diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml index 781ebfa3..c53c01ae 100644 --- a/.github/workflows/audit.yaml +++ b/.github/workflows/audit.yaml @@ -17,12 +17,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false - name: Install Ruby toolchain - uses: ruby/setup-ruby@2a7b30092b0caf9c046252510f9273b4875f3db9 # v1.254.0 + uses: ruby/setup-ruby@ab177d40ee5483edb974554986f56b33477e21d0 # v1.265.0 with: ruby-version: ".ruby-version" bundler-cache: true @@ -44,7 +44,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -57,7 +57,7 @@ jobs: cargo generate-lockfile --verbose fi - - uses: EmbarkStudios/cargo-deny-action@30f817c6f72275c6d54dc744fbca09ebc958599f # v2.0.12 + - uses: EmbarkStudios/cargo-deny-action@f2ba7abc2abebaf185c833c3961145a3c275caad # v2.0.13 with: arguments: --locked --all-features command: check ${{ matrix.checks }} @@ -70,11 +70,11 @@ jobs: security-events: write steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + uses: actions/checkout@ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493 # v4.2.2 with: persist-credentials: false - name: Run zizmor 🌈 - uses: zizmorcore/zizmor-action@f52a838cfabf134edcbaa7c8b3677dde20045018 # v0.1.1 + uses: zizmorcore/zizmor-action@e673c3917a1aef3c65c972347ed84ccd013ecda4 # v0.2.0 with: persona: "pedantic" diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index 81d3ec59..be047e65 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -23,7 +23,7 @@ jobs: RUST_BACKTRACE: 1 steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -55,7 +55,7 @@ jobs: RUST_BACKTRACE: 1 steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -87,7 +87,7 @@ jobs: RUST_BACKTRACE: 1 steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -110,7 +110,7 @@ jobs: RUST_BACKTRACE: 1 steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -130,12 +130,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false - name: Install Ruby toolchain - uses: ruby/setup-ruby@2a7b30092b0caf9c046252510f9273b4875f3db9 # v1.254.0 + uses: ruby/setup-ruby@ab177d40ee5483edb974554986f56b33477e21d0 # v1.265.0 with: ruby-version: ".ruby-version" bundler-cache: true @@ -148,12 +148,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false - name: Setup Node.js runtime - uses: actions/setup-node@v4.4.0 + uses: actions/setup-node@v5.0.0 with: node-version: "lts/*" diff --git a/.github/workflows/code-coverage.yaml b/.github/workflows/code-coverage.yaml index 51261500..c0093935 100644 --- a/.github/workflows/code-coverage.yaml +++ b/.github/workflows/code-coverage.yaml @@ -20,7 +20,7 @@ jobs: CARGO_REGISTRIES_CRATES_IO_PROTOCOL: sparse steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -63,7 +63,7 @@ jobs: run: grcov boba*.profraw --source-dir . --keep-only 'src/**/*.rs' --binary-path target/debug -t covdir --filter covered -o target/coverage/coverage.json - name: Configure AWS Credentials - uses: aws-actions/configure-aws-credentials@b47578312673ae6fa5b5096b330d9fbac3d116df # v4.2.1 + uses: aws-actions/configure-aws-credentials@00943011d9042930efac3dcd3a170e4273319bc8 # v5.1.0 if: github.ref == 'refs/heads/trunk' with: aws-region: us-west-2 diff --git a/.github/workflows/fuzz.yaml b/.github/workflows/fuzz.yaml index 26df9737..d671cf79 100644 --- a/.github/workflows/fuzz.yaml +++ b/.github/workflows/fuzz.yaml @@ -13,7 +13,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -36,7 +36,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false @@ -59,7 +59,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false diff --git a/.github/workflows/repo-labels.yaml b/.github/workflows/repo-labels.yaml index 1eff4ea1..e8c33e4d 100644 --- a/.github/workflows/repo-labels.yaml +++ b/.github/workflows/repo-labels.yaml @@ -24,7 +24,7 @@ jobs: contents: read issues: write steps: - - uses: actions/checkout@v4.2.2 + - uses: actions/checkout@v5.0.0 with: persist-credentials: false diff --git a/.github/workflows/rustdoc.yaml b/.github/workflows/rustdoc.yaml index 9086aced..73984f36 100644 --- a/.github/workflows/rustdoc.yaml +++ b/.github/workflows/rustdoc.yaml @@ -26,7 +26,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 with: persist-credentials: false