diff --git a/.github/workflows/branch-cleanup.yml b/.github/workflows/branch-cleanup.yml index 25b20639..33c07143 100644 --- a/.github/workflows/branch-cleanup.yml +++ b/.github/workflows/branch-cleanup.yml @@ -51,7 +51,7 @@ jobs: uses: actions/checkout@v6 - name: Run branch cleanup - uses: LerianStudio/github-actions-shared-workflows/src/config/branch-cleanup@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/branch-cleanup@v1.18.0 with: github-token: ${{ secrets.GITHUB_TOKEN }} stale-days: ${{ inputs.stale_days }} diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 053569ee..e4262b90 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -139,7 +139,7 @@ jobs: - name: Get changed paths (monorepo) if: inputs.filter_paths != '' id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} diff --git a/.github/workflows/gptchangelog.yml b/.github/workflows/gptchangelog.yml index 7acc6177..180b8bf3 100644 --- a/.github/workflows/gptchangelog.yml +++ b/.github/workflows/gptchangelog.yml @@ -146,7 +146,7 @@ jobs: - name: Get changed paths (monorepo) if: (steps.check-tag.outputs.is_stable == 'true' || inputs.stable_releases_only == false) && inputs.filter_paths != '' id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} diff --git a/.github/workflows/labels-sync.yml b/.github/workflows/labels-sync.yml index 0b072e89..81f58623 100644 --- a/.github/workflows/labels-sync.yml +++ b/.github/workflows/labels-sync.yml @@ -44,7 +44,7 @@ jobs: runs-on: blacksmith-4vcpu-ubuntu-2404 steps: - name: Sync labels - uses: LerianStudio/github-actions-shared-workflows/src/config/labels-sync@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/labels-sync@v1.18.0 with: github-token: ${{ secrets.GITHUB_TOKEN }} config: ${{ inputs.config || '.github/labels.yml' }} diff --git a/.github/workflows/pr-security-scan.yml b/.github/workflows/pr-security-scan.yml index 77910876..ca8a86ce 100644 --- a/.github/workflows/pr-security-scan.yml +++ b/.github/workflows/pr-security-scan.yml @@ -91,7 +91,7 @@ jobs: # ----------------- Detect Changes & Build Matrix ----------------- - name: Get changed paths id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} @@ -141,7 +141,7 @@ jobs: - name: Trivy Filesystem Scan id: fs-scan if: always() - uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@v1.18.0 with: scan-ref: ${{ matrix.working_dir }} app-name: ${{ env.APP_NAME }} @@ -165,7 +165,7 @@ jobs: - name: Trivy Image Scan id: image-scan if: always() && inputs.enable_docker_scan - uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-image-scan@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-image-scan@v1.18.0 with: image-ref: '${{ env.DOCKERHUB_ORG }}/${{ env.APP_NAME }}:pr-scan-${{ github.sha }}' app-name: ${{ env.APP_NAME }} @@ -175,7 +175,7 @@ jobs: - name: Dockerfile Compliance Checks id: dockerfile-checks if: always() && inputs.enable_docker_scan && inputs.enable_health_score - uses: LerianStudio/github-actions-shared-workflows/src/security/dockerfile-checks@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/dockerfile-checks@v1.18.0 with: dockerfile-path: ${{ env.DOCKERFILE_PATH }} @@ -183,7 +183,7 @@ jobs: - name: Post Security Scan Results to PR id: post-results if: always() && github.event_name == 'pull_request' - uses: LerianStudio/github-actions-shared-workflows/src/security/pr-security-reporter@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/pr-security-reporter@v1.18.0 with: github-token: ${{ secrets.MANAGE_TOKEN || secrets.GITHUB_TOKEN }} app-name: ${{ env.APP_NAME }} @@ -215,7 +215,7 @@ jobs: runs-on: ${{ inputs.runner_type }} steps: - name: Slack Notification - uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-notify@develop + uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-notify@v1.18.0 with: webhook-url: ${{ secrets.SLACK_WEBHOOK_URL }} status: ${{ needs.security_scan.result }} diff --git a/.github/workflows/release-notification.yml b/.github/workflows/release-notification.yml index dcda48d3..d025a589 100644 --- a/.github/workflows/release-notification.yml +++ b/.github/workflows/release-notification.yml @@ -138,7 +138,7 @@ jobs: exit 1 fi echo "Resolved release tag: $TAG" - echo "tag=$TAG" >> $GITHUB_OUTPUT + echo "tag=$TAG" >> "$GITHUB_OUTPUT" - name: Dry run summary if: ${{ inputs.dry_run }} @@ -162,7 +162,7 @@ jobs: - name: Discord notification if: ${{ env.DISCORD_WEBHOOK_URL != '' }} - uses: LerianStudio/github-actions-shared-workflows/src/notify/discord-release@develop + uses: LerianStudio/github-actions-shared-workflows/src/notify/discord-release@v1.18.0 with: webhook-url: ${{ secrets.DISCORD_WEBHOOK_URL }} release-tag: ${{ steps.release.outputs.tag }} @@ -174,7 +174,7 @@ jobs: - name: Slack notification if: ${{ env.SLACK_WEBHOOK_URL != '' && inputs.slack_channel != '' }} - uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-release@develop + uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-release@v1.18.0 with: webhook-url: ${{ secrets.SLACK_WEBHOOK_URL }} channel: ${{ inputs.slack_channel }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 7179f3de..d25bf101 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -60,7 +60,7 @@ jobs: - name: Get changed paths (monorepo) if: inputs.filter_paths != '' id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} diff --git a/.github/workflows/s3-upload.yml b/.github/workflows/s3-upload.yml index a9dbf679..7afdf492 100644 --- a/.github/workflows/s3-upload.yml +++ b/.github/workflows/s3-upload.yml @@ -170,7 +170,7 @@ jobs: - name: Configure AWS credentials if: steps.env.outputs.folder != '' - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.AWS_ROLE_ARN }} aws-region: ${{ inputs.aws_region }} diff --git a/.github/workflows/typescript-build.yml b/.github/workflows/typescript-build.yml index 297b98e3..0415630c 100644 --- a/.github/workflows/typescript-build.yml +++ b/.github/workflows/typescript-build.yml @@ -158,7 +158,7 @@ jobs: - name: Get changed paths (monorepo) if: inputs.components_json == '' && inputs.filter_paths != '' id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} @@ -255,7 +255,7 @@ jobs: uses: actions/checkout@v6 - name: Build and push Docker image - uses: LerianStudio/github-actions-shared-workflows/src/build/docker-build-ts@develop + uses: LerianStudio/github-actions-shared-workflows/src/build/docker-build-ts@v1.18.0 with: enable-dockerhub: ${{ inputs.enable_dockerhub }} enable-ghcr: ${{ inputs.enable_ghcr }} diff --git a/.github/workflows/typescript-release.yml b/.github/workflows/typescript-release.yml index 025c9901..e3f2877d 100644 --- a/.github/workflows/typescript-release.yml +++ b/.github/workflows/typescript-release.yml @@ -69,7 +69,7 @@ jobs: - name: Get changed paths (monorepo) if: inputs.filter_paths != '' id: changed-paths - uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@develop + uses: LerianStudio/github-actions-shared-workflows/src/config/changed-paths@v1.18.0 with: filter-paths: ${{ inputs.filter_paths }} shared-paths: ${{ inputs.shared_paths }} diff --git a/src/lint/composite-schema/README.md b/src/lint/composite-schema/README.md index 1095b46b..a51e9baf 100644 --- a/src/lint/composite-schema/README.md +++ b/src/lint/composite-schema/README.md @@ -44,7 +44,7 @@ jobs: uses: actions/checkout@v6 - name: Composite Schema Lint - uses: LerianStudio/github-actions-shared-workflows/src/lint/composite-schema@develop + uses: LerianStudio/github-actions-shared-workflows/src/lint/composite-schema@v1.x.x with: files: "src/lint/my-check/action.yml,src/build/my-build/action.yml" ``` diff --git a/src/lint/readme-check/README.md b/src/lint/readme-check/README.md index 466c02d5..ddd57296 100644 --- a/src/lint/readme-check/README.md +++ b/src/lint/readme-check/README.md @@ -24,7 +24,7 @@ jobs: uses: actions/checkout@v6 - name: README Check - uses: LerianStudio/github-actions-shared-workflows/src/lint/readme-check@develop + uses: LerianStudio/github-actions-shared-workflows/src/lint/readme-check@v1.x.x with: files: "src/lint/my-check/action.yml,src/build/my-build/action.yml" ``` diff --git a/src/lint/shellcheck/README.md b/src/lint/shellcheck/README.md index 5f669b4a..7da71543 100644 --- a/src/lint/shellcheck/README.md +++ b/src/lint/shellcheck/README.md @@ -25,7 +25,7 @@ jobs: uses: actions/checkout@v6 - name: Shell Check - uses: LerianStudio/github-actions-shared-workflows/src/lint/shellcheck@develop + uses: LerianStudio/github-actions-shared-workflows/src/lint/shellcheck@v1.x.x with: files: ".github/workflows/ci.yml,src/lint/my-check/action.yml" ``` diff --git a/src/notify/discord-release/README.md b/src/notify/discord-release/README.md index 566bec12..4e0551d5 