Bump the all-actions group with 5 updates

Bumps the all-actions group with 5 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [actions/setup-dotnet](https://github.com/actions/setup-dotnet) | `1` | `4` | | [actions/setup-node](https://github.com/actions/setup-node) | `1` | `4` | | [zaproxy/action-baseline](https://github.com/zaproxy/action-baseline) | `0.4.0` | `0.11.0` | | [SonarSource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) | `1.6` | `2.1` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v2...v4) Updates `actions/setup-dotnet` from 1 to 4 - [Release notes](https://github.com/actions/setup-dotnet/releases) - [Commits](actions/setup-dotnet@v1...v4) Updates `actions/setup-node` from 1 to 4 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@v1...v4) Updates `zaproxy/action-baseline` from 0.4.0 to 0.11.0 - [Release notes](https://github.com/zaproxy/action-baseline/releases) - [Changelog](https://github.com/zaproxy/action-baseline/blob/master/CHANGELOG.md) - [Commits](zaproxy/action-baseline@v0.4.0...v0.11.0) Updates `SonarSource/sonarcloud-github-action` from 1.6 to 2.1 - [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases) - [Commits](SonarSource/sonarcloud-github-action@v1.6...v2.1) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-dotnet dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: zaproxy/action-baseline dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: SonarSource/sonarcloud-github-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions ... Signed-off-by: dependabot[bot] <support@github.com>
bcgov · Feb 29, 2024 · 90c3a03 · 90c3a03
1 parent 3eea145
commit 90c3a03
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 7 deletions.
diff --git a/.github/workflows/api-dotnetcore.yml b/.github/workflows/api-dotnetcore.yml
@@ -13,9 +13,9 @@ jobs:
       working-directory: ./api
 
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
       - name: Setup .NET Core
-        uses: actions/setup-dotnet@v1
+        uses: actions/setup-dotnet@v4
         with:
           dotnet-version: 3.1.101
       - name: Install dependencies

diff --git a/.github/workflows/app-vue.yml b/.github/workflows/app-vue.yml
@@ -19,9 +19,9 @@ jobs:
         node-version: [10.x]
 
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
       - name: Use Node.js ${{ matrix.node-version }}
-        uses: actions/setup-node@v1
+        uses: actions/setup-node@v4
         with:
           node-version: ${{ matrix.node-version }}
       - run: npm ci

diff --git a/.github/workflows/owasp_baseline.yml b/.github/workflows/owasp_baseline.yml
@@ -8,7 +8,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
         - name: OWASP ZAP Baseline Scan
-          uses: zaproxy/action-baseline@v0.4.0
+          uses: zaproxy/action-baseline@v0.11.0
           with:
             token: ""
             target: ${{ secrets.OWASP_SCAN_URL }}
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
@@ -20,10 +20,10 @@ jobs:
     # Steps represent a sequence of tasks that will be executed as part of the job
     steps:
       # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
 
       - name: SonarCloud Scan
-        uses: SonarSource/sonarcloud-github-action@v1.6
+        uses: SonarSource/sonarcloud-github-action@v2.1
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}