diff --git a/.github/workflows/build-test-release.yaml b/.github/workflows/build-test-release.yaml index 61404e99..ec16f90c 100644 --- a/.github/workflows/build-test-release.yaml +++ b/.github/workflows/build-test-release.yaml @@ -19,18 +19,18 @@ jobs: compliance-copyrights: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 - - uses: apache/skywalking-eyes@v0.6.0 + - uses: actions/checkout@v5 + - uses: apache/skywalking-eyes@v0.8.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} pre-commit: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: - python-version: "3.7" + python-version: "3.14" - run: | bash <(curl https://raw.githubusercontent.com/rhysd/actionlint/v1.6.26/scripts/download-actionlint.bash) - uses: pre-commit/action@v3.0.1 @@ -41,7 +41,7 @@ jobs: - pre-commit runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: false persist-credentials: false @@ -60,7 +60,7 @@ jobs: needs: publish runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: splunk/addonfactory-update-semver@v1 env: GITHUB_TOKEN: ${{ secrets.GH_TOKEN_ADMIN }} diff --git a/.github/workflows/reusable-build-test-release.yml b/.github/workflows/reusable-build-test-release.yml index b74bb7fe..bf43f62a 100644 --- a/.github/workflows/reusable-build-test-release.yml +++ b/.github/workflows/reusable-build-test-release.yml @@ -120,7 +120,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.event.inputs.custom-version != '' }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Validate custom version run: | if [[ ! ${{ github.event.inputs.custom-version }} =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then @@ -137,7 +137,7 @@ jobs: check-splunktafunctionaltests-exists: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - run: | if grep -q 'splunktafunctionaltests' poetry.lock; then echo "::warning title=\"splunktafunctionaltests\" should NOT be used for modinput tests::For more details, please see https://splunk.slack.com/archives/C081JT7R69Z/p1754662758743839." @@ -152,7 +152,7 @@ jobs: docs-only: ${{ steps.check.outputs.docs-only }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Fetch all refs run: git fetch --prune --unshallow @@ -210,7 +210,7 @@ jobs: fi - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Determine Test Execution Flags id: determine-test-execution-flags @@ -332,7 +332,7 @@ jobs: pull-requests: read statuses: write steps: - - uses: amannn/action-semantic-pull-request@v5.5.3 + - uses: amannn/action-semantic-pull-request@v6.1.1 with: wip: true validateSingleCommit: true @@ -352,7 +352,7 @@ jobs: contents: write packages: read steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: false persist-credentials: false @@ -381,7 +381,7 @@ jobs: fossa-scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: run fossa analyze and create report id: fossa-scan run: | @@ -396,7 +396,7 @@ jobs: env: FOSSA_API_KEY: ${{ secrets.FOSSA_API_KEY }} - name: upload THIRDPARTY file - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: THIRDPARTY path: /tmp/THIRDPARTY @@ -411,7 +411,7 @@ jobs: needs: - fossa-scan steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: run fossa test run: | curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/fossas/fossa-cli/master/install-latest.sh | bash @@ -424,15 +424,15 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: REUSE Compliance Check uses: fsfe/reuse-action@v1.1 lint: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - uses: pre-commit/action@v3.0.1 @@ -443,19 +443,19 @@ jobs: steps: - name: Checkout if: github.event_name != 'pull_request' - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: false fetch-depth: "0" - name: Checkout for PR if: github.event_name == 'pull_request' - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: false fetch-depth: "0" ref: ${{ github.head_ref }} - name: Secret Scanning Trufflehog - uses: trufflesecurity/trufflehog@v3.88.5 + uses: trufflesecurity/trufflehog@v3.91.0 with: extra_args: -x .github/workflows/exclude-patterns.txt --json --only-verified version: 3.77.0 @@ -469,7 +469,7 @@ jobs: run-unit-tests: name: run-unit-tests - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 needs: - setup-workflow if: ${{ needs.setup-workflow.outputs.execute-unit == 'true' }} @@ -481,8 +481,8 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: Setup addon @@ -531,14 +531,14 @@ jobs: echo "no XML File found, exiting" exit 1 fi - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: success() || failure() with: name: test-results-unit-python_${{ env.PYTHON_VERSION }} path: test-results/* build: - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 needs: - check-docs-changes - validate-custom-version @@ -557,13 +557,13 @@ jobs: contents: write packages: read steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: # Very Important semantic-release won't trigger a tagged # build if this is not set false persist-credentials: false - name: Setup python - uses: actions/setup-python@v5 + uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: create requirements file