Skip to content

chore: update workflows #89

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
sdh100shaun wants to merge 4 commits into
base: main
Choose a base branch
from
Open

chore: update workflows #89

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
3f2dd92
chore: update workflow templates
sdh100shaun Nov 23, 2025
604a214
chore: update workflows where necessary
sdh100shaun Nov 23, 2025
6c45435
chore:update documentation fix the version error and tidy
sdh100shaun Nov 23, 2025
d15fe10
fix: fix version
sdh100shaun Nov 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/actions/surefire-report-summary/package-lock.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/nodejs-security.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ jobs:
steps:
- uses: actions/checkout@v4
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/node@master
uses: snyk/actions/node@v1.0.0
continue-on-error: ${{ inputs.continue-on-error }}
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/php-library-security.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,15 +50,15 @@ jobs:
run: composer update --${{ matrix.stability }} --prefer-dist --no-interaction --no-progress

- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/php@master
uses: snyk/actions/php@v1.0.0
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
SEVERITY_THRESHOLD: ${{ inputs.severity-threshold && format('--severity-threshold={0}', inputs.severity-threshold) || '' }}
with:
args: --sarif-file-output=snyk.sarif $SEVERITY_THRESHOLD

- name: isPrivate
uses: octokit/graphql-action@v2.x
uses: octokit/graphql-action@v3.0.0
id: isPrivate
with:
query: |
Expand All @@ -74,6 +74,6 @@ jobs:

- name: Upload result to GitHub Code Scanning
if: ${{ fromJSON(steps.isPrivate.outputs.data).repository.isPrivate == false }}
uses: github/codeql-action/upload-sarif@v2
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: snyk.sarif
6 changes: 3 additions & 3 deletions .github/workflows/php-security.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,15 +43,15 @@ jobs:
tools: composer:${{ inputs.composer-version }}

- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/php@master
uses: snyk/actions/php@v1.0.0
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
SEVERITY_THRESHOLD: ${{ inputs.severity-threshold && format('--severity-threshold={0}', inputs.severity-threshold) || '' }}
with:
args: ${{ inputs.working-directory}}/ --sarif-file-output=snyk.sarif $SEVERITY_THRESHOLD

- name: isPrivate
uses: octokit/graphql-action@v2.x
uses: octokit/graphql-action@v3.0.0
id: isPrivate
with:
query: |
Expand All @@ -67,6 +67,6 @@ jobs:

- name: Upload result to GitHub Code Scanning
if: ${{ fromJSON(steps.isPrivate.outputs.data).repository.isPrivate == false }}
uses: github/codeql-action/upload-sarif@v2
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: snyk.sarif
52 changes: 26 additions & 26 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -205,13 +205,13 @@ The build and upload-to-s3 steps would look like the following:

```YAML
build:
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v5.0.10
with:
upload-artifact: true
build-command: npm run build:prod

upload-to-s3:
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v5.0.10
with:
environment: nonprod
short-commit: ${{ needs.build-names.outputs.short_sha }}
Expand Down Expand Up @@ -246,15 +246,15 @@ The build and upload-to-s3 steps would have the following inputs:

```YAML
build:
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v5.0.10
with:
upload-artifact: true
build-folder: build
build-folder-path: build/artifacts
build-command: npm run build:prod

upload-to-s3:
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v5.0.10
with:
environment: dev
short-commit: ${{ needs.build-names.outputs.short_sha }}
Expand Down Expand Up @@ -290,7 +290,7 @@ The upload-to-s3 action with a matrix strategy defined:

```YAML
upload-to-s3:
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v5.0.10
strategy:
matrix:
buildName: [
Expand Down Expand Up @@ -352,11 +352,11 @@ IDE integration matches those on the Snyk website.
pull_request:
types:
- closed

jobs:
security:
if: github.event.pull_request.merged == true
uses: dvsa/.github/.github/workflows/java-security.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/java-security.yaml@v5.0.10
with:
java_version: 11
snyk_project: smc-w53
Expand Down Expand Up @@ -493,11 +493,11 @@ Typically, this would run on push so the action result can be used to validate a
pull_request:
types:
- closed

jobs:
security:
if: github.event.pull_request.merged == true
uses: dvsa/.github/.github/workflows/java-security.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/java-security.yaml@v5.0.10
with:
java_version: 11
snyk_project: smc-w53
Expand Down Expand Up @@ -544,7 +544,7 @@ on:

jobs:
unit-test:
uses: dvsa/.github/.github/workflows/java-test.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/java-test.yaml@v5.0.10
with:
config_file_contents: |
environment: development
Expand Down Expand Up @@ -574,18 +574,18 @@ on:

jobs:
security:
uses: dvsa/.github/.github/workflows/php-security.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-security.yml@v5.0.10
secrets:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
if using library version amend
if using library version amend
```YAML
uses: dvsa/.github/.github/workflows/php-security.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-security.yml@v5.0.10
```
to
to

```YAML
uses: dvsa/.github/.github/workflows/php-library-security.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-security.yml@v5.0.10

```

Expand Down Expand Up @@ -613,16 +613,16 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-static.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-static.yml@v5.0.10
```
if using library version amend
if using library version amend
```YAML
uses: dvsa/.github/.github/workflows/php-static.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-static.yml@v5.0.10
```
to
to

```YAML
uses: dvsa/.github/.github/workflows/php-library-static.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-static.yml@v5.0.10

