diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index e2e16e4..c914ad3 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -17,7 +17,7 @@ jobs: # The reusable workflow fixes the query suite to +security-and-quality org-wide; # build-mode: none analyses the sources directly (no Maven build needed for this # zero-dependency library). - uses: cuioss/cuioss-organization/.github/workflows/reusable-codeql.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-codeql.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 permissions: security-events: write contents: read diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml index 1c15c03..1a9256a 100644 --- a/.github/workflows/dependabot-auto-merge.yml +++ b/.github/workflows/dependabot-auto-merge.yml @@ -8,7 +8,7 @@ permissions: jobs: auto-merge: - uses: cuioss/cuioss-organization/.github/workflows/reusable-dependabot-auto-merge.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-dependabot-auto-merge.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 permissions: contents: write pull-requests: write diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index daf847e..e7cc713 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -9,7 +9,7 @@ permissions: jobs: dependency-review: - uses: cuioss/cuioss-organization/.github/workflows/reusable-dependency-review.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-dependency-review.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 permissions: contents: read pull-requests: write diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index 119e027..a6b8758 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -14,7 +14,7 @@ permissions: jobs: build: - uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-build.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-build.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} OSS_SONATYPE_USERNAME: ${{ secrets.OSS_SONATYPE_USERNAME }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1cfae89..65315e8 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -16,7 +16,7 @@ jobs: permissions: contents: write if: github.event.pull_request.merged == true || github.event_name == 'workflow_dispatch' - uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-release.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-release.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 secrets: RELEASE_APP_ID: ${{ secrets.RELEASE_APP_ID }} RELEASE_APP_PRIVATE_KEY: ${{ secrets.RELEASE_APP_PRIVATE_KEY }} diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index bcb454c..45a1930 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -12,7 +12,7 @@ permissions: jobs: analysis: - uses: cuioss/cuioss-organization/.github/workflows/reusable-scorecards.yml@8b9ec112fdbaf868e0abb45b484096c911adceb9 # v0.10.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-scorecards.yml@ef13a4cc2866081c878187fdc3243243644bb19e # v0.10.1 permissions: security-events: write id-token: write