diff --git a/.github/workflows/build-test-release.yaml b/.github/workflows/build-test-release.yaml index 61404e99..45b440ee 100644 --- a/.github/workflows/build-test-release.yaml +++ b/.github/workflows/build-test-release.yaml @@ -19,18 +19,18 @@ jobs: compliance-copyrights: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 - - uses: apache/skywalking-eyes@v0.6.0 + - uses: actions/checkout@v6 + - uses: apache/skywalking-eyes@v0.8.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} pre-commit: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: - python-version: "3.7" + python-version: "3.14" - run: | bash <(curl https://raw.githubusercontent.com/rhysd/actionlint/v1.6.26/scripts/download-actionlint.bash) - uses: pre-commit/action@v3.0.1 @@ -41,7 +41,7 @@ jobs: - pre-commit runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: false persist-credentials: false @@ -60,7 +60,7 @@ jobs: needs: publish runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - uses: splunk/addonfactory-update-semver@v1 env: GITHUB_TOKEN: ${{ secrets.GH_TOKEN_ADMIN }} diff --git a/.github/workflows/reusable-build-test-release.yml b/.github/workflows/reusable-build-test-release.yml index 032922b1..3773829d 100644 --- a/.github/workflows/reusable-build-test-release.yml +++ b/.github/workflows/reusable-build-test-release.yml @@ -125,7 +125,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.event.inputs.custom-version != '' }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Validate custom version run: | if [[ ! ${{ github.event.inputs.custom-version }} =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then @@ -142,7 +142,7 @@ jobs: check-splunktafunctionaltests-exists: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - run: | if grep -q 'splunktafunctionaltests' poetry.lock; then echo "::warning title=\"splunktafunctionaltests\" should NOT be used for modinput tests::For more details, please see https://splunk.slack.com/archives/C081JT7R69Z/p1754662758743839." @@ -157,7 +157,7 @@ jobs: docs-only: ${{ steps.check.outputs.docs-only }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Fetch all refs run: git fetch --prune --unshallow @@ -216,7 +216,7 @@ jobs: fi - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Determine Test Execution Flags id: determine-test-execution-flags @@ -342,7 +342,7 @@ jobs: pull-requests: read statuses: write steps: - - uses: amannn/action-semantic-pull-request@v5.5.3 + - uses: amannn/action-semantic-pull-request@v6.1.1 with: wip: true validateSingleCommit: true @@ -362,7 +362,7 @@ jobs: contents: write packages: read steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: false persist-credentials: false @@ -391,7 +391,7 @@ jobs: fossa-scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: run fossa analyze and create report id: fossa-scan run: | @@ -406,7 +406,7 @@ jobs: env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} - name: upload THIRDPARTY file - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: THIRDPARTY path: /tmp/THIRDPARTY @@ -421,7 +421,7 @@ jobs: needs: - fossa-scan steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: run fossa test run: | curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/fossas/fossa-cli/master/install-latest.sh | bash @@ -434,15 +434,15 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: REUSE Compliance Check uses: fsfe/reuse-action@v1.1 lint: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - uses: pre-commit/action@v3.0.1 @@ -453,19 +453,19 @@ jobs: steps: - name: Checkout if: github.event_name != 'pull_request' - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: submodules: false fetch-depth: "0" - name: Checkout for PR if: github.event_name == 'pull_request' - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: submodules: false fetch-depth: "0" ref: ${{ github.head_ref }} - name: Secret Scanning Trufflehog - uses: trufflesecurity/trufflehog@v3.88.5 + uses: trufflesecurity/trufflehog@v3.91.2 with: extra_args: -x .github/workflows/exclude-patterns.txt --json --only-verified version: 3.77.0 @@ -479,7 +479,7 @@ jobs: run-unit-tests: name: run-unit-tests - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 needs: - setup-workflow if: ${{ needs.setup-workflow.outputs.execute-unit == 'true' }} @@ -491,8 +491,8 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: Setup addon @@ -537,14 +537,14 @@ jobs: echo "no XML File found, exiting" exit 1 fi - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: success() || failure() with: name: test-results-unit-python_${{ env.PYTHON_VERSION }} path: test-results/* build: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 needs: - check-docs-changes - validate-custom-version @@ -563,13 +563,13 @@ jobs: contents: write packages: read steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: # Very Important semantic-release won't trigger a tagged # build if this is not set false persist-credentials: false - name: Setup python - uses: actions/setup-python@v5 + uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: create requirements file for pip @@ -668,13 +668,13 @@ jobs: echo "VERSION=${FINALVERSION}" >> "$GITHUB_OUTPUT" - name: Download THIRDPARTY if: github.event_name != 'pull_request' && github.event_name != 'schedule' - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: THIRDPARTY - name: Download THIRDPARTY (Optional for PR and schedule) if: github.event_name == 'pull_request' || github.event_name == 'schedule' continue-on-error: true - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: THIRDPARTY - name: Update Notices @@ -724,13 +724,13 @@ jobs: echo "OUTPUT=$PACKAGE" >> "$GITHUB_OUTPUT" if: always() - name: artifact-openapi - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: artifact-openapi path: ${{ github.workspace }}/${{ steps.uccgen.outputs.OUTPUT }}/appserver/static/openapi.json if: ${{ !cancelled() && needs.setup-workflow.outputs.execute-ucc_modinput == 'true' }} - name: artifact-splunk-base - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: package-splunkbase path: ${{ steps.slim.outputs.OUTPUT }} @@ -746,7 +746,7 @@ jobs: basename "${{ steps.slim.outputs.OUTPUT }}" aws s3 cp "${{ steps.slim.outputs.OUTPUT }}" "s3://${{ needs.setup-workflow.outputs.s3_bucket_k8s }}/ta-apps/" - name: artifact-splunk-parts - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: package-deployment path: build/package/deployment** @@ -770,26 +770,26 @@ jobs: - "self-service" - "manual" steps: - - uses: actions/checkout@v4 - - uses: actions/download-artifact@v4 + - uses: actions/checkout@v6 + - uses: actions/download-artifact@v6 with: name: package-splunkbase path: build/package/ - name: Scan - uses: splunk/appinspect-cli-action@v2.10 + uses: splunk/appinspect-cli-action@v2.11 with: app_path: build/package/ included_tags: ${{ matrix.tags }} result_file: appinspect_result_${{ matrix.tags }}.json - name: upload-appinspect-report if: ${{ !cancelled() }} - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: appinspect_${{ matrix.tags }}_checks.json path: appinspect_result_${{ matrix.tags }}.json - name: upload-markdown if: matrix.tags == 'manual' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: check_markdown path: | @@ -809,8 +809,8 @@ jobs: tags: - "cloud" steps: - - uses: actions/checkout@v4 - - uses: actions/download-artifact@v4 + - uses: actions/checkout@v6 + - uses: actions/download-artifact@v6 with: name: package-splunkbase path: build/package @@ -821,7 +821,7 @@ jobs: password: ${{ secrets.SPL_COM_PASSWORD }} app_path: build/package/ included_tags: ${{ matrix.tags }} - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: always() with: name: appinspect-api-html-report-${{ matrix.tags }} @@ -835,9 +835,9 @@ jobs: if: ${{ !cancelled() && needs.build.result == 'success' && needs.setup-workflow.outputs.execute-gs-scorecard == 'true' }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.GSSA_AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.GSSA_AWS_SECRET_ACCESS_KEY }} @@ -867,7 +867,7 @@ jobs: 956110764581.dkr.ecr.us-west-2.amazonaws.com/ta-automation/gs-scorecard:"${{ env.GS_IMAGE_VERSION }}" - name: Upload GS Scorecard report - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: always() with: name: gs-scorecard-report @@ -878,7 +878,7 @@ jobs: - setup-workflow - build if: ${{ !cancelled() && needs.build.result == 'success' }} - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 outputs: argo-server: ${{ steps.test-setup.outputs.argo-server }} argo-http1: ${{ steps.test-setup.outputs.argo-http1 }} @@ -899,7 +899,7 @@ jobs: env: BUILD_NAME: ${{ needs.build.outputs.buildname }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive token: ${{ secrets.GH_TOKEN_ADMIN }} @@ -937,14 +937,14 @@ jobs: echo "spl-host-suffix=wfe.splgdi.com" echo "k8s-manifests-branch=${{ inputs.k8s-manifests-branch }}" } >> "$GITHUB_OUTPUT" - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v6 if: ${{ needs.setup-workflow.outputs.execute-ucc_modinput == 'true' }} id: download-openapi with: name: artifact-openapi path: ${{ github.workspace }} - name: Setup python - uses: actions/setup-python@v5 + uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: setup-poetry @@ -1009,7 +1009,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} sc4s: ${{ fromJson(needs.meta.outputs.matrix_supportedSC4S) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1027,7 +1027,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: capture start time @@ -1035,7 +1035,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1179,13 +1179,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() && steps.check-workflow-status.outputs.workflow-status != 'Succeeded' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() && steps.check-workflow-status.outputs.workflow-status != 'Succeeded' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests logs @@ -1207,7 +1207,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1223,7 +1223,7 @@ jobs: spl2_tests_run cli -o log_cli=true --log-cli-level=INFO --verbose --junitxml test-results/report.xml - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: spl2 test report @@ -1244,7 +1244,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} sc4s: ${{ fromJson(needs.meta.outputs.matrix_supportedSC4S) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1262,7 +1262,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1277,7 +1277,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1415,20 +1415,20 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests logs path: | ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Upload cim-compliance-report for ${{ matrix.splunk.version }} - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ matrix.splunk.islatest == true }} with: name: cim-compliance-report @@ -1436,7 +1436,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/test-results/cim-compliance-report.md - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} test report @@ -1461,7 +1461,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-ko-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} @@ -1471,7 +1471,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests diag @@ -1484,7 +1484,7 @@ jobs: if: ${{ !cancelled() && needs.run-knowledge-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ko* - name: Combine summaries into a table @@ -1515,7 +1515,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedUIVendors) }} marker: ${{ fromJson(inputs.ui_marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1534,7 +1534,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1549,7 +1549,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1700,13 +1700,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -1714,7 +1714,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} test report @@ -1739,7 +1739,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.browser }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -1749,7 +1749,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -1762,7 +1762,7 @@ jobs: if: ${{ !cancelled() && needs.run-ui-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ui* - name: Combine summaries into a table @@ -1793,7 +1793,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} marker: ${{ fromJson(inputs.marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1811,7 +1811,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1826,7 +1826,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1976,13 +1976,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -1990,7 +1990,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} test report @@ -2015,7 +2015,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -2025,7 +2025,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -2038,7 +2038,7 @@ jobs: if: ${{ !cancelled() && needs.run-modinput-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-modinput* - name: Combine summaries into a table @@ -2068,7 +2068,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} marker: ${{ fromJson(inputs.ucc-modinput-marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2086,7 +2086,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2101,7 +2101,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2251,13 +2251,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -2265,7 +2265,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} test report @@ -2290,7 +2290,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -2300,7 +2300,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -2313,7 +2313,7 @@ jobs: if: ${{ !cancelled() && needs.run-ucc-modinput-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ucc_modinput* - name: Combine summaries into a table @@ -2343,7 +2343,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} ta-version-from-upgrade: ${{ fromJson(inputs.upgrade-tests-ta-versions) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2361,7 +2361,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2376,7 +2376,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2515,13 +2515,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.ta-version-from-upgrade }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.ta-version-from-upgrade }} tests logs @@ -2529,7 +2529,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} test report @@ -2554,7 +2554,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.ta-version-from-upgrade }}-artifact @@ -2564,7 +2564,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} tests diag @@ -2577,7 +2577,7 @@ jobs: if: ${{ !cancelled() && needs.run-upgrade-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-upgrade* - name: Combine summaries into a table @@ -2606,7 +2606,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} os: ${{ fromJson(inputs.scripted-inputs-os-list) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2623,7 +2623,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2638,7 +2638,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2784,13 +2784,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests logs @@ -2798,7 +2798,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.3.0 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} test report @@ -2823,7 +2823,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ steps.os-name-version.outputs.os-name }}-${{ steps.os-name-version.outputs.os-version }} @@ -2833,7 +2833,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests diag @@ -2846,7 +2846,7 @@ jobs: if: ${{ !cancelled() && needs.run-scripted-input-tests-full-matrix.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-scripted* - name: Combine summaries into a table @@ -2918,7 +2918,7 @@ jobs: statuses: write steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: submodules: false persist-credentials: false @@ -2944,14 +2944,14 @@ jobs: make_latest: false - name: Download package-deployment if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 id: download-package-deployment with: name: package-deployment path: download/artifacts/ - name: Download package-splunkbase if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 id: download-package-splunkbase with: name: package-splunkbase @@ -2960,7 +2960,7 @@ jobs: id: download-cim-compliance-report if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} continue-on-error: true - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: cim-compliance-report path: download/artifacts/deployment diff --git a/.github/workflows/reusable-publish-to-splunkbase.yml b/.github/workflows/reusable-publish-to-splunkbase.yml index 2ad434ef..dc8dfadb 100644 --- a/.github/workflows/reusable-publish-to-splunkbase.yml +++ b/.github/workflows/reusable-publish-to-splunkbase.yml @@ -35,10 +35,10 @@ jobs: needs: - inputs-validator steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: - python-version: "3.12" + python-version: "3.14" - run: pip install splunk_add_on_ucc_framework-5.69.1-py3-none-any.whl - name: Fetch build env: diff --git a/.github/workflows/reusable-validate-deploy-docs.yml b/.github/workflows/reusable-validate-deploy-docs.yml index 7d721df7..0961e49b 100644 --- a/.github/workflows/reusable-validate-deploy-docs.yml +++ b/.github/workflows/reusable-validate-deploy-docs.yml @@ -9,10 +9,10 @@ jobs: outputs: status: ${{ steps.validate.outputs.status }} steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: - python-version: 3.12 + python-version: 3.14 - name: Install mkdocs and plugins run: pip install mkdocs==1.6.0 mkdocs-material==9.5.32 mkdocs-print-site-plugin==2.6.0 - name: Validate docs change @@ -40,10 +40,10 @@ jobs: pages: write if: github.event_name == 'workflow_dispatch' && github.ref == 'refs/heads/main' steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v6 + - uses: actions/setup-python@v6 with: - python-version: 3.12 + python-version: 3.14 - name: Install mkdocs and plugins run: pip install mkdocs==1.6.0 mkdocs-material==9.5.32 mkdocs-print-site-plugin==2.6.0 - name: Build and Deploy docs