From b835552e9c60204ae09d5e70575d075d7f36b441 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 02:13:57 +0000 Subject: [PATCH] ci: bump the github-actions group across 1 directory with 2 updates Bumps the github-actions group with 2 updates in the / directory: [actions/checkout](https://github.com/actions/checkout) and [gitleaks/gitleaks-action](https://github.com/gitleaks/gitleaks-action). Updates `actions/checkout` from 6 to 7 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v6...v7) Updates `gitleaks/gitleaks-action` from 2 to 3 - [Release notes](https://github.com/gitleaks/gitleaks-action/releases) - [Commits](https://github.com/gitleaks/gitleaks-action/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: gitleaks/gitleaks-action dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/QA.yaml | 14 +++++++------- .github/workflows/release.yaml | 14 +++++++------- .github/workflows/security-scan.yaml | 12 ++++++------ 3 files changed, 20 insertions(+), 20 deletions(-) diff --git a/.github/workflows/QA.yaml b/.github/workflows/QA.yaml index e01aad2..cb5057b 100644 --- a/.github/workflows/QA.yaml +++ b/.github/workflows/QA.yaml @@ -13,7 +13,7 @@ jobs: test: runs-on: macos-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: dtolnay/rust-toolchain@stable - uses: Swatinem/rust-cache@v2 - name: Run tests @@ -22,7 +22,7 @@ jobs: lint: runs-on: macos-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: dtolnay/rust-toolchain@stable with: components: clippy, rustfmt @@ -35,7 +35,7 @@ jobs: build: runs-on: macos-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: dtolnay/rust-toolchain@stable - uses: Swatinem/rust-cache@v2 - name: Build @@ -47,7 +47,7 @@ jobs: security-audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Cache cargo-audit uses: actions/cache@v5 id: cache-audit @@ -64,11 +64,11 @@ jobs: secrets-scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: Run gitleaks - uses: gitleaks/gitleaks-action@v2 + uses: gitleaks/gitleaks-action@v3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE }} @@ -77,7 +77,7 @@ jobs: dependency-check: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Cache cargo-deny uses: actions/cache@v5 id: cache-deny diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index d6fb162..94e5753 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -27,7 +27,7 @@ jobs: version: ${{ steps.validate.outputs.version }} steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: fetch-depth: 0 @@ -56,7 +56,7 @@ jobs: needs: validate steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Setup Rust uses: dtolnay/rust-toolchain@stable @@ -84,7 +84,7 @@ jobs: needs: validate steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Setup Rust uses: dtolnay/rust-toolchain@stable @@ -126,7 +126,7 @@ jobs: repositories: sandbox-shell - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: fetch-depth: 0 token: ${{ steps.app-token.outputs.token }} @@ -181,7 +181,7 @@ jobs: - aarch64-apple-darwin steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: ref: v${{ needs.validate.outputs.version }} @@ -226,7 +226,7 @@ jobs: needs: [validate, build] steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: ref: v${{ needs.validate.outputs.version }} @@ -261,7 +261,7 @@ jobs: needs: [validate, release] steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: ref: v${{ needs.validate.outputs.version }} diff --git a/.github/workflows/security-scan.yaml b/.github/workflows/security-scan.yaml index 777b52d..3f35074 100644 --- a/.github/workflows/security-scan.yaml +++ b/.github/workflows/security-scan.yaml @@ -14,7 +14,7 @@ jobs: dependency-audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Install cargo-audit run: cargo install cargo-audit --locked @@ -37,7 +37,7 @@ jobs: dependency-freshness: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Install cargo-outdated run: cargo install cargo-outdated --locked @@ -49,7 +49,7 @@ jobs: supply-chain-check: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Install cargo-deny run: cargo install cargo-deny --locked @@ -61,12 +61,12 @@ jobs: secrets-scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: Run gitleaks (full history) - uses: gitleaks/gitleaks-action@v2 + uses: gitleaks/gitleaks-action@v3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE }} @@ -77,7 +77,7 @@ jobs: needs: [dependency-audit] if: failure() steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Create issue for vulnerabilities uses: actions/github-script@v9