From d6af22db467a1249782991710ec03ab853d2fa73 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:08:56 +0000 Subject: [PATCH] Chore(deps): Bump the github_actions_dependencies group across 1 directory with 5 updates Bumps the github_actions_dependencies group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4` | `5` | | [shivammathur/setup-php](https://github.com/shivammathur/setup-php) | `2.32.0` | `2.35.3` | | [actions/cache](https://github.com/actions/cache) | `4.2.1` | `4.2.4` | | [SonarSource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action) | `5.0.0` | `5.3.0` | | [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.28.0` | `0.32.0` | Updates `actions/checkout` from 4 to 5 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) Updates `shivammathur/setup-php` from 2.32.0 to 2.35.3 - [Release notes](https://github.com/shivammathur/setup-php/releases) - [Commits](https://github.com/shivammathur/setup-php/compare/2.32.0...2.35.3) Updates `actions/cache` from 4.2.1 to 4.2.4 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v4.2.1...v4.2.4) Updates `SonarSource/sonarqube-scan-action` from 5.0.0 to 5.3.0 - [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases) - [Commits](https://github.com/sonarsource/sonarqube-scan-action/compare/v5.0.0...v5.3.0) Updates `aquasecurity/trivy-action` from 0.28.0 to 0.32.0 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.28.0...0.32.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github_actions_dependencies - dependency-name: shivammathur/setup-php dependency-version: 2.35.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github_actions_dependencies - dependency-name: actions/cache dependency-version: 4.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github_actions_dependencies - dependency-name: SonarSource/sonarqube-scan-action dependency-version: 5.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github_actions_dependencies - dependency-name: aquasecurity/trivy-action dependency-version: 0.32.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github_actions_dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/main.yml | 32 ++++++++++++------------ .github/workflows/scorecard.yml | 2 +- .github/workflows/vulnerability-scan.yml | 4 +-- 3 files changed, 19 insertions(+), 19 deletions(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 0f52e4885..9f5800bff 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -25,12 +25,12 @@ jobs: fail-fast: false steps: - name: Checkout - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5 with: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.35.3 with: php-version: '8.4' tools: composer:v2 @@ -40,7 +40,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.4 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -70,12 +70,12 @@ jobs: fail-fast: false steps: - name: Checkout - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5 with: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.35.3 with: php-version: '8.4' tools: composer:v2 @@ -85,7 +85,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.4 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -125,12 +125,12 @@ jobs: fail-fast: false steps: - name: Checkout - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5 with: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.35.3 with: php-version: '8.4' tools: composer:v2 @@ -140,7 +140,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.4 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -216,12 +216,12 @@ jobs: fail-fast: false steps: - name: Checkout - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5 with: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.35.3 with: php-version: '8.4' extensions: pdo_mysql, mysql @@ -233,7 +233,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.4 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -288,7 +288,7 @@ jobs: COVERALLS_RUN_LOCALLY: 1 - name: SonarQube Scan (https://sonarcloud.io/dashboard?id=github.com.tarlepp.symfony-flex-backend) - uses: SonarSource/sonarqube-scan-action@v5.0.0 + uses: SonarSource/sonarqube-scan-action@v5.3.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # https://github.com/SonarSource/sonarqube-scan-action?tab=readme-ov-file#environment-variables @@ -326,7 +326,7 @@ jobs: steps: - name: Make checkout - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5 - name: Lint `./README.md` uses: avto-dev/markdown-lint@v1.5.0 @@ -359,7 +359,7 @@ jobs: - test steps: - - uses: actions/checkout@v4.2.2 + - uses: actions/checkout@v5 - name: Set tag var id: vars @@ -369,7 +369,7 @@ jobs: run: docker build . --file Dockerfile --tag symfony-flex-backend:${{ steps.vars.outputs.DOCKER_TAG }} - name: Scan Docker image with Trivy vulnerability scanner - uses: aquasecurity/trivy-action@0.29.0 + uses: aquasecurity/trivy-action@0.32.0 with: image-ref: 'symfony-flex-backend:${{ steps.vars.outputs.DOCKER_TAG }}' format: 'table' diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 7f6ba7396..9055f0aad 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -35,7 +35,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: persist-credentials: false diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml index 618598f02..c57b7a65c 100644 --- a/.github/workflows/vulnerability-scan.yml +++ b/.github/workflows/vulnerability-scan.yml @@ -15,13 +15,13 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Build the Docker image run: docker build . --file Dockerfile --tag symfony-flex-backend:master - name: Scan image with Trivy - uses: aquasecurity/trivy-action@0.28.0 + uses: aquasecurity/trivy-action@0.32.0 with: image-ref: symfony-flex-backend:master ignore-unfixed: 'true'