chore(deps): update github actions

renovate[bot] · web-flow · commit 409d01523f95 · 2025-10-24T22:50:54.000Z
diff --git a/.github/workflows/Apply Labels to Pull Request.yml b/.github/workflows/Apply Labels to Pull Request.yml
@@ -13,9 +13,9 @@ jobs:
       pull-requests: write
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Apply Labels Based on PR Changes
-        uses: actions/labeler@v5
+        uses: actions/labeler@v6
         with:
           repo-token: ${{ secrets.GITHUB_TOKEN }}
           configuration-path: .github/labeler.yml
diff --git a/.github/workflows/Attest-build-provenance.yml b/.github/workflows/Attest-build-provenance.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 📥 Checkout Source Code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: 🧾 Generate Provenance Attestation
         uses: slsa-framework/slsa-github-generator/actions/provenance@v1
         with:
diff --git a/.github/workflows/Auditwheel Compatibility.yml b/.github/workflows/Auditwheel Compatibility.yml
@@ -7,7 +7,7 @@ jobs:
     runs-on: ubuntu-latest
     container: quay.io/pypa/manylinux2014_x86_64
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - run: pip install build
       - run: python -m build
       - run: auditwheel show dist/*.whl
diff --git a/.github/workflows/Auto Rebase Dependabot Pull Requests.yml b/.github/workflows/Auto Rebase Dependabot Pull Requests.yml
@@ -9,7 +9,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Add autorebase label
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |-
             github.rest.issues.addLabels({
diff --git a/.github/workflows/Automated Version Bump and Changelog.yml b/.github/workflows/Automated Version Bump and Changelog.yml
@@ -11,11 +11,11 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repo
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
         with:
           fetch-depth: 0
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.13'
       - name: Install Commitizen
diff --git a/.github/workflows/Build and Push Docker Image.yml b/.github/workflows/Build and Push Docker Image.yml
@@ -13,14 +13,14 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 📥 Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: 🔧 Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
       - name: 🔐 Log in to GitHub Container Registry
         run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }}
           --password-stdin
       - name: 🐍 Set up Python & Install Commitizen
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.13'
       - name: 📦 Install Commitizen
@@ -54,7 +54,7 @@ jobs:
           IMAGE_DIGEST=$(syft ghcr.io/${{ github.repository }}:${{ env.VERSION }} -o json | jq -r '.descriptor.digest')
           echo "IMAGE_DIGEST=$IMAGE_DIGEST" >> $GITHUB_ENV
       - name: 📤 Upload SBOM
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v5
         with:
           name: sbom-image
           path: sbom.image.json
diff --git a/.github/workflows/Check Outdated Dependencies.yml b/.github/workflows/Check Outdated Dependencies.yml
@@ -9,8 +9,8 @@ jobs:
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: 3.x
       - name: Install Pip Tools
diff --git a/.github/workflows/Cleanup Old Docker Images.yml b/.github/workflows/Cleanup Old Docker Images.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Extract repository short name
         id: extract
         run: echo "REPO_NAME=$(basename '${{ github.repository }}')" >> $GITHUB_ENV
diff --git a/.github/workflows/Code Coverage.yml b/.github/workflows/Code Coverage.yml
@@ -8,8 +8,8 @@ jobs:
   coverage:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: '3.11'
       - run: pip install -e .[dev]
diff --git a/.github/workflows/CodeQL Analysis.yml b/.github/workflows/CodeQL Analysis.yml
@@ -16,8 +16,8 @@ jobs:
       matrix:
         language: [python]
     steps:
-      - uses: actions/checkout@v4
-      - uses: github/codeql-action/init@v3
+      - uses: actions/checkout@v5
+      - uses: github/codeql-action/init@v4
         with:
           languages: ${{ matrix.language }}
-      - uses: github/codeql-action/analyze@v3
+      - uses: github/codeql-action/analyze@v4
diff --git a/.github/workflows/Create Greetings on Pull Request.yml b/.github/workflows/Create Greetings on Pull Request.yml
@@ -15,7 +15,7 @@ jobs:
       pull-requests: write
     steps:
       - name: Greet First-Time Contributors
-        uses: actions/first-interaction@v2
+        uses: actions/first-interaction@v3
         with:
