3434 tailnet-integration : ${{ steps.filter.outputs.tailnet-integration }}
3535 steps :
3636 - name : Harden Runner
37- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
37+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
3838 with :
3939 egress-policy : audit
4040
@@ -155,7 +155,7 @@ jobs:
155155 runs-on : ${{ github.repository_owner == 'coder' && 'depot-ubuntu-22.04-8' || 'ubuntu-latest' }}
156156 steps :
157157 - name : Harden Runner
158- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
158+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
159159 with :
160160 egress-policy : audit
161161
@@ -178,7 +178,7 @@ jobs:
178178 echo "LINT_CACHE_DIR=$dir" >> $GITHUB_ENV
179179
180180name : golangci-lint cache
181- uses : actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
181+ uses : actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # v4.2.1
182182 with :
183183 path : |
184184 ${{ env.LINT_CACHE_DIR }}
@@ -188,7 +188,7 @@ jobs:
188188
189189# Check for any typos
190190 - name : Check for typos
191- uses : crate-ci/typos@11ca4583f2f3f74c7e7785c0ecb20fe2c99a4308 # v1.29.5
191+ uses : crate-ci/typos@212923e4ff05b7fc2294a204405eec047b807138 # v1.29.9
192192 with :
193193 config : .github/workflows/typos.toml
194194
@@ -201,7 +201,7 @@ jobs:
201201
202202# Needed for helm chart linting
203203 - name : Install helm
204- uses : azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2 .0
204+ uses : azure/setup-helm@b9e51907a09c216f16ebe8536097933489208112 # v4.3 .0
205205 with :
206206 version : v3.9.2
207207
@@ -227,7 +227,7 @@ jobs:
227227 if : always()
228228 steps :
229229 - name : Harden Runner
230- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
230+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
231231 with :
232232 egress-policy : audit
233233
@@ -290,7 +290,7 @@ jobs:
290290 timeout-minutes : 7
291291 steps :
292292 - name : Harden Runner
293- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
293+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
294294 with :
295295 egress-policy : audit
296296
@@ -331,7 +331,7 @@ jobs:
331331 - windows-2022
332332 steps :
333333 - name : Harden Runner
334- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
334+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
335335 with :
336336 egress-policy : audit
337337
@@ -391,7 +391,7 @@ jobs:
391391 - windows-2022
392392 steps :
393393 - name : Harden Runner
394- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
394+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
395395 with :
396396 egress-policy : audit
397397
@@ -447,7 +447,7 @@ jobs:
447447 - ubuntu-latest
448448 steps :
449449 - name : Harden Runner
450- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
450+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
451451 with :
452452 egress-policy : audit
453453
@@ -504,7 +504,7 @@ jobs:
504504 timeout-minutes : 25
505505 steps :
506506 - name : Harden Runner
507- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
507+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
508508 with :
509509 egress-policy : audit
510510
@@ -541,7 +541,7 @@ jobs:
541541 timeout-minutes : 25
542542 steps :
543543 - name : Harden Runner
544- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
544+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
545545 with :
546546 egress-policy : audit
547547
@@ -579,7 +579,7 @@ jobs:
579579 timeout-minutes : 25
580580 steps :
581581 - name : Harden Runner
582- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
582+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
583583 with :
584584 egress-policy : audit
585585
@@ -627,7 +627,7 @@ jobs:
627627 timeout-minutes : 20
628628 steps :
629629 - name : Harden Runner
630- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
630+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
631631 with :
632632 egress-policy : audit
633633
@@ -653,7 +653,7 @@ jobs:
653653 timeout-minutes : 20
654654 steps :
655655 - name : Harden Runner
656- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
656+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
657657 with :
658658 egress-policy : audit
659659
@@ -685,7 +685,7 @@ jobs:
685685 name : ${{ matrix.variant.name }}
686686 steps :
687687 - name : Harden Runner
688- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
