Skip to content

deps: Update GitHub Actions (major) (major) #224

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
Zalfsten merged 2 commits into from
Apr 23, 2026
Merged

deps: Update GitHub Actions (major) (major) #224

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
af32f28
deps: Update GitHub Actions (major)
renovate-bot Apr 23, 2026
d3cb9ca
Merge branch 'main' into renovate/major-github-actions-(major)
Zalfsten Apr 23, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/codeql.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -62,7 +62,7 @@ jobs:
# your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
steps:
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@v6

# Setup Python environment for Python analysis
- name: Set up Python 3.12
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/feature-pull-request.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,8 @@ jobs:
outputs:
code: ${{ steps.filter.outputs.code }}
steps:
- uses: actions/checkout@v4
- uses: dorny/paths-filter@v3
- uses: actions/checkout@v6
- uses: dorny/paths-filter@v4
id: filter
with:
filters: |
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/helm-release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ jobs:
version: ${{ steps.calc-version.outputs.version }}

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6
with:
fetch-depth: 0

Expand Down Expand Up @@ -95,11 +95,11 @@ jobs:
id: timestamp
run: echo "value=$(date +%Y%m%d%H%M%S)" >> $GITHUB_OUTPUT

- uses: actions/checkout@v4
- uses: actions/checkout@v6
with:
fetch-depth: 0

- uses: azure/setup-helm@v4
- uses: azure/setup-helm@v5
with:
version: '3.14.0'

Expand All @@ -122,7 +122,7 @@ jobs:
- name: Create GitHub Release (Draft)
id: create_release
if: github.ref_name == 'main'
uses: softprops/action-gh-release@v2
uses: softprops/action-gh-release@v3
with:
tag_name: ${{ steps.timestamp.outputs.value }}-chart-v${{ env.CHART_VERSION }}
name: chart-v${{ env.CHART_VERSION }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/renovate.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,10 +20,10 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Self-hosted Renovate
uses: renovatebot/github-action@v41.0.7
uses: renovatebot/github-action@v46.1.10
with:
configurationFile: renovate.json
token: ${{ secrets.RENOVATE_TOKEN }}
Expand Down
20 changes: 10 additions & 10 deletions .github/workflows/reusable-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ jobs:
pep440_version: ${{ steps.calc-version.outputs.pep440_version }}

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6
with:
fetch-depth: 0

Expand Down Expand Up @@ -115,13 +115,13 @@ jobs:

steps:
- name: Checkout code
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
uses: docker/setup-buildx-action@v4

- name: Build Docker image
uses: docker/build-push-action@v6
uses: docker/build-push-action@v7
with:
context: .
file: docker/Dockerfile.${{ matrix.component }}
Expand All @@ -140,7 +140,7 @@ jobs:
docker save "$IMAGE_TAG" | gzip > docker-image-${{ matrix.component }}.tar.gz

- name: Upload Docker image artifact
uses: actions/upload-artifact@v4
uses: actions/upload-artifact@v7
with:
name: docker-image-${{ matrix.component }}-${{ needs.version.outputs.version }}
path: docker-image-${{ matrix.component }}.tar.gz
Expand All @@ -158,7 +158,7 @@ jobs:

steps:
- name: Download Docker image artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ needs.version.outputs.version }}

Expand All @@ -179,7 +179,7 @@ jobs:
format: spdx-json

- name: Upload SBOM artifact
uses: actions/upload-artifact@v4
uses: actions/upload-artifact@v7
with:
name: sbom-${{ matrix.component }}-${{ needs.version.outputs.version }}
path: sboms/sbom-${{ matrix.component }}.spdx.json
Expand All @@ -193,11 +193,11 @@ jobs:
contents: read

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6
with:
fetch-depth: 0

- uses: astral-sh/setup-uv@v5
- uses: astral-sh/setup-uv@v7

- name: Build Python packages (wheels + sdists)
env:
Expand All @@ -208,7 +208,7 @@ jobs:
uv build --package fairagro-middleware-api-client --out-dir dist

