name: dependency-updates on: push: branches: - develop schedule: - cron: "0 */6 * * *" workflow_dispatch: jobs: cs-nginx-bouncer-update: runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@v4 - name: update cs-nginx-bouncer version id: update run: | CSNB_VER="$( git ls-remote --tags https://github.com/crowdsecurity/cs-nginx-bouncer \ | cut -d/ -f3 \ | sort -V \ | tail -1 \ | sed -E "s/\^\{\}//" )" sed -i "s|ARG CSNB_VER=.*|ARG CSNB_VER=$CSNB_VER|" Dockerfile echo "version=$CSNB_VER" >> $GITHUB_OUTPUT - name: Create Pull Request uses: peter-evans/create-pull-request@v6 with: signoff: true delete-branch: true commit-message: update cs-nginx-bouncer version to ${{ steps.update.outputs.version }} branch: update-cs-nginx-bouncer-version title: update cs-nginx-bouncer version to ${{ steps.update.outputs.version }} body: update cs-nginx-bouncer version to ${{ steps.update.outputs.version }} coreruleset-update: runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@v4 - name: update coreruleset version id: update run: | CRS_VER="$( git ls-remote --tags https://github.com/coreruleset/coreruleset \ | cut -d/ -f3 \ | sort -V \ | tail -1 \ | sed -E "s/\^\{\}//" )" sed -i "s|ARG CRS_VER=.*|ARG CRS_VER=$CRS_VER|" Dockerfile echo "version=$CRS_VER" >> $GITHUB_OUTPUT - name: Create Pull Request uses: peter-evans/create-pull-request@v6 with: signoff: true delete-branch: true commit-message: update coreruleset version to ${{ steps.update.outputs.version }} branch: update-coreruleset-version title: update coreruleset version to ${{ steps.update.outputs.version }} body: update coreruleset version to ${{ steps.update.outputs.version }}