Skip to content

Commit 7a2fafb

Browse files
build(deps): bump the actions-routine group with 4 updates (#7)
Bumps the actions-routine group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-python](https://github.com/actions/setup-python), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance). Updates `actions/checkout` from 4.1.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4.1.1...de0fac2) Updates `actions/setup-python` from 5.1.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@82c7e63...a309ff8) Updates `actions/upload-artifact` from 4.3.3 to 7.0.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@6546280...bbbca2d) Updates `actions/attest-build-provenance` from 92c65d2898f1f53cfdc910b962cecff86e7f8fcc to ef244123eb79f2f7a7e75d99086184180e6d0018 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@92c65d2...ef24412) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-routine - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-routine - dependency-name: actions/upload-artifact dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-routine - dependency-name: actions/attest-build-provenance dependency-version: ef244123eb79f2f7a7e75d99086184180e6d0018 dependency-type: direct:production dependency-group: actions-routine ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 5726488 commit 7a2fafb

3 files changed

Lines changed: 15 additions & 15 deletions

File tree

.github/workflows/ci.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -15,9 +15,9 @@ jobs:
1515
runs-on: ubuntu-latest
1616
steps:
1717
- name: Checkout
18-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
18+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
1919
- name: Setup Python 3.11
20-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
20+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
2121
with:
2222
python-version: "3.11"
2323
- name: Install uv
@@ -32,9 +32,9 @@ jobs:
3232
runs-on: ubuntu-latest
3333
steps:
3434
- name: Checkout
35-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
35+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
3636
- name: Setup Python 3.11
37-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
37+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
3838
with:
3939
python-version: "3.11"
4040
- name: Install uv
@@ -49,9 +49,9 @@ jobs:
4949
runs-on: ubuntu-latest
5050
steps:
5151
- name: Checkout
52-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
52+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
5353
- name: Setup Python 3.11
54-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
54+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
5555
with:
5656
python-version: "3.11"
5757
- name: Install uv

.github/workflows/codeql.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -81,7 +81,7 @@ jobs:
8181
# your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
8282
steps:
8383
- name: Checkout repository
84-
uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5
84+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
8585

8686
# Add any setup steps before running the `github/codeql-action/init` action.
8787
# This includes steps like installing compilers or runtimes (`actions/setup-node`

.github/workflows/security.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -43,9 +43,9 @@ jobs:
4343
contents: read
4444
steps:
4545
- name: Checkout
46-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
46+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
4747
- name: Setup Python 3.11
48-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
48+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
4949
with:
5050
python-version: "3.11"
5151
- name: Install uv
@@ -62,9 +62,9 @@ jobs:
6262
contents: read
6363
steps:
6464
- name: Checkout
65-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
65+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
6666
- name: Setup Python 3.11
67-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
67+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
6868
with:
6969
python-version: "3.11"
7070
- name: Install uv
@@ -74,7 +74,7 @@ jobs:
7474
- name: Generate SBOM
7575
run: uv run make sbom
7676
- name: Upload SBOM artifact
77-
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808
77+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f
7878
with:
7979
name: cyclonedx-sbom
8080
path: runs/security/sbom.cdx.json
@@ -91,9 +91,9 @@ jobs:
9191
attestations: write
9292
steps:
9393
- name: Checkout
94-
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
94+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
9595
- name: Setup Python 3.11
96-
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d
96+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405
9797
with:
9898
python-version: "3.11"
9999
- name: Install uv
@@ -103,6 +103,6 @@ jobs:
103103
- name: Generate SBOM for attestation subject
104104
run: uv run make sbom
105105
- name: Attest SBOM provenance
106-
uses: actions/attest-build-provenance@92c65d2898f1f53cfdc910b962cecff86e7f8fcc
106+
uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018
107107
with:
108108
subject-path: runs/security/sbom.cdx.json

0 commit comments

Comments
 (0)