From 0acc20ff86f76466d8f170d7468c373bd83e1a35 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Nov 2025 14:55:46 +0000
Subject: [PATCH] Bump the github-actions group across 1 directory with 5
 updates

Bumps the github-actions group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `5` | `6` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` |
| [Azure/setup-azd](https://github.com/azure/setup-azd) | `2.2.0` | `2.2.1` |
| [actions/setup-node](https://github.com/actions/setup-node) | `4` | `6` |
| [actions/setup-python](https://github.com/actions/setup-python) | `5` | `6` |



Updates `actions/checkout` from 5 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

Updates `github/codeql-action` from 3 to 4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v3...v4)

Updates `Azure/setup-azd` from 2.2.0 to 2.2.1
- [Release notes](https://github.com/azure/setup-azd/releases)
- [Changelog](https://github.com/Azure/setup-azd/blob/main/CHANGELOG.md)
- [Commits](https://github.com/azure/setup-azd/compare/v2.2.0...v2.2.1)

Updates `actions/setup-node` from 4 to 6
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v4...v6)

Updates `actions/setup-python` from 5 to 6
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: Azure/setup-azd
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/azure-dev-templates-ci.yaml | 6 +++---
 .github/workflows/azure-dev.yaml              | 6 +++---
 .github/workflows/devcontainer-ci.yaml        | 4 ++--
 .github/workflows/frontend-ci.yaml            | 4 ++--
 .github/workflows/python-lint-format.yaml     | 4 ++--
 .github/workflows/python-static-analysis.yaml | 4 ++--
 .github/workflows/python-unit-test.yaml       | 6 +++---
 7 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/.github/workflows/azure-dev-templates-ci.yaml b/.github/workflows/azure-dev-templates-ci.yaml
index 4884b4b..e366120 100644
--- a/.github/workflows/azure-dev-templates-ci.yaml
+++ b/.github/workflows/azure-dev-templates-ci.yaml
@@ -17,7 +17,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Build Bicep for linting
         uses: azure/CLI@v2
@@ -32,7 +32,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Run PSRule analysis
         uses: microsoft/ps-rule@v2.9.0
@@ -50,7 +50,7 @@ jobs:
           PSRULE_CONFIGURATION_AZURE_BICEP_FILE_EXPANSION_TIMEOUT: '30'
 
       - name: Upload results to security tab
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         if: github.repository == 'Azure-Samples/Cosmic-Food-RAG-app'
         with:
           sarif_file: reports/ps-rule-results.sarif
diff --git a/.github/workflows/azure-dev.yaml b/.github/workflows/azure-dev.yaml
index 6525051..2b2b87c 100644
--- a/.github/workflows/azure-dev.yaml
+++ b/.github/workflows/azure-dev.yaml
@@ -30,13 +30,13 @@ jobs:
       AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Install azd
-        uses: Azure/setup-azd@v2.2.0
+        uses: Azure/setup-azd@v2.2.1
 
       - name: Install Nodejs
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: 22.x
 
diff --git a/.github/workflows/devcontainer-ci.yaml b/.github/workflows/devcontainer-ci.yaml
index 76ac5a8..b18aa7a 100644
--- a/.github/workflows/devcontainer-ci.yaml
+++ b/.github/workflows/devcontainer-ci.yaml
@@ -20,9 +20,9 @@ jobs:
   build:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
       - name: Use Node.js 22.x
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: 22.x
       - run: npm install -g @devcontainers/cli
diff --git a/.github/workflows/frontend-ci.yaml b/.github/workflows/frontend-ci.yaml
index 258ef67..3359ac4 100644
--- a/.github/workflows/frontend-ci.yaml
+++ b/.github/workflows/frontend-ci.yaml
@@ -18,9 +18,9 @@ jobs:
   frontend-ci:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
       - name: Use Node.js 22.x
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: 22.x
       - name: Install dependencies
diff --git a/.github/workflows/python-lint-format.yaml b/.github/workflows/python-lint-format.yaml
index 1b0f540..bba515f 100644
--- a/.github/workflows/python-lint-format.yaml
+++ b/.github/workflows/python-lint-format.yaml
@@ -20,8 +20,8 @@ jobs:
     check-format-lint:
         runs-on: ubuntu-latest
         steps:
-        - uses: actions/checkout@v5
-        - uses: actions/setup-python@v5
+        - uses: actions/checkout@v6
+        - uses: actions/setup-python@v6
           with:
                 python-version: 3.12
                 cache: 'pip'
diff --git a/.github/workflows/python-static-analysis.yaml b/.github/workflows/python-static-analysis.yaml
index 2d37dbc..b567fff 100644
--- a/.github/workflows/python-static-analysis.yaml
+++ b/.github/workflows/python-static-analysis.yaml
@@ -20,8 +20,8 @@ jobs:
     check-static-analysis:
         runs-on: ubuntu-latest
         steps:
-        - uses: actions/checkout@v5
-        - uses: actions/setup-python@v5
+        - uses: actions/checkout@v6
+        - uses: actions/setup-python@v6
           with:
                 python-version: 3.12
                 cache: 'pip'
diff --git a/.github/workflows/python-unit-test.yaml b/.github/workflows/python-unit-test.yaml
index 1f922e4..f753852 100644
--- a/.github/workflows/python-unit-test.yaml
+++ b/.github/workflows/python-unit-test.yaml
@@ -33,14 +33,14 @@ jobs:
         os: ["ubuntu-latest"]
         python_version: ["3.10", "3.11", "3.12"]
     steps:
-        - uses: actions/checkout@v5
+        - uses: actions/checkout@v6
         - name: Setup python
-          uses: actions/setup-python@v5
+          uses: actions/setup-python@v6
           with:
             python-version: ${{ matrix.python_version }}
             architecture: x64
         - name: Setup node
-          uses: actions/setup-node@v4
+          uses: actions/setup-node@v6
           with:
             node-version: 22
         - name: Build frontend