```

Expand Down Expand Up @@ -651,18 +651,18 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-tests.yml@v4.1.1
with:
uses: dvsa/.github/.github/workflows/php-tests.yml@v5.0.10
with:
php_versions: "[\"7.4\",\"8.0\"]"
```
if using library version amend
if using library version amend
```YAML
uses: dvsa/.github/.github/workflows/php-tests.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-tests.yml@v5.0.10
```
to
to

```YAML
uses: dvsa/.github/.github/workflows/php-library-tests.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-tests.yml@v5.0.10

```

Expand Down
4 changes: 2 additions & 2 deletions workflow-templates/check-pr-title.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,8 +19,8 @@ jobs:
env:
TITLE: ${{ github.event.pull_request.title }}
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
- uses: actions/checkout@v6.0.0
- uses: actions/setup-node@v6.0.0
with:
node-version-file: '.nvmrc'
cache: 'npm'
Expand Down
14 changes: 7 additions & 7 deletions workflow-templates/ci.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,13 +5,13 @@ on:

jobs:
lint:
uses: dvsa/.github/.github/workflows/nodejs-lint.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-lint.yaml@v5.0.10

test:
uses: dvsa/.github/.github/workflows/nodejs-test.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-test.yaml@v5.0.10

security:
uses: dvsa/.github/.github/workflows/nodejs-security.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-security.yaml@v5.0.10
secrets:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

Expand All @@ -24,7 +24,7 @@ jobs:
env:
BRANCH_NAME: ${{ github.ref_name }}
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6.0.0
- name: Set short sha output
id: sha
run: echo "SHORT_SHA=$(git rev-parse --short=11 HEAD)" >> $GITHUB_OUTPUT
Expand All @@ -35,7 +35,7 @@ jobs:
echo "NAME=${PRETTY_BRANCH_NAME}" >> $GITHUB_OUTPUT

build:
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-build.yaml@v5.0.10
needs: [ build-names ]
with:
upload-artifact: ${{ github.ref_name == 'main' }}
Expand All @@ -44,7 +44,7 @@ jobs:

upload-to-s3:
if: ${{ github.ref_name == github.event.repository.default_branch }}
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/upload-to-s3.yaml@v5.0.10
needs: [ lint, test, build, build-names ]
with:
environment: dev
Expand All @@ -61,7 +61,7 @@ jobs:

update-lambda-code:
if: ${{ github.ref_name == github.event.repository.default_branch }}
uses: dvsa/.github/.github/workflows/update-lambda-function.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/update-lambda-function.yaml@v5.0.10
needs: [ build-names, build, upload-s3 ]
with:
environment: dev
Expand Down
2 changes: 1 addition & 1 deletion workflow-templates/npm-publish.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ on:

jobs:
publish:
uses: dvsa/.github/.github/workflows/nodejs-publish.yaml@v4.1.1
uses: dvsa/.github/.github/workflows/nodejs-publish.yaml@v5.0.10
with:
node-version: '18.x'
download-artifact: true
Expand Down
2 changes: 1 addition & 1 deletion workflow-templates/php-library-security.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ on:

jobs:
security:
uses: dvsa/.github/.github/workflows/php-library-security.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-security.yml@v5.0.10
with:
php-versions: "[\"7.4\",\"8.0\"]"
secrets:
Expand Down
2 changes: 1 addition & 1 deletion workflow-templates/php-library-static.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,5 +10,5 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-library-static.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-static.yml@v5.0.10

2 changes: 1 addition & 1 deletion workflow-templates/php-library-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,6 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-library-tests.yml@v4.1.1
uses: dvsa/.github/.github/workflows/php-library-tests.yml@v5.0.10
with:
php-versions: "[\"7.4\",\"8.0\"]"
2 changes: 1 addition & 1 deletion workflow-templates/php-security.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,6 @@ on:

jobs:
security:
uses: dvsa/.github/.github/workflows/php-security.yml@v5.0.6
uses: dvsa/.github/.github/workflows/php-security.yml@v5.0.10
secrets:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
2 changes: 1 addition & 1 deletion workflow-templates/php-static.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,5 +10,5 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-static.yml@v5.0.6
uses: dvsa/.github/.github/workflows/php-static.yml@v5.0.10

2 changes: 1 addition & 1 deletion workflow-templates/php-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,6 @@ on:

jobs:
static:
uses: dvsa/.github/.github/workflows/php-tests.yml@v5.0.6
uses: dvsa/.github/.github/workflows/php-tests.yml@v5.0.10
with:
php-versions: "[\"8.2\","8.3","8.4"]"
4 changes: 2 additions & 2 deletions workflow-templates/snyk-monitor.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,9 +13,9 @@ jobs:
runs-on: ubuntu-latest
timeout-minutes: 10
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v6.0.0
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/node@master
uses: snyk/actions/node@v1.0.0
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
Expand Down
2 changes: 1 addition & 1 deletion workflow-templates/terraform-static-full.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,4 @@ on:

jobs:
terraform-static:
uses: dvsa/.github/.github/workflows/terraform-static-full.yaml@v5.0.0
uses: dvsa/.github/.github/workflows/terraform-static-full.yaml@v5.0.10
2 changes: 1 addition & 1 deletion workflow-templates/terraform-static.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,4 +5,4 @@ on:

jobs:
terraform-static:
uses: dvsa/.github/.github/workflows/terraform-static.yaml@v5.0.0
uses: dvsa/.github/.github/workflows/terraform-static.yaml@v5.0.10
Loading