diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b85fd63..d987aa8 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -15,7 +15,7 @@ jobs: name: Test runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: pnpm/action-setup@v6 with: @@ -37,7 +37,7 @@ jobs: run: pnpm run test:coverage - name: Upload coverage to Codecov - uses: codecov/codecov-action@v5 + uses: codecov/codecov-action@v6 with: token: ${{ secrets.CODECOV_TOKEN }} files: ./coverage/lcov.info @@ -47,7 +47,7 @@ jobs: name: Build runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: pnpm/action-setup@v6 with: @@ -72,7 +72,7 @@ jobs: security-events: write contents: read steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: pnpm/action-setup@v6 with: diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 231812e..d64f657 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -29,19 +29,19 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: ${{ matrix.language }} # Use default queries plus security-extended for more comprehensive analysis queries: +security-extended - name: Autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@v4 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 with: category: "/language:${{ matrix.language }}" diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index dec90e8..b555706 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -11,7 +11,7 @@ jobs: contents: read id-token: write steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Setup Node.js uses: actions/setup-node@v6 diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 1cf7eda..99f2950 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: persist-credentials: false @@ -30,7 +30,7 @@ jobs: publish_results: true - name: Upload artifact - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v7 with: name: SARIF file path: results.sarif diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml index 2227908..c2630df 100644 --- a/.github/workflows/security-audit.yml +++ b/.github/workflows/security-audit.yml @@ -10,10 +10,10 @@ jobs: audit: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Setup Node.js - uses: actions/setup-node@v5 + uses: actions/setup-node@v6 with: node-version: '20' cache: 'npm' @@ -38,7 +38,7 @@ jobs: fi - name: Upload audit report - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v7 if: always() with: name: audit-report @@ -47,7 +47,7 @@ jobs: - name: Create issue for vulnerabilities if: steps.audit-check.outputs.vulnerabilities > 0 - uses: actions/github-script@v8 + uses: actions/github-script@v9 with: script: | const fs = require('fs'); diff --git a/.github/workflows/specter.yml b/.github/workflows/specter.yml index 2a061a8..fbf5a54 100644 --- a/.github/workflows/specter.yml +++ b/.github/workflows/specter.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: fetch-depth: 0 # Full history for accurate analysis diff --git a/action.yml b/action.yml index ea2600f..b4cb413 100644 --- a/action.yml +++ b/action.yml @@ -102,7 +102,7 @@ runs: - name: Post PR Comment if: inputs.comment-on-pr == 'true' && github.event_name == 'pull_request' - uses: actions/github-script@v8 + uses: actions/github-script@v9 with: github-token: ${{ inputs.github-token }} script: |