diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index e8cefbb..5c53836 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -31,13 +31,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: fetch-depth: 0 persist-credentials: false - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -58,7 +58,7 @@ jobs: fi - name: Install golangci-lint - uses: golangci/golangci-lint-action@v8 + uses: golangci/golangci-lint-action@v9 with: version: latest args: --timeout=5m @@ -76,12 +76,12 @@ jobs: needs: verify steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: persist-credentials: false - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -92,7 +92,7 @@ jobs: govulncheck ./... - name: Run dependency scan - uses: aquasecurity/trivy-action@0.31.0 + uses: aquasecurity/trivy-action@0.33.1 with: scan-type: "fs" scan-ref: "." @@ -102,19 +102,19 @@ jobs: timeout: "10m" - name: Upload security scan results - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 if: always() with: sarif_file: "trivy-results.sarif" - name: Generate SBOM - uses: anchore/sbom-action@v0.20.0 + uses: anchore/sbom-action@v0.20.9 with: format: spdx-json output-file: sbom.spdx.json - name: Upload SBOM - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: sbom path: sbom.spdx.json @@ -127,12 +127,12 @@ jobs: needs: verify steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: persist-credentials: false - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ env.GO_VERSION }} cache: true @@ -156,12 +156,12 @@ jobs: if: github.event_name == 'pull_request' || (github.event_name == 'push' && github.ref != 'refs/heads/main') steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: persist-credentials: false - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ env.GO_VERSION }} cache: true diff --git a/.github/workflows/jekyll-gh-pages.yml b/.github/workflows/jekyll-gh-pages.yml index e31d81c..0161a67 100644 --- a/.github/workflows/jekyll-gh-pages.yml +++ b/.github/workflows/jekyll-gh-pages.yml @@ -27,7 +27,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Setup Pages uses: actions/configure-pages@v5 - name: Build with Jekyll @@ -36,7 +36,7 @@ jobs: source: ./ destination: ./_site - name: Upload artifact - uses: actions/upload-pages-artifact@v3 + uses: actions/upload-pages-artifact@v4 # Deployment job deploy: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b28d975..9c5d45e 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,12 +23,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: fetch-depth: 0 - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ env.GO_VERSION }} cache: true diff --git a/.github/workflows/update-homebrew.yml b/.github/workflows/update-homebrew.yml index 09f06b4..9f38955 100644 --- a/.github/workflows/update-homebrew.yml +++ b/.github/workflows/update-homebrew.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Trigger homebrew formula update - uses: peter-evans/repository-dispatch@v3 + uses: peter-evans/repository-dispatch@v4 with: token: ${{ secrets.HOMEBREW_TAP_TOKEN }} repository: tuannvm/homebrew-mcp