From 1def973517e5650b8c5bf6ac2e410dad9930b641 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 14 Jul 2025 13:57:22 +0000 Subject: [PATCH] ci: bump the github-actions group across 1 directory with 7 updates Bumps the github-actions group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [crate-ci/typos](https://github.com/crate-ci/typos) | `1.33.1` | `1.34.0` | | [chromaui/action](https://github.com/chromaui/action) | `13.0.1` | `13.1.2` | | [fluxcd/flux2](https://github.com/fluxcd/flux2) | `2.6.3` | `2.6.4` | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `666c9d29007687c52e3c7aa2aac6c0ffcadeadc3` | `055970845dd036d7345da7399b7e89f2e10f2b04` | | [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.31.0` | `0.32.0` | | [coder/start-workspace-action](https://github.com/coder/start-workspace-action) | `35a4608cefc7e8cc56573cae7c3b85304575cb72` | `f97a681b4cc7985c9eef9963750c7cc6ebc93a19` | | [umbrelladocs/action-linkspector](https://github.com/umbrelladocs/action-linkspector) | `1.3.5` | `1.3.6` | Updates `crate-ci/typos` from 1.33.1 to 1.34.0 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](https://github.com/crate-ci/typos/compare/b1ae8d918b6e85bd611117d3d9a3be4f903ee5e4...392b78fe18a52790c53f42456e46124f77346842) Updates `chromaui/action` from 13.0.1 to 13.1.2 - [Release notes](https://github.com/chromaui/action/releases) - [Commits](https://github.com/chromaui/action/compare/b5848056bb67ce5f1cccca8e62a37cbd9dd42871...4d8ebd13658d795114f8051e25c28d66f14886c6) Updates `fluxcd/flux2` from 2.6.3 to 2.6.4 - [Release notes](https://github.com/fluxcd/flux2/releases) - [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml) - [Commits](https://github.com/fluxcd/flux2/compare/bda4c8187e436462be0d072e728b67afa215c593...6bf37f6a560fd84982d67f853162e4b3c2235edb) Updates `tj-actions/changed-files` from 666c9d29007687c52e3c7aa2aac6c0ffcadeadc3 to 055970845dd036d7345da7399b7e89f2e10f2b04 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits](https://github.com/tj-actions/changed-files/compare/666c9d29007687c52e3c7aa2aac6c0ffcadeadc3...055970845dd036d7345da7399b7e89f2e10f2b04) Updates `aquasecurity/trivy-action` from 0.31.0 to 0.32.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/76071ef0d7ec797419534a183b498b4d6366cf37...dc5a429b52fcf669ce959baa2c2dd26090d2a6c4) Updates `coder/start-workspace-action` from 35a4608cefc7e8cc56573cae7c3b85304575cb72 to f97a681b4cc7985c9eef9963750c7cc6ebc93a19 - [Release notes](https://github.com/coder/start-workspace-action/releases) - [Commits](https://github.com/coder/start-workspace-action/compare/35a4608cefc7e8cc56573cae7c3b85304575cb72...f97a681b4cc7985c9eef9963750c7cc6ebc93a19) Updates `umbrelladocs/action-linkspector` from 1.3.5 to 1.3.6 - [Release notes](https://github.com/umbrelladocs/action-linkspector/releases) - [Commits](https://github.com/umbrelladocs/action-linkspector/compare/e2ccef58c4b9eb89cd71ee23a8629744bba75aa6...3a951c1f0dca72300c2320d0eb39c2bafe429ab1) --- updated-dependencies: - dependency-name: crate-ci/typos dependency-version: 1.34.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: chromaui/action dependency-version: 13.1.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: fluxcd/flux2 dependency-version: 2.6.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: tj-actions/changed-files dependency-version: '055970845dd036d7345da7399b7e89f2e10f2b04' dependency-type: direct:production dependency-group: github-actions - dependency-name: aquasecurity/trivy-action dependency-version: 0.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: coder/start-workspace-action dependency-version: f97a681b4cc7985c9eef9963750c7cc6ebc93a19 dependency-type: direct:production dependency-group: github-actions - dependency-name: umbrelladocs/action-linkspector dependency-version: 1.3.