From 58d6cc98aeb8347c079d318c0a0eeac93725cc95 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 18 Mar 2026 20:43:57 +0000 Subject: [PATCH] chore(deps): update github actions --- .github/workflows/_audit.yml | 6 +++--- .github/workflows/_build-native-only.yml | 6 +++--- .github/workflows/_claude-code.yml | 8 ++++---- .github/workflows/_codeql.yml | 2 +- .github/workflows/_docker-publish.yml | 18 ++++++++--------- .../workflows/_ketryx_report_and_check.yml | 6 +++--- .github/workflows/_lint.yml | 4 ++-- .github/workflows/_package-publish.yml | 20 +++++++++---------- .github/workflows/_scheduled-audit.yml | 6 +++--- .github/workflows/_scheduled-test-daily.yml | 10 +++++----- .github/workflows/_scheduled-test-hourly.yml | 6 +++--- .github/workflows/_scheduled-test-stress.yml | 4 ++-- .github/workflows/_test.yml | 10 +++++----- .github/workflows/build-native-only.yml | 2 +- .github/workflows/ci-cd.yml | 2 +- .github/workflows/labels-sync.yml | 4 ++-- 16 files changed, 57 insertions(+), 57 deletions(-) diff --git a/.github/workflows/_audit.yml b/.github/workflows/_audit.yml index fa77653b..b207ac78 100644 --- a/.github/workflows/_audit.yml +++ b/.github/workflows/_audit.yml @@ -13,12 +13,12 @@ jobs: packages: read steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -37,7 +37,7 @@ jobs: run: make audit - name: Upload audit results - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: audit-results diff --git a/.github/workflows/_build-native-only.yml b/.github/workflows/_build-native-only.yml index 3d778fba..6bd78712 100644 --- a/.github/workflows/_build-native-only.yml +++ b/.github/workflows/_build-native-only.yml @@ -39,12 +39,12 @@ jobs: steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -61,7 +61,7 @@ jobs: run: make dist_native - name: Upload dist_native artifacts - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: dist_native-${{ matrix.runner }} diff --git a/.github/workflows/_claude-code.yml b/.github/workflows/_claude-code.yml index aa9e305f..1bd54aff 100644 --- a/.github/workflows/_claude-code.yml +++ b/.github/workflows/_claude-code.yml @@ -46,12 +46,12 @@ jobs: actions: read # Required for Claude to read CI results on PRs steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: ${{ inputs.mode == 'interactive' && 0 || 1 }} - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -66,7 +66,7 @@ jobs: run: uv sync --all-extras --frozen --link-mode=copy - name: Setup display - uses: pyvista/setup-headless-display-action@7d84ae825e6d9297a8e99bdbbae20d1b919a0b19 # v4.2 + uses: pyvista/setup-headless-display-action@5bc8de3bc71fcda7a96439571287a554901541a0 # v4.3 - name: Print development version info if: ${{ !startsWith(github.ref, 'refs/tags/v') }} @@ -92,7 +92,7 @@ jobs: - name: Run Claude Code (Automation Mode) if: inputs.mode == 'automation' - uses: anthropics/claude-code-action@v1.0.29 + uses: anthropics/claude-code-action@v1.0.74 with: anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }} track_progress: ${{ inputs.track_progress }} diff --git a/.github/workflows/_codeql.yml b/.github/workflows/_codeql.yml index e36cfc7f..164c5146 100644 --- a/.github/workflows/_codeql.yml +++ b/.github/workflows/_codeql.yml @@ -40,7 +40,7 @@ jobs: # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # Add any setup steps before running the `github/codeql-action/init` action. # This includes steps like installing compilers or runtimes (`actions/setup-node` diff --git a/.github/workflows/_docker-publish.yml b/.github/workflows/_docker-publish.yml index a4011ccb..480f4803 100644 --- a/.github/workflows/_docker-publish.yml +++ b/.github/workflows/_docker-publish.yml @@ -24,26 +24,26 @@ jobs: steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Install dev tools shell: bash run: .github/workflows/_install_dev_tools.bash - name: Set up QEMU - uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3.7.0 + uses: docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a # v4.0.