Vault Automation
00281521f0
actions: pin actions to the latest versions
...
* actions: pin to latest actions
- actions/checkout@9c091bb21b => v7.0.0
Adds a guardrail to prevent accidentally checking out fork pull
request code in privileged GitHub Actions contexts
(pull_request_target and PR-triggered workflow_run), with an
explicit opt-in escape hatch for advanced workflows.
- pnpm/action-setup@0ebf47130e => v6.0.9
Update pnpm to v11.7.0
- Add .github/actions/build-ui to ui changed files group
- Add .github/actions/build-ui to ui/frontend CODEOWNERS
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2026-06-23 10:21:26 -06:00
Vault Automation
74940f107c
actions: update pins to latest versions
...
- actions/add-to-project@5afcf98fcd => v2.0.0
- Dependency bumps
- Node 24 updates
- actions/cache@27d5ce7f10 => v5.0.5
- ts-http-runtime update
- actions/checkout@df4cb1c069 => v6.0.3
- Fixes for sha256 repositories
- actions/setup-go@4a3601121d => v6.4.0
- Dependency bumps
- Support custom distributions
- actions/setup-node@48b55a011b => v6.4.0
- Dependency bumps
- actions/upload-artifact@043fb46d1a => v7.0.1
- ts-http-runtime update
- aws-actions/configure-aws-credentials@e7f100cf4c => v6.2.0
- Various bug fixes and improvements
- browser-actions/setup-chrome@2e1d749697 => v2.1.2
- Drop 32 bit support
- docker/build-push-action@f9f3042f7e => v7.2.0
- Dependency bumps
- docker/setup-buildx-action@d7f5e7f509 => v4.1.0
- Dependency bumps
- hashicorp/actions-generate-metadata@a43468dfb1 # v1.1.4
- Node 24 updates
- hashicorp/actions-set-product-version@d9be602dfa => v2.0.2
- Node 24 updates
- hashicorp/action-setup-enos@3817610f3f => v1.53
- Dependency bumps
- New enos release
- hashicorp/setup-terraform@dfe3c3f878 => v4.0.1
- Node 24 updates
- hashicorp/vault-action@892a26828f => v4.0.0
- Node 24 updates
- hashicorp-forge/actions-pao-tool/*@0409050df899ec0612745ca17e47c0fba18b7c10 => v1.1.0
- Node 24 updates
- peter-evans/create-pull-request@5f6978faf0 => v8.1.1
- Dependency bumps
- pnpm/action-setup@0e279bb959 => v6.0.8
- Added support for pnpm 11 and various fixes around its support
- slackapi/slack-github-action@45a88b9581 => v3.0.3
- Bug fixes
- Improved telemetry
- sqlc-dev/setup-sqlc@bac53b7fb2 => v5.0.0
- Dependency bumps
- test-summary/action@37b508cfee => v2.6
- Fixing tags
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2026-06-12 20:20:36 -04:00
Vault Automation
da9b387579
use ubuntu-22.04 everywhere to access more hot runner pools
...
* use ubuntu-22.04 everywhere to access more hot runner pools
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2026-05-28 10:26:55 -06:00
Vault Automation
c2034cb08a
actions: pin to latest actions ( #12060 ) ( #12069 )
...
- actions/checkout -> v6.0.2: some minor changes around setting the
ACTIONS_ORCHESTRATION_ID and some fixes to `fetch-tags`.
- actions/setup-python -> v6.2.0: Node 24 compat
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2026-01-29 10:07:15 -08:00
Vault Automation
d25f12d943
pipeline: pin actions to latest versions ( #11453 ) ( #11458 )
...
None of these appear to have any changes in behavior we ought to be
concerned with.
- actions/cache: https://github.com/actions/cache/releases/tag/v5.0.1
Upgrade to Node 24
- actions/upload-artifact: https://github.com/actions/upload-artifact/releases/tag/v6.0.0
Upgrade to Node 24
- actions/checkout: https://github.com/actions/checkout/releases/tag/v6.0.1
Bug fix for persisted-credentials changes in 6
- actions/setup-node: https://github.com/actions/setup-node/releases/tag/v6.1.0
Updates internal actions and removes always-auth config
- actions/download-artifact: https://github.com/actions/download-artifact/releases/tag/v7.0.0
Upgrade to Node 24
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2025-12-18 13:19:23 -07:00
Vault Automation
8172cf232f
actions: pin to latest actions ( #11057 ) ( #11069 )
...
