Skip to content

Commit 1e20146

Browse files
oep-renovate[bot]oep-renovate[bot]
authored
chore(deps): update github actions
Signed-off-by: oep-renovate[bot] <212772560+oep-renovate[bot]@users.noreply.github.com>
1 parent 26ae383 commit 1e20146

File tree

11 files changed

+50
-50
lines changed

11 files changed

+50
-50
lines changed

.github/workflows/codeql.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -32,24 +32,24 @@ jobs:
3232

3333
steps:
3434
- name: Harden the runner (audit all outbound calls)
35-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
35+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
3636
with:
3737
egress-policy: audit
3838

3939
- name: Checkout repository
40-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
40+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
4141
with:
4242
persist-credentials: false
4343

4444
# Initializes the CodeQL tools for scanning.
4545
- name: Initialize CodeQL
46-
uses: github/codeql-action/init@64d10c13136e1c5bce3e5fbde8d4906eeaafc885 # v3.30.6
46+
uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
4747
with:
4848
languages: ${{ matrix.language }}
4949
build-mode: ${{ matrix.build-mode }}
5050
queries: security-extended
5151

5252
- name: Perform CodeQL Analysis
53-
uses: github/codeql-action/analyze@64d10c13136e1c5bce3e5fbde8d4906eeaafc885 # v3.30.6
53+
uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
5454
with:
5555
category: "/language:${{matrix.language}}"

.github/workflows/dependency-review.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,12 +9,12 @@ jobs:
99
runs-on: ubuntu-24.04
1010
steps:
1111
- name: Harden the runner (audit all outbound calls)
12-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
12+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
1313
with:
1414
egress-policy: audit
1515
- name: "Checkout Repository"
16-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
16+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
1717
with:
1818
persist-credentials: false
1919
- name: "Dependency Review"
20-
uses: actions/dependency-review-action@56339e523c0409420f6c2c9a2f4292bbb3c07dd3 # v4.8.0
20+
uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2

.github/workflows/docs_latest.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -16,11 +16,11 @@ jobs:
1616
contents: write
1717
steps:
1818
- name: Harden the runner (audit all outbound calls)
19-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
19+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
2020
with:
2121
egress-policy: audit
2222
- name: Checkout repository
23-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
23+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
2424
with:
2525
persist-credentials: false
2626
- name: Set up Python

.github/workflows/docs_stable.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -14,11 +14,11 @@ jobs:
1414
contents: write
1515
steps:
1616
- name: Harden the runner (audit all outbound calls)
17-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
17+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
1818
with:
1919
egress-policy: audit
2020
- name: Checkout repository
21-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
21+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
2222
with:
2323
fetch-depth: 0 # otherwise, you will failed to push refs to dest repo
2424
persist-credentials: false

.github/workflows/linter.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -20,10 +20,10 @@ jobs:
2020
runs-on: ubuntu-24.04
2121
steps:
2222
- name: Harden the runner (audit all outbound calls)
23-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
23+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
2424
with:
2525
egress-policy: audit
26-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
26+
- uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
2727
with:
2828
persist-credentials: false
2929
- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
@@ -48,15 +48,15 @@ jobs:
4848
contents: read
4949
steps:
5050
- name: Harden the runner (audit all outbound calls)
51-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
51+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
5252
with:
5353
egress-policy: audit
5454
- name: Checkout code
55-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
55+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
5656
with:
5757
persist-credentials: false
5858
- name: Run Zizmor scan
59-
uses: open-edge-platform/geti-ci/actions/zizmor@db5335076dfe564b039b5a7480b8f6b6ae38370a
59+
uses: open-edge-platform/geti-ci/actions/zizmor@6e7e8393869d05112f727d235acb644ed362c58f
6060
with:
6161
scan-scope: "changed"
6262
severity-level: "LOW"
@@ -68,15 +68,15 @@ jobs:
6868
contents: read
6969
steps:
7070
- name: Harden the runner (audit all outbound calls)
71-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
71+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
7272
with:
7373
egress-policy: audit
7474
- name: Checkout code
75-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
75+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
7676
with:
7777
persist-credentials: false
7878
- name: Run Bandit scan
79-
uses: open-edge-platform/geti-ci/actions/bandit@db5335076dfe564b039b5a7480b8f6b6ae38370a
79+
uses: open-edge-platform/geti-ci/actions/bandit@6e7e8393869d05112f727d235acb644ed362c58f
8080
with:
8181
scan-scope: "changed"
8282
severity-level: "LOW"

.github/workflows/pr_check.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -36,21 +36,21 @@ jobs:
3636
runs-on: ${{ matrix.os }}
3737
steps:
3838
- name: Harden the runner (audit all outbound calls)
39-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
39+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
4040
with:
4141
egress-policy: audit
4242

43-
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
43+
- uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
4444
with:
4545
persist-credentials: false
4646

