diff --git a/.github/workflows/bump-version.yml b/.github/workflows/bump-version.yml index daefc6fb..740bac03 100644 --- a/.github/workflows/bump-version.yml +++ b/.github/workflows/bump-version.yml @@ -58,7 +58,7 @@ jobs: files.pythonhosted.org:443 github.com:443 pypi.org:443 - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 with: persist-credentials: false - uses: actions/setup-python@v5.1.0 diff --git a/.github/workflows/cache-cleaner.yml b/.github/workflows/cache-cleaner.yml index 30da035c..f431fb01 100644 --- a/.github/workflows/cache-cleaner.yml +++ b/.github/workflows/cache-cleaner.yml @@ -25,7 +25,7 @@ jobs: github.com:443 objects.githubusercontent.com:443 - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - name: Cleanup run: | diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index d068c211..86fb8b3f 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -37,7 +37,7 @@ jobs: pypi.org:443 uploads.github.com:443 - name: Checkout repository - uses: actions/checkout@v4.1.3 + uses: actions/checkout@v4.1.5 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL uses: github/codeql-action/init@codeql-bundle-20230524 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 97bbc97e..376b58b6 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -26,7 +26,7 @@ jobs: github.com:443 - name: 'Checkout Repository' - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: 'Dependency Review' uses: actions/dependency-review-action@0659a74c94536054bfa5aeb92241f70d680cc78e diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 37a65426..8a269de1 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -40,7 +40,7 @@ jobs: files.pythonhosted.org:443 github.com:443 pypi.org:443 - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - uses: actions/setup-python@v5.1.0 with: python-version: "3.x" @@ -78,7 +78,7 @@ jobs: uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1 with: egress-policy: audit - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - name: Setup Conda (Micromamba) with Python ${{ matrix.python-version }} uses: mamba-org/setup-micromamba@v1.8.1 with: @@ -142,7 +142,7 @@ jobs: uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1 with: egress-policy: audit - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - name: Setup Conda (Micromamba) with Python ${{ matrix.python-version }} uses: mamba-org/setup-micromamba@v1.8.1 with: diff --git a/.github/workflows/publish-pypi.yml b/.github/workflows/publish-pypi.yml index 60faabf6..b4c8db74 100644 --- a/.github/workflows/publish-pypi.yml +++ b/.github/workflows/publish-pypi.yml @@ -27,7 +27,7 @@ jobs: github.com:443 pypi.org:443 upload.pypi.org:443 - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - name: Set up Python3 uses: actions/setup-python@v5.1.0 with: diff --git a/.github/workflows/remove-obsolete-cache.yml b/.github/workflows/remove-obsolete-cache.yml index 665f7cd4..0b65b393 100644 --- a/.github/workflows/remove-obsolete-cache.yml +++ b/.github/workflows/remove-obsolete-cache.yml @@ -24,7 +24,7 @@ jobs: objects.githubusercontent.com:443 - name: Check out code - uses: actions/checkout@v4.1.3 + uses: actions/checkout@v4.1.5 - name: Cleanup run: | diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 29b4c4aa..6964c9bf 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -44,7 +44,7 @@ jobs: tuf-repo-cdn.sigstore.dev:443 www.bestpractices.dev:443 - - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b with: persist-credentials: false diff --git a/.github/workflows/tag-testpypi.yml b/.github/workflows/tag-testpypi.yml index b14d7557..68f5bb37 100644 --- a/.github/workflows/tag-testpypi.yml +++ b/.github/workflows/tag-testpypi.yml @@ -21,7 +21,7 @@ jobs: with: egress-policy: audit - name: Checkout code - uses: actions/checkout@v4.1.3 + uses: actions/checkout@v4.1.5 - name: Create Release uses: softprops/action-gh-release@v2 env: @@ -51,7 +51,7 @@ jobs: github.com:443 pypi.org:443 test.pypi.org:443 - - uses: actions/checkout@v4.1.3 + - uses: actions/checkout@v4.1.5 - name: Set up Python3 uses: actions/setup-python@v5.1.0 with: diff --git a/.github/workflows/upstream.yml b/.github/workflows/upstream.yml index 3bc5eaae..a2e0a102 100644 --- a/.github/workflows/upstream.yml +++ b/.github/workflows/upstream.yml @@ -46,7 +46,7 @@ jobs: uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1 with: egress-policy: audit - - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: fetch-depth: 0 # Fetch all history for all branches and tags. - name: Setup Conda (Micromamba) with Python${{ matrix.python-version }}