diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index b86794f50..35351419f 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -30,7 +30,7 @@ jobs: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.33.0 with: php-version: '8.4' tools: composer:v2 @@ -40,7 +40,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.3 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -75,7 +75,7 @@ jobs: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.33.0 with: php-version: '8.4' tools: composer:v2 @@ -85,7 +85,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.3 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -126,7 +126,7 @@ jobs: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.33.0 with: php-version: '8.4' tools: composer:v2 @@ -136,7 +136,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.3 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -217,7 +217,7 @@ jobs: fetch-depth: '0' - name: Setup PHP, with composer and extensions - uses: shivammathur/setup-php@2.32.0 + uses: shivammathur/setup-php@2.33.0 with: php-version: '8.4' extensions: pdo_mysql, mysql @@ -229,7 +229,7 @@ jobs: run: echo "CACHE_DIR=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT - name: Cache composer dependencies - uses: actions/cache@v4.2.1 + uses: actions/cache@v4.2.3 with: path: ${{ steps.composer-cache.outputs.CACHE_DIR }} key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }} @@ -284,7 +284,7 @@ jobs: COVERALLS_RUN_LOCALLY: 1 - name: SonarQube Scan (https://sonarcloud.io/dashboard?id=github.com.tarlepp.symfony-flex-backend) - uses: SonarSource/sonarqube-scan-action@v5.0.0 + uses: SonarSource/sonarqube-scan-action@v5.2.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # https://github.com/SonarSource/sonarqube-scan-action?tab=readme-ov-file#environment-variables @@ -365,7 +365,7 @@ jobs: run: docker build . --file Dockerfile --tag symfony-flex-backend:${{ steps.vars.outputs.DOCKER_TAG }} - name: Scan Docker image with Trivy vulnerability scanner - uses: aquasecurity/trivy-action@0.29.0 + uses: aquasecurity/trivy-action@0.30.0 with: image-ref: 'symfony-flex-backend:${{ steps.vars.outputs.DOCKER_TAG }}' format: 'table'