Update actions to use latest versions and linting

thanhnguyen-mdb · thanhnguyen-mdb · commit 5e9c29eaece4 · 2025-12-03T18:39:38.000Z
diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
@@ -27,15 +27,13 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           persist-credentials: false
-
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: "3.10"
-
       - name: Generate SBOM
         run: |
           python -m venv .venv
@@ -50,34 +48,29 @@ jobs:
           cyclonedx-py environment --spec-version 1.5 --output-format JSON --output-file sbom.json .venv
           # Add PURL for django-mongodb-backend (local package doesn't get PURL automatically)
           jq '(.components[] | select(.name == "django-mongodb-backend" and .purl == null)) |= (. + {purl: ("pkg:pypi/django-mongodb-backend@" + .version)})' sbom.json > sbom.tmp.json && mv sbom.tmp.json sbom.json
-
       - name: Download CycloneDX CLI
         run: |
           curl -L -s -o /tmp/cyclonedx "https://github.com/CycloneDX/cyclonedx-cli/releases/download/v0.29.1/cyclonedx-linux-x64"
           chmod +x /tmp/cyclonedx
-
       - name: Validate SBOM
         run: /tmp/cyclonedx validate --input-file sbom.json --fail-on-errors
-
       - name: Cleanup
         if: always()
         run: rm -rf .venv .venv-sbom
-
       - name: Upload SBOM artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v5
         with:
           name: sbom
           path: sbom.json
           if-no-files-found: error
-
       - name: Create Pull Request
-        uses: peter-evans/create-pull-request@b4733b9419fd47bbfa1807b15627e17cd70b5b22
+        uses: peter-evans/create-pull-request@v7
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
-          commit-message: 'chore: Update SBOM after dependency changes'
+          commit-message: 'Update SBOM after dependency changes'
           branch: auto-update-sbom-${{ github.run_id }}
           delete-branch: true
-          title: 'chore: Update SBOM'
+          title: 'Update SBOM'
           body: |
             ## Automated SBOM Update
 
@@ -87,7 +80,7 @@ jobs:
             - Updated `sbom.json` to reflect current dependencies
 
             ### Verification
-            The SBOM was generated using cyclonedx-py v7.2.1 with the current Python environment.
+            The SBOM was generated using cyclonedx-py with the current Python environment.
 
             ### Triggered by
             - Commit: ${{ github.sha }}
