Skip to content

Commit a5e33b2

Browse files
chore(deps): Bump the actions group with 4 updates (#6)
* chore(deps): Bump the actions group with 4 updates Bumps the actions group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-go](https://github.com/actions/setup-go), [github/codeql-action](https://github.com/github/codeql-action) and [google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml](https://github.com/google/osv-scanner-action). Updates `actions/checkout` from 4 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4...v6) Updates `actions/setup-go` from 5 to 6 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v5...v6) Updates `github/codeql-action` from 3 to 4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v3...v4) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml` from 2.0.1 to 2.3.8 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@v2.0.1...v2.3.8) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-go dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml dependency-version: 2.3.8 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> * ci: bump build+integration gate go-version 1.23->1.25 for setup-go@v6 setup-go@v6 defaults GOTOOLCHAIN=local, blocking the auto-upgrade from the pinned 1.23 to go.mod's required 1.25. Bump the pin to match go.mod. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Claude <noreply@anthropic.com>
1 parent 685ab57 commit a5e33b2

4 files changed

Lines changed: 10 additions & 10 deletions

File tree

.github/workflows/ci.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -20,11 +20,11 @@ jobs:
2020
name: build + integration gate
2121
runs-on: ubuntu-latest
2222
steps:
23-
- uses: actions/checkout@v4
23+
- uses: actions/checkout@v6
2424

25-
- uses: actions/setup-go@v5
25+
- uses: actions/setup-go@v6
2626
with:
27-
go-version: '1.23'
27+
go-version: '1.25'
2828

2929
# The local gate (`make ci`) is identical to this CI gate:
3030
# build -> go build ./...

.github/workflows/codeql.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -20,19 +20,19 @@ jobs:
2020
timeout-minutes: 30
2121
steps:
2222
- name: Checkout this repo
23-
uses: actions/checkout@v4
23+
uses: actions/checkout@v6
2424
with:
2525
path: cli
26-
- uses: actions/setup-go@v5
26+
- uses: actions/setup-go@v6
2727
with:
2828
go-version-file: cli/go.mod
29-
- uses: github/codeql-action/init@v3
29+
- uses: github/codeql-action/init@v4
3030
with:
3131
languages: go
3232
queries: security-extended
3333
- name: Build
3434
working-directory: cli
3535
run: go build ./...
36-
- uses: github/codeql-action/analyze@v3
36+
- uses: github/codeql-action/analyze@v4
3737
with:
3838
category: "/language:go"

.github/workflows/govulncheck.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -17,10 +17,10 @@ jobs:
1717
timeout-minutes: 15
1818
steps:
1919
- name: Checkout this repo
20-
uses: actions/checkout@v4
20+
uses: actions/checkout@v6
2121
with:
2222
path: cli
23-
- uses: actions/setup-go@v5
23+
- uses: actions/setup-go@v6
2424
with:
2525
go-version-file: cli/go.mod
2626
check-latest: true

.github/workflows/osv-scanner.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ permissions:
1515

1616
jobs:
1717
scan:
18-
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@v2.0.1
18+
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@v2.3.8
1919
permissions:
2020
actions: read
2121
contents: read

0 commit comments

Comments
 (0)