From 85dcb0bb0348ea028cb9084d81f3addfe69f2193 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 18 Dec 2025 07:01:30 +0000 Subject: [PATCH] ci: bump the github-actions group across 1 directory with 3 updates Bumps the github-actions group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact). Updates `actions/checkout` from 5 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5...v6) Updates `actions/upload-artifact` from 5 to 6 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v5...v6) Updates `actions/download-artifact` from 6 to 7 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v6...v7) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/upload-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/download-artifact dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/ci-lint.yml | 4 ++-- .github/workflows/ci-reproducibility.yml | 8 ++++---- .github/workflows/docker.yml | 2 +- .github/workflows/release-dev.yml | 4 ++-- .github/workflows/release.yml | 2 +- 5 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/ci-lint.yml b/.github/workflows/ci-lint.yml index 9b4a4a7b3c5..f64e589328b 100644 --- a/.github/workflows/ci-lint.yml +++ b/.github/workflows/ci-lint.yml @@ -27,7 +27,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: # Check out pull request's HEAD commit instead of the merge commit to # prevent gitlint from failing due to too long commit message titles, @@ -97,7 +97,7 @@ jobs: # Always run this step so that all linting errors can be seen at once. if: always() - name: Ensure a clean code checkout - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: clean: true if: always() diff --git a/.github/workflows/ci-reproducibility.yml b/.github/workflows/ci-reproducibility.yml index 6c428ffea3a..58e0a11a8f8 100644 --- a/.github/workflows/ci-reproducibility.yml +++ b/.github/workflows/ci-reproducibility.yml @@ -31,7 +31,7 @@ jobs: build_number: [1, 2] steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: # NOTE: We make a git checkout to a unique directory for each build to # catch reproducibility issues with code in different local paths. @@ -92,7 +92,7 @@ jobs: OASIS_NODE_MAKE_PATH: go/oasis-node/oasis-node OASIS_NODE_GORELEASER_PATH: dist/oasis-node_linux_amd64_v1/oasis-node - name: Upload checksums - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v6 with: name: oasis-node-SHA256SUMs-build${{ matrix.build_number }} path: oasis-node-SHA256SUMs @@ -105,12 +105,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Download checksums for build 1 - uses: actions/download-artifact@v6 + uses: actions/download-artifact@v7 with: name: oasis-node-SHA256SUMs-build1 path: oasis-node-SHA256SUMs-build1 - name: Download checksum for build 2 - uses: actions/download-artifact@v6 + uses: actions/download-artifact@v7 with: name: oasis-node-SHA256SUMs-build2 path: oasis-node-SHA256SUMs-build2 diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index c3bb08ae345..36bfff41b94 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -41,7 +41,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: # Check out pull request's HEAD commit instead of the merge commit. ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/release-dev.yml b/.github/workflows/release-dev.yml index a8288af8bb4..0a16724c444 100644 --- a/.github/workflows/release-dev.yml +++ b/.github/workflows/release-dev.yml @@ -23,7 +23,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: # Fetch all history as the recommended way to fetch all tags and # branches of the project. @@ -75,7 +75,7 @@ jobs: run: | make release-build - name: Upload release artifacts - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v6 with: name: oasis-core-dev-release path: dist/*.tar.gz diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 62185207edf..3317fd31524 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -25,7 +25,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: # Fetch all history as the recommended way to fetch all tags and # branches of the project.