From b4fe75fb82f616873b12112e1d085dc653f79aa8 Mon Sep 17 00:00:00 2001 From: Mark Kercso Date: Wed, 11 Mar 2026 13:50:46 +0000 Subject: [PATCH] Update actions to be Node.js 24 compatible --- .github/workflows/build-targets.yaml | 10 +++---- .github/workflows/gitsecrets.yml | 2 +- .github/workflows/release.yaml | 4 +-- .github/workflows/security-scan.yaml | 30 ++++++++++---------- .github/workflows/smoke-tests-sagemaker.yaml | 10 +++---- .github/workflows/update-automation.yaml | 26 ++++++++--------- 6 files changed, 41 insertions(+), 41 deletions(-) diff --git a/.github/workflows/build-targets.yaml b/.github/workflows/build-targets.yaml index 5e87eb2..e54c71d 100644 --- a/.github/workflows/build-targets.yaml +++ b/.github/workflows/build-targets.yaml @@ -40,7 +40,7 @@ jobs: sudo apt-get install -y quilt libkrb5-dev libx11-dev libxkbfile-dev libxml2-utils - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: submodules: recursive @@ -70,7 +70,7 @@ jobs: fi - name: Set up Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: '22' cache: 'npm' @@ -96,14 +96,14 @@ jobs: tar -czf "${MATRIX_BUILD_TARGET}-build.tar.gz" "./$CODE_EDITOR_BUILD_TARGET" - name: Upload src artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ github.sha }}-${{ matrix.build-target }}-src path: ${{ matrix.build-target }}-src.tar.gz retention-days: 90 - name: Upload build artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ github.sha }}-${{ matrix.build-target }}-build path: ${{ matrix.build-target }}-build.tar.gz @@ -147,7 +147,7 @@ jobs: - name: Use role credentials for metrics id: aws-creds continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }} - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 diff --git a/.github/workflows/gitsecrets.yml b/.github/workflows/gitsecrets.yml index ceef533..572c2cc 100644 --- a/.github/workflows/gitsecrets.yml +++ b/.github/workflows/gitsecrets.yml @@ -12,7 +12,7 @@ jobs: name: Git Secrets Scan runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: path: aws/code-editor - name: Git Secrets Scan Script diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 00e9bb1..6fce320 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -16,7 +16,7 @@ jobs: GH_TOKEN: ${{ github.token }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 @@ -151,7 +151,7 @@ jobs: - name: Use role credentials for metrics id: aws-creds continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }} - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 diff --git a/.github/workflows/security-scan.yaml b/.github/workflows/security-scan.yaml index 9cc773c..2456625 100644 --- a/.github/workflows/security-scan.yaml +++ b/.github/workflows/security-scan.yaml @@ -36,7 +36,7 @@ jobs: output-branch-name: ${{ steps.determine-pr-branches.outputs.output-branch-name || steps.get-upstream-branches.outputs.output-branch-name }} steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 @@ -235,7 +235,7 @@ jobs: steps: - name: Assume IAM Role id: assume-aws-iam-role - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 @@ -255,7 +255,7 @@ jobs: --value 1 - name: Checkout branch - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: ${{ matrix.branch }} submodules: recursive @@ -301,7 +301,7 @@ jobs: ./scripts/prepare-src.sh "$TARGET" - name: Set up Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: '22' cache: 'npm' @@ -326,7 +326,7 @@ jobs: ./scripts/security-scan.sh scan-main-dependencies "$TARGET" "$BRANCH" - name: Upload SBOM Files - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: sbom-files-${{ matrix.target }}-${{ matrix.branch }} path: | @@ -338,7 +338,7 @@ jobs: if-no-files-found: error - name: Upload Scan Result Files - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: scan-results-${{ matrix.target }}-${{ matrix.branch }} path: | @@ -364,7 +364,7 @@ jobs: echo "PASS" > "scan-success-$TARGET-${output_branch}.txt" - name: Upload Success Indicator File - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: scan-success-${{ matrix.target }}-${{ matrix.branch }} path: scan-success-${{ matrix.target }}-${{ matrix.branch }}.txt @@ -408,7 +408,7 @@ jobs: branch: ${{ fromJson(needs.get-branches-to-scan.outputs.security-scan-branches) }} steps: - name: Download all scan success files - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v7 with: pattern: scan-success-* merge-multiple: true @@ -451,7 +451,7 @@ jobs: - name: Upload Branch Success File if: success() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: scan-success-branch-${{ matrix.branch }} path: scan-success-branch-${{ matrix.branch }}.txt @@ -471,7 +471,7 @@ jobs: steps: - name: Assume IAM Role id: assume-aws-iam-role - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }} aws-region: us-east-1 @@ -490,7 +490,7 @@ jobs: --value 1 - name: Checkout branch - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: ${{ matrix.branch }} submodules: recursive @@ -544,7 +544,7 @@ jobs: ./scripts/security-scan.sh scan-additional-dependencies - name: Upload Additional Node.js SBOMs - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: additional-nodejs-sboms-${{ matrix.branch }} path: additional-node-js-sboms/ @@ -552,7 +552,7 @@ jobs: if-no-files-found: error - name: Upload Additional Inspector Scan Results - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: additional-inspector-results-${{ matrix.branch }} path: additional-scan-results/ @@ -577,7 +577,7 @@ jobs: echo "PASS" > "global-scan-success-${output_branch}.txt" - name: Upload Global Success Indicator File - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: global-scan-success-${{ matrix.branch }} path: global-scan-success-${{ matrix.branch }}.txt @@ -632,7 +632,7 @@ jobs: steps: - name: Use role credentials for metrics id: aws-creds - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 diff --git a/.github/workflows/smoke-tests-sagemaker.yaml b/.github/workflows/smoke-tests-sagemaker.yaml index d311b49..157d56f 100644 --- a/.github/workflows/smoke-tests-sagemaker.yaml +++ b/.github/workflows/smoke-tests-sagemaker.yaml @@ -24,7 +24,7 @@ jobs: TEST_SAGEMAKER_ROLE: ${{ secrets.TEST_SAGEMAKER_ROLE }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 @@ -35,7 +35,7 @@ jobs: sudo apt-get install -y quilt libxml2-utils jq libx11-dev libxkbfile-dev - name: Setup Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: '22' @@ -60,7 +60,7 @@ jobs: done - name: Configure ECR role AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.TEST_ECR_ROLE }} aws-region: ${{ env.AWS_REGION }} @@ -104,7 +104,7 @@ jobs: echo "Local build artifacts cleaned up" - name: Configure SageMaker role AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.TEST_SAGEMAKER_ROLE }} aws-region: ${{ env.AWS_REGION }} @@ -429,7 +429,7 @@ jobs: - name: Configure ECR role for cleanup if: always() - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ secrets.TEST_ECR_ROLE }} aws-region: ${{ env.AWS_REGION }} diff --git a/.github/workflows/update-automation.yaml b/.github/workflows/update-automation.yaml index 99c0e4a..c1db000 100644 --- a/.github/workflows/update-automation.yaml +++ b/.github/workflows/update-automation.yaml @@ -23,7 +23,7 @@ jobs: sudo apt-get install -y quilt libxml2-utils jq - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 submodules: true @@ -201,12 +201,12 @@ jobs: sudo apt-get install -y quilt libxml2-utils jq libx11-dev libxkbfile-dev - name: Setup Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: '22' - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: ${{ needs.update-automation.outputs.staging-branch }} fetch-depth: 0 @@ -268,7 +268,7 @@ jobs: done - name: Upload prepared source as artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ github.run_id }}-prepared-source-${{ matrix.target }} path: code-editor-src/ @@ -307,12 +307,12 @@ jobs: npm i -g license-checker - name: Setup Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: '22' - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: ${{ needs.update-automation.outputs.staging-branch }} fetch-depth: 0 @@ -324,7 +324,7 @@ jobs: git config user.email "github-actions[bot]@users.noreply.github.com" - name: Download prepared sources from artifacts - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v7 with: pattern: ${{ github.run_id }}-prepared-source-* merge-multiple: false @@ -379,7 +379,7 @@ jobs: pull-requests: write steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: ${{ needs.update-automation.outputs.staging-branch }} fetch-depth: 0 @@ -453,14 +453,14 @@ jobs: AWS_ROLE_TO_ASSUME: ${{ secrets.AWS_ROLE_TO_ASSUME }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: submodules: true fetch-depth: 1 - name: Use role credentials for metrics id: aws-creds - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 @@ -500,7 +500,7 @@ jobs: - name: Use role credentials for notification id: aws-creds continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }} - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 @@ -528,7 +528,7 @@ jobs: steps: - name: Use role credentials for metrics id: aws-creds - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900 @@ -559,7 +559,7 @@ jobs: - name: Use role credentials for metrics id: aws-creds continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }} - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v6 with: role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }} role-duration-seconds: 900