           repo-token: ${{ secrets.GITHUB_TOKEN }}
           issue-message: |
diff --git a/.github/workflows/Dependabot Dependency Updates.yml b/.github/workflows/Dependabot Dependency Updates.yml
@@ -10,9 +10,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: 3.x
       - name: Install pip-tools
diff --git a/.github/workflows/Dependency Check with Deptry.yml b/.github/workflows/Dependency Check with Deptry.yml
@@ -13,9 +13,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: 3.11
       - name: Install Deptry
diff --git a/.github/workflows/Dependency Security Audit.yml b/.github/workflows/Dependency Security Audit.yml
@@ -7,8 +7,8 @@ jobs:
   dependency-security-audit:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: 3.x
       - name: Install pip-audit
diff --git a/.github/workflows/Deploy MkDocs to GitHub Pages.yml b/.github/workflows/Deploy MkDocs to GitHub Pages.yml
@@ -14,9 +14,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.13'
       - name: Install dependencies
diff --git a/.github/workflows/GitHub Actions Cleanup.yml b/.github/workflows/GitHub Actions Cleanup.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Delete Old Workflow Runs (Older than 30 Days)
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/GitHub Release & Artifact Upload.yml b/.github/workflows/GitHub Release & Artifact Upload.yml
@@ -13,14 +13,14 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout source code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Download SBOM
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v6
         with:
           name: sbom
           path: artifacts/
       - name: Download pip-audit report
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v6
         with:
           name: pip-audit-report
           path: artifacts/
diff --git a/.github/workflows/GitHub Workflow Lint.yml b/.github/workflows/GitHub Workflow Lint.yml
@@ -5,7 +5,7 @@ jobs:
   lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
         with:
           fetch-depth: 0  # ✅ Fix for Super Linter SHA access
       - name: Super Linter
diff --git a/.github/workflows/Github Automated Releases.yml b/.github/workflows/Github Automated Releases.yml
@@ -11,9 +11,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.13'
       - name: Install Commitizen
diff --git a/.github/workflows/Ignore File Consistency Check.yml b/.github/workflows/Ignore File Consistency Check.yml
@@ -5,7 +5,7 @@ jobs:
   validate:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Check for overlap in ignore files
         run: |-
           echo "Checking .gitignore vs .dockerignore vs MANIFEST.in"
diff --git a/.github/workflows/License Checker.yml b/.github/workflows/License Checker.yml
@@ -8,13 +8,13 @@ jobs:
   license-check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: 3.11
       - run: pip install pip-licenses
       - run: pip-licenses --format=markdown --with-urls --output-file=licenses.md
-      - uses: actions/upload-artifact@v4
+      - uses: actions/upload-artifact@v5
         with:
           name: license-report
           path: licenses.md
diff --git a/.github/workflows/License Report.yml b/.github/workflows/License Report.yml
@@ -12,9 +12,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.11'
       - name: Install pip-licenses
@@ -23,7 +23,7 @@ jobs:
         run: |
           pip-licenses --from=mixed --format=markdown | tee license-report.md
       - name: Upload license report
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v5
         with:
           name: license-report
           path: license-report.md
diff --git a/.github/workflows/Mark stale issues and pull requests.yml b/.github/workflows/Mark stale issues and pull requests.yml
@@ -10,7 +10,7 @@ jobs:
       issues: write
       pull-requests: write
     steps:
-      - uses: actions/stale@v9
+      - uses: actions/stale@v10
         with:
           repo-token: ${{ secrets.GITHUB_TOKEN }}
           stale-issue-message: Stale issue message
diff --git a/.github/workflows/Python Build & Install Check.yml b/.github/workflows/Python Build & Install Check.yml
@@ -7,8 +7,8 @@ jobs:
   python-build-test:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: 3.x
       - name: Install Build Tools
diff --git a/.github/workflows/Python Matrix Test.yml b/.github/workflows/Python Matrix Test.yml
@@ -10,8 +10,8 @@ jobs:
       matrix:
         python-version: ['3.9', '3.10', '3.11', '3.12']
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: ${{ matrix.python-version }}
