Ab#55122 - Limit actions to scanned forks in the keyfactor org (#89)

* Forked all external repos to keyfactor and tags created. * Documented in ab#55122 * use v3
Keyfactor · Jul 3, 2024 · 50f1567 · 50f1567
1 parent 48414f9
commit 50f1567
Show file tree

Hide file tree

Showing 17 changed files with 61 additions and 64 deletions.
diff --git a/.github/workflows/assign-env-from-json.yml b/.github/workflows/assign-env-from-json.yml
@@ -31,13 +31,13 @@ jobs:
     name: Set workflow variables from integration-manifest.json
     steps:
       - name: checkout-json-file
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           path: src
 
       - name: checkout-action
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
         with:
           repository: fiddlermikey/assign-from-json
           path: tools

diff --git a/.github/workflows/container-build-and-release.yml b/.github/workflows/container-build-and-release.yml
@@ -67,15 +67,15 @@ jobs:
           echo "IMAGE_NAME=${GITHUB_REPOSITORY,,}" | tee -a ${GITHUB_ENV}
 
       # Checkout code
-      # https://github.com/actions/checkout
+      # https://github.com/keyfactor/checkout
       - name: Checkout code
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: keyfactor/checkout@v4
 
       # Extract metadata (tags, labels) for Docker
       # https://github.com/docker/metadata-action
       - name: Extract Docker metadata
         id: meta
-        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+        uses: keyfactor/metadata-action@v5.5.1
         with:
           images: ${{ env.IMAGE_NAME }}
           tags: |
@@ -84,18 +84,18 @@ jobs:
       # Set up QEMU
       # https://github.com/docker/setup-qemu-action
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+        uses: keyfactor/setup-qemu-action@v3.0.0
 
       # Set up BuildKit Docker container builder to be able to build
       # multi-platform images and export cache
       # https://github.com/docker/setup-buildx-action
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: keyfactor/setup-buildx-action@v3.3.0
 
       # Login to Docker registry
       # https://github.com/docker/login-action
       - name: Log into registry ${{ env.REGISTRY }}
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        uses: keyfactor/login-action@v3.2.0
         with:
           # registry: ${{ env.REGISTRY }} # Remove for dockerhub
           username: ${{ secrets.docker-user }}
@@ -105,7 +105,7 @@ jobs:
       # https://github.com/docker/build-push-action
       - name: Build and push Docker image
         id: build
-        uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0
+        uses: keyfactor/build-push-action@v6.0.1
         with:
           context: .
           platforms: ${{ matrix.platform }}
@@ -122,7 +122,7 @@ jobs:
 
       # Upload digest
       - name: Upload digest
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: keyfactor/upload-artifact@v4
         with:
           name: digests
           path: /tmp/digests/*
@@ -141,7 +141,7 @@ jobs:
       # Download digests
       # https://github.com/actions/download-artifact
       - name: Download digests
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: keyfactor/download-artifact@v4.1.7
         with:
           name: digests
           path: /tmp/digests
@@ -150,13 +150,13 @@ jobs:
       # multi-platform images and export cache
       # https://github.com/docker/setup-buildx-action
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: keyfactor/setup-buildx-action@v3.3.0
 
       # Extract metadata (tags, labels) for Docker
       # https://github.com/docker/metadata-action
       - name: Extract Docker metadata
         id: meta
-        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+        uses: keyfactor/metadata-action@v5.5.1
         with:
           images: ${{ env.IMAGE_NAME }}
           tags: |
@@ -165,7 +165,7 @@ jobs:
       # Login to Docker registry
       # https://github.com/docker/login-action
       - name: Log into registry ${{ env.REGISTRY }}
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        uses: keyfactor/login-action@v3.2.0
         with:
           # registry: ${{ env.REGISTRY }} # Remove for dockerhub
           username: ${{ secrets.docker-user }}

diff --git a/.github/workflows/dotnet-build-and-release.yml b/.github/workflows/dotnet-build-and-release.yml
@@ -29,17 +29,17 @@ jobs:
   dotnet-build-and-release:
     runs-on: windows-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: keyfactor/checkout@v4
 
       - name: Setup dotnet
-        uses: actions/setup-dotnet@v4
+        uses: keyfactor/setup-dotnet@v4
         with:
           dotnet-version: |
             3.1.x
             6.0.x
 
       - name: Setup MSBuild
-        uses: microsoft/setup-msbuild@v1
+        uses: keyfactor/setup-msbuild@v2
 