688+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
689689 with :
690690 egress-policy : audit
691691
@@ -733,15 +733,15 @@ jobs:
733733
734734 - name : Upload Playwright Failed Tests
735735 if : always() && github.actor != 'dependabot[bot]' && runner.os == 'Linux' && !github.event.pull_request.head.repo.fork
736- uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
736+ uses : actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
737737 with :
738738 name : failed-test-videos${{ matrix.variant.premium && '-premium' || '' }}
739739 path : ./site/test-results/**/*.webm
740740 retention-days : 7
741741
742742 - name : Upload pprof dumps
743743 if : always() && github.actor != 'dependabot[bot]' && runner.os == 'Linux' && !github.event.pull_request.head.repo.fork
744- uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
744+ uses : actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
745745 with :
746746 name : debug-pprof-dumps${{ matrix.variant.premium && '-premium' || '' }}
747747 path : ./site/test-results/**/debug-pprof-*.txt
@@ -754,7 +754,7 @@ jobs:
754754 if : needs.changes.outputs.ts == 'true' || needs.changes.outputs.ci == 'true'
755755 steps :
756756 - name : Harden Runner
757- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
757+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
758758 with :
759759 egress-policy : audit
760760
@@ -831,7 +831,7 @@ jobs:
831831
832832 steps :
833833 - name : Harden Runner
834- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
834+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
835835 with :
836836 egress-policy : audit
837837
@@ -905,7 +905,7 @@ jobs:
905905 if : always()
906906 steps :
907907 - name : Harden Runner
908- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
908+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
909909 with :
910910 egress-policy : audit
911911
@@ -1000,7 +1000,7 @@ jobs:
10001000
10011001 - name : Upload build artifacts
10021002 if : ${{ github.repository_owner == 'coder' && github.ref == 'refs/heads/main' }}
1003- uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
1003+ uses : actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
10041004 with :
10051005 name : dylibs
10061006 path : |
@@ -1028,7 +1028,7 @@ jobs:
10281028 IMAGE : ghcr.io/coder/coder-preview:${{ steps.build-docker.outputs.tag }}
10291029 steps :
10301030 - name : Harden Runner
1031- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
1031+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
10321032 with :
10331033 egress-policy : audit
10341034
@@ -1140,7 +1140,7 @@ jobs:
11401140
11411141 - name : Upload build artifacts
11421142 if : github.ref == 'refs/heads/main'
1143- uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
1143+ uses : actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
11441144 with :
11451145 name : coder
11461146 path : |
@@ -1164,7 +1164,7 @@ jobs:
11641164 id-token : write
11651165 steps :
11661166 - name : Harden Runner
1167- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
1167+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
11681168 with :
11691169 egress-policy : audit
11701170
@@ -1183,7 +1183,7 @@ jobs:
11831183 uses : google-github-actions/setup-gcloud@77e7a554d41e2ee56fc945c52dfd3f33d12def9a # v2.1.4
11841184
11851185 - name : Set up Flux CLI
1186- uses : fluxcd/flux2/action@5350425cdcd5fa015337e09fa502153c0275bd4b # v2.4 .0
1186+ uses : fluxcd/flux2/action@af67405ee43a6cd66e0b73f4b3802e8583f9d961 # v2.5 .0
11871187 with :
11881188 # Keep this and the github action up to date with the version of flux installed in dogfood cluster
11891189 version : " 2.2.1"
@@ -1226,7 +1226,7 @@ jobs:
12261226 if : github.ref == 'refs/heads/main' && !github.event.pull_request.head.repo.fork
12271227 steps :
12281228 - name : Harden Runner
1229- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
1229+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
12301230 with :
12311231 egress-policy : audit
12321232
@@ -1261,7 +1261,7 @@ jobs:
12611261 if : needs.changes.outputs.db == 'true' || needs.changes.outputs.ci == 'true' || github.ref == 'refs/heads/main'
12621262 steps :
12631263 - name : Harden Runner
1264- uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
1264+ uses : step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
12651265 with :
12661266 egress-policy : audit
12671267
0 commit comments