diff --git a/.github/workflows/bump-version.yml b/.github/workflows/bump-version.yml index 91d303d8..a82e966e 100644 --- a/.github/workflows/bump-version.yml +++ b/.github/workflows/bump-version.yml @@ -58,7 +58,7 @@ jobs: files.pythonhosted.org:443 github.com:443 pypi.org:443 - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 with: persist-credentials: false - uses: actions/setup-python@v5.1.0 diff --git a/.github/workflows/cache-cleaner.yml b/.github/workflows/cache-cleaner.yml index 0bab6cd0..d5d6a449 100644 --- a/.github/workflows/cache-cleaner.yml +++ b/.github/workflows/cache-cleaner.yml @@ -25,7 +25,7 @@ jobs: github.com:443 objects.githubusercontent.com:443 - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - name: Cleanup run: | diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index dab3722e..30096c35 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -37,7 +37,7 @@ jobs: pypi.org:443 uploads.github.com:443 - name: Checkout repository - uses: actions/checkout@v4.1.1 + uses: actions/checkout@v4.1.3 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL uses: github/codeql-action/init@codeql-bundle-20230524 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 6ae29f6c..5ebdd7f0 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -26,7 +26,7 @@ jobs: github.com:443 - name: 'Checkout Repository' - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 - name: 'Dependency Review' uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index b1d652c6..8fbcc83c 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -40,7 +40,7 @@ jobs: files.pythonhosted.org:443 github.com:443 pypi.org:443 - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - uses: actions/setup-python@v5.1.0 with: python-version: "3.x" @@ -78,7 +78,7 @@ jobs: uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 with: egress-policy: audit - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - name: Setup Conda (Micromamba) with Python ${{ matrix.python-version }} uses: mamba-org/setup-micromamba@v1.8.1 with: @@ -142,7 +142,7 @@ jobs: uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 with: egress-policy: audit - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - name: Setup Conda (Micromamba) with Python ${{ matrix.python-version }} uses: mamba-org/setup-micromamba@v1.8.1 with: diff --git a/.github/workflows/publish-pypi.yml b/.github/workflows/publish-pypi.yml index 53188200..74abc3fb 100644 --- a/.github/workflows/publish-pypi.yml +++ b/.github/workflows/publish-pypi.yml @@ -27,7 +27,7 @@ jobs: github.com:443 pypi.org:443 upload.pypi.org:443 - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - name: Set up Python3 uses: actions/setup-python@v5.1.0 with: diff --git a/.github/workflows/remove-obsolete-cache.yml b/.github/workflows/remove-obsolete-cache.yml index c7a3dee2..d3cc793d 100644 --- a/.github/workflows/remove-obsolete-cache.yml +++ b/.github/workflows/remove-obsolete-cache.yml @@ -24,7 +24,7 @@ jobs: objects.githubusercontent.com:443 - name: Check out code - uses: actions/checkout@v4.1.1 + uses: actions/checkout@v4.1.3 - name: Cleanup run: | diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 698581b9..a9a8ba81 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -44,7 +44,7 @@ jobs: tuf-repo-cdn.sigstore.dev:443 www.bestpractices.dev:443 - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f with: persist-credentials: false diff --git a/.github/workflows/tag-testpypi.yml b/.github/workflows/tag-testpypi.yml index 20543b1f..62820c5d 100644 --- a/.github/workflows/tag-testpypi.yml +++ b/.github/workflows/tag-testpypi.yml @@ -21,7 +21,7 @@ jobs: with: egress-policy: audit - name: Checkout code - uses: actions/checkout@v4.1.1 + uses: actions/checkout@v4.1.3 - name: Create Release uses: softprops/action-gh-release@v2 env: @@ -51,7 +51,7 @@ jobs: github.com:443 pypi.org:443 test.pypi.org:443 - - uses: actions/checkout@v4.1.1 + - uses: actions/checkout@v4.1.3 - name: Set up Python3 uses: actions/setup-python@v5.1.0 with: diff --git a/.github/workflows/upstream.yml b/.github/workflows/upstream.yml index 5a5da285..07d8ab23 100644 --- a/.github/workflows/upstream.yml +++ b/.github/workflows/upstream.yml @@ -46,7 +46,7 @@ jobs: uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 with: egress-policy: audit - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 with: fetch-depth: 0 # Fetch all history for all branches and tags. - name: Setup Conda (Micromamba) with Python${{ matrix.python-version }}