       - name: Setup build environment
         id: setup_env
@@ -104,7 +104,7 @@ jobs:
       - name: Upload Release Asset (x64)
         if: success() && env.CREATE_RELEASE == 'True'
         id: upload-release-asset-x64
-        uses: keyfactor/upload-release-asset@v1
+        uses: keyfactor/upload-release-assets@v1
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:

diff --git a/.github/workflows/generate-readme.yml b/.github/workflows/generate-readme.yml
@@ -15,4 +15,3 @@ jobs:
       - uses: Keyfactor/doctool@main
         with:
           token: ${{ secrets.token }}
-
diff --git a/.github/workflows/github-release.yml b/.github/workflows/github-release.yml
@@ -36,7 +36,7 @@ jobs:
 
     steps:
       - name: Check out the code
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
 
       - name: Display base.ref from Pull Request
         if: github.event_name == 'pull_request'
@@ -139,7 +139,7 @@ jobs:
       - name: Set semver info
         id: set-semver-info
         if:  needs.create-github-release-workflow.outputs.LATEST_TAG != ''        
-        uses: fiddlermikey/action-bump-semver@main
+        uses: keyfactor/action-bump-semver@v1
         with:
           current_version: ${{ needs.create-github-release-workflow.outputs.LATEST_TAG}}
           level: ${{ needs.create-github-release-workflow.outputs.INC_LEVEL}}

diff --git a/.github/workflows/go-build-and-release.yml b/.github/workflows/go-build-and-release.yml
@@ -23,11 +23,11 @@ jobs:
   run-goreleaser:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: keyfactor/checkout@v4
         with:
           # Allow goreleaser to access older tag information.
           fetch-depth: 0
-      - uses: actions/setup-go@v4
+      - uses: keyfactor/setup-go@v5.0.1
         with:
           go-version-file: 'go.mod'
           cache: true
@@ -41,13 +41,13 @@ jobs:
             echo "VERSION=0.0.0" | tee -a "$GITHUB_ENV"  | tee -a "$GITHUB_STEP_SUMMARY"
           fi
       - name: Import GPG key
-        uses: crazy-max/ghaction-import-gpg@v6
+        uses: keyfactor/ghaction-import-gpg@v6.1.0
         id: import_gpg
         with:
           gpg_private_key: ${{ secrets.gpg_key }}
           passphrase: ${{ secrets.gpg_pass }}
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@v5
+        uses: keyfactor/goreleaser-action@v6.0.0
         with:
           args: ${{ env.GO_ARGS }}
         env:

diff --git a/.github/workflows/helm-build-and-release.yml b/.github/workflows/helm-build-and-release.yml
@@ -64,15 +64,15 @@ jobs:
           echo "IMAGE_NAME=${GITHUB_REPOSITORY,,}" >>${GITHUB_ENV}
 
       # Checkout code
-      # https://github.com/actions/checkout
+      # https://github.com/keyfactor/checkout
       - name: Checkout code
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: keyfactor/checkout@v4
 
       # Extract metadata (tags, labels) for Docker
       # https://github.com/docker/metadata-action
       - name: Extract Docker metadata
         id: meta
-        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+        uses: keyfactor/metadata-action@v5.5.1
         with:
           images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} 
           tags: |
@@ -81,18 +81,18 @@ jobs:
       # Set up QEMU
       # https://github.com/docker/setup-qemu-action
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+        uses: keyfactor/setup-qemu-action@v3.0.0
 
       # Set up BuildKit Docker container builder to be able to build
       # multi-platform images and export cache
       # https://github.com/docker/setup-buildx-action
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: keyfactor/setup-buildx-action@v3.3.0
 
       # Login to Docker registry
       # https://github.com/docker/login-action
       - name: Log into registry ${{ env.REGISTRY }}
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        uses: keyfactor/login-action@v3.2.0
         with:
           # registry: ${{ env.REGISTRY }} # Remove for dockerhub
           username: ${{ secrets.DOCKER_USER }}
@@ -102,7 +102,7 @@ jobs:
       # https://github.com/docker/build-push-action
       - name: Build and push Docker image
         id: build
-        uses: docker/build-push-action@0565240e2d4ab88bba5387d719585280857ece09 # v5.0.0
+        uses: keyfactor/build-push-action@v6.0.1
         with:
           context: .
           platforms: ${{ matrix.platform }}
@@ -119,7 +119,7 @@ jobs:
 
