Skip to content

Commit 3809994

Browse files
renovate[bot]renovate[bot]
authored
chore(deps): update all digest updates
1 parent 558edd9 commit 3809994

File tree

4 files changed

+20
-20
lines changed

4 files changed

+20
-20
lines changed

.github/workflows/ci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ jobs:
3535
steps:
3636
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
3737

38-
- uses: astral-sh/setup-uv@e06108dd0aef18192324c70427afc47652e63a82 # v7
38+
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7
3939

4040
- id: setup-python
4141
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6

.github/workflows/ossf.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -41,6 +41,6 @@ jobs:
4141

4242
# Upload the results to GitHub's code scanning dashboard (optional).
4343
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
44-
- uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
44+
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
4545
with:
4646
sarif_file: results.sarif

.github/workflows/scans.yml

Lines changed: 17 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -25,12 +25,12 @@ jobs:
2525
steps:
2626
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
2727

28-
- uses: bridgecrewio/checkov-action@f9b0a2206b0401cad02ac0a66be2a7934a5be838 # master
28+
- uses: bridgecrewio/checkov-action@2fd3901c8feb52417f27f0d9800259a106c1ec1e # master
2929
with:
3030
soft_fail: ${{ github.event_name != 'pull_request' }}
3131

3232
- if: ${{ success() || failure() }}
33-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
33+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
3434
with:
3535
sarif_file: results.sarif
3636

@@ -65,7 +65,7 @@ jobs:
6565
db-file: matcher.db
6666

6767
- if: ${{ success() || failure() }}
68-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
68+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
6969
with:
7070
sarif_file: clair_results.sarif
7171

@@ -80,7 +80,7 @@ jobs:
8080

8181
- uses: microsoft/DevSkim-Action@4b5047945a44163b94642a1cecc0d93a3f428cc6 # v1
8282

83-
- uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
83+
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
8484
with:
8585
sarif_file: devskim-results.sarif
8686

@@ -111,7 +111,7 @@ jobs:
111111
GITHUB_TOKEN: ${{ github.token }}
112112

113113
- if: ${{ success() || failure() }}
114-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
114+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
115115
with:
116116
sarif_file: results.sarif
117117

@@ -125,15 +125,15 @@ jobs:
125125
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
126126

127127
- id: grype
128-
uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7
128+
uses: anchore/scan-action@e1165082ffb1fe366ebaf02d8526e7c4989ea9d2 # v7
129129
with:
130130
path: .
131131
fail-build: ${{ github.event_name == 'pull_request' }}
132132
severity-cutoff: high
133133
only-fixed: true
134134

135135
- if: ${{ success() || failure() }}
136-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
136+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
137137
with:
138138
sarif_file: ${{ steps.grype.outputs.sarif }}
139139

@@ -155,7 +155,7 @@ jobs:
155155
load: true
156156

157157
- id: grype
158-
uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7
158+
uses: anchore/scan-action@e1165082ffb1fe366ebaf02d8526e7c4989ea9d2 # v7
159159
with:
160160
image: ${{ env.IMAGE_ID }}
161161
fail-build: ${{ github.event_name == 'pull_request' }}
@@ -165,7 +165,7 @@ jobs:
165165
IMAGE_ID: ${{ steps.build.outputs.imageid }}
166166

167167
- if: ${{ success() || failure() }}
168-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
168+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
169169
with:
170170
sarif_file: ${{ steps.grype.outputs.sarif }}
171171

@@ -192,7 +192,7 @@ jobs:
192192
bom: true
193193

194194
- if: ${{ success() || failure() }}
195-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
195+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
196196
with:
197197
sarif_file: results.sarif
198198

@@ -226,7 +226,7 @@ jobs:
226226
path: megalinter-reports
227227

228228
- if: ${{ success() || failure() }}
229-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
229+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
230230
with:
231231
sarif_file: megalinter-reports/megalinter-report.sarif
232232
ref: ${{ github.head_ref && format('refs/heads/{0}', github.head_ref) || github.ref }}
@@ -258,7 +258,7 @@ jobs:
258258
- uses: microsoft/security-devops-action@08976cb623803b1b36d7112d4ff9f59eae704de0 # v1
259259
id: msdo
260260

261-
- uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
261+
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
262262
with:
263263
sarif_file: ${{ steps.msdo.outputs.sarifFile }}
264264

@@ -292,21 +292,21 @@ jobs:
292292
steps:
293293
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
294294

295-
- uses: anchore/sbom-action@57aae528053a48a3f6235f2d9461b05fbcb7366d # v0
295+
- uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0
296296
with:
297297
output-file: "${{ github.event.repository.name }}-sbom.spdx.json"
298298
dependency-snapshot: true
299299

300300
- id: grype
301-
uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7
301+
uses: anchore/scan-action@e1165082ffb1fe366ebaf02d8526e7c4989ea9d2 # v7
302302
with:
303303
sbom: "${{ github.event.repository.name }}-sbom.spdx.json"
304304
fail-build: ${{ github.event_name == 'pull_request' }}
305305
severity-cutoff: high
306306
only-fixed: true
307307

308308
- if: ${{ success() || failure() }}
309-
uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
309+
uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
310310
with:
311311
sarif_file: ${{ steps.grype.outputs.sarif }}
312312

@@ -337,7 +337,7 @@ jobs:
337337
scanners: vuln,secret,misconfig
338338
skip-setup-trivy: true
339339

340-
- uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
340+
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
341341
with:
342342
sarif_file: trivy-results.sarif
343343

@@ -376,7 +376,7 @@ jobs:
376376
severity: HIGH,CRITICAL
377377
skip-setup-trivy: true
378378

379-
- uses: github/codeql-action/upload-sarif@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4
379+
- uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4
380380
with:
381381
sarif_file: trivy-results.sarif
382382

Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ FROM ghcr.io/astral-sh/uv:0.10.10@sha256:cbe0a44ba994e327b8fe7ed72beef1aaa7d2c4c
44
##
55
# base
66
##
7-
FROM debian:stable-slim@sha256:85dfcffff3c1e193877f143d05eaba8ae7f3f95cb0a32e0bc04a448077e1ac69 AS base
7+
FROM debian:stable-slim@sha256:99fc6d2a0882fcbcdc452948d2d54eab91faafc7db037df82425edcdcf950e1f AS base
88

99
# set up user
1010
ARG USER=user

0 commit comments

Comments
 (0)