saveourtool · renovate · Oct 7, 2025
diff --git a/.github/workflows/build_and_test.yml b/.github/workflows/build_and_test.yml
@@ -25,9 +25,9 @@ jobs:
       statuses: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Set up JDK 11
-        uses: actions/setup-java@v4
+        uses: actions/setup-java@v5
         with:
           java-version: 11
           distribution: temurin
@@ -66,7 +66,7 @@ jobs:
         # into a separate job (or, otherwise, we'd need to upload the content
         # of the whole `.git` folder as an artifact).
       - name: JUnit Tests (dorny/test-reporter@v1)
-        uses: dorny/test-reporter@v1
+        uses: dorny/test-reporter@v2
         if: ${{ always() }}
         with:
           name: JUnit Tests (${{ runner.os }}, dorny/test-reporter@v1)
@@ -96,7 +96,7 @@ jobs:
           path: '**/build/reports/'
       - name: Code coverage report
         if: ${{ runner.os == 'Linux' }}
-        uses: codecov/codecov-action@v4
+        uses: codecov/codecov-action@v5
         with:
           flags: unittests
           fail_ci_if_error: false # optional (default = false)
@@ -116,7 +116,7 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         if: ${{ always() }}
         with:
           name: xml-test-reports-${{ runner.os }}

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -30,15 +30,15 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
         with:
           # We must fetch at least the immediate parents so that if this is
           # a pull request then we can checkout the head.
           fetch-depth: 2
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3
+        uses: github/codeql-action/init@v4
         with:
           languages: ${{ matrix.language }}
           # If you wish to specify custom queries, you can do so here or in a config file.
@@ -77,4 +77,4 @@ jobs:
             -PgprUser=${{ github.actor }}
             -PgprKey=${{ secrets.GITHUB_TOKEN }}
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3
+        uses: github/codeql-action/analyze@v4
diff --git a/.github/workflows/dependencies.yml b/.github/workflows/dependencies.yml
@@ -18,7 +18,7 @@ jobs:
       contents: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
         with:
           # Fetch Git tags, so that semantic version can be calculated.
           # Alternatively, run `git fetch --prune --unshallow --tags` as the
@@ -27,7 +27,7 @@ jobs:
           fetch-depth: 0
 
       - name: 'Set up Java 17'
-        uses: actions/setup-java@v4
+        uses: actions/setup-java@v5
         with:
           distribution: zulu
           java-version: 17

diff --git a/.github/workflows/detekt.yml b/.github/workflows/detekt.yml
@@ -9,9 +9,9 @@ jobs:
   detekt_check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Set up JDK 11
-        uses: actions/setup-java@v4
+        uses: actions/setup-java@v5
         with:
           java-version: 11
           distribution: temurin
@@ -26,7 +26,7 @@ jobs:
             -PgprKey=${{ secrets.GITHUB_TOKEN }}
       - name: Upload SARIF to Github
         if: ${{ always() }}
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: build/detekt-sarif-reports/detekt-merged.sarif
       - name: Upload SARIF artifacts

diff --git a/.github/workflows/diktat.yml b/.github/workflows/diktat.yml
@@ -12,9 +12,9 @@ jobs:
       # required for all workflows
       security-events: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Set up JDK 11
-        uses: actions/setup-java@v4
+        uses: actions/setup-java@v5
         with:
           java-version: 11
           distribution: temurin
@@ -30,7 +30,7 @@ jobs:
             -PgprUser=${{ github.actor }}
             -PgprKey=${{ secrets.GITHUB_TOKEN }}
       - name: Upload SARIF report to Github
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         if: ${{ always() }}
         with:
           sarif_file: build/reports/diktat/diktat-merged.sarif

diff --git a/.github/workflows/sarif-utils-release.yml b/.github/workflows/sarif-utils-release.yml
@@ -21,12 +21,12 @@ jobs:
         os: [ ubuntu-latest, windows-latest, macos-latest ]
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
         with:
           # release workflow should have access to all tags
           fetch-depth: 0
       - name: Set up JDK 17
-        uses: actions/setup-java@v4
+        uses: actions/setup-java@v5
         with:
           java-version: 17
           distribution: temurin