Skip to content

Commit 2874f8c

Browse files
dschogitster
dscho
authored and
gitster
committed
ci: bump actions/checkout from v5 to v6
Every workflow currently pins `actions/checkout` to v5, which was introduced primarily to move to the Node.js 24 runtime. v6 is the next release and worth picking up so we stay on a maintained version of the action. The one behaviorally interesting change in v6: `persist-credentials` now stores the helper credentials under `$RUNNER_TEMP` instead of writing them directly into the local `.git/config`. Two implications follow: 1. In the normal case this is an unambiguous improvement -- the token no longer lands in `.git/config`, reducing the risk of inadvertently leaking it through workspace archiving (`upload-artifact` snapshots, cache entries, core dumps, ...). 2. Docker container actions require an Actions Runner of at least v2.329.0 to find the credentials in their new location. The github.com-hosted runners our CI uses are already past that version, so this does not affect us. Downstream users running self-hosted runners may need to update them before adopting this version of the action. Risk analysis: our checkout steps either check out the default repository (no special credential requirements) or, in the `vs-build` job, explicitly set `repository: microsoft/vcpkg` and `path: compat/vcbuild/vcpkg`. Neither case relies on the precise location of the persisted credentials -- subsequent steps interact with the API via the runner-provided `GITHUB_TOKEN` directly -- so the v6 credential-storage change is transparent to our workflows. The diff is purely the `@vN` identifier; there are no input or output changes. See also: - Release notes: https://github.com/actions/checkout/releases - Changelog: https://github.com/actions/checkout/blob/main/CHANGELOG.md - Compare: actions/checkout@v5...v6 Originally-authored-by: dependabot[bot] <support@github.com> Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de> Signed-off-by: Junio C Hamano <gitster@pobox.com>
1 parent 5fa396e commit 2874f8c

4 files changed

Lines changed: 15 additions & 15 deletions

File tree

.github/workflows/check-style.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
jobname: ClangFormat
2121
runs-on: ubuntu-latest
2222
steps:
23-
- uses: actions/checkout@v5
23+
- uses: actions/checkout@v6
2424
with:
2525
fetch-depth: 0
2626

.github/workflows/check-whitespace.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@ jobs:
1919
check-whitespace:
2020
runs-on: ubuntu-latest
2121
steps:
22-
- uses: actions/checkout@v5
22+
- uses: actions/checkout@v6
2323
with:
2424
fetch-depth: 0
2525

.github/workflows/coverity.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -38,7 +38,7 @@ jobs:
3838
COVERITY_LANGUAGE: cxx
3939
COVERITY_PLATFORM: overridden-below
4040
steps:
41-
- uses: actions/checkout@v5
41+
- uses: actions/checkout@v6
4242
- name: install minimal Git for Windows SDK
4343
if: contains(matrix.os, 'windows')
4444
uses: git-for-windows/setup-git-for-windows-sdk@v1

.github/workflows/main.yml

Lines changed: 12 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -112,7 +112,7 @@ jobs:
112112
group: windows-build-${{ github.ref }}
113113
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
114114
steps:
115-
- uses: actions/checkout@v5
115+
- uses: actions/checkout@v6
116116
- uses: git-for-windows/setup-git-for-windows-sdk@v1
117117
- name: build
118118
shell: bash
@@ -173,10 +173,10 @@ jobs:
173173
group: vs-build-${{ github.ref }}
174174
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
175175
steps:
176-
- uses: actions/checkout@v5
176+
- uses: actions/checkout@v6
177177
- uses: git-for-windows/setup-git-for-windows-sdk@v1
178178
- name: initialize vcpkg
179-
uses: actions/checkout@v5
179+
uses: actions/checkout@v6
180180
with:
181181
repository: 'microsoft/vcpkg'
182182
path: 'compat/vcbuild/vcpkg'
@@ -258,7 +258,7 @@ jobs:
258258
group: windows-meson-build-${{ github.ref }}
259259
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
260260
steps:
261-
- uses: actions/checkout@v5
261+
- uses: actions/checkout@v6
262262
- uses: actions/setup-python@v6
263263
- name: Set up dependencies
264264
shell: pwsh
@@ -286,7 +286,7 @@ jobs:
286286
group: windows-meson-test-${{ matrix.nr }}-${{ github.ref }}
287287
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
288288
steps:
289-
- uses: actions/checkout@v5
289+
- uses: actions/checkout@v6
290290
- uses: actions/setup-python@v6
291291
- name: Set up dependencies
292292
shell: pwsh
@@ -341,7 +341,7 @@ jobs:
341341
TEST_OUTPUT_DIRECTORY: ${{github.workspace}}/t
342342
runs-on: ${{matrix.vector.pool}}
343343
steps:
344-
- uses: actions/checkout@v5
344+
- uses: actions/checkout@v6
345345
- run: ci/install-dependencies.sh
346346
- run: ci/run-build-and-tests.sh
347347
- name: print test failures
@@ -362,7 +362,7 @@ jobs:
362362
CI_JOB_IMAGE: ubuntu-latest
363363
runs-on: ubuntu-latest
364364
steps:
365-
- uses: actions/checkout@v5
365+
- uses: actions/checkout@v6
366366
- run: ci/install-dependencies.sh
367367
- run: ci/run-build-and-minimal-fuzzers.sh
368368
dockerized:
@@ -439,7 +439,7 @@ jobs:
439439
else
440440
apt-get -q update && apt-get -q -y install git
441441
fi
442-
- uses: actions/checkout@v5
442+
- uses: actions/checkout@v6
443443
- run: ci/install-dependencies.sh
444444
- run: useradd builder --create-home
445445
- run: chown -R builder .
@@ -464,7 +464,7 @@ jobs:
464464
group: static-analysis-${{ github.ref }}
465465
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
466466
steps:
467-
- uses: actions/checkout@v5
467+
- uses: actions/checkout@v6
468468
- run: ci/install-dependencies.sh
469469
- run: ci/run-static-analysis.sh
470470
- run: ci/check-directional-formatting.bash
@@ -480,7 +480,7 @@ jobs:
480480
group: rust-analysis-${{ github.ref }}
481481
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
482482
steps:
483-
- uses: actions/checkout@v5
483+
- uses: actions/checkout@v6
484484
- run: ci/install-dependencies.sh
485485
- run: ci/run-rust-checks.sh
486486
sparse:
@@ -494,7 +494,7 @@ jobs:
494494
group: sparse-${{ github.ref }}
495495
cancel-in-progress: ${{ needs.ci-config.outputs.skip_concurrent == 'yes' }}
496496
steps:
497-
- uses: actions/checkout@v5
497+
- uses: actions/checkout@v6
498498
- name: Install other dependencies
499499
run: ci/install-dependencies.sh
500500
- run: make sparse
@@ -510,6 +510,6 @@ jobs:
510510
CI_JOB_IMAGE: ubuntu-latest
511511
runs-on: ubuntu-latest
512512
steps:
513-
- uses: actions/checkout@v5
513+
- uses: actions/checkout@v6
514514
- run: ci/install-dependencies.sh
515515
- run: ci/test-documentation.sh

0 commit comments

Comments
 (0)