diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index ca4bfa1ef72..a24c909abc9 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -138,6 +138,7 @@ /pkg/services/dashboardversion/ @grafana/grafana-backend-group /pkg/services/encryption/ @grafana/grafana-operator-experience-squad /pkg/services/folder/ @grafana/grafana-search-and-storage +/pkg/services/frontend/ @grafana/grafana-frontend-platform /pkg/services/apiserver @grafana/grafana-app-platform-squad /pkg/services/hooks/ @grafana/grafana-backend-group /pkg/services/kmsproviders/ @grafana/grafana-operator-experience-squad @@ -435,6 +436,7 @@ /packages/grafana-ui/src/graveyard/GraphNG/ @grafana/dataviz-squad /packages/grafana-ui/src/graveyard/TimeSeries/ @grafana/dataviz-squad /packages/grafana-ui/src/utils/storybook/ @grafana/grafana-frontend-platform +/packages/grafana-alerting/ @grafana/alerting-frontend # root files, mostly frontend /.browserslistrc @grafana/frontend-ops @@ -766,7 +768,6 @@ embed.go @grafana/grafana-as-code /.github/workflows/backend-unit-tests.yml @grafana/grafana-backend-group /.github/workflows/backport.yml @grafana/grafana-developer-enablement-squad /.github/workflows/bump-version.yml @grafana/grafana-developer-enablement-squad -/.github/workflows/close-milestone.yml @grafana/grafana-developer-enablement-squad /.github/workflows/release-pr.yml @grafana/grafana-developer-enablement-squad /.github/workflows/release-comms.yml @grafana/grafana-developer-enablement-squad /.github/workflows/migrate-prs.yml @grafana/grafana-developer-enablement-squad @@ -778,28 +779,24 @@ embed.go @grafana/grafana-as-code /.github/workflows/detect-breaking-changes-* @grafana/plugins-platform-frontend /.github/workflows/documentation-ci.yml @grafana/docs-tooling /.github/workflows/deploy-pr-preview.yml @grafana/docs-tooling -/.github/workflows/epic-add-to-platform-ux-parent-project.yml @meanmina /.github/workflows/feature-toggles-ci.yml @grafana/docs-tooling /.github/workflows/github-release.yml @grafana/grafana-developer-enablement-squad /.github/workflows/issue-opened.yml @grafana/grafana-community-support /.github/workflows/lint-build-docs.yml @grafana/docs-tooling /.github/workflows/metrics-collector.yml @torkelo -/.github/workflows/milestone.yml @tolzhabayev /.github/workflows/pr-checks.yml @tolzhabayev /.github/workflows/pr-codeql-analysis-javascript.yml @DanCech /.github/workflows/pr-codeql-analysis-python.yml @DanCech /.github/workflows/pr-commands.yml @tolzhabayev -/.github/workflows/pr-patch-check.yml @grafana/grafana-developer-enablement-squad +/.github/workflows/pr-patch-check-event.yml @grafana/grafana-developer-enablement-squad /.github/workflows/pr-test-integration.yml @grafana/grafana-backend-group /.github/workflows/pr-backend-coverage.yml @grafana/grafana-backend-group -/.github/workflows/sync-mirror.yml @grafana/grafana-developer-enablement-squad +/.github/workflows/sync-mirror-event.yml @grafana/grafana-developer-enablement-squad /.github/workflows/publish-technical-documentation-next.yml @grafana/docs-tooling /.github/workflows/publish-technical-documentation-release.yml @grafana/docs-tooling -/.github/workflows/remove-milestone.yml @grafana/grafana-developer-enablement-squad /.github/workflows/scripts/json-file-to-job-output.js @grafana/plugins-platform-frontend /.github/workflows/stale.yml @grafana/grafana-developer-enablement-squad /.github/workflows/storybook-verification.yml @grafana/grafana-frontend-platform -/.github/workflows/update-changelog.yml @grafana/grafana-developer-enablement-squad /.github/workflows/update-make-docs.yml @grafana/docs-tooling /.github/workflows/scripts/kinds/verify-kinds.go @grafana/platform-monitoring /.github/workflows/publish-kinds-next.yml @grafana/platform-monitoring @@ -814,18 +811,23 @@ embed.go @grafana/grafana-as-code /.github/workflows/core-plugins-build-and-release.yml @grafana/plugins-platform-frontend @grafana/plugins-platform-backend /.github/workflows/i18n-crowdin-upload.yml @grafana/grafana-frontend-platform /.github/workflows/i18n-crowdin-download.yml @grafana/grafana-frontend-platform +/.github/workflows/i18n-crowdin-create-tasks.yml @grafana/grafana-frontend-platform +/.github/workflows/scripts/crowdin/create-tasks.js @grafana/grafana-frontend-platform /.github/workflows/pr-go-workspace-check.yml @grafana/grafana-app-platform-squad /.github/workflows/pr-dependabot-update-go-workspace.yml @grafana/grafana-app-platform-squad /.github/workflows/pr-k8s-codegen-check.yml @grafana/grafana-app-platform-squad /.github/workflows/go-lint.yml @grafana/grafana-backend-services-squad /.github/workflows/trivy-scan.yml @grafana/grafana-backend-services-squad /.github/workflows/changelog.yml @zserge -/.github/workflows/actions/changelog @zserge +/.github/actions/changelog @zserge /.github/workflows/pr-frontend-unit-tests.yml @grafana/grafana-frontend-platform /.github/workflows/frontend-lint.yml @grafana/grafana-frontend-platform /.github/workflows/analytics-events-report.yml @grafana/grafana-frontend-platform /.github/workflows/pr-e2e-tests.yml @grafana/grafana-developer-enablement-squad /.github/workflows/run-e2e-suite.yml @grafana/grafana-developer-enablement-squad +/.github/workflows/skye-add-to-project.yml @grafana/grafana-frontend-platform +/.github/workflows/zizmor.yml @grafana/grafana-developer-enablement-squad +/.github/zizmor.yml @grafana/grafana-developer-enablement-squad # Generated files not requiring owner approval /packages/grafana-data/src/types/featureToggles.gen.ts @grafanabot diff --git a/.github/workflows/actions/changelog/action.yml b/.github/actions/changelog/action.yml similarity index 100% rename from .github/workflows/actions/changelog/action.yml rename to .github/actions/changelog/action.yml diff --git a/.github/workflows/actions/changelog/index.js b/.github/actions/changelog/index.js similarity index 100% rename from .github/workflows/actions/changelog/index.js rename to .github/actions/changelog/index.js diff --git a/.github/workflows/actions/changelog/package.json b/.github/actions/changelog/package.json similarity index 100% rename from .github/workflows/actions/changelog/package.json rename to .github/actions/changelog/package.json diff --git a/.github/workflows/alerting-swagger-gen.yml b/.github/workflows/alerting-swagger-gen.yml index 2526d924d5e..c06304b38a3 100644 --- a/.github/workflows/alerting-swagger-gen.yml +++ b/.github/workflows/alerting-swagger-gen.yml @@ -10,7 +10,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: fetch-depth: 2 persist-credentials: false diff --git a/.github/workflows/alerting-update-module.yml b/.github/workflows/alerting-update-module.yml index d1646d21718..5bbf260e64a 100644 --- a/.github/workflows/alerting-update-module.yml +++ b/.github/workflows/alerting-update-module.yml @@ -17,7 +17,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # 4.2.2 + uses: actions/checkout@v4 # 4.2.2 with: persist-credentials: false - name: Check if update branch exists diff --git a/.github/workflows/analytics-events-report.yml b/.github/workflows/analytics-events-report.yml index 9c5c6f3ef09..42f601b793b 100644 --- a/.github/workflows/analytics-events-report.yml +++ b/.github/workflows/analytics-events-report.yml @@ -8,12 +8,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Node.js - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' diff --git a/.github/workflows/backend-code-checks.yml b/.github/workflows/backend-code-checks.yml index b55c07aed22..b95257d99c3 100644 --- a/.github/workflows/backend-code-checks.yml +++ b/.github/workflows/backend-code-checks.yml @@ -1,5 +1,4 @@ name: Backend Code Checks -description: Validate go.mod and OpenAPI specifications on: pull_request: @@ -24,11 +23,11 @@ jobs: name: Validate Backend Configs runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: # Explicitly set Go version to 1.24.1 to ensure consistent OpenAPI spec generation # The crypto/x509 package has additional fields in Go 1.24.1 that affect the generated specs diff --git a/.github/workflows/backend-unit-tests.yml b/.github/workflows/backend-unit-tests.yml index 2c0c238d502..a1357d2e87b 100644 --- a/.github/workflows/backend-unit-tests.yml +++ b/.github/workflows/backend-unit-tests.yml @@ -32,11 +32,11 @@ jobs: id-token: write steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod - name: Generate Go code @@ -54,11 +54,11 @@ jobs: id-token: write steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod - name: Setup Enterprise diff --git a/.github/workflows/backport.yml b/.github/workflows/backport.yml index fc65898f652..673dc228fc2 100644 --- a/.github/workflows/backport.yml +++ b/.github/workflows/backport.