From bf4bf9e0ae163e5a942fd10bbb8da52a11c3f7c2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:59:00 -0400 Subject: [PATCH] chore(deps): bump the github-actions group with 6 updates (#1096) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/benchmark-base.yml | 4 ++-- .github/workflows/benchmark-pr-1p.yml | 4 ++-- .github/workflows/ci.yml | 4 ++-- .github/workflows/codegen.yml | 4 ++-- .github/workflows/release-pypi.yml | 12 ++++++------ .github/workflows/site.yml | 4 ++-- .github/workflows/test-output.yml | 2 +- .github/workflows/zizmor.yml | 2 +- 8 files changed, 18 insertions(+), 18 deletions(-) diff --git a/.github/workflows/benchmark-base.yml b/.github/workflows/benchmark-base.yml index 6eb446b8..63bd34fa 100644 --- a/.github/workflows/benchmark-base.yml +++ b/.github/workflows/benchmark-base.yml @@ -28,7 +28,7 @@ jobs: persist-credentials: false - name: Set up Bencher - uses: bencherdev/bencher@f89d454e74a32a81b2eab29fe0afdb2316617342 # v0.5.3 + uses: bencherdev/bencher@e0bb2f0dcd5ae8446994d15536c902b289eeda17 # v0.5.4 - name: Installer hyperfine run: | @@ -37,7 +37,7 @@ jobs: - uses: Swatinem/rust-cache@98c8021b550208e191a6a3145459bfc9fb29c4c0 # v2.8.0 - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 # TODO: use actions/cache to cache the plan phase here. - name: Run benchmarks diff --git a/.github/workflows/benchmark-pr-1p.yml b/.github/workflows/benchmark-pr-1p.yml index 77303412..927a92a4 100644 --- a/.github/workflows/benchmark-pr-1p.yml +++ b/.github/workflows/benchmark-pr-1p.yml @@ -39,7 +39,7 @@ jobs: persist-credentials: false - name: Set up Bencher - uses: bencherdev/bencher@f89d454e74a32a81b2eab29fe0afdb2316617342 # v0.5.3 + uses: bencherdev/bencher@e0bb2f0dcd5ae8446994d15536c902b289eeda17 # v0.5.4 - name: Installer hyperfine run: | @@ -48,7 +48,7 @@ jobs: - uses: Swatinem/rust-cache@98c8021b550208e191a6a3145459bfc9fb29c4c0 # v2.8.0 - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 # TODO: use actions/cache to cache the plan phase here. - name: Run benchmarks diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index ca7dd8c8..b0dd2702 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -35,7 +35,7 @@ jobs: - uses: Swatinem/rust-cache@98c8021b550208e191a6a3145459bfc9fb29c4c0 # v2.8.0 - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 - name: Test dependencies run: | @@ -62,7 +62,7 @@ jobs: with: persist-credentials: false - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 - name: Test site run: make site diff --git a/.github/workflows/codegen.yml b/.github/workflows/codegen.yml index 10d2285d..71603db3 100644 --- a/.github/workflows/codegen.yml +++ b/.github/workflows/codegen.yml @@ -62,7 +62,7 @@ jobs: with: persist-credentials: false - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 - name: try to refresh context capabilities run: | @@ -100,7 +100,7 @@ jobs: with: persist-credentials: false - - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + - uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 - name: try to refresh CodeQL injection sinks run: | diff --git a/.github/workflows/release-pypi.yml b/.github/workflows/release-pypi.yml index 41c3b50a..a7f7dad4 100644 --- a/.github/workflows/release-pypi.yml +++ b/.github/workflows/release-pypi.yml @@ -41,7 +41,7 @@ jobs: with: persist-credentials: false - name: Build wheels - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: target: ${{ matrix.platform.target }} args: --release --out dist --manifest-path crates/zizmor/Cargo.toml @@ -71,7 +71,7 @@ jobs: with: persist-credentials: false - name: Build wheels - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: target: ${{ matrix.platform.target }} args: --release --out dist --manifest-path crates/zizmor/Cargo.toml @@ -97,7 +97,7 @@ jobs: with: persist-credentials: false - name: Build wheels - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: target: ${{ matrix.platform.target }} args: --release --out dist --manifest-path crates/zizmor/Cargo.toml @@ -122,7 +122,7 @@ jobs: with: persist-credentials: false - name: Build wheels - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: target: ${{ matrix.platform.target }} args: --release --out dist --manifest-path crates/zizmor/Cargo.toml @@ -140,7 +140,7 @@ jobs: with: persist-credentials: false - name: Build sdist - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: command: sdist args: --out dist --manifest-path crates/zizmor/Cargo.toml @@ -173,7 +173,7 @@ jobs: subject-path: 'wheels-*/*' - name: Publish to PyPI if: ${{ startsWith(github.ref, 'refs/tags/') }} - uses: PyO3/maturin-action@e10f6c464b90acceb5f640d31beda6d586ba7b4a # v1.49.3 + uses: PyO3/maturin-action@86b9d133d34bc1b40018696f782949dac11bd380 # v1.49.4 with: command: upload args: --non-interactive --skip-existing wheels-*/* diff --git a/.github/workflows/site.yml b/.github/workflows/site.yml index 8f70ea5d..4d7dfd4c 100644 --- a/.github/workflows/site.yml +++ b/.github/workflows/site.yml @@ -31,7 +31,7 @@ jobs: persist-credentials: false - name: Install the latest version of uv - uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 + uses: astral-sh/setup-uv@d9e0f98d3fc6adb07d1e3d37f3043649ddad06a1 # v6.5.0 - name: build site run: make site @@ -41,7 +41,7 @@ jobs: uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.0.0 - name: Upload artifact - uses: actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3.0.1 + uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v4.0.0 with: path: site_html diff --git a/.github/workflows/test-output.yml b/.github/workflows/test-output.yml index 68a36e1d..5b99686a 100644 --- a/.github/workflows/test-output.yml +++ b/.github/workflows/test-output.yml @@ -30,7 +30,7 @@ jobs: cargo run -- --format sarif . > results.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@76621b61decf072c1cee8dd1ce2d2a82d33c17ed # v3.29.8 + uses: github/codeql-action/upload-sarif@96f518a34f7a870018057716cc4d7a5c014bd61c # v3.29.10 with: sarif_file: results.sarif category: zizmor-test-sarif-presentation diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 698fb516..71aee40d 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -21,7 +21,7 @@ jobs: persist-credentials: false - name: Run zizmor 🌈 - uses: zizmorcore/zizmor-action@f52a838cfabf134edcbaa7c8b3677dde20045018 # v0.1.1 + uses: zizmorcore/zizmor-action@5ca5fc7a4779c5263a3ffa0e1f693009994446d1 # v0.1.2 with: # intentionally not scanning the entire repository, # since it contains integration tests.