       - name: Install dependencies
diff --git a/.github/workflows/Python linting.yml b/.github/workflows/Python linting.yml
@@ -8,9 +8,9 @@ jobs:
       contents: read
     steps:
       - name: Checkout Code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.13'
       - name: Install linters
diff --git a/.github/workflows/SBOM Generator.yml b/.github/workflows/SBOM Generator.yml
@@ -8,13 +8,13 @@ jobs:
   generate-sbom:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-python@v5
+      - uses: actions/checkout@v5
+      - uses: actions/setup-python@v6
         with:
           python-version: '3.11'
       - run: pip install cyclonedx-bom
       - run: cyclonedx-py requirements -i requirements.txt -o bom.json
-      - uses: actions/upload-artifact@v4
+      - uses: actions/upload-artifact@v5
         with:
           name: sbom
           path: bom.json
diff --git a/.github/workflows/SLSA Provenance.yml b/.github/workflows/SLSA Provenance.yml
@@ -14,14 +14,14 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout source code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Download SBOM
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v6
         with:
           name: sbom
           path: artifacts/
       - name: Download pip-audit report
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v6
         with:
           name: pip-audit-report
           path: artifacts/
diff --git a/.github/workflows/Sbom Attestation.yml b/.github/workflows/Sbom Attestation.yml
@@ -6,7 +6,7 @@ jobs:
   attest:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - run: make sbom-py
       - run: make sbom-image
       - run: make audit
diff --git a/.github/workflows/Sbom Image Scan.yml b/.github/workflows/Sbom Image Scan.yml
@@ -8,14 +8,14 @@ jobs:
   image-sbom:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - run: docker build -t stock-app:latest .
       - uses: anchore/sbom-action@v0
         with:
           image: stock-app:latest
           format: spdx-json
           output-file: sbom.spdx.json
-      - uses: actions/upload-artifact@v4
+      - uses: actions/upload-artifact@v5
         with:
           name: sbom-image
           path: sbom.spdx.json
diff --git a/.github/workflows/Secret scanning.yml b/.github/workflows/Secret scanning.yml
@@ -15,7 +15,7 @@ jobs:
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Run TruffleHog on PR diff
         uses: trufflesecurity/trufflehog@main
         with:
@@ -30,7 +30,7 @@ jobs:
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Run TruffleHog on entire repo
         uses: trufflesecurity/trufflehog@main
         with:
diff --git a/.github/workflows/Static Analysis with Pylint.yml b/.github/workflows/Static Analysis with Pylint.yml
diff --git a/.github/workflows/Validate YAML & JSON.yml b/.github/workflows/Validate YAML & JSON.yml
diff --git a/.github/workflows/Vulnerability Audit.yml b/.github/workflows/Vulnerability Audit.yml
diff --git a/.github/workflows/archive/SBOM and License Audit.yml b/.github/workflows/archive/SBOM and License Audit.yml
diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
diff --git a/.github/workflows/ci-experiments/ArgoCD Linting & Sync Check.yml b/.github/workflows/ci-experiments/ArgoCD Linting & Sync Check.yml
diff --git a/.github/workflows/ci-experiments/Argocd deployment test.yml b/.github/workflows/ci-experiments/Argocd deployment test.yml
diff --git a/.github/workflows/ci-experiments/Helm Chart Validation.yml b/.github/workflows/ci-experiments/Helm Chart Validation.yml
diff --git a/.github/workflows/ci-experiments/Helm Dry-Run Deployment.yml b/.github/workflows/ci-experiments/Helm Dry-Run Deployment.yml
diff --git a/.github/workflows/ci-experiments/Helm Template & Package Check.yml b/.github/workflows/ci-experiments/Helm Template & Package Check.yml
diff --git a/.github/workflows/ci-experiments/Validate ArgoCD Applications.yml b/.github/workflows/ci-experiments/Validate ArgoCD Applications.yml
diff --git a/.github/workflows/ci-experiments/Validate ArgoCD Manifests.yml b/.github/workflows/ci-experiments/Validate ArgoCD Manifests.yml
diff --git a/.github/workflows/ci-experiments/Validate Kubernetes YAML.yml b/.github/workflows/ci-experiments/Validate Kubernetes YAML.yml
diff --git a/.github/workflows/ci-experiments/Validate Kustomize Overlays.yml b/.github/workflows/ci-experiments/Validate Kustomize Overlays.yml
diff --git a/.github/workflows/metadata-check.yml b/.github/workflows/metadata-check.yml
