From 1d09ff54fd64ec526397c3a74fbc4c97f3eba460 Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 07:36:41 +0000 Subject: [PATCH 1/6] update action-gh-release to version 2.2.0 --- .github/workflows/release.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 48d8a571..8fbbb7a3 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -488,7 +488,7 @@ jobs: tar -czvf threat-dragon-sboms.zip sboms - name: Create release notes - uses: softprops/action-gh-release@v2.1.0 + uses: softprops/action-gh-release@v2.2.0 with: draft: true name: "${releaseVersion:1}" From ebb4082cdd265eb1d0ce71ef8a4324b99e26f797 Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 08:55:21 +0000 Subject: [PATCH 2/6] update setup-buildx-action to version 3.8.0 in workflows --- .github/workflows/pull_request.yaml | 2 +- .github/workflows/push.yaml | 2 +- .github/workflows/release.yaml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml index 0a8f30d9..2d0b5edc 100644 --- a/.github/workflows/pull_request.yaml +++ b/.github/workflows/pull_request.yaml @@ -281,7 +281,7 @@ jobs: - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@v3.7.0 + uses: docker/setup-buildx-action@v3.8.0 with: install: true diff --git a/.github/workflows/push.yaml b/.github/workflows/push.yaml index db9447d4..3721c16c 100644 --- a/.github/workflows/push.yaml +++ b/.github/workflows/push.yaml @@ -172,7 +172,7 @@ jobs: - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@v3.7.0 + uses: docker/setup-buildx-action@v3.8.0 with: install: true diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 8fbbb7a3..3b87a29c 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -354,7 +354,7 @@ jobs: - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@v3.7.0 + uses: docker/setup-buildx-action@v3.8.0 with: install: true From bdd211addfb414f32019fa762f75e5be1d723b70 Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 09:22:42 +0000 Subject: [PATCH 3/6] update purge-deprecated-workflow-runs to version 2.2.0 in workflows --- .github/workflows/housekeeping.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/housekeeping.yaml b/.github/workflows/housekeeping.yaml index 5ee24cfa..d858cce8 100644 --- a/.github/workflows/housekeeping.yaml +++ b/.github/workflows/housekeeping.yaml @@ -26,7 +26,7 @@ jobs: keep_minimum_runs: 10 - name: Delete unused workflows - uses: otto-de/purge-deprecated-workflow-runs@v2.0.3 + uses: otto-de/purge-deprecated-workflow-runs@v2.2.0 with: token: ${{ github.token }} From 47eb4a85c964233f330d4a9db9da50fc92cb8a6f Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 10:36:44 +0000 Subject: [PATCH 4/6] update upload-artifact to version 4.5.0 in workflows --- .github/workflows/pull_request.yaml | 6 +++--- .github/workflows/push.yaml | 18 +++++++++--------- .github/workflows/release-snap.yaml | 2 +- .github/workflows/release-windows.yaml | 2 +- .github/workflows/release.yaml | 14 +++++++------- 5 files changed, 21 insertions(+), 21 deletions(-) diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml index 2d0b5edc..d9d26e8d 100644 --- a/.github/workflows/pull_request.yaml +++ b/.github/workflows/pull_request.yaml @@ -184,7 +184,7 @@ jobs: npm run test:e2e-pr-smokes - name: Upload e2e videos - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: e2e_vids.zip path: td.vue/tests/e2e/videos @@ -224,7 +224,7 @@ jobs: npm run test:e2e-pr - name: Upload e2e videos - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: e2e_vids.zip path: td.vue/tests/e2e/videos @@ -309,7 +309,7 @@ jobs: load: true - name: Upload docker local image - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: ${{ env.IMAGE_NAME }} path: /tmp/${{ env.IMAGE_NAME }}.tar diff --git a/.github/workflows/push.yaml b/.github/workflows/push.yaml index 3721c16c..79c9a986 100644 --- a/.github/workflows/push.yaml +++ b/.github/workflows/push.yaml @@ -54,7 +54,7 @@ jobs: run: npm run make-sbom - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-server path: './td.server/sbom.