diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 3e23b5ad..999c5578 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -34,7 +34,7 @@ jobs: contents: read actions: read needs: prepare - uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.6.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.10.0 with: run-scripts: "install-deps, style, nx-build-skip-cache, nx-test-skip-cache" node-version: "16.20.0" diff --git a/.github/workflows/rc-publish.yml b/.github/workflows/rc-publish.yml index fb57ceab..2080f2b2 100644 --- a/.github/workflows/rc-publish.yml +++ b/.github/workflows/rc-publish.yml @@ -68,7 +68,7 @@ jobs: contents: read actions: read needs: prepare - uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.6.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.10.0 with: run-scripts: "install-deps, style, nx-build-skip-cache, nx-test-skip-cache" node-version: "16.20.0" @@ -118,14 +118,14 @@ jobs: echo "path=${temp_dir}" >>"${GITHUB_OUTPUT}" - name: Download tarball - uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@934435652996c02a6317092984312602dfaf2a21 # main + uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@41733f74c025cc6d156547121989dd50fbc92364 # main with: name: ${{ needs.provenance.outputs.package-download-name }} path: "${{ steps.temp-dir.outputs.path }}/${{ needs.provenance.outputs.package-name }}" sha256: ${{ needs.provenance.outputs.package-download-sha256 }} - name: Download provenance - uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@0779f7bec68e2bf54a7b0a32bf4763f25ab29702 # v1.6.0 + uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@41733f74c025cc6d156547121989dd50fbc92364 # v2.0.0.pre.rc.0 with: name: ${{ needs.provenance.outputs.provenance-download-name }} path: "${{ steps.temp-dir.outputs.path }}" diff --git a/.github/workflows/stable-publish.yml b/.github/workflows/stable-publish.yml index f8805088..2dc4cbca 100644 --- a/.github/workflows/stable-publish.yml +++ b/.github/workflows/stable-publish.yml @@ -71,7 +71,7 @@ jobs: contents: read actions: read needs: prepare - uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.6.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/builder_nodejs_slsa3.yml@v1.10.0 with: run-scripts: "install-deps, style, nx-build-skip-cache, nx-test-skip-cache" node-version: "16.20.0" @@ -122,14 +122,14 @@ jobs: echo "path=${temp_dir}" >>"${GITHUB_OUTPUT}" - name: Download tarball - uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@934435652996c02a6317092984312602dfaf2a21 # main + uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@41733f74c025cc6d156547121989dd50fbc92364 # main with: name: ${{ needs.provenance.outputs.package-download-name }} path: "${{ steps.temp-dir.outputs.path }}/${{ needs.provenance.outputs.package-name }}" sha256: ${{ needs.provenance.outputs.package-download-sha256 }} - name: Download provenance - uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@0779f7bec68e2bf54a7b0a32bf4763f25ab29702 # v1.6.0 + uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@41733f74c025cc6d156547121989dd50fbc92364 # v2.0.0.pre.rc.0 with: name: ${{ needs.provenance.outputs.provenance-download-name }} path: "${{ steps.temp-dir.outputs.path }}"