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # 4.2.2 + uses: actions/checkout@v4 # 4.2.2 with: persist-credentials: false - run: git config --local user.name "github-actions[bot]" diff --git a/.github/workflows/bump-version.yml b/.github/workflows/bump-version.yml index 8db9fb1e5c3..39fa0566d86 100644 --- a/.github/workflows/bump-version.yml +++ b/.github/workflows/bump-version.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Grafana - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Update package.json versions diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml index 094279e0c9a..c2dcc2972f1 100644 --- a/.github/workflows/changelog.yml +++ b/.github/workflows/changelog.yml @@ -73,7 +73,7 @@ jobs: app_id: ${{ secrets.GRAFANA_DELIVERY_BOT_APP_ID }} private_key: ${{ secrets.GRAFANA_DELIVERY_BOT_APP_PEM }} - name: "Checkout Grafana repo" - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" + uses: "actions/checkout@v4" with: ref: main sparse-checkout: | @@ -86,7 +86,7 @@ jobs: fetch-tags: true persist-credentials: false - name: Setup nodejs environment - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: .nvmrc - name: "Configure git user" @@ -98,7 +98,7 @@ jobs: run: git checkout -b "changelog/${RUN_ID}/${VERSION}" - name: "Generate changelog" id: changelog - uses: ./.github/workflows/actions/changelog + uses: ./.github/actions/changelog with: previous: ${{ inputs.previous_version }} github_token: ${{ steps.generate_token.outputs.token }} diff --git a/.github/workflows/codeowners-validator.yml b/.github/workflows/codeowners-validator.yml index f98bee4e213..41afde3a822 100644 --- a/.github/workflows/codeowners-validator.yml +++ b/.github/workflows/codeowners-validator.yml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-latest steps: # Checks-out your repository, which is validated in the next step - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - name: GitHub CODEOWNERS Validator diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 06772bac55c..c16c5eb353e 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -40,7 +40,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: # We must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head. diff --git a/.github/workflows/commands.yml b/.github/workflows/commands.yml index cf61d859443..3c3987b549b 100644 --- a/.github/workflows/commands.yml +++ b/.github/workflows/commands.yml @@ -53,7 +53,7 @@ jobs: private_key: ${{ env.GH_APP_PEM }} - name: Checkout Actions - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 with: repository: "grafana/grafana-github-actions" path: ./actions diff --git a/.github/workflows/core-plugins-build-and-release.yml b/.github/workflows/core-plugins-build-and-release.yml index d2aebbc41e8..66447cb9ffa 100644 --- a/.github/workflows/core-plugins-build-and-release.yml +++ b/.github/workflows/core-plugins-build-and-release.yml @@ -43,7 +43,7 @@ jobs: version: ${{ steps.build_frontend.outputs.version }} steps: - name: checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Verify inputs @@ -64,7 +64,7 @@ jobs: - name: 'Set up Cloud SDK' uses: 'google-github-actions/setup-gcloud@6189d56e4096ee891640bb02ac264be376592d6a' - name: Setup nodejs environment - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: .nvmrc cache: yarn diff --git a/.github/workflows/detect-breaking-changes-levitate.yml b/.github/workflows/detect-breaking-changes-levitate.yml index a2517d5e0a2..640b80a3dd5 100644 --- a/.github/workflows/detect-breaking-changes-levitate.yml +++ b/.github/workflows/detect-breaking-changes-levitate.yml @@ -27,11 +27,11 @@ jobs: id-token: write steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: path: './pr' persist-credentials: false - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version: 22.11.0 @@ -77,12 +77,12 @@ jobs: working-directory: './base' steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: path: './base' ref: ${{ github.event.pull_request.base.ref }} - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version: 22.11.0 @@ -128,8 +128,8 @@ jobs: id-token: 'write' steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version: 22.11.0 @@ -197,7 +197,7 @@ jobs: app_id: ${{ secrets.GRAFANA_PR_AUTOMATION_APP_ID }} private_key: ${{ secrets.GRAFANA_PR_AUTOMATION_APP_PEM }} - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 - name: 'Download artifact' uses: actions/download-artifact@v4 diff --git a/.github/workflows/documentation-ci.yml b/.github/workflows/documentation-ci.yml index 9b8bc7dc53b..30c2516412f 100644 --- a/.github/workflows/documentation-ci.yml +++ b/.github/workflows/documentation-ci.yml @@ -10,7 +10,7 @@ jobs: container: image: grafana/vale:latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - uses: grafana/writers-toolkit/vale-action@vale-action/v1 # zizmor: ignore[unpinned-uses] diff --git a/.github/workflows/ephemeral-instances-pr-comment.yml b/.github/workflows/ephemeral-instances-pr-comment.yml index e60eca1bad4..ed6b98bbce2 100644 --- a/.github/workflows/ephemeral-instances-pr-comment.yml +++ b/.github/workflows/ephemeral-instances-pr-comment.yml @@ -41,7 +41,7 @@ jobs: private_key: ${{ secrets.EI_APP_PRIVATE_KEY }} - name: Checkout ephemeral instances repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: repository: grafana/ephemeral-grafana-instances-github-action token: ${{ steps.generate_token.outputs.token }} diff --git a/.github/workflows/feature-toggles-ci.yml b/.github/workflows/feature-toggles-ci.yml index 7aa1dbd0b42..a6c9f5c52dc 100644 --- a/.github/workflows/feature-toggles-ci.yml +++ b/.github/workflows/feature-toggles-ci.yml @@ -11,12 +11,12 @@ jobs: test: runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - name: Set up Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: 'go.mod' cache: true diff --git a/.github/workflows/frontend-lint.yml b/.github/workflows/frontend-lint.yml index 42533e0127d..0042166d3c7 100644 --- a/.github/workflows/frontend-lint.yml +++ b/.github/workflows/frontend-lint.yml @@ -16,10 +16,10 @@ jobs: contents: read id-token: write steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -46,8 +46,8 @@ jobs: name: Lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -64,8 +64,8 @@ jobs: name: Lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -87,8 +87,8 @@ jobs: name: Typecheck runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -104,8 +104,8 @@ jobs: name: Typecheck runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -123,8 +123,8 @@ jobs: name: Betterer runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' diff --git a/.github/workflows/go-lint.yml b/.github/workflows/go-lint.yml index 0c65982f9c8..cdc84874d01 100644 --- a/.github/workflows/go-lint.yml +++ b/.github/workflows/go-lint.yml @@ -16,10 +16,10 @@ jobs: lint-go: runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + - uses: actions/setup-go@v5 with: go-version-file: ./go.mod - run: make gen-go diff --git a/.github/workflows/i18n-crowdin-create-tasks.yml b/.github/workflows/i18n-crowdin-create-tasks.yml index dbe2be9a5b8..60277aed365 100644 --- a/.github/workflows/i18n-crowdin-create-tasks.yml +++ b/.github/workflows/i18n-crowdin-create-tasks.yml @@ -11,12 +11,12 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Node.js - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' diff --git a/.github/workflows/i18n-crowdin-download.yml b/.github/workflows/i18n-crowdin-download.yml index d287c7ee06f..26f9588069f 100644 --- a/.github/workflows/i18n-crowdin-download.yml +++ b/.github/workflows/i18n-crowdin-download.yml @@ -22,7 +22,7 @@ jobs: app_id: ${{ secrets.GRAFANA_PR_AUTOMATION_APP_ID }} private_key: ${{ secrets.GRAFANA_PR_AUTOMATION_APP_PEM }} - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: ref: ${{ github.head_ref }} token: ${{ steps.generate_token.outputs.token }} diff --git a/.github/workflows/i18n-crowdin-upload.yml b/.github/workflows/i18n-crowdin-upload.yml index d7d1a130fcd..7165aa823fa 100644 --- a/.github/workflows/i18n-crowdin-upload.yml +++ b/.github/workflows/i18n-crowdin-upload.yml @@ -14,7 +14,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false diff --git a/.github/workflows/issue-opened.yml b/.github/workflows/issue-opened.yml index 91767a5310b..a5a5a822446 100644 --- a/.github/workflows/issue-opened.yml +++ b/.github/workflows/issue-opened.yml @@ -22,7 +22,7 @@ jobs: steps: - name: Checkout Actions - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 