merge main

SamRobinson75684 · SamRobinson75684 · commit 5010638f0a15 · 2025-03-11T10:41:09.000Z
diff --git a/.editorconfig b/.editorconfig
@@ -23,6 +23,9 @@ indent_size = unset
 [*.py]
 indent_size = 4
 
+[*.yaml]
+indent_size = unset
+
 [{Dockerfile,Dockerfile.}*]
 indent_size = 4
 
diff --git a/.github/actions/create-lines-of-code-report/action.yaml b/.github/actions/create-lines-of-code-report/action.yaml
@@ -1,57 +1,57 @@
 name: "Count lines of code"
 description: "Count lines of code"
 inputs:
-  build_datetime:
-    description: "Build datetime, set by the CI/CD pipeline workflow"
-    required: true
-  build_timestamp:
-    description: "Build timestamp, set by the CI/CD pipeline workflow"
-    required: true
-  idp_aws_report_upload_account_id:
-    description: "IDP AWS account ID"
-    required: true
-  idp_aws_report_upload_region:
-    description: "IDP AWS account region"
-    required: true
-  idp_aws_report_upload_role_name:
-    description: "Role to upload the report"
-    required: true
-  idp_aws_report_upload_bucket_endpoint:
-    description: "Bucket endpoint for the report"
-    required: true
+    build_datetime:
+        description: "Build datetime, set by the CI/CD pipeline workflow"
+        required: true
+    build_timestamp:
+        description: "Build timestamp, set by the CI/CD pipeline workflow"
+        required: true
+    idp_aws_report_upload_account_id:
+        description: "IDP AWS account ID"
+        required: true
+    idp_aws_report_upload_region:
+        description: "IDP AWS account region"
+        required: true
+    idp_aws_report_upload_role_name:
+        description: "Role to upload the report"
+        required: true
+    idp_aws_report_upload_bucket_endpoint:
+        description: "Bucket endpoint for the report"
+        required: true
 runs:
-  using: "composite"
-  steps:
-    - name: "Create CLOC report"
-      shell: bash
-      run: |
-        export BUILD_DATETIME=${{ inputs.build_datetime }}
-        ./scripts/reports/create-lines-of-code-report.sh
-    - name: "Compress CLOC report"
-      shell: bash
-      run: zip lines-of-code-report.json.zip lines-of-code-report.json
-    - name: "Upload CLOC report as an artefact"
-      if: ${{ !env.ACT }}
-      uses: actions/upload-artifact@v3
-      with:
-        name: lines-of-code-report.json.zip
-        path: ./lines-of-code-report.json.zip
-        retention-days: 21
-    - name: "Check prerequisites for sending the report"
-      shell: bash
-      id: check
-      run: |
-        echo "secrets_exist=${{ inputs.idp_aws_report_upload_role_name != '' && inputs.idp_aws_report_upload_bucket_endpoint != '' }}" >> $GITHUB_OUTPUT
-    - name: "Authenticate to send the report"
-      if: steps.check.outputs.secrets_exist == 'true'
-      uses: aws-actions/configure-aws-credentials@v2
-      with:
-        role-to-assume: arn:aws:iam::${{ inputs.idp_aws_report_upload_account_id }}:role/${{ inputs.idp_aws_report_upload_role_name }}
-        aws-region: ${{ inputs.idp_aws_report_upload_region }}
-    - name: "Send the CLOC report to the central location"
-      shell: bash
-      if: steps.check.outputs.secrets_exist == 'true'
-      run: |
-        aws s3 cp \
-          ./lines-of-code-report.json.zip \
-          ${{ inputs.idp_aws_report_upload_bucket_endpoint }}/${{ inputs.build_timestamp }}-lines-of-code-report.json.zip
+    using: "composite"
+    steps:
+        - name: "Create CLOC report"
+          shell: bash
+          run: |
+              export BUILD_DATETIME=${{ inputs.build_datetime }}
+              ./scripts/reports/create-lines-of-code-report.sh
+        - name: "Compress CLOC report"
+          shell: bash
+          run: zip lines-of-code-report.json.zip lines-of-code-report.json
+        - name: "Upload CLOC report as an artefact"
+          if: ${{ !env.ACT }}
+          uses: actions/upload-artifact@v4
+          with:
+              name: lines-of-code-report.json.zip
+              path: ./lines-of-code-report.json.zip
+              retention-days: 21
+        - name: "Check prerequisites for sending the report"
+          shell: bash
+          id: check
+          run: |
+              echo "secrets_exist=${{ inputs.idp_aws_report_upload_role_name != '' && inputs.idp_aws_report_upload_bucket_endpoint != '' }}" >> $GITHUB_OUTPUT
+        - name: "Authenticate to send the report"
+          if: steps.check.outputs.secrets_exist == 'true'
+          uses: aws-actions/configure-aws-credentials@v2
+          with:
+              role-to-assume: arn:aws:iam::${{ inputs.idp_aws_report_upload_account_id }}:role/${{ inputs.idp_aws_report_upload_role_name }}
+              aws-region: ${{ inputs.idp_aws_report_upload_region }}
+        - name: "Send the CLOC report to the central location"
+          shell: bash
+          if: steps.check.outputs.secrets_exist == 'true'
+          run: |
+              aws s3 cp \
+                ./lines-of-code-report.json.zip \
+                ${{ inputs.idp_aws_report_upload_bucket_endpoint }}/${{ inputs.build_timestamp }}-lines-of-code-report.json.zip
diff --git a/.github/actions/scan-dependencies/action.yaml b/.github/actions/scan-dependencies/action.yaml
@@ -32,7 +32,7 @@ runs:
       run: zip sbom-repository-report.json.zip sbom-repository-report.json
     - name: "Upload SBOM report as an artefact"
       if: ${{ !env.ACT }}
-      uses: actions/upload-artifact@v3
+      uses: actions/upload-artifact@v4
       with:
         name: sbom-repository-report.json.zip
         path: ./sbom-repository-report.json.zip
@@ -47,7 +47,7 @@ runs:
       run: zip vulnerabilities-repository-report.json.zip vulnerabilities-repository-report.json
     - name: "Upload vulnerabilities report as an artefact"
       if: ${{ !env.ACT }}
-      uses: actions/upload-artifact@v3
+      uses: actions/upload-artifact@v4
       with:
         name: vulnerabilities-repository-report.json.zip
         path: ./vulnerabilities-repository-report.json.zip
