diff --git a/.github/workflows/e2e.yaml b/.github/workflows/e2e.yaml index 5a80fc357..10a84ea23 100644 --- a/.github/workflows/e2e.yaml +++ b/.github/workflows/e2e.yaml @@ -38,14 +38,14 @@ jobs: - name: Checkout uses: actions/checkout@v4 - name: Setup Kubernetes - uses: helm/kind-action@v1.9.0 + uses: helm/kind-action@v1.10.0 if: matrix.provider != 'skipper' with: version: v0.20.0 cluster_name: kind node_image: kindest/node:v1.27.3@sha256:9dd3392d79af1b084671b05bcf65b21de476256ad1dcc853d9f3b10b4ac52dde - name: Setup Kubernetes for skipper - uses: helm/kind-action@v1.9.0 + uses: helm/kind-action@v1.10.0 if: matrix.provider == 'skipper' with: version: v0.20.0 diff --git a/.github/workflows/push-ld.yml b/.github/workflows/push-ld.yml index 24ad028e3..bea33785d 100644 --- a/.github/workflows/push-ld.yml +++ b/.github/workflows/push-ld.yml @@ -17,7 +17,7 @@ jobs: packages: write steps: - uses: actions/checkout@v4 - - uses: sigstore/cosign-installer@v3.4.0 + - uses: sigstore/cosign-installer@v3.5.0 - name: Prepare id: prep run: | diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6a89bcea0..ba77a9753 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -33,7 +33,7 @@ jobs: with: go-version: 1.22.x - uses: fluxcd/flux2/action@main - - uses: sigstore/cosign-installer@v3.4.0 + - uses: sigstore/cosign-installer@v3.5.0 - name: Prepare id: prep run: | @@ -146,7 +146,7 @@ jobs: actions: read # for detecting the Github Actions environment. id-token: write # for creating OIDC tokens for signing. contents: write # for uploading attestations to GitHub releases. - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.0.0 with: provenance-name: "provenance.intoto.jsonl" base64-subjects: "${{ needs.release-flagger.outputs.hashes }}"