diff --git a/.github/workflows/assembly.yml b/.github/workflows/assembly.yml index 423bf8bfa6d..c5a134b5198 100644 --- a/.github/workflows/assembly.yml +++ b/.github/workflows/assembly.yml @@ -32,7 +32,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-assembly-${{ matrix.scala-version }} path: ~/.m2/repository/ diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml index 3aa9b4f4707..ebb76f5e5a6 100644 --- a/.github/workflows/build-and-test.yml +++ b/.github/workflows/build-and-test.yml @@ -79,7 +79,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-build-${{ matrix.scala-version }}-${{ matrix.projects.name }} path: ~/.m2/repository/ diff --git a/.github/workflows/build-release.yml b/.github/workflows/build-release.yml index f62414090e6..caffe4f5163 100644 --- a/.github/workflows/build-release.yml +++ b/.github/workflows/build-release.yml @@ -88,7 +88,7 @@ jobs: "${file}" "${file}.sha256" done < <(find geomesa-* -name '*-bin.tar.gz' -print0) - name: Upload job logs - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-log-${{ matrix.scala-version }} retention-days: 90 # max default diff --git a/.github/workflows/codacy.yml b/.github/workflows/codacy.yml index 40d2b8ecf46..c457870d8fc 100644 --- a/.github/workflows/codacy.yml +++ b/.github/workflows/codacy.yml @@ -64,7 +64,7 @@ jobs: # Upload the SARIF file generated in the previous step - name: Upload SARIF results file - uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4 + uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4 with: sarif_file: results.sarif category: codacy-${{ matrix.tool }} diff --git a/.github/workflows/dash.yml b/.github/workflows/dash.yml index 02e8be90618..7ea48c234fb 100644 --- a/.github/workflows/dash.yml +++ b/.github/workflows/dash.yml @@ -25,7 +25,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-dash path: ~/.m2/repository/ diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index d073b5800b2..a1e56309bac 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -19,4 +19,4 @@ jobs: - name: 'Checkout Repository' uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: 'Dependency Review' - uses: actions/dependency-review-action@05fe4576374b728f0c523d6a13d64c25081e0803 # v4.8.3 + uses: actions/dependency-review-action@a1d282b36b6f3519aa1f3fc636f609c47dddb294 # v5.0.0 diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 6669bf33654..7b971c7c87c 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -25,7 +25,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-docs path: ~/.m2/repository/ diff --git a/.github/workflows/eclipse-snapshots.yml b/.github/workflows/eclipse-snapshots.yml index aa4afb0a7a7..4febb0fd33e 100644 --- a/.github/workflows/eclipse-snapshots.yml +++ b/.github/workflows/eclipse-snapshots.yml @@ -27,7 +27,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-eclipse-snapshots-${{ matrix.version }} path: ~/.m2/repository/ diff --git a/.github/workflows/integration-tests.yml b/.github/workflows/integration-tests.yml index 18282af38d7..10a6e5eb176 100644 --- a/.github/workflows/integration-tests.yml +++ b/.github/workflows/integration-tests.yml @@ -36,7 +36,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-it-${{ matrix.scala-version }}-${{ matrix.projects.name }} path: ~/.m2/repository/ diff --git a/.github/workflows/javadocs.yml b/.github/workflows/javadocs.yml index b8a36678e5a..00df50a13ff 100644 --- a/.github/workflows/javadocs.yml +++ b/.github/workflows/javadocs.yml @@ -64,7 +64,7 @@ jobs: java-version: "${{ env.JAVA_VERSION }}" - name: Generate cache key run: echo "MOD_SELECTOR=$(echo '${{ matrix.projects.list }}' | sed 's/[^a-zA-Z0-9_.-]/-/g' | head -c 256)" >> "$GITHUB_ENV" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-javadocs-${{ matrix.scala-version }}-${{ env.MOD_SELECTOR }} path: ~/.m2/repository/ diff --git a/.github/workflows/license-headers.yml b/.github/workflows/license-headers.yml index 967e542a53d..d5a9afb931c 100644 --- a/.github/workflows/license-headers.yml +++ b/.github/workflows/license-headers.yml @@ -25,7 +25,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-license-header-check path: ~/.m2/repository/ diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 3085af2266e..385e6f64d7f 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -59,7 +59,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: SARIF file path: results.sarif @@ -67,6 +67,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4 + uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4 with: sarif_file: results.sarif diff --git a/.github/workflows/spark.yml b/.github/workflows/spark.yml index 3afed159fad..3f9f288cb20 100644 --- a/.github/workflows/spark.yml +++ b/.github/workflows/spark.yml @@ -45,7 +45,7 @@ jobs: with: distribution: temurin java-version: "${{ env.JAVA_VERSION }}" - - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 with: key: ${{ hashFiles('**/pom.xml') }}-spark-integration-tests-${{ matrix.scala-version }}-${{ matrix.projects.name }} path: ~/.m2/repository/