Merge pull request #1171 from RasaHQ/INFRA-1111

[INFRA-1111] Bump github actions runner OS version to ubuntu-24.04

Author: rasa-aadlv

.github/workflows/continuous-integration.yml

@@ -29,7 +29,7 @@ permissions:
 jobs:
   quality:
     name: Code Quality
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
       - name: Checkout git repository 🕝
@@ -85,7 +85,7 @@ jobs:
 
   test:
     name: Run Tests
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     strategy:
       matrix:
         python-version: [3.9, '3.10', '3.11', '3.12']
@@ -131,7 +131,7 @@ jobs:
 
   docker_linter:
     name: Lint Dockerfile
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3
       - name: Lint Dockerfile
@@ -142,7 +142,7 @@ jobs:
   rasa-sdk-dev-docker-image:
     name: Build dev Docker image
     if: "!startsWith(github.ref, 'refs/heads/prepare-release-')"
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
       - name: Check out code
@@ -169,7 +169,7 @@ jobs:
   rasa-sdk-with-dev-deps-docker-image:
     name: Build dev Docker image with dev dependencies
     if: "!startsWith(github.ref, 'refs/heads/prepare-release-')"
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
       - name: Check out code
@@ -196,7 +196,7 @@ jobs:
   grpc_standalone_integration_tests:
     name: Run gRPC integration tests using standalone server
     if: "!startsWith(github.ref, 'refs/heads/prepare-release-')"
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: [rasa-sdk-with-dev-deps-docker-image]
 
     steps:
@@ -223,7 +223,7 @@ jobs:
   grpc_docker_integration_tests:
     name: Run gRPC integration tests using Docker containers
     if: "!startsWith(github.ref, 'refs/heads/prepare-release-')"
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: [rasa-sdk-dev-docker-image, rasa-sdk-with-dev-deps-docker-image]
 
     steps:

.github/workflows/dev-release.yml

@@ -19,7 +19,7 @@ jobs:
   prepare-dev-release:
     name: Prepare DEV Release
     if: ${{ github.event_name == 'workflow_dispatch' }}
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Checkout repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

.github/workflows/git-backup.yml

@@ -11,7 +11,7 @@ permissions:
 
 jobs:
   backup:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Checkout repository
         uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c

.github/workflows/pr-cleanup.yml

@@ -15,7 +15,7 @@ jobs:
     # Skip any PR created by dependabot to avoid permission issues
     if: (github.actor != 'dependabot[bot]')
     name: Delete PR Docker Images
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@8c3f20df09ac63af7b3ae3d7c91f105f857d8497 #v3.0.1

.github/workflows/pr-merged.yml

@@ -20,7 +20,7 @@ permissions:
 jobs:
   rasa-sdk-dev-docker-image:
     name: Build Dev Docker Image and Push to AWS
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
       - name: Check out code

.github/workflows/release-artifacts.yml

@@ -13,7 +13,7 @@ on:
 jobs:
   release-artifacts-docker:
     name: Release Artifacts Docker
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     outputs:
       tag_version: ${{ steps.set-tag-version.outputs.tag_version }}
@@ -57,7 +57,7 @@ jobs:
             
   release-artifacts-pypi:
     name: Release Artifacts PyPI
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
       - name: Checkout git repository 🕝
@@ -103,7 +103,7 @@ jobs:
 
   release-artifact-slack-notifications:
     name: Release Analytics Artifact Slack Notifications
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: [release-artifacts-docker, release-artifacts-pypi]
     if: always()  # Ensures this job runs regardless of the result of previous jobs
 

.github/workflows/release.yml

@@ -22,7 +22,7 @@ jobs:
   prepare-the-release:
     name: Prepare the Release
     if: ${{ github.event_name == 'workflow_dispatch' }}
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Checkout repository
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
@@ -99,7 +99,7 @@ jobs:
   if_merged_tag_release:
     name: Tag Release Version
     if: startsWith(github.head_ref, 'prepare-release-') && github.event.pull_request.merged == true
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Checkout git repository 🕝
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4

.github/workflows/scan_docker_image_dependencies.yml

@@ -5,7 +5,7 @@ on:
 
 jobs:
   scan_and_alert:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     steps:
     - name: Checkout repository to check tags

.github/workflows/security-patching.yml

@@ -17,7 +17,7 @@ permissions:
 
 jobs:
   get_tags:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     continue-on-error: true
     outputs:
       tags: ${{ steps.tags.outputs.tags }}
@@ -61,7 +61,7 @@ jobs:
       
 
   build:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: get_tags
     # Don't allow a single image failure to block all the image builds.
     continue-on-error: true

.github/workflows/security-scans.yml

@@ -8,7 +8,7 @@ jobs:
 
   trivy:
     name: Detecting hardcoded secrets
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
     - uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3
       with:

.github/workflows/semgrep-check.yml

@@ -14,7 +14,7 @@ jobs:
     # User-definable name of this GitHub Actions job:
     name: Semgrep Workflow Security Scan
     # If you are self-hosting, change the following `runs-on` value: 
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
 
     container:
       # A Docker image with Semgrep installed. Do not change this.

.github/workflows/spellcheck.yml

@@ -7,7 +7,7 @@ on:
 jobs:
   spellcheck:
     name: Typo CI (GitHub Action)
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     timeout-minutes: 4
     if: "!contains(github.event.head_commit.message, '[ci skip]')"
     steps: