From 97291c7e4b904e5633c2dd20203facd69f969536 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 17 Oct 2025 03:10:34 +0000 Subject: [PATCH] Bump the all group across 1 directory with 7 updates Bumps the all group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4` | `5` | | [actions/github-script](https://github.com/actions/github-script) | `7` | `8` | | [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2.3.0` | `2.4.0` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `5` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `5` | `6` | | [crate-ci/typos](https://github.com/crate-ci/typos) | `1.32.0` | `1.36.2` | | [DeterminateSystems/update-flake-lock](https://github.com/determinatesystems/update-flake-lock) | `24` | `27` | Updates `actions/checkout` from 4 to 5 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) Updates `actions/github-script` from 7 to 8 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/v7...v8) Updates `dependabot/fetch-metadata` from 2.3.0 to 2.4.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/v2.3.0...v2.4.0) Updates `actions/download-artifact` from 4 to 5 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v4...v5) Updates `docker/build-push-action` from 5 to 6 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v5...v6) Updates `crate-ci/typos` from 1.32.0 to 1.36.2 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](https://github.com/crate-ci/typos/compare/v1.32.0...v1.36.2) Updates `DeterminateSystems/update-flake-lock` from 24 to 27 - [Release notes](https://github.com/determinatesystems/update-flake-lock/releases) - [Commits](https://github.com/determinatesystems/update-flake-lock/compare/v24...v27) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: actions/github-script dependency-version: '8' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: dependabot/fetch-metadata dependency-version: 2.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: actions/download-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: docker/build-push-action dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: crate-ci/typos dependency-version: 1.36.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: DeterminateSystems/update-flake-lock dependency-version: '27' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all ... Signed-off-by: dependabot[bot] --- .github/workflows/audit.yml | 8 +++--- .github/workflows/auto-merge-dependabot.yml | 2 +- .github/workflows/backport.yml | 2 +- .github/workflows/benchmark-build.yaml | 12 ++++---- .github/workflows/build-crypto-helper.yml | 6 ++-- .github/workflows/build-without-lockfile.yml | 4 +-- .github/workflows/build.yml | 22 +++++++-------- .github/workflows/cargo-features.yml | 2 +- .github/workflows/contracts.yml | 4 +-- .github/workflows/coverage.yml | 2 +- .github/workflows/doc-rust.yml | 2 +- .github/workflows/hotshot.yml | 6 ++-- .github/workflows/lint.yml | 6 ++-- .github/workflows/nix-env-macos-arm.yml | 2 +- .github/workflows/slowtest.yaml | 4 +-- .github/workflows/test.yml | 28 +++++++++---------- .github/workflows/typos.yml | 4 +-- .../workflows/ubuntu-install-without-nix.yml | 2 +- .github/workflows/unused-deps.yml | 2 +- .github/workflows/update_nix.yml | 4 +-- 20 files changed, 62 insertions(+), 62 deletions(-) diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml index 234d960ccb4..ab68f12e457 100644 --- a/.github/workflows/audit.yml +++ b/.github/workflows/audit.yml @@ -21,7 +21,7 @@ jobs: security_audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: rustsec/audit-check@v2 with: @@ -38,10 +38,10 @@ jobs: pull-requests: write steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 if: github.event_name != 'pull_request' - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 if: github.event_name == 'pull_request' with: # By default github will checkout a ref of the HEAD merged into the @@ -68,7 +68,7 @@ jobs: - name: Comment about audit fix PR on original PR if: github.event_name == 'pull_request' && steps.create-pull-request.outputs.pull-request-number - uses: actions/github-script@v7 + uses: actions/github-script@v8 with: github-token: ${{secrets.GITHUB_TOKEN}} script: | diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index c55cd43c824..50ab27e5d07 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -13,7 +13,7 @@ jobs: if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request'}} steps: - name: Dependabot metadata - uses: dependabot/fetch-metadata@v2.3.0 + uses: dependabot/fetch-metadata@v2.4.0 id: metadata with: github-token: '${{ secrets.GITHUB_TOKEN }}' diff --git a/.github/workflows/backport.yml b/.github/workflows/backport.yml index c065cb255ca..c5719ac9213 100644 --- a/.github/workflows/backport.yml +++ b/.github/workflows/backport.yml @@ -13,6 +13,6 @@ jobs: # Don't run on closed unmerged pull requests if: github.event.pull_request.merged steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Create backport pull requests uses: korthout/backport-action@v3 diff --git a/.github/workflows/benchmark-build.yaml b/.github/workflows/benchmark-build.yaml index 35f0677c28d..852561fbc73 100644 --- a/.github/workflows/benchmark-build.yaml +++ b/.github/workflows/benchmark-build.yaml @@ -20,7 +20,7 @@ jobs: - uses: taiki-e/install-action@just - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -66,7 +66,7 @@ jobs: runs-on: buildjet-16vcpu-ubuntu-2204-arm steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -125,16 +125,16 @@ jobs: bridge-tag: ${{ steps.bridge.outputs.tags }} steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Download executables AMD - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: name: x86_64-unknown-linux-gnu-services-bench path: target/amd64/release - name: Download executables ARM - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: name: aarch64-unknown-linux-gnu-services-bench path: target/arm64/release @@ -378,7 +378,7 @@ jobs: - uses: taiki-e/install-action@just - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Pull docker images run: | diff --git a/.github/workflows/build-crypto-helper.yml b/.github/workflows/build-crypto-helper.yml index aa79f0dad22..5387e2393f2 100644 --- a/.github/workflows/build-crypto-helper.yml +++ b/.github/workflows/build-crypto-helper.yml @@ -29,7 +29,7 @@ jobs: steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Install Rust uses: dtolnay/rust-toolchain@stable @@ -89,10 +89,10 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Download all Artifacts - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: path: target/lib diff --git a/.github/workflows/build-without-lockfile.yml b/.github/workflows/build-without-lockfile.yml index 087c5713ebd..6c6dba8cccf 100644 --- a/.github/workflows/build-without-lockfile.yml +++ b/.github/workflows/build-without-lockfile.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # NOTE: no rust cache, this isn't a time critical job @@ -36,7 +36,7 @@ jobs: cargo check --all-targets - name: Comment on PR - uses: actions/github-script@v7 + uses: actions/github-script@v8 if: failure() && github.event_name == 'pull_request' with: github-token: ${{secrets.GITHUB_TOKEN}} diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 94e912abd50..9dd9b222e1a 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -65,7 +65,7 @@ jobs: - uses: rui314/setup-mold@v1 - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -130,7 +130,7 @@ jobs: - uses: rui314/setup-mold@v1 - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -188,10 +188,10 @@ jobs: steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Download executables AMD - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: pattern: amd-* path: target/amd64/release @@ -240,7 +240,7 @@ jobs: - name: Build and push docker (non-PR) if: github.event_name != 'pull_request' - uses: docker/build-push-action@v5 + uses: docker/build-push-action@v6 id: build with: context: . @@ -296,10 +296,10 @@ jobs: steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Download executables ARM - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: pattern: arm-* path: target/arm64/release @@ -390,7 +390,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Download digests - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: pattern: "digests-${{ matrix.service }}-*" path: "${{ runner.temp }}/digests" @@ -429,10 +429,10 @@ jobs: - uses: taiki-e/install-action@just - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Download artifacts - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: path: ${{ runner.temp }}/docker-images pattern: "*-docker-image" @@ -472,7 +472,7 @@ jobs: - uses: taiki-e/install-action@just - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Set docker image tag for compose run: | diff --git a/.github/workflows/cargo-features.yml b/.github/workflows/cargo-features.yml index 9f6f1157170..8b70a735dfa 100644 --- a/.github/workflows/cargo-features.yml +++ b/.github/workflows/cargo-features.yml @@ -30,7 +30,7 @@ jobs: - uses: taiki-e/install-action@just - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Free Disk Space (Ubuntu) uses: jlumbroso/free-disk-space@main diff --git a/.github/workflows/contracts.yml b/.github/workflows/contracts.yml index 482598ca7dc..46f36e478b4 100644 --- a/.github/workflows/contracts.yml +++ b/.github/workflows/contracts.yml @@ -39,7 +39,7 @@ jobs: skipPush: ${{ github.actor == 'dependabot[bot]' }} - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: recursive @@ -103,7 +103,7 @@ jobs: skipPush: ${{ github.actor == 'dependabot[bot]' }} - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: recursive diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index 50040bd2a62..eb75785da6a 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -29,7 +29,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: dtolnay/rust-toolchain@nightly diff --git a/.github/workflows/doc-rust.yml b/.github/workflows/doc-rust.yml index 4bb080ec84e..49d135e06d5 100644 --- a/.github/workflows/doc-rust.yml +++ b/.github/workflows/doc-rust.yml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: taiki-e/install-action@just diff --git a/.github/workflows/hotshot.yml b/.github/workflows/hotshot.yml index 652df09ae35..da11e2c1943 100644 --- a/.github/workflows/hotshot.yml +++ b/.github/workflows/hotshot.yml @@ -20,7 +20,7 @@ jobs: matrix: ${{ steps.set-matrix.outputs.matrix }} steps: - uses: taiki-e/install-action@just - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - id: set-matrix run: echo "matrix=$(just hotshot::matrix)" >> "$GITHUB_OUTPUT" @@ -31,7 +31,7 @@ jobs: fail-fast: false runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 name: Checkout Repository - uses: Swatinem/rust-cache@v2 @@ -71,7 +71,7 @@ jobs: fail-fast: false runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 name: Checkout Repository - uses: Swatinem/rust-cache@v2 diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 69d74427434..340c866fee3 