github.com/anchore/syft@v1.38.2/.github/workflows/update-bootstrap-tools.yml (about) 1 name: PR for latest versions of tools 2 on: 3 schedule: 4 - cron: "0 8 * * *" # 3 AM EST 5 6 workflow_dispatch: 7 8 permissions: 9 contents: read 10 11 jobs: 12 update-bootstrap-tools: 13 runs-on: ubuntu-latest 14 if: github.repository == 'anchore/syft' # only run for main repo 15 steps: 16 - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 #v6.0.1 17 with: 18 persist-credentials: false 19 20 - name: Bootstrap environment 21 uses: ./.github/actions/bootstrap 22 with: 23 bootstrap-apt-packages: "" 24 go-dependencies: false 25 26 - name: "Update tool versions" 27 id: latest-versions 28 run: | 29 make update-tools 30 make list-tools 31 32 export NO_COLOR=1 33 delimiter="$(openssl rand -hex 8)" 34 35 { 36 echo "status<<${delimiter}" 37 make list-tool-updates 38 echo "${delimiter}" 39 } >> $GITHUB_OUTPUT 40 41 { 42 echo "### Tool version status" 43 echo "\`\`\`" 44 make list-tool-updates 45 echo "\`\`\`" 46 } >> $GITHUB_STEP_SUMMARY 47 48 - uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf #v2.2.1 49 id: generate-token 50 with: 51 app-id: ${{ secrets.TOKEN_APP_ID }} 52 private-key: ${{ secrets.TOKEN_APP_PRIVATE_KEY }} 53 54 - uses: peter-evans/create-pull-request@22a9089034f40e5a961c8808d113e2c98fb63676 #v7.0.11 55 with: 56 signoff: true 57 delete-branch: true 58 branch: auto/latest-tools 59 labels: dependencies 60 commit-message: 'chore(deps): update tools to latest versions' 61 title: 'chore(deps): update tools to latest versions' 62 body: | 63 ``` 64 ${{ steps.latest-versions.outputs.status }} 65 ``` 66 This is an auto-generated pull request to update all of the tools to the latest versions. 67 token: ${{ steps.generate-token.outputs.token }}