From d19a5ab3103e8a5f6522d17389b9368aaad90b08 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 29 Jun 2026 19:56:57 +0000 Subject: [PATCH] build(deps): bump gradle/actions from 4 to 6 Bumps [gradle/actions](https://github.com/gradle/actions) from 4 to 6. - [Release notes](https://github.com/gradle/actions/releases) - [Commits](https://github.com/gradle/actions/compare/v4...v6) --- updated-dependencies: - dependency-name: gradle/actions dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yml | 8 ++++---- .github/workflows/codeql.yml | 2 +- .github/workflows/release.yml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1ea9d8b..53e6a4f 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -20,7 +20,7 @@ jobs: with: distribution: temurin java-version: '21' - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Compile + format check run: ./gradlew compileJava compileTestJava spotlessCheck --stacktrace @@ -33,7 +33,7 @@ jobs: with: distribution: temurin java-version: '21' - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Build # The default build excludes the @Tag("e2e") full-stack tests (heavy image pulls); only the # e2e module's compileTestJava runs here, proving the e2e wiring stays sound on every PR. @@ -71,7 +71,7 @@ jobs: with: distribution: temurin java-version: '21' - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Generate CycloneDX SBOM run: ./gradlew cyclonedxBom --stacktrace - name: Upload SBOM @@ -110,7 +110,7 @@ jobs: with: distribution: temurin java-version: '21' - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Build the service boot jars # ComposeContainer.withBuild(true) builds the service images from these jars. run: ./gradlew bankJars --stacktrace diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index c4aa0d8..997e485 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -32,7 +32,7 @@ jobs: # 'security-and-quality' is broader than the default 'security-extended'. queries: security-and-quality - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Build (no tests — CodeQL only needs compilation) # Compile every module so CodeQL sees all bytecode; skip the heavy Testcontainers suite. diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 89f1d58..2700a42 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -18,7 +18,7 @@ jobs: with: distribution: temurin java-version: '21' - - uses: gradle/actions/setup-gradle@v4 + - uses: gradle/actions/setup-gradle@v6 - name: Publish (version from the tag) env: # GITHUB_TOKEN with packages:write authorizes the GitHub Packages Maven repo — no PAT needed.