From 23fb78c2f3f937fee32d2f891b80f4bf439cd1e8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 18 Jul 2024 13:58:14 +0000 Subject: [PATCH 1/2] Bump the github-actions group across 1 directory with 2 updates Bumps the github-actions group with 2 updates in the / directory: [actions/setup-python](https://github.com/actions/setup-python) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/setup-python` from 5.1.0 to 5.1.1 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/82c7e631bb3cdc910f68e0081d67478d79c6982d...39cd14951b08e74b54015e9e001cdefcf80e669f) Updates `docker/build-push-action` from 6.2.0 to 6.4.1 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/15560696de535e4014efeff63c48f16952e52dd1...1ca370b3a9802c92e886402e0dd88098a2533b12) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/.ci.yml | 6 +++--- .github/workflows/release-build.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/.ci.yml b/.github/workflows/.ci.yml index bdd257d..6ff4e73 100644 --- a/.github/workflows/.ci.yml +++ b/.github/workflows/.ci.yml @@ -24,7 +24,7 @@ jobs: sudo apt-get install -y libsasl2-dev python3-dev libldap2-dev libssl-dev - name: Set up Python - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0 + uses: actions/setup-python@39cd14951b08e74b54015e9e001cdefcf80e669f # v5.1.1 with: python-version: "3.12" cache: "pip" @@ -49,7 +49,7 @@ jobs: sudo apt-get install -y libsasl2-dev python3-dev libldap2-dev libssl-dev - name: Set up Python - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0 + uses: actions/setup-python@39cd14951b08e74b54015e9e001cdefcf80e669f # v5.1.1 with: python-version: "3.12" cache: "pip" @@ -89,7 +89,7 @@ jobs: images: ${{ secrets.HARBOR_URL }}/auth-api - name: Build and push Docker image to Harbor - uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6.2.0 + uses: docker/build-push-action@1ca370b3a9802c92e886402e0dd88098a2533b12 # v6.4.1 with: context: . file: ./Dockerfile.prod diff --git a/.github/workflows/release-build.yml b/.github/workflows/release-build.yml index a7d2e15..e211bdd 100644 --- a/.github/workflows/release-build.yml +++ b/.github/workflows/release-build.yml @@ -34,7 +34,7 @@ jobs: latest=false - name: Build and push Docker image to Harbor - uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6.2.0 + uses: docker/build-push-action@1ca370b3a9802c92e886402e0dd88098a2533b12 # v6.4.1 with: context: . file: ./Dockerfile.prod From 0c584ba94036d10832e8ae06d0bf7f2cefdc9dcc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 18 Jul 2024 13:51:42 +0000 Subject: [PATCH 2/2] Bump python from `b7662fc` to `0bd77ae` Bumps python from `b7662fc` to `0bd77ae`. --- updated-dependencies: - dependency-name: python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- Dockerfile.prod | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/Dockerfile b/Dockerfile index 943e98c..26881f8 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.12.4-alpine3.20@sha256:b7662fc33e07f05fb2f579c3634e1e4d2e30c02553397c6c24f775cb360dbc03 +FROM python:3.12.4-alpine3.20@sha256:0bd77ae937dce9037e136ab35f41eaf9e012cfd741fc3c8dd4b3e2b63499f12c WORKDIR /ldap-jwt-auth-run diff --git a/Dockerfile.prod b/Dockerfile.prod index fb32ead..f6e4da6 100644 --- a/Dockerfile.prod +++ b/Dockerfile.prod @@ -1,4 +1,4 @@ -FROM python:3.12.4-alpine3.20@sha256:b7662fc33e07f05fb2f579c3634e1e4d2e30c02553397c6c24f775cb360dbc03 +FROM python:3.12.4-alpine3.20@sha256:0bd77ae937dce9037e136ab35f41eaf9e012cfd741fc3c8dd4b3e2b63499f12c WORKDIR /ldap-jwt-auth-run