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yaml | 8 ++++---- .github/workflows/docs-ci.yaml | 2 +- .github/workflows/security.yaml | 2 +- .github/workflows/start-workspace.yaml | 2 +- .github/workflows/weekly-docs.yaml | 2 +- 5 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 33ac234b2d567..f21caeeabf606 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -187,7 +187,7 @@ jobs: # Check for any typos - name: Check for typos - uses: crate-ci/typos@b1ae8d918b6e85bd611117d3d9a3be4f903ee5e4 # v1.33.1 + uses: crate-ci/typos@392b78fe18a52790c53f42456e46124f77346842 # v1.34.0 with: config: .github/workflows/typos.toml @@ -921,7 +921,7 @@ jobs: # the check to pass. This is desired in PRs, but not in mainline. - name: Publish to Chromatic (non-mainline) if: github.ref != 'refs/heads/main' && github.repository_owner == 'coder' - uses: chromaui/action@b5848056bb67ce5f1cccca8e62a37cbd9dd42871 # v13.0.1 + uses: chromaui/action@4d8ebd13658d795114f8051e25c28d66f14886c6 # v13.1.2 env: NODE_OPTIONS: "--max_old_space_size=4096" STORYBOOK: true @@ -953,7 +953,7 @@ jobs: # infinitely "in progress" in mainline unless we re-review each build. - name: Publish to Chromatic (mainline) if: github.ref == 'refs/heads/main' && github.repository_owner == 'coder' - uses: chromaui/action@b5848056bb67ce5f1cccca8e62a37cbd9dd42871 # v13.0.1 + uses: chromaui/action@4d8ebd13658d795114f8051e25c28d66f14886c6 # v13.1.2 env: NODE_OPTIONS: "--max_old_space_size=4096" STORYBOOK: true @@ -1545,7 +1545,7 @@ jobs: uses: google-github-actions/setup-gcloud@77e7a554d41e2ee56fc945c52dfd3f33d12def9a # v2.1.4 - name: Set up Flux CLI - uses: fluxcd/flux2/action@bda4c8187e436462be0d072e728b67afa215c593 # v2.6.3 + uses: fluxcd/flux2/action@6bf37f6a560fd84982d67f853162e4b3c2235edb # v2.6.4 with: # Keep this and the github action up to date with the version of flux installed in dogfood cluster version: "2.5.1" diff --git a/.github/workflows/docs-ci.yaml b/.github/workflows/docs-ci.yaml index 30ac97706d9f8..39954783f1ba8 100644 --- a/.github/workflows/docs-ci.yaml +++ b/.github/workflows/docs-ci.yaml @@ -28,7 +28,7 @@ jobs: - name: Setup Node uses: ./.github/actions/setup-node - - uses: tj-actions/changed-files@666c9d29007687c52e3c7aa2aac6c0ffcadeadc3 # v45.0.7 + - uses: tj-actions/changed-files@055970845dd036d7345da7399b7e89f2e10f2b04 # v45.0.7 id: changed-files with: files: | diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml index e6abdf9f601df..1de1b4d7b7cbb 100644 --- a/.github/workflows/security.yaml +++ b/.github/workflows/security.yaml @@ -142,7 +142,7 @@ jobs: echo "image=$(cat "$image_job")" >> $GITHUB_OUTPUT - name: Run Trivy vulnerability scanner - uses: aquasecurity/trivy-action@76071ef0d7ec797419534a183b498b4d6366cf37 + uses: aquasecurity/trivy-action@dc5a429b52fcf669ce959baa2c2dd26090d2a6c4 with: image-ref: ${{ steps.build.outputs.image }} format: sarif diff --git a/.github/workflows/start-workspace.yaml b/.github/workflows/start-workspace.yaml index 975acd7e1d939..9c1106a040a0e 100644 --- a/.github/workflows/start-workspace.yaml +++ b/.github/workflows/start-workspace.yaml @@ -19,7 +19,7 @@ jobs: timeout-minutes: 5 steps: - name: Start Coder workspace - uses: coder/start-workspace-action@35a4608cefc7e8cc56573cae7c3b85304575cb72 + uses: coder/start-workspace-action@f97a681b4cc7985c9eef9963750c7cc6ebc93a19 with: github-token: ${{ secrets.GITHUB_TOKEN }} github-username: >- diff --git a/.github/workflows/weekly-docs.yaml b/.github/workflows/weekly-docs.yaml index 03db4079878a1..afcc4c3a84236 100644 --- a/.github/workflows/weekly-docs.yaml +++ b/.github/workflows/weekly-docs.yaml @@ -29,7 +29,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Check Markdown links - uses: umbrelladocs/action-linkspector@e2ccef58c4b9eb89cd71ee23a8629744bba75aa6 # v1.3.5 + uses: umbrelladocs/action-linkspector@3a951c1f0dca72300c2320d0eb39c2bafe429ab1 # v1.3.6 id: markdown-link-check # checks all markdown files from /docs including all subfolders with: