diff --git a/.github/actions/build-test/action.yml b/.github/actions/build-test/action.yml index 974344d6d4c..af536511467 100644 --- a/.github/actions/build-test/action.yml +++ b/.github/actions/build-test/action.yml @@ -53,13 +53,13 @@ runs: - name: Upload junit reports if: ${{ !cancelled() }} - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: junit-${{ inputs.alias }}-${{ inputs.container-id }} path: tmp/rspec/*.xml - name: Upload coverage data - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: coverage-${{ inputs.alias }}-${{ inputs.container-id }} path: coverage diff --git a/.github/actions/bundle-cache/action.yml b/.github/actions/bundle-cache/action.yml index 933c7658834..9198a80d3bf 100644 --- a/.github/actions/bundle-cache/action.yml +++ b/.github/actions/bundle-cache/action.yml @@ -28,12 +28,12 @@ runs: bundle lock echo "lockfile=$LOCKFILE" >> "$GITHUB_OUTPUT" - name: Upload lockfile - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: ${{ steps.lockfile.outputs.lockfile }} path: "*.lock" - name: Restore cache - uses: actions/cache/restore@8b402f58fbc84540c8b491a91e594a4576fec3d7 # v5.0.2 + uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4 id: restore-cache with: key: bundle-${{ steps.ruby-env-id.outputs.id }}-${{ hashFiles('*.lock') }} @@ -43,7 +43,7 @@ runs: run: bundle install - if: steps.restore-cache.outputs.cache-hit != 'true' name: Save cache - uses: actions/cache/save@8b402f58fbc84540c8b491a91e594a4576fec3d7 # v5.0.2 + uses: actions/cache/save@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4 with: key: "${{ steps.restore-cache.outputs.cache-primary-key }}" path: "/usr/local/bundle" diff --git a/.github/actions/bundle-restore/action.yml b/.github/actions/bundle-restore/action.yml index 9a84bb7391a..27fbb9a4ef1 100644 --- a/.github/actions/bundle-restore/action.yml +++ b/.github/actions/bundle-restore/action.yml @@ -15,12 +15,12 @@ runs: using: composite steps: - name: Download lockfile - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: ${{ inputs.lockfile }} - name: Restore cache - uses: actions/cache/restore@8b402f58fbc84540c8b491a91e594a4576fec3d7 # v5.0.2 + uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4 id: restore-cache with: key: "${{ inputs.cache-key }}" diff --git a/.github/workflows/build-gem.yml b/.github/workflows/build-gem.yml index 7e7bdf02e32..62205fe4c17 100644 --- a/.github/workflows/build-gem.yml +++ b/.github/workflows/build-gem.yml @@ -36,7 +36,7 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: '3.2' bundler-cache: true # runs 'bundle install' and caches installed gems automatically @@ -63,7 +63,7 @@ jobs: run: | find pkg - name: Upload artifact - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: 'datadog-gem-${{ matrix.type }}-gha${{ github.run_id }}-g${{ github.sha }}' path: 'pkg/*.gem' @@ -80,14 +80,14 @@ jobs: - build steps: - name: Download artifact - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: 'datadog-gem-${{ matrix.type }}-gha${{ github.run_id }}-g${{ github.sha }}' path: 'pkg' - name: List gem run: | find pkg - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: '3.2' - name: Install gem @@ -106,7 +106,7 @@ jobs: if: ${{ inputs.push }} steps: - name: Download artifact - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: 'datadog-gem-${{ matrix.type }}-gha${{ github.run_id }}-g${{ github.sha }}' path: 'pkg' diff --git a/.github/workflows/bump-gem-version.yml b/.github/workflows/bump-gem-version.yml index 56f7efc8685..0322d12a352 100644 --- a/.github/workflows/bump-gem-version.yml +++ b/.github/workflows/bump-gem-version.yml @@ -39,7 +39,7 @@ jobs: fetch-depth: 0 - name: Set up Ruby - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.3.7" @@ -52,7 +52,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 138b78bacb7..925d4f1cda4 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -34,7 +34,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -45,10 +45,10 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually - name: Autobuild - uses: github/codeql-action/autobuild@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/autobuild@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 