From bf4933e5568dbe092216e50d41e69bf65baa4817 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 11 Jul 2025 12:07:27 +0000 Subject: [PATCH] fix(deps): update github-actions Signed-off-by: Renovate Bot --- .github/workflows/codeql.yml | 8 ++++---- .github/workflows/comment-issue.yml | 2 +- .github/workflows/dependency-review.yml | 2 +- .github/workflows/lint.yml | 16 ++++++++-------- .github/workflows/lock-file-maintenance.yml | 2 +- .github/workflows/preview-release.yaml | 2 +- .github/workflows/require-allow-edits.yml | 2 +- .github/workflows/scorecards.yml | 4 ++-- .github/workflows/semantic-pull-request.yml | 2 +- .github/workflows/semantic-release.yml | 2 +- .github/workflows/test.yml | 6 +++--- 11 files changed, 24 insertions(+), 24 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 080c1960..2c076362 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -43,7 +43,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -52,7 +52,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: "Initialize CodeQL" - uses: "github/codeql-action/init@39edc492dbe16b1465b0cafca41432d857bdb31a" # v3.29.1 + uses: "github/codeql-action/init@181d5eefc20863364f96762470ba6f862bdef56b" # v3.29.2 with: languages: "${{ matrix.language }}" # If you wish to specify custom queries, you can do so here or in a config file. @@ -62,7 +62,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: "Autobuild" - uses: "github/codeql-action/autobuild@39edc492dbe16b1465b0cafca41432d857bdb31a" # v3.29.1 + uses: "github/codeql-action/autobuild@181d5eefc20863364f96762470ba6f862bdef56b" # v3.29.2 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -75,6 +75,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: "Perform CodeQL Analysis" - uses: "github/codeql-action/analyze@39edc492dbe16b1465b0cafca41432d857bdb31a" # v3.29.1 + uses: "github/codeql-action/analyze@181d5eefc20863364f96762470ba6f862bdef56b" # v3.29.2 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/comment-issue.yml b/.github/workflows/comment-issue.yml index 245c8f32..4f452e20 100644 --- a/.github/workflows/comment-issue.yml +++ b/.github/workflows/comment-issue.yml @@ -16,7 +16,7 @@ jobs: issues: "write" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 5ed507b2..3b2acc29 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -21,7 +21,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 298e98db..76aeeae1 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -35,7 +35,7 @@ jobs: package_json_lintable: "${{ steps.changes.outputs.package_json_lintable }}" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -60,7 +60,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -111,7 +111,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -162,7 +162,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -213,7 +213,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -237,7 +237,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -262,7 +262,7 @@ jobs: runs-on: "ubuntu-latest" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -312,7 +312,7 @@ jobs: # If any jobs we depend on fail, we will fail since this is a required check # NOTE: A timeout is considered a failure - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/lock-file-maintenance.yml b/.github/workflows/lock-file-maintenance.yml index a4578cd7..76d01e45 100644 --- a/.github/workflows/lock-file-maintenance.yml +++ b/.github/workflows/lock-file-maintenance.yml @@ -21,7 +21,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/preview-release.yaml b/.github/workflows/preview-release.yaml index b882278b..492ee909 100644 --- a/.github/workflows/preview-release.yaml +++ b/.github/workflows/preview-release.yaml @@ -26,7 +26,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/require-allow-edits.yml b/.github/workflows/require-allow-edits.yml index 93cfb6c2..a7233c9d 100644 --- a/.github/workflows/require-allow-edits.yml +++ b/.github/workflows/require-allow-edits.yml @@ -16,7 +16,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index bc3d9c21..3fab0d99 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -33,7 +33,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -73,6 +73,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: "github/codeql-action/upload-sarif@39edc492dbe16b1465b0cafca41432d857bdb31a" # v3.29.1 + uses: "github/codeql-action/upload-sarif@181d5eefc20863364f96762470ba6f862bdef56b" # v3.29.2 with: sarif_file: "results.sarif" diff --git a/.github/workflows/semantic-pull-request.yml b/.github/workflows/semantic-pull-request.yml index 2a3800dc..ab11b84f 100644 --- a/.github/workflows/semantic-pull-request.yml +++ b/.github/workflows/semantic-pull-request.yml @@ -23,7 +23,7 @@ jobs: name: "Semantic Pull Request" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/semantic-release.yml b/.github/workflows/semantic-release.yml index 0914cc45..81ecd5cc 100644 --- a/.github/workflows/semantic-release.yml +++ b/.github/workflows/semantic-release.yml @@ -29,7 +29,7 @@ jobs: steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index b2df2fe2..1676f92c 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -32,7 +32,7 @@ jobs: codecov: "${{ steps.changes.outputs.codecov }}" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -72,7 +72,7 @@ jobs: NODE: "${{ matrix.node_version }}" steps: - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit" @@ -141,7 +141,7 @@ jobs: # If any jobs we depend on fail, we will fail since this is a required check # NOTE: A timeout is considered a failure - name: "Harden Runner" - uses: "step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863" # v2.12.1 + uses: "step-security/harden-runner@6c439dc8bdf85cadbbce9ed30d1c7b959517bc49" # v2.12.2 with: egress-policy: "audit"