diff --git a/.github/workflows/create-signing-events.yml b/.github/workflows/create-signing-events.yml index 95c8c097..592ba2ec 100644 --- a/.github/workflows/create-signing-events.yml +++ b/.github/workflows/create-signing-events.yml @@ -15,7 +15,7 @@ jobs: actions: 'write' # for dispatching signing event workflow steps: - name: Create signing events for offline version bumps - uses: theupdateframework/tuf-on-ci/actions/create-signing-events@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/create-signing-events@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} @@ -27,7 +27,7 @@ jobs: issues: 'write' # for modifying Issues steps: - name: Update the issue for the workflow - uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} success: ${{ !contains(needs.*.result, 'failure') }} diff --git a/.github/workflows/online-sign.yml b/.github/workflows/online-sign.yml index eed0c1bd..afbf4a73 100644 --- a/.github/workflows/online-sign.yml +++ b/.github/workflows/online-sign.yml @@ -19,7 +19,7 @@ jobs: actions: 'write' # for dispatching publish workflow steps: - id: online-sign - uses: theupdateframework/tuf-on-ci/actions/online-sign@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/online-sign@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} gcp_workload_identity_provider: 'projects/163070369698/locations/global/workloadIdentityPools/github-actions-pool/providers/github-actions-provider' @@ -34,7 +34,7 @@ jobs: issues: 'write' # for modifying Issues steps: - name: Update the issue for the workflow - uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} success: ${{ !contains(needs.*.result, 'failure') }} diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index f46eeded..1d8ff9f4 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - id: build-and-upload-repository - uses: theupdateframework/tuf-on-ci/actions/upload-repository@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/upload-repository@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: gh_pages: true ref: ${{ inputs.ref }} @@ -67,7 +67,7 @@ jobs: issues: 'write' # for modifying Issues steps: - name: Update the issue for the workflow - uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} success: ${{ !contains(needs.*.result, 'failure') }} diff --git a/.github/workflows/signing-event.yml b/.github/workflows/signing-event.yml index b5d9615c..b451408e 100644 --- a/.github/workflows/signing-event.yml +++ b/.github/workflows/signing-event.yml @@ -19,6 +19,6 @@ jobs: steps: - name: Signing event - uses: theupdateframework/tuf-on-ci/actions/signing-event@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/signing-event@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/test-gcs.yml b/.github/workflows/test-gcs.yml index 93c2d9de..c045d08f 100644 --- a/.github/workflows/test-gcs.yml +++ b/.github/workflows/test-gcs.yml @@ -18,7 +18,7 @@ jobs: run: cp metadata/root_history/5.root.json ./root.json - name: Smoke test Sigstore TUF repository with a TUF client - uses: theupdateframework/tuf-on-ci/actions/test-repository@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/test-repository@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: metadata_url: https://tuf-repo-cdn.sigstore.dev/ valid_days: 3 @@ -40,7 +40,7 @@ jobs: issues: 'write' # for modifying Issues steps: - name: Update the issue for the workflow - uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} success: ${{ !contains(needs.*.result, 'failure') }} diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 5e4ed003..67f1792f 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -18,7 +18,7 @@ jobs: run: cp metadata/root_history/5.root.json ./root.json - name: Smoke test TUF-on-CI repository with a TUF client - uses: theupdateframework/tuf-on-ci/actions/test-repository@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/test-repository@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: metadata_url: https://sigstore.github.io/root-signing/ update_base_url: https://tuf-repo-cdn.sigstore.dev/ @@ -41,7 +41,7 @@ jobs: issues: 'write' # for modifying Issues steps: - name: Update the issue for the workflow - uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0 + uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0 with: token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }} success: ${{ !contains(needs.*.result, 'failure') }}