*' @@ -226,7 +226,7 @@ jobs: IMAGE_ID: ${{ steps.docker_build_amd64.outputs.imageid }} - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-container-image-app path: './boms/*' @@ -340,7 +340,7 @@ jobs: run: npm run test:e2e-ci-smokes - name: Upload e2e videos - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: e2e_vids.zip path: td.vue/tests/e2e/videos @@ -392,7 +392,7 @@ jobs: run: npm run test:e2e-ci - name: Upload e2e videos - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: e2e_vids.zip path: td.vue/tests/e2e/videos @@ -490,7 +490,7 @@ jobs: run: npm run build:desktop -- --windows --publish never - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-windows-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -532,7 +532,7 @@ jobs: run: npm run build:desktop -- --mac --publish never - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-macos-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -579,7 +579,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-linux-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -626,7 +626,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-linux-snap-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -666,7 +666,7 @@ jobs: cp raw/sboms-desktop-linux-snap-site/bom.xml sboms/threat-dragon-desktop-linux-snap-site-bom.xml cp raw/sboms-container-image-app/* sboms/threat-dragon-container-image/app/ - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms path: 'sboms/' diff --git a/.github/workflows/release-snap.yaml b/.github/workflows/release-snap.yaml index 35eab386..6dd20479 100644 --- a/.github/workflows/release-snap.yaml +++ b/.github/workflows/release-snap.yaml @@ -53,7 +53,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-linux-snap-site path: './td.vue/dist-desktop/bundled/.sbom/*' diff --git a/.github/workflows/release-windows.yaml b/.github/workflows/release-windows.yaml index 1a97f60e..b98a398e 100644 --- a/.github/workflows/release-windows.yaml +++ b/.github/workflows/release-windows.yaml @@ -44,7 +44,7 @@ jobs: run: npm run build:desktop -- --windows --publish always - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-windows-site path: './td.vue/dist-desktop/bundled/.sbom/*' diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 3b87a29c..e72f6330 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -86,7 +86,7 @@ jobs: run: npm run make-sbom - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-server path: './td.server/sbom.*' @@ -164,7 +164,7 @@ jobs: run: npm run build:desktop -- --windows --publish always - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-windows-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -227,7 +227,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-macos-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -277,7 +277,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-linux-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -333,7 +333,7 @@ jobs: run: find . -name "*.log" -exec cat '{}' \; -print - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-desktop-linux-snap-site path: './td.vue/dist-desktop/bundled/.sbom/*' @@ -408,7 +408,7 @@ jobs: IMAGE_ID: ${{ steps.docker_build_amd64.outputs.imageid }} - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms-container-image-app path: './boms/*' @@ -456,7 +456,7 @@ jobs: cp raw/sboms-desktop-linux-snap-site/bom.xml sboms/threat-dragon-desktop-linux-snap-site-bom.xml cp raw/sboms-container-image-app/* sboms/threat-dragon-container-image/app/ - name: Save SBOM artifact - uses: actions/upload-artifact@v4.4.0 + uses: actions/upload-artifact@v4.5.0 with: name: sboms path: 'sboms/' From 4ce48cc2a528a7a7cfb4dfab14a0f34fad9a4431 Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 10:43:24 +0000 Subject: [PATCH 5/6] update lychee-action version 2.2.0 in workflows --- .github/workflows/housekeeping.