Update GitHub Actions workflow (#44)

This PR updates the GitHub Actions workflows to use the latest version of each action. It also sets up Dependabot so it can update GitHub Actions automatically.
SRGSSR · Aug 30, 2024 · d1ad3bd · d1ad3bd
1 parent 0effa7a
commit d1ad3bd
Show file tree

Hide file tree

Showing 3 changed files with 23 additions and 19 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,14 @@
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    groups:
+      actions:
+        patterns:
+          - "*"
diff --git a/.github/workflows/code_quality.yaml b/.github/workflows/code_quality.yaml
@@ -15,11 +15,11 @@ jobs:
         with:
           java-version: '17'
           distribution: 'temurin'
-      - uses: gradle/actions/setup-gradle@v3
+      - uses: gradle/actions/setup-gradle@v4
       - name: Run Android Lint
         run: ./gradlew lint
       - uses: github/codeql-action/upload-sarif@v3
-        if: success() || failure()
+        if: ${{ !cancelled() }}
         with:
           sarif_file: build/reports/android-lint/
           category: android-lint
@@ -34,11 +34,11 @@ jobs:
         with:
           java-version: '17'
           distribution: 'temurin'
-      - uses: gradle/actions/setup-gradle@v3
+      - uses: gradle/actions/setup-gradle@v4
       - name: Run Detekt
         run: ./gradlew detekt
       - uses: github/codeql-action/upload-sarif@v3
-        if: success() || failure()
+        if: ${{ !cancelled() }}
         with:
           sarif_file: build/reports/detekt.sarif
           category: detekt
@@ -53,6 +53,6 @@ jobs:
         with:
           java-version: '17'
           distribution: 'temurin'
-      - uses: gradle/actions/setup-gradle@v3
+      - uses: gradle/actions/setup-gradle@v4
       - name: Run Unit Tests
         run: ./gradlew testDebug
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -1,10 +1,3 @@
-# This workflow uses actions that are not certified by GitHub.
-# They are provided by a third-party and are governed by
-# separate terms of service, privacy policy, and support
-# documentation.
-# This workflow will build a Java project with Gradle and cache/restore any dependencies to improve the workflow execution time
-# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-gradle
-
 name: Release
 
 on:
@@ -17,18 +10,15 @@ jobs:
       contents: read
       packages: write
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Set up JDK 17
-        uses: actions/setup-java@v3
+        uses: actions/setup-java@v4
         with:
           java-version: '17'
           distribution: 'temurin'
-          cache: 'gradle'
-      # the publishing section of your build.gradle
+      - uses: gradle/actions/setup-gradle@v4
       - name: Publish to GitHub Packages
-        uses: gradle/[email protected]
-        with:
-          arguments: publish
+        run: ./gradlew publish
         env:
           USERNAME: ${{ github.actor }}
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}