From eb1893ab2c699180c424a1ce5c6dcec868a5ef01 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 1 Jul 2026 06:13:03 +0000 Subject: [PATCH] deps: bump the github-actions group with 3 updates Bumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-go](https://github.com/actions/setup-go) and [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance). Updates `actions/checkout` from 6.0.3 to 7.0.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0) Updates `actions/setup-go` from 6.4.0 to 6.5.0 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/4a3601121dd01d1626a1e23e37211e3254c1c06c...924ae3a1cded613372ab5595356fb5720e22ba16) Updates `actions/attest-build-provenance` from 4.1.0 to 4.1.1 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](https://github.com/actions/attest-build-provenance/compare/a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32...0f67c3f4856b2e3261c31976d6725780e5e4c373) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/setup-go dependency-version: 6.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/attest-build-provenance dependency-version: 4.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yml | 14 +++++++------- .github/workflows/codeql.yml | 6 +++--- .github/workflows/docker-package.yml | 4 ++-- .github/workflows/prerelease.yml | 10 +++++----- .github/workflows/stable-release.yml | 10 +++++----- .github/workflows/update-go-toolchain.yml | 4 ++-- 6 files changed, 24 insertions(+), 24 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 7aa06d00a..95b6d6354 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -49,7 +49,7 @@ jobs: # Depth 2 covers normal single-commit pushes and pull request merge # parents; the script fetches the base commit for larger push ranges. # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: fetch-depth: 2 persist-credentials: false @@ -131,13 +131,13 @@ jobs: needs.detect-changes.outputs.automation_lint == 'true' steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false - name: Set up Go for actionlint # actions/setup-go v6.4.0 - uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c + uses: actions/setup-go@924ae3a1cded613372ab5595356fb5720e22ba16 with: go-version: '1.25.x' cache: false @@ -186,7 +186,7 @@ jobs: needs.detect-changes.outputs.go_lint == 'true' steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -204,7 +204,7 @@ jobs: needs.detect-changes.outputs.js_lint == 'true' steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -226,7 +226,7 @@ jobs: needs.detect-changes.outputs.lua_lint == 'true' steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -242,7 +242,7 @@ jobs: needs.detect-changes.outputs.go_tests == 'true' steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 2abe50908..7eebcd855 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -37,7 +37,7 @@ jobs: javascript_typescript: ${{ steps.detect.outputs.javascript_typescript }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: # Keep normal runs shallow; the detect step fetches older bases only # when a larger push range needs them. @@ -126,7 +126,7 @@ jobs: steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -166,7 +166,7 @@ jobs: steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false diff --git a/.github/workflows/docker-package.yml b/.github/workflows/docker-package.yml index 48c1d0058..de41548fa 100644 --- a/.github/workflows/docker-package.yml +++ b/.github/workflows/docker-package.yml @@ -32,7 +32,7 @@ jobs: id-token: write steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -96,7 +96,7 @@ jobs: - name: Generate artifact attestation # actions/attest-build-provenance v4.1.0 # yamllint disable-line rule:line-length - uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 + uses: actions/attest-build-provenance@0f67c3f4856b2e3261c31976d6725780e5e4c373 with: subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} subject-digest: ${{ steps.push.outputs.digest }} diff --git a/.github/workflows/prerelease.yml b/.github/workflows/prerelease.yml index 1f65f545f..593605f55 100644 --- a/.github/workflows/prerelease.yml +++ b/.github/workflows/prerelease.yml @@ -31,7 +31,7 @@ jobs: binary_version: ${{ steps.meta.outputs.binary_version }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -58,7 +58,7 @@ jobs: contents: read steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -98,7 +98,7 @@ jobs: RELEASE_TARGET_ASSET: ${{ matrix.asset }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -134,7 +134,7 @@ jobs: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -169,7 +169,7 @@ jobs: - name: Attest release assets # actions/attest-build-provenance v4.1.0 # yamllint disable-line rule:line-length - uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 + uses: actions/attest-build-provenance@0f67c3f4856b2e3261c31976d6725780e5e4c373 with: subject-path: ${{ steps.release-assets.outputs.attestation_paths }} diff --git a/.github/workflows/stable-release.yml b/.github/workflows/stable-release.yml index 7e6302af0..4ce64d16d 100644 --- a/.github/workflows/stable-release.yml +++ b/.github/workflows/stable-release.yml @@ -36,7 +36,7 @@ jobs: binary_version: ${{ steps.meta.outputs.binary_version }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -91,7 +91,7 @@ jobs: contents: read steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -131,7 +131,7 @@ jobs: RELEASE_TARGET_ASSET: ${{ matrix.asset }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -169,7 +169,7 @@ jobs: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -225,7 +225,7 @@ jobs: - name: Attest release assets # actions/attest-build-provenance v4.1.0 # yamllint disable-line rule:line-length - uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 + uses: actions/attest-build-provenance@0f67c3f4856b2e3261c31976d6725780e5e4c373 with: subject-path: ${{ steps.release-assets.outputs.attestation_paths }} diff --git a/.github/workflows/update-go-toolchain.yml b/.github/workflows/update-go-toolchain.yml index 62b1ca12b..13b0fc76e 100644 --- a/.github/workflows/update-go-toolchain.yml +++ b/.github/workflows/update-go-toolchain.yml @@ -24,7 +24,7 @@ jobs: PR_BRANCH: automation/update-go-toolchain steps: # actions/checkout v6.0.3 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 with: persist-credentials: false @@ -86,7 +86,7 @@ jobs: - name: Set up Go if: steps.detect.outputs.changed == 'true' # actions/setup-go v6.4.0 - uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c + uses: actions/setup-go@924ae3a1cded613372ab5595356fb5720e22ba16 with: go-version: ${{ steps.detect.outputs.version }} cache: true