/workflows/verify-gha-unit-tests-count.yml +++ b/.github/workflows/verify-gha-unit-tests-count.yml @@ -13,7 +13,7 @@ jobs: - name: sync directory owner run: sudo chown runner:runner -R .* - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 - name: install requirements run: | sudo pip install -r requirements/pip.txt