diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 86dec57025..b3a109abbc 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -13,7 +13,7 @@ on: - cron: "15 2 * * *" # Nightly-Build at 2:15 AM UTC # The CI runs on ubuntu-22.04; More info about the installed software is found here: -# https://github.com/actions/virtual-environments/blob/main/images/linux/Ubuntu2004-Readme.md +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md env: # ---- Language Versions ---- diff --git a/.github/workflows/helm-charts-release.yaml b/.github/workflows/helm-charts-release.yaml index 81372d8bf9..b7c3f37876 100644 --- a/.github/workflows/helm-charts-release.yaml +++ b/.github/workflows/helm-charts-release.yaml @@ -2,6 +2,9 @@ # # SPDX-License-Identifier: Apache-2.0 +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + on: release: types: [published] @@ -9,7 +12,7 @@ name: "Publish Helm Charts" jobs: helm: name: Package and Publish - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - uses: actions/checkout@v3 - name: "Install yq" diff --git a/.github/workflows/helm-docs.yaml b/.github/workflows/helm-docs.yaml index 624a41aefe..298408220d 100644 --- a/.github/workflows/helm-docs.yaml +++ b/.github/workflows/helm-docs.yaml @@ -2,15 +2,18 @@ # # SPDX-License-Identifier: Apache-2.0 -name: "Update Helm Docs" +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + +name: "Update Helm Docs" on: push: branches: - main jobs: helm-docs: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 if: github.repository == 'secureCodeBox/secureCodeBox' steps: - uses: actions/checkout@v3 diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml index ce5e28fa8d..9912adabab 100644 --- a/.github/workflows/mega-linter.yml +++ b/.github/workflows/mega-linter.yml @@ -1,4 +1,7 @@ --- +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + # MegaLinter GitHub Action configuration file # More info at https://megalinter.github.io name: MegaLinter @@ -22,7 +25,7 @@ concurrency: jobs: build: name: MegaLinter - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: # Git Checkout - name: Checkout Code diff --git a/.github/workflows/release-build.yaml b/.github/workflows/release-build.yaml index baa091f789..984cde01e5 100644 --- a/.github/workflows/release-build.yaml +++ b/.github/workflows/release-build.yaml @@ -2,6 +2,9 @@ # # SPDX-License-Identifier: Apache-2.0 +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + name: "Release Build" on: release: @@ -18,7 +21,7 @@ jobs: operator: name: "Build | Operator" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -69,7 +72,7 @@ jobs: auto-discovery-kubernetes: name: "AutoDiscovery | Kubernetes" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 @@ -116,7 +119,7 @@ jobs: auto-discovery-kubernetes-pull-secret-extractor: name: "AutoDiscovery | Kubernetes | Pull Secret Extractor" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 @@ -163,7 +166,7 @@ jobs: sdk: name: "Build | SDKs" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -209,7 +212,7 @@ jobs: hooks: name: "Build | Hooks" needs: sdk - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -275,7 +278,7 @@ jobs: dashboardImporter: name: Dashboard Importer - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Checkout uses: actions/checkout@v3 @@ -313,7 +316,7 @@ jobs: parsers: name: "Build | Parsers" needs: sdk - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -402,7 +405,7 @@ jobs: scanners-third-party: name: "Build | Third Party Scanner" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -483,7 +486,7 @@ jobs: scanners-custom: name: "Build | Custom Scanner" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: @@ -544,7 +547,7 @@ jobs: demo-targets: name: "Build | Custom Demo-Targets" - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 continue-on-error: true strategy: matrix: diff --git a/.github/workflows/release-tweet.yaml b/.github/workflows/release-tweet.yaml index 75a669d615..babe90c1d5 100644 --- a/.github/workflows/release-tweet.yaml +++ b/.github/workflows/release-tweet.yaml @@ -2,13 +2,17 @@ # # SPDX-License-Identifier: Apache-2.0 +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + + name: "Tweet about release" on: release: types: [released] jobs: build: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 steps: - name: Tweet uses: twwd/twitter-github-action@v1 diff --git a/.github/workflows/scb-bot.yaml b/.github/workflows/scb-bot.yaml index 636cf439d9..6eb1ca020b 100644 --- a/.github/workflows/scb-bot.yaml +++ b/.github/workflows/scb-bot.yaml @@ -7,13 +7,17 @@ # including mikefarah/yq to fetch local and remote versions of the scanners, # crazy-max/ghaction-import-gpg to import a GPG key, and jq to parse the JSON output of the scanner version API. + +# The CI runs on ubuntu-22.04; More info about the installed software is found here: +# https://github.com/actions/runner-images/blob/main/images/linux/Ubuntu2204-Readme.md + name: Check outdated scanners on: schedule: - cron: "15 9 * * *" # Daily at 9:15 (avoids the beginning of the hour congestion) jobs: version-compare: - runs-on: ubuntu-latest + runs-on: ubuntu-22.04 if: github.repository == 'secureCodeBox/secureCodeBox' strategy: # Keep running other jobs even if one fails