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0 + uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 - name: Log in to Docker Hub - uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0 + uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0 with: username: ${{ secrets.DOCKER_USERNAME }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Log in to GitHub container registry - uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0 + uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0 with: registry: ghcr.io username: ${{ github.actor }} @@ -51,7 +51,7 @@ jobs: - name: "(all target): Extract metadata (tags, labels) for Docker" id: meta-all - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: | ${{ env.DOCKER_IO_IMAGE_NAME_ALL }} @@ -66,7 +66,7 @@ jobs: - name: "(slim target): Extract metadata (tags, labels) for Docker" id: meta-slim - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: | ${{ env.DOCKER_IO_IMAGE_NAME_SLIM }} @@ -81,7 +81,7 @@ jobs: - name: "(all target): Build and push Docker image" id: build-and-push-all - uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0 + uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0 with: context: . file: ./Dockerfile @@ -93,7 +93,7 @@ jobs: - name: "(slim target): Build and push Docker image" id: build-and-push-slim - uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0 + uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7.0.0 with: context: . file: ./Dockerfile diff --git a/.github/workflows/_ketryx_report_and_check.yml b/.github/workflows/_ketryx_report_and_check.yml index dbedde14..69d14565 100644 --- a/.github/workflows/_ketryx_report_and_check.yml +++ b/.github/workflows/_ketryx_report_and_check.yml @@ -29,7 +29,7 @@ jobs: packages: read steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 @@ -37,7 +37,7 @@ jobs: if: | !contains(inputs.commit_message, 'skip:ketryx') && !contains(github.event.pull_request.labels.*.name, 'skip:ketryx') - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: test-results-ubuntu-latest path: test-results @@ -46,7 +46,7 @@ jobs: if: | !contains(inputs.commit_message, 'skip:ketryx') && !contains(github.event.pull_request.labels.*.name, 'skip:ketryx') - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: audit-results path: audit-results diff --git a/.github/workflows/_lint.yml b/.github/workflows/_lint.yml index af2b24a6..dfb742ab 100644 --- a/.github/workflows/_lint.yml +++ b/.github/workflows/_lint.yml @@ -13,12 +13,12 @@ jobs: packages: read steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true diff --git a/.github/workflows/_package-publish.yml b/.github/workflows/_package-publish.yml index 90acfc7e..40e49680 100644 --- a/.github/workflows/_package-publish.yml +++ b/.github/workflows/_package-publish.yml @@ -48,12 +48,12 @@ jobs: steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -83,7 +83,7 @@ jobs: run: make dist_native - name: Upload dist_native artifacts - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: dist_native-${{ matrix.runner }} @@ -98,12 +98,12 @@ jobs: packages: read steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" cache-dependency-glob: uv.lock @@ -114,7 +114,7 @@ jobs: run: .github/workflows/_install_dev_tools.bash - name: Download native distribution artifacts - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: pattern: dist_native-* path: dist_native_all/ @@ -156,7 +156,7 @@ jobs: run: make docs - name: Generate release notes - uses: orhun/git-cliff-action@e16f179f0be49ecdfe63753837f20b9531642772 # v4.7.0 + uses: orhun/git-cliff-action@c93ef52f3d0ddcdcc9bd5447d98d458a11cd4f72 # v4.7.1 id: git-cliff with: config: pyproject.toml @@ -185,13 +185,13 @@ jobs: if: | (!contains(inputs.commit_message, 'skip:test:all')) && (!contains(github.event.pull_request.labels.*.name, 'skip:test:all')) - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: test-results-ubuntu-latest path: test-results - name: Download audit results generated in _audit.yml - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: audit-results path: audit-results @@ -244,7 +244,7 @@ jobs: echo "SLACKEOF" >> "$GITHUB_OUTPUT" - name: Release Announcement - uses: slackapi/slack-github-action@91efab103c0de0a537f72a35f6b8cda0ee76bf0a # v2.1.1 + uses: slackapi/slack-github-action@af78098f536edbc4de71162a307590698245be95 # v3.0.1 with: webhook: ${{ secrets.SLACK_WEBHOOK_URL_RELEASE_ANNOUNCEMENT }} webhook-type: webhook-trigger diff --git a/.github/workflows/_scheduled-audit.yml b/.github/workflows/_scheduled-audit.yml index a31e6985..a98107ee 100644 --- a/.github/workflows/_scheduled-audit.yml +++ b/.github/workflows/_scheduled-audit.yml @@ -14,12 +14,12 @@ jobs: id-token: write steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -87,7 +87,7 @@ jobs: exit $EXIT_CODE - name: Upload test results - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: test-results-scheduled diff --git a/.github/workflows/_scheduled-test-daily.yml b/.github/workflows/_scheduled-test-daily.yml index b6b740b6..ad3c59d1 100644 --- a/.github/workflows/_scheduled-test-daily.yml +++ b/.github/workflows/_scheduled-test-daily.yml @@ -49,12 +49,12 @@ jobs: steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -70,7 +70,7 @@ jobs: # Need xdisplay for testing QuPath app integration - name: Setup display - uses: pyvista/setup-headless-display-action@7d84ae825e6d9297a8e99bdbbae20d1b919a0b19 # v4.2 + uses: pyvista/setup-headless-display-action@5bc8de3bc71fcda7a96439571287a554901541a0 # v4.3 - name: Print development version info if: ${{ !startsWith(github.ref, 'refs/tags/v') }} @@ -182,7 +182,7 @@ jobs: summary-title: All very long running e2e tests passed - name: Upload test artifacts for inspection - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: test-results-ubuntu-latest @@ -325,7 +325,7 @@ jobs: fi - name: Upload coverage reports to Codecov - uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2 + uses: codecov/codecov-action@1af58845a975a7985b0beb0cbe6fbbb71a41dbad # v5.5.3 if: ${{ !cancelled() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT')}} with: token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/_scheduled-test-hourly.yml b/.github/workflows/_scheduled-test-hourly.yml index f38eca46..55ba28fe 100644 --- a/.github/workflows/_scheduled-test-hourly.yml +++ b/.github/workflows/_scheduled-test-hourly.yml @@ -46,13 +46,13 @@ jobs: id-token: write steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ inputs.branch || github.ref }} fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -170,7 +170,7 @@ jobs: exit $EXIT_CODE - name: Upload test results - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: test-results-scheduled diff --git a/.github/workflows/_scheduled-test-stress.yml b/.github/workflows/_scheduled-test-stress.yml index d2511cef..4939dca2 100644 --- a/.github/workflows/_scheduled-test-stress.yml +++ b/.github/workflows/_scheduled-test-stress.yml @@ -42,13 +42,13 @@ jobs: id-token: write steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ inputs.branch || github.ref }} fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true diff --git a/.github/workflows/_test.yml b/.github/workflows/_test.yml index 6fbea954..43e367bf 100644 --- a/.github/workflows/_test.yml +++ b/.github/workflows/_test.yml @@ -73,12 +73,12 @@ jobs: steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 + uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 with: version-file: "pyproject.toml" enable-cache: true @@ -95,7 +95,7 @@ jobs: # Need xdisplay for testing QuPath app integration - name: Setup display - uses: pyvista/setup-headless-display-action@7d84ae825e6d9297a8e99bdbbae20d1b919a0b19 # v4.2 + uses: pyvista/setup-headless-display-action@5bc8de3bc71fcda7a96439571287a554901541a0 # v4.3 - name: Release version check if: startsWith(github.ref, 'refs/tags/v') @@ -229,7 +229,7 @@ jobs: commit-message: ${{ inputs.commit_message }} - name: Upload test artifacts for inspection - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 + uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 if: ${{ always() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') }} with: name: test-results-${{ matrix.runner }} @@ -242,7 +242,7 @@ jobs: retention-days: 7 - name: Upload coverage reports to Codecov - uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2 + uses: codecov/codecov-action@1af58845a975a7985b0beb0cbe6fbbb71a41dbad # v5.5.3 if: | !cancelled() && (env.GITHUB_WORKFLOW_RUNTIME != 'ACT') && diff --git a/.github/workflows/build-native-only.yml b/.github/workflows/build-native-only.yml index bcc83a93..461907d9 100644 --- a/.github/workflows/build-native-only.yml +++ b/.github/workflows/build-native-only.yml @@ -23,7 +23,7 @@ jobs: commit_message: ${{ steps.get-commit-message.outputs.commit_message }} steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml index afd6688c..849f74ec 100644 --- a/.github/workflows/ci-cd.yml +++ b/.github/workflows/ci-cd.yml @@ -36,7 +36,7 @@ jobs: commit_message: ${{ steps.get-commit-message.outputs.commit_message }} steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 diff --git a/.github/workflows/labels-sync.yml b/.github/workflows/labels-sync.yml index c125e692..89034064 100644 --- a/.github/workflows/labels-sync.yml +++ b/.github/workflows/labels-sync.yml @@ -19,13 +19,13 @@ jobs: pull-requests: write steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} - name: Run Labeler - uses: crazy-max/ghaction-github-labeler@24d110aa46a59976b8a7f35518cb7f14f434c916 # v5.3.0 + uses: crazy-max/ghaction-github-labeler@548a7c3603594ec17c819e1239f281a3b801ab4d # v6.0.0 with: github-token: ${{ secrets.GITHUB_TOKEN }} yaml-file: .github/labels.yml