diff --git a/.github/workflows/bump_version_and_tag.yml b/.github/workflows/bump_version_and_tag.yml index a02dfa9f..b835a81c 100644 --- a/.github/workflows/bump_version_and_tag.yml +++ b/.github/workflows/bump_version_and_tag.yml @@ -29,7 +29,7 @@ jobs: egress-policy: audit - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: ssh-key: "${{ secrets.VERSION_BUMP_KEY }}" # This is a deploy key with write access, without it other workflows will not get triggered to run diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 33d2f3dd..249241a6 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -46,7 +46,7 @@ jobs: egress-policy: audit - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/dependabot-apt-update.yml b/.github/workflows/dependabot-apt-update.yml index 76cd71df..27850a40 100644 --- a/.github/workflows/dependabot-apt-update.yml +++ b/.github/workflows/dependabot-apt-update.yml @@ -20,7 +20,7 @@ jobs: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Check for apt package updates id: check-updates diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 71ddc655..adc5366d 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -22,6 +22,6 @@ jobs: egress-policy: audit - name: 'Checkout Repository' - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: 'Dependency Review' uses: actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9 # v4.7.1 diff --git a/.github/workflows/generate_apm.pdef.xml.yml b/.github/workflows/generate_apm.pdef.xml.yml index 286dce5e..1ce50f48 100644 --- a/.github/workflows/generate_apm.pdef.xml.yml +++ b/.github/workflows/generate_apm.pdef.xml.yml @@ -22,10 +22,10 @@ jobs: egress-policy: audit - name: Checkout MethodicConfigurator - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Checkout ArduPilot - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: repository: ArduPilot/ardupilot path: ardupilot diff --git a/.github/workflows/gitavscan.yml b/.github/workflows/gitavscan.yml index 1c1e54c9..30bfb57d 100644 --- a/.github/workflows/gitavscan.yml +++ b/.github/workflows/gitavscan.yml @@ -22,7 +22,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Setup ClamAV configuration run: | diff --git a/.github/workflows/i18n-extract.yml b/.github/workflows/i18n-extract.yml index 225c189f..c4aa55b6 100644 --- a/.github/workflows/i18n-extract.yml +++ b/.github/workflows/i18n-extract.yml @@ -34,7 +34,7 @@ jobs: with: egress-policy: audit - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/markdown-link-check.yml b/.github/workflows/markdown-link-check.yml index 434f3341..d00a3e28 100644 --- a/.github/workflows/markdown-link-check.yml +++ b/.github/workflows/markdown-link-check.yml @@ -22,7 +22,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Check links uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # v1 diff --git a/.github/workflows/markdown-lint.yml b/.github/workflows/markdown-lint.yml index fa22f038..24c853cd 100644 --- a/.github/workflows/markdown-lint.yml +++ b/.github/workflows/markdown-lint.yml @@ -22,7 +22,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: lint markdown uses: DavidAnson/markdownlint-cli2-action@992badcdf24e3b8eb7e87ff9287fe931bcb00c6e # v20.0.0 diff --git a/.github/workflows/mypy.yml b/.github/workflows/mypy.yml index 8aa6e311..9af6cb97 100644 --- a/.github/workflows/mypy.yml +++ b/.github/workflows/mypy.yml @@ -32,7 +32,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Install dependencies id: install_deps diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml index 828ceceb..84b80292 100644 --- a/.github/workflows/pylint.yml +++ b/.github/workflows/pylint.yml @@ -34,7 +34,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # https://docs.astral.sh/uv/guides/integration/github/ - name: Install uv and set the python version diff --git a/.github/workflows/pyright.yml b/.github/workflows/pyright.yml index df616c8e..fe40c0de 100644 --- a/.github/workflows/pyright.yml +++ b/.github/workflows/pyright.yml @@ -32,7 +32,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # https://docs.astral.sh/uv/guides/integration/github/ - name: Install uv and set the python version diff --git a/.github/workflows/pytest.yml b/.github/workflows/pytest.yml index 07e35dc9..d1c4d160 100644 --- a/.github/workflows/pytest.yml +++ b/.github/workflows/pytest.yml @@ -38,7 +38,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python ${{ matrix.python-version }} uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 @@ -112,7 +112,7 @@ jobs: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Download coverage xml report uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0 @@ -139,7 +139,7 @@ jobs: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Download coverage report uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0 @@ -243,7 +243,7 @@ jobs: egress-policy: audit - name: Checkout code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Download coverage xml report uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0 diff --git