From 8a14e32e5a9f498ab9d092669188986f6b9cd973 Mon Sep 17 00:00:00 2001 From: Evgeny Parshutin Date: Thu, 9 Jul 2026 16:30:10 +0200 Subject: [PATCH 1/2] fix release zip glob to match flat build output directory structure --- .github/workflows/release.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3c4bcdff..e1e6c9b6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -38,7 +38,7 @@ jobs: - name: Display structure of files run: ls -R - name: Upload artifact - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-artifacts-${{ matrix.os }} path: | @@ -68,7 +68,7 @@ jobs: CIBW_BUILD: cp3* CIBW_SKIP: ${{ matrix.cibw_skip_args }} - name: Upload artifact - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-artifacts-python-${{ matrix.os }} path: python_dist*/** @@ -95,7 +95,7 @@ jobs: draft: false prerelease: false - name: Download artifacts - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: path: build-artifacts pattern: build-artifacts-* @@ -106,7 +106,7 @@ jobs: run: | zip -r ittapi_build_${{ github.ref_name }}.zip include && cd build-artifacts && - zip -rg ../ittapi_build_${{ github.ref_name }}.zip build*/**/bin build*/**/fortran python_dist && + zip -rg ../ittapi_build_${{ github.ref_name }}.zip build*/bin build*/fortran python_dist && cd - - name: Generate release provenance uses: actions/attest-build-provenance@00014ed6ed5efc5b1ab7f7f34a39eb55d41aa4f8 # v3.1.0 @@ -130,7 +130,7 @@ jobs: needs: [python_build, create_release] steps: - name: Download artifacts - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: pattern: build-artifacts-* merge-multiple: true From 735cfd57d426a0bb361e476bfb582fc1e4a33f18 Mon Sep 17 00:00:00 2001 From: Evgeny Parshutin Date: Thu, 9 Jul 2026 16:32:17 +0200 Subject: [PATCH 2/2] bump actions versions --- .github/workflows/codeql.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 4581c5ee..5b1e62a2 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -50,7 +50,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} - name: Upload CodeQL Security Report - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: codeql-report-${{ matrix.language }} path: report.pdf @@ -113,7 +113,7 @@ jobs: run: sarif html --output bandit-report.html results.sarif - name: Upload Bandit Scan report - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: bandit-report path: bandit-report.html