for pip @@ -660,13 +660,13 @@ jobs: echo "VERSION=${FINALVERSION}" >> "$GITHUB_OUTPUT" - name: Download THIRDPARTY if: github.event_name != 'pull_request' && github.event_name != 'schedule' - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: THIRDPARTY - name: Download THIRDPARTY (Optional for PR and schedule) if: github.event_name == 'pull_request' || github.event_name == 'schedule' continue-on-error: true - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: THIRDPARTY - name: Update Notices @@ -716,13 +716,13 @@ jobs: echo "OUTPUT=$PACKAGE" >> "$GITHUB_OUTPUT" if: always() - name: artifact-openapi - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: artifact-openapi path: ${{ github.workspace }}/${{ steps.uccgen.outputs.OUTPUT }}/appserver/static/openapi.json if: ${{ !cancelled() && needs.setup-workflow.outputs.execute-ucc_modinput == 'true' }} - name: artifact-splunk-base - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: package-splunkbase path: ${{ steps.slim.outputs.OUTPUT }} @@ -738,7 +738,7 @@ jobs: basename "${{ steps.slim.outputs.OUTPUT }}" aws s3 cp "${{ steps.slim.outputs.OUTPUT }}" "s3://${{ needs.setup-workflow.outputs.s3_bucket_k8s }}/ta-apps/" - name: artifact-splunk-parts - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: package-deployment path: build/package/deployment** @@ -762,26 +762,26 @@ jobs: - "self-service" - "manual" steps: - - uses: actions/checkout@v4 - - uses: actions/download-artifact@v4 + - uses: actions/checkout@v5 + - uses: actions/download-artifact@v6 with: name: package-splunkbase path: build/package/ - name: Scan - uses: splunk/appinspect-cli-action@v2.10 + uses: splunk/appinspect-cli-action@v2.11 with: app_path: build/package/ included_tags: ${{ matrix.tags }} result_file: appinspect_result_${{ matrix.tags }}.json - name: upload-appinspect-report if: ${{ !cancelled() }} - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: appinspect_${{ matrix.tags }}_checks.json path: appinspect_result_${{ matrix.tags }}.json - name: upload-markdown if: matrix.tags == 'manual' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: check_markdown path: | @@ -801,8 +801,8 @@ jobs: tags: - "cloud" steps: - - uses: actions/checkout@v4 - - uses: actions/download-artifact@v4 + - uses: actions/checkout@v5 + - uses: actions/download-artifact@v6 with: name: package-splunkbase path: build/package @@ -813,7 +813,7 @@ jobs: password: ${{ secrets.SPL_COM_PASSWORD }} app_path: build/package/ included_tags: ${{ matrix.tags }} - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: always() with: name: appinspect-api-html-report-${{ matrix.tags }} @@ -825,9 +825,9 @@ jobs: if: ${{ !cancelled() && needs.build.result == 'success' && (github.ref_name == 'main' && github.event_name == 'push') }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.GSSA_AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.GSSA_AWS_SECRET_ACCESS_KEY }} @@ -857,7 +857,7 @@ jobs: 956110764581.dkr.ecr.us-west-2.amazonaws.com/ta-automation/gs-scorecard:"${{ env.GS_IMAGE_VERSION }}" - name: Upload GS Scorecard report - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: always() with: name: gs-scorecard-report @@ -868,7 +868,7 @@ jobs: - setup-workflow - build if: ${{ !cancelled() && needs.build.result == 'success' }} - runs-on: ubuntu-22.04 + runs-on: ubuntu-24.04 outputs: argo-server: ${{ steps.test-setup.outputs.argo-server }} argo-http1: ${{ steps.test-setup.outputs.argo-http1 }} @@ -889,7 +889,7 @@ jobs: env: BUILD_NAME: ${{ needs.build.outputs.buildname }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive token: ${{ secrets.GH_TOKEN_ADMIN }} @@ -927,14 +927,14 @@ jobs: echo "spl-host-suffix=wfe.splgdi.com" echo "k8s-manifests-branch=${{ inputs.k8s-manifests-branch }}" } >> "$GITHUB_OUTPUT" - - uses: actions/download-artifact@v4 + - uses: actions/download-artifact@v6 if: ${{ needs.setup-workflow.outputs.execute-ucc_modinput == 'true' }} id: download-openapi with: name: artifact-openapi path: ${{ github.workspace }} - name: Setup python - uses: actions/setup-python@v5 + uses: actions/setup-python@v6 with: python-version: ${{ env.PYTHON_VERSION }} - name: setup-poetry @@ -999,7 +999,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} sc4s: ${{ fromJson(needs.meta.outputs.matrix_supportedSC4S) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1017,7 +1017,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: capture start time @@ -1025,7 +1025,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1169,13 +1169,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() && steps.check-workflow-status.outputs.workflow-status != 'Succeeded' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() && steps.check-workflow-status.outputs.workflow-status != 'Succeeded' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests logs @@ -1197,7 +1197,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1213,7 +1213,7 @@ jobs: spl2_tests_run cli -o log_cli=true --log-cli-level=INFO --verbose --junitxml test-results/report.xml - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: spl2 test report @@ -1234,7 +1234,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} sc4s: ${{ fromJson(needs.meta.outputs.matrix_supportedSC4S) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1252,7 +1252,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1267,7 +1267,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1405,20 +1405,20 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests logs path: | ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Upload cim-compliance-report for ${{ matrix.splunk.version }} - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ matrix.splunk.islatest == true }} with: name: cim-compliance-report @@ -1426,7 +1426,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/test-results/cim-compliance-report.md - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} test report @@ -1451,7 +1451,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-ko-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} @@ -1461,7 +1461,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} tests diag @@ -1474,7 +1474,7 @@ jobs: if: ${{ !cancelled() && needs.run-knowledge-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ko* - name: Combine summaries into a table @@ -1505,7 +1505,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedUIVendors) }} marker: ${{ fromJson(inputs.ui_marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1524,7 +1524,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1539,7 +1539,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1690,13 +1690,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -1704,7 +1704,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} test report @@ -1729,7 +1729,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.browser }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -1739,7 +1739,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.browser }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -1752,7 +1752,7 @@ jobs: if: ${{ !cancelled() && needs.run-ui-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ui* - name: Combine summaries into a table @@ -1783,7 +1783,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} marker: ${{ fromJson(inputs.marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -1801,7 +1801,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -1816,7 +1816,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -1966,13 +1966,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -1980,7 +1980,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} test report @@ -2005,7 +2005,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -2015,7 +2015,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -2028,7 +2028,7 @@ jobs: if: ${{ !cancelled() && needs.run-modinput-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-modinput* - name: Combine summaries into a table @@ -2058,7 +2058,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} marker: ${{ fromJson(inputs.ucc-modinput-marker) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2076,7 +2076,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2091,7 +2091,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2241,13 +2241,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests logs @@ -2255,7 +2255,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} test report @@ -2280,7 +2280,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.marker }}-artifact @@ -2290,7 +2290,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.marker }} tests diag @@ -2303,7 +2303,7 @@ jobs: if: ${{ !cancelled() && needs.run-ucc-modinput-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-ucc_modinput* - name: Combine summaries into a table @@ -2333,7 +2333,7 @@ jobs: vendor-version: ${{ fromJson(needs.meta.outputs.matrix_supportedModinputFunctionalVendors) }} ta-version-from-upgrade: ${{ fromJson(inputs.upgrade-tests-ta-versions) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2351,7 +2351,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2366,7 +2366,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2505,13 +2505,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.ta-version-from-upgrade }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} ${{ matrix.ta-version-from-upgrade }} tests logs @@ -2519,7 +2519,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} test report @@ -2544,7 +2544,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ matrix.vendor-version.image }}-${{ matrix.ta-version-from-upgrade }}-artifact @@ -2554,7 +2554,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ matrix.vendor-version.image }} tests diag @@ -2567,7 +2567,7 @@ jobs: if: ${{ !cancelled() && needs.run-upgrade-tests.