finos
diff --git a/‎.github/workflows/build.yml‎
Lines changed: 3 additions & 3 deletions b/‎.github/workflows/build.yml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎.github/workflows/license-scanning-node.yml‎
Lines changed: 6 additions & 6 deletions b/‎.github/workflows/license-scanning-node.yml‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎.github/workflows/publish-docker.yml‎
Lines changed: 11 additions & 8 deletions b/‎.github/workflows/publish-docker.yml‎
Lines changed: 11 additions & 8 deletions
diff --git a/‎.github/workflows/security.yml‎
Lines changed: 15 additions & 10 deletions b/‎.github/workflows/security.yml‎
Lines changed: 15 additions & 10 deletions
diff --git a/‎code/Dockerfile‎
Lines changed: 1 addition & 1 deletion b/‎code/Dockerfile‎
Lines changed: 1 addition & 1 deletion
@@ -10,11 +10,11 @@ jobs:
   deploy:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-python@v4
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
         with:
           python-version: 3.x
-      - uses: actions/cache@v2
+      - uses: actions/cache@v4
         with:
           key: ${{ github.ref }}
           path: .cache
 
@@ -15,11 +15,11 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        node-version: [16.x]
+        node-version: [22.x]
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Use Node.js ${{ matrix.node-version }}
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
           node-version: ${{ matrix.node-version }}
       - run: npm install --omit=dev
@@ -33,11 +33,11 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        node-version: [16.x]
+        node-version: [22.x]
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
       - name: Use Node.js ${{ matrix.node-version }}
-        uses: actions/setup-node@v2
+        uses: actions/setup-node@v4
         with:
           node-version: ${{ matrix.node-version }}
       - run: npm install --omit=dev
 
@@ -17,11 +17,14 @@ jobs:
     name: ${{ github.event.repository.name }}-docker-scan
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: docker-practice/actions-setup-docker@ccc771627519a0dc44b99c63f3ccf5fab1b1b9b8
+      - name: Checkout code
+        uses: actions/[email protected]
       - name: Build
-        run: docker build -f Dockerfile -t user/app:latest .
-        working-directory: code
+        uses: docker/build-push-action@v6
+        with:
+          context: code
+          push: false
+          tags: user/app:latest
       #- name: Scan for vulnerabilities
       #  uses: crazy-max/ghaction-container-scan@dfa7e54dc32045120f06d0bc8d7724860f5db0ad
       #  with:
@@ -38,25 +41,25 @@ jobs:
       digest: ${{ steps.build_publish.outputs.digest }}
     steps:
       - name: Check out the repo
-        uses: actions/checkout@v4
+        uses: actions/checkout@v4.2.2
 
       - name: Log in to Docker Hub
-        uses: docker/login-action@v3.0.0
+        uses: docker/login-action@v3.3.0
         with:
           username: finos
           password: ${{ secrets.DOCKER_PASSWORD }}
 
       - name: Extract metadata (tags, labels) for Docker
         id: meta
-        uses: docker/metadata-action@v5.5.1
+        uses: docker/metadata-action@v5.6.1
         with:
           images: finos/a11y-theme-builder
           tags: |
             type=ref,event=branch
             type=sha
       - name: Build and push Docker image
         id: build_publish
-        uses: docker/build-push-action@v5.1.0
+        uses: docker/build-push-action@v6
         with:
           context: code
           push: true
 
@@ -24,11 +24,11 @@ jobs:
             'code/src/ui']
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4.2.2
       - name: Set up Node
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4.2.0
         with:
-          node-version: 18
+          node-version: 22
       - name: Build project with NPM
         run: npm install --omit=dev
         working-directory: ${{ matrix.module-folder }}
@@ -44,24 +44,29 @@ jobs:
             --suppression .github/node-cve-ignore-list.xml
             --nodeAuditSkipDevDependencies
             --nodePackageSkipDevDependencies
-            --failOnCVSS 5
+            --failOnCVSS 6
             --enableRetired
       - name: Upload Test results
         if: ${{ always() }}
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4.6.0
         with:
           name: Depcheck report
           path: ${{ github.workspace }}/${{ matrix.module-folder }}-reports
+          overwrite: true
   docker-scan:
     name: ${{ github.event.repository.name }}-docker-scan
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
-      - uses: docker-practice/actions-setup-docker@ccc771627519a0dc44b99c63f3ccf5fab1b1b9b8
+      - name: Checkout code
+        uses: actions/[email protected]
       - name: Build
-        run: docker build -f Dockerfile -t user/app:latest .
-        working-directory: code
+        uses: docker/build-push-action@v6
+        with:
+          context: code
+          push: false
+          tags: user/app:latest
       - name: Scan for vulnerabilities
-        uses: crazy-max/ghaction-container-scan@f17494a3e47d86fb17c2c1f89b25049492a82d1d
+        uses: crazy-max/ghaction-container-scan@v3
         with:
           image: user/app:latest
+
@@ -1,4 +1,4 @@
-FROM node:20.16.0-bookworm-slim
+FROM node:24.2.0-bookworm-slim
 RUN node -v
 # Copy source
 RUN mkdir $HOME/code
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM node:20.16.0-bookworm-slim`
	`1`	`+FROM node:24.2.0-bookworm-slim`
`2`	`2`	`RUN node -v`
`3`	`3`	`# Copy source`
`4`	`4`	`RUN mkdir $HOME/code`