From 341995e89bd2ea6bfc11f84c9c2d27c550a686d0 Mon Sep 17 00:00:00 2001 From: per1234 Date: Mon, 3 Mar 2025 20:26:06 -0800 Subject: [PATCH] Use maintained fork of "setup-licensed" action in dependency license check workflow This GitHub Actions action is used by the dependency license check workflow to install the "Licensed" tool in the runner workspace. The action has a convoluted history of ownership: the repository was originally owned by GitHub user "jonabc". It was later transferred to the "github" organization. Then GitHub abandoned the project, archiving the repository. The "licensee" organization has now created a hard fork of the action, which is recommended in the readme of the "github/setup-licensed" repository. The `licensee` organization has also taken over the management of the "Licensed" tool, and their `licensee` Ruby gem is a significant dependency of "Licensed". So they will be best equipped to maintain the action going forward. The workflow is hereby updated to use the now canonical "licensee/setup-licensed" action. The "licensee/setup-licensed" action maintainers have not provided a major version ref, so it is necessary to pin the action to the latest release tag. --- workflow-templates/check-go-dependencies-task.yml | 8 ++++---- workflow-templates/check-npm-dependencies-task.yml | 8 ++++---- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/workflow-templates/check-go-dependencies-task.yml b/workflow-templates/check-go-dependencies-task.yml index 598306d2..4183de58 100644 --- a/workflow-templates/check-go-dependencies-task.yml +++ b/workflow-templates/check-go-dependencies-task.yml @@ -72,14 +72,14 @@ jobs: with: submodules: recursive - # This is required to allow jonabc/setup-licensed to install licensed via Ruby gem. + # This is required to allow licensee/setup-licensed to install licensed via Ruby gem. - name: Install Ruby uses: ruby/setup-ruby@v1 with: ruby-version: ruby # Install latest version - name: Install licensed - uses: jonabc/setup-licensed@v1 + uses: licensee/setup-licensed@v1.3.2 with: github_token: ${{ secrets.GITHUB_TOKEN }} version: 3.x @@ -131,14 +131,14 @@ jobs: with: submodules: recursive - # This is required to allow jonabc/setup-licensed to install licensed via Ruby gem. + # This is required to allow licensee/setup-licensed to install licensed via Ruby gem. - name: Install Ruby uses: ruby/setup-ruby@v1 with: ruby-version: ruby # Install latest version - name: Install licensed - uses: jonabc/setup-licensed@v1 + uses: licensee/setup-licensed@v1.3.2 with: github_token: ${{ secrets.GITHUB_TOKEN }} version: 3.x diff --git a/workflow-templates/check-npm-dependencies-task.yml b/workflow-templates/check-npm-dependencies-task.yml index 2c9c33da..57262f00 100644 --- a/workflow-templates/check-npm-dependencies-task.yml +++ b/workflow-templates/check-npm-dependencies-task.yml @@ -72,14 +72,14 @@ jobs: with: submodules: recursive - # This is required to allow jonabc/setup-licensed to install licensed via Ruby gem. + # This is required to allow licensee/setup-licensed to install licensed via Ruby gem. - name: Install Ruby uses: ruby/setup-ruby@v1 with: ruby-version: ruby # Install latest version - name: Install licensed - uses: jonabc/setup-licensed@v1 + uses: licensee/setup-licensed@v1.3.2 with: github_token: ${{ secrets.GITHUB_TOKEN }} version: 3.x @@ -131,14 +131,14 @@ jobs: with: submodules: recursive - # This is required to allow jonabc/setup-licensed to install licensed via Ruby gem. + # This is required to allow licensee/setup-licensed to install licensed via Ruby gem. - name: Install Ruby uses: ruby/setup-ruby@v1 with: ruby-version: ruby # Install latest version - name: Install licensed - uses: jonabc/setup-licensed@v1 + uses: licensee/setup-licensed@v1.3.2 with: github_token: ${{ secrets.GITHUB_TOKEN }} version: 3.x