- name: Upload Python packages artifact
uses: actions/upload-artifact@v4
uses: actions/upload-artifact@v7
with:
name: python-packages-${{ needs.version.outputs.version }}
path: dist/
Expand Down
14 changes: 7 additions & 7 deletions .github/workflows/reusable-check.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ jobs:

steps:
- name: Download Docker image artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ inputs.version }}

Expand Down Expand Up @@ -71,12 +71,12 @@ jobs:

steps:
- name: Download Docker image artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ inputs.version }}

- name: Download SBOM artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: sbom-${{ matrix.component }}-${{ inputs.version }}

Expand Down Expand Up @@ -104,14 +104,14 @@ jobs:
severity: 'CRITICAL,HIGH'

- name: Upload Trivy scan results
uses: github/codeql-action/upload-sarif@v3
uses: github/codeql-action/upload-sarif@v4
if: always()
with:
sarif_file: 'trivy-image-results.sarif'
category: "trivy-image-scan-${{ matrix.component }}"

- name: Upload Trivy SBOM scan results
uses: github/codeql-action/upload-sarif@v3
uses: github/codeql-action/upload-sarif@v4
if: always()
with:
sarif_file: 'trivy-sbom-results.sarif'
Expand All @@ -133,11 +133,11 @@ jobs:

- name: Checkout code
if: ${{ !inputs.skip }}
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Download Docker image artifact
if: ${{ !inputs.skip }}
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ inputs.version }}

Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/reusable-code-quality.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,11 +37,11 @@ jobs:

- name: Checkout code
if: ${{ !inputs.skip }}
uses: actions/checkout@v4
uses: actions/checkout@v6

- name: Install uv
if: ${{ !inputs.skip }}
uses: astral-sh/setup-uv@v4
uses: astral-sh/setup-uv@v7
with:
version: "latest"

Expand Down
20 changes: 10 additions & 10 deletions .github/workflows/reusable-release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -65,7 +65,7 @@ jobs:

steps:
- name: Download Docker image artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ inputs.version }}

Expand All @@ -75,7 +75,7 @@ jobs:
echo "LOCAL_TAG=local/${{ env.IMAGE_BASE_NAME }}-${{ matrix.component }}:${{ inputs.version }}" >> $GITHUB_ENV

- name: Login to DockerHub
uses: docker/login-action@v3
uses: docker/login-action@v4
with:
username: ${{ secrets.DOCKERHUB_USER }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
Expand All @@ -102,7 +102,7 @@ jobs:

steps:
- name: Download Docker image artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: docker-image-${{ matrix.component }}-${{ inputs.version }}

Expand All @@ -112,7 +112,7 @@ jobs:
echo "LOCAL_TAG=local/${{ env.IMAGE_BASE_NAME }}-${{ matrix.component }}:${{ inputs.version }}" >> $GITHUB_ENV

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
uses: docker/login-action@v4
with:
registry: ghcr.io
username: ${{ github.actor }}
Expand All @@ -134,12 +134,12 @@ jobs:

steps:
- name: Download Python packages artifact
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: python-packages-${{ inputs.version }}
path: dist/

- uses: astral-sh/setup-uv@v5
- uses: astral-sh/setup-uv@v7

- name: Publish to PyPI (final release)
if: inputs.release_type == 'final'
Expand All @@ -162,7 +162,7 @@ jobs:
timestamp: ${{ steps.timestamp.outputs.value }}

steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6
with:
fetch-depth: 0

Expand All @@ -187,15 +187,15 @@ jobs:

steps:
- name: Download SBOM artifacts
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
pattern: sbom-*
merge-multiple: true
path: sboms

- name: Download Python packages artifact
if: needs.publish-pypi.result == 'success'
uses: actions/download-artifact@v4
uses: actions/download-artifact@v8
with:
name: python-packages-${{ inputs.version }}
path: pypi-dist/
Expand Down Expand Up @@ -270,7 +270,7 @@ jobs:

- name: Create GitHub Release (Draft)
id: create_release
uses: softprops/action-gh-release@v2
uses: softprops/action-gh-release@v3
with:
tag_name: ${{ needs.create-release-tag.outputs.timestamp }}-${{ inputs.tag_prefix }}${{ inputs.version }}
name: ${{ inputs.tag_prefix }}${{ inputs.version }}
Expand Down