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2025-12-03 18:15:05 +00:00
Vault Automation
1d3b51b914
[VAULT-39208]: actions: update action pins ( #8864 ) ( #8865 )
...
Signed-off-by: Ryan Cragun <me@ryan.ec>
Co-authored-by: Ryan Cragun <me@ryan.ec>
2025-08-22 22:37:38 +00:00
Ryan Cragun
8f4a2b5bc3
[VAULT-34830] actions: update CE workflows for unified enterprise repository ( #31425 )
...
Various small changes and tweaks to our CI/CD workflows to allow for running CE branches in the context of `hashicorp/vault-enterprise`.
Signed-off-by: Ryan Cragun <me@ryan.ec>
2025-08-07 14:35:18 -06:00
Ryan Cragun
b239a71934
actions: pin to the latest approved workflows ( #29321 )
...
The genesis of this PR is updating our cache action due to older actions
being shut down[0]. While not mentioned in the changelog, the migration
guide does call out versions <3.4.0 or <4.2.0 as too old.[1]
Since I was updating cache I went ahead and updated minor versions of
all our actions.
[0]: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down
[1]: https://github.com/actions/cache/discussions/1510
Signed-off-by: Ryan Cragun <me@ryan.ec>
2025-01-24 20:08:01 +00:00
Violet Hynes
64ce6e74da
Update actions/checkout to 4.1.7 ( #27636 )
2024-07-02 09:25:21 -04:00
dependabot[bot]
2718994242
Bump actions/checkout from 4.1.5 to 4.1.6 ( #27096 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](44c2b7a8a4...a5ac7e51b4
2024-05-17 10:06:45 -04:00
dependabot[bot]
a3f8a49009
Bump hashicorp/setup-copywrite from 1.1.2 to 1.1.3 ( #26955 )
...
Bumps [hashicorp/setup-copywrite](https://github.com/hashicorp/setup-copywrite ) from 1.1.2 to 1.1.3.
- [Release notes](https://github.com/hashicorp/setup-copywrite/releases )
- [Commits](867a1a2a06...32638da2d4
2024-05-13 14:19:17 +00:00
dependabot[bot]
b81a2666b2
Bump actions/checkout from 4.1.4 to 4.1.5 ( #26920 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.4 to 4.1.5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](0ad4b8fada...44c2b7a8a4
2024-05-10 18:15:07 +00:00
Ryan Cragun
fc4042bd2e
[QT-687] use new packaging action ( #26905 )
...
Update hashicorp/actions-packaging-linux to our rewritten version
that no longer requires building a Docker container or relies on code
hosted in a non-hashicorp repo for packaging.
As internal actions are not managed in the same manner as external
actions in via the tsccr trusted components db, the tsccr helper is
unable to easily re-pin hashicorp/* actions. As such, we unpin some
pinned hashicorp/* actions to automatically pull in updates that are
compatible.
Signed-off-by: Ryan Cragun <me@ryan.ec>
2024-05-10 16:51:06 +00:00
dependabot[bot]
f3b3f32176
Bump hashicorp/setup-copywrite from 1.1.2 to 1.1.3 ( #26921 )
...
Bumps [hashicorp/setup-copywrite](https://github.com/hashicorp/setup-copywrite ) from 1.1.2 to 1.1.3.
- [Release notes](https://github.com/hashicorp/setup-copywrite/releases )
- [Commits](867a1a2a06...32638da2d4
2024-05-10 11:37:18 -04:00
Ryan Cragun
1f2f3ff20a
[QT-711] Pin to latest github actions ( #26789 )
...
Pin to the latest actions in preparation for the migration to
`actions/upload-artifact@v4`, `actions/download-artifact@v4`, and
`hashicorp/actions-docker-build@v2` on May 6 or 7.
Signed-off-by: Ryan Cragun <me@ryan.ec>
2024-05-02 13:29:20 -06:00
dependabot[bot]
8a571a3e22
Bump actions/checkout from 3.5.3 to 4.1.1 ( #24927 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.3 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.5.3...b4ffde65f46336ab88eb53be808477a3936bae11 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
2024-01-18 14:31:52 +00:00
Nick Cabatoff
c64e0144f6
Use the same approach as we do in our other workflows: apply to PRs, and to pushes to our main and release branches. ( #23785 )
2023-10-23 14:27:13 +00:00
modrake
eca4b4d801
Relplat 897 copywrite fixes for mutliple licenses ( #23722 )
2023-10-20 08:40:43 -07:00