100644 --- a/src/notify/discord-release/README.md +++ b/src/notify/discord-release/README.md @@ -55,7 +55,7 @@ jobs: ### Dry run (preview only) ```yaml -- uses: LerianStudio/github-actions-shared-workflows/src/notify/discord-release@develop +- uses: LerianStudio/github-actions-shared-workflows/src/notify/discord-release@v1.x.x with: webhook-url: ${{ secrets.DISCORD_WEBHOOK_URL }} release-tag: ${{ github.event.release.tag_name }} diff --git a/src/notify/pr-lint-reporter/README.md b/src/notify/pr-lint-reporter/README.md index 25d8fc35..acf061ec 100644 --- a/src/notify/pr-lint-reporter/README.md +++ b/src/notify/pr-lint-reporter/README.md @@ -42,7 +42,7 @@ jobs: uses: actions/checkout@v6 - name: Post Lint Report - uses: LerianStudio/github-actions-shared-workflows/src/notify/pr-lint-reporter@develop + uses: LerianStudio/github-actions-shared-workflows/src/notify/pr-lint-reporter@v1.x.x with: github-token: ${{ secrets.MANAGE_TOKEN || github.token }} yamllint-result: ${{ needs.yamllint.result }} diff --git a/src/notify/slack-notify/README.md b/src/notify/slack-notify/README.md index da4a2dcb..7edd247a 100644 --- a/src/notify/slack-notify/README.md +++ b/src/notify/slack-notify/README.md @@ -35,7 +35,7 @@ jobs: runs-on: blacksmith-4vcpu-ubuntu-2404 steps: - name: Slack Notification - uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-notify@develop + uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-notify@v1.x.x with: webhook-url: ${{ secrets.SLACK_WEBHOOK_URL }} status: ${{ needs.build.result }} diff --git a/src/notify/slack-release/README.md b/src/notify/slack-release/README.md index b50faa1a..368328a8 100644 --- a/src/notify/slack-release/README.md +++ b/src/notify/slack-release/README.md @@ -54,7 +54,7 @@ jobs: ### Dry run (preview only) ```yaml -- uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-release@develop +- uses: LerianStudio/github-actions-shared-workflows/src/notify/slack-release@v1.x.x with: webhook-url: ${{ secrets.SLACK_WEBHOOK_URL }} channel: "releases" diff --git a/src/security/dockerfile-checks/README.md b/src/security/dockerfile-checks/README.md index 283054e4..636fc873 100644 --- a/src/security/dockerfile-checks/README.md +++ b/src/security/dockerfile-checks/README.md @@ -41,7 +41,7 @@ jobs: - name: Dockerfile Compliance Checks id: dockerfile-checks - uses: LerianStudio/github-actions-shared-workflows/src/security/dockerfile-checks@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/dockerfile-checks@v1.x.x with: dockerfile-path: './Dockerfile' diff --git a/src/security/pr-security-reporter/README.md b/src/security/pr-security-reporter/README.md index 197fe89f..70935c0d 100644 --- a/src/security/pr-security-reporter/README.md +++ b/src/security/pr-security-reporter/README.md @@ -43,7 +43,7 @@ This composite expects the following files in the runner working directory, gene - name: Post Security Scan Results to PR id: post-results if: always() && github.event_name == 'pull_request' - uses: LerianStudio/github-actions-shared-workflows/src/security/pr-security-reporter@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/pr-security-reporter@v1.x.x with: github-token: ${{ secrets.GITHUB_TOKEN }} app-name: ${{ env.APP_NAME }} diff --git a/src/security/trivy-fs-scan/README.md b/src/security/trivy-fs-scan/README.md index 1a223366..8e0568a5 100644 --- a/src/security/trivy-fs-scan/README.md +++ b/src/security/trivy-fs-scan/README.md @@ -46,7 +46,7 @@ jobs: - name: Trivy Filesystem Scan id: fs-scan - uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@v1.x.x with: scan-ref: '.' app-name: 'my-service' @@ -56,7 +56,7 @@ jobs: ```yaml - name: Trivy Filesystem Scan - uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-fs-scan@v1.x.x with: scan-ref: ${{ matrix.working_dir }} app-name: ${{ matrix.name }} diff --git a/src/security/trivy-image-scan/README.md b/src/security/trivy-image-scan/README.md index 0d1b4a3e..3522bb14 100644 --- a/src/security/trivy-image-scan/README.md +++ b/src/security/trivy-image-scan/README.md @@ -56,7 +56,7 @@ jobs: tags: myorg/myapp:scan - name: Trivy Image Scan - uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-image-scan@develop + uses: LerianStudio/github-actions-shared-workflows/src/security/trivy-image-scan@v1.x.x with: image-ref: 'myorg/myapp:scan' app-name: 'my-service'