Skip to content

Commit 07c994d

Browse files
chore(deps): update workflows (#99)
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [astral-sh/ruff-action](https://redirect.github.com/astral-sh/ruff-action) | action | minor | `v3.4.0` -> `v3.5.0` | | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | patch | `v3.29.0` -> `v3.29.2` | --- ### Release Notes <details> <summary>astral-sh/ruff-action (astral-sh/ruff-action)</summary> ### [`v3.5.0`](https://redirect.github.com/astral-sh/ruff-action/releases/tag/v3.5.0): 🌈 support reading Ruff version from tools.poetry.dependencies [Compare Source](https://redirect.github.com/astral-sh/ruff-action/compare/v3.4.0...v3.5.0) #### Changes A big thank you to [@&#8203;G-Rath](https://redirect.github.com/G-Rath) for his contribution 🥳 #### 🚀 Enhancements - feat: support reading Ruff version from `tools.poetry.dependencies` [@&#8203;G-Rath](https://redirect.github.com/G-Rath) ([#&#8203;177](https://redirect.github.com/astral-sh/ruff-action/issues/177)) #### 🧰 Maintenance - Bump dependencies [@&#8203;eifinger](https://redirect.github.com/eifinger) ([#&#8203;181](https://redirect.github.com/astral-sh/ruff-action/issues/181)) - chore: update known checksums for 0.12.3 @&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions) ([#&#8203;180](https://redirect.github.com/astral-sh/ruff-action/issues/180)) - chore: update known checksums for 0.12.2 @&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions) ([#&#8203;175](https://redirect.github.com/astral-sh/ruff-action/issues/175)) - chore: update known checksums for 0.12.1 @&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions) ([#&#8203;169](https://redirect.github.com/astral-sh/ruff-action/issues/169)) - chore: update known checksums for 0.12.0 @&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions) ([#&#8203;167](https://redirect.github.com/astral-sh/ruff-action/issues/167)) - chore: update known checksums for 0.11.13 @&#8203;[github-actions\[bot\]](https://redirect.github.com/apps/github-actions) ([#&#8203;158](https://redirect.github.com/astral-sh/ruff-action/issues/158)) - Fix test-pep440-version-specifier [@&#8203;eifinger](https://redirect.github.com/eifinger) ([#&#8203;165](https://redirect.github.com/astral-sh/ruff-action/issues/165)) - Simplify step check all-tests-passed.needs [@&#8203;eifinger](https://redirect.github.com/eifinger) ([#&#8203;155](https://redirect.github.com/astral-sh/ruff-action/issues/155)) #### ⬆️ Dependency updates - Bump dependencies [@&#8203;eifinger](https://redirect.github.com/eifinger) ([#&#8203;181](https://redirect.github.com/astral-sh/ruff-action/issues/181)) </details> <details> <summary>github/codeql-action (github/codeql-action)</summary> ### [`v3.29.2`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.2) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.29.1...v3.29.2) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. ##### 3.29.2 - 30 Jun 2025 - Experimental: When the `quality-queries` input for the `init` action is provided with an argument, separate `.quality.sarif` files are produced and uploaded for each language with the results of the specified queries. Do not use this in production as it is part of an internal experiment and subject to change at any time. [#&#8203;2935](https://redirect.github.com/github/codeql-action/pull/2935) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.2/CHANGELOG.md) for more information. ### [`v3.29.1`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.1) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.29.0...v3.29.1) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. #### 3.29.1 - 27 Jun 2025 - Fix bug in PR analysis where user-provided `include` query filter fails to exclude non-included queries. [#&#8203;2938](https://redirect.github.com/github/codeql-action/pull/2938) - Update default CodeQL bundle version to 2.22.1. [#&#8203;2950](https://redirect.github.com/github/codeql-action/pull/2950) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.1/CHANGELOG.md) for more information. </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/ackama/drupal-advisory-database). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC42Mi4xIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Gold <gold@ackama.com>
1 parent d0c8168 commit 07c994d

2 files changed

Lines changed: 3 additions & 3 deletions

File tree

.github/workflows/ci.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -34,11 +34,11 @@ jobs:
3434
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
3535
with:
3636
persist-credentials: false
37-
- uses: astral-sh/ruff-action@eaf0ecdd668ceea36159ff9d91882c9795d89b49 # v3.4.0
37+
- uses: astral-sh/ruff-action@0c50076f12c38c3d0115b7b519b54a91cb9cf0ad # v3.5.0
3838
with:
3939
version-file: 'pyproject.toml'
4040
args: 'check'
41-
- uses: astral-sh/ruff-action@eaf0ecdd668ceea36159ff9d91882c9795d89b49 # v3.4.0
41+
- uses: astral-sh/ruff-action@0c50076f12c38c3d0115b7b519b54a91cb9cf0ad # v3.5.0
4242
with:
4343
version-file: 'pyproject.toml'
4444
args: 'format --check --diff'

.github/workflows/scorecard.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -75,6 +75,6 @@ jobs:
7575
# Upload the results to GitHub's code scanning dashboard (optional).
7676
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
7777
- name: 'Upload to code-scanning'
78-
uses: github/codeql-action/upload-sarif@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
78+
uses: github/codeql-action/upload-sarif@181d5eefc20863364f96762470ba6f862bdef56b # v3.29.2
7979
with:
8080
sarif_file: results.sarif

0 commit comments

Comments
 (0)