From a85b38621286903b9124fdb05d177983d8273ec7 Mon Sep 17 00:00:00 2001 From: bashonly <88596187+bashonly@users.noreply.github.com> Date: Fri, 15 May 2026 19:24:12 -0500 Subject: [PATCH] [ci] Update 8 actions in 7 workflows (#16384) * Bump actions/cache v5.0.3 => v5.0.5 * Bump actions/setup-node v6.3.0 => v6.4.0 * Bump actions/upload-artifact v7.0.0 => v7.0.1 * Bump denoland/setup-deno v2.0.3 => v2.0.4 * Bump github/codeql-action v4.33.0 => v4.35.2 * Bump pypa/gh-action-pypi-publish v1.13.0 => v1.14.0 * Bump rhysd/actionlint 1.7.11 => 1.7.12 * Bump zizmorcore/zizmor-action v0.5.2 => v0.5.3 Authored by: bashonly --- .github/workflows/build.yml | 10 +++++----- .github/workflows/challenge-tests.yml | 4 ++-- .github/workflows/codeql.yml | 4 ++-- .github/workflows/release-master.yml | 2 +- .github/workflows/release-nightly.yml | 4 ++-- .github/workflows/release.yml | 4 ++-- .github/workflows/test-workflows.yml | 6 +++--- 7 files changed, 17 insertions(+), 17 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index b02c7280aa..2f76e0494d 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -231,7 +231,7 @@ jobs: [[ "${version}" != "${downgraded_version}" ]] - name: Upload artifacts - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-bin-${{ github.job }} path: | @@ -293,7 +293,7 @@ jobs: docker compose up --build --exit-code-from "${SERVICE}" "${SERVICE}" - name: Upload artifacts - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-bin-${{ matrix.os }}_${{ matrix.arch }} path: | @@ -378,7 +378,7 @@ jobs: [[ "$version" != "$downgraded_version" ]] - name: Upload artifacts - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-bin-${{ github.job }} path: | @@ -500,7 +500,7 @@ jobs: } - name: Upload artifacts - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-bin-${{ github.job }}-${{ matrix.arch }} path: | @@ -590,7 +590,7 @@ jobs: done - name: Upload artifacts - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-${{ github.job }} path: | diff --git a/.github/workflows/challenge-tests.yml b/.github/workflows/challenge-tests.yml index 1ceba11380..b58b82cb32 100644 --- a/.github/workflows/challenge-tests.yml +++ b/.github/workflows/challenge-tests.yml @@ -48,7 +48,7 @@ jobs: with: python-version: ${{ matrix.python-version }} - name: Install Deno - uses: denoland/setup-deno@e95548e56dfa95d4e1a28d6f422fafe75c4c26fb # v2.0.3 + uses: denoland/setup-deno@667a34cdef165d8d2b2e98dde39547c9daac7282 # v2.0.4 with: deno-version: '2.0.0' # minimum supported version - name: Install Bun @@ -58,7 +58,7 @@ jobs: bun-version: ${{ (matrix.os == 'windows-latest' && '1.1.0') || '1.0.31' }} no-cache: true - name: Install Node - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: '20.0' # minimum supported version - name: Install QuickJS (Linux) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 44b1623a15..7a048015d8 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -36,12 +36,12 @@ jobs: persist-credentials: false - name: Initialize CodeQL - uses: github/codeql-action/init@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4.33.0 + uses: github/codeql-action/init@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2 with: languages: ${{ matrix.language }} build-mode: none - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@b1bff81932f5cdfc8695c7752dcee935dcd061c8 # v4.33.0 + uses: github/codeql-action/analyze@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/release-master.yml b/.github/workflows/release-master.yml index 6e7fa43ede..eb75a72159 100644 --- a/.github/workflows/release-master.yml +++ b/.github/workflows/release-master.yml @@ -47,6 +47,6 @@ jobs: path: dist name: build-pypi - name: Publish to PyPI - uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0 + uses: pypa/gh-action-pypi-publish@cef221092ed1bacb1cc03d23a2d87d1d172e277b # v1.14.0 with: verbose: true diff --git a/.github/workflows/release-nightly.yml b/.github/workflows/release-nightly.yml index 14ac9bfc53..a91e3a43bc 100644 --- a/.github/workflows/release-nightly.yml +++ b/.github/workflows/release-nightly.yml @@ -27,7 +27,7 @@ jobs: run: echo "head=$(git rev-parse HEAD)" | tee -a "${GITHUB_OUTPUT}" - name: Cache nightly commit hash - uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 + uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5 env: SEGMENT_DOWNLOAD_TIMEOUT_MINS: 1 with: @@ -100,6 +100,6 @@ jobs: name: build-pypi - name: Publish to PyPI - uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0 + uses: pypa/gh-action-pypi-publish@cef221092ed1bacb1cc03d23a2d87d1d172e277b # v1.14.0 with: verbose: true diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3c92dac3ca..84082cc032 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -215,7 +215,7 @@ jobs: - name: Upload artifacts if: github.event.workflow != '.github/workflows/release.yml' # Reusable workflow_call - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: build-pypi path: | @@ -224,7 +224,7 @@ jobs: - name: Publish to PyPI if: github.event.workflow == '.github/workflows/release.yml' # Direct workflow_dispatch - uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0 + uses: pypa/gh-action-pypi-publish@cef221092ed1bacb1cc03d23a2d87d1d172e277b # v1.14.0 with: verbose: true diff --git a/.github/workflows/test-workflows.yml b/.github/workflows/test-workflows.yml index 28832a3abe..248b5a16c0 100644 --- a/.github/workflows/test-workflows.yml +++ b/.github/workflows/test-workflows.yml @@ -13,8 +13,8 @@ concurrency: cancel-in-progress: ${{ github.event_name == 'pull_request' }} env: - ACTIONLINT_VERSION: "1.7.11" - ACTIONLINT_SHA256SUM: 900919a84f2229bac68ca9cd4103ea297abc35e9689ebb842c6e34a3d1b01b0a + ACTIONLINT_VERSION: "1.7.12" + ACTIONLINT_SHA256SUM: 8aca8db96f1b94770f1b0d72b6dddcb1ebb8123cb3712530b08cc387b349a3d8 ACTIONLINT_REPO: rhysd/actionlint GH_TELEMETRY: "false" @@ -83,7 +83,7 @@ jobs: persist-credentials: false - name: Run zizmor - uses: zizmorcore/zizmor-action@71321a20a9ded102f6e9ce5718a2fcec2c4f70d8 # v0.5.2 + uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3 with: advanced-security: false persona: pedantic