Update dependencies

* rollup
* vite
* body-parser
* express
* path-to-regexp
* send
* serve-static
* micromatch
* webpack
* cookie
* junit in demos

* update workflow actions (use sha for non github actions)

* update helm dependencies to latest version

* add license information to internal pages

Contributed on behalf of STMicroelectronics

.github/workflows/reusable-demo.yml

@@ -47,7 +47,7 @@ jobs:
         run: docker build -t ${{ steps.get_tags.outputs.version_tag }} -f ${{ inputs.docker_file }} ${{ inputs.docker_location }}
 
       - name: Login to DockerHub
-        uses: docker/login-action@v3
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
         with:
           username: ${{ secrets.dockerhub_username }}
           password: ${{ secrets.dockerhub_token }}

.github/workflows/reusable-docker.yml

@@ -81,7 +81,7 @@ jobs:
       # Only log in to dockerhub when we will publish, so either a main merge with next-version or a release
       - name: Login to DockerHub
         if: github.event_name == 'push' && steps.version_check.outputs.is_next_version == 'true' || github.event_name == 'release'
-        uses: docker/login-action@v3
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
         with:
           username: ${{ secrets.dockerhub_username }}
           password: ${{ secrets.dockerhub_token }}

.github/workflows/reusable-maven.yml

@@ -111,7 +111,7 @@ jobs:
         if: |
           (github.event_name == 'push' && steps.version_check.outputs.is_snapshot_version == 'true') || 
           (github.event_name == 'release' && steps.version_check.outputs.is_snapshot_version == 'false')
-        uses: google-github-actions/auth@v2
+        uses: google-github-actions/auth@6fc4af4b145ae7821d527454aa9bd537d1f2dc5f #v2.1.7
         with:
           credentials_json: "${{ secrets.GCP_SA_KEY }}"
 

.github/workflows/stale.yml

@@ -10,7 +10,7 @@ jobs:
       issues: write
       pull-requests: write
     steps:
-      - uses: actions/stale@v6.0.1
+      - uses: actions/stale@v9
         with:
           days-before-stale: 180
           days-before-close: 14
@@ -19,4 +19,4 @@ jobs:
           close-issue-message: "This issue was closed because it has been inactive for 14 days since being marked as stale."
           stale-pr-message: "This PR is stale because it has been open 180 days with no activity."
           close-pr-message: "This PR was closed because it has been inactive for 14 days since being marked as stale."
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
+          repo-token: ${{ secrets.GITHUB_TOKEN }}

demo/dockerfiles/demo-theia-docker/project/java/pom.xml

@@ -21,7 +21,7 @@
         <dependency>
             <groupId>junit</groupId>
             <artifactId>junit</artifactId>
-            <version>4.11</version>
+            <version>4.13.2</version>
             <scope>test</scope>
         </dependency>
     </dependencies>

demo/dockerfiles/demo-theia-monitor-vscode/project/java/pom.xml

@@ -21,7 +21,7 @@
         <dependency>
             <groupId>junit</groupId>
             <artifactId>junit</artifactId>
-            <version>4.11</version>
+            <version>4.13.2</version>
             <scope>test</scope>
         </dependency>
     </dependencies>

node/landing-page/package.json

@@ -1,6 +1,7 @@
 {
   "name": "landing-page",
   "version": "0.1.0",
+  "license": "EPL-2.0",
   "private": true,
   "type": "module",
   "scripts": {