a/.github/workflows/python-publish.yml b/.github/workflows/python-publish.yml index 019b3600..3884bd54 100644 --- a/.github/workflows/python-publish.yml +++ b/.github/workflows/python-publish.yml @@ -32,7 +32,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # https://docs.astral.sh/uv/guides/integration/github/ - name: Install uv and set the python version diff --git a/.github/workflows/renovate_pre_commit_hooks.yml b/.github/workflows/renovate_pre_commit_hooks.yml index 6f28d503..015ec1ce 100644 --- a/.github/workflows/renovate_pre_commit_hooks.yml +++ b/.github/workflows/renovate_pre_commit_hooks.yml @@ -25,7 +25,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Self-hosted Renovate uses: renovatebot/github-action@85b17ebd5abf43d1c34c01bd4c8dbb8d45bbc2c7 # v43.0.7 diff --git a/.github/workflows/reuse.yml b/.github/workflows/reuse.yml index 4920f68b..0031625e 100644 --- a/.github/workflows/reuse.yml +++ b/.github/workflows/reuse.yml @@ -20,7 +20,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Install uv and set the python version uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 diff --git a/.github/workflows/ruff.yml b/.github/workflows/ruff.yml index 0ef8bb57..098111f0 100644 --- a/.github/workflows/ruff.yml +++ b/.github/workflows/ruff.yml @@ -31,7 +31,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Lint with Ruff uses: astral-sh/ruff-action@57714a7c8a2e59f32539362ba31877a1957dded1 # v3.5.1 diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 3fe2c45b..515d23d0 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -37,7 +37,7 @@ jobs: egress-policy: audit - name: "Checkout code" - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: persist-credentials: false diff --git a/.github/workflows/update_configuration_steps_translation.yaml b/.github/workflows/update_configuration_steps_translation.yaml index f7b176c4..5c55504c 100644 --- a/.github/workflows/update_configuration_steps_translation.yaml +++ b/.github/workflows/update_configuration_steps_translation.yaml @@ -37,7 +37,7 @@ jobs: egress-policy: audit - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/update_flightcontroller_ids.yml b/.github/workflows/update_flightcontroller_ids.yml index 5ba1f1b4..5d683349 100644 --- a/.github/workflows/update_flightcontroller_ids.yml +++ b/.github/workflows/update_flightcontroller_ids.yml @@ -22,10 +22,10 @@ jobs: egress-policy: audit - name: Checkout MethodicConfigurator - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Checkout ArduPilot - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 with: repository: ArduPilot/ardupilot path: ardupilot diff --git a/.github/workflows/update_magfit_pdef_xml.yml b/.github/workflows/update_magfit_pdef_xml.yml index 81c3ac58..4599108c 100644 --- a/.github/workflows/update_magfit_pdef_xml.yml +++ b/.github/workflows/update_magfit_pdef_xml.yml @@ -24,7 +24,7 @@ jobs: egress-policy: audit - name: Checkout MethodicConfigurator - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/update_mo_files.yml b/.github/workflows/update_mo_files.yml index 4f9efa70..c38faea2 100644 --- a/.github/workflows/update_mo_files.yml +++ b/.github/workflows/update_mo_files.yml @@ -30,7 +30,7 @@ jobs: egress-policy: audit - name: Checkout MethodicConfigurator - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/update_motor_diagrams.yml b/.github/workflows/update_motor_diagrams.yml index 58a4a9a4..93612165 100644 --- a/.github/workflows/update_motor_diagrams.yml +++ b/.github/workflows/update_motor_diagrams.yml @@ -22,7 +22,7 @@ jobs: egress-policy: audit - name: Checkout MethodicConfigurator - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/update_vehicle_components_translation.yaml b/.github/workflows/update_vehicle_components_translation.yaml index ca5317d3..525f0f11 100644 --- a/.github/workflows/update_vehicle_components_translation.yaml +++ b/.github/workflows/update_vehicle_components_translation.yaml @@ -39,7 +39,7 @@ jobs: egress-policy: audit - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - name: Set up Python uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 diff --git a/.github/workflows/update_vehicle_templates.yml b/.github/workflows/update_vehicle_templates.yml index c55abb03..5861953d 100644 --- a/.github/workflows/update_vehicle_templates.yml +++ b/.github/workflows/update_vehicle_templates.yml @@ -39,7 +39,7 @@ jobs: egress-policy: audit - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # https://docs.astral.sh/uv/guides/integration/github/ - name: Install uv and set the python version diff --git a/.github/workflows/windows_build.yml b/.github/workflows/windows_build.yml index a5b6b69f..89984be9 100644 --- a/.github/workflows/windows_build.yml +++ b/.github/workflows/windows_build.yml @@ -33,7 +33,7 @@ jobs: # step-security/harden-runner does not (yet) run on windows, so do not use it - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 # https://docs.astral.sh/uv/guides/integration/github/ - name: Install uv and set the python version