4747
- name: Installing Rust toolchain
48-
uses: dtolnay/rust-toolchain@6d653acede28d24f02e3cd41383119e8b1b35921
48+
uses: dtolnay/rust-toolchain@0b1efabc08b657293548b77fb76cc02d26091c7e
4949
with:
5050
toolchain: stable
5151

5252
- name: Install uv and set the python version
53-
uses: astral-sh/setup-uv@d0cc045d04ccac9d8b7881df0226f9e82c39688e # v6.8.0
53+
uses: astral-sh/setup-uv@1e862dfacbd1d6d858c55d9b792c756523627244 # v7.1.4
5454
with:
5555
enable-cache: false
5656
python-version: ${{ matrix.python-version }}

.github/workflows/publish_to_pypi.yml

Lines changed: 9 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -19,11 +19,11 @@ jobs:
1919
os: ["ubuntu-24.04", "windows-2022", "macos-13", "macos-15"]
2020
steps:
2121
- name: Harden the runner (audit all outbound calls)
22-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
22+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
2323
with:
2424
egress-policy: audit
2525
- name: Checkout
26-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
26+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
2727
with:
2828
persist-credentials: false
2929
- name: Installing python
@@ -37,7 +37,7 @@ jobs:
3737
env:
3838
MACOSX_DEPLOYMENT_TARGET: 11.0
3939
run: python -m cibuildwheel --output-dir wheelhouse
40-
- uses: actions/upload-artifact@v4
40+
- uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5
4141
with:
4242
name: artifact-wheels_${{ matrix.os }}
4343
path: ./wheelhouse/*.whl
@@ -46,11 +46,11 @@ jobs:
4646
runs-on: ubuntu-latest
4747
steps:
4848
- name: Harden the runner (audit all outbound calls)
49-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
49+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
5050
with:
5151
egress-policy: audit
5252
- name: Checkout
53-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
53+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
5454
with:
5555
persist-credentials: false
5656
- name: Set up Python
@@ -61,7 +61,7 @@ jobs:
6161
run: python -m pip install build
6262
- name: Build sdist
6363
run: python -m build --sdist
64-
- uses: actions/upload-artifact@v4
64+
- uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5
6565
with:
6666
name: artifact-sdist_${{ matrix.os }}
6767
path: dist/*.tar.gz
@@ -75,11 +75,11 @@ jobs:
7575
id-token: write
7676
steps:
7777
- name: Harden the runner (audit all outbound calls)
78-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
78+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
7979
with:
8080
egress-policy: audit
8181
- name: Download artifacts
82-
uses: actions/download-artifact@v5
82+
uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6
8383
with:
8484
path: dist
8585
pattern: artifact-*
@@ -94,7 +94,7 @@ jobs:
9494
# Publish the built wheel and source tarball to github
9595
- name: Upload wheel and source files as github artifact
9696
if: ${{ steps.check-tag.outputs.match != '' }}
97-
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
97+
uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
9898
with:
9999
name: datumaro
100100
path: dist/*

.github/workflows/renovate-config-validator.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,7 @@ jobs:
2929
runs-on: ubuntu-latest
3030
steps:
3131
- name: Checkout configuration
32-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
32+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
3333
with:
3434
persist-credentials: false
3535

.github/workflows/renovate.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -60,19 +60,19 @@ jobs:
6060

6161
steps:
6262
- name: Checkout
63-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
63+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
6464
with:
6565
persist-credentials: false
6666

6767
- name: Get token
6868
id: get-github-app-token
69-
uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
69+
uses: actions/create-github-app-token@7e473efe3cb98aa54f8d4bac15400b15fad77d94 # v2.2.0
7070
with:
7171
app-id: ${{ secrets.RENOVATE_APP_ID }}
7272
private-key: ${{ secrets.RENOVATE_APP_PEM }}
7373

7474
- name: Self-hosted Renovate
75-
uses: renovatebot/github-action@2d941ef4e268e53affdc1f11365c69a73e544f50 # v43.0.14
75+
uses: renovatebot/github-action@03026bd55840025343414baec5d9337c5f9c7ea7 # v44.0.4
7676
with:
7777
configurationFile: .github/renovate.json5
7878
token: "${{ steps.get-github-app-token.outputs.token }}"

.github/workflows/scorecard.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -22,12 +22,12 @@ jobs:
2222

2323
steps:
2424
- name: Harden the runner (audit all outbound calls)
25-
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
25+
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
2626
with:
2727
egress-policy: audit
2828

2929
- name: Checkout code
30-
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
30+
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
3131
with:
3232
persist-credentials: false
3333

@@ -40,6 +40,6 @@ jobs:
4040

4141
# Upload the results to GitHub's code scanning dashboard
4242
- name: Upload to code-scanning
43-
uses: github/codeql-action/upload-sarif@64d10c13136e1c5bce3e5fbde8d4906eeaafc885 # v3.30.6
43+
uses: github/codeql-action/upload-sarif@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4.31.5
4444
with:
4545
sarif_file: results.sarif

0 commit comments

Comments
 (0)