From c9a7f2487c29bf87859854f367715a7ea0427c35 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 11:47:52 +0000 Subject: [PATCH 1/6] Bump actions/checkout from 3 to 4 Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .../continuous-integration-workflow.yml | 20 +++++++++---------- .github/workflows/deploy-docs.yml | 2 +- .github/workflows/pr-build-workflow.yml | 2 +- .github/workflows/release-scheduler.yml | 2 +- .../update-scheduled-release-version.yml | 2 +- 5 files changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/continuous-integration-workflow.yml b/.github/workflows/continuous-integration-workflow.yml index afc6c186d3..e27b4462a6 100644 --- a/.github/workflows/continuous-integration-workflow.yml +++ b/.github/workflows/continuous-integration-workflow.yml @@ -32,7 +32,7 @@ jobs: project_version: ${{ steps.continue.outputs.project_version }} samples_branch: ${{ steps.continue.outputs.samples_branch }} steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - id: continue name: Determine if should continue run: | @@ -52,7 +52,7 @@ jobs: runs-on: ${{ matrix.os }} if: needs.prerequisites.outputs.runjobs steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up JDK 17 uses: actions/setup-java@v3 with: @@ -82,7 +82,7 @@ jobs: runs-on: ubuntu-latest if: needs.prerequisites.outputs.runjobs steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -100,7 +100,7 @@ jobs: runs-on: ubuntu-latest if: needs.prerequisites.outputs.runjobs steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -125,7 +125,7 @@ jobs: runs-on: ubuntu-latest if: needs.prerequisites.outputs.runjobs steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -142,7 +142,7 @@ jobs: needs: [build_jdk_17, snapshot_tests, check_samples, check_tangles] runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -166,7 +166,7 @@ jobs: needs: [build_jdk_17, snapshot_tests, check_samples, check_tangles] runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -187,7 +187,7 @@ jobs: needs: [build_jdk_17, snapshot_tests, check_samples, check_tangles] runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: @@ -217,7 +217,7 @@ jobs: TOKEN: ${{ github.token }} VERSION: ${{ needs.prerequisites.outputs.project_version }} steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 with: token: ${{ secrets.GH_ACTIONS_REPO_TOKEN }} - name: Set up gradle @@ -298,7 +298,7 @@ jobs: TOKEN: ${{ github.token }} VERSION: ${{ needs.prerequisites.outputs.project_version }} steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: diff --git a/.github/workflows/deploy-docs.yml b/.github/workflows/deploy-docs.yml index 24af311b5b..25381d0f82 100644 --- a/.github/workflows/deploy-docs.yml +++ b/.github/workflows/deploy-docs.yml @@ -17,7 +17,7 @@ jobs: if: github.repository_owner == 'spring-projects' steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: ref: docs-build fetch-depth: 1 diff --git a/.github/workflows/pr-build-workflow.yml b/.github/workflows/pr-build-workflow.yml index a345115c45..736beb72ea 100644 --- a/.github/workflows/pr-build-workflow.yml +++ b/.github/workflows/pr-build-workflow.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.repository == 'spring-projects/spring-security' }} steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up gradle uses: spring-io/spring-gradle-build-action@v1 with: diff --git a/.github/workflows/release-scheduler.yml b/.github/workflows/release-scheduler.yml index c3f14c9f0d..c58ee33e9c 100644 --- a/.github/workflows/release-scheduler.yml +++ b/.github/workflows/release-scheduler.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: fetch-depth: 1 - name: Dispatch diff --git a/.github/workflows/update-scheduled-release-version.yml b/.github/workflows/update-scheduled-release-version.yml index 7a1f40d43c..892194fad9 100644 --- a/.github/workflows/update-scheduled-release-version.yml +++ b/.github/workflows/update-scheduled-release-version.yml @@ -23,7 +23,7 @@ jobs: steps: - id: checkout-source name: Checkout Source Code - uses: actions/checkout@v3 + uses: actions/checkout@v4 with: token: ${{ secrets.GH_ACTIONS_REPO_TOKEN }} - name: Set up gradle From 42432cc3de399221327c354d8c7dfebae303495e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 11:47:45 +0000 Subject: [PATCH 2/6] Bump slackapi/slack-github-action from 1.19.0 to 1.24.0 Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) from 1.19.0 to 1.24.0. - [Release notes](https://github.com/slackapi/slack-github-action/releases) - [Commits](https://github.com/slackapi/slack-github-action/compare/v1.19.0...v1.24.0) --- updated-dependencies: - dependency-name: slackapi/slack-github-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/continuous-integration-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/continuous-integration-workflow.yml b/.github/workflows/continuous-integration-workflow.yml index e27b4462a6..d813d3fb69 100644 --- a/.github/workflows/continuous-integration-workflow.yml +++ b/.github/workflows/continuous-integration-workflow.yml @@ -254,7 +254,7 @@ jobs: ./gradlew createGitHubRelease -PnextVersion=$VERSION -Pbranch=$BRANCH -PcreateRelease=true -PgitHubAccessToken=$TOKEN - name: Announce Release on Slack id: spring-security-announcing - uses: slackapi/slack-github-action@v1.19.0 + uses: slackapi/slack-github-action@v1.24.0 with: payload: | { From 83585125ff0b8c687f45c57147da1d9fbd1f5b48 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 11:47:39 +0000 Subject: [PATCH 3/6] Bump spring-io/spring-gradle-build-action from 1 to 2 Bumps [spring-io/spring-gradle-build-action](https://github.com/spring-io/spring-gradle-build-action) from 1 to 2. - [Commits](https://github.com/spring-io/spring-gradle-build-action/compare/v1...v2) --- updated-dependencies: - dependency-name: spring-io/spring-gradle-build-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .../continuous-integration-workflow.yml | 16 ++++++++-------- .github/workflows/pr-build-workflow.yml | 2 +- .../update-scheduled-release-version.yml | 2 +- 3 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/continuous-integration-workflow.yml b/.github/workflows/continuous-integration-workflow.yml index d813d3fb69..15332f6101 100644 --- a/.github/workflows/continuous-integration-workflow.yml +++ b/.github/workflows/continuous-integration-workflow.yml @@ -84,7 +84,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: ${{ matrix.java-version }} distribution: 'temurin' @@ -102,7 +102,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -127,7 +127,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -144,7 +144,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -168,7 +168,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -189,7 +189,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -221,7 +221,7 @@ jobs: with: token: ${{ secrets.GH_ACTIONS_REPO_TOKEN }} - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' @@ -300,7 +300,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' diff --git a/.github/workflows/pr-build-workflow.yml b/.github/workflows/pr-build-workflow.yml index 736beb72ea..ad9487782b 100644 --- a/.github/workflows/pr-build-workflow.yml +++ b/.github/workflows/pr-build-workflow.yml @@ -18,7 +18,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' diff --git a/.github/workflows/update-scheduled-release-version.yml b/.github/workflows/update-scheduled-release-version.yml index 892194fad9..85dd5fcaca 100644 --- a/.github/workflows/update-scheduled-release-version.yml +++ b/.github/workflows/update-scheduled-release-version.yml @@ -27,7 +27,7 @@ jobs: with: token: ${{ secrets.GH_ACTIONS_REPO_TOKEN }} - name: Set up gradle - uses: spring-io/spring-gradle-build-action@v1 + uses: spring-io/spring-gradle-build-action@v2 with: java-version: '17' distribution: 'temurin' From 3c514bd747932e094863b570c578de3ce5fae4b0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 12:04:25 +0000 Subject: [PATCH 4/6] Bump actions/setup-java from 3 to 4 Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3 to 4. - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](https://github.com/actions/setup-java/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-java dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/continuous-integration-workflow.yml | 2 +- .github/workflows/gradle-wrapper-upgrade-execution.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/continuous-integration-workflow.yml b/.github/workflows/continuous-integration-workflow.yml index 15332f6101..39a4dfbfc9 100644 --- a/.github/workflows/continuous-integration-workflow.yml +++ b/.github/workflows/continuous-integration-workflow.yml @@ -54,7 +54,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Set up JDK 17 - uses: actions/setup-java@v3 + uses: actions/setup-java@v4 with: java-version: '17' distribution: 'temurin' diff --git a/.github/workflows/gradle-wrapper-upgrade-execution.yml b/.github/workflows/gradle-wrapper-upgrade-execution.yml index dcb48ab942..2cbc750d89 100644 --- a/.github/workflows/gradle-wrapper-upgrade-execution.yml +++ b/.github/workflows/gradle-wrapper-upgrade-execution.yml @@ -20,7 +20,7 @@ jobs: - name: Checkout uses: actions/checkout@v4 - name: Set up JDK 17 - uses: actions/setup-java@v3 + uses: actions/setup-java@v4 with: java-version: '17' distribution: 'temurin' From 6bede4cf7add91da9c8892d1baea17cc9f08d7d5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 11:47:33 +0000 Subject: [PATCH 5/6] Bump org.springframework:spring-framework-bom from 6.1.1 to 6.1.2 Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.1.1 to 6.1.2. - [Release notes](https://github.com/spring-projects/spring-framework/releases) - [Commits](https://github.com/spring-projects/spring-framework/compare/v6.1.1...v6.1.2) --- updated-dependencies: - dependency-name: org.springframework:spring-framework-bom dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- gradle/libs.versions.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml index d061ebe342..36c49cca0f 100644 --- a/gradle/libs.versions.toml +++ b/gradle/libs.versions.toml @@ -13,7 +13,7 @@ org-jetbrains-kotlin = "1.9.21" org-jetbrains-kotlinx = "1.7.3" org-mockito = "5.5.0" org-opensaml = "4.3.0" -org-springframework = "6.1.1" +org-springframework = "6.1.2" [libraries] ch-qos-logback-logback-classic = "ch.qos.logback:logback-classic:1.4.14" From dce87beb072bf6e4fac0d4db5cede719bbdbe7f7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 14 Dec 2023 11:47:28 +0000 Subject: [PATCH 6/6] Bump sjohnr/slack-workflow-status from 1.pre.beta to 1.1.0 Bumps [sjohnr/slack-workflow-status](https://github.com/sjohnr/slack-workflow-status) from 1.pre.beta to 1.1.0. - [Commits](https://github.com/sjohnr/slack-workflow-status/compare/v1-beta...v1.1.0) --- updated-dependencies: - dependency-name: sjohnr/slack-workflow-status dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- .github/workflows/continuous-integration-workflow.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/continuous-integration-workflow.yml b/.github/workflows/continuous-integration-workflow.yml index 39a4dfbfc9..e75a5e9edb 100644 --- a/.github/workflows/continuous-integration-workflow.yml +++ b/.github/workflows/continuous-integration-workflow.yml @@ -317,7 +317,7 @@ jobs: - name: Send Slack message # Workaround while waiting for Gamesight/slack-workflow-status#38 to be fixed # See https://github.com/Gamesight/slack-workflow-status/issues/38 - uses: sjohnr/slack-workflow-status@v1-beta + uses: sjohnr/slack-workflow-status@v1.1.0 with: repo_token: ${{ secrets.GITHUB_TOKEN }} slack_webhook_url: ${{ secrets.SLACK_WEBHOOK_URL }}