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -21,7 +21,7 @@ jobs: name: cargo fmt runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: dtolnay/rust-toolchain@master with: toolchain: nightly @@ -34,7 +34,7 @@ jobs: name: clippy (postgres) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: Swatinem/rust-cache@v2 with: save-if: ${{ github.ref == 'refs/heads/main' }} @@ -48,7 +48,7 @@ jobs: name: clippy (embedded-db) runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: Swatinem/rust-cache@v2 with: save-if: false diff --git a/.github/workflows/nix-env-macos-arm.yml b/.github/workflows/nix-env-macos-arm.yml index d6e136e7ebb..559215ed0a3 100644 --- a/.github/workflows/nix-env-macos-arm.yml +++ b/.github/workflows/nix-env-macos-arm.yml @@ -39,7 +39,7 @@ jobs: skipPush: ${{ github.actor == 'dependabot[bot]' }} - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 with: submodules: recursive diff --git a/.github/workflows/slowtest.yaml b/.github/workflows/slowtest.yaml index 018a4463d17..9e4210a15c7 100644 --- a/.github/workflows/slowtest.yaml +++ b/.github/workflows/slowtest.yaml @@ -46,7 +46,7 @@ jobs: - uses: rui314/setup-mold@v1 - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # NOTE: no rust cache, these tests are very slow anyway @@ -79,7 +79,7 @@ jobs: - uses: rui314/setup-mold@v1 - name: Checkout Repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # NOTE: no rust cache, these tests are very slow anyway diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 89e6424cf2b..84d0688c827 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -31,7 +31,7 @@ jobs: steps: - uses: rui314/setup-mold@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Install nextest uses: taiki-e/install-action@nextest @@ -70,7 +70,7 @@ jobs: steps: - uses: rui314/setup-mold@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive @@ -110,7 +110,7 @@ jobs: steps: - uses: rui314/setup-mold@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -156,7 +156,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: rui314/setup-mold@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -185,7 +185,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: rui314/setup-mold@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Enable Rust Caching uses: Swatinem/rust-cache@v2 @@ -219,7 +219,7 @@ jobs: - name: Install Foundry uses: foundry-rs/foundry-toolchain@v1 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Install node deps uses: nick-fields/retry@v3 @@ -233,7 +233,7 @@ jobs: - name: Install nextest uses: taiki-e/install-action@nextest - name: Download archive - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: name: nextest-archive-postgres @@ -257,7 +257,7 @@ jobs: with: version: nightly - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive @@ -273,7 +273,7 @@ jobs: - name: Install nextest uses: taiki-e/install-action@nextest - name: Download archive - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 with: name: nextest-archive-sqlite @@ -300,7 +300,7 @@ jobs: extraPullNames: nix-community skipPush: ${{ github.actor == 'dependabot[bot]' }} - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Build espresso-dev-node run: | @@ -361,12 +361,12 @@ jobs: - name: Configure PATH run: PATH="$PWD/target/debug:$PATH" - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - uses: taiki-e/install-action@nextest - name: Download archive - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 - name: Move files run: | @@ -416,12 +416,12 @@ jobs: runs-on: ubuntu-latest steps: - uses: cachix/install-nix-action@v31 - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 # TODO: this downloads all (available) artifacts, which is a bit wasteful but artifact # downloads always fail if I try to select a subset. - name: Download archive - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v5 - name: Move files run: | diff --git a/.github/workflows/typos.yml b/.github/workflows/typos.yml index ccaba056d4c..f99369e8e02 100644 --- a/.github/workflows/typos.yml +++ b/.github/workflows/typos.yml @@ -20,8 +20,8 @@ jobs: typos: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 name: Checkout Repository - name: typos-action - uses: crate-ci/typos@v1.32.0 + uses: crate-ci/typos@v1.38.1 diff --git a/.github/workflows/ubuntu-install-without-nix.yml b/.github/workflows/ubuntu-install-without-nix.yml index 3c066b1e15d..7e3efa71897 100644 --- a/.github/workflows/ubuntu-install-without-nix.yml +++ b/.github/workflows/ubuntu-install-without-nix.yml @@ -13,7 +13,7 @@ jobs: ubuntu: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 with: submodules: recursive diff --git a/.github/workflows/unused-deps.yml b/.github/workflows/unused-deps.yml index 3bca88979b3..9c762edd386 100644 --- a/.github/workflows/unused-deps.yml +++ b/.github/workflows/unused-deps.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - uses: dtolnay/rust-toolchain@nightly id: toolchain diff --git a/.github/workflows/update_nix.yml b/.github/workflows/update_nix.yml index cbc30b3cb3a..682c84279ce 100644 --- a/.github/workflows/update_nix.yml +++ b/.github/workflows/update_nix.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Install Nix uses: cachix/install-nix-action@v31 @@ -25,6 +25,6 @@ jobs: authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}" - name: Update flake.lock - uses: DeterminateSystems/update-flake-lock@v24 + uses: DeterminateSystems/update-flake-lock@v27 with: pr-title: "Weekly PR to bump flake.nix" # Title of PR to be created