From d6de3d8d209a014f989e9be2451bd6123fb6c0b7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Jun 2026 22:34:23 +0000 Subject: [PATCH] Bump actions/checkout from 6.0.3 to 7.0.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v6.0.3...v7.0.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/clean-up-storage.yaml | 4 ++-- .github/workflows/deployment.yaml | 2 +- .github/workflows/docker.yaml | 2 +- .github/workflows/golang.yaml | 10 +++++----- .github/workflows/js.yaml | 8 ++++---- .github/workflows/license.yaml | 2 +- .github/workflows/markdown.yaml | 6 +++--- .github/workflows/new-release.yaml | 2 +- .github/workflows/python.yaml | 8 ++++---- .github/workflows/release-notes.yaml | 8 ++++---- 10 files changed, 26 insertions(+), 26 deletions(-) diff --git a/.github/workflows/clean-up-storage.yaml b/.github/workflows/clean-up-storage.yaml index 760d4ad0..612912e2 100644 --- a/.github/workflows/clean-up-storage.yaml +++ b/.github/workflows/clean-up-storage.yaml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 - name: Cleanup run: | @@ -50,7 +50,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 - name: Cleanup run: | diff --git a/.github/workflows/deployment.yaml b/.github/workflows/deployment.yaml index c4f28079..340a79c3 100644 --- a/.github/workflows/deployment.yaml +++ b/.github/workflows/deployment.yaml @@ -111,7 +111,7 @@ jobs: run: | echo "IMAGE_TAG=pr-${{steps.search-pr.outputs.pr}}" >> $GITHUB_ENV - name: Checkout of k8s-deployments - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} repository: ${{ github.repository_owner }}/${{ needs.split-environment.outputs.is-corporate == 'true' && 'corporate-apps' || 'k8s-deployments' }} diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml index 2c59a12e..85195a07 100644 --- a/.github/workflows/docker.yaml +++ b/.github/workflows/docker.yaml @@ -96,7 +96,7 @@ jobs: repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: read - name: Checkout - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} - name: Run pre-build diff --git a/.github/workflows/golang.yaml b/.github/workflows/golang.yaml index da6f4407..0040d35d 100644 --- a/.github/workflows/golang.yaml +++ b/.github/workflows/golang.yaml @@ -69,7 +69,7 @@ jobs: outputs: files_changed: ${{ steps.filter.outputs.go == 'true' || steps.filter.outputs.scripts == 'true' }} steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: fetch-depth: 2 # To retrieve the preceding commit. - uses: dorny/paths-filter@v4 @@ -104,7 +104,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: ref: ${{github.event.pull_request.head.ref}} # Can't commit on detached PR merge commit, so this checkouts the branch token: ${{ steps.generate-token.outputs.token }} @@ -142,7 +142,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: read - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - name: Configure AWS Credentials @@ -209,7 +209,7 @@ jobs: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 - run: git config --global url.https://x-access-token:${{ steps.generate-token.outputs.token }}@github.com/.insteadOf https://github.com/ - uses: actions/setup-go@v6 with: @@ -262,7 +262,7 @@ jobs: if: ${{ inputs.vulnerability-scan}} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 - name: Run Trivy vulnerability scanner (for summary) # trivy-action v0.35.0 (safe version) uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 diff --git a/.github/workflows/js.yaml b/.github/workflows/js.yaml index 75384983..2b835374 100644 --- a/.github/workflows/js.yaml +++ b/.github/workflows/js.yaml @@ -55,7 +55,7 @@ jobs: outputs: files_changed: ${{ steps.filter.outputs.js == 'true' || steps.filter.outputs.scripts == 'true' }} steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: fetch-depth: 2 # To retrieve the preceding commit. - uses: dorny/paths-filter@v4 @@ -89,7 +89,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: ref: ${{github.event.pull_request.head.ref}} # Can't commit on detached PR merge commit, so this checkouts the branch token: ${{ steps.generate-token.outputs.token }} @@ -125,7 +125,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: read - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - name: Configure AWS Credentials @@ -190,7 +190,7 @@ jobs: if: ${{ inputs.vulnerability-scan}} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 - name: Run Trivy vulnerability scanner (for summary) # trivy-action v0.36.0 (safe version) uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 diff --git a/.github/workflows/license.yaml b/.github/workflows/license.yaml index 54a8f8e2..f2cbd763 100644 --- a/.github/workflows/license.yaml +++ b/.github/workflows/license.yaml @@ -58,7 +58,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} ref: ${{github.event.pull_request.head.ref}} diff --git a/.github/workflows/markdown.yaml b/.github/workflows/markdown.yaml index c37c5afa..edd02cb2 100644 --- a/.github/workflows/markdown.yaml +++ b/.github/workflows/markdown.yaml @@ -58,7 +58,7 @@ jobs: markdown_files: ${{ steps.filter.outputs.markdown_files }} github_actions_files_changed: ${{ steps.filter.outputs.github-actions == 'true' }} steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: fetch-depth: 2 # To retrieve the preceding commit. - uses: dorny/paths-filter@v4 @@ -90,7 +90,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} permission-contents: write permission-workflows: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} ref: ${{github.event.pull_request.head.ref}} @@ -126,7 +126,7 @@ jobs: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_SECRET }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} ref: ${{github.event.pull_request.head.ref}} diff --git a/.github/workflows/new-release.yaml b/.github/workflows/new-release.yaml index 5de1dc36..3a6c968b 100644 --- a/.github/workflows/new-release.yaml +++ b/.github/workflows/new-release.yaml @@ -38,7 +38,7 @@ jobs: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_SECRET }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: ref: ${{ github.head_ref }} token: ${{ steps.generate-token.outputs.token }} diff --git a/.github/workflows/python.yaml b/.github/workflows/python.yaml index 272a05d1..ddfb24d2 100644 --- a/.github/workflows/python.yaml +++ b/.github/workflows/python.yaml @@ -69,7 +69,7 @@ jobs: outputs: files_changed: ${{ steps.filter.outputs.python == 'true' }} steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 - uses: dorny/paths-filter@v4 id: filter with: @@ -95,7 +95,7 @@ jobs: private-key: ${{ secrets.APP_SECRET }} repositories: ${{ github.event.repository.name }}${{ inputs.repositories && format(',{0}', inputs.repositories) || '' }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} ref: ${{github.event.pull_request.head.ref}} @@ -148,7 +148,7 @@ jobs: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 with: token: ${{ steps.generate-token.outputs.token }} fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis @@ -215,7 +215,7 @@ jobs: if: ${{ inputs.vulnerability-scan}} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 - name: Run Trivy vulnerability scanner (for summary) # trivy-action v0.35.0 (safe version) uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 diff --git a/.github/workflows/release-notes.yaml b/.github/workflows/release-notes.yaml index 89ea9f10..feaf5f79 100644 --- a/.github/workflows/release-notes.yaml +++ b/.github/workflows/release-notes.yaml @@ -85,14 +85,14 @@ jobs: app-id: ${{ secrets.APP_ID }} private-key: ${{ secrets.APP_SECRET }} permission-contents: write - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 if: ${{ startsWith(github.ref, 'refs/tags/') == false }} with: ref: ${{ github.event.pull_request.head.ref }} repository: ${{ github.event.pull_request.head.repo.full_name }} token: ${{ steps.generate-token.outputs.token }} fetch-depth: 0 - - uses: actions/checkout@v6.0.3 + - uses: actions/checkout@v7.0.0 if: ${{ startsWith(github.ref, 'refs/tags/') == true }} with: ref: ${{ github.ref }} @@ -263,7 +263,7 @@ jobs: pull-requests: read steps: - name: Checkout - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 with: fetch-depth: 0 - name: Select configuration @@ -306,7 +306,7 @@ jobs: contents: write steps: - name: Checkout - uses: actions/checkout@v6.0.3 + uses: actions/checkout@v7.0.0 with: fetch-depth: 0 - name: Generate SBOM