From 53e1788596cd21cfe2a03976503ec5c0707b2422 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 5 Jul 2026 23:19:19 +0000 Subject: [PATCH] chore(ci)(deps): bump the github-actions group across 1 directory with 8 updates Bumps the github-actions group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6.0.3` | `7.0.0` | | [actions/cache](https://github.com/actions/cache) | `5.0.1` | `6.1.0` | | [oxsecurity/megalinter](https://github.com/oxsecurity/megalinter) | `9.5.0` | `9.6.0` | | [actions/github-script](https://github.com/actions/github-script) | `8.0.0` | `9.0.0` | | [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4.9.0` | `5.0.0` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.12.0` | `4.2.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `6.19.2` | `7.3.0` | | [actions/upload-code-coverage](https://github.com/actions/upload-code-coverage) | `1.2.0` | `1.3.0` | Updates `actions/checkout` from 6.0.3 to 7.0.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0) Updates `actions/cache` from 5.0.1 to 6.1.0 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v5.0.1...55cc8345863c7cc4c66a329aec7e433d2d1c52a9) Updates `oxsecurity/megalinter` from 9.5.0 to 9.6.0 - [Release notes](https://github.com/oxsecurity/megalinter/releases) - [Changelog](https://github.com/oxsecurity/megalinter/blob/main/CHANGELOG.md) - [Commits](https://github.com/oxsecurity/megalinter/compare/0e3ce9b9c8c10effb9b269509cc47ca17cae31c7...ef3e84b8b836d76db562d0f3ed7da61e8fd538bc) Updates `actions/github-script` from 8.0.0 to 9.0.0 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/ed597411d8f924073f98dfc5c65a23a2325f34cd...3a2844b7e9c422d3c10d287c895573f7108da1b3) Updates `actions/dependency-review-action` from 4.9.0 to 5.0.0 - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/2031cfc080254a8a887f58cffee85186f0e49e48...a1d282b36b6f3519aa1f3fc636f609c47dddb294) Updates `docker/setup-buildx-action` from 3.12.0 to 4.2.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v3.12.0...bb05f3f5519dd87d3ba754cc423b652a5edd6d2c) Updates `docker/build-push-action` from 6.19.2 to 7.3.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v6.19.2...53b7df96c91f9c12dcc8a07bcb9ccacbed38856a) Updates `actions/upload-code-coverage` from 1.2.0 to 1.3.0 - [Commits](https://github.com/actions/upload-code-coverage/compare/b51da2c3c1b23e04d2d6477cfc34350b1f5cd3e9...abb5995db9e0199b0e2bb9dbd136fce4cb1ec4d3) --- updated-dependencies: - dependency-name: actions/cache dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/dependency-review-action dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/github-script dependency-version: 9.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/upload-code-coverage dependency-version: 1.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/build-push-action dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: oxsecurity/megalinter dependency-version: 9.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/00-ci.yaml | 10 +++++----- .github/workflows/01-commitlint.yaml | 2 +- .github/workflows/02-vitest.yaml | 4 ++-- .github/workflows/03-coverage.yaml | 10 +++++----- .github/workflows/04-graphql-schema.yaml | 4 ++-- .github/workflows/05-repository-quality.yaml | 4 ++-- .github/workflows/06-dependency-review.yaml | 4 ++-- .github/workflows/07-gitleaks.yaml | 2 +- .github/workflows/08-codeql.yaml | 4 ++-- .github/workflows/09-container-security.yaml | 10 +++++----- .github/workflows/10-snyk.yaml | 4 ++-- .github/workflows/100-project-sync.yaml | 2 +- .github/workflows/101-project-auto-add.yaml | 2 +- .github/workflows/102-project-status.yaml | 2 +- .github/workflows/103-project-ai-triage.yaml | 2 +- .github/workflows/104-project-pr-lifecycle.yaml | 2 +- .github/workflows/105-project-drift-check.yaml | 2 +- .github/workflows/11-sonar.yaml | 2 +- .github/workflows/12-sync-labels.yaml | 2 +- .github/workflows/14-sync-milestones.yaml | 2 +- .github/workflows/16-meticulous.yaml | 2 +- .github/workflows/17-code-coverage.yaml | 4 ++-- .github/workflows/19-ghcr-publish.yaml | 4 ++-- .github/workflows/20-cloudflare-preview.yaml | 4 ++-- .github/workflows/21-cloudflare-staging.yaml | 4 ++-- .github/workflows/23-release.yaml | 2 +- .github/workflows/24-cloudflare-production.yaml | 2 +- .github/workflows/28-hercules-insights.yaml | 2 +- 28 files changed, 50 insertions(+), 50 deletions(-) diff --git a/.github/workflows/00-ci.yaml b/.github/workflows/00-ci.yaml index 087580c..5a7bc4d 100644 --- a/.github/workflows/00-ci.yaml +++ b/.github/workflows/00-ci.yaml @@ -52,7 +52,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 filter: tree:0 @@ -81,7 +81,7 @@ jobs: - name: Restore pnpm store cache id: cache_pnpm - uses: actions/cache@9255dc7a253b0ccc959486e2bca901246202afeb # v5.0.1 + uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: ${{ env.PNPM_STORE_DIR }} key: pnpm-store-${{ runner.os }}-node-24-pnpm-10-${{ hashFiles('pnpm-lock.yaml') }} @@ -318,7 +318,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 filter: tree:0 @@ -343,7 +343,7 @@ jobs: - name: Run MegaLinter id: megalinter continue-on-error: true - uses: oxsecurity/megalinter@0e3ce9b9c8c10effb9b269509cc47ca17cae31c7 # v9.5.0 + uses: oxsecurity/megalinter@ef3e84b8b836d76db562d0f3ed7da61e8fd538bc # v9.6.