From 848875cbbe3fd66231da0d7455ba06d5a5b6d74a Mon Sep 17 00:00:00 2001 From: chgl Date: Tue, 2 Jul 2024 18:03:04 +0200 Subject: [PATCH] ci: bumped ci (#111) * ci: bumped ci * security-events: write --- .github/workflows/ci.yaml | 7 +++++-- .github/workflows/lint-pr.yaml | 2 +- 2 files changed, 6 insertions(+), 3 deletions(-) diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index d6a3dd6..87a2695 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -12,13 +12,14 @@ permissions: read-all jobs: build: - uses: chgl/.github/.github/workflows/standard-build.yaml@1a7b14d1f494842e3a36f4028f865cc20805e542 # v1.5.40 + uses: chgl/.github/.github/workflows/standard-build.yaml@bf8a522c605a2c530f45c2c55ca1484f08904203 # v1.6.0 permissions: contents: read id-token: write packages: write pull-requests: write actions: read + security-events: write with: # explicitly lowercase the repo name image: "ghcr.io/chgl/magnifhir" @@ -28,7 +29,7 @@ jobs: github-token: ${{ secrets.GITHUB_TOKEN }} lint: - uses: chgl/.github/.github/workflows/standard-lint.yaml@1a7b14d1f494842e3a36f4028f865cc20805e542 # v1.5.40 + uses: chgl/.github/.github/workflows/standard-lint.yaml@bf8a522c605a2c530f45c2c55ca1484f08904203 # v1.6.0 permissions: contents: read pull-requests: write @@ -38,5 +39,7 @@ jobs: with: codeql-languages: '["csharp"]' enable-codeql: true + enable-validate-gradle-wrapper: false + enable-verify-base-image-signature: false secrets: github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/lint-pr.yaml b/.github/workflows/lint-pr.yaml index dac8af3..0c36739 100644 --- a/.github/workflows/lint-pr.yaml +++ b/.github/workflows/lint-pr.yaml @@ -16,6 +16,6 @@ jobs: permissions: pull-requests: write steps: - - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5 + - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5.5.3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}