From 85566a218ef1f05737642165a447b7c8709e8695 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Nov 2025 18:23:17 +0000 Subject: [PATCH] ci(deps): bump the actions group across 1 directory with 5 updates Bumps the actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `5` | `6` | | [anchore/scan-action](https://github.com/anchore/scan-action) | `7.0.0` | `7.2.1` | | [sarisia/actions-status-discord](https://github.com/sarisia/actions-status-discord) | `1.15.4` | `1.15.5` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `5` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `7.0.8` | `7.0.9` | Updates `actions/checkout` from 5 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5...v6) Updates `anchore/scan-action` from 7.0.0 to 7.2.1 - [Release notes](https://github.com/anchore/scan-action/releases) - [Changelog](https://github.com/anchore/scan-action/blob/main/RELEASE.md) - [Commits](https://github.com/anchore/scan-action/compare/f6601287cdb1efc985d6b765bbf99cb4c0ac29d8...40a61b52209e9d50e87917c5b901783d546b12d0) Updates `sarisia/actions-status-discord` from 1.15.4 to 1.15.5 - [Release notes](https://github.com/sarisia/actions-status-discord/releases) - [Commits](https://github.com/sarisia/actions-status-discord/compare/11a0bfe3b50977e38aa2bd4a4ebd296415e83c19...b8381b25576cb341b2af39926ab42c5056cc44ed) Updates `actions/upload-artifact` from 4 to 5 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4...v5) Updates `peter-evans/create-pull-request` from 7.0.8 to 7.0.9 - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](https://github.com/peter-evans/create-pull-request/compare/271a8d0340265f705b14b6d32b9829c1cb33d45e...84ae59a2cdc2258d6fa0732dd66352dddae2a412) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: anchore/scan-action dependency-version: 7.2.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: sarisia/actions-status-discord dependency-version: 1.15.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: actions/upload-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: peter-evans/create-pull-request dependency-version: 7.0.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/build.yml | 6 +++--- .github/workflows/code-quality.yml | 2 +- .github/workflows/docker-validate.yml | 4 ++-- .github/workflows/e2e-test.yml | 6 +++--- .github/workflows/test.yml | 4 ++-- .github/workflows/update-dependencies.yml | 6 +++--- 6 files changed, 14 insertions(+), 14 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 9d3473a..b7c7ee7 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -65,7 +65,7 @@ jobs: echo "IMAGE_NAME=$(echo "${{ github.repository }}" | tr "[:upper:]" "[:lower:]")" >> "$GITHUB_ENV" - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: submodules: true @@ -78,7 +78,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: 🛡️ Anchore security scan - discogsography/${{ matrix.name }} - uses: anchore/scan-action@f6601287cdb1efc985d6b765bbf99cb4c0ac29d8 # v7.0.0 + uses: anchore/scan-action@40a61b52209e9d50e87917c5b901783d546b12d0 # v7.2.1 with: path: ${{ matrix.name }} @@ -161,7 +161,7 @@ jobs: fi - name: 📢 Send notification to Discord - uses: sarisia/actions-status-discord@11a0bfe3b50977e38aa2bd4a4ebd296415e83c19 # v1.15.4 + uses: sarisia/actions-status-discord@b8381b25576cb341b2af39926ab42c5056cc44ed # v1.15.5 if: always() with: title: discogsography/${{ matrix.name }} diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml index 3df0d83..98af93f 100644 --- a/.github/workflows/code-quality.yml +++ b/.github/workflows/code-quality.yml @@ -50,7 +50,7 @@ jobs: echo "IMAGE_NAME=$(echo "${{ github.repository }}" | tr "[:upper:]" "[:lower:]")" >> "$GITHUB_ENV" - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: 🔧 Setup Python and UV uses: ./.github/actions/setup-python-uv diff --git a/.github/workflows/docker-validate.yml b/.github/workflows/docker-validate.yml index e3dacab..862dca6 100644 --- a/.github/workflows/docker-validate.yml +++ b/.github/workflows/docker-validate.yml @@ -47,7 +47,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: 🔧 Set up Docker Buildx uses: docker/setup-buildx-action@v3 @@ -70,7 +70,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: 🔧 Install docker-compose uses: alexellis/arkade-get@1eef818e467c387d3f50cfe0d2c565d1cbe82b03 # master diff --git a/.github/workflows/e2e-test.yml b/.github/workflows/e2e-test.yml index c27d9b0..ee0260d 100644 --- a/.github/workflows/e2e-test.yml +++ b/.github/workflows/e2e-test.yml @@ -78,7 +78,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: 🔧 Setup Python and UV uses: ./.github/actions/setup-python-uv @@ -143,7 +143,7 @@ jobs: - name: 📤 Upload test results if: always() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: playwright-results-${{ matrix.os }}-${{ matrix.browser }}-${{ matrix.device || 'desktop' }} path: test-results/ @@ -153,7 +153,7 @@ jobs: - name: 🎥 Upload test videos if: failure() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: playwright-videos-${{ matrix.os }}-${{ matrix.browser }}-${{ matrix.device || 'desktop' }} path: test-results/**/*.webm diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 376acbc..c0b7cf1 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -42,7 +42,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: fetch-depth: 0 # Need full history for diff @@ -121,7 +121,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: 🔍 Check if Rust extractor exists id: check-rust diff --git a/.github/workflows/update-dependencies.yml b/.github/workflows/update-dependencies.yml index bb4f2ab..24ee4b7 100644 --- a/.github/workflows/update-dependencies.yml +++ b/.github/workflows/update-dependencies.yml @@ -33,7 +33,7 @@ jobs: steps: - name: 🔀 Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: fetch-depth: 0 token: ${{ secrets.GITHUB_TOKEN }} @@ -116,7 +116,7 @@ jobs: - name: 📝 Create Pull Request if: steps.update.outputs.no_changes != 'true' id: create-pr - uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v.7.0.8 + uses: peter-evans/create-pull-request@84ae59a2cdc2258d6fa0732dd66352dddae2a412 # v.7.0.9 with: token: ${{ secrets.GITHUB_TOKEN }} branch: automation/updates @@ -199,7 +199,7 @@ jobs: fi - name: 📢 Send notification to Discord - uses: sarisia/actions-status-discord@11a0bfe3b50977e38aa2bd4a4ebd296415e83c19 # v1.15.4 + uses: sarisia/actions-status-discord@b8381b25576cb341b2af39926ab42c5056cc44ed # v1.15.5 if: always() with: title: Weekly Dependency Update