From 8d65fba4ec4f843527e1c9ad9e76229a3d2b858d Mon Sep 17 00:00:00 2001
From: Emmanuel Owosekun <emmanuel.owosekun@greenbone.net>
Date: Wed, 19 Jun 2024 14:45:15 +0200
Subject: [PATCH] Deps: update the version of the used actions

---
 container-build-push-generic/action.yaml  | 4 ++--
 container-signing/README.md               | 2 +-
 conventional-commits/action.yml           | 2 +-
 doc-coverage-clang/action.yml             | 2 +-
 helm-login/action.yaml                    | 2 +-
 lint-golang/action.yml                    | 2 +-
 npm-build-push/README.md                  | 2 +-
 npm-build-push/action.yaml                | 2 +-
 pr-conventional-commit-labeler/action.yml | 2 +-
 sbom-upload/action.yml                    | 4 ++--
 update-header/action.yaml                 | 2 +-
 11 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/container-build-push-generic/action.yaml b/container-build-push-generic/action.yaml
index 21441085..5a3f67ec 100644
--- a/container-build-push-generic/action.yaml
+++ b/container-build-push-generic/action.yaml
@@ -106,7 +106,7 @@ runs:
 
     - name: Build and push container image
       id: build-and-push
-      uses: docker/build-push-action@v5
+      uses: docker/build-push-action@v6
       with:
         annotations: ${{ steps.meta.outputs.annotations }}
         context: ${{ inputs.build-context }}
@@ -142,7 +142,7 @@ runs:
 
     - name: Upload sbom sarif file
       if: ${{ github.event_name == 'pull_request' && inputs.scout-user && inputs.scout-password && contains(inputs.scout-command, 'sbom') }}
-      uses: actions/upload-artifact@v3
+      uses: actions/upload-artifact@v4
       with:
         name: ${{ steps.image.outputs.name }}.sarif
         path: /tmp/${{ steps.image.outputs.name }}.sarif
diff --git a/container-signing/README.md b/container-signing/README.md
index dca38bba..2c7569f8 100644
--- a/container-signing/README.md
+++ b/container-signing/README.md
@@ -53,7 +53,7 @@ jobs:
       - uses: docker/metadata-action@v4
         id: meta
         ...
-      - uses: docker/build-push-action@v3
+      - uses: docker/build-push-action@v6
         id: build-and-push
         ...
       - name: Container signing
diff --git a/conventional-commits/action.yml b/conventional-commits/action.yml
index e2367f08..f7e2d492 100644
--- a/conventional-commits/action.yml
+++ b/conventional-commits/action.yml
@@ -38,7 +38,7 @@ runs:
         echo "::debug::PR base sha ${{ github.event.pull_request.base.sha }}"
       shell: bash
     - name: Checkout repository
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         # fetch all commits of the base-ref. without all commits it's not possible to find the common ancestor
         fetch-depth: 0
diff --git a/doc-coverage-clang/action.yml b/doc-coverage-clang/action.yml
index 7e1ac360..ec9d52cd 100644
--- a/doc-coverage-clang/action.yml
+++ b/doc-coverage-clang/action.yml
@@ -30,6 +30,6 @@ runs:
         python -m coverxygen --src-dir ${{ github.workspace }} \
         --xml-dir build/doc/generated/xml/ --output lcov.info
     - name: Upload documentation coverage to codecov
-      uses: codecov/codecov-action@v1
+      uses: codecov/codecov-action@v4
       with:
         files: lcov.info
diff --git a/helm-login/action.yaml b/helm-login/action.yaml
index db99f341..b3c72096 100644
--- a/helm-login/action.yaml
+++ b/helm-login/action.yaml
@@ -33,7 +33,7 @@ runs:
     - name: Install helm
       if: inputs.helm-version
       id: helm
-      uses: azure/setup-helm@v3
+      uses: azure/setup-helm@v4
       with:
         version: ${{ inputs.helm-version }}
         token: ${{ inputs.helm-token }}
diff --git a/lint-golang/action.yml b/lint-golang/action.yml
index c68fde6e..1195bf1c 100644
--- a/lint-golang/action.yml
+++ b/lint-golang/action.yml
@@ -27,6 +27,6 @@ runs:
       shell: bash
       run: ${{ inputs.generate }}
     - name: Use the linter
-      uses: golangci/golangci-lint-action@v3
+      uses: golangci/golangci-lint-action@v6
       with:
         version: ${{ inputs.golangci-lint-version }}
diff --git a/npm-build-push/README.md b/npm-build-push/README.md
index 3b162de2..6dd960a5 100644
--- a/npm-build-push/README.md
+++ b/npm-build-push/README.md
@@ -10,7 +10,7 @@ jobs:
     name: Build and push npm pkg
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Build and push npm pkg
         uses: greenbone/actions/npm-build-push@v3
         with:
diff --git a/npm-build-push/action.yaml b/npm-build-push/action.yaml
index 8b1fcd64..52b72a36 100644
--- a/npm-build-push/action.yaml
+++ b/npm-build-push/action.yaml
@@ -26,7 +26,7 @@ runs:
   steps:
     - name: Setup Node.js
       if: inputs.version
-      uses: actions/setup-node@v3
+      uses: actions/setup-node@v4
       with:
           node-version: ${{ inputs.version }}
           registry-url: ${{ inputs.registry-url }}
diff --git a/pr-conventional-commit-labeler/action.yml b/pr-conventional-commit-labeler/action.yml
index ed271f04..cf1befe6 100644
--- a/pr-conventional-commit-labeler/action.yml
+++ b/pr-conventional-commit-labeler/action.yml
@@ -32,7 +32,7 @@ runs:
         echo "::debug::pr number: ${{ github.event.pull_request.number }}"
       shell: bash
     - name: Checkout repository
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
     - name: Set up Python and Poetry
       uses: greenbone/actions/poetry@v3
       with:
diff --git a/sbom-upload/action.yml b/sbom-upload/action.yml
index 3b443899..735720a6 100644
--- a/sbom-upload/action.yml
+++ b/sbom-upload/action.yml
@@ -28,12 +28,12 @@ runs:
         chmod +x $RUNNER_TEMP/sbom-tool
         $RUNNER_TEMP/sbom-tool generate -b . -bc . -pn ${{ github.repository }} -pv 1.0.0 -ps "Greenbone AG" -nsb https://greenbone.net -V Verbose
       shell: bash
-    - uses: actions/upload-artifact@v3
+    - uses: actions/upload-artifact@v4
       with:
         name: sbom
         path: _manifest/spdx_2.2
     - name: SBOM upload
-      uses: advanced-security/spdx-dependency-submission-action@v0.0.1
+      uses: advanced-security/spdx-dependency-submission-action@v0.1.1
       with:
         filePath: "_manifest/spdx_2.2/"
     - name: Setup github user
diff --git a/update-header/action.yaml b/update-header/action.yaml
index 3cabffe1..8b5a7140 100644
--- a/update-header/action.yaml
+++ b/update-header/action.yaml
@@ -37,7 +37,7 @@ branding:
 runs:
   using: "composite"
   steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
       with:
         ref: ${{ inputs.target }}
     - name: Set up pontos