From dc16bd3c8757191c32b236a9e01c569d06455860 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Jul 2026 08:48:06 +0000 Subject: [PATCH] Bump actions/checkout from 6.0.3 to 7.0.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yml | 6 +++--- .github/workflows/codeql.yml | 2 +- .github/workflows/publish-image.yml | 4 ++-- .github/workflows/release-verify.yml | 4 ++-- .github/workflows/security-scheduled.yml | 4 ++-- .github/workflows/validate-beta-candidate.yml | 6 +++--- 6 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1f1c1de..170387d 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -18,7 +18,7 @@ jobs: env: SOURCE_SHA: ${{ github.event.pull_request.head.sha || github.sha }} steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} persist-credentials: false @@ -52,7 +52,7 @@ jobs: SOURCE_SHA: ${{ github.event.pull_request.head.sha || github.sha }} steps: - name: Check out exact event source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} persist-credentials: false @@ -168,7 +168,7 @@ jobs: VALIDATION: ${{ matrix.validation }} steps: - name: Check out exact event source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} persist-credentials: false diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index a390103..d4c0479 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -26,7 +26,7 @@ jobs: security-events: write steps: - name: Check out source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/publish-image.yml b/.github/workflows/publish-image.yml index bd8df88..ea5bbe8 100644 --- a/.github/workflows/publish-image.yml +++ b/.github/workflows/publish-image.yml @@ -93,7 +93,7 @@ jobs: } >> "$GITHUB_OUTPUT" - name: Check out current release revocation policy - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.sha }} fetch-depth: 1 @@ -158,7 +158,7 @@ jobs: id-token: write steps: - name: Check out release source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ github.event.inputs.ref || github.ref }} fetch-depth: 0 diff --git a/.github/workflows/release-verify.yml b/.github/workflows/release-verify.yml index 5d78a71..d67ec53 100644 --- a/.github/workflows/release-verify.yml +++ b/.github/workflows/release-verify.yml @@ -26,7 +26,7 @@ jobs: commit_sha: ${{ steps.source.outputs.commit_sha }} steps: - name: Check out release source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref }} persist-credentials: false @@ -75,7 +75,7 @@ jobs: contents: read steps: - name: Check out release source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref }} persist-credentials: false diff --git a/.github/workflows/security-scheduled.yml b/.github/workflows/security-scheduled.yml index 07f8dc9..d5af025 100644 --- a/.github/workflows/security-scheduled.yml +++ b/.github/workflows/security-scheduled.yml @@ -19,7 +19,7 @@ jobs: timeout-minutes: 10 steps: - name: Check out source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -38,7 +38,7 @@ jobs: timeout-minutes: 30 steps: - name: Check out source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/validate-beta-candidate.yml b/.github/workflows/validate-beta-candidate.yml index be36252..3456976 100644 --- a/.github/workflows/validate-beta-candidate.yml +++ b/.github/workflows/validate-beta-candidate.yml @@ -124,7 +124,7 @@ jobs: packages: read steps: - name: Check out exact candidate source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.expected_revision }} persist-credentials: false @@ -240,7 +240,7 @@ jobs: packages: read steps: - name: Check out exact candidate source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.expected_revision }} persist-credentials: false @@ -356,7 +356,7 @@ jobs: packages: read steps: - name: Check out exact candidate source - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.expected_revision }} persist-credentials: false