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-upgrade* - name: Combine summaries into a table @@ -2596,7 +2596,7 @@ jobs: splunk: ${{ fromJson(needs.meta.outputs.matrix_Splunk) }} os: ${{ fromJson(inputs.scripted-inputs-os-list) }} container: - image: ghcr.io/splunk/workflow-engine-base:4.1.0 + image: ghcr.io/splunk/workflow-engine-base:5.0.0 env: ARGO_SERVER: ${{ needs.setup.outputs.argo-server }} ARGO_HTTP1: ${{ needs.setup.outputs.argo-http1 }} @@ -2613,7 +2613,7 @@ jobs: statuses: read checks: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive - name: configure git # This step configures git to omit "dubious git ownership error" in later test-reporter stage @@ -2628,7 +2628,7 @@ jobs: run: | echo "start_time=$(date +%s)" >> "$GITHUB_OUTPUT" - name: Configure AWS credentials - uses: aws-actions/configure-aws-credentials@v4 + uses: aws-actions/configure-aws-credentials@v5 with: aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} @@ -2774,13 +2774,13 @@ jobs: echo "pulling logs" mkdir -p ${{ needs.setup.outputs.directory-path }}/argo-logs aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/workflows/${WORKFLOW_NAME}/ ${{ needs.setup.outputs.directory-path }}/argo-logs/ --recursive - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests artifacts path: | ${{ needs.setup.outputs.directory-path }}/test-results - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests logs @@ -2788,7 +2788,7 @@ jobs: ${{ needs.setup.outputs.directory-path }}/argo-logs - name: Test Report id: test_report - uses: dorny/test-reporter@v1.9.1 + uses: dorny/test-reporter@v2.1.1 if: ${{ !cancelled() }} with: name: splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} test report @@ -2813,7 +2813,7 @@ jobs: exit 1 fi - name: Upload-artifact-for-github-summary - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 if: ${{ !cancelled() }} with: name: summary-${{ env.TEST_TYPE }}-${{ matrix.splunk.version }}-${{ secrets.OTHER_TA_REQUIRED_CONFIGS }}-${{ steps.os-name-version.outputs.os-name }}-${{ steps.os-name-version.outputs.os-version }} @@ -2823,7 +2823,7 @@ jobs: run: | echo "pulling diag" aws s3 cp s3://${{ needs.setup.outputs.s3-bucket }}/diag-${{ steps.create-job-name.outputs.job-name }}/diag-${{ steps.create-job-name.outputs.job-name }}.tgz ${{ needs.setup.outputs.directory-path }}/ - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v5 if: ${{ failure() && steps.test_report.outputs.conclusion == 'failure' }} with: name: archive splunk ${{ matrix.splunk.version }}${{ secrets.OTHER_TA_REQUIRED_CONFIGS }} ${{ env.TEST_TYPE }} ${{ steps.os-name-version.outputs.os-name }} ${{ steps.os-name-version.outputs.os-version }} tests diag @@ -2836,7 +2836,7 @@ jobs: if: ${{ !cancelled() && needs.run-scripted-input-tests-full-matrix.result != 'skipped' }} steps: - name: Download all summaries - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: pattern: summary-scripted* - name: Combine summaries into a table @@ -2908,7 +2908,7 @@ jobs: statuses: write steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: false persist-credentials: false @@ -2934,14 +2934,14 @@ jobs: make_latest: false - name: Download package-deployment if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 id: download-package-deployment with: name: package-deployment path: download/artifacts/ - name: Download package-splunkbase if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 id: download-package-splunkbase with: name: package-splunkbase @@ -2950,7 +2950,7 @@ jobs: id: download-cim-compliance-report if: ${{ steps.semantic.outputs.new_release_published == 'true' || steps.custom.outputs.upload_url != '' }} continue-on-error: true - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v6 with: name: cim-compliance-report path: download/artifacts/deployment diff --git a/.github/workflows/reusable-publish-to-splunkbase.yml b/.github/workflows/reusable-publish-to-splunkbase.yml index 2ad434ef..84d5e6a0 100644 --- a/.github/workflows/reusable-publish-to-splunkbase.yml +++ b/.github/workflows/reusable-publish-to-splunkbase.yml @@ -35,10 +35,10 @@ jobs: needs: - inputs-validator steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: - python-version: "3.12" + python-version: "3.14" - run: pip install splunk_add_on_ucc_framework-5.69.1-py3-none-any.whl - name: Fetch build env: diff --git a/.github/workflows/reusable-validate-deploy-docs.yml b/.github/workflows/reusable-validate-deploy-docs.yml index 7d721df7..5da87e15 100644 --- a/.github/workflows/reusable-validate-deploy-docs.yml +++ b/.github/workflows/reusable-validate-deploy-docs.yml @@ -9,10 +9,10 @@ jobs: outputs: status: ${{ steps.validate.outputs.status }} steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: - python-version: 3.12 + python-version: 3.14 - name: Install mkdocs and plugins run: pip install mkdocs==1.6.0 mkdocs-material==9.5.32 mkdocs-print-site-plugin==2.6.0 - name: Validate docs change @@ -40,10 +40,10 @@ jobs: pages: write if: github.event_name == 'workflow_dispatch' && github.ref == 'refs/heads/main' steps: - - uses: actions/checkout@v4 - - uses: actions/setup-python@v5 + - uses: actions/checkout@v5 + - uses: actions/setup-python@v6 with: - python-version: 3.12 + python-version: 3.14 - name: Install mkdocs and plugins run: pip install mkdocs==1.6.0 mkdocs-material==9.5.32 mkdocs-print-site-plugin==2.6.0 - name: Build and Deploy docs