Transitive Actions #494
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Transitive Actions | |
| on: | |
| schedule: | |
| - cron: 0 4 * * * | |
| workflow_dispatch: ~ | |
| permissions: read-all | |
| jobs: | |
| tooling: | |
| name: Update | |
| runs-on: ubuntu-24.04 | |
| permissions: | |
| contents: write # To push a commit | |
| pull-requests: write # To open a Pull Request | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 | |
| - name: Create token to create Pull Request | |
| uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2.1.0 | |
| id: automation-token | |
| with: | |
| app_id: ${{ secrets.AUTOMATION_ID }} | |
| private_key: ${{ secrets.AUTOMATION_PRIVATE_KEY }} | |
| - name: Update (and pin) all actions used by these actions | |
| run: make update-actions | |
| env: | |
| GH_ADMIN_TOKEN: ${{ github.token }} | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@4320041ed380b20e97d388d56a7fb4f9b8c20e79 # v7.0.0 | |
| with: | |
| token: ${{ steps.automation-token.outputs.token }} | |
| title: Update composite action dependencies | |
| body: | | |
| _This Pull Request was automatically generated by `transitive-actions.yml`_ | |
| --- | |
| Bump the versions of dependencies used in composite action to the latest available version. | |
| If any dependency wasn't previously pinned, it should be pinned now. | |
| Please update the `CHANGELOG.md` in accordance with these changes before you merge this. | |
| labels: dependencies | |
| branch: action-deps-update | |
| commit-message: Update composite action dependencies | |
| add-paths: | | |
| commit/action.yml | |
| pr/action.yml | |
| action.yml |