chore: Update action references

action.yml

@@ -9,9 +9,9 @@ inputs:
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/fod-sast-scan@v1.2.2
+    - uses: fortify/github-action/fod-sast-scan@main
       if: inputs['sast-scan']=='true' && env.FOD_URL
-    - uses: fortify/github-action/sc-sast-scan@v1.2.2
+    - uses: fortify/github-action/sc-sast-scan@main
       if: inputs['sast-scan']=='true' && env.SSC_URL  
 
 branding:

fod-export/action.yml

@@ -4,8 +4,8 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-fod-var-defaults@v1.2.2
-    - uses: fortify/github-action/setup@v1.2.2
+    - uses: fortify/github-action/internal/set-fod-var-defaults@main
+    - uses: fortify/github-action/setup@main
       with:
         export-path: false
         vuln-exporter: action-default
@@ -15,7 +15,7 @@ runs:
           *) echo '_RELEASE_OPT="--fod.release.id=${FOD_RELEASE}"' >> $GITHUB_ENV ;;
         esac
       shell: bash
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${VULN_EXPORTER_CMD}" FoDToGitHub "--fod.baseUrl=${FOD_URL}" "--fod.tenant=${FOD_TENANT}" "--fod.user=${FOD_USER}" "--fod.password=${FOD_PASSWORD}" "--fod.clientID=${FOD_CLIENT_ID}" "--fod.clientSecret=${FOD_CLIENT_SECRET}" "${_RELEASE_OPT}"'
     # Uploaded the generated file containing Fortify vulnerabilities to GitHub.

fod-sast-scan/action.yml

@@ -4,23 +4,23 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-fod-var-defaults@v1.2.2
-    - uses: fortify/github-action/setup@v1.2.2
+    - uses: fortify/github-action/internal/set-fod-var-defaults@main
+    - uses: fortify/github-action/setup@main
       with:
         export-path: false
         fcli: action-default
-    - uses: fortify/github-action/internal/fod-login@v1.2.2
-    - uses: fortify/github-action/package@v1.2.2
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/fod-login@main
+    - uses: fortify/github-action/package@main
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" fod sast-scan start --rel "${FOD_RELEASE}" -f package.zip --store fod_scan ${EXTRA_FOD_SAST_SCAN_OPTS}'
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       if: env.DO_WAIT == 'true' || env.DO_EXPORT == 'true'
       with:
         cmd: '"${FCLI_CMD}" fod sast-scan wait-for ::fod_scan::'
-    - uses: fortify/github-action/internal/fod-logout@v1.2.2
+    - uses: fortify/github-action/internal/fod-logout@main
     - if: env.DO_EXPORT == 'true'
-      uses: fortify/github-action/fod-export@v1.2.2
+      uses: fortify/github-action/fod-export@main
 
 branding:
   icon: 'shield'

internal/fod-login/action.yml

@@ -18,7 +18,7 @@ runs:
         fi
       shell: bash
     # Run fcli login command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" fod session login ${_FOD_LOGIN_OPTS}'  
     # Clean up temporary environment variables

internal/fod-logout/action.yml

@@ -5,7 +5,7 @@ runs:
   using: composite
   steps:
     # Run fcli logout command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" fod session logout'        
 branding:

internal/sc-sast-login/action.yml

@@ -21,7 +21,7 @@ runs:
         echo '_SC_SAST_LOGIN_OPTS=--ssc-url "${SSC_URL}" -t "${SSC_TOKEN}" -c "${SC_SAST_TOKEN}" ${EXTRA_SC_SAST_LOGIN_OPTS}' >> $GITHUB_ENV
       shell: bash
     # Run fcli login command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" sc-sast session login ${_SC_SAST_LOGIN_OPTS}' 
     # Clean up temporary environment variables

internal/sc-sast-logout/action.yml

@@ -5,7 +5,7 @@ runs:
   using: composite
   steps:
     # Run fcli logout command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         # TODO If we add functionality for generating a CIToken in the sc-sast-login
         #      action, we should clean it up here. 

internal/ssc-login/action.yml

@@ -18,7 +18,7 @@ runs:
         fi
       shell: bash
     # Run fcli login command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" ssc session login ${_SSC_LOGIN_OPTS}'   
     # Clean up temporary environment variables

internal/ssc-logout/action.yml

@@ -18,7 +18,7 @@ runs:
         fi
       shell: bash
     # Run fcli login command; note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" ssc session logout ${_SSC_LOGOUT_OPTS}' 
     # Clean up temporary environment variables 

package/action.yml

@@ -4,11 +4,11 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/setup@v1.2.2
+    - uses: fortify/github-action/setup@main
       with:
         export-path: false
         sc-client: action-default
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with: 
         cmd: '"${SC_CLIENT_CMD}" package ${EXTRA_PACKAGE_OPTS} -o package.zip'
 branding:

sc-sast-scan/action.yml

@@ -4,22 +4,22 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/setup@v1.2.2
+    - uses: fortify/github-action/setup@main
       with:
         export-path: false
         fcli: action-default
-    - uses: fortify/github-action/internal/sc-sast-login@v1.2.2
-    - uses: fortify/github-action/package@v1.2.2
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/sc-sast-login@main
+    - uses: fortify/github-action/package@main
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${FCLI_CMD}" sc-sast scan start --publish-to "${SSC_APPVERSION}" -p package.zip -v "${SC_SAST_SENSOR_VERSION}" --store sc_sast_scan ${EXTRA_SC_SAST_SCAN_OPTS}'
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       if: env.DO_WAIT == 'true' || env.DO_EXPORT == 'true'
       with:
         cmd: '"${FCLI_CMD}" sc-sast scan wait-for ::sc_sast_scan::'
-    - uses: fortify/github-action/internal/sc-sast-logout@v1.2.2
+    - uses: fortify/github-action/internal/sc-sast-logout@main
     - if: env.DO_EXPORT == 'true'
-      uses: fortify/github-action/ssc-export@v1.2.2
+      uses: fortify/github-action/ssc-export@main
 
 branding:
   icon: 'shield'

ssc-export/action.yml

@@ -4,7 +4,7 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/setup@v1.2.2
+    - uses: fortify/github-action/setup@main
       with:
         export-path: false
         vuln-exporter: action-default
@@ -14,7 +14,7 @@ runs:
           *) echo '_APPVERSION_OPT="--ssc.version.id=${SSC_APPVERSION}"' >> $GITHUB_ENV ;;
         esac
       shell: bash
-    - uses: fortify/github-action/internal/run@v1.2.2
+    - uses: fortify/github-action/internal/run@main
       with:
         cmd: '"${VULN_EXPORTER_CMD}" SSCToGitHub "--ssc.baseUrl=${SSC_URL}" "--ssc.user=${SSC_USER}" "--ssc.password=${SSC_PASSWORD}" "--ssc.authToken=${SSC_TOKEN}" "${_APPVERSION_OPT}"'
     - run: |