From b9b645f94d3a3b4c6a4d6d2cd44a4598b872d721 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Sep 2025 00:13:12 +0000
Subject: [PATCH] Bump the all-github-actions group with 3 updates

Bumps the all-github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [codecov/codecov-action](https://github.com/codecov/codecov-action) and [JuliaRegistries/TagBot](https://github.com/juliaregistries/tagbot).


Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/11bd71901bbe5b1630ceea73d27597364c9af683...08c6903cd8c0fde910a37f88322edcfb5dd907a8)

Updates `codecov/codecov-action` from 5.4.3 to 5.5.0
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/18283e04ce6e62d37312384ff67231eb8fd56d24...fdcc8476540edceab3de004e990f80d881c6cc00)

Updates `JuliaRegistries/TagBot` from 1.20.2 to 1.20.3
- [Release notes](https://github.com/juliaregistries/tagbot/releases)
- [Commits](https://github.com/juliaregistries/tagbot/compare/62dd7cd21dcde087eca10e70c3fc3f8cefbe44a2...553720ecd072a176ef901656bf96c3080cd47b2e)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-github-actions
- dependency-name: codecov/codecov-action
  dependency-version: 5.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-github-actions
- dependency-name: JuliaRegistries/TagBot
  dependency-version: 1.20.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/CI.yml               | 6 +++---
 .github/workflows/EnforceChangelog.yml | 2 +-
 .github/workflows/TagBot.yml           | 2 +-
 .github/workflows/VendorUpdater.yml    | 2 +-
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
index 0cb26f9..c76bf09 100644
--- a/.github/workflows/CI.yml
+++ b/.github/workflows/CI.yml
@@ -70,7 +70,7 @@ jobs:
           - version: "1.10"
             os: windows-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           persist-credentials: false
 
@@ -105,7 +105,7 @@ jobs:
           depwarn: "yes"
       - uses: julia-actions/julia-processcoverage@03114f09f119417c3242a9fb6e0b722676aedf38 # v1.2.2
         if: matrix.os == 'ubuntu-latest' && matrix.version == '1.11'
-      - uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
+      - uses: codecov/codecov-action@fdcc8476540edceab3de004e990f80d881c6cc00 # v5.5.0
         if: matrix.os == 'ubuntu-latest' && matrix.version == '1.11'
         with:
           verbose: true
@@ -118,7 +118,7 @@ jobs:
     timeout-minutes: 20
 
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           persist-credentials: false
       - uses: julia-actions/setup-julia@5c9647d97b78a5debe5164e9eec09d653d29bd71 # v2.6.1
diff --git a/.github/workflows/EnforceChangelog.yml b/.github/workflows/EnforceChangelog.yml
index 832b50a..6160881 100644
--- a/.github/workflows/EnforceChangelog.yml
+++ b/.github/workflows/EnforceChangelog.yml
@@ -7,7 +7,7 @@ jobs:
   changelog:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - uses: julia-actions/setup-julia@5c9647d97b78a5debe5164e9eec09d653d29bd71 # v2.6.1
         with:
           version: '1'
diff --git a/.github/workflows/TagBot.yml b/.github/workflows/TagBot.yml
index 3718262..80090f2 100644
--- a/.github/workflows/TagBot.yml
+++ b/.github/workflows/TagBot.yml
@@ -25,6 +25,6 @@ jobs:
     if: github.event_name == 'workflow_dispatch' || github.actor == 'JuliaTagBot'
     runs-on: ubuntu-latest
     steps:
-      - uses: JuliaRegistries/TagBot@62dd7cd21dcde087eca10e70c3fc3f8cefbe44a2 # v1.20.2
+      - uses: JuliaRegistries/TagBot@553720ecd072a176ef901656bf96c3080cd47b2e # v1.20.3
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/VendorUpdater.yml b/.github/workflows/VendorUpdater.yml
index 53b1006..0749b4a 100644
--- a/.github/workflows/VendorUpdater.yml
+++ b/.github/workflows/VendorUpdater.yml
@@ -10,7 +10,7 @@ jobs:
   VendorUpdater:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           persist-credentials: false