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} APPLY_FIXES: none @@ -385,7 +385,7 @@ jobs: - name: Update pull request CI summary if: github.event.pull_request.head.repo.full_name == github.repository continue-on-error: true - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0 + uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0 env: RUN_URL: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }} RUN_NUMBER: ${{ github.run_number }} diff --git a/.github/workflows/01-commitlint.yaml b/.github/workflows/01-commitlint.yaml index 6cc5ce7..755ae74 100644 --- a/.github/workflows/01-commitlint.yaml +++ b/.github/workflows/01-commitlint.yaml @@ -49,7 +49,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 fetch-tags: false diff --git a/.github/workflows/02-vitest.yaml b/.github/workflows/02-vitest.yaml index d25c3b7..5faa2e1 100644 --- a/.github/workflows/02-vitest.yaml +++ b/.github/workflows/02-vitest.yaml @@ -50,7 +50,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 fetch-tags: false @@ -70,7 +70,7 @@ jobs: cache-dependency-path: pnpm-lock.yaml - name: Restore Nx cache - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 + uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: .nx/cache key: nx-${{ runner.os }}-${{ hashFiles('pnpm-lock.yaml', 'nx.json', 'package.json') }}-${{ github.sha }} diff --git a/.github/workflows/03-coverage.yaml b/.github/workflows/03-coverage.yaml index 8f26ad1..d6dbc93 100644 --- a/.github/workflows/03-coverage.yaml +++ b/.github/workflows/03-coverage.yaml @@ -53,7 +53,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 fetch-tags: false @@ -73,7 +73,7 @@ jobs: cache-dependency-path: pnpm-lock.yaml - name: Restore Nx cache - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 + uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: .nx/cache key: nx-vitest-${{ runner.os }}-${{ hashFiles('pnpm-lock.yaml', 'nx.json', 'package.json') }}-${{ github.sha }} @@ -524,7 +524,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 fetch-tags: false @@ -544,7 +544,7 @@ jobs: cache-dependency-path: pnpm-lock.yaml - name: Restore Nx cache - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 + uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: .nx/cache key: nx-e2e-${{ runner.os }}-${{ hashFiles('pnpm-lock.yaml', 'nx.json', 'package.json') }}-${{ github.sha }} @@ -553,7 +553,7 @@ jobs: nx-e2e-${{ runner.os }}- - name: Restore Playwright browser cache - uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 + uses: actions/cache@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0 with: path: ~/.cache/ms-playwright key: playwright-${{ runner.os }}-${{ hashFiles('pnpm-lock.yaml') }} diff --git a/.github/workflows/04-graphql-schema.yaml b/.github/workflows/04-graphql-schema.yaml index 07b41f4..d507dfc 100644 --- a/.github/workflows/04-graphql-schema.yaml +++ b/.github/workflows/04-graphql-schema.yaml @@ -87,7 +87,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false @@ -344,7 +344,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/05-repository-quality.yaml b/.github/workflows/05-repository-quality.yaml index 960b090..c04e863 100644 --- a/.github/workflows/05-repository-quality.yaml +++ b/.github/workflows/05-repository-quality.yaml @@ -102,7 +102,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # Full history lets MegaLinter accurately determine PR diffs and # perform complete repository scans on protected branches. @@ -163,7 +163,7 @@ jobs: - name: Run MegaLinter id: megalinter - uses: oxsecurity/megalinter@0e3ce9b9c8c10effb9b269509cc47ca17cae31c7 # v9.5.0 + uses: oxsecurity/megalinter@ef3e84b8b836d76db562d0f3ed7da61e8fd538bc # v9.6.0 env: # Enables individual linter status checks when GitHub permits them. GITHUB_TOKEN: ${{ github.token }} diff --git a/.github/workflows/06-dependency-review.yaml b/.github/workflows/06-dependency-review.yaml index fb7f095..af73ecc 100644 --- a/.github/workflows/06-dependency-review.yaml +++ b/.github/workflows/06-dependency-review.yaml @@ -38,13 +38,13 @@ jobs: steps: - name: Check out pull request - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false - name: Review dependency changes - uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0 + uses: actions/dependency-review-action@a1d282b36b6f3519aa1f3fc636f609c47dddb294 # v5.0.0 with: # Fail on new High or Critical dependency vulnerabilities. fail-on-severity: high diff --git a/.github/workflows/07-gitleaks.yaml b/.github/workflows/07-gitleaks.yaml index 52690ec..57d77fb 100644 --- a/.github/workflows/07-gitleaks.yaml +++ b/.github/workflows/07-gitleaks.yaml @@ -73,7 +73,7 @@ jobs: steps: - name: Check out repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/08-codeql.yaml b/.github/workflows/08-codeql.yaml index aa6432a..1d8917e 100644 --- a/.github/workflows/08-codeql.yaml +++ b/.github/workflows/08-codeql.yaml @@ -77,7 +77,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -233,7 +233,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false diff --git a/.github/workflows/09-container-security.yaml b/.github/workflows/09-container-security.yaml index 9d2935c..5a7db99 100644 --- a/.github/workflows/09-container-security.yaml +++ b/.github/workflows/09-container-security.yaml @@ -92,7 +92,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -205,7 +205,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -314,7 +314,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -339,7 +339,7 @@ jobs: printf 'Using Trivy exceptions: %s\n' "$TRIVY_IGNORE_FILE" - name: Set up Docker Buildx - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0 + uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0 - name: Prepare Trivy reports directory run: | @@ -350,7 +350,7 @@ jobs: - name: Build container image id: build continue-on-error: true - uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2 + uses: docker/build-push-action@53b7df96c91f9c12dcc8a07bcb9ccacbed38856a # v7.3.0 with: context: . file: ${{ matrix.dockerfile }} diff --git a/.github/workflows/10-snyk.yaml b/.github/workflows/10-snyk.yaml index ad15be9..1ccb368 100644 --- a/.github/workflows/10-snyk.yaml +++ b/.github/workflows/10-snyk.yaml @@ -104,7 +104,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -256,7 +256,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false diff --git a/.github/workflows/100-project-sync.yaml b/.github/workflows/100-project-sync.yaml index e6817cc..4238e83 100644 --- a/.github/workflows/100-project-sync.yaml +++ b/.github/workflows/100-project-sync.yaml @@ -52,7 +52,7 @@ jobs: steps: - name: Checkout Project configuration - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event_name == 'pull_request' && github.event.pull_request.head.sha || github.sha }} fetch-depth: 1 diff --git a/.github/workflows/101-project-auto-add.yaml b/.github/workflows/101-project-auto-add.yaml index b324c43..38a6d30 100644 --- a/.github/workflows/101-project-auto-add.yaml +++ b/.github/workflows/101-project-auto-add.yaml @@ -132,7 +132,7 @@ jobs: - name: Checkout trusted Project configuration if: steps.gate.outputs.can_mutate == 'true' - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: master fetch-depth: 1 diff --git a/.github/workflows/102-project-status.yaml b/.github/workflows/102-project-status.yaml index c7ef999..c6ed975 100644 --- a/.github/workflows/102-project-status.yaml +++ b/.github/workflows/102-project-status.yaml @@ -66,7 +66,7 @@ jobs: fi - name: Checkout trusted Project configuration - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: master fetch-depth: 1 diff --git a/.github/workflows/103-project-ai-triage.yaml b/.github/workflows/103-project-ai-triage.yaml index 67b4424..b9599de 100644 --- a/.github/workflows/103-project-ai-triage.yaml +++ b/.github/workflows/103-project-ai-triage.yaml @@ -176,7 +176,7 @@ jobs: - name: Checkout trusted Project configuration if: steps.gate.outputs.can_run == 'true' - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: master fetch-depth: 1 diff --git a/.github/workflows/104-project-pr-lifecycle.yaml b/.github/workflows/104-project-pr-lifecycle.yaml index daca564..5c1f599 100644 --- a/.github/workflows/104-project-pr-lifecycle.yaml +++ b/.github/workflows/104-project-pr-lifecycle.yaml @@ -84,7 +84,7 @@ jobs: - name: Checkout trusted Project configuration if: steps.token.outputs.can_run == 'true' - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: master fetch-depth: 1 diff --git a/.github/workflows/105-project-drift-check.yaml b/.github/workflows/105-project-drift-check.yaml index 93bbef2..0240a00 100644 --- a/.github/workflows/105-project-drift-check.yaml +++ b/.github/workflows/105-project-drift-check.yaml @@ -49,7 +49,7 @@ jobs: steps: - name: Checkout trusted Project configuration - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: master fetch-depth: 1 diff --git a/.github/workflows/11-sonar.yaml b/.github/workflows/11-sonar.yaml index 723d2c4..d3706b2 100644 --- a/.github/workflows/11-sonar.yaml +++ b/.github/workflows/11-sonar.yaml @@ -171,7 +171,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/12-sync-labels.yaml b/.github/workflows/12-sync-labels.yaml index ce56618..b1aebdc 100644 --- a/.github/workflows/12-sync-labels.yaml +++ b/.github/workflows/12-sync-labels.yaml @@ -54,7 +54,7 @@ jobs: steps: - name: Check out label catalogue - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 sparse-checkout: | diff --git a/.github/workflows/14-sync-milestones.yaml b/.github/workflows/14-sync-milestones.yaml index f88fff5..da50f67 100644 --- a/.github/workflows/14-sync-milestones.yaml +++ b/.github/workflows/14-sync-milestones.yaml @@ -61,7 +61,7 @@ jobs: steps: - name: Check out milestone catalogue - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 sparse-checkout: | diff --git a/.github/workflows/16-meticulous.yaml b/.github/workflows/16-meticulous.yaml index 3a7b314..5f8144c 100644 --- a/.github/workflows/16-meticulous.yaml +++ b/.github/workflows/16-meticulous.yaml @@ -46,7 +46,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/17-code-coverage.yaml b/.github/workflows/17-code-coverage.yaml index 53fa585..fac4207 100644 --- a/.github/workflows/17-code-coverage.yaml +++ b/.github/workflows/17-code-coverage.yaml @@ -64,7 +64,7 @@ jobs: steps: - name: Check out pull request head - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # Coverage must map to the PR head, not GitHub's temporary merge commit. ref: ${{ github.event.pull_request.head.sha || github.sha }} @@ -387,7 +387,7 @@ jobs: path: ${{ env.COVERAGE_DIRECTORY }} - name: Upload coverage to GitHub Code Quality - uses: actions/upload-code-coverage@b51da2c3c1b23e04d2d6477cfc34350b1f5cd3e9 # v1.2.0 + uses: actions/upload-code-coverage@abb5995db9e0199b0e2bb9dbd136fce4cb1ec4d3 # v1.3.0 with: file: ${{ env.COBERTURA_REPORT }} language: TypeScript diff --git a/.github/workflows/19-ghcr-publish.yaml b/.github/workflows/19-ghcr-publish.yaml index e4a0940..2410be6 100644 --- a/.github/workflows/19-ghcr-publish.yaml +++ b/.github/workflows/19-ghcr-publish.yaml @@ -63,7 +63,7 @@ jobs: steps: - name: Check out release source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.release.tag_name }} fetch-depth: 1 @@ -242,7 +242,7 @@ jobs: steps: - name: Check out release source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.release.tag_name }} fetch-depth: 1 diff --git a/.github/workflows/20-cloudflare-preview.yaml b/.github/workflows/20-cloudflare-preview.yaml index 783b931..2ae7f92 100644 --- a/.github/workflows/20-cloudflare-preview.yaml +++ b/.github/workflows/20-cloudflare-preview.yaml @@ -121,7 +121,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -324,7 +324,7 @@ jobs: steps: - name: Check out pull request - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/21-cloudflare-staging.yaml b/.github/workflows/21-cloudflare-staging.yaml index 48b67ad..125511e 100644 --- a/.github/workflows/21-cloudflare-staging.yaml +++ b/.github/workflows/21-cloudflare-staging.yaml @@ -100,7 +100,7 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 1 persist-credentials: false @@ -270,7 +270,7 @@ jobs: steps: - name: Check out staging branch - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/23-release.yaml b/.github/workflows/23-release.yaml index 94ae042..aeae531 100644 --- a/.github/workflows/23-release.yaml +++ b/.github/workflows/23-release.yaml @@ -109,7 +109,7 @@ jobs: steps: - name: Check out release target - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.target_ref }} fetch-depth: 0 diff --git a/.github/workflows/24-cloudflare-production.yaml b/.github/workflows/24-cloudflare-production.yaml index 4829108..df18ed8 100644 --- a/.github/workflows/24-cloudflare-production.yaml +++ b/.github/workflows/24-cloudflare-production.yaml @@ -100,7 +100,7 @@ jobs: steps: - name: Check out release tag - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.release.tag_name }} fetch-depth: 0 diff --git a/.github/workflows/28-hercules-insights.yaml b/.github/workflows/28-hercules-insights.yaml index ba1d80b..2ce75ce 100644 --- a/.github/workflows/28-hercules-insights.yaml +++ b/.github/workflows/28-hercules-insights.yaml @@ -42,7 +42,7 @@ jobs: steps: - name: Check out complete repository history - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false