Skip to content

Bump the github-actions group across 1 directory with 8 updates #21669

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: sycl
Choose a base branch
from
Open

Bump the github-actions group across 1 directory with 8 updates #21669

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/email-check.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ jobs:
[{"body" : "$COMMENT"}]
EOF

- uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f #v6.0.0
- uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f #v7.0.0
if: always()
with:
name: workflow-args
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/pr-code-format.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -84,7 +84,7 @@ jobs:
--end-rev HEAD \
--changed-files "$CHANGED_FILES"

- uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f #v6.0.0
- uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f #v7.0.0
if: always()
with:
name: workflow-args
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/scorecard.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -49,14 +49,14 @@ jobs:
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: SARIF file
path: results.sarif
retention-days: 5

# Upload the results to GitHub's code scanning dashboard.
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
with:
sarif_file: results.sarif
2 changes: 1 addition & 1 deletion .github/workflows/sycl-bandit.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,6 @@ jobs:
run: |
bandit -c devops/bandit.config -r . --exit-zero -f sarif -o bandit_results.sarif

- uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
- uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
with:
sarif_file: bandit_results.sarif
2 changes: 1 addition & 1 deletion .github/workflows/sycl-detect-changes.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
echo "changed_file_cnt=${{ github.event.pull_request.changed_files }}" >> $GITHUB_OUTPUT

- name: Check file changes
uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36
uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
if: steps.changed_files.outputs.changed_file_cnt < 500
id: changes
with:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-docs.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -74,4 +74,4 @@
path: ./install_docs
- name: Deploy to GitHub Pages
if: ${{ github.event_name == 'push' || inputs.update_gh_pages == 'true' }}
uses: actions/deploy-pages@v4
uses: actions/deploy-pages@v5

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
8 changes: 4 additions & 4 deletions .github/workflows/sycl-hardening-check.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@
sudo apt install -y devscripts

- name: Download SYCL toolchain
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.sycl_linux_artifact }}

Expand All @@ -47,7 +47,7 @@
hardening-check "$file" | tee -a "./hardening-check.txt"
done

- uses: actions/upload-artifact@v6
- uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: hardening-check
path: hardening-check.txt
Expand All @@ -63,7 +63,7 @@
unzip "windows.x64.Release.zip" -d winchecksec

- name: Download SYCL toolchain
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.sycl_windows_artifact }}

Expand All @@ -84,7 +84,7 @@
./winchecksec/build/Release/winchecksec.exe "$file" | tee -a "./winchecksec.txt"
done

- uses: actions/upload-artifact@v6
- uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: winchecksec
path: winchecksec.txt
4 changes: 2 additions & 2 deletions .github/workflows/sycl-linux-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -279,7 +279,7 @@
run: tar -I '${{ steps.artifact_info.outputs.COMPRESS }}' -cf ${{ steps.artifact_info.outputs.ARCHIVE_NAME }} -C $GITHUB_WORKSPACE/toolchain .
- name: Upload toolchain release
if: ${{ !cancelled() && steps.build.conclusion == 'success' && inputs.release_toolchain_artifact != '' }}
uses: actions/upload-artifact@v6
uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.release_toolchain_artifact }}
path: ${{ steps.artifact_info.outputs.ARCHIVE_NAME }}
Expand All @@ -302,7 +302,7 @@
run: tar -I '${{ steps.artifact_info.outputs.COMPRESS }}' -cf ${{ steps.artifact_info.outputs.ARCHIVE_NAME }} -C $GITHUB_WORKSPACE/toolchain .
- name: Upload toolchain
if: ${{ !cancelled() && steps.build.conclusion == 'success' }}
uses: actions/upload-artifact@v6
uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.toolchain_artifact }}
path: ${{ steps.artifact_info.outputs.ARCHIVE_NAME }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-linux-precommit.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@

# download build artefact
- name: Download toolchain
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_linux_default
- name: Extract SYCL toolchain
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-linux-run-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -269,7 +269,7 @@
uses: ./devops/actions/setup-vulkan/linux
- name: Download SYCL toolchain
if: inputs.toolchain_artifact != '' && github.event_name != 'workflow_run'
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.toolchain_artifact }}
- name: Download SYCL toolchain [workflow_run]
Expand Down
10 changes: 5 additions & 5 deletions .github/workflows/sycl-nightly.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -417,14 +417,14 @@
contents: write
id-token: write
steps:
- uses: actions/download-artifact@v7
- uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_linux_default
- uses: actions/download-artifact@v7
- uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_windows_default
- name: Sign with sigstore/cosign
uses: sigstore/gh-action-sigstore-python@a5caf349bc536fbef3668a10ed7f5cd309a4b53d # v3.2.0
uses: sigstore/gh-action-sigstore-python@04cffa1d795717b140764e8b640de88853c92acc # v3.3.0
with:
inputs: sycl_linux.tar.gz sycl_windows.tar.gz
- name: Compute tag
Expand All @@ -437,7 +437,7 @@
echo "TAG=${{ needs.get_date.outputs.date }}-${GITHUB_SHA::7}" >> "$GITHUB_OUTPUT"
fi
- name: Upload binaries
uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
uses: softprops/action-gh-release@153bb8e04406b158c6c84fc1615b65b24149a1fe # v2.6.1

Check notice

Code scanning / zizmor

action functionality is already included by the runner Note

action functionality is already included by the runner
with:
files: |
sycl_linux.tar.gz
Expand All @@ -458,7 +458,7 @@
needs: ubuntu2204_build
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- uses: actions/download-artifact@v7
- uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_linux_default
path: devops/
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/sycl-prebuilt-e2e-container.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -63,12 +63,12 @@
tar -I 'zstd -9' -cf devops/e2e_sources.tar.zst -C ./llvm .

- name: Download toolchain
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: toolchain
path: devops/
- name: Download E2E binaries
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: e2e_bin
path: devops/
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-weekly.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -106,7 +106,7 @@
python3 scripts/run_gen.py --target dpcpp --std sycl -t 60 -j 2
- name: Pack results
run: tar -czf yarpgen_results.tar.gz yarpgen/testing
- uses: actions/upload-artifact@v6
- uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: yarpgen_results
path: yarpgen_results.tar.gz
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/sycl-windows-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -197,7 +197,7 @@
diff -Naur src/sycl/test/abi/sycl_symbols_windows.dump build/new_sycl_symbols_windows.dump || true
- name: Upload new ABI symbols
if: ${{ !cancelled() && contains(inputs.changes, 'sycl') }}
uses: actions/upload-artifact@v6
uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_windows_abi_symbols
path: build/new_sycl_symbols_windows.dump
Expand All @@ -212,7 +212,7 @@
run: tar -czf ${{ inputs.toolchain_artifact_filename }} -C install .
- name: Upload toolchain release
if: ${{ !cancelled() && steps.build.conclusion == 'success' && inputs.release_toolchain_artifact != '' }}
uses: actions/upload-artifact@v6
uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.release_toolchain_artifact }}
path: ${{ inputs.toolchain_artifact_filename }}
Expand All @@ -231,7 +231,7 @@
tar -czf ${{ inputs.toolchain_artifact_filename }} -C install .
- name: Upload toolchain
if: ${{ !cancelled() && steps.build.conclusion == 'success' }}
uses: actions/upload-artifact@v6
uses: actions/upload-artifact@v7

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: sycl_windows_default
path: ${{ inputs.toolchain_artifact_filename }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-windows-run-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -121,7 +121,7 @@
llvm/utils/lit
sycl/test-e2e
- name: Download compiler toolchain
uses: actions/download-artifact@v7
uses: actions/download-artifact@v8

Check failure

Code scanning / zizmor

unpinned action reference Error

unpinned action reference
with:
name: ${{ inputs.toolchain_artifact }}
- name: Extract SYCL toolchain
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/sycl-zizmor.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,4 +40,4 @@ jobs:
devops/actions/**/*.yml

- name: Run zizmor
uses: zizmorcore/zizmor-action@135698455da5c3b3e55f73f4419e481ab68cdd95 # v0.4.1
uses: zizmorcore/zizmor-action@71321a20a9ded102f6e9ce5718a2fcec2c4f70d8 # v0.5.2
Loading