diff --git a/.github/actions/build-base-image/action.yaml b/.github/actions/build-base-image/action.yaml index a7027ce69e83..7b527dd3a112 100644 --- a/.github/actions/build-base-image/action.yaml +++ b/.github/actions/build-base-image/action.yaml @@ -35,7 +35,7 @@ runs: run: echo "date=$(date +'%Y-%m-%d')" >> $GITHUB_OUTPUT - name: Cache BASE image - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 if: inputs.TYPE == '64-bit' || inputs.TYPE == 'clang' with: path: otp_docker_base.tar @@ -54,13 +54,13 @@ runs: - name: Cache pre-built src if: inputs.BUILD_IMAGE == 'true' - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: otp_src.tar.gz key: prebuilt-src-${{ github.ref_name }}-${{ github.sha }} - name: Cache pre-built binaries if: inputs.BUILD_IMAGE == 'true' - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: otp_cache.tar.gz key: prebuilt-cache-${{ inputs.TYPE }}-${{ github.ref_name }}-${{ github.sha }} diff --git a/.github/workflows/license-scanner.yaml b/.github/workflows/license-scanner.yaml index 7e25f974de21..08f7ed6fef7d 100644 --- a/.github/workflows/license-scanner.yaml +++ b/.github/workflows/license-scanner.yaml @@ -63,7 +63,7 @@ jobs: - name: "Upload artifact" if: ${{ !cancelled() }} - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.4.3 ratchet:actions/upload-artifact@v4 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.4.3 ratchet:actions/upload-artifact@v4 with: name: SARIF file path: results.sarif @@ -87,6 +87,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" if: ${{ !cancelled() }} - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # ratchet:github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # ratchet:github/codeql-action/upload-sarif@v3 with: sarif_file: "SARIF file/results.sarif" diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 3904796df6fe..cc0dbd3f2d14 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -102,14 +102,14 @@ jobs: with: filters: .github/scripts/c-code-path-filters.yaml - name: Cache pre-built src - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: otp_src.tar.gz key: prebuilt-src-${{ github.ref_name }}-${{ github.sha }} restore-keys: | prebuilt-src-${{ github.base_ref }}-${{ github.event.pull_request.base.sha }} - name: Cache pre-built binaries - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: otp_cache.tar.gz key: prebuilt-cache-64-bit-${{ github.ref_name }}-${{ github.sha }} @@ -118,7 +118,7 @@ jobs: - name: Create initial pre-release tar run: .github/scripts/init-pre-release.sh otp_archive.tar.gz otp_src.tar.gz - name: Upload source tar archive - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_git_archive path: otp_archive.tar.gz @@ -162,7 +162,7 @@ jobs: "`pwd`/.github/otp.tar.gz" \ "`pwd`/otp_archive.tar.gz" - name: Upload restored cache - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 if: runner.debug == 1 with: name: restored-cache @@ -189,7 +189,7 @@ jobs: bash -c 'set -x; C_APPS=$(ls -d ./lib/*/c_src); find Makefile ./make ./erts ./bin/`erts/autoconf/config.guess` ./lib/erl_interface ./lib/jinterface ${C_APPS} `echo "${C_APPS}" | sed -e 's:c_src$:priv:'` -type f -newer README.md \! -name "*.beam" \! -path "*/doc/*" | xargs tar --transform "s:^./:otp/:" -uvf /github/otp_cache.tar' gzip otp_cache.tar - name: Upload pre-built tar archives - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_prebuilt path: | @@ -214,7 +214,7 @@ jobs: - name: Cache wxWidgets id: wxwidgets-cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: wxWidgets key: wxWidgets-${{ env.WXWIDGETS_VERSION }}-${{ runner.os }}-${{ hashFiles('.github/scripts/build-macos-wxwidgets.sh') }}-${{ env.MACOS_VERSION }} @@ -240,7 +240,7 @@ jobs: ./bin/erl -noshell -eval '{wx_ref,_,_,_} = wx:new(), io:format("wx ok~n"), halt().' - name: Upload tarball - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_prebuilt_macos_x86-64 path: otp/otp_macos_*_x86-64.tar.gz @@ -274,7 +274,7 @@ jobs: xcodebuild -create-xcframework -output ./liberlang.xcframework -library liberlang.a - name: Upload framework - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: ios_framework_${{ env.TARGET_ARCH }} path: otp/liberlang.xcframework @@ -290,7 +290,7 @@ jobs: needs: pack if: needs.pack.outputs.c-code-changes steps: - - uses: Vampire/setup-wsl@5ff2c045a05fd477a71b5419d50c5a228a52468e # ratchet:Vampire/setup-wsl@v4.1.0 + - uses: Vampire/setup-wsl@79d85ead05e70e4ba1e1e83367db6e0ccb89b578 # ratchet:Vampire/setup-wsl@v4.1.1 with: distribution: Ubuntu-18.04 @@ -304,7 +304,7 @@ jobs: IF EXIST "c:\\Program Files\\OpenSSL-Win64" (move "c:\\Program Files\\OpenSSL-Win64" "c:\\OpenSSL-Win64") ELSE (move "c:\\Program Files\\OpenSSL" "c:\\OpenSSL-Win64") - name: Cache wxWidgets - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # ratchet:actions/cache@v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # ratchet:actions/cache@v4.2.1 with: path: wxWidgets key: wxWidgets-${{ env.WXWIDGETS_VERSION }}-${{ runner.os }} @@ -374,7 +374,7 @@ jobs: ./otp_build installer_win32 - name: Upload installer - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_win32_installer path: otp/release/win32/otp*.exe @@ -461,12 +461,12 @@ jobs: rm -rf man tar czf ../otp_doc_html.tar.gz * - name: Upload html documentation archive - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_doc_html path: otp_doc_html.tar.gz - name: Upload man documentation archive - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: otp_doc_man path: otp_doc_man.tar.gz @@ -548,7 +548,7 @@ jobs: sudo bash -c "chown -R `whoami` make_test_dir && chmod -R +r make_test_dir" tar czf ${{ matrix.type }}_test_results.tar.gz make_test_dir - name: Upload test results - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 if: ${{ !cancelled() }} with: name: ${{ matrix.type }}_test_results @@ -595,14 +595,14 @@ jobs: -e 's:\(file="erts/\)make_test_dir/[^/]*:\1test:g' \ make_test_dir/*_junit.xml - name: Upload test results - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 if: ${{ !cancelled() }} with: name: test_results path: test_results.tar.gz - name: Upload Test Results if: ${{ !cancelled() }} - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: Unit Test Results path: | @@ -770,7 +770,7 @@ jobs: env: ATTESTATION: "${{ steps.attest-sbom.outputs.bundle-path }}" - name: "Assemble Distribution Attestations" - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4 with: name: "Attestations" @@ -799,7 +799,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Upload - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # ratchet:actions/upload-artifact@v4.6.0 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # ratchet:actions/upload-artifact@v4.6.1 with: name: Event File path: ${{ github.event_path }} diff --git a/.github/workflows/ossf-compiler-flags-scanner.yaml b/.github/workflows/ossf-compiler-flags-scanner.yaml index ae021e37f6d8..1280ed035f53 100644 --- a/.github/workflows/ossf-compiler-flags-scanner.yaml +++ b/.github/workflows/ossf-compiler-flags-scanner.yaml @@ -69,7 +69,7 @@ jobs: - name: "Upload artifact" if: ${{ !cancelled() }} - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.4.3 ratchet:actions/upload-artifact@v4 + uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.4.3 ratchet:actions/upload-artifact@v4 with: name: SARIF file path: results.sarif @@ -77,7 +77,7 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" if: ${{ !cancelled() }} - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # ratchet:github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # ratchet:github/codeql-action/upload-sarif@v3 with: sarif_file: results.sarif