       # Upload digest
       - name: Upload digest
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: keyfactor/upload-artifact@v4
         with:
           name: digests
           path: /tmp/digests/*
@@ -138,7 +138,7 @@ jobs:
       # Download digests
       # https://github.com/actions/download-artifact
       - name: Download digests
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: keyfactor/download-artifact@v4.1.7
         with:
           name: digests
           path: /tmp/digests
@@ -147,13 +147,13 @@ jobs:
       # multi-platform images and export cache
       # https://github.com/docker/setup-buildx-action
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: keyfactor/setup-buildx-action@v3.3.0
 
       # Extract metadata (tags, labels) for Docker
       # https://github.com/docker/metadata-action
       - name: Extract Docker metadata
         id: meta
-        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+        uses: keyfactor/metadata-action@v5.5.1
         with:
           images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
           tags: |
@@ -162,7 +162,7 @@ jobs:
       # Login to Docker registry
       # https://github.com/docker/login-action
       - name: Log into registry ${{ env.REGISTRY }}
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        uses: keyfactor/login-action@v3.2.0
         with:
           registry: ${{ env.REGISTRY }}
           username: ${{ github.actor }}
@@ -191,15 +191,15 @@ jobs:
           echo "IMAGE_NAME=${GITHUB_REPOSITORY,,}" >>${GITHUB_ENV}
 
       # Checkout code
-      # https://github.com/actions/checkout
+      # https://github.com/keyfactor/checkout
       - name: Checkout code
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: keyfactor/checkout@v4
 
       # Extract metadata (tags, labels) to use in Helm chart
       # https://github.com/docker/metadata-action
       - name: Extract Docker metadata
         id: meta
-        uses: docker/metadata-action@96383f45573cb7f253c731d3b3ab81c87ef81934 # v5.0.0
+        uses: keyfactor/metadata-action@v5.5.1
         with:
           images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
 
@@ -218,7 +218,7 @@ jobs:
       # Setup Helm
       # https://github.com/Azure/setup-helm
       - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5
+        uses: keyfactor/setup-helm@v4.2.0
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
 
@@ -231,7 +231,7 @@ jobs:
       # Build and release Helm chart to GitHub Pages
       # https://github.com/helm/chart-releaser-action
       - name: Run chart-releaser
-        uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
+        uses: keyfactor/chart-releaser-action@v1.6.0
         env:
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
         with:

diff --git a/.github/workflows/keyfactor-sign-files.yml b/.github/workflows/keyfactor-sign-files.yml
@@ -42,15 +42,15 @@ jobs:
           }
 
       - name: find latest tag
-        uses: oprypin/find-latest-tag@v1
+        uses: keyfactor/find-latest-tag@v1
         with:
           repository: ${{ github.repository_owner }}/${{ inputs.targetRepo }}  
           releases-only: true  
           token: ${{ secrets.token }}
         id: latestReleaseTag  
 
       - name: Download Release Asset
-        uses: robinraju/release-downloader@v1.4
+        uses: keyfactor/release-downloader@v1.4
         with:
           repository: "${{ github.repository_owner }}/${{ inputs.targetRepo }}"
           token: ${{ secrets.token }}
@@ -85,7 +85,7 @@ jobs:
       - name: Upload Release Asset (x64)
         if: success()
         id: upload-release-asset
-        uses: ncipollo/release-action@v1
+        uses: keyfactor/release-action@v1
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:

diff --git a/.github/workflows/kf-configure-repo.yml b/.github/workflows/kf-configure-repo.yml
@@ -24,7 +24,7 @@ jobs:
     name: Updating repository settings
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
         with:
           token: ${{ secrets.token}}
       - name: Update topic from manifest:integration_type
@@ -47,7 +47,7 @@ jobs:
     name: Configure branch protection
     steps:
     - name: Checkout tools repo
-      uses: actions/checkout@v4
+      uses: keyfactor/checkout@v4
       with:
         repository: keyfactor/action-set-branch-protection
         path: my-tools

diff --git a/.github/workflows/kf-delete-prereleases.yml b/.github/workflows/kf-delete-prereleases.yml
@@ -13,7 +13,7 @@ jobs:
     name: Deleting prereleases
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
         with:
           token: ${{ secrets.token}}
       - name: Run delete-prereleases action

diff --git a/.github/workflows/kf-update-description.yml b/.github/workflows/kf-update-description.yml
@@ -12,7 +12,7 @@ jobs:
     name: A CI job to read the description from integration-manifest.json
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: keyfactor/checkout@v4
         with:
           repo-token: ${{ secrets.token}}
       - name: Update description from integration-manifest.json
Original file line number	Diff line number	Diff line change
Expand Up		@@ -15,4 +15,3 @@ jobs:
		- uses: Keyfactor/doctool@main
		with:
		token: ${{ secrets.token }}