gh-action: Updating versions of the GitHub Actions

GeorgeDavis-Ibexlabs · GeorgeDavis-Ibexlabs · commit cc15d5e76530 · 2025-07-17T13:55:27.000-04:00
diff --git a/.github/workflows/build-ci.yml b/.github/workflows/build-ci.yml
@@ -29,11 +29,11 @@ jobs:
     steps:
       # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
       - name: Git Checkout
-        uses: actions/checkout@v4.1.7
+        uses: actions/checkout@v4.2.2
 
       - name: Get changed files
         id: changed-files
-        uses: tj-actions/changed-files@v44.5.7
+        uses: tj-actions/changed-files@v46.0.5
         with:
           files_ignore: |
             .github/**            
@@ -56,25 +56,25 @@ jobs:
 
       - name: Set up Docker Buildx
         if: steps.changed-files.outputs.any_changed == 'true'
-        uses: docker/setup-buildx-action@v3
+        uses: docker/setup-buildx-action@v3.11.1
 
       - name: Log in to Docker Hub
         if: steps.changed-files.outputs.any_changed == 'true'
-        uses: docker/login-action@v3.3.0
+        uses: docker/login-action@v3.4.0
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
 
       - name: Extract metadata (tags, labels) for Docker
         if: steps.changed-files.outputs.any_changed == 'true'
         id: meta
-        uses: docker/metadata-action@v5.5.1
+        uses: docker/metadata-action@v5.7.0
         with:
           images: georgedavisibexlabs/publish-sarif-to-jira
 
       - name: Build Docker image
         if: steps.changed-files.outputs.any_changed == 'true'
-        uses: docker/build-push-action@v6.6.1
+        uses: docker/build-push-action@v6.18.0
         with:
           context: .
           file: Dockerfile
@@ -85,7 +85,7 @@ jobs:
 
       - name: Run Trivy in GitHub SBOM mode and submit results to Dependency Graph
         if: steps.changed-files.outputs.any_changed == 'true'
-        uses: aquasecurity/trivy-action@0.24.0
+        uses: aquasecurity/trivy-action@0.32.0
         with:
           scan-type: "fs"
           format: "github"
@@ -95,22 +95,22 @@ jobs:
 
       - name: Upload trivy SBOM as a Github artifact
         if: steps.changed-files.outputs.any_changed == 'true'
-        uses: actions/upload-artifact@v4.3.6
+        uses: actions/upload-artifact@v4.6.2
         with:
           name: trivy-sbom-report
           path: trivy-dependency-results.sbom.json
           retention-days: 30
 
       - name: Run Trivy Image scanner
-        uses: aquasecurity/trivy-action@0.24.0
+        uses: aquasecurity/trivy-action@0.32.0
         with:
           scan-type: "image"
           image-ref: "georgedavisibexlabs/publish-sarif-to-jira:main"
           limit-severities-for-sarif: true
           trivy-config: .github/config/trivy-sarif.yaml
 
       - name: Upload Trivy Image scan results
-        uses: actions/upload-artifact@v4.3.6
+        uses: actions/upload-artifact@v4.6.2
         with:
           name: trivy-image-scan-results
           path: trivy-image-scan-results.sarif