with: repository: "grafana/grafana-github-actions" path: ./actions @@ -88,7 +88,7 @@ jobs: private_key: ${{ env.GH_APP_PEM }} - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 - name: Send issue to the auto triager action id: auto_triage diff --git a/.github/workflows/lint-build-docs.yml b/.github/workflows/lint-build-docs.yml index 1477cb2797a..c9da22210b6 100644 --- a/.github/workflows/lint-build-docs.yml +++ b/.github/workflows/lint-build-docs.yml @@ -22,12 +22,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Node.js - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version: '22.11.0' cache: 'yarn' diff --git a/.github/workflows/metrics-collector.yml b/.github/workflows/metrics-collector.yml index 281dc6fb350..4e08bef9b10 100644 --- a/.github/workflows/metrics-collector.yml +++ b/.github/workflows/metrics-collector.yml @@ -38,7 +38,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Actions - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 with: repository: "grafana/grafana-github-actions" path: ./actions diff --git a/.github/workflows/pr-backend-coverage.yml b/.github/workflows/pr-backend-coverage.yml index 4d95497e3ec..12ed4423587 100644 --- a/.github/workflows/pr-backend-coverage.yml +++ b/.github/workflows/pr-backend-coverage.yml @@ -23,11 +23,11 @@ jobs: runs-on: ubuntu-latest-8-cores steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod cache: true diff --git a/.github/workflows/pr-checks.yml b/.github/workflows/pr-checks.yml index 68317f57a0e..cc8d2531bef 100644 --- a/.github/workflows/pr-checks.yml +++ b/.github/workflows/pr-checks.yml @@ -31,7 +31,7 @@ jobs: if: github.event.pull_request.draft == false steps: - name: Checkout Actions - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 with: repository: "grafana/grafana-github-actions" path: ./actions diff --git a/.github/workflows/pr-codeql-analysis-javascript.yml b/.github/workflows/pr-codeql-analysis-javascript.yml index 43457ad4af0..885c6116f58 100644 --- a/.github/workflows/pr-codeql-analysis-javascript.yml +++ b/.github/workflows/pr-codeql-analysis-javascript.yml @@ -20,7 +20,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: # We must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head. diff --git a/.github/workflows/pr-codeql-analysis-python.yml b/.github/workflows/pr-codeql-analysis-python.yml index 992a886497d..c5fe4b6a10c 100644 --- a/.github/workflows/pr-codeql-analysis-python.yml +++ b/.github/workflows/pr-codeql-analysis-python.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: # We must fetch at least the immediate parents so that if this is # a pull request then we can checkout the head. diff --git a/.github/workflows/pr-commands.yml b/.github/workflows/pr-commands.yml index db93ad7e70b..518c25dfeaa 100644 --- a/.github/workflows/pr-commands.yml +++ b/.github/workflows/pr-commands.yml @@ -30,7 +30,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Actions - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@v4 # v4.2.2 with: repository: "grafana/grafana-github-actions" path: ./actions diff --git a/.github/workflows/pr-dependabot-update-go-workspace.yml b/.github/workflows/pr-dependabot-update-go-workspace.yml index 48a005ba6f7..a83875c4644 100644 --- a/.github/workflows/pr-dependabot-update-go-workspace.yml +++ b/.github/workflows/pr-dependabot-update-go-workspace.yml @@ -37,7 +37,7 @@ jobs: private-key: ${{ env.PRIVATE_KEY }} - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: repository: ${{ github.event.pull_request.head.repo.full_name }} ref: ${{ github.event.pull_request.head.ref }} diff --git a/.github/workflows/pr-e2e-tests.yml b/.github/workflows/pr-e2e-tests.yml index 74e64e5bf38..a8f2e1cd54a 100644 --- a/.github/workflows/pr-e2e-tests.yml +++ b/.github/workflows/pr-e2e-tests.yml @@ -18,12 +18,12 @@ jobs: outputs: artifact: ${{ steps.artifact.outputs.artifact }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: repository: 'grafana/grafana-build' ref: 'main' persist-credentials: false - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: path: ./grafana - run: echo "GRAFANA_GO_VERSION=$(grep "go 1." grafana/go.work | cut -d\ -f2)" >> "$GITHUB_ENV" diff --git a/.github/workflows/pr-frontend-unit-tests.yml b/.github/workflows/pr-frontend-unit-tests.yml