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/housekeeping.yaml b/.github/workflows/housekeeping.yaml index d858cce8..203a8e57 100644 --- a/.github/workflows/housekeeping.yaml +++ b/.github/workflows/housekeeping.yaml @@ -117,7 +117,7 @@ jobs: uses: actions/checkout@v4.2.0 - name: Link Checker - uses: lycheeverse/lychee-action@v2.1.0 + uses: lycheeverse/lychee-action@v2.2.0 with: fail: true env: From 8a752de4799e4735421b990e34bd1ae66b952f28 Mon Sep 17 00:00:00 2001 From: Jon Gadsden Date: Sat, 28 Dec 2024 13:58:02 +0000 Subject: [PATCH 6/6] update systeminformation package to version 5.23.23 --- td.server/package-lock.json | 7 ++++--- td.server/package.json | 2 +- td.vue/package-lock.json | 7 ++++--- td.vue/package.json | 2 +- 4 files changed, 10 insertions(+), 8 deletions(-) diff --git a/td.server/package-lock.json b/td.server/package-lock.json index 4c15ed70..8f307b63 100644 --- a/td.server/package-lock.json +++ b/td.server/package-lock.json @@ -10585,10 +10585,11 @@ } }, "node_modules/systeminformation": { - "version": "5.22.0", - "resolved": "https://registry.npmjs.org/systeminformation/-/systeminformation-5.22.0.tgz", - "integrity": "sha512-oAP80ymt8ssrAzjX8k3frbL7ys6AotqC35oikG6/SG15wBw+tG9nCk4oPaXIhEaAOAZ8XngxUv3ORq2IuR3r4Q==", + "version": "5.23.23", + "resolved": "https://registry.npmjs.org/systeminformation/-/systeminformation-5.23.23.tgz", + "integrity": "sha512-QhEWrMFZnzWjFZ7J65gikIXTrB8U6b7VTQ8pLaF/GUgJaJoUoSuucqalIVj91D/grhRUtXplL6qYwTn1A4FfhQ==", "dev": true, + "license": "MIT", "optional": true, "os": [ "darwin", diff --git a/td.server/package.json b/td.server/package.json index 7a7f0039..20b8a193 100644 --- a/td.server/package.json +++ b/td.server/package.json @@ -93,7 +93,7 @@ "path-to-regexp@<1.0.0": "0.1.12", "postcss@<8.4.31": ">=8.4.31", "send": ">=0.19.0", - "systeminformation@<5.21.8": ">=5.21.8", + "systeminformation": ">=5.23.23", "tough-cookie@<4.1.3": ">=4.1.3", "vm2@<3.9.16": ">=3.9.19", "ws": ">=8.18.0" diff --git a/td.vue/package-lock.json b/td.vue/package-lock.json index efe622a8..3e43b111 100644 --- a/td.vue/package-lock.json +++ b/td.vue/package-lock.json @@ -32948,10 +32948,11 @@ "dev": true }, "node_modules/systeminformation": { - "version": "5.22.0", - "resolved": "https://registry.npmjs.org/systeminformation/-/systeminformation-5.22.0.tgz", - "integrity": "sha512-oAP80ymt8ssrAzjX8k3frbL7ys6AotqC35oikG6/SG15wBw+tG9nCk4oPaXIhEaAOAZ8XngxUv3ORq2IuR3r4Q==", + "version": "5.23.23", + "resolved": "https://registry.npmjs.org/systeminformation/-/systeminformation-5.23.23.tgz", + "integrity": "sha512-QhEWrMFZnzWjFZ7J65gikIXTrB8U6b7VTQ8pLaF/GUgJaJoUoSuucqalIVj91D/grhRUtXplL6qYwTn1A4FfhQ==", "dev": true, + "license": "MIT", "optional": true, "os": [ "darwin", diff --git a/td.vue/package.json b/td.vue/package.json index 535ae999..d0863366 100644 --- a/td.vue/package.json +++ b/td.vue/package.json @@ -172,7 +172,7 @@ "postcss@<8.4.31": ">=8.4.31", "send": ">=0.19.0", "serve-static": ">=1.16.0", - "systeminformation@<5.21.8": ">=5.21.8", + "systeminformation": ">=5.23.23", "tar@>=6.0.0 <6.1.9": ">=6.1.9", "tough-cookie@<4.1.3": ">=4.1.3", "vm2@<3.9.16": ">=3.9.19",