From 75a74165ff553ed2047880e6ddb9f59f4c89c16b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 Jan 2026 11:03:26 +0000 Subject: [PATCH] deps: Bump the all group with 9 updates Bumps the all group with 9 updates: | Package | From | To | | --- | --- | --- | | [step-security/harden-runner](https://github.com/step-security/harden-runner) | `2.13.1` | `2.14.0` | | [KineticCafe/actions-dco](https://github.com/kineticcafe/actions-dco) | `2.0.0` | `2.1.1` | | [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4.8.1` | `4.8.2` | | [actions/setup-node](https://github.com/actions/setup-node) | `6.0.0` | `6.1.0` | | [ruby/setup-ruby](https://github.com/ruby/setup-ruby) | `1.267.0` | `1.278.0` | | [reviewdog/action-actionlint](https://github.com/reviewdog/action-actionlint) | `1.68.0` | `1.69.1` | | [reviewdog/action-setup](https://github.com/reviewdog/action-setup) | `1.4.0` | `1.5.0` | | [mongolyy/reviewdog-action-biome](https://github.com/mongolyy/reviewdog-action-biome) | `2.5.0` | `2.7.1` | | [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) | `0.2.0` | `0.3.0` | Updates `step-security/harden-runner` from 2.13.1 to 2.14.0 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a...20cf305ff2072d973412fa9b1e3a4f227bda3c76) Updates `KineticCafe/actions-dco` from 2.0.0 to 2.1.1 - [Release notes](https://github.com/kineticcafe/actions-dco/releases) - [Changelog](https://github.com/KineticCafe/actions-dco/blob/main/Changelog.md) - [Commits](https://github.com/kineticcafe/actions-dco/compare/cd9508e5ae82413fbd74b20af21551db0ea3eb78...6e1652ef3027ce128e65e6edd215ae053350bd16) Updates `actions/dependency-review-action` from 4.8.1 to 4.8.2 - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/40c09b7dc99638e5ddb0bfd91c1673effc064d8a...3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261) Updates `actions/setup-node` from 6.0.0 to 6.1.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/2028fbc5c25fe9cf00d9f06a71cc4710d4507903...395ad3262231945c25e8478fd5baf05154b1d79f) Updates `ruby/setup-ruby` from 1.267.0 to 1.278.0 - [Release notes](https://github.com/ruby/setup-ruby/releases) - [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb) - [Commits](https://github.com/ruby/setup-ruby/compare/d5126b9b3579e429dd52e51e68624dda2e05be25...4c24fa5ec04b2e79eb40571b1cee2a0d2b705771) Updates `reviewdog/action-actionlint` from 1.68.0 to 1.69.1 - [Release notes](https://github.com/reviewdog/action-actionlint/releases) - [Commits](https://github.com/reviewdog/action-actionlint/compare/f00ad0691526c10be4021a91b2510f0a769b14d0...83e4ed25b168066ad8f62f5afbb29ebd8641d982) Updates `reviewdog/action-setup` from 1.4.0 to 1.5.0 - [Release notes](https://github.com/reviewdog/action-setup/releases) - [Commits](https://github.com/reviewdog/action-setup/compare/d8edfce3dd5e1ec6978745e801f9c50b5ef80252...d8a7baabd7f3e8544ee4dbde3ee41d0011c3a93f) Updates `mongolyy/reviewdog-action-biome` from 2.5.0 to 2.7.1 - [Release notes](https://github.com/mongolyy/reviewdog-action-biome/releases) - [Commits](https://github.com/mongolyy/reviewdog-action-biome/compare/dbe7192276cbc6cd32369a21f525ed02438c3e26...abafdf75a79678ef8e2715298ee2dfc12262c82f) Updates `zizmorcore/zizmor-action` from 0.2.0 to 0.3.0 - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](https://github.com/zizmorcore/zizmor-action/compare/e673c3917a1aef3c65c972347ed84ccd013ecda4...e639db99335bc9038abc0e066dfcd72e23d26fb4) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: KineticCafe/actions-dco dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: actions/dependency-review-action dependency-version: 4.8.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: actions/setup-node dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: ruby/setup-ruby dependency-version: 1.278.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: reviewdog/action-actionlint dependency-version: 1.69.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: reviewdog/action-setup dependency-version: 1.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: mongolyy/reviewdog-action-biome dependency-version: 2.7.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: zizmorcore/zizmor-action dependency-version: 0.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all ... Signed-off-by: dependabot[bot] --- .github/workflows/dco-check.yml | 4 ++-- .github/workflows/dependency-review.yml | 4 ++-- .github/workflows/elixir.yml | 2 +- .github/workflows/integration.yml | 6 +++--- .github/workflows/reviewdog.yml | 20 ++++++++++---------- .github/workflows/ruby.yml | 12 ++++++------ .github/workflows/typescript.yml | 4 ++-- .github/workflows/zizmor.yml | 4 ++-- 8 files changed, 28 insertions(+), 28 deletions(-) diff --git a/.github/workflows/dco-check.yml b/.github/workflows/dco-check.yml index 8b51f43..5409f64 100644 --- a/.github/workflows/dco-check.yml +++ b/.github/workflows/dco-check.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Harden the runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block disable-sudo: true @@ -23,4 +23,4 @@ jobs: api.github.com:443 github.com:443 - - uses: KineticCafe/actions-dco@cd9508e5ae82413fbd74b20af21551db0ea3eb78 # v2.0.0 + - uses: KineticCafe/actions-dco@6e1652ef3027ce128e65e6edd215ae053350bd16 # v2.1.1 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index d4c6c1b..3cd1624 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden the runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: disable-sudo: true egress-policy: block @@ -38,4 +38,4 @@ jobs: persist-credentials: false - name: 'Dependency Review' - uses: actions/dependency-review-action@40c09b7dc99638e5ddb0bfd91c1673effc064d8a # v4.8.1 + uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 diff --git a/.github/workflows/elixir.yml b/.github/workflows/elixir.yml index 607a786..4c25680 100644 --- a/.github/workflows/elixir.yml +++ b/.github/workflows/elixir.yml @@ -59,7 +59,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/integration.yml b/.github/workflows/integration.yml index b368cb1..3f64b9d 100644 --- a/.github/workflows/integration.yml +++ b/.github/workflows/integration.yml @@ -34,7 +34,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -55,7 +55,7 @@ jobs: with: package_json_file: ts/package.json - - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 + - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 with: node-version: ${{ matrix.node }} cache: pnpm @@ -68,7 +68,7 @@ jobs: working-directory: ./ts # Ruby Setup - - uses: ruby/setup-ruby@d5126b9b3579e429dd52e51e68624dda2e05be25 # v1.267.0 + - uses: ruby/setup-ruby@4c24fa5ec04b2e79eb40571b1cee2a0d2b705771 # v1.278.0 with: ruby-version: ${{ matrix.ruby }} bundler-cache: true diff --git a/.github/workflows/reviewdog.yml b/.github/workflows/reviewdog.yml index 7b41630..b3f8a77 100644 --- a/.github/workflows/reviewdog.yml +++ b/.github/workflows/reviewdog.yml @@ -21,7 +21,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: disable-sudo: true egress-policy: block @@ -49,7 +49,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: disable-sudo: true egress-policy: block @@ -61,7 +61,7 @@ jobs: with: persist-credentials: false - - uses: reviewdog/action-actionlint@f00ad0691526c10be4021a91b2510f0a769b14d0 # v1.68.0 + - uses: reviewdog/action-actionlint@83e4ed25b168066ad8f62f5afbb29ebd8641d982 # v1.69.1 credo: if: ${{ github.event.action != 'closed' }} @@ -74,7 +74,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -106,7 +106,7 @@ jobs: - run: mix 'do' deps.get, deps.compile working-directory: ./elixir - - uses: reviewdog/action-setup@d8edfce3dd5e1ec6978745e801f9c50b5ef80252 #v1.4.0 + - uses: reviewdog/action-setup@d8a7baabd7f3e8544ee4dbde3ee41d0011c3a93f #v1.5.0 - name: 'mix credo --strict | reviewdog' run: | @@ -131,7 +131,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -150,7 +150,7 @@ jobs: with: package_json_file: ts/package.json - - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 #v6.0.0 + - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f #v6.1.0 with: node-version: 20 cache: pnpm @@ -159,7 +159,7 @@ jobs: - run: pnpm install --frozen-lockfile working-directory: ./ts - - uses: mongolyy/reviewdog-action-biome@dbe7192276cbc6cd32369a21f525ed02438c3e26 #v2.5.0 + - uses: mongolyy/reviewdog-action-biome@abafdf75a79678ef8e2715298ee2dfc12262c82f #v2.7.1 with: workdir: ./ts @@ -174,7 +174,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -190,7 +190,7 @@ jobs: with: persist-credentials: false - - uses: ruby/setup-ruby@d5126b9b3579e429dd52e51e68624dda2e05be25 # v1.267.0 + - uses: ruby/setup-ruby@4c24fa5ec04b2e79eb40571b1cee2a0d2b705771 # v1.278.0 with: ruby-version: '3.2' bundler-cache: true diff --git a/.github/workflows/ruby.yml b/.github/workflows/ruby.yml index 453df06..63c42fe 100644 --- a/.github/workflows/ruby.yml +++ b/.github/workflows/ruby.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -32,7 +32,7 @@ jobs: with: persist-credentials: false - - uses: ruby/setup-ruby@d5126b9b3579e429dd52e51e68624dda2e05be25 # v1.267.0 + - uses: ruby/setup-ruby@4c24fa5ec04b2e79eb40571b1cee2a0d2b705771 # v1.278.0 with: ruby-version: '3.3' rubygems: latest @@ -74,7 +74,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -88,7 +88,7 @@ jobs: with: persist-credentials: false - - uses: ruby/setup-ruby@d5126b9b3579e429dd52e51e68624dda2e05be25 # v1.267.0 + - uses: ruby/setup-ruby@4c24fa5ec04b2e79eb40571b1cee2a0d2b705771 # v1.278.0 with: ruby-version: ${{ matrix.ruby }} bundler-cache: true @@ -128,7 +128,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -142,7 +142,7 @@ jobs: with: persist-credentials: false - - uses: ruby/setup-ruby@d5126b9b3579e429dd52e51e68624dda2e05be25 # v1.267.0 + - uses: ruby/setup-ruby@4c24fa5ec04b2e79eb40571b1cee2a0d2b705771 # v1.278.0 with: ruby-version: ${{ matrix.ruby }} bundler-cache: true diff --git a/.github/workflows/typescript.yml b/.github/workflows/typescript.yml index 9e0710c..5e584be 100644 --- a/.github/workflows/typescript.yml +++ b/.github/workflows/typescript.yml @@ -29,7 +29,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > @@ -44,7 +44,7 @@ jobs: with: package_json_file: ts/package.json - - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 #v6.0.0 + - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f #v6.1.0 with: node-version: ${{ matrix.node }} cache: pnpm diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 2b181da..6977140 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -21,7 +21,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: disable-sudo: true egress-policy: block @@ -35,6 +35,6 @@ jobs: with: persist-credentials: false - - uses: zizmorcore/zizmor-action@e673c3917a1aef3c65c972347ed84ccd013ecda4 # v0.2.0 + - uses: zizmorcore/zizmor-action@e639db99335bc9038abc0e066dfcd72e23d26fb4 # v0.3.0 with: persona: pedantic