index e26e3847f8c..fd7ded43f0d 100644 --- a/.github/workflows/pr-frontend-unit-tests.yml +++ b/.github/workflows/pr-frontend-unit-tests.yml @@ -23,10 +23,10 @@ jobs: matrix: chunk: [1, 2, 3, 4, 5, 6, 7, 8] steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' @@ -51,8 +51,8 @@ jobs: matrix: chunk: [1, 2, 3, 4, 5, 6, 7, 8] steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 with: node-version-file: '.nvmrc' cache: 'yarn' diff --git a/.github/workflows/pr-go-workspace-check.yml b/.github/workflows/pr-go-workspace-check.yml index d54178f2e35..25e013b9484 100644 --- a/.github/workflows/pr-go-workspace-check.yml +++ b/.github/workflows/pr-go-workspace-check.yml @@ -21,7 +21,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false diff --git a/.github/workflows/pr-k8s-codegen-check.yml b/.github/workflows/pr-k8s-codegen-check.yml index 9a72f469caa..6c34674e5c9 100644 --- a/.github/workflows/pr-k8s-codegen-check.yml +++ b/.github/workflows/pr-k8s-codegen-check.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false diff --git a/.github/workflows/pr-test-integration.yml b/.github/workflows/pr-test-integration.yml index b49183889d5..9505c429dca 100644 --- a/.github/workflows/pr-test-integration.yml +++ b/.github/workflows/pr-test-integration.yml @@ -17,11 +17,11 @@ jobs: runs-on: ubuntu-latest-8-cores steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod cache: true @@ -47,9 +47,9 @@ jobs: - 3306:3306 steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod cache: true @@ -72,9 +72,9 @@ jobs: - 5432:5432 steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 - name: Setup Go - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: go.mod cache: true diff --git a/.github/workflows/publish-kinds-next.yml b/.github/workflows/publish-kinds-next.yml index ed290abbd2d..b63ba0ef966 100644 --- a/.github/workflows/publish-kinds-next.yml +++ b/.github/workflows/publish-kinds-next.yml @@ -29,7 +29,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Checkout Grafana repo" - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" + uses: "actions/checkout@v4" with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/publish-kinds-release.yml b/.github/workflows/publish-kinds-release.yml index 1e60f72ed79..73962750ef2 100644 --- a/.github/workflows/publish-kinds-release.yml +++ b/.github/workflows/publish-kinds-release.yml @@ -31,7 +31,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Checkout Grafana repo" - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" + uses: "actions/checkout@v4" with: # required for the `grafana/grafana-github-actions/has-matching-release-tag` action to work fetch-depth: 0 @@ -46,7 +46,7 @@ jobs: run: go run .github/workflows/scripts/kinds/verify-kinds.go - name: "Checkout Actions library" - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" + uses: "actions/checkout@v4" with: repository: "grafana/grafana-github-actions" path: "./actions" diff --git a/.github/workflows/publish-technical-documentation-next.yml b/.github/workflows/publish-technical-documentation-next.yml index 9d67f1724c5..f9c2adf0230 100644 --- a/.github/workflows/publish-technical-documentation-next.yml +++ b/.github/workflows/publish-technical-documentation-next.yml @@ -15,7 +15,7 @@ jobs: id-token: write runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 - uses: grafana/writers-toolkit/publish-technical-documentation@publish-technical-documentation/v1 # zizmor: ignore[unpinned-uses] with: website_directory: content/docs/grafana/next diff --git a/.github/workflows/publish-technical-documentation-release.yml b/.github/workflows/publish-technical-documentation-release.yml index d5f597686ca..52d7da0562f 100644 --- a/.github/workflows/publish-technical-documentation-release.yml +++ b/.github/workflows/publish-technical-documentation-release.yml @@ -17,7 +17,7 @@ jobs: id-token: write runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/release-pr.yml b/.github/workflows/release-pr.yml index 4d66838b7ec..42dd7051b71 100644 --- a/.github/workflows/release-pr.yml +++ b/.github/workflows/release-pr.yml @@ -72,14 +72,14 @@ jobs: ownerRepo: 'grafana/grafana' pattern: ${{ inputs.target }} - name: Checkout Grafana - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: ref: ${{ steps.branch.outputs.branch }} fetch-tags: true token: ${{ secrets.GITHUB_TOKEN }} persist-credentials: false - name: Checkout Grafana (main) - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: ref: main fetch-depth: '0' @@ -88,7 +88,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} persist-credentials: false - name: Setup nodejs environment - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: .nvmrc - name: Configure git user @@ -107,7 +107,7 @@ jobs: private_key: ${{ secrets.GRAFANA_DELIVERY_BOT_APP_PEM }} - name: Generate changelog id: changelog - uses: ./.grafana-main/.github/workflows/actions/changelog + uses: ./.grafana-main/.github/actions/changelog with: github_token: ${{ steps.generate_changelog_token.outputs.token }} target: v${{ env.VERSION }} diff --git a/.github/workflows/run-dashboard-search-e2e.yml b/.github/workflows/run-dashboard-search-e2e.yml index 7d59bd49fb5..76d765f4fcf 100644 --- a/.github/workflows/run-dashboard-search-e2e.yml +++ b/.github/workflows/run-dashboard-search-e2e.yml @@ -25,16 +25,16 @@ jobs: id-token: write steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Pin Go version to mod file - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: 'go.mod' cache: true - run: go version - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version: 20 cache: 'yarn' @@ -94,7 +94,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 - name: Restore Cached Node Modules uses: actions/cache@v3 with: diff --git a/.github/workflows/run-e2e-suite.yml b/.github/workflows/run-e2e-suite.yml index b99d0ea0b30..5445d21f9bb 100644 --- a/.github/workflows/run-e2e-suite.yml +++ b/.github/workflows/run-e2e-suite.yml @@ -14,7 +14,7 @@ jobs: main: runs-on: ubuntu-latest-8-cores steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - uses: actions/download-artifact@v4 diff --git a/.github/workflows/run-schema-v2-e2e.yml b/.github/workflows/run-schema-v2-e2e.yml index 62975992acb..aa8a11c4c7f 100644 --- a/.github/workflows/run-schema-v2-e2e.yml +++ b/.github/workflows/run-schema-v2-e2e.yml @@ -18,15 +18,15 @@ jobs: if: github.event.pull_request.draft == false steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Pin Go version to mod file - uses: actions/setup-go@111f3307d8850f501ac008e886eec1fd1932a34 + uses: actions/setup-go@v5 with: go-version-file: 'go.mod' - run: go version - - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + - uses: actions/setup-node@v4 with: node-version: 20 cache: 'yarn' diff --git a/.github/workflows/storybook-verification.yml b/.github/workflows/storybook-verification.yml index 99f0c6dfe82..c50b7533d0d 100644 --- a/.github/workflows/storybook-verification.yml +++ b/.github/workflows/storybook-verification.yml @@ -21,12 +21,12 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + uses: actions/checkout@v4 with: persist-credentials: false - name: Setup Node.js - uses: actions/setup-node@cdca7365b2dadb8aad0a33bc7601856ffabcc48e + uses: actions/setup-node@v4 with: node-version-file: 'package.json' cache: 'yarn' diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml index 921d25b76ff..85e2ed7f07f 100644 --- a/.github/workflows/trivy-scan.yml +++ b/.github/workflows/trivy-scan.yml @@ -16,7 +16,7 @@ jobs: trivy-scan: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - name: Install Trivy diff --git a/.github/workflows/update-make-docs.yml b/.github/workflows/update-make-docs.yml index 7d727f284df..aab2be84ad9 100644 --- a/.github/workflows/update-make-docs.yml +++ b/.github/workflows/update-make-docs.yml @@ -8,7 +8,7 @@ jobs: if: github.repository == 'grafana/grafana' runs-on: ubuntu-latest steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 + - uses: actions/checkout@v4 with: persist-credentials: false - uses: grafana/writers-toolkit/update-make-docs@update-make-docs/v1 # zizmor: ignore[unpinned-uses] diff --git a/.github/workflows/verify-kinds.yml b/.github/workflows/verify-kinds.yml index ce0a7a00b8a..c793dcb2895 100644 --- a/.github/workflows/verify-kinds.yml +++ b/.github/workflows/verify-kinds.yml @@ -11,7 +11,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Checkout Grafana repo" - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683" + uses: "actions/checkout@v4" with: fetch-depth: 0 persist-credentials: false