From bf1524d0ed7c706a89329596832206a365b06bf7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Nov 2025 04:47:40 +0000 Subject: [PATCH] chore(deps): bump actions/checkout from 4 to 6 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-tag-enhanced.yml | 4 ++-- .github/workflows/ci-security.yml | 8 ++++---- .github/workflows/container-scan.yml | 2 +- .github/workflows/dependabot-auto-merge-enhanced.yml | 2 +- .github/workflows/java-ci-secure.yml | 2 +- .github/workflows/java-ci-universal.yml | 2 +- .github/workflows/java-ci.yml | 2 +- .github/workflows/k8s-deploy.yml | 2 +- .github/workflows/pre-merge-validators.yml | 4 ++-- .github/workflows/release-workflows.yml | 8 ++++---- .github/workflows/test-workflows.yml | 8 ++++---- 11 files changed, 22 insertions(+), 22 deletions(-) diff --git a/.github/workflows/auto-tag-enhanced.yml b/.github/workflows/auto-tag-enhanced.yml index db244ff..812ef54 100644 --- a/.github/workflows/auto-tag-enhanced.yml +++ b/.github/workflows/auto-tag-enhanced.yml @@ -180,7 +180,7 @@ jobs: artifacts-count: ${{ steps.upload-artifacts.outputs.count }} steps: - name: 📥 Checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} @@ -369,7 +369,7 @@ jobs: image-size: ${{ steps.build-push.outputs.image-size }} steps: - name: 📥 Checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🔧 Setup Java & Maven uses: ./.github/actions/setup-java-maven diff --git a/.github/workflows/ci-security.yml b/.github/workflows/ci-security.yml index de6bf3e..029f616 100644 --- a/.github/workflows/ci-security.yml +++ b/.github/workflows/ci-security.yml @@ -168,7 +168,7 @@ jobs: security-events: write steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔍 Initialize CodeQL uses: github/codeql-action/init@v4 @@ -209,7 +209,7 @@ jobs: high-count: ${{ steps.scan.outputs.high }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: ☕ Set up JDK ${{ needs.validate-inputs.outputs.java-version }} uses: actions/setup-java@v5 @@ -286,7 +286,7 @@ jobs: high-count: ${{ steps.scan.outputs.high }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔍 Run Trivy vulnerability scanner id: scan @@ -341,7 +341,7 @@ jobs: high-count: ${{ steps.scan.outputs.high }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: ☕ Set up JDK ${{ needs.validate-inputs.outputs.java-version }} uses: actions/setup-java@v5 diff --git a/.github/workflows/container-scan.yml b/.github/workflows/container-scan.yml index 8e02d42..dec203f 100644 --- a/.github/workflows/container-scan.yml +++ b/.github/workflows/container-scan.yml @@ -85,7 +85,7 @@ jobs: status: ${{ steps.result.outputs.status }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔑 Login to Container Registry if: secrets.REGISTRY_USERNAME != '' && secrets.REGISTRY_PASSWORD != '' diff --git a/.github/workflows/dependabot-auto-merge-enhanced.yml b/.github/workflows/dependabot-auto-merge-enhanced.yml index 42e0135..0c14a48 100644 --- a/.github/workflows/dependabot-auto-merge-enhanced.yml +++ b/.github/workflows/dependabot-auto-merge-enhanced.yml @@ -169,7 +169,7 @@ jobs: merge-reason: ${{ steps.process-pr.outputs.reason }} steps: - name: 📥 Checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🔍 Get Dependabot metadata id: dependabot-metadata diff --git a/.github/workflows/java-ci-secure.yml b/.github/workflows/java-ci-secure.yml index 31ba739..2da8746 100644 --- a/.github/workflows/java-ci-secure.yml +++ b/.github/workflows/java-ci-secure.yml @@ -140,7 +140,7 @@ jobs: build-status: ${{ steps.test-summary.outputs.status }} steps: - name: 📥 Checkout code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: ☕ Set up JDK ${{ matrix.java-version }} uses: actions/setup-java@de5a937a1dc73fbc1a67d7d1aa4bebc1082f3190 # v4.2.1 diff --git a/.github/workflows/java-ci-universal.yml b/.github/workflows/java-ci-universal.yml index fd084df..f8e16b1 100644 --- a/.github/workflows/java-ci-universal.yml +++ b/.github/workflows/java-ci-universal.yml @@ -187,7 +187,7 @@ jobs: build-tool-used: ${{ needs.validate-inputs.outputs.build-tool-validated }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: ☕ Set up JDK ${{ matrix.java-version }} uses: actions/setup-java@v5 diff --git a/.github/workflows/java-ci.yml b/.github/workflows/java-ci.yml index 3fb5102..b20a3e9 100644 --- a/.github/workflows/java-ci.yml +++ b/.github/workflows/java-ci.yml @@ -103,7 +103,7 @@ jobs: build-status: ${{ steps.build-status.outputs.status }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔍 Auto-detect build tool id: detect diff --git a/.github/workflows/k8s-deploy.yml b/.github/workflows/k8s-deploy.yml index 478a641..92466d9 100644 --- a/.github/workflows/k8s-deploy.yml +++ b/.github/workflows/k8s-deploy.yml @@ -99,7 +99,7 @@ jobs: rollout-status: ${{ steps.rollout.outputs.status }} steps: - name: 📥 Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔧 Setup kubectl uses: azure/setup-kubectl@v4 diff --git a/.github/workflows/pre-merge-validators.yml b/.github/workflows/pre-merge-validators.yml index 26ce457..13972f5 100644 --- a/.github/workflows/pre-merge-validators.yml +++ b/.github/workflows/pre-merge-validators.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🛠️ Install YAML tooling run: | @@ -43,7 +43,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: 🔐 Scan for potential hardcoded secrets run: | diff --git a/.github/workflows/release-workflows.yml b/.github/workflows/release-workflows.yml index df0dc01..9572a0f 100644 --- a/.github/workflows/release-workflows.yml +++ b/.github/workflows/release-workflows.yml @@ -43,7 +43,7 @@ jobs: next-version: ${{ steps.version.outputs.next }} steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: fetch-depth: 0 @@ -132,7 +132,7 @@ jobs: release-notes: ${{ steps.release-notes.outputs.content }} steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: fetch-depth: 0 @@ -314,7 +314,7 @@ jobs: tag-name: ${{ steps.create-release.outputs.tag_name }} steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: token: ${{ secrets.GITHUB_TOKEN }} @@ -382,7 +382,7 @@ jobs: if: needs.create-release.outputs.tag-name != '' steps: - name: 📥 Checkout at tag - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 with: ref: ${{ needs.create-release.outputs.tag-name }} diff --git a/.github/workflows/test-workflows.yml b/.github/workflows/test-workflows.yml index 48b49f7..6e80a6c 100644 --- a/.github/workflows/test-workflows.yml +++ b/.github/workflows/test-workflows.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🛠️ Install YAML tooling run: | @@ -56,7 +56,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🔍 Check for hardcoded secrets run: | @@ -97,7 +97,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🔧 Test Java & Maven Setup uses: ./.github/actions/setup-java-maven @@ -116,7 +116,7 @@ jobs: runs-on: ubuntu-latest steps: - name: 📥 Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 - name: 🔍 Check workflow files exist run: |