complete: name: CodeQL (complete) diff --git a/.github/workflows/generate-supported-versions.yml b/.github/workflows/generate-supported-versions.yml index c3cf3df929a..bade081bf73 100644 --- a/.github/workflows/generate-supported-versions.yml +++ b/.github/workflows/generate-supported-versions.yml @@ -19,7 +19,7 @@ jobs: persist-credentials: false - name: Set up Ruby - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.3" @@ -30,7 +30,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/lock-dependency.yml b/.github/workflows/lock-dependency.yml index 25413e51999..aff0c34c990 100644 --- a/.github/workflows/lock-dependency.yml +++ b/.github/workflows/lock-dependency.yml @@ -22,7 +22,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 + - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1 id: changes with: filters: .github/dependency_filters.yml @@ -75,7 +75,7 @@ jobs: - run: bundle install - run: bundle exec rake dependency:generate - run: bundle exec rake dependency:lock - - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: lock-dependency-${{ github.run_id }}-${{ matrix.engine.name }}-${{ matrix.engine.version }} path: gemfiles/${{ matrix.engine.name }}_${{ matrix.engine.version }}* @@ -88,7 +88,7 @@ jobs: steps: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} @@ -96,7 +96,7 @@ jobs: with: persist-credentials: true # required for `git` operations (commit & push) at later steps token: ${{ steps.generate-token.outputs.token }} - - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + - uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: path: gemfiles pattern: lock-dependency-${{ github.run_id }}-* diff --git a/.github/workflows/nix.yml b/.github/workflows/nix.yml index 95180a838d6..405e5e0aff4 100644 --- a/.github/workflows/nix.yml +++ b/.github/workflows/nix.yml @@ -48,7 +48,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: DeterminateSystems/nix-installer-action@c5a866b6ab867e88becbed4467b93592bce69f8a # main + - uses: DeterminateSystems/nix-installer-action@ef8a148080ab6020fd15196c2084a2eea5ff2d25 # main - name: Print ruby version run: | nix develop --command which ruby diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 5c3837694a9..7ab090ad38b 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -28,7 +28,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.3.7" @@ -165,11 +165,11 @@ jobs: with: persist-credentials: false # `rubygems/release-gem` action handles credentials itself - name: Set up Ruby - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.3.7" - run: bundle install - - uses: rubygems/release-gem@1c162a739e8b4cb21a676e97b087e8268d8fc40b # v1.1.2 + - uses: rubygems/release-gem@e9a6361a0b14562539327c2a02373edc56dd3169 # v1.1.4 github-release: name: Attach gem to Github Release and publish @@ -209,7 +209,7 @@ jobs: persist-credentials: false fetch-depth: 0 - name: Set up Ruby - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.3.7" - run: bundle install @@ -333,7 +333,7 @@ jobs: steps: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/system-tests.yml b/.github/workflows/system-tests.yml index aa16fbfea6d..415bc2b2cfd 100644 --- a/.github/workflows/system-tests.yml +++ b/.github/workflows/system-tests.yml @@ -31,7 +31,7 @@ jobs: with: persist-credentials: false - name: Changes - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 + uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1 id: changes with: filters: | @@ -65,7 +65,7 @@ jobs: persist-credentials: false path: packaged/dd-trace-rb - name: Upload artifact - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: dd-trace-rb # The name must match the folder name so it extracts to binaries/dd-trace-rb on download path: packaged diff --git a/.github/workflows/test-macos.yaml b/.github/workflows/test-macos.yaml index 089df080364..41eb1d2cfd1 100644 --- a/.github/workflows/test-macos.yaml +++ b/.github/workflows/test-macos.yaml @@ -49,7 +49,7 @@ jobs: # head rubies - if: ${{ matrix.ruby.version == 'head' }} run: sed -i~ -e '/spec\.required_ruby_version/d' datadog.gemspec - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: ${{ matrix.ruby.version }} - name: Install rubygems diff --git a/.github/workflows/test-memory-leaks.yaml b/.github/workflows/test-memory-leaks.yaml index 9473920ba3f..e7acd14a671 100644 --- a/.github/workflows/test-memory-leaks.yaml +++ b/.github/workflows/test-memory-leaks.yaml @@ -18,7 +18,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: 3.4.1 bundler-cache: true # runs 'bundle install' and caches installed gems automatically @@ -32,7 +32,7 @@ jobs: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: asan-release bundler-cache: true # runs 'bundle install' and caches installed gems automatically diff --git a/.github/workflows/test-yjit.yaml b/.github/workflows/test-yjit.yaml index f427dccd7cc..da21426b255 100644 --- a/.github/workflows/test-yjit.yaml +++ b/.github/workflows/test-yjit.yaml @@ -50,7 +50,7 @@ jobs: # head rubies - if: ${{ matrix.ruby == 'head' }} run: sed -i~ -e '/spec\.required_ruby_version/d' datadog.gemspec - - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: ${{ matrix.ruby }} bundler-cache: true # runs 'bundle install' and caches installed gems automatically diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 6fed1d5c862..547683a27bc 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -153,7 +153,7 @@ jobs: persist-credentials: false - run: mkdir -p tmp/rspec && datadog-ci version - name: Download all junit reports - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: path: tmp/rspec pattern: junit-* @@ -221,7 +221,7 @@ jobs: steps: - run: mkdir -p tmp/coverage && datadog-ci version - name: Download all coverage data - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: path: tmp/coverage pattern: coverage-* diff --git a/.github/workflows/typing-stats.yml b/.github/workflows/typing-stats.yml index ac149378683..bcaa65cce3c 100644 --- a/.github/workflows/typing-stats.yml +++ b/.github/workflows/typing-stats.yml @@ -39,7 +39,7 @@ jobs: persist-credentials: false - name: Set up Ruby - uses: ruby/setup-ruby@90be1154f987f4dc0fe0dd0feedac9e473aa4ba8 # v1.286.0 + uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0 with: ruby-version: "3.4" diff --git a/.github/workflows/update-latest-dependency.yml b/.github/workflows/update-latest-dependency.yml index 3524eb93976..9777edf3b90 100644 --- a/.github/workflows/update-latest-dependency.yml +++ b/.github/workflows/update-latest-dependency.yml @@ -58,7 +58,7 @@ jobs: - name: Update latest run: bundle exec rake edge:gemspec edge:update - name: Upload artifact - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 with: name: 'gha${{ github.run_id }}-datadog-gem-${{ matrix.engine.name }}-${{ matrix.engine.version }}' path: gemfiles/${{ matrix.engine.name }}_${{ matrix.engine.version }}_* @@ -74,7 +74,7 @@ jobs: persist-credentials: false - name: Download artifacts for all runtimes - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: path: gemfiles pattern: gha${{ github.run_id }}-datadog-gem-* @@ -82,7 +82,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/update-system-tests.yml b/.github/workflows/update-system-tests.yml index 8020ce0ec6d..6a0c2284734 100644 --- a/.github/workflows/update-system-tests.yml +++ b/.github/workflows/update-system-tests.yml @@ -71,7 +71,7 @@ jobs: - name: Generate GitHub App Token id: generate-token - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1 + uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 with: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/yard.yml b/.github/workflows/yard.yml index 1e3688207a5..23124579404 100644 --- a/.github/workflows/yard.yml +++ b/.github/workflows/yard.yml @@ -40,7 +40,7 @@ jobs: - name: Generate YARD documentation run: bundle exec rake docs --rakefile=tasks/yard.rake - name: Setup Pages - uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.0.0 + uses: actions/configure-pages@45bfe0192ca1faeb007ade9deae92b16b8254a0d # v6.0.0 - name: Upload artifact uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v4.0.0 with: @@ -48,4 +48,4 @@ jobs: path: 'doc/' - name: Deploy to GitHub Pages id: deployment - uses: actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4.0.5 + uses: actions/deploy-pages@cd2ce8fcbc39b97be8ca5fce6e763baed58fa128 # v5.0.0