build(deps): bump the github-actions group across 1 directory with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates in the / directory: DeterminateSystems/flake-checker-action, gradle/actions and DeterminateSystems/update-flake-lock.

Updates DeterminateSystems/flake-checker-action from 9ee1c5473f1abdfb299f6c4f0fab813147c97fe3 to a0f068d37b542f3150564fbf1164fec2d958ee11

Commits

• a0f068d Merge pull request #126 from DeterminateSystems/bump-deps
• 751cf2f Update deps
• 8751bbc flake.lock: Update
• See full diff in compare view

Updates gradle/actions from 6.1.0 to 6.2.0

Release notes

Sourced from gradle/actions's releases.

v6.2.0

Highlights

This release brings significant behaviour improvements to Enhanced caching, improvements to the generated Job Summary, and a number of correctness and security fixes.

1. Improved cache-cleanup mechanism. Cleanup of stale files from the Gradle User Home is now faster, and no longer depends on Gradle or a JVM. It works by inspecting the local file state directly, removing the Gradle invocation from the post-build step.
2. More granular, more stable caching. The local build cache is stored as a separate cache entry, so it can be restored and invalidated independently of the main Gradle User Home entry. Transient Gradle housekeeping files are excluded from the cache, reducing its size and improving stability.
3. Hide obsolete Job summaries in PR commments: When a new Job summary comment is added to a PR, previous outdated Job summaries are now hidden.
4. Improved caching report in the job summary. The cache report now uses a single, consistent layout across all cache states and providers. Provider information is integrated directly into the report, and per-entry details are available in an expandable section. (#985)
5. Correctness and security fixes. A unique cache key is now used per run attempt, so re-runs no longer collide; the job summary shows the cache key string rather than an internal id; and bundled dependencies have been updated, including a ReDoS fix and a fast-xml CVE fix.

What's Changed

• Remove unnecessary dependency overrides by @​bigdaz in gradle/actions#981
• Scope CI-integ-test concurrency groups per-branch by @​bigdaz in gradle/actions#983
• Improve typings by @​Vampire in gradle/actions#938
• Hide obsolete Job summaries by @​SimonMarquis in gradle/actions#902
• CI: add requireable aggregate/no-op checks for branch protection by @​bigdaz in gradle/actions#984
• Redesign the caching Job Summary by @​bigdaz in gradle/actions#985

New Contributors

• @​Vampire made their first contribution in gradle/actions#938

Full Changelog: gradle/actions@v6.1.1...v6.2.0

v6.1.1

This release updates various dependency versions, resolving several reported security vulnerabilities. No functional changes are included

What's Changed

• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /sources/test/init-scripts by @​bot-githubaction in gradle/actions#961
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/gradle-plugin by @​bot-githubaction in gradle/actions#962
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/groovy-dsl by @​bot-githubaction in gradle/actions#963
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/java-toolchain by @​bot-githubaction in gradle/actions#964
• Bump Gradle Wrapper from 9.4.1 to 9.5.1 in /.github/workflow-samples/kotlin-dsl by @​bot-githubaction in gradle/actions#965
• Update known wrapper checksums by @​github-actions[bot] in gradle/actions#937
• Bump the github-actions group across 2 directories with 8 updates by @​dependabot[bot] in gradle/actions#976
• Bump the npm-dependencies group across 1 directory with 14 updates by @​dependabot[bot] in gradle/actions#970
• Bump references to Develocity Gradle plugin from 4.4.0 to 4.4.2 by @​bot-githubaction in gradle/actions#973
• Bump the npm-dependencies group in /sources with 5 updates by @​dependabot[bot] in gradle/actions#977
• Update @​actions/cache and @​actions/artifact, stop ignoring them in Dependabot by @​bigdaz in gradle/actions#978
• Resolve npm security vulnerabilities via dependency overrides by @​bigdaz in gradle/actions#980

Full Changelog: gradle/actions@v6.1.0...v6.1.1

Commits

• 3f131e8 [bot] Update dist directory
• 97715a2 Redesign the caching Job Summary (#985)
• 8b6cdb5 CI: add requireable aggregate/no-op checks for branch protection (#984)
• 5852e0e [bot] Update dist directory
• 318eed7 Hide obsolete Job summaries (#902)
• a740661 Improve typings (#938)
• 7ae0d02 Update gradle-actions-caching library to v0.6.0 (#982)
• e473973 Scope CI-integ-test concurrency groups per-branch
• 35a4a3f Queue up integ-test runs
• b6eebf3 [bot] Update dist directory
• Additional commits viewable in compare view

Updates DeterminateSystems/update-flake-lock from b83e0671a67dfd774680fb1beaa1497ef7e58bfc to fd9359ac79d0e912f1b4b947a48470b3e2799b56

Commits

• fd9359a Merge pull request #286 from DeterminateSystems/bump-deps
• 86fa03e Update deps
• 5836de1 Merge pull request #285 from Malix-Labs/direnv-ignore
• 8ce6e0b flake.lock: Update
• 7617728 gitignore: feat direnv
• 56caebf Merge pull request #280 from DeterminateSystems/dependabot/npm_and_yarn/vites...
• 58f83b4 build(deps-dev): bump vitest from 3.2.4 to 3.2.6
• See full diff in compare view