From 46e220e50af4fbfb6e9774debc386e8f4a6b9e71 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Jun 2026 18:53:01 +0000 Subject: [PATCH 1/2] Bump actions/checkout from 6.0.3 to 7.0.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/actionlint.yaml | 2 +- .github/workflows/auth.yaml | 2 +- .github/workflows/test.yaml | 2 +- .github/workflows/zizmor.yaml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/actionlint.yaml b/.github/workflows/actionlint.yaml index 6060492..ece99b9 100644 --- a/.github/workflows/actionlint.yaml +++ b/.github/workflows/actionlint.yaml @@ -36,7 +36,7 @@ jobs: release-assets.githubusercontent.com:443 - name: Check out code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/auth.yaml b/.github/workflows/auth.yaml index a7ad7a5..5ce54b9 100644 --- a/.github/workflows/auth.yaml +++ b/.github/workflows/auth.yaml @@ -32,7 +32,7 @@ jobs: github.com:443 issuer.enforce.dev:443 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./ diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index cde0044..5b85a2e 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -44,7 +44,7 @@ jobs: ocsp.sectigo.com:80 updates.cdn-apple.com:443 - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./ diff --git a/.github/workflows/zizmor.yaml b/.github/workflows/zizmor.yaml index 498c16e..c76bb6c 100644 --- a/.github/workflows/zizmor.yaml +++ b/.github/workflows/zizmor.yaml @@ -38,7 +38,7 @@ jobs: ghcr.io - name: Check out code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false From 7472e9a6d9ebbd98ab0e07ac1c4cad7d16b385e9 Mon Sep 17 00:00:00 2001 From: Carlos Tadeu Panato Junior Date: Mon, 29 Jun 2026 12:01:53 +0200 Subject: [PATCH 2/2] Enable unsafe PR checkout in auth workflow Signed-off-by: Carlos Tadeu Panato Junior --- .github/workflows/auth.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/auth.yaml b/.github/workflows/auth.yaml index 5ce54b9..69d1586 100644 --- a/.github/workflows/auth.yaml +++ b/.github/workflows/auth.yaml @@ -35,6 +35,7 @@ jobs: - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false + allow-unsafe-pr-checkout: true - uses: ./ with: identity: ce2d1984a010471142503340d670612d63ffb9f6/d05d31ba65ec54d1