From fd9cdf933f1192d3cc1fd5f67b19f23b7601d0a4 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 29 May 2026 13:02:11 +0000 Subject: [PATCH] chore(deps): update github actions Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/add-workspace-label.yml | 4 ++-- .github/workflows/automate-staleness.yml | 2 +- .github/workflows/automate_changeset_feedback.yml | 2 +- .github/workflows/automate_renovate_changesets.yml | 2 +- .github/workflows/ci.yml | 2 +- .github/workflows/coverage-baseline.yml | 2 +- .github/workflows/detect-new-workspace.yml | 4 ++-- .github/workflows/new-workspace-pr-comment.yml | 2 +- .github/workflows/toml-checks.yaml | 2 +- .github/workflows/upgrade-dashboard.yml | 2 +- .github/workflows/validate-codeowners.yml | 2 +- 11 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/add-workspace-label.yml b/.github/workflows/add-workspace-label.yml index 1b1badb09e..4fef6a1466 100644 --- a/.github/workflows/add-workspace-label.yml +++ b/.github/workflows/add-workspace-label.yml @@ -20,7 +20,7 @@ jobs: contents: read steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit @@ -38,7 +38,7 @@ jobs: contents: read steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/automate-staleness.yml b/.github/workflows/automate-staleness.yml index 3fcf1d71c6..c854d84f3f 100644 --- a/.github/workflows/automate-staleness.yml +++ b/.github/workflows/automate-staleness.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/automate_changeset_feedback.yml b/.github/workflows/automate_changeset_feedback.yml index a0d2699ab3..5dbd234908 100644 --- a/.github/workflows/automate_changeset_feedback.yml +++ b/.github/workflows/automate_changeset_feedback.yml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/automate_renovate_changesets.yml b/.github/workflows/automate_renovate_changesets.yml index a74244939c..54d6e1c197 100644 --- a/.github/workflows/automate_renovate_changesets.yml +++ b/.github/workflows/automate_renovate_changesets.yml @@ -13,7 +13,7 @@ jobs: github.event.pull_request.head.repo.full_name == github.repository steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 7af60ae62e..2b630610b6 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -138,7 +138,7 @@ jobs: - name: Upload coverage to Codecov if: ${{ !cancelled() && steps.tests.outcome != 'skipped' }} - uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2 # v6.0.0 + uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 with: flags: ${{ matrix.workspace }} token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/coverage-baseline.yml b/.github/workflows/coverage-baseline.yml index 25999d31d8..5dcdc32188 100644 --- a/.github/workflows/coverage-baseline.yml +++ b/.github/workflows/coverage-baseline.yml @@ -90,7 +90,7 @@ jobs: - name: Upload coverage to Codecov if: ${{ !cancelled() && steps.tests.outcome != 'skipped' }} - uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2 # v6.0.0 + uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 with: flags: ${{ matrix.workspace }} token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/detect-new-workspace.yml b/.github/workflows/detect-new-workspace.yml index e54ed3ea87..b1e6d997d2 100644 --- a/.github/workflows/detect-new-workspace.yml +++ b/.github/workflows/detect-new-workspace.yml @@ -21,7 +21,7 @@ jobs: workspaces: ${{ steps.detect.outputs.workspaces }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit @@ -54,7 +54,7 @@ jobs: workspace: ${{ fromJSON(needs.prepare.outputs.workspaces) }} steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/new-workspace-pr-comment.yml b/.github/workflows/new-workspace-pr-comment.yml index aa4d86b368..5894db3387 100644 --- a/.github/workflows/new-workspace-pr-comment.yml +++ b/.github/workflows/new-workspace-pr-comment.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/toml-checks.yaml b/.github/workflows/toml-checks.yaml index 2c79d06369..689fa7e049 100644 --- a/.github/workflows/toml-checks.yaml +++ b/.github/workflows/toml-checks.yaml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - - uses: tombi-toml/setup-tombi@9880d1d3ba5e745d410c697366c513b337704388 # v1.0.11 + - uses: tombi-toml/setup-tombi@74c3f4f31e7915e27c3397831e4c628463e3e0da # v1.1.1 with: version: 'v0.9.9' checksum: 'b50dbc90ec27591dbaf564b628bd3b3e4ead371a60931bc8ea5f34d7cd1d3607' diff --git a/.github/workflows/upgrade-dashboard.yml b/.github/workflows/upgrade-dashboard.yml index 3f30d81861..9d2ecf7376 100644 --- a/.github/workflows/upgrade-dashboard.yml +++ b/.github/workflows/upgrade-dashboard.yml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit diff --git a/.github/workflows/validate-codeowners.yml b/.github/workflows/validate-codeowners.yml index d7198d3407..b937f28fe7 100644 --- a/.github/workflows/validate-codeowners.yml +++ b/.github/workflows/validate-codeowners.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 + uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4 with: egress-policy: audit